From b3f283bc12bbb838678efa690ef7f493954b565c Mon Sep 17 00:00:00 2001
From: Joe Richey <joerichey@google.com>
Date: Thu, 6 Mar 2025 18:32:23 -0800
Subject: [PATCH] Try to fix Update Cargo.lock job

We need more permission. Also does some other minor cleanup and allows
us to run the workflow manually, so I can make sure it works.

Signed-off-by: Joe Richey <joerichey@google.com>
---
 .github/workflows/lock_upd.yml | 13 ++++++-------
 1 file changed, 6 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/lock_upd.yml b/.github/workflows/lock_upd.yml
index ef086f8f6..4f1b9ba5a 100644
--- a/.github/workflows/lock_upd.yml
+++ b/.github/workflows/lock_upd.yml
@@ -1,12 +1,15 @@
 name: Update Cargo.lock
 
 on:
+  # Allow manually running the update
+  workflow_dispatch:
+  # Run every Sunday at 00:00 UTC
   schedule:
-    # Run every Sunday at 00:00 UTC
     - cron: '0 0 * * 0'
 
+# We need permissions to commit code and open a pull request
 permissions:
-  contents: read
+  contents: write
   pull-requests: write
 
 jobs:
@@ -14,15 +17,11 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
-      - uses: dtolnay/rust-toolchain@master
-        with:
-          toolchain: stable
+      - uses: dtolnay/rust-toolchain@stable
       - name: Update dependencies
         run: cargo update
       - name: Create Pull Request
         uses: peter-evans/create-pull-request@v7
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         with:
           title: "Update Cargo.lock"
           commit-message: "Update Cargo.lock"