In a CRA webinar last week, I commented it is possible that C/C++ are a per se CRA violation, since C/C++ are insecure by design. An attendee replied "but C/C++ is what embedded use" and I said, more or less, "tough". Here's @gregkh.bsky.social on it:
www.zdnet.com/article/rust...
