RE: Suggestion for XmlTooling 1.4.1: Shibboleth Service Provider Security Advisory [2018-01-12]
> Can you please guide me to the next step to overcome this and make this
> code up-to-date.
Stop implementing SAML yourself and use an existing implementation that does what you need. If you have a choice between accepting the need to stop doing it all yourself and using EOL code, that shouldn't be a hard decision to make.
> Is there any document or link on how to upgrade this ?
We do not have significant developer documentation for OpenSAML, it's user beware, and always has been. It's for our use, we simply happen to make it accessible as open source because the rest of Shibboleth is.
It was not my choice to describe it on a web site as a "product" we offer, and for that I can apologize, though again, not my decision.