No, and there is currently no way for us to selectively delay the OS updates on certain machines. To offer some assurance, we have yet to see an issue arise from an incompatible OS update, if that is a concern.
By default, we routinely perform an internal gap analysis to verify all customer servers have had security patches applied, to be as proactive about maintaining the integrity of your data as we can. Basic server packages are updated daily. PHP, NGINX, and Apache packages are updated by our Information Security team to account for the additional special care required to process those.
Note: Should any updates require a bit of downtime, these events are communicated with you in advance so we can properly coordinate with your team on expectations and next steps.