Bump xmldom, rdflib and solid-server

[dependabot]

Removes xmldom. It's no longer used after updating ancestor dependencies xmldom, rdflib and solid-server. These dependencies need to be updated together.

Removes xmldom

Updates rdflib from 0.16.9 to 2.2.20

Release notes

Sourced from rdflib's releases.

v2.2.18

PR #551 add fetcher to ConnectedStore and update to LiveStore issue #526 on JSON-LD with named Graphs issue #542 turtle serializer add white space between colon and dot

v2.2.15

No release notes provided.

v2.2.14

• update documentation :
  • document in README.md the use of alternate fetches
• bug
  • window/global.solidFetcher is deprecated and replaced by windowsolidFetch or global.solidFetch

v2.2.8

fixes linkeddata/rdflib.js#517

fetcher.load() of .jsonld resource

repair jsonLdParser #508 #509 and issue #310

v2.2.6

bug update. issue #506 in webOperation()

v2.2.5

No release notes provided.

v2.2.2

improvements :

• use solid prefixes by default : issue #472
• disable Store Features by default notably sameAs : issue #185, #458

bugs :

• parsing rdf:HTML as RDFa failed with 500 : issue #485
• updater.updateMany() : issue #490
• fix options.headers : PR #470

update of all dependencies, except webpack@4 and source-map-loader@1

Changed types for store

After previous release we discovered that there were some discrepancies between factory methods and store methods, which makes the combined use of them difficult. This patch release fixes this.

PRs in this release

• [Adding rdflib data types to Store #415](linkeddata/rdflib.js#415)

Introducing types + a couple of fixes

With this minor release we move types from @​types/rdflib to internal type definitions, which should make them more accurate. With this work we had to do a bit of work to make sure that everything played along nicely in TypeScript. We've tried to make sure that no methods break, but if anything breaks for you, please let us know.

PRs included

... (truncated)

Commits

• See full diff in compare view

Updates solid-server from 5.0.0-beta.6 to 5.7.3

Release notes

Sourced from solid-server's releases.

v5.7.1

Resolves an edit card regression issue on mashlib dashboard solid/solidos#138

v5.7.0

• updated to [email protected]

• Some enhancement

  #1675 #1673 #1676

  • add solid:oidcIssuer in default profile
  • OIDC add scopesSupported parameters for better compatibility with OIDC and latest inrupt authorisation library

• resolve bug #1677 by which a .meta resource was created for each PUT on container. on some situation this had the consequence to wrongly override previous .meta

v5.6.24

• update to [email protected] which mainly resolves solid/solidos#113
• server migration : the use of https://github.com/inrupt/solid-client-authn-js v1.11.5 implies a manual migration for NSS servers (on each new sever and once on existing ones)

  # cd .db/oidc/op/
  # nano provider.json 
  One needs to add the line: "scopes_supported": ["openid", "offline_access"],
  

v5.6.20

No release notes provided.

v5.6.18

• Should be compliant with solid protocol v0.9.0 https://solidproject.org/TR/2021/protocol-20211217
• updates :
  • n3-patch compliant with backward compatibility
  • check write on container for delete
  • [email protected]
    • new markdown renderer in HumanReadablePane. Edit with source-pane
    • update rendered dashboard when using browse.html
• issues :
  • solid/node-solid-server#1387
  • solid/node-solid-server#1641

v5.6.16

• improved podRoot register/login
• implementation of pim:storage specification
• [email protected]

update to mashlib v1.7.4

• rdflib updated to v2.2.7
• management of application/json and application/ld+json has been added to the dataBrowser.

v5.6.7

• upgraded to :
  • mashlib v1.7.3

... (truncated)

Changelog

Sourced from solid-server's changelog.

History

5.3.0

• Support for webid-oidc with DPop tokens

5.3.0 Upgrade Notes

You may have a .db/oidc/op/provider.json file that was generated by an older version of node-solid-server, which may still specify "response_types_supported" without listing "id_token code". You can move this file out of the way and restart node-solid-server, it will be created again. See solid/node-solid-server#1433 for more info.

5.0.0

• Node versions greater than 8 are supported.
• Changes to vocabulary use:
  • solid:inbox is deprecated in favour of ldp:inbox.
  • acl:defaultForNew is deprecated in favour of acl:default.
• Terms of Service may be added and enforced for new registrations, but is disabled by default.
• DELETE operations on a resource now require that the user has write permissions on the file's container
• Improved support for logout ensures users can use different identities.
• The profile container is now public readable by default.
• Access Control:
  • The Access Control List system has undergone extensive changes. Security has been tightened, and some unsafe practices that where web apps was authorized access in the past are now not permitted.
  • The browser-reported Origin header will now be checked by default, and the ACL system can be used to restrict access to applications for added security.
  • Users can add trustedApp entries to their profile using a new databrowser pane. You will see an 'A' icon added while you view a Person's profile URL with the data browser (might have to hit refresh in your browser and make sure you are viewing a WebId URL like https://localhost:8443/profile/card#me).
• Logging is now verbose by default so the -v option has been removed and a --quiet option has been added to mute the log.
• To be bug compliant with 4.x releases, if a rule for public readable root / does not exist, it will check in /index.html.acl (see issue #1063)
• Command line options are now kebab-cased rather than camelCased, config options may be both.
• Resource with no extension now have '$.ttl' appended in the filename (see upgrades notes below).
• Many smaller fixes.

5.0.0 Upgrade Notes

• As of v5.0.0, all Turtle files need an extension. (Intervention needed when updating from < 5.0.0!)
  • How to upgrade?
    1. Stop the server.

... (truncated)

Commits

• 698f73c 5.7.3
• 8b02bdc update version in index.html
• 0de128f update dependencies to jose ES256
• b01a2c2 update dependencies to minor and [email protected]
• 2e4ce40 Merge pull request #1695 from nodeSolidServer/patchJsonld
• c791802 update default content for rdf+xml
• 4a596df Update lib/handlers/patch.js
• 6327f90 Update lib/handlers/patch.js
• 5f2f7d0 Update test/integration/patch-test.js
• 03a48ee Merge branch 'patchJsonld' of https://github.com/solid/node-solid-server into...
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by bourgeoa, a new releaser for solid-server since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.