BETAUSER for a 90-day free trial (30 days plus 60 more) and help shape CRANIS2 before the CRA deadlines.
Join the beta
How well do you manage third-party risk in your software supply chain? This self-assessment covers five key areas aligned with CRA Art. 13(5) (component due diligence) and NIS2 Art. 21 (supply chain security measures). Answer each question to receive a risk rating with actionable recommendations.
CRANIS2 automatically scores your supply chain risk from real SBOM data — vulnerability exposure, licence compliance, supplier visibility, and concentration risk — all computed continuously from your connected repositories.
Analyse your supply chain in CRANIS2