Add rust-maintain to auto-update Dependencies and auto-fix lints

[Swatinem]

See https://github.com/Swatinem/rust-maintain.

I published this action a while back, but haven’t hooked it up yet to an existing repo.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 98.52%. Comparing base (98cb909) to head (dd5e8bc).
Report is 1 commits behind head on main.

✅ All tests successful. No failed tests found.

Additional details and impacted files

@@            Coverage Diff             @@
##             main      #58      +/-   ##
==========================================
- Coverage   98.53%   98.52%   -0.02%     
==========================================
  Files          21       21              
  Lines        6775     6775              
==========================================
- Hits         6676     6675       -1     
- Misses         99      100       +1     

Components	Coverage Δ
core	98.60% <ø> (-0.02%)	⬇️
bindings	79.31% <ø> (ø)
python	100.00% <ø> (ø)

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[matt-codecov]

should we change our dependabot config in some way to delegate to this action?

[matt-codecov]

why is this?

[Swatinem]

Just a reminder about software supply chain issues and auditing your dependencies: https://github.com/Swatinem/rust-maintain?tab=readme-ov-file#permissions--security :-)

As this action is running with hightened permissions.

[Swatinem]

Well, good that I run this on a real world repo, there was two problems with this run:

• It didn’t trigger the CI job to run. This is weird and probably a github issue. PRs should trigger CI, no matter if the push happens from within CI or from a real human.
• Afterwards, it was complaining that the commit was not signed, as branch protection rules require that.