Update xmlseclibs to 3.0.4

pitbulk · pitbulk · commit a5a520b2c8f2 · 2019-11-06T17:41:35.000+01:00
diff --git a/README.md b/README.md
@@ -10,6 +10,8 @@ and supported by OneLogin Inc.
 Warning
 -------
 
+Version 3.3.1 updates xmlseclibs to 3.0.4 (CVE-2019-3465), but php-saml was not directly affected since it implements additional checks that prevent to exploit that vulnerability.
+
 Version 3.3.0 sets strict mode active by default
 
 Update php-saml to 3.1.0, this version includes a security patch related to XEE attacks.
diff --git a/composer.json b/composer.json
@@ -16,11 +16,11 @@
     },
     "require": {
         "php": ">=5.4",
-        "robrichards/xmlseclibs": ">=3.0.3"
+        "robrichards/xmlseclibs": ">=3.0.4"
     },
     "require-dev": {
+        "php-coveralls/php-coveralls": "^2.1",
         "phpunit/phpunit": "^4.8.35 || ^5.7 || ^6.5 || ^7.1",
-        "php-coveralls/php-coveralls": "^1.0.2 || ^2.0",
         "sebastian/phpcpd": "^2.0 || ^3.0 || ^4.0",
         "phploc/phploc": "^2.1 || ^3.0 || ^4.0",
         "pdepend/pdepend": "^2.5.0",
