This issue is for structured design-partner feedback.
AssureLoop is an open-source release assurance workflow for embedded firmware. The current v0.3 hardware-alpha focuses on Zephyr + MCUboot and the ST NUCLEO-H563ZI board.
The goal is to understand whether this workflow matches real embedded release pain.
Current workflow:
- Build Zephyr firmware.
- Produce signed image artifacts.
- Generate SBOM files.
- Generate a release manifest.
- Package evidence into an evidence bundle.
- Verify evidence bundle contents and hashes.
- Create an update package.
- Verify update package payload, target, and version behavior.
- Validate MCUboot lifecycle behavior on hardware.
Questions for embedded teams:
- How do you currently prove what firmware was shipped?
- Do you generate SBOMs for firmware releases?
- Do you have a release manifest or artifact hash record today?
- How do you verify update packages before deployment?
- Who inside your organization cares about firmware release evidence?
- What compliance, customer-security, or audit requirements affect your firmware releases?
- Would AssureLoop fit beside your existing build/release process?
- What board, RTOS, or release artifact support would matter most?
- What would make AssureLoop too difficult to adopt?
- What is missing from the current v0.3 workflow?
This is not a sales thread. The goal is to learn what real teams need before expanding the project.
This issue is for structured design-partner feedback.
AssureLoop is an open-source release assurance workflow for embedded firmware. The current v0.3 hardware-alpha focuses on Zephyr + MCUboot and the ST NUCLEO-H563ZI board.
The goal is to understand whether this workflow matches real embedded release pain.
Current workflow:
Questions for embedded teams:
This is not a sales thread. The goal is to learn what real teams need before expanding the project.