I am fine with auto updates. I don’t need new features from the updates only the security patches and Debian this days is pretty hard to enter and my clients are not public targets so I don’t need the extra effort to protect the server from the extra motivated hackers.
In case there were a serious issue with debian I would manually update.
I have seen errors in the past when updating nginx and not sticking to defaults (not overwrite) resulting in the deletion of the templates and therefore the websites don’t work anymore.