Bump github.com/spf13/cobra from 1.10.1 to 1.10.2

[dependabot]

Bumps github.com/spf13/cobra from 1.10.1 to 1.10.2.

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

• chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @​dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

• Fix linter and allow CI to pass by @​marckhouzam in spf13/cobra#2327
• fix: actions/setup-go v6 by @​jpmcb in spf13/cobra#2337

🔥✍🏼 Docs

• Add documentation for repeated flags functionality by @​rvergis in spf13/cobra#2316

🍂 Refactors

• refactor: replace several vars with consts by @​htoyoda18 in spf13/cobra#2328
• refactor: change minUsagePadding from var to const by @​ssam18 in spf13/cobra#2325

🤗 New Contributors

• @​rvergis made their first contribution in spf13/cobra#2316
• @​htoyoda18 made their first contribution in spf13/cobra#2328
• @​ssam18 made their first contribution in spf13/cobra#2325
• @​dims made their first contribution in spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

Commits

• 88b30ab chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#2336)
• 346d408 fix: actions/setup-go v6 (#2337)
• fc81d20 refactor: change minUsagePadding from var to const (#2325)
• 117698a refactor: replace several vars with consts (#2328)
• e2dd29d Add documentation for repeated flags functionality (#2316)
• 0629892 Fix linter (#2327)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[senzingdevops]

Automated: approving this pull request because it includes a patch update

[github-actions]

🤖 Claude Code Review

Code Review Analysis

Review Results

Code Quality ✅

• Code follows style guide ✅
  This is a dependency version bump with no code changes. No style violations introduced.

• No commented-out code ✅
  No code changes in this PR.

• Meaningful variable names ✅
  No new variables introduced.

• DRY principle followed ✅
  No code duplication introduced.

• Defects identification ✅
  No bugs, logic errors, or security vulnerabilities introduced. This is a minor version bump of github.com/spf13/cobra from v1.10.1 to v1.10.2. Minor version bumps in this library typically contain bug fixes and are safe upgrades.

• Project memory configuration ✅
  The .claude/CLAUDE.md file exists and is appropriate for general development guidance. No violations.

Testing ⚠️

• Unit tests for new functions ⚠️
  N/A - No new functions added. However, it would be good practice to run the existing test suite to verify compatibility with the new dependency version.

• Integration tests for new endpoints ✅
  N/A - No new endpoints added.

• Edge cases covered ✅
  N/A - No new logic added.

• Test coverage > 80% ⚠️
  Cannot verify from diff alone. Recommend running make clean setup coverage && make check-coverage to ensure coverage thresholds are still met with the new dependency version.

Documentation ✅

• Readme updated if needed ✅
  No README changes needed for a minor dependency bump.

• API docs updated ✅
  No API changes.

• Inline comments for complex logic ✅
  N/A - No new logic added.

• CHANGELOG.md updated ❌
  Missing: The CHANGELOG.md should be updated to reflect the dependency version bump. Even minor dependency updates should be documented for traceability.

• Markdown formatting ✅
  No markdown files modified in this PR.

Security ✅

• No hardcoded credentials ✅
  No credentials added.

• Input validation implemented ✅
  N/A - No new input handling.

• Proper error handling ✅
  N/A - No new error handling needed.

• No sensitive data in logs ✅
  No logging changes.

• No license files (.lic) or AQAAAD strings ✅
  No license files or sensitive strings detected.

---

Summary

Overall Assessment: ✅ APPROVED with minor recommendations

This is a clean dependency version bump from spf13/cobra v1.10.1 to v1.10.2. The changes are limited to go.mod and go.sum files with no code modifications.

Required Actions:

❌ CHANGELOG.md Update Missing (CHANGELOG.md)
Add an entry documenting this dependency update:

### Changed
- Bumped github.com/spf13/cobra from 1.10.1 to 1.10.2

Recommended Actions:

⚠️ Verification Testing
Run the test suite to confirm compatibility:

make clean setup test
make clean setup coverage
make check-coverage

Positive Notes:

• Clean, focused change with no scope creep
• Automated dependency management working correctly
• No security issues introduced
• Go module files properly updated

---

Automated code review analyzing defects and coding standards