[JohnFen]

The real sin is combining security updates with feature updates. An argument can be made for enforced security updates(1). There is no good argument for forcing feature updates.

Most security-only updates have a low risk of interfering with with the user or causing instability. Most feature updates have a high risk of doing so.

(1) Although I think there should be some way of disabling even those, even if that way is hard to find and/or cumbersome to keep the regular users away.

[jiggawatts]

The problem is that there's dozens of security updates every month, so even if you can skip feature updates, you'll have to reboot every Patch Tuesday anyway.

Even the Server Core edition, which has a much smaller "surface area" needs reboots almost every month.

[Fysi]

To be fair, they just need to bring hotpatching out of Intune/B2B licenses.

[kstrauser]

Alright, I can buy that. Although from a dev POV I can also appreciate the not-fun of testing a combinatorial explosion of security updates vs features.

[duskdozer]

Basically, if I trust you (the dev/software maker/whatever) to not change UIs and add in bullshit, I'm okay having auto updates on. Unfortunately can't trust much now