chore(deps): bump the go-minor-and-patch group with 4 updates

[dependabot]

Bumps the go-minor-and-patch group with 4 updates: github.com/spf13/cobra, github.com/spf13/pflag, go.opentelemetry.io/collector/pdata and golang.org/x/term.

Updates github.com/spf13/cobra from 1.8.0 to 1.10.2

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

• chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @​dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

• Fix linter and allow CI to pass by @​marckhouzam in spf13/cobra#2327
• fix: actions/setup-go v6 by @​jpmcb in spf13/cobra#2337

🔥✍🏼 Docs

• Add documentation for repeated flags functionality by @​rvergis in spf13/cobra#2316

🍂 Refactors

• refactor: replace several vars with consts by @​htoyoda18 in spf13/cobra#2328
• refactor: change minUsagePadding from var to const by @​ssam18 in spf13/cobra#2325

🤗 New Contributors

• @​rvergis made their first contribution in spf13/cobra#2316
• @​htoyoda18 made their first contribution in spf13/cobra#2328
• @​ssam18 made their first contribution in spf13/cobra#2325
• @​dims made their first contribution in spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

v1.10.1

🐛 Fix

• chore: upgrade pflags v1.0.9 by @​jpmcb in spf13/cobra#2305

v1.0.9 of pflags brought back ParseErrorsWhitelist and marked it as deprecated

Full Changelog: spf13/cobra@v1.10.0...v1.10.1

v1.10.0

What's Changed

🚨 Attention!

• Bump pflag to 1.0.8 by @​tomasaschan in spf13/cobra#2303

This version of pflag carried a breaking change: it renamed ParseErrorsWhitelist to ParseErrorsAllowlist which can break builds if both pflag and cobra are dependencies in your project.

• If you use both pflag and cobra, upgrade pflagto 1.0.8 andcobrato1.10.0`
• or use the newer, fixed version of pflag v1.0.9 which keeps the deprecated ParseErrorsWhitelist

... (truncated)

Commits

• 88b30ab chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#2336)
• 346d408 fix: actions/setup-go v6 (#2337)
• fc81d20 refactor: change minUsagePadding from var to const (#2325)
• 117698a refactor: replace several vars with consts (#2328)
• e2dd29d Add documentation for repeated flags functionality (#2316)
• 0629892 Fix linter (#2327)
• 7da941c chore: Bump pflag to v1.0.9 (#2305)
• 51d6751 Bump pflag to 1.0.8 (#2303)
• 3f3b818 Update README.md with new logo
• dcaf42e Add Periscope to the list of projects using Cobra (#2299)
• Additional commits viewable in compare view

Updates github.com/spf13/pflag from 1.0.5 to 1.0.9

Release notes

Sourced from github.com/spf13/pflag's releases.

v1.0.9

What's Changed

• fix: Restore ParseErrorsWhitelist name for now by @​tomasaschan in spf13/pflag#446

Full Changelog: spf13/pflag@v1.0.8...v1.0.9

v1.0.8

⚠️ Breaking Change

This version, while only a patch bump, includes a (very minor) breaking change: the flag.ParseErrorsWhitelist struct and corresponding FlagSet.parseErrorsWhitelist field have been renamed to ParseErrorsAllowlist.

This should result in compilation errors in any code that uses these fields, which can be fixed by adjusting the names at call sites. There is no change in semantics or behavior of the struct or field referred to by these names. If your code compiles without errors after bumping to/past v1.0.8, you are not affected by this change.

The breaking change was reverted in v1.0.9, by means of re-introducing the old names with deprecation warnings. The plan is still to remove them in a future release, so if your code does depend on the old names, please change them to use the new names at your earliest convenience.

