DefectDojo
diff --git a/‎.github/workflows/build-docker-images-for-testing.yml
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/build-docker-images-for-testing.yml
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/close-stale.yml
Lines changed: 27 additions & 0 deletions b/‎.github/workflows/close-stale.yml
Lines changed: 27 additions & 0 deletions
diff --git a/‎.github/workflows/gh-pages.yml
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/gh-pages.yml
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/integration-tests.yml
Lines changed: 7 additions & 0 deletions b/‎.github/workflows/integration-tests.yml
Lines changed: 7 additions & 0 deletions
diff --git a/‎.github/workflows/plantuml.yml
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/plantuml.yml
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/release-1-create-pr.yml
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/release-1-create-pr.yml
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/release-3-master-into-dev.yml
Lines changed: 2 additions & 2 deletions b/‎.github/workflows/release-3-master-into-dev.yml
Lines changed: 2 additions & 2 deletions
diff --git a/‎.github/workflows/release-x-manual-docker-containers.yml
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/release-x-manual-docker-containers.yml
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/release-x-manual-helm-chart.yml
Lines changed: 2 additions & 2 deletions b/‎.github/workflows/release-x-manual-helm-chart.yml
Lines changed: 2 additions & 2 deletions
diff --git a/‎.github/workflows/validate_docs_build.yml
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/validate_docs_build.yml
Lines changed: 1 addition & 1 deletion
@@ -47,7 +47,7 @@ jobs:
         run: echo "IMAGE_REPOSITORY=$(echo ${{ github.repository }} | tr '[:upper:]' '[:lower:]')" >> $GITHUB_ENV
 
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2 # v3.10.0
+        uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
 
       - name: Build
         id: docker_build
 
@@ -0,0 +1,27 @@
+name: Close Stale Issues and PRs
+
+on:
+  schedule:
+    # Run daily at 02:00 UTC
+    - cron: '0 2 * * *'
+  workflow_dispatch:
+    # Allow manual triggering
+
+permissions:
+  issues: write
+  pull-requests: write
+
+jobs:
+  close-stale:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Close stale issues and PRs
+        uses: actions/stale@v9
+        with:
+          # Disable automatic stale marking - only close manually labeled items
+          days-before-stale: -1
+          days-before-close: 7
+          stale-issue-label: 'stale'
+          stale-pr-label: 'stale'
+          close-issue-message: 'This issue has been automatically closed because it was manually labeled as stale. If you believe this was closed in error, please reopen it and remove the stale label.'
+          close-pr-message: 'This PR has been automatically closed because it was manually labeled as stale. If you believe this was closed in error, please reopen it and remove the stale label.'
@@ -21,7 +21,7 @@ jobs:
       - name: Setup Node
         uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
         with:
-          node-version: '22.16.0'
+          node-version: '22.18.0'
 
       - name: Cache dependencies
         uses: actions/cache@5a3ec84eff668545956fd18022155c47e93e2684 # v4.2.3
 
@@ -31,10 +31,17 @@ jobs:
           "tests/search_test.py",
           "tests/file_test.py",
           "tests/dedupe_test.py",
+          "tests/announcement_banner_test.py",
+          "tests/close_old_findings_dedupe_test.py",
+          "tests/close_old_findings_test.py",
+          "tests/false_positive_history_test.py",
           "tests/check_various_pages.py",
+          # "tests/import_scanner_test.py",
+          # "tests/zap.py",
           "tests/notifications_test.py",
           "tests/tool_config.py",
           "openapi-validatator",
+
         ]
         os: [alpine, debian]
       fail-fast: false
 
@@ -33,7 +33,7 @@ jobs:
         with:
           args: -v -tpng ${{ steps.getfile.outputs.files }}
       - name: Push Local Changes
-        uses: stefanzweifel/git-auto-commit-action@b863ae1933cb653a53c021fe36dbb774e1fb9403 # v5.2.0
+        uses: stefanzweifel/git-auto-commit-action@778341af668090896ca464160c2def5d1d1a3eb0 # v6.0.1
         with:
           commit_user_name: "PlantUML_bot"
           commit_user_email: "noreply@defectdojo.org"
 
@@ -88,7 +88,7 @@ jobs:
           grep -H version helm/defectdojo/Chart.yaml
 
       - name: Push version changes
-        uses: stefanzweifel/git-auto-commit-action@b863ae1933cb653a53c021fe36dbb774e1fb9403 # v5.2.0
+        uses: stefanzweifel/git-auto-commit-action@778341af668090896ca464160c2def5d1d1a3eb0 # v6.0.1
         with:
           commit_user_name: "${{ env.GIT_USERNAME }}"
           commit_user_email: "${{ env.GIT_EMAIL }}"
 
@@ -75,7 +75,7 @@ jobs:
         if: endsWith(inputs.release_number_new, '.0') && endsWith(inputs.release_number_dev, '.0-dev')
 
       - name: Push version changes
-        uses: stefanzweifel/git-auto-commit-action@b863ae1933cb653a53c021fe36dbb774e1fb9403 # v5.2.0
+        uses: stefanzweifel/git-auto-commit-action@778341af668090896ca464160c2def5d1d1a3eb0 # v6.0.1
         with:
           commit_user_name: "${{ env.GIT_USERNAME }}"
           commit_user_email: "${{ env.GIT_EMAIL }}"
@@ -140,7 +140,7 @@ jobs:
           grep version components/package.json
 
       - name: Push version changes
-        uses: stefanzweifel/git-auto-commit-action@b863ae1933cb653a53c021fe36dbb774e1fb9403 # v5.2.0
+        uses: stefanzweifel/git-auto-commit-action@778341af668090896ca464160c2def5d1d1a3eb0 # v6.0.1
         with:
           commit_user_name: "${{ env.GIT_USERNAME }}"
           commit_user_email: "${{ env.GIT_EMAIL }}"
 
@@ -61,7 +61,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2 # v3.10.0
+        uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
 
         # we cannot set any tags here, those are set on the merged digest in release-x-manual-merge-container-digests.yml
       - name: Build and push images
 
@@ -71,7 +71,7 @@ jobs:
              helm dependency update ./helm/defectdojo
 
       - name: Add yq
-        uses: mikefarah/yq@b534aa9ee5d38001fba3cd8fe254a037e4847b37 # v4.45.4
+        uses: mikefarah/yq@f03c9dc599c37bfcaf533427211d05e51e6fee64 # v4.47.1
 
       - name: Pin version docker version
         id: pin_image
@@ -88,7 +88,7 @@ jobs:
           echo "chart_version=$(ls build | cut -d '-' -f 2,3 | sed 's|\.tgz||')" >> $GITHUB_ENV
 
       - name: Create release ${{ inputs.release_number }}
-        uses: softprops/action-gh-release@da05d552573ad5aba039eaac05058a918a7bf631 # v2.2.2
+        uses: softprops/action-gh-release@72f2c25fcb47643c292f7107632f7a47c1df5cd8 # v2.3.2
         with:
           name: '${{ inputs.release_number }} 🌈'
           tag_name: ${{ inputs.release_number }}
 
@@ -18,7 +18,7 @@ jobs:
       - name: Setup Node
         uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
         with:
-          node-version: '22.16.0'
+          node-version: '22.18.0'
 
       - name: Cache dependencies
         uses: actions/cache@5a3ec84eff668545956fd18022155c47e93e2684 # v4.2.3