I’m not sure what you mean.
Keeping a system updated does include updating to the latest major operating system release when an older one no longer receives security updates.
Ansible (and other provisioning solutions) could help in the case where updates break an existing workflow by attempting to put the system back into the desired state. Of course if something broke after and update there’s a chance that trying to fix it will fail, but at least it would fail loudly during the provisioning process and you’d be able to see why.
reply