I've been bitten by pinning to latest versions before and definitely agree that where possible we should make sure that things are pinned exactly.
Then we can use tools like Whitesource Renovate / Dependabot to manage updates automatically.
Recommended read: Just say no to `:latest` - Platformers https://platformers.dev/log/2022-03-02-latest-literally-kills-puppies/