Aria Desires

Oh we landed this a release or two ago! https://opensource.axo.dev/cargo-dist/book/reference/config.html#github-custom-job-permissions

This will be fixed as part of #841

Whoops i rebased the wrong PR, don't mind me.

@dependabot rebase

I almost started doing this in #793 and then quickly backed off as the abyss of that PR grew deeper and deeper... but like doing this would make that change...

Oh hmm! We should probably do a look over it at some point but I think yeah the main issues have been fixed. Although in a 1.0 we could breaks...

Remaining work is deleting deprecated fields: * system_info: can just do it * linkage: needs us to immediately update oranda too * announcement_changelog: see github_body * announcement_github_body: need some way...

Oh and maybe we should write some docs about philosophy/structure/patterns to follow when adding stuff to this

So this is an interesting one in that there's a few different interacting checks. Here we do a preliminary selection of what github runner to use for a given target...

We inherited the flags to force a minimum of tls 1.2 and https from rustup, where they were introduced to prevent redirects from ever downgrading the security: https://github.com/rust-lang/rustup/pull/1716 So in...