For example, you actively and intentionally go to the default software store, navigate to the updates tab, update a package you’ve already installed and clearly want, and do so from the official OS repository… This requires that you enter your password to protect you from what exactly?

I have never had this happen before across 3 distros, and I really doubt any casual user will have this experience either