diff --git a/internal/api/attestationconfigapi/cli/client/BUILD.bazel b/internal/api/attestationconfigapi/cli/client/BUILD.bazel
index 5e8d4cc8a6..c90cb34b98 100644
--- a/internal/api/attestationconfigapi/cli/client/BUILD.bazel
+++ b/internal/api/attestationconfigapi/cli/client/BUILD.bazel
@@ -5,8 +5,7 @@ go_library(
     name = "client",
     srcs = [
         "client.go",
-        "reportersnp.go",
-        "reportertdx.go",
+        "reporter.go",
     ],
     importpath = "github.com/edgelesssys/constellation/v2/internal/api/attestationconfigapi/cli/client",
     visibility = ["//:__subpackages__"],
@@ -25,7 +24,7 @@ go_test(
     name = "client_test",
     srcs = [
         "client_test.go",
-        "reportersnp_test.go",
+        "reporter_test.go",
     ],
     embed = [":client"],
     deps = [
diff --git a/internal/api/attestationconfigapi/cli/client/reporter.go b/internal/api/attestationconfigapi/cli/client/reporter.go
new file mode 100644
index 0000000000..eb3e279177
--- /dev/null
+++ b/internal/api/attestationconfigapi/cli/client/reporter.go
@@ -0,0 +1,349 @@
+/*
+Copyright (c) Edgeless Systems GmbH
+
+SPDX-License-Identifier: AGPL-3.0-only
+*/
+
+package client
+
+import (
+	"context"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"path"
+	"sort"
+	"strings"
+	"time"
+
+	"github.com/edgelesssys/constellation/v2/internal/api/attestationconfigapi"
+	"github.com/edgelesssys/constellation/v2/internal/api/client"
+	"github.com/edgelesssys/constellation/v2/internal/attestation/variant"
+)
+
+// cachedVersionsSubDir is the subdirectory in the bucket where the cached versions are stored.
+const cachedVersionsSubDir = "cached-versions"
+
+// ErrNoNewerVersion is returned if the input version is not newer than the latest API version.
+var ErrNoNewerVersion = errors.New("input version is not newer than latest API version")
+
+func reportVersionDir(attestation variant.Variant) string {
+	return path.Join(attestationconfigapi.AttestationURLPath, attestation.String(), cachedVersionsSubDir)
+}
+
+// UploadLatestVersion saves the given version to the cache, determines the smallest
+// TCB version in the cache among the last cacheWindowSize versions and updates
+// the latest version in the API if there is an update.
+// force can be used to bypass the validation logic against the cached versions.
+func (c Client) UploadLatestVersion(
+	ctx context.Context, attestationVariant variant.Variant,
+	inputVersion, latestVersionInAPI any,
+	now time.Time, force bool,
+) error {
+	// Validate input versions against configured attestation variant
+	// This allows us to skip these checks in the individual variant implementations
+	var err error
+	actionForVariant(attestationVariant,
+		func() {
+			if _, ok := inputVersion.(attestationconfigapi.TDXVersion); !ok {
+				err = fmt.Errorf("input version %q is not a TDX version", inputVersion)
+			}
+			if _, ok := latestVersionInAPI.(attestationconfigapi.TDXVersion); !ok {
+				err = fmt.Errorf("latest API version %q is not a TDX version", latestVersionInAPI)
+			}
+		},
+		func() {
+			if _, ok := inputVersion.(attestationconfigapi.SEVSNPVersion); !ok {
+				err = fmt.Errorf("input version %q is not a SNP version", inputVersion)
+			}
+			if _, ok := latestVersionInAPI.(attestationconfigapi.SEVSNPVersion); !ok {
+				err = fmt.Errorf("latest API version %q is not a SNP version", latestVersionInAPI)
+			}
+		},
+	)
+
+	if err := c.addVersionToCache(ctx, attestationVariant, inputVersion, now); err != nil {
+		return fmt.Errorf("adding version to cache: %w", err)
+	}
+
+	if force {
+		return c.uploadAsLatestVersion(ctx, attestationVariant, inputVersion, now)
+	}
+
+	versionDates, err := c.listCachedVersions(ctx, attestationVariant)
+	if err != nil {
+		return fmt.Errorf("listing existing cached versions: %w", err)
+	}
+	if len(versionDates) < c.cacheWindowSize {
+		c.log.Warn(fmt.Sprintf("Skipping version update, found %d, expected %d reported versions.", len(versionDates), c.cacheWindowSize))
