Bump github.com/hashicorp/copywrite from 0.22.0 to 0.25.2 in /tools

[dependabot]

Bumps github.com/hashicorp/copywrite from 0.22.0 to 0.25.2.

Release notes

Sourced from github.com/hashicorp/copywrite's releases.

v0.25.2

What's Changed

New Features

• ignore_year1 config option (#213): Added a new project.ignore_year1 boolean flag in .copywrite.hcl. When set to true, the tool skips updating the start year in existing copyright headers, preserving historically accurate start years (e.g. 2015) even when they differ from copyright_year in config. End-year logic is unaffected — files modified after their copyright end year still get the end year bumped to current year. New files with no copyright header are also unaffected and always receive the config year as the start year.

  project {
    copyright_year = 2024
  Preserve original start years in existing headers
  ignore_year1 = true
  }

Bug Fixes

• Removed unused ignore_year2 references from config, CLI, init template, and README.

Documentation

• README updated with ignore_year1 behaviour for both source file headers and LICENSE files.
• Init template updated to include ignore_year1 as a commented-out option.

v0.25.1

Fixed

• Fixed copyright year updates not being applied due to invalid git log format in the year update cache (#191 regression)
• Fixed symlink resolution issue on macOS causing cache misses for file copyright year lookups
• Improved git information caching reliability and accuracy

Details

This release fixes two critical bugs introduced in v0.25.0 (#191):

1. The buildRepositoryCache now correctly formats git output with __CW_YEAR__= prefix, allowing the parser to properly identify years vs filenames
2. Symlink paths are now resolved before computing relative paths, preventing cache misses on systems where /tmp is a symlink (macOS)

Users running v0.25.0 who noticed copyright year updates weren't working should upgrade to this version.

v0.25.0

Improvements

• Major Performance Optimizations (#191): Significantly improved performance by caching git repository information and reducing redundant lookups during header processing
• Auto-Migration from HashiCorp to IBM (#189): Added automatic detection and migration of HashiCorp copyright holders to IBM format, supporting all comment styles and preserving year information

v0.24.2

Bug Fixes

Fix .hbs file copyright parsing to prevent code corruption

Fixed a critical bug where the copyright detection logic was incorrectly modifying JavaScript code inside .hbs (Handlebars) template files. Previously, any indented line containing "copyright" (such as copyright: 'Copyright Acme Inc.' in JavaScript objects) was being treated as a copyright header and modified.

What changed:

... (truncated)

Commits

• ffab25f Skip symlinks in file walk to avoid broken-symlink crashes (#214)
• 376a04c Feat/ignore year1 header behavior (#213)
• 898e9c9 [chore] : Bump github.com/cli/go-gh/v2 from 2.12.2 to 2.13.0 (#200)
• efad91d [chore] : Bump github.com/jedib0t/go-pretty/v6 from 6.6.8 to 6.7.8 (#199)
• 9b9bd97 [chore] : Bump github.com/bradleyfalzon/ghinstallation/v2 (#209)
• a45fccc [chore] : Bump github.com/spf13/cobra from 1.10.1 to 1.10.2 (#210)
• 202ea22 [chore] : Bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (#208)
• d42ef3a [chore] : Bump golang.org/x/oauth2 from 0.30.0 to 0.36.0 (#206)
• 370c1fb [chore] : Bump github.com/bmatcuk/doublestar/v4 from 4.6.0 to 4.10.0 (#205)
• 1becb7b [chore] : Bump github.com/samber/lo from 1.51.0 to 1.53.0 (#207)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)