Apologies if this has been discussed to death..
I realize there may be issues with things possibly getting broken.. but I think it's a security issue to not be running sudo apt-get update && sudo apt-get upgrade -y. It might be nice to have a security tab that discusses what fixes are available and the option to apply them. I don't think it's a good idea to wait for the next release of an Octopi image.
I really don't like the idea of putting it in cron as that could go off in the middle of a print and be really bad.
I see a bunch of threads discussing how to run the commands to do it and some discuss if that is a good idea as it could possibly break things.. but I don't see any that discuss the security implications of not doing it. Perhaps we could overcome the issue of it possibly breaking things with a way to back it out if it did. A rollback like idea?
I guess it could be made into a plugin, but it seems to me to be more of a core program functionality.
I admit I am security paranoid, but that is not necessarily a bad thing