+		return nil
+	}
+
+	minVersion, minDate, err := c.findMinVersion(ctx, attestationVariant, versionDates)
+	if err != nil {
+		return fmt.Errorf("determining minimal version in cache: %w", err)
+	}
+	c.log.Info(fmt.Sprintf("Found minimal version: %+v with date: %s", minVersion, minDate))
+
+	if !isInputNewerThanOtherVersion(attestationVariant, minVersion, latestVersionInAPI) {
+		c.log.Info(fmt.Sprintf("Input version: %+v is not newer than latest API version: %+v. Skipping list update", minVersion, latestVersionInAPI))
+		return ErrNoNewerVersion
+	}
+
+	c.log.Info(fmt.Sprintf("Input version: %+v is newer than latest API version: %+v", minVersion, latestVersionInAPI))
+	t, err := time.Parse(VersionFormat, minDate)
+	if err != nil {
+		return fmt.Errorf("parsing date: %w", err)
+	}
+
+	if err := c.uploadAsLatestVersion(ctx, attestationVariant, minVersion, t); err != nil {
+		return fmt.Errorf("uploading as latest version: %w", err)
+	}
+
+	c.log.Info(fmt.Sprintf("Successfully uploaded new %s version: %+v", attestationVariant, minVersion))
+	return nil
+}
+
+func (c Client) uploadAsLatestVersion(ctx context.Context, variant variant.Variant, inputVersion any, date time.Time) error {
+	versions, err := c.List(ctx, variant)
+	if err != nil {
+		return fmt.Errorf("fetch version list: %w", err)
+	}
+	if !variant.Equal(versions.Variant) {
+		return nil
+	}
+
+	dateStr := date.Format(VersionFormat) + ".json"
+	var ops []crudCmd
+
+	obj := apiVersionObject{version: dateStr, variant: variant, cached: false}
+	obj.setVersion(inputVersion)
+	ops = append(ops, putCmd{
+		apiObject: obj,
+		signer:    c.signer,
+	})
+
+	versions.AddVersion(dateStr)
+
+	ops = append(ops, putCmd{
+		apiObject: versions,
+		signer:    c.signer,
+	})
+
+	return executeAllCmds(ctx, c.s3Client, ops)
+}
+
+func (c Client) addVersionToCache(ctx context.Context, variant variant.Variant, inputVersion any, date time.Time) error {
+	dateStr := date.Format(VersionFormat) + ".json"
+	obj := apiVersionObject{version: dateStr, variant: variant, cached: true}
+	obj.setVersion(inputVersion)
+	cmd := putCmd{
+		apiObject: obj,
+		signer:    c.signer,
+	}
+	return cmd.Execute(ctx, c.s3Client)
+}
+
+func (c Client) findMinVersion(
+	ctx context.Context, attestationVariant variant.Variant, versionDates []string,
+) (any, string, error) {
+	var getMinimalVersion func() (any, string, error)
+
+	actionForVariant(attestationVariant,
+		func() {
+			getMinimalVersion = func() (any, string, error) {
+				return findMinimalVersion[attestationconfigapi.TDXVersion](ctx, attestationVariant, versionDates, c.s3Client, c.cacheWindowSize)
+			}
+		},
+		func() {
+			getMinimalVersion = func() (any, string, error) {
+				return findMinimalVersion[attestationconfigapi.SEVSNPVersion](ctx, attestationVariant, versionDates, c.s3Client, c.cacheWindowSize)
+			}
+		},
+	)
+	return getMinimalVersion()
+}
+
+func findMinimalVersion[T attestationconfigapi.TDXVersion | attestationconfigapi.SEVSNPVersion](
+	ctx context.Context, variant variant.Variant, versionDates []string,
+	s3Client *client.Client, cacheWindowSize int,
+) (T, string, error) {
+	var minimalVersion *T
+	var minimalDate string
+	sort.Sort(sort.Reverse(sort.StringSlice(versionDates))) // sort in reverse order to slice the latest versions
+	versionDates = versionDates[:cacheWindowSize]
+	sort.Strings(versionDates) // sort with oldest first to to take the minimal version with the oldest date
+	var res T
+
+	for _, date := range versionDates {
+		obj, err := client.Fetch(ctx, s3Client, apiVersionObject{version: date + ".json", variant: variant, cached: true})
+		if err != nil {
+			return res, "", fmt.Errorf("get object: %w", err)
+		}
+
+		if minimalVersion == nil {
+			v := obj.getVersion().(T)
+			minimalVersion = &v
+			minimalDate = date
+			continue
+		}
+
+		// If the current minimal version has newer versions than the one we just fetched,
+		// update the minimal version to the older version.
