Update ruby-saml dependency

Breaking Changes

• None

Changes

• Update ruby-saml dependency.
• Update tests rspec version to be compatible with newer versions of rails.

1.3.0

Breaking Changes

• None

Changes

• Removes Gemfile.lock to allow newer versions of sinatra

1.2.0

Breaking changes

None

Changes

• Loosens nokogiri version constraints to permit versions newer than 1.12
  • Helps address CVEs:
    • CVE-2021-30560
    • CVE-2022-23308

1.1.0

Breaking Changes

None. This is a minor release

Changes

• Removes a version constraint imposed by fake_idp on ActiveModel.
  We don't depend directly on ActiveModel/ActiveSupport so ultimately it is not our responsibility to add version restrictions to avoid CVEs. This just isn't feasible with our team's bandwidth but we will continue to monitor our first-party dependencies and keep those versions up-to-date to keep our users safe.

1.0.5

• Pins nokogiri to ~> 1.12.5 to address CVE-2021-41098 (GHSA-2rr5-8q37-2w7h)
• Updates ruby-saml to 1.13.0

1.0.4

1.0.4

1.0.3

Allows for leveraging ruby-saml versions as new as 1.12 while still supporting prior versions

1.0.2

Loosens restrictions on which versions of ActiveModel are allowed (and thereby ActiveSupport)

1.0.0

Bump to v1.0.0 (#42)

Co-Authored-By: Robyn-Dale Samuda <[email protected]>

Make ruby-saml a runtime dependency

This change facilitates using the public SamlResponse class to construct responses which depends on the ruby-saml gem