Fix stale workflow failure by updating actions/stale reference

[ashi2004]

Closes #32

📝 Description

This fixes the stale workflow failure caused by an invalid actions/stale reference that could not be downloaded from GitHub.
The workflow now uses a valid and maintained action version, so scheduled and manual stale runs can execute successfully.

🔧 Changes Made

-> Updated the stale GitHub Action reference from a broken pinned SHA to actions/stale@v10.
-> Kept existing stale behavior unchanged:
days-before-stale: 30
days-before-close: 7
-> stale labels/messages for issues and PRs remain the same.
No functional logic changes beyond resolving the action download failure.

📷 Screenshots or Visual Changes (if applicable)

🤝 Collaboration

Collaborated with: @username (optional)

✅ Checklist

• I have read the contributing guidelines.
• I have added tests that prove my fix is effective or that my feature works.
• I have added necessary documentation (if applicable).
• Any dependent changes have been merged and published in downstream modules.
• I have joined the Discord server and I will share a link to this PR with the project maintainers there

⚠️ AI Notice - Important!

We encourage contributors to use AI tools responsibly when creating Pull Requests. While AI can be a valuable aid, it is essential to ensure that your contributions meet the task requirements, build successfully, include relevant tests, and pass all linters. Submissions that do not meet these standards may be closed without warning to maintain the quality and integrity of the project. Please take the time to understand the changes you are proposing and their impact.

Summary by CodeRabbit

• Chores
  • Updated the GitHub Actions workflow that manages stale issues and pull requests to use the latest version.

[coderabbitai]

Walkthrough

Updated the GitHub Actions stale workflow to reference actions/stale@v10 version tag instead of a pinned commit hash. This resolves the missing tarball error preventing the automated stale issue and PR marking workflow from executing.

Changes

Cohort / File(s)	Summary
Workflow Configuration .github/workflows/stale.yml	Updated actions/stale action reference from a pinned commit hash to the official v10 version tag to resolve tarball resolution failure.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related PRs

• Add GitHub Action to automatically mark stale issues and PRs #15: Originally added the .github/workflows/stale.yml workflow with a pinned commit hash; this PR updates that same reference to use the official actions/stale@v10 version tag.

Poem

🐰 Hop, hop, the workflow's fixed today!
No more missing tarballs in the way,
Version v10 now marks the stale,
Automation's back—what a tale! 🎉

🚥 Pre-merge checks | ✅ 4

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly and specifically describes the main change: updating the actions/stale reference to fix the workflow failure.
Linked Issues check	✅ Passed	The code change directly addresses the primary objective from issue #32 by updating the broken actions/stale reference to v10, enabling the workflow to execute successfully.
Out of Scope Changes check	✅ Passed	The change is narrowly scoped to fixing the actions/stale reference; no unrelated modifications or feature additions are present in the changeset.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

📝 Coding Plan

• Generate coding plan for human review comments

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.github/workflows/stale.yml:
- Line 18: Replace the mutable tag reference "uses: actions/stale@v10" with the
exact commit SHA to pin the action for reproducibility and security; update the
workflow line that currently references actions/stale@v10 to use the provided
commit SHA (b5d41d4e1d5dceea10e7104786b73624c18a190f) so the "uses:
actions/stale" entry is anchored to that specific commit.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: 958c6f9f-93d9-402e-a6cc-1ecf27d8d50e

📥 Commits

Reviewing files that changed from the base of the PR and between 42d1d3c and 2de77a2.

📒 Files selected for processing (1)

• .github/workflows/stale.yml

[coderabbitai]

⚠️ Potential issue | 🟠 Major

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
set -euo pipefail

ref_json="$(curl -fsSL https://api.github.com/repos/actions/stale/git/ref/tags/v10)"
obj_type="$(jq -r '.object.type' <<<"$ref_json")"
obj_sha="$(jq -r '.object.sha' <<<"$ref_json")"

if [ "$obj_type" = "tag" ]; then
  commit_sha="$(curl -fsSL "https://api.github.com/repos/actions/stale/git/tags/$obj_sha" | jq -r '.object.sha')"
else
  commit_sha="$obj_sha"
fi

echo "Resolved actions/stale@v10 commit SHA: $commit_sha"
echo "Update .github/workflows/stale.yml to:"
echo "uses: actions/stale@$commit_sha"

Repository: AOSSIE-Org/SmartNotes

Length of output: 244

---

🏁 Script executed:

cat -n .github/workflows/stale.yml | sed -n '15,25p'

Repository: AOSSIE-Org/SmartNotes

Length of output: 387

---

Pin actions/stale to a commit SHA instead of the mutable tag v10.

Using the major version tag @v10 on line 18 allows the reference to be retargeted, introducing supply chain risk. Pin to the exact commit SHA for reproducibility and security.

The v10 release resolves to commit b5d41d4e1d5dceea10e7104786b73624c18a190f. Update the workflow:

Suggested change

-        uses: actions/stale@v10
+        uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	uses: actions/stale@v10
	uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In @.github/workflows/stale.yml at line 18, Replace the mutable tag reference
"uses: actions/stale@v10" with the exact commit SHA to pin the action for
reproducibility and security; update the workflow line that currently references
actions/stale@v10 to use the provided commit SHA
(b5d41d4e1d5dceea10e7104786b73624c18a190f) so the "uses: actions/stale" entry is
anchored to that specific commit.

[SharkyBytes]

Oh, this was actually needed! This was failing continuously. LGTM