+		if isInputNewerThanOtherVersion(variant, obj.getVersion(), *minimalVersion) {
+			v := obj.getVersion().(T)
+			minimalVersion = &v
+			minimalDate = date
+		}
+	}
+
+	return *minimalVersion, minimalDate, nil
+}
+
+func isInputNewerThanOtherVersion(variant variant.Variant, inputVersion, otherVersion any) bool {
+	var result bool
+	actionForVariant(variant,
+		func() {
+			input := inputVersion.(attestationconfigapi.TDXVersion)
+			other := otherVersion.(attestationconfigapi.TDXVersion)
+			result = isInputNewerThanOtherTDXVersion(input, other)
+		},
+		func() {
+			input := inputVersion.(attestationconfigapi.SEVSNPVersion)
+			other := otherVersion.(attestationconfigapi.SEVSNPVersion)
+			result = isInputNewerThanOtherSEVSNPVersion(input, other)
+		},
+	)
+	return result
+}
+
+type apiVersionObject struct {
+	version string          `json:"-"`
+	variant variant.Variant `json:"-"`
+	cached  bool            `json:"-"`
+	snp     attestationconfigapi.SEVSNPVersion
+	tdx     attestationconfigapi.TDXVersion
+}
+
+func (a *apiVersionObject) MarshalJSON() ([]byte, error) {
+	var res []byte
+	var err error
+	actionForVariant(a.variant,
+		func() {
+			res, err = json.Marshal(a.tdx)
+		},
+		func() {
+			res, err = json.Marshal(a.snp)
+		},
+	)
+	return res, err
+}
+
+func (a *apiVersionObject) UnmarshalJSON(data []byte) error {
+	var err error
+	actionForVariant(a.variant,
+		func() {
+			err = json.Unmarshal(data, &a.tdx)
+		},
+		func() {
+			err = json.Unmarshal(data, &a.snp)
+		},
+	)
+	return err
+}
+
+// JSONPath returns the path to the JSON file for the request to the config api.
+// This is the path to the cached version in the S3 bucket.
+func (a apiVersionObject) JSONPath() string {
+	if a.cached {
+		return path.Join(reportVersionDir(a.variant), a.version)
+	}
+	return path.Join(attestationconfigapi.AttestationURLPath, a.variant.String(), a.version)
+}
+
+// ValidateRequest validates the request.
+func (a apiVersionObject) ValidateRequest() error {
+	if !strings.HasSuffix(a.version, ".json") {
+		return fmt.Errorf("version has no .json suffix")
+	}
+	return nil
+}
+
+// Validate is a No-Op at the moment.
+func (a apiVersionObject) Validate() error {
+	return nil
+}
+
+func (a apiVersionObject) getVersion() any {
+	var res any
+	actionForVariant(a.variant,
+		func() {
+			res = a.tdx
+		},
+		func() {
+			res = a.snp
+		},
+	)
+	return res
+}
+
+func (a apiVersionObject) setVersion(version any) {
+	actionForVariant(a.variant,
+		func() {
+			a.tdx = version.(attestationconfigapi.TDXVersion)
+		},
+		func() {
+			a.snp = version.(attestationconfigapi.SEVSNPVersion)
+		},
+	)
+}
+
+func actionForVariant(
+	attestationVariant variant.Variant,
+	tdxAction func(), snpAction func(),
+) {
+	switch attestationVariant {
+	case variant.AWSSEVSNP{}, variant.AzureSEVSNP{}, variant.GCPSEVSNP{}:
+		snpAction()
+	case variant.AzureTDX{}:
+		tdxAction()
+	}
+}
+
+// isInputNewerThanOtherSEVSNPVersion compares all version fields and returns true if any input field is newer.
+func isInputNewerThanOtherSEVSNPVersion(input, other attestationconfigapi.SEVSNPVersion) bool {
+	if input == other {
+		return false
+	}
+	if input.TEE < other.TEE {
+		return false
+	}
+	if input.SNP < other.SNP {
+		return false
+	}
+	if input.Microcode < other.Microcode {
+		return false
+	}
+	if input.Bootloader < other.Bootloader {
+		return false
+	}
+	return true
+}
+
+func isInputNewerThanOtherTDXVersion(input, other attestationconfigapi.TDXVersion) bool {
+	if input.PCESVN < other.PCESVN {
+		return false
+	}
+	if input.QESVN < other.QESVN {
+		return false
+	}
+
+	// Validate component-wise security version numbers
+	for idx, inputVersion := range input.TEETCBSVN {
+		if inputVersion < other.TEETCBSVN[idx] {
+			return false
+		}
+	}
+
+	return true
+}
diff --git a/internal/api/attestationconfigapi/cli/client/reportersnp_test.go b/internal/api/attestationconfigapi/cli/client/reporter_test.go
similarity index 95%
rename from internal/api/attestationconfigapi/cli/client/reportersnp_test.go
rename to internal/api/attestationconfigapi/cli/client/reporter_test.go
index ea80b09800..b5018303d0 100644
--- a/internal/api/attestationconfigapi/cli/client/reportersnp_test.go
+++ b/internal/api/attestationconfigapi/cli/client/reporter_test.go
@@ -59,7 +59,7 @@ func TestIsInputNewerThanLatestAPI(t *testing.T) {
 	}
 	for name, tc := range testCases {
 		t.Run(name, func(t *testing.T) {
-			isNewer := isInputNewerThanOtherVersion(tc.input, tc.latest)
+			isNewer := isInputNewerThanOtherSEVSNPVersion(tc.input, tc.latest)
 			assert.Equal(t, tc.expect, isNewer)
 		})
 	}
diff --git a/internal/api/attestationconfigapi/cli/client/reportersnp.go b/internal/api/attestationconfigapi/cli/client/reportersnp.go
deleted file mode 100644
index 381aa2531d..0000000000
--- a/internal/api/attestationconfigapi/cli/client/reportersnp.go
+++ /dev/null
@@ -1,207 +0,0 @@
-/*
-Copyright (c) Edgeless Systems GmbH
-
-SPDX-License-Identifier: AGPL-3.0-only
-*/
-
-package client
-
-import (
-	"context"
-	"errors"
-	"fmt"
-	"path"
-	"sort"
-	"strings"
-	"time"
-
-	"github.com/edgelesssys/constellation/v2/internal/api/attestationconfigapi"
-	"github.com/edgelesssys/constellation/v2/internal/api/client"
-	"github.com/edgelesssys/constellation/v2/internal/attestation/variant"
-)
-
-// cachedVersionsSubDir is the subdirectory in the bucket where the cached versions are stored.
-const cachedVersionsSubDir = "cached-versions"
-
-// ErrNoNewerVersion is returned if the input version is not newer than the latest API version.
-var ErrNoNewerVersion = errors.New("input version is not newer than latest API version")
-
-func reportVersionDir(attestation variant.Variant) string {
-	return path.Join(attestationconfigapi.AttestationURLPath, attestation.String(), cachedVersionsSubDir)
-}
-
-// UploadSEVSNPVersionLatest saves the given version to the cache, determines the smallest
-// TCB version in the cache among the last cacheWindowSize versions and updates
-// the latest version in the API if there is an update.
-// force can be used to bypass the validation logic against the cached versions.
-func (c Client) UploadSEVSNPVersionLatest(
-	ctx context.Context, attestationVariant variant.Variant,
-	inputVersion, latestVersionInAPI attestationconfigapi.SEVSNPVersion,
-	now time.Time, force bool,
-) error {
-	// Start by uploading the new version to the cache.
-	if err := c.cacheSEVSNPVersion(ctx, attestationVariant, inputVersion, now); err != nil {
-		return fmt.Errorf("reporting version: %w", err)
-	}
-
-	// If force is set, immediately update the latest version to the new version in the API.
-	if force {
-		return c.uploadSEVSNPVersion(ctx, attestationVariant, inputVersion, now)
-	}
-
-	// Otherwise, check the cached versions and update the latest version in the API if necessary.
