ARMS Act
Sponsored By: Representative Crane
Introduced
Summary
This bill would require the Transportation Security Administration to create a risk-informed, headquarters-based covert testing program to find aviation security weaknesses. It pairs regular covert tests with required fixes, retesting, and annual public and congressional reports.
Show full summary
- Air travelers would face stronger, data-driven screening checks aimed at uncovering weaknesses that routine checks miss.
- Each Category X airport would be included in testing at least once per fiscal year and TSA must publish annual, aggregate pass and failure percentages for Category X screening performance.
- TSA would run not fewer than three covert testing project scenarios and must document the methodology and assumptions to yield statistically valid results. When tests identify vulnerabilities TSA must perform root cause analyses and follow timelines for mitigation decisions, milestones, retesting, and public reporting.
Your PRIA Score
Personalized for You
How does this bill affect your finances?
Sign up for a PRIA Policy Scan to see your personalized alignment score for this bill and every other piece of legislation we track. We analyze your financial profile against policy provisions to show you exactly what matters to your wallet.
Bill Overview
Analyzed Economic Effects
4 provisions identified: 4 benefits, 0 costs, 0 mixed.
Annual TSA test results for Congress and public
If enacted, TSA would send an unclassified report by November 30 of the first full fiscal year after enactment, and every year after. It would summarize test results, list vulnerabilities with dates, show mitigation status and retest results, and assess trends; a classified annex could be added. TSA must submit the report with its annual budget request to the named committees. TSA would also post a public summary by November 30 each year for Category X airports showing total tests, overall pass and failure rates as percentages, and general trends, without airport‑specific or scenario details.
New TSA covert testing at airports
If enacted, TSA would set up a headquarters-run covert testing program for airport passenger and baggage screening within 180 days. The program would run at least three risk‑informed test scenarios each year. Every Category X airport would be included at least once per fiscal year. TSA would use annual threat reviews and document methods so results are statistically valid and actionable.
TSA must fix and retest security gaps
If enacted, TSA would set rules to address vulnerabilities found in covert tests. TSA would complete a root cause analysis within 90 days of finding a vulnerability. Within 150 days, TSA would decide whether to mitigate it and, if so, set milestones and a target completion date; if not, TSA would document why. TSA would covertly retest no later than 180 days after fixes are finished to confirm they worked.
Independent review of TSA covert testing
If enacted, the Comptroller General would report within three years on whether TSA’s covert testing processes produce statistically valid data and find unmitigated vulnerabilities. The report would go to TSA and the two named congressional committees.
Sponsors & CoSponsors
Sponsor
Crane
AZ • R
Cosponsors
Rep. Gill, Brandon [R-TX-26]
TX • R
Sponsored 7/15/2025
Roll Call Votes
No roll call votes available for this bill.
View on Congress.gov