Add stalebot

[therealbobo]

Signed-off-by: Roberto Scolaro roberto.scolaro21@gmail.com

Adding the stale bot could be a good idea to do some issue cleanup and starting revive this project! 😄

[nh2]

Using stale bots deteriorates software quality.

Please check out e.g. https://drewdevault.com/2021/10/26/stalebot.html

For example, https://github.com/draios/sysdig/issues/643#issuecomment-1445249593: Somebody reports a potential security issue, and then it'll automatically get closed, instead of communicating the state that this is still something the project has to look into in the future. Stale bots do not replace proper issue triage; they cause loss of information.

[therealbobo]

Thank you for bringing up your concerns about the use of stale bots. While we appreciate your input, we would like to explain why we have added the bot to our project. As you may have noticed, the nature of the Sysdig project itself has substantially changed in the last few years. At the end of 2020, most of its code now lives in a different repository: https://github.com/falcosecurity/libs, while the current repo only holds the library client and chisels. This made many PRs and issues obsolete and, while there were several efforts to port the relevant code and issue to the appropriate place, some legacy issues and PRs remained. We understand that there may be cases where the stale bot might close an issue prematurely, such as in the scenario you have mentioned where a potential security issue has been reported. However, we would like to assure you that we will always manually review every issue and pull request before closing them, especially if they are flagged as potential security issues. We appreciate your feedback and are always open to suggestions on how we can improve our project management process. 😄 @nh2