-	versionDates, err := c.listCachedVersions(ctx, attestationVariant)
-	if err != nil {
-		return fmt.Errorf("list reported versions: %w", err)
-	}
-	if len(versionDates) < c.cacheWindowSize {
-		c.log.Warn(fmt.Sprintf("Skipping version update, found %d, expected %d reported versions.", len(versionDates), c.cacheWindowSize))
-		return nil
-	}
-
-	minVersion, minDate, err := c.findMinSEVSNPVersion(ctx, attestationVariant, versionDates)
-	if err != nil {
-		return fmt.Errorf("get minimal version: %w", err)
-	}
-	c.log.Info(fmt.Sprintf("Found minimal version: %+v with date: %s", minVersion, minDate))
-
-	if !isInputNewerThanOtherVersion(minVersion, latestVersionInAPI) {
-		c.log.Info(fmt.Sprintf("Input version: %+v is not newer than latest API version: %+v. Skipping list update", minVersion, latestVersionInAPI))
-		return ErrNoNewerVersion
-	}
-
-	c.log.Info(fmt.Sprintf("Input version: %+v is newer than latest API version: %+v", minVersion, latestVersionInAPI))
-	t, err := time.Parse(VersionFormat, minDate)
-	if err != nil {
-		return fmt.Errorf("parsing date: %w", err)
-	}
-
-	if err := c.uploadSEVSNPVersion(ctx, attestationVariant, minVersion, t); err != nil {
-		return fmt.Errorf("uploading version: %w", err)
-	}
-
-	c.log.Info(fmt.Sprintf("Successfully uploaded new SEV-SNP version: %+v", minVersion))
-	return nil
-}
-
-// uploadSEVSNPVersion uploads the latest version numbers from a SEV-SNP report.
-// The version name is the UTC timestamp of the date.
-// The /list entry stores the version name + .json suffix.
-func (c Client) uploadSEVSNPVersion(ctx context.Context, attestation variant.Variant, version attestationconfigapi.SEVSNPVersion, date time.Time) error {
-	versions, err := c.List(ctx, attestation)
-	if err != nil {
-		return fmt.Errorf("fetch version list: %w", err)
-	}
-	if !attestation.Equal(versions.Variant) {
-		return nil
-	}
-
-	dateStr := date.Format(VersionFormat) + ".json"
-	var ops []crudCmd
-
-	ops = append(ops, putCmd{
-		apiObject: apiSEVSNPVersion{version: dateStr, variant: attestation, SEVSNPVersion: version, cached: false},
-		signer:    c.signer,
-	})
-
-	versions.AddVersion(dateStr)
-
-	ops = append(ops, putCmd{
-		apiObject: versions,
-		signer:    c.signer,
-	})
-
-	return executeAllCmds(ctx, c.s3Client, ops)
-}
-
-// cacheSEVSNPVersion uploads the latest observed version numbers of the SEVSNP. This version is used to later report the latest version numbers to the API.
-func (c Client) cacheSEVSNPVersion(ctx context.Context, variant variant.Variant, version attestationconfigapi.SEVSNPVersion, date time.Time) error {
-	dateStr := date.Format(VersionFormat) + ".json"
-	res := putCmd{
-		apiObject: apiSEVSNPVersion{version: dateStr, variant: variant, SEVSNPVersion: version, cached: true},
-		signer:    c.signer,
-	}
-	return res.Execute(ctx, c.s3Client)
-}
-
-// findMinSEVSNPVersion finds the minimal version (the version with the lowest SVNs) of the given version dates among the latest cached values in the version window size.
-func (c Client) findMinSEVSNPVersion(ctx context.Context, attestationVariant variant.Variant, versionDates []string) (attestationconfigapi.SEVSNPVersion, string, error) {
-	var minimalVersion *attestationconfigapi.SEVSNPVersion
-	var minimalDate string
-	sort.Sort(sort.Reverse(sort.StringSlice(versionDates))) // sort in reverse order to slice the latest versions
-	versionDates = versionDates[:c.cacheWindowSize]
-	sort.Strings(versionDates) // sort with oldest first to to take the minimal version with the oldest date
-
-	for _, date := range versionDates {
-		obj, err := client.Fetch(ctx, c.s3Client, apiSEVSNPVersion{version: date + ".json", variant: attestationVariant, cached: true})
-		if err != nil {
-			return attestationconfigapi.SEVSNPVersion{}, "", fmt.Errorf("get object: %w", err)
-		}
-		// Need to set this explicitly as the variant is not part of the marshalled JSON.
-		obj.variant = attestationVariant
-
-		if minimalVersion == nil {
-			minimalVersion = &obj.SEVSNPVersion
-			minimalDate = date
-			continue
-		}
-
-		// If the current minimal version has newer versions than the one we just fetched,
-		// update the minimal version to the older version.
-		if isInputNewerThanOtherVersion(*minimalVersion, obj.SEVSNPVersion) {
-			minimalVersion = &obj.SEVSNPVersion
-			minimalDate = date
-		}
-	}
-
-	return *minimalVersion, minimalDate, nil
-}
-
-// isInputNewerThanOtherVersion compares all version fields and returns true if any input field is newer.
