Add weekly security-focused cargo update workflow for release branches

## Summary

Automate weekly `cargo update` PRs against release branches to pick up security patches in Rust dependencies. This complements the Docker image refresh workflow (#4330) by addressing dependency updates that can't be fixed by base image updates alone.

## Motivation

Some dependencies, like the vendored OpenSSL in `librdkafka`, won't be updated by refreshing the base Docker image. A weekly `cargo update` workflow would help ensure security patches in Rust dependencies are picked up promptly.

## Proposed Implementation

- Create a GitHub Actions workflow that runs weekly
- Target the latest release branch (e.g., `release-1.6`)
- Run `cargo update` and create a PR if there are changes
- Could use tools like [Dependabot](https://docs.github.com/en/code-security/dependabot) or a custom workflow with `cargo update`

## References

- Suggested by @pcholakov in #4330
- Related: Docker image refresh workflow (#4330)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add weekly security-focused cargo update workflow for release branches #4341

Summary

Motivation

Proposed Implementation

References

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Add weekly security-focused cargo update workflow for release branches #4341

Description

Summary

Motivation

Proposed Implementation

References

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions