Bump github.com/spf13/cobra from 1.10.1 to 1.10.2

[dependabot]

Bumps github.com/spf13/cobra from 1.10.1 to 1.10.2.

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

• chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @​dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

• Fix linter and allow CI to pass by @​marckhouzam in spf13/cobra#2327
• fix: actions/setup-go v6 by @​jpmcb in spf13/cobra#2337

🔥✍🏼 Docs

• Add documentation for repeated flags functionality by @​rvergis in spf13/cobra#2316

🍂 Refactors

• refactor: replace several vars with consts by @​htoyoda18 in spf13/cobra#2328
• refactor: change minUsagePadding from var to const by @​ssam18 in spf13/cobra#2325

🤗 New Contributors

• @​rvergis made their first contribution in spf13/cobra#2316
• @​htoyoda18 made their first contribution in spf13/cobra#2328
• @​ssam18 made their first contribution in spf13/cobra#2325
• @​dims made their first contribution in spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

Commits

• 88b30ab chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#2336)
• 346d408 fix: actions/setup-go v6 (#2337)
• fc81d20 refactor: change minUsagePadding from var to const (#2325)
• 117698a refactor: replace several vars with consts (#2328)
• e2dd29d Add documentation for repeated flags functionality (#2316)
• 0629892 Fix linter (#2327)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

🤖 Claude Code Review

Code Review Analysis

Summary

This is a minor dependency update PR that bumps github.com/spf13/cobra from version 1.10.1 to 1.10.2. This is a straightforward dependency update with no code changes.

Detailed Review

Code Quality

✅ Code follows style guide

• No code changes to evaluate - only dependency version updates

✅ No commented-out code

• No code changes present

✅ Meaningful variable names

• Not applicable - no code changes

✅ DRY principle followed

• Not applicable - no code changes

✅ Identify Defects

• No defects identified. This is a patch version bump (1.10.1 → 1.10.2) which typically contains bug fixes and should be safe

✅ Project memory configuration

• Not applicable - no code changes that would conflict with project conventions

Testing

⚠️ Unit tests for new functions

• Not applicable - no new functions added
• Recommendation: Ensure existing tests pass with the updated dependency

⚠️ Integration tests for new endpoints

• Not applicable - no new endpoints

⚠️ Edge cases covered

• Not applicable - dependency update only

❓ Test coverage > 80%

• Cannot evaluate from diff alone - existing coverage should be maintained

Documentation

❌ Readme updated if needed

• Not applicable for a patch dependency update

❌ API docs updated

• Not applicable - no API changes

❌ Inline comments for complex logic

• Not applicable - no code changes

❌ CHANGELOG.md updated

• Action Required: CHANGELOG.md should document this dependency update
• Should include entry: "Updated github.com/spf13/cobra from 1.10.1 to 1.10.2"

❌ Markdown formatting

• Not applicable - no markdown files modified

Security

✅ No hardcoded credentials

• Not applicable - no code changes

✅ Input validation implemented

• Not applicable - no code changes

✅ Proper error handling

• Not applicable - no code changes

✅ No sensitive data in logs

• Not applicable - no code changes

✅ No license files (.lic) or AQAAAD strings

• No license files or sensitive strings detected in diff

Recommendations

1. CHANGELOG.md Update Required: Document this dependency update in CHANGELOG.md

2. Verify Tests Pass: Ensure all existing tests pass with the updated cobra version

3. Review Cobra 1.10.2 Release Notes: Check https://github.com/spf13/cobra/releases/tag/v1.10.2 for any breaking changes or important fixes

Overall Assessment

✅ APPROVED with minor action items

This is a safe, routine dependency update. The only action required is updating CHANGELOG.md to document the dependency bump. The patch version increment suggests bug fixes with no breaking changes.

Automated code review analyzing defects and coding standards

[senzingdevops]

Automated: approving this pull request because it includes a patch update