diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index c2a62923b..e60199fed 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -4,6 +4,9 @@ updates:
     directory: "/"
     schedule:
       interval: weekly
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-minor", "version-update:semver-patch"]
   - package-ecosystem: "github-actions"
     directory: "/"
     schedule:
diff --git a/.github/workflows/cargo-update.yml b/.github/workflows/cargo-update.yml
new file mode 100644
index 000000000..671e40d8e
--- /dev/null
+++ b/.github/workflows/cargo-update.yml
@@ -0,0 +1,27 @@
+---
+name: Update Deps
+
+on:
+  workflow_dispatch:
+  # Run every Monday
+  schedule:
+    - cron: '30 5 * * 1'
+
+jobs:
+  cargo-update:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout the repo
+        uses: actions/checkout@v3
+
+      - name: Cargo update
+        run: cargo update
+
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v4
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+          commit-message: "build: Bump dependencies"
+          body: |
+            Bump dependencies in Cargo.lock for all SemVer-compatible updates.
+          branch: auto-cargo-update