Our solution to this issue is to permit updates for the support code at any place, given that the update is designed transparent first (as explained in our latest CACM write-up) by introducing it to a tamper-evidence, https://sociallawy.com/story8599960/considerations-to-know-about-confidential-clearance-license