-func isInputNewerThanOtherVersion(input, other attestationconfigapi.SEVSNPVersion) bool {
-	if input == other {
-		return false
-	}
-	if input.TEE < other.TEE {
-		return false
-	}
-	if input.SNP < other.SNP {
-		return false
-	}
-	if input.Microcode < other.Microcode {
-		return false
-	}
-	if input.Bootloader < other.Bootloader {
-		return false
-	}
-	return true
-}
-
-type apiSEVSNPVersion struct {
-	version string          `json:"-"`
-	variant variant.Variant `json:"-"`
-	cached  bool            `json:"-"`
-	attestationconfigapi.SEVSNPVersion
-}
-
-// JSONPath returns the path to the JSON file for the request to the config api.
-// This is the path to the cached version in the S3 bucket.
-func (c apiSEVSNPVersion) JSONPath() string {
-	if c.cached {
-		return path.Join(reportVersionDir(c.variant), c.version)
-	}
-	return path.Join(attestationconfigapi.AttestationURLPath, c.variant.String(), c.version)
-}
-
-// ValidateRequest validates the request.
-func (c apiSEVSNPVersion) ValidateRequest() error {
-	if !strings.HasSuffix(c.version, ".json") {
-		return fmt.Errorf("version has no .json suffix")
-	}
-	return nil
-}
-
-// Validate is a No-Op at the moment.
-func (c apiSEVSNPVersion) Validate() error {
-	return nil
-}
diff --git a/internal/api/attestationconfigapi/cli/client/reportertdx.go b/internal/api/attestationconfigapi/cli/client/reportertdx.go
deleted file mode 100644
index 1ca47e2060..0000000000
--- a/internal/api/attestationconfigapi/cli/client/reportertdx.go
+++ /dev/null
@@ -1,197 +0,0 @@
-/*
-Copyright (c) Edgeless Systems GmbH
-
-SPDX-License-Identifier: AGPL-3.0-only
-*/
-
-package client
-
-import (
-	"bytes"
-	"context"
-	"fmt"
-	"path"
-	"sort"
-	"strings"
-	"time"
-
-	"github.com/edgelesssys/constellation/v2/internal/api/attestationconfigapi"
-	"github.com/edgelesssys/constellation/v2/internal/api/client"
-	"github.com/edgelesssys/constellation/v2/internal/attestation/variant"
-)
-
-// UploadTDXVersionLatest saves the given version to the cache, determines the smallest
-// TCB version in the cache among the last cacheWindowSize versions and updates
-// the latest version in the API if there is an update.
-// force can be used to bypass the validation logic against the cached versions.
-func (c Client) UploadTDXVersionLatest(
-	ctx context.Context, attestationVariant variant.Variant,
-	inputVersion, latestVersionInAPI attestationconfigapi.TDXVersion,
-	now time.Time, force bool,
-) error {
-	// Start by uploading the new version to the cache.
-	if err := c.cacheTDXVersion(ctx, attestationVariant, inputVersion, now); err != nil {
-		return fmt.Errorf("reporting version: %w", err)
-	}
-
-	// If force is set, immediately update the latest version to the new version in the API.
-	if force {
-		return c.uploadTDXVersion(ctx, attestationVariant, inputVersion, now)
-	}
-
-	// Otherwise, check the cached versions and update the latest version in the API if necessary.
-	versionDates, err := c.listCachedVersions(ctx, attestationVariant)
-	if err != nil {
-		return fmt.Errorf("list reported versions: %w", err)
-	}
-
-	if len(versionDates) < c.cacheWindowSize {
-		c.log.Warn(fmt.Sprintf("Skipping version update, found %d, expected %d reported versions.", len(versionDates), c.cacheWindowSize))
-		return nil
-	}
-
-	minVersion, minDate, err := c.findMinTDXVersion(ctx, attestationVariant, versionDates)
-	if err != nil {
-		return fmt.Errorf("get minimal version: %w", err)
-	}
-	c.log.Info(fmt.Sprintf("Found minimal version: %+v with date: %s", minVersion, minDate))
-
-	if !isInputNewerThanOtherTDXVersion(minVersion, latestVersionInAPI) {
-		c.log.Info(fmt.Sprintf("Input version: %+v is not newer than latest API version: %+v. Skipping list update", minVersion, latestVersionInAPI))
-		return ErrNoNewerVersion
-	}
-
-	c.log.Info(fmt.Sprintf("Input version: %+v is newer than latest API version: %+v", minVersion, latestVersionInAPI))
-	t, err := time.Parse(VersionFormat, minDate)
-	if err != nil {
-		return fmt.Errorf("parsing date: %w", err)
-	}
-
-	if err := c.uploadTDXVersion(ctx, attestationVariant, minVersion, t); err != nil {
-		return fmt.Errorf("uploading version: %w", err)
-	}
-
-	c.log.Info(fmt.Sprintf("Successfully uploaded new TDX version: %+v", minVersion))
-	return nil
-}
-
-// uploadTDXVersion uploads the latest version numbers from a TDX report.
