Composer(deps): Bump lcobucci/jwt from 4.2.1 to 5.0.0 in /web

[dependabot[bot]]

Bumps lcobucci/jwt from 4.2.1 to 5.0.0.

Release notes

Sourced from lcobucci/jwt's releases.

5.0.0

Release Notes for 5.0.0

This release removes deprecated components, makes PHP 8.1 the minimum required version, and ships some API improvements.

5.0.0

• Total issues resolved: 2
• Total pull requests resolved: 25
• Total contributors: 9

BC-break

• 979: Builder: make it immutable thanks to @​Slamdunk
• 939: Remove empty Signer, empty Key, empty Signature, empty strings thanks to @​Slamdunk
• 937: Remove \Lcobucci\JWT\Signer\None thanks to @​Slamdunk
• 873: Use abstraction instead of concretion thanks to @​lcobucci
• 872: Remove deprecated components thanks to @​lcobucci
• 871: Require PHP 8.1+ thanks to @​lcobucci
• 969: 4.3.x merge up into 5.0.x thanks to @​lcobucci

Minor BC-break

• 967: Make testing less painful thanks to @​lcobucci

Improvement

• 1001: Support other PSR-20 implementations thanks to @​lcobucci
• 977: Builder fluent interface is confusing thanks to @​Slamdunk
• 960: Setup Renovate as a replacement for Dependabot thanks to @​Ocramius
• 931: Make test assertion more strict thanks to @​peter279k
• 880: PHP Version constraint: stick to tested versions only thanks to @​Slamdunk

CI

• 1000: Update docs and CI files thanks to @​lcobucci
• 999: Use roave/backward-compatibility-check directly thanks to @​lcobucci

Dependencies

• 998: Update to PHPUnit 10 thanks to @​Slamdunk
• 988: Merge release 4.3.0 into 5.0.x thanks to @​github-actions[bot]
• 984: Update dependency phpstan/phpstan to ^1.9.4 thanks to @​renovate[bot]
• 906: Bump phpstan/phpdoc-parser from 1.7.0 to 1.8.0 thanks to @​dependabot[bot]
• 905: Bump nikic/php-parser from 4.14.0 to 4.15.1 thanks to @​dependabot[bot]
• 904: Bump phpstan/phpstan from 1.8.3 to 1.8.5 thanks to @​dependabot[bot]
• 902: Bump phpstan/phpstan-strict-rules from 1.4.2 to 1.4.3 thanks to @​dependabot[bot]
• 898: Bump phpstan/phpstan from 1.8.2 to 1.8.3 thanks to @​dependabot[bot]
• 973: Update all non-major dependencies thanks to @​renovate[bot]

... (truncated)

Commits

• 47bdb0e Merge pull request #1001 from lcobucci/use-clock-from-psr
• 47307cc Mention clock interoperability on docs too
• 3aa05aa Move dependency on lcobucci/clock to dev
• d06abd9 Support other PSR-20 implementations
• e3222ce Update all non-major dependencies
• 12f504d Update dependency phpunit/phpunit to ^10.0.12
• 619f3c6 Update dependency phpstan/phpstan to ^1.10.2
• c1b3df7 Update dependency phpstan/phpstan to ^1.10.1
• 6b37040 Merge pull request #1000 from lcobucci/update-docs
• 835c48a Use new way for setting output parameters
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[dependabot[bot]]

Superseded by #933.