> But does EN 319 401, as it existed in 2016/2017 incorporate a clause to > apply all "future" updates to the CAB/F regulations or otherwise cover > all BRs applicable to the 2016/2017 timespan?
Interesting question. Would it have to explicitly claim to incorporate any future updates? Or would it have to explicitly *deny* to be applied to future updates? My personal interpretation would be to assume compliance at PIT and including potential future amendments, unless explicitly stated otherwise. _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
