Bump robrichards/xmlseclibs from 3.0.1 to 3.0.4

[dependabot]

Bumps robrichards/xmlseclibs from 3.0.1 to 3.0.4.

Release notes

Sourced from robrichards/xmlseclibs's releases.

3.0.4

Security Release for CVE-2019-3465

3.0.3

Add PHP 7.3 support

3.0.2

Mainly security related release. See Changelog for more details

Changelog

Sourced from robrichards/xmlseclibs's changelog.

xmlseclibs.php ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||| ??, ??? 2020, 3.1.2

05, Sep 2020, 3.1.1 Features:

• Support OAEP (iggyvolz)

Bug Fixes:

• Fix AES128 (iggyvolz)

Improvements:

• Fix tests for older PHP

22, Apr 2020, 3.1.0 Features:

• Support AES-GCM. Requires PHP 7.1. (François Kooman)

Improvements:

• Fix Travis tests for older PHP versions.
• Use DOMElement interface to fix some IDEs reporting documentation errors

Bug Fixes:

• FIX missing InclusiveNamespaces PrefixList from Java + Apache WSS4J. (njake)

06, Nov 2019, 3.0.4 Security Improvements:

• Insure only a single SignedInfo element exists within a signature during verification. Refs CVE-2019-3465. Bug Fixes:
• Fix variable casing.

15, Nov 2018, 3.0.3 Bug Fixes:

• Fix casing of class name. (Willem Stuursma-Ruwen)
• Fix Xpath casing. (Tim van Dijen)

Improvements:

• Make PCRE2 compliant. (Stefan Winter)
• Add PHP 7.3 support. (Stefan Winter)

27, Sep 2018, 3.0.2 Security Improvements:

• OpenSSL is now a requirement rather than suggestion. (Slaven Bacelic)
• Filter input to avoid XPath injection. (Jaime Pérez)

Bug Fixes:

• Fix missing parentheses (Tim van Dijen)

Improvements:

... (truncated)

Commits

• 0a53d3c Release 3.0.4. Security release for CVE-2019-3465
• 0f54660 Update year
• 5a02126 No longer supporting 2.x branch
• f1ef070 Back to dev
• 406c68a Prep 3.0.3
• 4de3ddd Merge pull request #181 from restena-sw/patch-2
• 20c3414 Merge pull request #180 from restena-sw/patch-1
• d4ae595 Merge pull request #182 from tvdijen/patch-1
• 1dfc921 s/XPATH/XPath
• 0adf52a test for PHP 7.3 as well
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.