I am exclusively a Linux user (mobile and desktop) but I gotta be fair: if updates upon installation are the main complaint...

Pretty sure some vendors update phones in the store to avoid bothering the customer with it. Seems like a lot of effort to boot the full inventory's amount of phones every time there's a security patch only so people don't have to download a diff on first launch (edit: found it https://www.macrumors.com/2024/03/27/what-new-machine-to-upd...)