-// The version name is the UTC timestamp of the date.
-// The /list entry stores the version name + .json suffix.
-func (c Client) uploadTDXVersion(ctx context.Context, attestation variant.Variant, version attestationconfigapi.TDXVersion, date time.Time) error {
-	versions, err := c.List(ctx, attestation)
-	if err != nil {
-		return fmt.Errorf("fetch version list: %w", err)
-	}
-	if !attestation.Equal(versions.Variant) {
-		return nil
-	}
-
-	dateStr := date.Format(VersionFormat) + ".json"
-	var ops []crudCmd
-
-	ops = append(ops, putCmd{
-		apiObject: apiTDXVersion{version: dateStr, variant: attestation, TDXVersion: version, cached: false},
-		signer:    c.signer,
-	})
-
-	versions.AddVersion(dateStr)
-
-	ops = append(ops, putCmd{
-		apiObject: versions,
-		signer:    c.signer,
-	})
-
-	return executeAllCmds(ctx, c.s3Client, ops)
-}
-
-func (c Client) cacheTDXVersion(ctx context.Context, variant variant.Variant, version attestationconfigapi.TDXVersion, date time.Time) error {
-	dateStr := date.Format(VersionFormat) + ".json"
-	res := putCmd{
-		apiObject: apiTDXVersion{version: dateStr, variant: variant, TDXVersion: version, cached: true},
-		signer:    c.signer,
-	}
-	return res.Execute(ctx, c.s3Client)
-}
-
-func (c Client) findMinTDXVersion(ctx context.Context, attestationVariant variant.Variant, versionDates []string) (attestationconfigapi.TDXVersion, string, error) {
-	var minimalVersion *attestationconfigapi.TDXVersion
-	var minimalDate string
-	sort.Sort(sort.Reverse(sort.StringSlice(versionDates)))
-	versionDates = versionDates[:c.cacheWindowSize]
-	sort.Strings(versionDates)
-
-	for _, date := range versionDates {
-		obj, err := client.Fetch(ctx, c.s3Client, apiTDXVersion{version: date + ".json", variant: attestationVariant, cached: true})
-		if err != nil {
-			return attestationconfigapi.TDXVersion{}, "", fmt.Errorf("fetching version: %w", err)
-		}
-		obj.variant = attestationVariant
-
-		if minimalVersion == nil {
-			minimalVersion = &obj.TDXVersion
-			minimalDate = date
-			continue
-		}
-
-		// If the current minimal version has newer versions than the one we just fetched,
-		// update the minimal version to the older version.
-		if isInputNewerThanOtherTDXVersion(*minimalVersion, obj.TDXVersion) {
-			minimalVersion = &obj.TDXVersion
-			minimalDate = date
-		}
-	}
-
-	return *minimalVersion, minimalDate, nil
-}
-
-func isInputNewerThanOtherTDXVersion(input, other attestationconfigapi.TDXVersion) bool {
-	if input.PCESVN < other.PCESVN {
-		return false
-	}
-	if input.QESVN < other.QESVN {
-		return false
-	}
-
-	// Validate component-wise security version numbers
-	for idx, inputVersion := range input.TEETCBSVN {
-		if inputVersion < other.TEETCBSVN[idx] {
-			return false
-		}
-	}
-
-	if bytes.Equal(input.QEVendorID[:], other.QEVendorID[:]) && bytes.Equal(input.XFAM[:], other.XFAM[:]) {
-		return false
-	}
-
-	return true
-}
-
-type apiTDXVersion struct {
-	version string          `json:"-"`
-	variant variant.Variant `json:"-"`
-	cached  bool            `json:"-"`
-	attestationconfigapi.TDXVersion
-}
-
-// JSONPath returns the path to the JSON file for the request to the config api.
