Why is unattended-upgrades activated by default?

upgrade apt server lts

Another way to disable unattended upgrades is to

Edit /etc/apt/apt.conf.d/20auto-updates and set "Unattended-Upgrade" to "0".

APT::Periodic::Unattended-Upgrade "0";

I can't explain why it gives you the option and then ignores your response. Without installing, I can't confirm that behaviour, however, it's easy to fix it.

Edit /etc/apt/apt.conf.d/50unattended-upgrades and comment out the -security line.

// Automatically upgrade packages from these (origin:archive) pairs
Unattended-Upgrade::Allowed-Origins {
//      "${distro_id}:${distro_codename}-security";
//      "${distro_id}:${distro_codename}-updates";
//      "${distro_id}:${distro_codename}-proposed";
//      "${distro_id}:${distro_codename}-backports";
};

Related

Spawn new Terminator tabs from Bash script
Torify and Torsocks not working
SSH with a user alias?
How does the history command work?
Where is ~/.bash_profile located in Windows Subsystem for Linux? [duplicate]
Disable Ctrl-Alt-L's behavior of locking the screen
Is systemctl daemon-reload equal systemctl restart service?
My right ALT key is not working
Clicking in ssh terminal causes 'junk' characters [0;83;32M0] after tmux
Where do applications typically store data?
How do I run Tomboy in the notification area at startup?
Can I use Skype through Empathy?