App maintenance
This reference describes the requirements for submitting updates to a published device app or plugin on Ledger Wallet. Third-party developers are responsible for all updates following the initial release.
Requirements
Required deliverables
Every update must be submitted alongside the following:
| Deliverable | Description |
|---|---|
| Functional tests | Tests covering all APDU commands and UI flows affected by the changes |
| Security audit | A security audit scoped to the changes in the updated version |
Submission forms
Updates are submitted via a dedicated form. Only the sections of the app that have changed need to be selected.
| Update type | Form |
|---|---|
| Device app | Device app update form |
| Plugin | Plugin update form |
Timeline
Constraint: Updates must be submitted at least one month before the desired release date. Ledger must be informed as early as possible.
Further reading
- Security audit — scope and requirements for the security audit deliverable
- Development requirements — CI workflow checks required before submission
- Security requirements — security constraints that apply to app updates
