Menu
For example, I installed Chrome with Chocolatey. Do I need to turn off Chrome's auto-update, and use cup upgrade only?
348
It's generally better to keep auto-updates on so that you can get a timely security fix in case there's a vulnerability found in an app you're using—but whether you should enable or disable auto-updates comes down to personal preference.
Automatic Updater (AU)The Chocolatey Automatic Package Updater Module is a PowerShell module which implements functions that can be used to automate Chocolatey package updates.
Chocolatey is something you need if you've ever installed, upgraded, or removed software on Windows. It is an existing, proven, project that was started in 2011. For those familiar with *nix package managers, it is a binary package manager, sort of like yum or apt-get, but for Windows.
Installing Packages The Chocolatey client uses NuGet. Core. dll to obtain a package from the source repository. The package contents are installed into c:\programdata\chocolatey\lib<package id>.
tl;dr: No, you do not need to turn it off. You can if you desire using packaging avenues that offer it, but the recommendation is to use choco pin to suppress Chocolatey from managing the package upgrades. You can also use the auto sync feature of Chocolatey licensed editions to let it synchronize the tracking to the newer software versions.
Source: https://chocolatey.org/docs/how-to-install-upgrade-package-without-scripts#application-is-self-updating-like-google-chrome
Consider the following scenario:
Recommendation: You should pin the package to suppress package upgrades. The self-updating scenario is keeping you on the latest version and you want to stay up to date with the latest version that may have security fixes in addition to other things.
You should run
choco pin add -n=googlechrome
For more information see Pin Command.
It's considered an anti-pattern (due to security reasons) to turn off the auto-update aspect of the software in the packaging by default. However there are packages that exist to also turn off the auto-update as an additional opt-in for folks that prefer only to update through Chocolatey. The package visualstudiocode-disableautoupdate is a great example of this.
Licensed editions of Chocolatey automatically handle keeping the package in sync with the software updates with Package Synchronizer's automatic sync.
125
Before seeing ferventcoder's answer I have been following the install by a choco uninstall where I use the --skip-powershell and --skip-autouninstaller switches to prevent the actual uninstall from happening. This seems to make Chocolatey forget about the install so I still get the benefit of setting up a machine via a script but don't carry the mental overhead of seeing it in the outdated list going forward. I'm not sure if there are any negatives to this approach but happy to be re-educated and switch to pinning if there are any.
choco install GoogleChrome
choco uninstall GoogleChrome --skip-powershell --skip-autouninstaller
-y / --confirm switch intentionally omitted so copy pasters make their own decisions about trusting the sources.
22
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
