diff --git a/.github/workflows/ci-test.yml b/.github/workflows/ci-test.yml
index 44b6c25c..02ab740b 100644
--- a/.github/workflows/ci-test.yml
+++ b/.github/workflows/ci-test.yml
@@ -3,10 +3,8 @@ name: code-sanitizer-test
 # Controls when the action will run. Triggers the workflow on push or pull request
 # events but only for the main branch
 on:
-  push:
-    branches: [main]
-  pull_request:
-    branches: [main]
+  workflow_dispatch:
+
 jobs:
   build:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/release-notes-update.yaml b/.github/workflows/release-notes-update.yaml
new file mode 100644
index 00000000..56fe132d
--- /dev/null
+++ b/.github/workflows/release-notes-update.yaml
@@ -0,0 +1,65 @@
+# Copyright (c) 2025 Dell Inc., or its subsidiaries. All Rights Reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#  http://www.apache.org/licenses/LICENSE-2.0
+name: Update CSM Release Notes
+
+on:
+  workflow_dispatch:
+
+jobs:
+  release-notes-update:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+
+      - name: Setup Go
+        uses: actions/setup-go@v5
+        with:
+          go-version: "1.24"
+
+      - name: Clone io-tools/change-log
+        env:
+          GITHUB_TOKEN: ${{ secrets.MY_GITHUB_TOKEN }}
+        run: |
+          # Need to retrieve the next milestone.
+          MILESTONE=v1.14.0
+
+          git clone https://${GITHUB_TOKEN}@github.com/falfaroc/change-log.git
+          cd change-log
+
+          make build
+
+          sed -i "s/milestone: \(.*\)*/milestone: \"$MILESTONE\"/g" config.yaml
+          ./bin/change-log > changelog.md
+
+          cat changelog.md
+
+      # # Needed for signing commits using Github App tokens
+      # # See: https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#commit-signing
+      # - name: Generate GitHub App Token
+      #   uses: actions/create-github-app-token@v2.0.2
+      #   id: generate-token
+      #   with:
+      #     app-id: ${{ vars.CSM_RELEASE_APP_ID }}
+      #     private-key: ${{ secrets.MY_GITHUB_TOKEN }}
+
+      # Must enable "allow GitHub Actions to create pull requests" setting
+      # Author defaults to the user who triggered the workflow run
+      - name: Create pull request
+        uses: peter-evans/create-pull-request@v7
+        with:
+          # token: ${{ steps.generate-token.outputs.token }}
+          branch: "release-notes-update"
+          commit-message: "Update Release Notes"
+          title: "Update Release Notes"
+          body: |
+            Generate the Release Note for the latest release.
+          
+            Auto-generated by [common-github-actions](https://github.com/dell/common-github-actions)
+          sign-commits: true
+          delete-branch: true
diff --git a/.github/workflows/scanner-test.yml b/.github/workflows/scanner-test.yml
index 2f5bf626..efc98180 100644
--- a/.github/workflows/scanner-test.yml
+++ b/.github/workflows/scanner-test.yml
@@ -2,10 +2,7 @@
 name: malware-scanner
 
 on:
-  push:
-    branches: [main]
-  pull_request:
-    branches: [main]
+  workflow_dispatch:
 
 jobs:
   malware_security_scan:
diff --git a/change-log b/change-log
new file mode 160000
index 00000000..8808e889
--- /dev/null
+++ b/change-log
@@ -0,0 +1 @@
+Subproject commit 8808e88995c188fa5f81f290cfe97b3afe6c9ae6