I'm aware of the third party PPA workaround, but:
a) I'm not really sure it can be trusted (I don't know Alex Shkop, sorry)
b) I'm certain most people install Chromium from Canonical's repositories rather than PPA (Official or non-official). These people browse the Web with browsers that have known security vulnerabilities.
I believe the best way would be to treat chromium-browser updates as security updates (which they are), and push them to LTS releases, just like FireFox.
I'm aware of the third party PPA workaround, but:
a) I'm not really sure it can be trusted (I don't know Alex Shkop, sorry)
b) I'm certain most people install Chromium from Canonical's repositories rather than PPA (Official or non-official). These people browse the Web with browsers that have known security vulnerabilities.
I believe the best way would be to treat chromium-browser updates as security updates (which they are), and push them to LTS releases, just like FireFox.