I think it should be pointed out that automatic upgrades tend to break things and potentially introduce new security vulnerabilites when updates haven't been QAed properly. Its good advice for the average user, but bad advice for environments where things need to be change controlled. It can also cause alerts in certain host based intrusion detection systems if not coordinated so its really best to be wary of that.
This is a good point. That's why we recommend either a robust CI/CD system (with good test coverage) or manually applying updates to a staging environment where you can test if the updates broke anything end-to-end before you roll them out to customers.
3 comments
[ 0.16 ms ] story [ 25.8 ms ] thread