hashicorp
diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
@@ -0,0 +1 @@
+* @hashicorp/tf-editor-experience-engineers
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -1,16 +1,20 @@
+name: Publish
+
 on:
   push:
     tags:
-      - 'v[0-9]+.[0-9]+.[0-9]+*'
+      - "v[0-9]+.[0-9]+.[0-9]+*"
+
 jobs:
   publish:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v2
-      - uses: actions/setup-node@v2
+      - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      - uses: actions/setup-node@8f152de45cc393bb48ce5d89d36b731f54556e65 # v4.0.0
         with:
-          node-version-file: ".nvmrc"
-      - run: npm install
-      - uses: JS-DevTools/npm-publish@v1
-        with:
-          token: ${{ secrets.NPM_TOKEN }}
+          node-version-file: .nvmrc
+          registry-url: 'https://registry.npmjs.org'
+      - run: npm ci
+      - run: npm publish --access public
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
@@ -9,13 +9,24 @@ on:
       - main
 
 jobs:
+  copywrite:
+    runs-on: ubuntu-latest
+    timeout-minutes: 3
+    steps:
+      - name: Checkout Repo
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      - name: Install copywrite
+        uses: hashicorp/setup-copywrite@v1.1.2
+      - name: Validate Header Compliance
+        run: copywrite headers --plan
+
   test:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v2
-      - uses: actions/setup-node@v2
+      - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      - uses: actions/setup-node@8f152de45cc393bb48ce5d89d36b731f54556e65 # v4.0.0
         with:
-          node-version-file: '.nvmrc'
+          node-version-file: .nvmrc
       - name: npm install
         run: npm ci
       - name: test

diff --git a/.gitignore b/.gitignore
@@ -1,4 +1,4 @@
-out/
-node_modules/
+/out/
+/node_modules/
 .DS_Store
 npm-debug.log
diff --git a/.mocharc.json b/.mocharc.json
diff --git a/.nvmrc b/.nvmrc
@@ -1 +1 @@
-14.15.1
+18.17.1
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,116 @@
+# 1.7.2 (2023-11-27)
+
+INTERNAL:
+
+* Update Axios to 1.6.2 by @xiehan in https://github.com/hashicorp/js-releases/pull/206
+* Bump @types/node from 18.18.6 to 18.18.7 by @dependabot in https://github.com/hashicorp/js-releases/pull/192
+* Bump openpgp from 5.10.2 to 5.11.0 by @dependabot in https://github.com/hashicorp/js-releases/pull/193
+* Bump actions/checkout from 4.1.0 to 4.1.1 by @dependabot in https://github.com/hashicorp/js-releases/pull/186
+* Bump @types/node from 18.18.7 to 18.18.8 by @dependabot in https://github.com/hashicorp/js-releases/pull/194
+* github: Disable dependabot for GHA by @radeksimko in https://github.com/hashicorp/js-releases/pull/195
+* Bump @types/yauzl from 2.10.2 to 2.10.3 by @dependabot in https://github.com/hashicorp/js-releases/pull/198
+* Bump @types/semver from 7.5.4 to 7.5.5 by @dependabot in https://github.com/hashicorp/js-releases/pull/197
+* Bump @types/node from 18.18.8 to 18.18.9 by @dependabot in https://github.com/hashicorp/js-releases/pull/196
+* Bump @types/node from 18.18.9 to 18.18.10 by @dependabot in https://github.com/hashicorp/js-releases/pull/201
+* build(deps): Bump workflows to latest trusted versions by @hashicorp-tsccr in https://github.com/hashicorp/js-releases/pull/200
