Update xmlseclibs version requirement to 3.1.4 due CVE-2025-66475

pitbulk · web-flow · commit bf0c0dede94f · 2025-12-09T10:41:55.000+01:00
Update xmlseclibs version requirement to 3.1.4 due CVE-2025-66475 xmlseclibs < 3.1.4 has the vulnerability CVE-2025-66475 Forcing to use the patched version See GHSA-c4cc-x928-vjw9
diff --git a/composer.json b/composer.json
@@ -16,7 +16,7 @@
     },
     "require": {
         "php": ">=7.3",
-        "robrichards/xmlseclibs": "^3.1"
+        "robrichards/xmlseclibs": ">=3.1.4"
     },
     "require-dev": {
         "phpunit/phpunit": "^9.5",
