Ledger is sacrificing the privacy of all users with updates that no one really needs.
A clear vision and mission for open-source wallets will be a sign of how they will be in the future.
The privacy is the smaller of two big problems that Ledger is creating. The second one is the security. You are not only sharing your KYC data with some companies and organizations in the UK, USA, and France, you are sharing shards of your seed as well.
As for the vulnerability of their devices, it can probably still be fixed with some further development.
That's the thing, it can't. Their hardware vulnerabilities are unfixable for the Model One and Model T.
The Ledger cannot be compromised if, after the update, you did not click "YES" when the question appeared there - "Whether to add a recovery function".
If you clicked NO, then the Ledger remains in the previous state. Without the possibility of remote recovery by other people.
In theory, it's you who has to agree with sharding and sharing your seed. In reality, no one knows. It's a matter of trust and this time it's too dangerous.
I understand the solution you are suggesting. But how and how can we assemble a hardware wallet for ourselves? How is it that an ordinary person like me, who knows nothing about hardware engineering or basic assembly techniques, can do it on my own?
Don't do it yourself if you are not comfortable with it. Building your own HW and signing devices is for the more advanced users. You can always opt for an airgapped solution if you have a spare desktop device somewhere.