I, for one, would not want my server to automatically update. Living on the bleeding edge of code is for wobbly Windows installations. IF it ever comes to that, all I ask- is the ability to DISABLE it. I'll let braver? souls test the waters first.
He's talking about vetted stable security patches, the same as mainline distros like Ubuntu do monthly security updates that are stable.
^This. We do automated security patching on our hypervisors at work from the official ubuntu repo on a 10 business day cycle (10% per day), pre-prod in the morning and prod in the afternoon. Now this is great when you have multiple environments, not so much for home.
What LT could do is maybe host their own repo that lags a couple days behind the os distro main so they can do their own automated testing and put the breaks on if there's any regression issues. The testing/repo updating could be automated to an extent: Pull from distro main, upgrade test-benches, validate, if pass push to LT repo mirror, else notify someone to investigate.