diff --git a/roles/node/tasks/main.yml b/roles/node/tasks/main.yml
index 5b2788e..a79ea68 100644
--- a/roles/node/tasks/main.yml
+++ b/roles/node/tasks/main.yml
@@ -10,6 +10,10 @@
     state: present
     install_recommends: false
 
+- name: Enable unattended-upgrades
+  ansible.builtin.include_tasks:
+    file: unattended-upgrades.yml
+
 - name: Remove unused dependencies
   ansible.builtin.apt:
     autoremove: true
@@ -18,6 +22,6 @@
   ansible.builtin.include_tasks:
     file: networking/main.yml
 
-- name: Configure networking
+- name: Install Kubernetes
   ansible.builtin.include_tasks:
     file: kubernetes.yml
diff --git a/roles/node/tasks/unattended-upgrades.yml b/roles/node/tasks/unattended-upgrades.yml
new file mode 100644
index 0000000..dc961d7
--- /dev/null
+++ b/roles/node/tasks/unattended-upgrades.yml
@@ -0,0 +1,18 @@
+- name: Install unattended-upgrades package
+  ansible.builtin.apt:
+    name: unattended-upgrades
+    state: present
+    update_cache: true
+
+- name: Reconfigure unattended-upgrades
+  ansible.builtin.command:
+    cmd: dpkg-reconfigure --frontend=noninteractive unattended-upgrades
+  register: unattended_upgrades
+  failed_when: unattended_upgrades.rc != 0
+  changed_when: unattended_upgrades.rc == 0
+
+- name: Enable daily upgrades
+  ansible.builtin.systemd_service:
+    name: apt-daily-upgrade.timer
+    enabled: true
+    state: restarted