diff --git a/debian/changelog b/debian/changelog
index 1b93e71d..f078fc19 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,13 @@
+in-toto (1.3.1-2) UNRELEASED; urgency=medium
+
+ * Remove constraints unnecessary since buster (oldstable):
+ + Build-Depends: Replace dependency on transitional package gnupg2 with
+ replacement gnupg (>= 2.2.12-1+deb10u2).
+ + in-toto: Replace dependency on transitional package gnupg2 with
+ replacement gnupg (>= 2.2.12-1+deb10u2) in Recommends.
+
+ -- Debian Janitor <janitor@jelmer.uk> Sun, 09 Jul 2023 02:18:34 -0000
+
in-toto (1.3.1-1) unstable; urgency=medium
* New upstream release includes among other things:
diff --git a/debian/control b/debian/control
index ff0c248c..26e64eaa 100644
--- a/debian/control
+++ b/debian/control
@@ -21,7 +21,7 @@ Build-Depends:
python3-cryptography,
python3-nacl,
python3-securesystemslib (>= 0.26.0),
- gnupg2,
+ gnupg (>= 2.2.12-1+deb10u2),
Standards-Version: 4.6.2
Rules-Requires-Root: no
Homepage: https://in-toto.io
@@ -37,7 +37,7 @@ Depends:
${python3:Depends},
${misc:Depends},
Recommends:
- gnupg2,
+ gnupg (>= 2.2.12-1+deb10u2),
Description: software supply chain security framework
in-toto provides tools both for software developers to authenticate operations
in the supply chain, as well as for end-users to verify the authentication