Support and Long Term Support Policies

We provide two support policies, one governing general support for components, and another governing long term support for skeleton applications.

Terminology

• Active support: During this period, a package may receive new features, bugfixes, and/or security patches.
• Security support: During this period, a package may receive security patches and/or criticial bugfixes only.
• Security patches (or fixes): Patches created due to a report of a potential or known security vulnerability, as verified by the security team.
• Critical bugfixes: Fixes for bugs introduced within a new minor release cycle.
• Skeleton package: Any package defined as a Composer "project" type, for the purpose of initiating a new project/application.
• LTS: Long-Term Support.

Component support policy

This policy governs individual component packages.

• When a new major release of a component is made, the previous minor release enters its security support phase for a period of 12 months, receiving only critical bugfixes and security fixes.
• Otherwise, a component remains in active support unless we provide notice of deprecation/abandonment. Once such a notice is made, the component will enter a security support phase for a period of 12 months.
• When a new minor release of a component is made, the previous minor release is no longer supported and will not receive security fixes.

Users are encouraged to update to the latest supported version. As we follow semantic versioning, your code will continue to work without changes within the same major version.

Long Term Support Policy

This policy governs skeleton packages and their direct dependencies. Direct dependencies are any Zend Framework dependencies listed in the skeleton `composer.json`. At the time of publication, skeleton applications we provide include:

• zf-apigility-skeleton (Apigility applications)
• ZendSkeletonApplication (zend-mvc applications)
• zend-expressive-skeleton (Expressive applications)

For projects covered by this policy:

• New major versions will occur no sooner than 2 years after a major version is released.
• When a new major version is released, the previous minor release will enter a security support phase for a period of 2 years following the date of the new major release. This means that the LTS is a minimum of 4 years.
• During the LTS period, all direct dependencies of the skeleton will receive security support in the latest versions possible under the version constraints as listed in the skeleton application's composer.json file.

Adopting an LTS version

Opting-in to an LTS version of a component can be done using Composer:

$ composer require "{package}:^{version}"

The above will modify your composer.json to provide a semantic version constraint, ensuring you only get backwards-compatible updates to the given package.

Current support versions

The following table includes a list of all components, along with its current support status (Support or LTS), skeleton under which LTS is invoked (if any), versions under support (multiple versions are possible when an LTS is present), and date when support ends (if an LTS version or deprecated package). When a component has multiple support statuses, it will be listed multiple times, showing the specific status and version(s) it applies to. For LTS components, the skeleton that provides the status is listed as well.