+* Bump @types/node from 18.18.10 to 18.18.11 by @dependabot in https://github.com/hashicorp/js-releases/pull/203
+* Bump @types/semver from 7.5.5 to 7.5.6 by @dependabot in https://github.com/hashicorp/js-releases/pull/202
+* Bump @types/node from 18.18.11 to 18.18.12 by @dependabot in https://github.com/hashicorp/js-releases/pull/204
+* Bump @types/node from 18.18.12 to 18.18.13 by @dependabot in https://github.com/hashicorp/js-releases/pull/205
+
+# 1.7.1 (2023-10-24)
+
+ENHANCEMENT:
+
+* Bump Node version to 18 by @dbanck in https://github.com/hashicorp/js-releases/pull/168
+
+INTERNAL:
+
+* Bump @types/node from 14.18.58 to 18.18.6 by @dependabot in https://github.com/hashicorp/js-releases/pull/167
+* Bump @types/semver from 7.5.1 to 7.5.4 by @dependabot in https://github.com/hashicorp/js-releases/pull/169
+* Bump openpgp from 5.10.1 to 5.10.2 by @dependabot in https://github.com/hashicorp/js-releases/pull/172
+* Bump @types/yauzl from 2.10.0 to 2.10.2 by @dependabot in https://github.com/hashicorp/js-releases/pull/175
+* SEC-090: Automated trusted workflow pinning (2023-09-27) by @hashicorp-tsccr in https://github.com/hashicorp/js-releases/pull/179
+* Bump actions/checkout from 4.0.0 to 4.1.0 by @dependabot in https://github.com/hashicorp/js-releases/pull/180
+* Bump @babel/traverse from 7.18.8 to 7.23.2 by @dependabot in https://github.com/hashicorp/js-releases/pull/185
+
+# 1.7.0 (2023-09-07)
+
+ENHANCEMENT:
+
+* Add PR test for copyright headers by @radeksimko in https://github.com/hashicorp/js-releases/pull/127
+* Migrate to plain npm publish by @jpogran in https://github.com/hashicorp/js-releases/pull/136
+
+BUG FIXES:
+
+* Update checksum test by @dbanck in https://github.com/hashicorp/js-releases/pull/111
+* Fix outdated SHA in test by @radeksimko in https://github.com/hashicorp/js-releases/pull/126
+
+INTERNAL:
+
+* Add CODEOWNERS file by @radeksimko in https://github.com/hashicorp/js-releases/pull/102
+* Pin external GitHub Actions to hashes by @dbanck in https://github.com/hashicorp/js-releases/pull/99
+* Add MPL 2.0 LICENSE by @hashicorp-copywrite in https://github.com/hashicorp/js-releases/pull/84
+* Update openpgp and remove pin to specific version by @dbanck in https://github.com/hashicorp/js-releases/pull/91
+* Update minimatch to 3.1.2 by @dbanck in https://github.com/hashicorp/js-releases/pull/92
+* Add Copyright and License Headers by @hashicorp-copywrite in https://github.com/hashicorp/js-releases/pull/109
+* Bump @types/node from 14.18.22 to 14.18.58 by @dependabot in https://github.com/hashicorp/js-releases/pull/65
+* Bump @types/semver from 7.3.10 to 7.5.1 by @dependabot in https://github.com/hashicorp/js-releases/pull/67
+* Bump ts-jest from 28.0.7 to 28.0.8 by @dependabot in https://github.com/hashicorp/js-releases/pull/68
+* Bump @types/jest from 28.1.6 to 28.1.8 by @dependabot in https://github.com/hashicorp/js-releases/pull/70
+* Bump semver from 7.3.7 to 7.5.4 by @dependabot in https://github.com/hashicorp/js-releases/pull/82
+* Bump typescript from 4.7.4 to 4.9.5 by @dependabot in https://github.com/hashicorp/js-releases/pull/81
+* Bump prettier from 2.7.1 to 2.8.8 by @dependabot in https://github.com/hashicorp/js-releases/pull/97
+* Bump json5 from 2.2.1 to 2.2.3 by @dependabot in https://github.com/hashicorp/js-releases/pull/103
