Assuming you’re a manufacturer, it would be really amazing if you were to adopt a system like this. Instead everyone currently tries to get you locked in the their own proprietary crappy system that’s going to be shut down in two years because everyone is smart enough to see through the scheme and doesn’t buy into it.

Check out the existing hass.io infrastructure and HassOS open-source project, which among other bits assist in pushing security updates:

* https://www.home-assistant.io/hassio/

* https://github.com/home-assistant/hassos

I looked at using hassOS as a base for my rpi project but I struggled with how exactly to do that. Looking at the readmes in that repo it doesn't look like anything has changed on the documentation front.

It's a Python service license under Apache 2.0. If you write tooling around it to perform updates/rollbacks (and whatever else you need) then yes.

For that Ubuntu Core seems more appropriate.

It's the kind of tooling that is a lot of work even though it might not seem like it at first sight.