What's Changed

• Remove Redundant "Unknown-Flag" Error by @​vaguecoder in spf13/pflag#364
• Switching from whitelist to Allowlist terminology by @​dubrie in spf13/pflag#261
• Omit zero time.Time default from usage line by @​mologie in spf13/pflag#438
• implement CopyToGoFlagSet by @​pohly in spf13/pflag#330
• flag: Emulate stdlib behavior and do not print ErrHelp by @​tmc in spf13/pflag#407
• Print Default Values of String-to-String in Sorted Order by @​vaguecoder in spf13/pflag#365
• fix: Don't print ErrHelp in ParseAll by @​tomasaschan in spf13/pflag#443
• Reset args on re-parse even if empty by @​tomasaschan in spf13/pflag#444

New Contributors

• @​vaguecoder made their first contribution in spf13/pflag#364
• @​dubrie made their first contribution in spf13/pflag#261
• @​mologie made their first contribution in spf13/pflag#438
• @​pohly made their first contribution in spf13/pflag#330
• @​tmc made their first contribution in spf13/pflag#407
• @​tomasaschan made their first contribution in spf13/pflag#443

Full Changelog: spf13/pflag@v1.0.7...v1.0.8

v1.0.7

What's Changed

• Fix defaultIsZeroValue check for generic Value types by @​MidnightRocket in spf13/pflag#422
• feat: Use structs for errors returned by pflag. by @​eth-p in spf13/pflag#425
• Fix typos by @​co63oc in spf13/pflag#428
• fix #423 : Add helper function and some documentation to parse shorthand go test flags. by @​valdar in spf13/pflag#424
• add support equivalent to golang flag.TextVar(), also fixes the test failure as described in #368 by @​hujun-open in spf13/pflag#418
• add support for Func() and BoolFunc() #426 by @​LeGEC in spf13/pflag#429
• fix: correct argument length check in FlagSet.Parse by @​ShawnJeffersonWang in spf13/pflag#409
• fix usage message for func flags, fix arguments order by @​LeGEC in spf13/pflag#431
• Add support for time.Time flags by @​max-frank in spf13/pflag#348

New Contributors

• @​MidnightRocket made their first contribution in spf13/pflag#422

... (truncated)

Commits

• 1043857 Merge pull request #446 from spf13/fix-backwards-compat
• 7412009 fix: Restore ParseErrorsWhitelist name for now
• b9c16fa Merge pull request #444 from spf13/reset-args-even-if-empty
• 40abc49 Merge pull request #443 from spf13/silence-errhelp
• 1bf832c Use errors.Is instead of equality check
• d25dd24 Reset args on re-parse even if empty
• 094909d Merge pull request #365 from vaguecoder/str2str-sorted
• ccb49e5 Print Default Values of String-to-String in Sorted Order
• b55ffb6 fix: Don't print ErrHelp in ParseAll
• 7c651d1 Merge pull request #407 from tmc/fix-errhelp
• Additional commits viewable in compare view

Updates go.opentelemetry.io/collector/pdata from 1.51.0 to 1.60.0

Release notes

Sourced from go.opentelemetry.io/collector/pdata's releases.

v1.60.0/v0.154.0

Images and binaries here: https://github.com/open-telemetry/opentelemetry-collector-releases/releases/tag/v0.154.0

End User Changelog

🛑 Breaking changes 🛑

• cmd/builder: The --skip-get-modules flag will no longer regenerate your go.mod file. (#15390) This is mostly a bug fix, as it led to adverse behaviour that was unintended in the described flow in the README. Now when you run --skip-get-modules, your go.mod file will truly be untouched by ocb as the info log claims.

💡 Enhancements 💡

• pkg/config/configtls: Add include_insecure_cipher_suites to configtls to enable insecure cipher suites. Insecure cipher suites are disabled by default for security. (#13829)
• pkg/confighttp: Add ExposedHeaders field to CORSConfig to allow setting the Access-Control-Expose-Headers response header. (#15119)

🧰 Bug fixes 🧰

• cmd/mdatagen: Removes the extra line in the README.md between status and description (#15306)
• pkg/exporterhelper: Fix nil-pointer panic in sending_queue::batch Unmarshal when sending_queue::sizer is set and sending_queue::batch::enabled is false. (#14687) When sending_queue::sizer was set and sending_queue::batch::enabled: false cleared the batch Optional to None, the sizer-inheritance branch in queuebatch.Config.Unmarshal dereferenced a nil Optional and crashed the collector at startup. The branch now also requires Batch.HasValue().

