Package: caja-dropbox Version: 1.16.0-1 Severity: important Hi,
your package depends on the obsolete and abandoned python library pygpgme. I've just filed an RC bug against that package, so that we don't release buster with an essentially unmaintained package: <https://bugs.debian.org/866024> The packages python-gpg and python3-gpg (built from source package gpgme1.0) provide python bindings for interactions with the gpgme library. Both packages are already available in stretch. It seems that caja-dropbox only uses gpgme to verify a file signature, so it appears to be a rather simple task to rewrite the signature checking code. Regards, Tobias
signature.asc
Description: OpenPGP digital signature

