Bump github.com/onflow/flow-core-contracts/lib/go/contracts from 1.9.3 to 1.10.1

[dependabot]

Bumps github.com/onflow/flow-core-contracts/lib/go/contracts from 1.9.3 to 1.10.1.

Release notes

Sourced from github.com/onflow/flow-core-contracts/lib/go/contracts's releases.

lib/go/contracts/v1.10.1

• Bump flow-nft/lib/go/contracts to v1.4.1
• Downgrade go-ethereum to v1.16.8 (resolves version conflict with flow-go)

lib/go/templates/v1.10.1

• Bump flow-nft/lib/go/templates to v1.4.1
• Downgrade go-ethereum to v1.16.8 (resolves version conflict with flow-go)

lib/go/contracts/v1.10.0

What's Changed

Matching version to `lib/go/templates/v1.10.0

Full Changelog: onflow/flow-core-contracts@lib/go/contracts/v1.9.3...lib/go/contracts/v1.10.0

lib/go/templates/v1.10.0

What's Changed

• Add CLAUDE.md for Claude Code guidance by @​joshuahannan in onflow/flow-core-contracts#579
• StakingProxy: add NodeOperator entitlement to privileged functions and Remove node cap publish by @​joshuahannan in onflow/flow-core-contracts#581
• Always emit PendingExecution event regardless of handler availability by @​joshuahannan in onflow/flow-core-contracts#583
• Simplify Scheduled Transaction priority limits by @​joshuahannan in onflow/flow-core-contracts#580
• Fix division by zero in calculateRewards when all nodes are non-operational by @​joshuahannan in onflow/flow-core-contracts#585
• Enable concurrent fee collection by @​janezpodhostnik in onflow/flow-core-contracts#575
• Add clarifying comments for potential security audit false positives by @​joshuahannan in onflow/flow-core-contracts#588
• Fix infinite loop and force-unwrap panic in scheduler cancel/remove logic by @​joshuahannan in onflow/flow-core-contracts#586
• Standardize error message format across contracts and transactions by @​joshuahannan in onflow/flow-core-contracts#582
• Clarify epoch counter safety and use saturatingSubtract for balance calculations by @​joshuahannan in onflow/flow-core-contracts#592
• Optimize iteration over dictionary keys by @​turbolent in onflow/flow-core-contracts#594

Full Changelog: onflow/flow-core-contracts@lib/go/contracts/v1.9.3...lib/go/templates/v1.10.0

lib/go/contracts/v1.9.4

What's Changed

• Add CLAUDE.md for Claude Code guidance by @​joshuahannan in onflow/flow-core-contracts#579
• StakingProxy: add NodeOperator entitlement to privileged functions and Remove node cap publish by @​joshuahannan in onflow/flow-core-contracts#581
• Always emit PendingExecution event regardless of handler availability by @​joshuahannan in onflow/flow-core-contracts#583
• Simplify Scheduled Transaction priority limits by @​joshuahannan in onflow/flow-core-contracts#580
• Fix division by zero in calculateRewards when all nodes are non-operational by @​joshuahannan in onflow/flow-core-contracts#585
• Enable concurrent fee collection by @​janezpodhostnik in onflow/flow-core-contracts#575
• Add clarifying comments for potential security audit false positives by @​joshuahannan in onflow/flow-core-contracts#588
• Fix infinite loop and force-unwrap panic in scheduler cancel/remove logic by @​joshuahannan in onflow/flow-core-contracts#586
• Standardize error message format across contracts and transactions by @​joshuahannan in onflow/flow-core-contracts#582
• Clarify epoch counter safety and use saturatingSubtract for balance calculations by @​joshuahannan in onflow/flow-core-contracts#592
• Optimize iteration over dictionary keys by @​turbolent in onflow/flow-core-contracts#594

Full Changelog: onflow/flow-core-contracts@lib/go/contracts/v1.9.3...lib/go/contracts/v1.9.4

Commits

• 358bf47 Update lib/go/templates to latest pseudo-version with clean go-ethereum v1.16.8
• 9d2b794 Rebuild go.sum files; contracts and templates natively resolve go-ethereum to...
• 718af5a Remove go-ethereum replace directives; templates natively requires v1.16.8
• b41d828 Bump flow-nft to v1.4.1 and downgrade go-ethereum to v1.16.8
• a94ed24 optimize iteration over dictionary keys
• aeba1c6 update Cadence
• faa730d Update lib/go/contracts reference to latest branch commit in test module
• 31e4fdf Update lib/go/templates reference to latest branch commit in contracts and te...
• 5a37f49 Update go.mod and go.sum for flow-ft v1.1.0 and flow-nft v1.4.0
• 92ed4a8 Regenerate manifests after flow-ft and flow-nft dependency updates
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA ef5296c.

Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

OpenSSF Scorecard

Package	Version	Score	Details
gomod/github.com/onflow/flow-core-contracts/lib/go/contracts	1.10.1	🟢 6.2	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
gomod/github.com/onflow/flow-core-contracts/lib/go/templates	1.10.1-0.20260409180530-5a68c4cae8a2	🟢 6.2	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
gomod/github.com/onflow/flow-ft/lib/go/contracts	1.1.0	🟢 5.9	Details Check Score Reason Code-Review 🟢 8 Found 6/7 approved changesets -- score normalized to 8 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy 🟢 10 security policy file detected Maintained 🟢 10 25 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
gomod/github.com/onflow/flow-ft/lib/go/templates	1.1.0	🟢 5.9	Details Check Score Reason Code-Review 🟢 8 Found 6/7 approved changesets -- score normalized to 8 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy 🟢 10 security policy file detected Maintained 🟢 10 25 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
gomod/github.com/onflow/flow-nft/lib/go/contracts	1.4.1	🟢 5.9	Details Check Score Reason Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy 🟢 10 security policy file detected Maintained 🟢 10 20 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 8 Found 8/9 approved changesets -- score normalized to 8 Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
gomod/github.com/onflow/flow-nft/lib/go/templates	1.4.1	🟢 5.9	Details Check Score Reason Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy 🟢 10 security policy file detected Maintained 🟢 10 20 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 8 Found 8/9 approved changesets -- score normalized to 8 Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0

Scanned Files

• go.mod