Conductr-cli

**Fixes**
- Sandbox native executable: add semver library to hidden imports 525

**Feature**
- New sandbox version notification 510

**Fixes**
- Ensure that the current working directory exists or exit with intelligible error 513
- Fix conduct load creating empty bundle configuration 524

- Adjust bintray resolver credentials to honor realm values 514
- Allow empty services and acls arrays 511
- bndl: Treat empty list args as None 506
- Tolerate empty agent resources 505
- Align role arg format 503

**Feature update**
- Introduce S3 Resolver 490

**Improvements**
- Notify user of `conduct load -f` to reauthenticate 501
- Improved error reporting for OS X reverser dns lookup 496
- Enable Continuous Delivery as default feature 492
- Allow variable substitutions in `--env` arguments for `bndl` tool 489

**Fixes**

- conduct load/deploy now reads the first bundle.conf file listed in the archive central directory 499
- CLI now ignores whitespace for resolver credentials 495
- Refactor bndl so that component configurations are modified more consistently between different input types 494
- Wait for bundle scale: do not immediately exit when encountering error 493

- `bndl` now command provides `--with-defaults` argument 476
- `bndl` now uses `path-beg` instead of `path` by default 484
- Increase retry times for check component added by `bndl` 488
- Performance improvements for progress bar display 486 487
- Improve error reporting when resolvers related errors 485
- `conduct deploy` now supports bundle and configuration as input - this is in preparation for `v3` release of Continuous Delivery bundle 465

**Package cacert using certifi**

Use `cacert.pem` supplied by `certifi` Python package 473:

https://pypi.python.org/pypi/certifi

This will ensure native executables on all platforms has uniform way of loading cacert.

**`bndl` command improvements**
- Refactor `bndl` arguments 475
- `bndl` can now modify volumes of a component and declares volumes from OCI images unless a `--no-default-volumes` argument is present 470
- Bundle validation 469
- Name bndl component after the OCI image instead of generic "oci-image" 472

**Fixes**
- Encode/decode text files to UTF-8 471