Andrey Rakhmatullin <[email protected]> writes: > Package: yubikey-manager > Version: 5.7.2-1 > Severity: grave > > Hello! I've just uploaded python3-cryptography 44.0.2-1 which makes yubikey- > manager > and python3-ykman not installable. > > Note that the upstream pyproject.toml has "cryptography (>=3.0, <48)".
I made a quick upload bumping <<44 to <<48.
However why would one want to have these << dependencies? I guess they
are mirroring upstream pyproject.toml, but I still don't understand the
reason. Once python3-fido2 v2 is uploaded to Debian we will have the
same problem with it too. Shouldn't we just drop them? Any objections
to do this?
Package: yubikey-manager
Depends: ...
python3-cryptography (>= 3.0.0),
python3-cryptography (<< 44),
python3-fido2 (>= 0.9),
python3-fido2 (<< 2.0)
/Simon
signature.asc
Description: PGP signature
