Bump github.com/spf13/cobra from 1.10.1 to 1.10.2

[dependabot]

Bumps github.com/spf13/cobra from 1.10.1 to 1.10.2.

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

• chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @​dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

• Fix linter and allow CI to pass by @​marckhouzam in spf13/cobra#2327
• fix: actions/setup-go v6 by @​jpmcb in spf13/cobra#2337

🔥✍🏼 Docs

• Add documentation for repeated flags functionality by @​rvergis in spf13/cobra#2316

🍂 Refactors

• refactor: replace several vars with consts by @​htoyoda18 in spf13/cobra#2328
• refactor: change minUsagePadding from var to const by @​ssam18 in spf13/cobra#2325

🤗 New Contributors

• @​rvergis made their first contribution in spf13/cobra#2316
• @​htoyoda18 made their first contribution in spf13/cobra#2328
• @​ssam18 made their first contribution in spf13/cobra#2325
• @​dims made their first contribution in spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

Commits

• 88b30ab chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#2336)
• 346d408 fix: actions/setup-go v6 (#2337)
• fc81d20 refactor: change minUsagePadding from var to const (#2325)
• 117698a refactor: replace several vars with consts (#2328)
• e2dd29d Add documentation for repeated flags functionality (#2316)
• 0629892 Fix linter (#2327)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[senzingdevops]

Automated: approving this pull request because it includes a patch update

[github-actions]

🤖 Claude Code Review

Code Review Analysis

Code Quality

✅ Code follows style guide - This is a dependency update only, no code changes to review against style guide.

✅ No commented-out code - No code changes in this PR.

✅ Meaningful variable names - No code changes in this PR.

✅ DRY principle followed - No code changes in this PR.

✅ Identify Defects - No defects identified. This is a minor version bump of github.com/spf13/cobra from v1.10.1 to v1.10.2. The changes in Cobra v1.10.2 appear to be minor (note the go.mod hash change in the sum file). No code changes means no new bugs, logic errors, or security vulnerabilities introduced.

✅ Project memory configuration - The .claude/CLAUDE.md file is appropriately general and doesn't contain environment-specific configuration.

Testing

✅ Unit tests for new functions - N/A, no new functions added.

✅ Integration tests for new endpoints - N/A, no new endpoints added.

✅ Edge cases covered - N/A, dependency update only.

✅ Test coverage > 80% - N/A, no code changes that would affect coverage.

Documentation

✅ Readme updated if needed - Not needed for a minor dependency update.

✅ API docs updated - Not needed for a minor dependency update.

✅ Inline comments for complex logic - N/A, no code changes.

⚠️ CHANGELOG.md updated - For a minor dependency update like this, a CHANGELOG entry would be good practice if the project maintains detailed changelogs. However, this is often not required for automated dependency bumps. Recommendation: Consider adding an entry like:

### Changed
- Updated github.com/spf13/cobra from v1.10.1 to v1.10.2

✅ Markdown files follow CommonMark - No markdown files modified.

Security

✅ No hardcoded credentials - No code changes.

✅ Input validation implemented - N/A, no code changes.

✅ Proper error handling - N/A, no code changes.

✅ No sensitive data in logs - N/A, no code changes.

✅ No license files flagged - No .lic files or AQAAAD strings in the diff.

---

Summary

APPROVED ✅

This is a clean, automated dependency update of github.com/spf13/cobra from v1.10.1 to v1.10.2. The changes are:

• go.mod:9 - Version bump
• go.sum:50-51 - Updated checksums

Recommendations:

1. Consider adding a CHANGELOG.md entry to track this dependency update
2. Verify that existing tests pass with the new Cobra version
3. No action required otherwise - this is a safe minor version update

Risk Level: Low - Minor version bump of a well-maintained dependency with no breaking changes expected.

Automated code review analyzing defects and coding standards