Tag
This paper examines how the EU Cyber Resilience Act's assumptions about human-paced vulnerability management may be undermined by increasingly capable AI agents, identifying which parts of the regulation remain robust and which may face pressure.