Skip to content

Bump github.com/hashicorp/copywrite from 0.21.0 to 0.25.0 in /tools#27

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/tools/github.com/hashicorp/copywrite-0.25.0
Open

Bump github.com/hashicorp/copywrite from 0.21.0 to 0.25.0 in /tools#27
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/tools/github.com/hashicorp/copywrite-0.25.0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 13, 2026

Bumps github.com/hashicorp/copywrite from 0.21.0 to 0.25.0.

Release notes

Sourced from github.com/hashicorp/copywrite's releases.

v0.25.0

Improvements

  • Major Performance Optimizations (#191): Significantly improved performance by caching git repository information and reducing redundant lookups during header processing
  • Auto-Migration from HashiCorp to IBM (#189): Added automatic detection and migration of HashiCorp copyright holders to IBM format, supporting all comment styles and preserving year information

v0.24.2

Bug Fixes

Fix .hbs file copyright parsing to prevent code corruption

Fixed a critical bug where the copyright detection logic was incorrectly modifying JavaScript code inside .hbs (Handlebars) template files. Previously, any indented line containing "copyright" (such as copyright: 'Copyright Acme Inc.' in JavaScript objects) was being treated as a copyright header and modified.

What changed:

  • Implemented comment block tracking for .hbs files to distinguish between actual copyright headers inside {{! ... }} comment blocks and regular code
  • Removed the generic two-space prefix from global comment detection to prevent false positives
  • Indented copyright lines are now only detected when inside handlebars {{! ... }} comment blocks

Impact:

  • .hbs files with multi-line copyright headers in {{! ... }} blocks work correctly
  • ✅ JavaScript code with "copyright" keywords (e.g., in config objects) is no longer modified
  • ✅ All other file types (.js, .go, .py, etc.) are unaffected

This fix was tested against the hashicorp/boundary-ui repository and confirmed to resolve the issue without introducing regressions.

v0.24.1

What's Changed

v0.24.0

What's Changed

Full Changelog: hashicorp/copywrite@v0.23.0...v0.24.0

v0.23.0

What's Changed

... (truncated)

Commits
  • 42a6ce3 improve performance by only looking up git information once (#191)
  • 3fa4dc0 Update fetch-depth parameter in readme. (#192)
  • ca99792 Auto migrate hashicorp to ibm (#189)
  • 0be59e7 fix: file-aware .hbs copyright parsing to avoid code corruption (#190)
  • 8df03b7 Fix .hbs file copyright parsing by supporting indented content (#188)
  • be31874 Update README.md (#187)
  • e818379 Rollback: Diff comparision for copyright headers. (#185)
  • 10cb3be Update feature added for headers command. (#181)
  • 421a509 Copyright symbol removal to get inline with policy. (#183)
  • 4632343 Ibm copyright format (#180)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump github.com/hashicorp/copywrite from 0.21.0 to 0.25.0 in /tools
e149759 
Bumps [github.com/hashicorp/copywrite](https://github.com/hashicorp/copywrite) from 0.21.0 to 0.25.0.
- [Release notes](https://github.com/hashicorp/copywrite/releases)
- [Commits](hashicorp/copywrite@v0.21.0...v0.25.0)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/copywrite
  dependency-version: 0.25.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Feb 13, 2026
@dependabot dependabot bot mentioned this pull request Feb 13, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants