(WARNING) Draft in review
This document outlines the proposal for backporting of TF-M security fixes to previous releases and the testing policy of such releases.
**Updated proposal including feedback gathered over the time. 7/6/21**
- A security vulnerability found and fixed at any moment resulted in fixes applied to the ongoing code and tagged with an incremented hotfix number. I.e., having the latest tag v1.4.0, a new security fix will be staged by v1.4.1.
- There will be no fixes for past versions to avoid LTS maintenance and backporting overheads.
- The fix shall be tested using the standard regression test suit on Arm reference platform, agreed by maintainers.
**Previous text moved in to the comment below**