-// This is the path to the cached version in the S3 bucket.
-func (c apiTDXVersion) JSONPath() string {
-	if c.cached {
-		return path.Join(reportVersionDir(c.variant), c.version)
-	}
-	return path.Join(attestationconfigapi.AttestationURLPath, c.variant.String(), c.version)
-}
-
-// ValidateRequest validates the request.
-func (c apiTDXVersion) ValidateRequest() error {
-	if !strings.HasSuffix(c.version, ".json") {
-		return fmt.Errorf("version has no .json suffix")
-	}
-	return nil
-}
-
-// Validate is a No-Op at the moment.
-func (c apiTDXVersion) Validate() error {
-	return nil
-}
diff --git a/internal/api/attestationconfigapi/cli/upload.go b/internal/api/attestationconfigapi/cli/upload.go
index 5943c0ad26..ea64e05b40 100644
--- a/internal/api/attestationconfigapi/cli/upload.go
+++ b/internal/api/attestationconfigapi/cli/upload.go
@@ -114,43 +114,54 @@ func uploadReport(
 		}
 	}
 
+	var newVersion, latestVersion any
 	switch cfg.variant {
 	case variant.AWSSEVSNP{}, variant.AzureSEVSNP{}, variant.GCPSEVSNP{}:
+		latestVersion = latestVersionInAPI.SEVSNPVersion
+
 		log.Info(fmt.Sprintf("Reading SNP report from file: %s", cfg.path))
 		var report verify.Report
 		if err := fs.ReadJSON(cfg.path, &report); err != nil {
 			return fmt.Errorf("reading snp report: %w", err)
 		}
 
-		newVersion := convertTCBVersionToSNPVersion(report.SNPReport.LaunchTCB)
+		newVersion = convertTCBVersionToSNPVersion(report.SNPReport.LaunchTCB)
 		log.Info(fmt.Sprintf("Input SNP report: %+v", newVersion))
 
-		if err := apiClient.UploadSEVSNPVersionLatest(
-			ctx, cfg.variant, newVersion, latestVersionInAPI.SEVSNPVersion, cfg.uploadDate, cfg.force,
-		); err != nil && !errors.Is(err, client.ErrNoNewerVersion) {
-			return fmt.Errorf("updating latest version: %w", err)
-		}
+		//if err := apiClient.UploadSEVSNPVersionLatest(
+		//	ctx, cfg.variant, newVersion, latestVersionInAPI.SEVSNPVersion, cfg.uploadDate, cfg.force,
+		//); err != nil && !errors.Is(err, client.ErrNoNewerVersion) {
+		//	return fmt.Errorf("updating latest version: %w", err)
+		//}
 
 	case variant.AzureTDX{}:
+		latestVersion = latestVersionInAPI.TDXVersion
+
 		log.Info(fmt.Sprintf("Reading TDX report from file: %s", cfg.path))
 		var report *tdx.QuoteV4
 		if err := fs.ReadJSON(cfg.path, &report); err != nil {
 			return fmt.Errorf("reading tdx report: %w", err)
 		}
 
-		newVersion := convertQuoteToTDXVersion(report)
+		newVersion = convertQuoteToTDXVersion(report)
 		log.Info(fmt.Sprintf("Input TDX report: %+v", newVersion))
 
-		if err := apiClient.UploadTDXVersionLatest(
-			ctx, cfg.variant, newVersion, latestVersionInAPI.TDXVersion, cfg.uploadDate, cfg.force,
-		); err != nil && !errors.Is(err, client.ErrNoNewerVersion) {
-			return fmt.Errorf("updating latest version: %w", err)
-		}
+		//if err := apiClient.UploadTDXVersionLatest(
+		//	ctx, cfg.variant, newVersion, latestVersionInAPI.TDXVersion, cfg.uploadDate, cfg.force,
+		//); err != nil && !errors.Is(err, client.ErrNoNewerVersion) {
+		//	return fmt.Errorf("updating latest version: %w", err)
+		//}
 
 	default:
 		return fmt.Errorf("variant %s not supported", cfg.variant)
 	}
 
+	if err := apiClient.UploadLatestVersion(
+		ctx, cfg.variant, newVersion, latestVersion, cfg.uploadDate, cfg.force,
+	); err != nil && !errors.Is(err, client.ErrNoNewerVersion) {
+		return fmt.Errorf("updating latest version: %w", err)
+	}
+
 	return nil
 }