cmdbox 0.5.3__py3-none-any.whl → 0.5.4__py3-none-any.whl

cmdbox/app/web.py

@@ -1,5 +1,5 @@
 from cmdbox.app import common, options
-from cmdbox.app.auth.signin import Signin
+from cmdbox.app.auth import signin, signin_saml
 from cmdbox.app.commons import module
 from fastapi import FastAPI, Request, Response, HTTPException
 from fastapi.responses import RedirectResponse
@@ -116,8 +116,9 @@ class Web:
         self.cb_queue = queue.Queue(1000)
         self.options = options.Options.getInstance()
         self.webcap_client = requests.Session()
-        signin_file_data = Signin.load_signin_file(self.signin_file)
-        self.signin = Signin(self.logger, self.signin_file, signin_file_data, self.appcls, self.ver)
+        signin_file_data = signin.Signin.load_signin_file(self.signin_file)
+        self.signin = signin.Signin(self.logger, self.signin_file, signin_file_data, self.appcls, self.ver)
+        self.signin_saml = signin_saml.SigninSAML(self.logger, self.signin_file, signin_file_data, self.appcls, self.ver)
 
         if self.logger.level == logging.DEBUG:
             self.logger.debug(f"web init parameter: data={self.data} -> {self.data.absolute() if self.data is not None else None}")
@@ -348,12 +349,12 @@ class Web:
         if 'hash' not in user or user['hash'] == '':
             raise ValueError(f"User hash is not found or empty. ({user})")
         hash = user['hash']
-        if hash!='oauth2' and ('password' not in user or user['password'] == ''):
+        if hash!='oauth2' and hash!='saml' and ('password' not in user or user['password'] == ''):
             raise ValueError(f"User password is not found or empty. ({user})")
         if 'email' not in user:
             raise ValueError(f"User email is not found. ({user})")
-        if hash=='oauth2' and (user['email'] is None or user['email']==''):
-            raise ValueError(f"Required when `email` is `oauth2`. ({user})")
+        if (hash=='oauth2' or hash=='saml') and (user['email'] is None or user['email']==''):
+            raise ValueError(f"Required when `email` is `oauth2` or `saml`. ({user})")
         if 'groups' not in user or type(user['groups']) is not list:
             raise ValueError(f"User groups is not found or empty. ({user})")
         for gn in user['groups']:
@@ -363,13 +364,13 @@ class Web:
             raise ValueError(f"User uid is already exists. ({user})")
         if len([u for u in signin_data['users'] if u['name'] == user['name']]) > 0:
             raise ValueError(f"User name is already exists. ({user})")
-        if hash not in ['oauth2', 'plain', 'md5', 'sha1', 'sha256']:
+        if hash not in ['oauth2', 'saml', 'plain', 'md5', 'sha1', 'sha256']:
             raise ValueError(f"User hash is not supported. ({user})")
         jadge, msg = self.signin.check_password_policy(user['name'], '', user['password'])
         if not jadge:
             raise ValueError(msg)
         if hash != 'plain':
-            user['password'] = common.hash_password(user['password'], hash if hash != 'oauth2' else 'sha1')
+            user['password'] = common.hash_password(user['password'], hash if hash != 'oauth2' and hash != 'saml' else 'sha1')
         else:
             user['password'] = user['password']
         signin_data['users'].append(user)
@@ -405,8 +406,8 @@ class Web:
         if 'email' not in user:
             raise ValueError(f"User email is not found. ({user})")
         hash = user['hash']
-        if hash=='oauth2' and (user['email'] is None or user['email']==''):
-            raise ValueError(f"Required when `email` is `oauth2`. ({user})")
+        if (hash=='oauth2' or hash=='saml') and (user['email'] is None or user['email']==''):
+            raise ValueError(f"Required when `email` is `oauth2` or `saml`. ({user})")
         if 'groups' not in user or type(user['groups']) is not list:
             raise ValueError(f"User groups is not found or empty. ({user})")
         for gn in user['groups']:
@@ -416,7 +417,7 @@ class Web:
             raise ValueError(f"User uid is not found. ({user})")
         if len([u for u in signin_data['users'] if u['name'] == user['name']]) <= 0:
             raise ValueError(f"User name is not found. ({user})")
-        if hash not in ['oauth2', 'plain', 'md5', 'sha1', 'sha256']:
+        if hash not in ['oauth2', 'saml', 'plain', 'md5', 'sha1', 'sha256']:
             raise ValueError(f"User hash is not supported. ({user})")
         for u in signin_data['users']:
             if u['uid'] == user['uid']:
@@ -426,7 +427,7 @@ class Web:
                     if not jadge:
                         raise ValueError(msg)
                     if hash != 'plain':
-                        u['password'] = common.hash_password(user['password'], hash if hash != 'oauth2' else 'sha1')
+                        u['password'] = common.hash_password(user['password'], hash if hash != 'oauth2' and hash != 'saml' else 'sha1')
                     else:
                         u['password'] = user['password']
                     # パスワード更新日時の保存

cmdbox/extensions/features.yml

@@ -46,10 +46,10 @@ audit:
     mode: audit                         # Specify the mode of the feature to be searched.
     cmd: search                         # Specify the command to be searched.
   options:                              # Specify the options for the audit function.
-    host: localhost                     # Specify the service host of the audit Redis server.
-    port: 6379                          # Specify the service port of the audit Redis server.
-    password: password                  # Specify the access password of the audit Redis server.
-    svname: server                      # Specify the audit service name of the inference server.
+    host: localhost                     # Specify the service host of the audit Redis server.However, if it is specified as a command line argument, it is ignored.
+    port: 6379                          # Specify the service port of the audit Redis server.However, if it is specified as a command line argument, it is ignored.
+    password: password                  # Specify the access password of the audit Redis server.However, if it is specified as a command line argument, it is ignored.
+    svname: cmdbox                      # Specify the audit service name of the inference server.However, if it is specified as a command line argument, it is ignored.
     retry_count: 3                      # Specifies the number of reconnections to the audit Redis server.If less than 0 is specified, reconnection is forever.
     retry_interval: 1                   # Specifies the number of seconds before reconnecting to the audit Redis server.
     timeout: 15                         # Specify the maximum waiting time until the server responds.

cmdbox/extensions/sample_project/sample/app/features/cli/sample_server_time.py

@@ -48,7 +48,7 @@ class ServerTime(feature.Feature):
                 dict(opt="password", type=Options.T_STR, default=self.default_pass, required=True, multi=False, hide=True, choice=None,
                         discription_ja="Redisサーバーのアクセスパスワード(任意)を指定します。省略時は `password` を使用します。",
                         discription_en="Specify the access password of the Redis server (optional). If omitted, `password` is used."),
-                dict(opt="svname", type=Options.T_STR, default="server", required=True, multi=False, hide=True, choice=None,
+                dict(opt="svname", type=Options.T_STR, default=self.default_svname, required=True, multi=False, hide=True, choice=None,
                         discription_ja="サーバーのサービス名を指定します。省略時は `server` を使用します。",
                         discription_en="Specify the service name of the inference server. If omitted, `server` is used."),
                 dict(opt="timedelta", type=Options.T_INT, default=9, required=False, multi=False, hide=False, choice=None,

cmdbox/extensions/sample_project/sample/extensions/features.yml

@@ -46,3 +46,26 @@ aliases:                                # Specify the alias for the specified co
                                         #   e.g. /{1}_exec
         move:                           # Specify whether to move the regular expression group of the source to the target.
                                         #   e.g. true
+audit:
+  enabled: true                         # Specify whether to enable the audit function.
+  write:
+    mode: audit                         # Specify the mode of the feature to be writed.
+    cmd: write                          # Specify the command to be writed.
+  search:
+    mode: audit                         # Specify the mode of the feature to be searched.
+    cmd: search                         # Specify the command to be searched.
+  options:                              # Specify the options for the audit function.
+    host: localhost                     # Specify the service host of the audit Redis server.However, if it is specified as a command line argument, it is ignored.
+    port: 6379                          # Specify the service port of the audit Redis server.However, if it is specified as a command line argument, it is ignored.
+    password: password                  # Specify the access password of the audit Redis server.However, if it is specified as a command line argument, it is ignored.
+    svname: cmdbox                      # Specify the audit service name of the inference server.However, if it is specified as a command line argument, it is ignored.
+    retry_count: 3                      # Specifies the number of reconnections to the audit Redis server.If less than 0 is specified, reconnection is forever.
+    retry_interval: 1                   # Specifies the number of seconds before reconnecting to the audit Redis server.
+    timeout: 15                         # Specify the maximum waiting time until the server responds.
+    pg_enabled: False                   # Specify True if using the postgresql database server.
+    pg_host: localhost                  # Specify the postgresql host.
+    pg_port: 5432                       # Specify the postgresql port.
+    pg_user: postgres                   # Specify the postgresql user name.
+    pg_password: password               # Specify the postgresql password.
+    pg_dbname: audit                    # Specify the postgresql database name.
+    retention_period_days: 365          # Specify the number of days to retain audit logs.

cmdbox/extensions/sample_project/sample/extensions/user_list.yml

@@ -2,9 +2,9 @@ users:                         # A list of users, each of which is a map that co
 - uid: 1                       # An ID that identifies a user. No two users can have the same ID.
   name: admin                  # A name that identifies the user. No two users can have the same name.
   password: admin              # The user's password. The value is hashed with the hash function specified in the next hash field.
-  hash: plain                  # The hash function used to hash the password, which can be plain, md5, sha1, or sha256, or oauth2.
+  hash: plain                  # The hash function used to hash the password, which can be plain, md5, sha1, or sha256, or oauth2, or saml.
   groups: [admin]              # A list of groups to which the user belongs, as specified in the groups field.
-  email: admin@aaa.bbb.jp      # The email address of the user, used when authenticating using the provider specified in the oauth2 field.
+  email: admin@aaa.bbb.jp      # The email address of the user, used when authenticating using the provider specified in the oauth2 or saml field.
 - uid: 101
   name: user01
   password: b75705d7e35e7014521a46b532236ec3
@@ -36,7 +36,6 @@ groups:                        # A list of groups, each of which is a map that c
 - gid: 103
   name: editor
   parent: user
-
 cmdrule:                       # A list of command rules, Specify a rule that determines whether or not a command is executable when executed by a user in web mode.
   policy: deny                 # Specify the default policy for the rule. The value can be allow or deny.
   rules:                       # Specify rules to allow or deny execution of the command, depending on the group the user belongs to.
@@ -50,6 +49,10 @@ cmdrule:                       # A list of command rules, Specify a rule that de
     mode: server
     cmds: [list]
     rule: allow
+  - groups: [user, guest]
+    mode: audit
+    cmds: [write]
+    rule: allow
   - groups: [user, guest]
     mode: web
     cmds: [genpass]
@@ -70,6 +73,7 @@ pathrule:                      # List of RESTAPI rules, rules that determine whe
     rule: allow
   - groups: [user]
     paths: [/signin, /assets, /bbforce_cmd, /copyright, /dosignin, /dosignout, /password/change,
+            /gui/user_data/load, /gui/user_data/save, /gui/user_data/delete,
             /exec_cmd, /exec_pipe, /filer, /gui, /get_server_opt, /usesignout, /versions_cmdbox, /versions_used]
     rule: allow
   - groups: [readonly]
@@ -105,7 +109,8 @@ oauth2:                             # OAuth2 settings.
       client_secret: XXXXXXXXXXX    # Specify Google's OAuth2 client secret.
       redirect_uri: https://localhost:8443/oauth2/google/callback # Specify Google's OAuth2 redirect URI.
       scope: ['email']              # Specify the scope you want to retrieve with Google's OAuth2. Usually, just reading the email is sufficient.
-      signin_module:                # Specify the module name that implements the sign-in. see, cmdbox.app.signin.SignIn
+      signin_module:                # Specify the module name that implements the sign-in.
+        cmdbox.app.auth.google_signin
       note:                         # Specify a description such as Google's OAuth2 reference site.
       - https://developers.google.com/identity/protocols/oauth2/web-server?hl=ja#httprest
     github:                         # OAuth2 settings for GitHub.
@@ -114,7 +119,8 @@ oauth2:                             # OAuth2 settings.
       client_secret: XXXXXXXXXXX    # Specify the GitHub OAuth2 client secret.
       redirect_uri: https://localhost:8443/oauth2/github/callback # Specify the OAuth2 redirect URI for GitHub.
       scope: ['user:email']         # Specify the scope you want to get from GitHub's OAuth2. Usually, just reading the email is sufficient.
-      signin_module:                # Specify the module name that implements the sign-in. see, cmdbox.app.signin.SignIn
+      signin_module:                # Specify the module name that implements the sign-in.
+        cmdbox.app.auth.github_signin
       note:                         # Specify a description, such as a reference site for OAuth2 on GitHub.
       - https://docs.github.com/ja/apps/oauth-apps/building-oauth-apps/authorizing-oauth-apps#scopes
     azure:                          # OAuth2 settings for Azure AD.
@@ -124,6 +130,34 @@ oauth2:                             # OAuth2 settings.
       client_secret: XXXXXXXXXXX    # Specify the Azure AD OAuth2 client secret.
       redirect_uri: https://localhost:8443/oauth2/azure/callback # Specify the OAuth2 redirect URI for Azure AD.
       scope: ['openid', 'profile', 'email', 'https://graph.microsoft.com/mail.read']
-      signin_module:                # Specify the module name that implements the sign-in. see, cmdbox.app.signin.SignIn
+      signin_module:                # Specify the module name that implements the sign-in.
+        cmdbox.app.auth.azure_signin
       note:                         # Specify a description, such as a reference site for Azure AD's OAuth2.
       - https://learn.microsoft.com/ja-jp/entra/identity-platform/v2-oauth2-auth-code-flow
+saml:                               # SAML settings.
+  providers:                        # This is a per-provider setting for OAuth2.
+    azure:                          # SAML settings for Azure AD.
+      enabled: false                # Specify whether to enable SAML authentication for Azure AD.
+      signin_module:                # Specify the module name that implements the sign-in.
+        cmdbox.app.auth.azure_signin_saml # Specify the python3-saml configuration.
+                                    # see) https://github.com/SAML-Toolkits/python3-saml
+      sp:
+        entityId: https://localhost:8443/
+        assertionConsumerService:
+          url: https://localhost:8443/saml/azure/callback
+          binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
+        attributeConsumingService: {}
+        singleLogoutService:
+          binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
+        NameIDFormat: urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
+        x509cert: ''
+        privateKey: ''
+      idp:
+        entityId: https://sts.windows.net/{tenant-id}/
+        singleSignOnService:
+          url: https://login.microsoftonline.com/{tenant-id}/saml2
+          binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
+        x509cert: XXXXXXXXXXX
+        singleLogoutService: {}
+        certFingerprint: ''
+        certFingerprintAlgorithm: sha1

cmdbox/extensions/user_list.yml

@@ -2,9 +2,9 @@ users:                         # A list of users, each of which is a map that co
 - uid: 1                       # An ID that identifies a user. No two users can have the same ID.
   name: admin                  # A name that identifies the user. No two users can have the same name.
   password: admin              # The user's password. The value is hashed with the hash function specified in the next hash field.
-  hash: plain                  # The hash function used to hash the password, which can be plain, md5, sha1, or sha256, or oauth2.
+  hash: plain                  # The hash function used to hash the password, which can be plain, md5, sha1, or sha256, or oauth2, or saml.
   groups: [admin]              # A list of groups to which the user belongs, as specified in the groups field.
-  email: admin@aaa.bbb.jp      # The email address of the user, used when authenticating using the provider specified in the oauth2 field.
+  email: admin@aaa.bbb.jp      # The email address of the user, used when authenticating using the provider specified in the oauth2 or saml field.
 - uid: 101
   name: user01
   password: b75705d7e35e7014521a46b532236ec3
@@ -74,7 +74,7 @@ pathrule:                      # List of RESTAPI rules, rules that determine whe
   - groups: [user]
     paths: [/signin, /assets, /bbforce_cmd, /copyright, /dosignin, /dosignout, /password/change,
             /gui/user_data/load, /gui/user_data/save, /gui/user_data/delete,
-            /exec_cmd, /exec_pipe, /filer, /gui, /get_server_opt, /usesignout, /versions_cmdbox, /versions_used]
+            /exec_cmd, /exec_pipe, /filer, /result, /gui, /get_server_opt, /usesignout, /versions_cmdbox, /versions_used]
     rule: allow
   - groups: [readonly]
     paths: [/gui/del_cmd, /gui/del_pipe, /gui/save_cmd, /gui/save_pipe]
@@ -109,7 +109,8 @@ oauth2:                             # OAuth2 settings.
       client_secret: XXXXXXXXXXX    # Specify Google's OAuth2 client secret.
       redirect_uri: https://localhost:8443/oauth2/google/callback # Specify Google's OAuth2 redirect URI.
       scope: ['email']              # Specify the scope you want to retrieve with Google's OAuth2. Usually, just reading the email is sufficient.
-      signin_module:                # Specify the module name that implements the sign-in. see, cmdbox.app.signin.SignIn
+      signin_module:                # Specify the module name that implements the sign-in.
+        cmdbox.app.auth.google_signin
       note:                         # Specify a description such as Google's OAuth2 reference site.
       - https://developers.google.com/identity/protocols/oauth2/web-server?hl=ja#httprest
     github:                         # OAuth2 settings for GitHub.
@@ -118,7 +119,8 @@ oauth2:                             # OAuth2 settings.
       client_secret: XXXXXXXXXXX    # Specify the GitHub OAuth2 client secret.
       redirect_uri: https://localhost:8443/oauth2/github/callback # Specify the OAuth2 redirect URI for GitHub.
       scope: ['user:email']         # Specify the scope you want to get from GitHub's OAuth2. Usually, just reading the email is sufficient.
-      signin_module:                # Specify the module name that implements the sign-in. see, cmdbox.app.signin.SignIn
+      signin_module:                # Specify the module name that implements the sign-in.
+        cmdbox.app.auth.github_signin
       note:                         # Specify a description, such as a reference site for OAuth2 on GitHub.
       - https://docs.github.com/ja/apps/oauth-apps/building-oauth-apps/authorizing-oauth-apps#scopes
     azure:                          # OAuth2 settings for Azure AD.
@@ -128,6 +130,34 @@ oauth2:                             # OAuth2 settings.
       client_secret: XXXXXXXXXXX    # Specify the Azure AD OAuth2 client secret.
       redirect_uri: https://localhost:8443/oauth2/azure/callback # Specify the OAuth2 redirect URI for Azure AD.
       scope: ['openid', 'profile', 'email', 'https://graph.microsoft.com/mail.read']
-      signin_module:                # Specify the module name that implements the sign-in. see, cmdbox.app.signin.SignIn
+      signin_module:                # Specify the module name that implements the sign-in.
+        cmdbox.app.auth.azure_signin
       note:                         # Specify a description, such as a reference site for Azure AD's OAuth2.
       - https://learn.microsoft.com/ja-jp/entra/identity-platform/v2-oauth2-auth-code-flow
+saml:                               # SAML settings.
+  providers:                        # This is a per-provider setting for OAuth2.
+    azure:                          # SAML settings for Azure AD.
+      enabled: false                # Specify whether to enable SAML authentication for Azure AD.
+      signin_module:                # Specify the module name that implements the sign-in.
+        cmdbox.app.auth.azure_signin_saml # Specify the python3-saml configuration.
+                                    # see) https://github.com/SAML-Toolkits/python3-saml
+      sp:
+        entityId: https://localhost:8443/
+        assertionConsumerService:
+          url: https://localhost:8443/saml/azure/callback
+          binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
+        attributeConsumingService: {}
+        singleLogoutService:
+          binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
+        NameIDFormat: urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
+        x509cert: ''
+        privateKey: ''
+      idp:
+        entityId: https://sts.windows.net/{tenant-id}/
+        singleSignOnService:
+          url: https://login.microsoftonline.com/{tenant-id}/saml2
+          binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
+        x509cert: XXXXXXXXXXX
+        singleLogoutService: {}
+        certFingerprint: ''
+        certFingerprintAlgorithm: sha1

