build(deps): bump the go-dependencies group across 2 directories with 2 updates

[dependabot]

Bumps the go-dependencies group with 1 update in the / directory: github.com/go-openapi/runtime.
Bumps the go-dependencies group with 1 update in the /test/magpiego directory: github.com/Azure/azure-sdk-for-go/sdk/storage/azblob.

Updates github.com/go-openapi/runtime from 0.30.0 to 0.31.0

Release notes

Sourced from github.com/go-openapi/runtime's releases.

v0.31.0

0.31.0 - 2026-05-17

Full Changelog: go-openapi/runtime@v0.30.0...v0.31.0

33 commits in this release.

---

Implemented enhancements

• feat(client): TLS diagnostic mode for Runtime.Trace by @​fredbi ...
• feat(client): add Runtime.Trace for connection-level diagnostics by @​fredbi ...

Fixed bugs

• fix(client): strip CR/LF from multipart filename and field name by @​fredbi ...
• fix(middleware): cap filename length on untyped formData uploads by @​fredbi ...
• fix: CA cert pool should be cloned not returned as pointer by @​fredbi in #455 ...
• fix: correct spelling of "Organ trail" to "Oregon Trail" in request tests by @​Copilot in #449 ...
• fix(client/tls): correct PEM label and add Ed25519 key support by @​fredbi in #452 ...

Documentation

• doc: fixup module layout by @​fredbi ...
• doc: trimmed deprecated functions from examples by @​fredbi in #463 ...
• doc: updated contributors file by @​bot-go-openapi[bot] in #460 ...
• doc: advertised doc site in README.md by @​fredbi in #454 ...
• fix: correct two comment typos in client/internal/request/request.go by @​Copilot in #450 ...
• docs(compression): deprecate ContentEncoding, add CAFxX recipe by @​fredbi in #447 ...
• docs(keep-alive): add a thorough keep-alive primer by @​fredbi in #445 ...

Code quality

• doc: godoc linting by @​fredbi in #465 ...
• chore: cleanup linter config, reformat, optimized strings replacer by @​fredbi ...
• Fix/example request by @​fredbi in #462 ...
• chore(relint): relint code base by @​fredbi in #461 ...
• doc: doc site on github pages by @​fredbi in #448 ...

Testing

• test: fix flaky assertion on httptrace by @​fredbi in #456 ...

Miscellaneous tasks

• chore: prepare release v0.31.0 by @​bot-go-openapi[bot] in #466 ...
• chore: remove binary by @​fredbi ...

... (truncated)

Commits

• 423c407 chore: prepare release v0.31.0
• 1fd10af doc: fixup module layout
• 74bcf73 doc: godoc linting (#465)
• 506f3bc Merge pull request #464 from fredbi/sec/lens3-multipart
• 8bf148c chore: cleanup linter config, reformat, optimized strings replacer
• fa33682 test(security): fuzz targets for BindForm parse + filename cap
• 5cabd70 fix(client): strip CR/LF from multipart filename and field name
• 0d36609 fix(middleware): cap filename length on untyped formData uploads
• fe97e40 doc: trimmed deprecated functions from examples (#463)
• 982c9d3 chore: remove binary
• Additional commits viewable in compare view

Updates github.com/Azure/azure-sdk-for-go/sdk/storage/azblob from 1.6.4 to 1.7.0

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/storage/azblob's releases.

sdk/storage/azblob/v1.7.0

1.7.0 (2026-05-14)

Features Added

• Includes all features from 1.7.0-beta.1

sdk/storage/azblob/v1.7.0-beta.1

1.7.0-beta.1 (2026-04-23)

Features Added

• Added support for service version 2026-04-06.
• Added support for Delete Blob Conditional Tier.
• Added support for Server-side Encryption Rekeying.
• Added cross-tenant support for Principal-Bound User Delegation SAS.
• Added support for Dynamic User Delegation SAS.

Bugs Fixed

• Added support for error code IncrementalCopyOfEarlierSnapshotNotAllowed. This replaces IncrementalCopyOfEralierVersionSnapshotNotAllowed which has been deprecated.
• Added support for missing SKU name values.

sdk/storage/azfile/v1.7.0-beta.1

1.7.0-beta.1 (2026-05-05)

Features Added

• Added support for service version 2026-06-06.
• Added support for uploading up to 4 MiB of data with Create File API.

Commits

• 624baba bump azcore version number
• ce7217c Prep for azcore v1.7.0 release (#21149)
• 62a8079 Add support for shallow cloning azcore.Client instances (#21065) (#21098)
• 47286b0 Add flag to enable skipping of dependency checks (#21146)
• ee762d4 Fix populating module name in telemetry policy (#20967) (#20971)
• 0243175 Prep azcore v1.6.1 for release (#20961)
• 9c9d62a Increment package version after release of azcore (#20740)
• 36f766d add sdk/resourcemanager/cosmos/armcosmos live test (#20705)
• c005ed6 sdk/resourcemanager/network/armnetwork live test (#20331)
• 5fa7df4 add sdk/resourcemanager/compute/armcompute live test (#20048)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[Copilot]

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 2 package(s) with unknown licenses.

See the Details below.

License Issues

test/magpiego/go.mod

Package	Version	License	Issue Type
github.com/Azure/azure-sdk-for-go/sdk/storage/azblob	1.7.0	Null	Unknown License
github.com/golang-jwt/jwt/v5	5.3.1	Null	Unknown License

OpenSSF Scorecard

Package	Version	Score	Details
gomod/github.com/go-openapi/runtime	0.31.0	🟢 7.6	Details Check Score Reason Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Maintained 🟢 10 30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 0 Found 0/11 approved changesets -- score normalized to 0 Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies 🟢 10 all dependencies are pinned Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST 🟢 9 SAST tool is not run on all commits -- score normalized to 9
gomod/golang.org/x/net	0.54.0	Unknown	Unknown
gomod/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob	1.7.0	Unknown	Unknown
gomod/github.com/golang-jwt/jwt/v5	5.3.1	Unknown	Unknown
gomod/golang.org/x/net	0.54.0	Unknown	Unknown

Scanned Files

• go.mod
• test/magpiego/go.mod

[radius-functional-tests]

Radius functional test overview

🔍 Go to test action run

Click here to see the test run details

Name	Value
Repository	radius-project/radius
Commit ref	cc259cc
Unique ID	func597c555600
Image tag	pr-func597c555600

• gotestsum 1.13.0
• KinD: v0.29.0
• Dapr: 1.14.4
• Azure KeyVault CSI driver: 1.4.2
• Azure Workload identity webhook: 1.3.0
• Bicep recipe location ghcr.io/radius-project/dev/test/testrecipes/test-bicep-recipes/<name>:pr-func597c555600
• Terraform recipe location http://tf-module-server.radius-test-tf-module-server.svc.cluster.local/<name>.zip (in cluster)
• applications-rp test image location: ghcr.io/radius-project/dev/applications-rp:pr-func597c555600
• dynamic-rp test image location: ghcr.io/radius-project/dev/dynamic-rp:pr-func597c555600
• controller test image location: ghcr.io/radius-project/dev/controller:pr-func597c555600
• ucp test image location: ghcr.io/radius-project/dev/ucpd:pr-func597c555600
• deployment-engine test image location: ghcr.io/radius-project/deployment-engine:latest

Test Status

⌛ Building Radius and pushing container images for functional tests...
✅ Container images build succeeded
⌛ Publishing Bicep Recipes for functional tests...
✅ Recipe publishing succeeded
⌛ Starting ucp-cloud functional tests...
⌛ Starting corerp-cloud functional tests...
✅ ucp-cloud functional tests succeeded
✅ corerp-cloud functional tests succeeded

[github-actions]

Unit Tests

    2 files  ±0    423 suites  ±0   7m 17s ⏱️ -22s
5 128 tests ±0  5 126 ✅ ±0  2 💤 ±0  0 ❌ ±0 
6 157 runs  ±0  6 155 ✅ ±0  2 💤 ±0  0 ❌ ±0 

Results for commit cc259cc. ± Comparison against base commit 9a15c2d.