Deployment packages need to be defined and tested before you deploy them in your network. Scanning of updates from software manufacturers would be a process specific to every product, so you likely won't be able to implement this.
We are planning to release an add-on product in the near future which will allow you to always download deployment packages for the most recent versions of common software. However we don't have a release date yet.
For instructions on how to create a deployment package, please refer to
this KB article.