Package	Supported Version(s)	Status	Support Ends	Skeleton Projects
zendframework/ZendSkeletonApplication	3.0	ACTIVE
	3.0	LTS	2020-06-28	ZendSkeletonApplication
zendframework/zend-expressive-skeleton	3.1	ACTIVE
	3.0	LTS	2022-03-15	zend-expressive-skeleton
	2.2	LTS	2020-03-15	zend-expressive-skeleton
zfcampus/zf-apigility-skeleton	1.5	ACTIVE
zendframework/ZendService_Amazon	2.3	ACTIVE
zendframework/ZendService_Apple_Apns	1.3	ACTIVE
zendframework/ZendService_Google_Gcm	2.1	ACTIVE
zendframework/ZendService_ReCaptcha	3.1	ACTIVE
zendframework/ZendService_Twitter	3.0	ACTIVE
zendframework/ZendXml	1.1	ACTIVE
zendframework/zend-auradi-config	1.0	ACTIVE
zendframework/zend-authentication	2.6	ACTIVE
zendframework/zend-barcode	2.7	ACTIVE
zendframework/zend-cache	2.8	ACTIVE
zendframework/zend-captcha	2.8	ACTIVE
zendframework/zend-code	3.3	ACTIVE
zendframework/zend-component-installer	2.1	ACTIVE
	2.1	LTS	2022-03-15	zend-expressive-skeleton
	1.0	LTS	2020-06-28	ZendSkeletonApplication
	1.0	LTS	2020-03-15	zend-expressive-skeleton
	1.1	SECURITY	2019-02-06
zendframework/zend-config	3.2	ACTIVE
zendframework/zend-config-aggregator	1.1	ACTIVE
	1.0	LTS	2022-03-15	zend-expressive-skeleton
	1.0	LTS	2020-03-15	zend-expressive-skeleton
zendframework/zend-config-aggregator-modulemanager	1.0	ACTIVE
zendframework/zend-config-aggregator-parameters	1.0	ACTIVE
zendframework/zend-console	2.7	ACTIVE
zendframework/zend-crypt	3.3	ACTIVE
zendframework/zend-db	2.9	ACTIVE
zendframework/zend-debug	2.6	ACTIVE
zendframework/zend-developer-tools	1.2	ACTIVE
zendframework/zend-di	3.0	ACTIVE
	2.6	SECURITY	2018-11-30
zendframework/zend-diactoros	1.8	ACTIVE
	1.7	LTS	2022-03-15	zend-expressive-skeleton
zendframework/zend-diagnostics	1.3	ACTIVE
zendframework/zend-dom	2.7	ACTIVE
zendframework/zend-escaper	2.6	ACTIVE
zendframework/zend-eventmanager	3.2	ACTIVE
zendframework/zend-expressive	3.1	ACTIVE
	3.0	LTS	2022-03-15	zend-expressive-skeleton
	2.2	LTS	2020-03-15	zend-expressive-skeleton
	2.2	SECURITY	2019-03-15
zendframework/zend-expressive-aurarouter	3.0	ACTIVE
	2.2	SECURITY	2019-03-15
zendframework/zend-expressive-authentication	1.0	ACTIVE
zendframework/zend-expressive-authorization	1.0	ACTIVE
zendframework/zend-expressive-authorization-acl	1.0	ACTIVE
zendframework/zend-expressive-authorization-rbac	1.0	ACTIVE
zendframework/zend-expressive-csrf	1.0	ACTIVE
zendframework/zend-expressive-fastroute	3.0	ACTIVE
	2.2	SECURITY	2019-03-15
zendframework/zend-expressive-flash	1.0	ACTIVE
zendframework/zend-expressive-hal	1.1	ACTIVE
zendframework/zend-expressive-helpers	5.1	ACTIVE
	5.0	LTS	2022-03-15	zend-expressive-skeleton
	4.0	LTS	2020-03-15	zend-expressive-skeleton
	4.2	SECURITY	2019-03-15
zendframework/zend-expressive-platesrenderer	2.0	ACTIVE
	1.4	SECURITY	2019-03-15
zendframework/zend-expressive-router	3.1	ACTIVE
	2.4	SECURITY	2019-03-15
zendframework/zend-expressive-session	1.1	ACTIVE
zendframework/zend-expressive-session-ext	1.2	ACTIVE
zendframework/zend-expressive-template	2.0	ACTIVE
	1.0	SECURITY	2019-03-15
zendframework/zend-expressive-tooling	1.0	ACTIVE
zendframework/zend-expressive-twigrenderer	2.1	ACTIVE
	1.5	SECURITY	2019-03-15
zendframework/zend-expressive-zendrouter	3.0	ACTIVE
	2.2	SECURITY	2019-03-15
zendframework/zend-expressive-zendviewrenderer	2.0	ACTIVE
	1.4	SECURITY	2019-03-15
zendframework/zend-feed	2.10	ACTIVE
zendframework/zend-file	2.8	ACTIVE
zendframework/zend-filter	2.8	ACTIVE
zendframework/zend-form	2.12	ACTIVE
zendframework/zend-http	2.8	ACTIVE
zendframework/zend-httphandlerrunner	1.0	ACTIVE
zendframework/zend-hydrator	2.4	ACTIVE
zendframework/zend-i18n	2.9	ACTIVE
zendframework/zend-i18n-resources	2.6	ACTIVE
zendframework/zend-inputfilter	2.8	ACTIVE
zendframework/zend-json	3.1	ACTIVE
