https://pluralistic.net/2022/01/30/ring-minus-one/
This means that, by design, any time someone finds and exploits a defect in a secure enclave, it can operate in ways that users can’t detect or stop. It also means that there is no way to remediate a defect in a secure enclave: if you can patch a secure enclave to fix a bug, then an adversary could patch it to introduce an exploitable bug.
This link was shared by @Quintus.