+* Bump actions/checkout from 3.2.0 to 4.0.0 by @dependabot in https://github.com/hashicorp/js-releases/pull/105
+* Bump actions/setup-node from 3.5.1 to 3.8.1 by @dependabot in https://github.com/hashicorp/js-releases/pull/104
+* Bump openpgp from 5.5.0 to 5.10.1 by @dependabot in https://github.com/hashicorp/js-releases/pull/113
+* Bump hashicorp/setup-copywrite from 1.0.0 to 1.1.2 by @dependabot in https://github.com/hashicorp/js-releases/pull/132
+
+# 1.6.1 (2022-07-22)
+
+BUG FIXES:
+
+* Fix error on picking latest vault releases by @markmartirosian in https://github.com/hashicorp/js-releases/pull/56
+
+INTERNAL:
+
+* Migrate test from mocha to jest by @dbanck in https://github.com/hashicorp/js-releases/pull/58
+* Bump prettier from 2.6.2 to 2.7.1 by @dependabot in https://github.com/hashicorp/js-releases/pull/54
+* Bump @types/semver from 7.3.9 to 7.3.10 by @dependabot in https://github.com/hashicorp/js-releases/pull/55
+* Bump typescript from 4.6.3 to 4.7.4 by @dependabot in https://github.com/hashicorp/js-releases/pull/57
+* Bump @types/jest from 28.1.4 to 28.1.5 by @dependabot in https://github.com/hashicorp/js-releases/pull/59
+* Bump @types/node from 14.18.21 to 14.18.22 by @dependabot in https://github.com/hashicorp/js-releases/pull/62
+* Bump jest from 28.1.2 to 28.1.3 by @dependabot in https://github.com/hashicorp/js-releases/pull/60
+* Bump ts-jest from 28.0.5 to 28.0.6 by @dependabot in https://github.com/hashicorp/js-releases/pull/61
+* Bump ts-jest from 28.0.6 to 28.0.7 by @dependabot in https://github.com/hashicorp/js-releases/pull/63
+* Bump @types/jest from 28.1.5 to 28.1.6 by @dependabot in https://github.com/hashicorp/js-releases/pull/64
+
+# 1.6.0 (2022-06-14)
+
+BUG FIXES:
+
+* Swap `proxy-agent` with `https-proxy-agent` to fix `ftp` package warning by @magnetikonline in https://github.com/hashicorp/js-releases/pull/43
+
+ENHANCEMENT:
+
+* Workflow and `README.md` tweaks by @magnetikonline in https://github.com/hashicorp/js-releases/pull/44
+
+INTERNAL:
+
+* Bump @types/yauzl from 2.9.2 to 2.10.0 by @dependabot in https://github.com/hashicorp/js-releases/pull/34
+* Bump typescript from 4.6.2 to 4.6.3 by @dependabot in https://github.com/hashicorp/js-releases/pull/31
+* Bump prettier from 2.6.0 to 2.6.2 by @dependabot in https://github.com/hashicorp/js-releases/pull/32
+* Bump semver from 7.3.5 to 7.3.6 by @dependabot in https://github.com/hashicorp/js-releases/pull/33
+* Bump semver from 7.3.6 to 7.3.7 by @dependabot in https://github.com/hashicorp/js-releases/pull/35
+* Bump @types/node from 14.18.12 to 14.18.13 by @dependabot in https://github.com/hashicorp/js-releases/pull/36
+* Bump @types/mocha from 9.1.0 to 9.1.1 by @dependabot in https://github.com/hashicorp/js-releases/pull/37
+* Bump @types/node from 14.18.13 to 14.18.14 by @dependabot in https://github.com/hashicorp/js-releases/pull/38
+* Bump @types/node from 14.18.14 to 14.18.15 by @dependabot in https://github.com/hashicorp/js-releases/pull/39
+* Bump @types/node from 14.18.15 to 14.18.16 by @dependabot in https://github.com/hashicorp/js-releases/pull/40
+* Bump @types/node from 14.18.16 to 14.18.18 by @dependabot in https://github.com/hashicorp/js-releases/pull/47
+* Bump @types/node from 14.18.18 to 14.18.21 by @dependabot in https://github.com/hashicorp/js-releases/pull/51
+
 # 1.5.1 (2022-03-17)
 
 BUG FIXES: