Renovate: Update module github.com/go-openapi/runtime to v0.31.0

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
github.com/go-openapi/runtime	v0.30.0 → v0.31.0

---

Release Notes

go-openapi/runtime (github.com/go-openapi/runtime)

v0.31.0

Compare Source

0.31.0 - 2026-05-17

Full Changelog: go-openapi/runtime@v0.30.0...v0.31.0

33 commits in this release.

---

Implemented enhancements

• feat(client): TLS diagnostic mode for Runtime.Trace by @​fredbi ...
• feat(client): add Runtime.Trace for connection-level diagnostics by @​fredbi ...

Fixed bugs

• fix(client): strip CR/LF from multipart filename and field name by @​fredbi ...
• fix(middleware): cap filename length on untyped formData uploads by @​fredbi ...
• fix: CA cert pool should be cloned not returned as pointer by @​fredbi in #​455 ...
• fix: correct spelling of "Organ trail" to "Oregon Trail" in request tests by @​Copilot in #​449 ...
• fix(client/tls): correct PEM label and add Ed25519 key support by @​fredbi in #​452 ...

Documentation

• doc: fixup module layout by @​fredbi ...
• doc: trimmed deprecated functions from examples by @​fredbi in #​463 ...
• doc: updated contributors file by @​bot-go-openapi[bot] in #​460 ...
• doc: advertised doc site in README.md by @​fredbi in #​454 ...
• fix: correct two comment typos in client/internal/request/request.go by @​Copilot in #​450 ...
• docs(compression): deprecate ContentEncoding, add CAFxX recipe by @​fredbi in #​447 ...
• docs(keep-alive): add a thorough keep-alive primer by @​fredbi in #​445 ...

Code quality

• doc: godoc linting by @​fredbi in #​465 ...
• chore: cleanup linter config, reformat, optimized strings replacer by @​fredbi ...
• Fix/example request by @​fredbi in #​462 ...
• chore(relint): relint code base by @​fredbi in #​461 ...
• doc: doc site on github pages by @​fredbi in #​448 ...

Testing

• test: fix flaky assertion on httptrace by @​fredbi in #​456 ...

Miscellaneous tasks

• chore: prepare release v0.31.0 by @​bot-go-openapi[bot] in #​466 ...
• chore: remove binary by @​fredbi ...
• fix(ci): fix fuzzing workflow by @​fredbi ...

Security

• test(security): fuzz targets for BindForm parse + filename cap by @​fredbi ...
• test(security): fuzz targets for header-parsing surface by @​fredbi ...
• fix(negotiate/header): reject q-values greater than 1 by @​fredbi ...
• docs(security): document constant-time-comparison contract for auth callbacks by @​fredbi in #​457 ...
• feat(runtime): BindForm helper for multipart/urlencoded body binding by @​fredbi in #​446 ...

Updates

• build(deps): bump the development-dependencies group with 4 updates by @​dependabot[bot] in #​458 ...

Other (technical)

• Sec/lens3 multipart by @​fredbi in #​464 ...
• Sec/lens4 headers by @​fredbi in #​459 ...
• middleware/parameter.go: fix comment describing ParseForm fallback by @​Copilot in #​451 ...
• Feat/client httptrace by @​fredbi in #​453 ...

---

People who contributed to this release

• @​Copilot
• @​fredbi

---

New Contributors

• @​Copilot made their first contribution
  in #​451

---

runtime license terms

Per-module changes

---

client-middleware/opentracing (0.31.0)

Code quality

• chore(relint): relint code base by @​fredbi in #​461 ...
• doc: doc site on github pages by @​fredbi in #​448 ...

Miscellaneous tasks

• chore: prepare release v0.31.0 by @​bot-go-openapi[bot] in #​466 ...

---

docs/examples (0.31.0)

Documentation

• doc: fixup module layout by @​fredbi ...
• doc: trimmed deprecated functions from examples by @​fredbi in #​463 ...
• docs(compression): deprecate ContentEncoding, add CAFxX recipe by @​fredbi in #​447 ...

Code quality

• Fix/example request by @​fredbi in #​462 ...
• chore(relint): relint code base by @​fredbi in #​461 ...
• doc: doc site on github pages by @​fredbi in #​448 ...

Miscellaneous tasks

• chore: remove binary by @​fredbi ...

Security

• docs(security): document constant-time-comparison contract for auth callbacks by @​fredbi in #​457 ...

---

server-middleware (0.31.0)

Documentation

• docs(compression): deprecate ContentEncoding, add CAFxX recipe by @​fredbi in #​447 ...

Code quality

• chore(relint): relint code base by @​fredbi in #​461 ...
• doc: doc site on github pages by @​fredbi in #​448 ...

Security

• test(security): fuzz targets for header-parsing surface by @​fredbi ...
• fix(negotiate/header): reject q-values greater than 1 by @​fredbi ...

Other (technical)

• Sec/lens4 headers by @​fredbi in #​459 ...

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • "before 8am on Friday"
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ️ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 1 additional dependency was updated

Details:

Package	Change
github.com/go-openapi/jsonpointer	v0.22.5 -> v0.23.1