API Changelog

💡 Enhancements 💡

• cmd/mdatagen: Handle numeric validators in generated config structs (#14806) Supported validators include minimum, maximum, exclusiveMinimum and exclusiveMaximum.
• pkg/config/configtls: Add include_insecure_cipher_suites to configtls to enable insecure cipher suites. Insecure cipher suites are disabled by default for security. (#13829)
• pkg/confighttp: Add ExposedHeaders field to CORSConfig to allow setting the Access-Control-Expose-Headers response header. (#15119)

v1.59.0/v0.153.0

Images and binaries here: https://github.com/open-telemetry/opentelemetry-collector-releases/releases/tag/v0.153.0

End User Changelog

🛑 Breaking changes 🛑

• pkg/configoptional: Stabilize feature gate configoptional.AddEnabledField (#15333)
• pkg/confmap: Stabilize confmap.newExpandedValueSanitizer feature gate (#15339)
• pkg/exporterhelper: mark exporter.PersistRequestContext as stable (#15330)

... (truncated)

Changelog

Sourced from go.opentelemetry.io/collector/pdata's changelog.

v1.60.0/v0.154.0

💡 Enhancements 💡

• cmd/mdatagen: Handle numeric validators in generated config structs (#14806) Supported validators include minimum, maximum, exclusiveMinimum and exclusiveMaximum.
• pkg/config/configtls: Add include_insecure_cipher_suites to configtls to enable insecure cipher suites. Insecure cipher suites are disabled by default for security. (#13829)
• pkg/confighttp: Add ExposedHeaders field to CORSConfig to allow setting the Access-Control-Expose-Headers response header. (#15119)

v1.59.0/v0.153.0

🛑 Breaking changes 🛑

• cmd/mdatagen: Enable reaggregation config generation by default; set reaggregation_enabled: false to keep generating metric config with only the enabled field. (#14689)

💡 Enhancements 💡

• cmd/mdatagen: Enforce stricter feature_gates validation in metadata.yaml by default. (#15310) Strict validation can be skipped on a per-gate basis by setting skip_strict_validation: true on the gate entry.

• cmd/mdatagen: Support generating config schema and Go config types for package metadata that defines reusable configs under $defs. (#15235)

• cmd/mdatagen: Generate config documentation table and inject it into README.md between sentinel comments (#14564) When a component defines a config: section in its metadata.yaml, mdatagen now generates a Markdown configuration table and injects it into README.md between:

  The table lists every YAML-visible property (including fields from embedded structs), with type, default value, required status, and description. Nested objects generate sub-tables linked from the parent row. Components whose README lacks the sentinel markers are unaffected.

• pkg/configoptional: Add methods allowing scalar unmarshaling (#15175)

• pkg/scraperhelper: Switch scraperhelper.ControllerConfig to schema-based generated configuration and publish its reusable controller_config schema. (#15258)

• pkg/xconfmap: Add ScalarMarshaler and ScalarUnmarshaler interfaces to allow custom marshaling and unmarshaling of wrapped scalar values. (#15175)

• pkg/xextension/storage: Add Walker interface, WalkFunc type, and SkipAll error value to support iterating over storage key/value entries. (#15190, #15191) A storage Client may optionally implement the Walker interface to allow consumers to range through all stored entries. This enables use cases such as storage migrations and TTL-based garbage collection.

v1.58.0/v0.152.0

🚩 Deprecations 🚩

... (truncated)

Commits

• dbed6ad [chore] Prepare release v1.60.0/v0.154.0 (#15411)
• d27fed3 [chore] Fix the prepare-release job (#15409)
• 9a8be05 [chore] Clarify error_output_paths only affects zap internal errors (#15147)
• d619b2e [exporterhelper] guard sizer inheritance when batch is disabled (#15393)
• 7cc4722 [cmd/builder] add @​braydonk and @​jmacd as codeowners (#15398)
• 2008f48 [cmd/builder] Make --skip-get-modules not regenerate go.mod (#15391)
• bf02bb8 [chore] Fix flaky test TestDefaultBatcher_Split_TimeoutDisabled (#15396)
• dbd5c55 [cmd/mdatagen] Fix the extra blank line in the readme template file (#15307)
• 478a9fd [chore][govuln] pin Go version in govuln check (#15388)
• 821de9e [chore]: update affiliation (#15387)
• Additional commits viewable in compare view

Updates golang.org/x/term from 0.40.0 to 0.44.0

Commits

• 3b43943 go.mod: update golang.org/x dependencies
• 3c3e485 go.mod: update golang.org/x dependencies
• 52b71d3 go.mod: update golang.org/x dependencies
• 9d2dc07 go.mod: update golang.org/x dependencies
• d954e03 all: upgrade go directive to at least 1.25.0 [generated]
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions