The development so far is focused on exo (secure monitor). To work on it, you need to run it on Hardware. The visible CFW parts - services and kernel patches will probably (hopefully!) land mostly after the initial release. The initial kernel / service patching should be quite bare-bones. (Assuming EL2 emunand).
As I understand it, the trustzone execution is not patch-able and has been disclosed already (including how to get there on 1.0.).
It is absolutely patchable and Nintendo does not know how it works specifically on firmwares higher than 1.0.0, at the moment.
Once it's patched, that's basically game over for non bootromhax-based TrustZone pwn for the console's lifetime...the Secure Monitor is pretty flawless from a security PoV except for the "running on NV's Tegra platform" thing.
Last edited by SciresM,