zendframework/zend-json-server	3.1	ACTIVE
zendframework/zend-ldap	2.10	ACTIVE
zendframework/zend-loader	2.6	ACTIVE
zendframework/zend-log	2.10	ACTIVE
zendframework/zend-mail	2.10	ACTIVE
zendframework/zend-math	3.1	ACTIVE
zendframework/zend-memory	2.6	ACTIVE
zendframework/zend-mime	2.7	ACTIVE
zendframework/zend-modulemanager	2.8	ACTIVE
zendframework/zend-mvc	3.1	ACTIVE
	3.0	LTS	2020-06-28	ZendSkeletonApplication
zendframework/zend-mvc-console	1.2	ACTIVE
zendframework/zend-mvc-form	1.0	ACTIVE
zendframework/zend-mvc-i18n	1.1	ACTIVE
zendframework/zend-mvc-plugin-fileprg	1.1	ACTIVE
zendframework/zend-mvc-plugin-flashmessenger	1.1	ACTIVE
zendframework/zend-mvc-plugin-identity	1.1	ACTIVE
zendframework/zend-mvc-plugin-prg	1.1	ACTIVE
zendframework/zend-mvc-plugins	1.0	ACTIVE
zendframework/zend-navigation	2.9	ACTIVE
zendframework/zend-paginator	2.8	ACTIVE
zendframework/zend-permissions-acl	2.7	ACTIVE
zendframework/zend-permissions-rbac	3.0	ACTIVE
	2.6	SECURITY	2019-03-22
zendframework/zend-pimple-config	1.1	ACTIVE
zendframework/zend-problem-details	1.0	ACTIVE
zendframework/zend-progressbar	2.6	ACTIVE
zendframework/zend-psr7bridge	1.0	ACTIVE
zendframework/zend-router	3.2	ACTIVE
zendframework/zend-serializer	2.9	ACTIVE
zendframework/zend-server	2.8	ACTIVE
zendframework/zend-servicemanager	3.3	ACTIVE
zendframework/zend-servicemanager-di	1.2	ACTIVE
zendframework/zend-session	2.8	ACTIVE
zendframework/zend-soap	2.7	ACTIVE
zendframework/zend-stdlib	3.2	ACTIVE
	3.1	LTS	2022-03-15	zend-expressive-skeleton
	3.1	LTS	2020-03-15	zend-expressive-skeleton
zendframework/zend-stratigility	3.0	ACTIVE
	2.2	SECURITY	2019-03-15
zendframework/zend-tag	2.7	ACTIVE
zendframework/zend-test	3.2	ACTIVE
zendframework/zend-text	2.7	ACTIVE
zendframework/zend-uri	2.6	ACTIVE
zendframework/zend-validator	2.10	ACTIVE
zendframework/zend-view	2.10	ACTIVE
zendframework/zend-xml2json	3.1	ACTIVE
zendframework/zend-xmlrpc	2.7	ACTIVE
zfcampus/zf-api-problem	1.3	ACTIVE
zfcampus/zf-apigility	1.4	ACTIVE
zfcampus/zf-apigility-admin	1.6	ACTIVE
zfcampus/zf-apigility-admin-ui	1.3	ACTIVE
zfcampus/zf-apigility-doctrine	2.2	ACTIVE
zfcampus/zf-apigility-documentation	1.3	ACTIVE
zfcampus/zf-apigility-documentation-apiblueprint	1.3	ACTIVE
zfcampus/zf-apigility-documentation-swagger	1.3	ACTIVE
zfcampus/zf-apigility-provider	1.3	ACTIVE
zfcampus/zf-asset-manager	1.2	ACTIVE
zfcampus/zf-composer-autoloading	2.1	ACTIVE
zfcampus/zf-configuration	1.3	ACTIVE
zfcampus/zf-console	1.4	ACTIVE
zfcampus/zf-content-negotiation	1.4	ACTIVE
zfcampus/zf-content-validation	1.6	ACTIVE
zfcampus/zf-deploy	1.3	ACTIVE
zfcampus/zf-development-mode	3.2	ACTIVE
	3.0	LTS	2020-06-28	ZendSkeletonApplication
zfcampus/zf-doctrine-querybuilder	1.6	ACTIVE
zfcampus/zf-hal	1.5	ACTIVE
zfcampus/zf-http-cache	1.4	ACTIVE
zfcampus/zf-mvc-auth	1.5	ACTIVE
zfcampus/zf-oauth2	1.5	ACTIVE
zfcampus/zf-rest	1.5	ACTIVE
zfcampus/zf-rpc	1.4	ACTIVE
zfcampus/zf-versioning	1.3	ACTIVE

Notes

• Any component or package NOT explicitly listed above is NOT SUPPORTED.
• Status ACTIVE indicates active support for the listed minor version and any version following within the same major version series.
• Status SECURITY indicates the listed minor release branch is receiving security support.
• Status LTS indicates security support (and, in most cases, active support) for the listed version within the listed major version series.
• If a component is in ACTIVE support status, there is no defined end of support date.

Expired LTS Versions

The following table details former LTS versions that have now expired.

Version	Released	LTS Ends
Zend Framework 1.12	2015-04-13	2016-09-28
Zend Framework 2.4	2015-03-31	2018-03-31

• Overview
• FAQ
• License
• Long Term Support
• Changelog