Package: caja-dropbox
Version: 1.16.0-1
Severity: important

Hi,

your package depends on the obsolete and abandoned python library
pygpgme. I've just filed an RC bug against that package, so that we
don't release buster with an essentially unmaintained package:

<https://bugs.debian.org/866024>

The packages python-gpg and python3-gpg (built from source package
gpgme1.0) provide python bindings for interactions with the gpgme
library. Both packages are already available in stretch.

It seems that caja-dropbox only uses gpgme to verify a file signature,
so it appears to be a rather simple task to rewrite the signature
checking code.

Regards,
Tobias

Attachment: signature.asc
Description: OpenPGP digital signature

Reply via email to