Document cron job for workflow updates

[guineveresaenger]

Fixes #237.

[guineveresaenger]

@danielrbradley please especially verify that the token instructions are correct.

cc @ringods for 👀 as well.

[github-actions]

Does the PR have any schema changes?

Found 1 breaking change:

Functions

• 🔴 "xyz:index/dataSource:DataSource" missing

New functions:

• index/getDataSource.getDataSource

Maintainer note: consult the runbook for dealing with any breaking changes.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 0.00%. Comparing base (d050581) to head (3383d94).
Report is 4 commits behind head on main.

Additional details and impacted files

@@          Coverage Diff          @@
##            main    #240   +/-   ##
=====================================
  Coverage   0.00%   0.00%           
=====================================
  Files          3       3           
  Lines        167     167           
=====================================
  Misses       167     167           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[ringods]

@guineveresaenger to avoid confusion, I would list exactly what is needed. If people only would set contents: write permission on the repo, that would not be enough. It also requires pull-requests: write permission.

https://github.com/pulumi/pulumi-tf-provider-boilerplate/blob/main/.github/workflows/resync-build.yml#L10-L11

Below is an image of how my token for Pulumiverse providers is setup for my fine grained Github access token.

[danielrbradley]

Yup, that's a nice step forward in the explaining the process. Ringo's suggestion on the token permissions is a good one to include too as it would be very easy to produce a non-working token.