cmdbox/licenses/LICENSE.async-timeout.5.0.1(Apache Software License).txt

@@ -0,0 +1,13 @@
+Copyright 2016-2020 aio-libs collaboration.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+   http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.

cmdbox/licenses/files.txt

@@ -8,9 +8,10 @@ UNKNOWN	BSD License	alabaster	https://alabaster.readthedocs.io/	1.0.0	cmdbox\lic
 Adrian Garcia Badaracco <1755071+adriangb@users.noreply.github.com>, Samuel Colvin <s@muelcolvin.com>, Zac Hatfield-Dodds <zac@zhd.dev>	MIT License	annotated-types	https://github.com/annotated-types/annotated-types	0.7.0	cmdbox\licenses\LICENSE.annotated-types.0.7.0(MIT License).txt
 Alex Grönholm <alex.gronholm@nextday.fi>	MIT License	anyio	https://anyio.readthedocs.io/en/stable/versionhistory.html	4.9.0	cmdbox\licenses\LICENSE.anyio.4.9.0(MIT License).txt
 Andrey Kislyuk	Apache Software License	argcomplete	https://github.com/kislyuk/argcomplete	3.6.2	cmdbox\licenses\LICENSE.argcomplete.3.6.2(Apache Software License).txt
+Andrew Svetlov <andrew.svetlov@gmail.com>	Apache Software License	async-timeout	https://github.com/aio-libs/async-timeout	5.0.1	cmdbox\licenses\LICENSE.async-timeout.5.0.1(Apache Software License).txt
 Armin Ronacher	BSD License	babel	https://babel.pocoo.org/	2.17.0	cmdbox\licenses\LICENSE.babel.2.17.0(BSD License).txt
 "Jason R. Coombs" <jaraco@jaraco.com>	MIT License	backports.tarfile	https://github.com/jaraco/backports.tarfile	1.2.0	cmdbox\licenses\LICENSE.backports.tarfile.1.2.0(MIT License).txt
-Kenneth Reitz	Mozilla Public License 2.0 (MPL 2.0)	certifi	https://github.com/certifi/python-certifi	2025.1.31	cmdbox\licenses\LICENSE.certifi.2025.1.31(Mozilla Public License 2.0 (MPL 2.0)).txt
+Kenneth Reitz	Mozilla Public License 2.0 (MPL 2.0)	certifi	https://github.com/certifi/python-certifi	2025.4.26	cmdbox\licenses\LICENSE.certifi.2025.4.26(Mozilla Public License 2.0 (MPL 2.0)).txt
 Armin Rigo, Maciej Fijalkowski	MIT License	cffi	http://cffi.readthedocs.org	1.17.1	cmdbox\licenses\LICENSE.cffi.1.17.1(MIT License).txt
 "Ahmed R. TAHRI" <tahri.ahmed@proton.me>	MIT License	charset-normalizer	https://github.com/jawah/charset_normalizer/blob/master/CHANGELOG.md	3.4.1	cmdbox\licenses\LICENSE.charset-normalizer.3.4.1(MIT License).txt
 UNKNOWN	BSD License	click	https://github.com/pallets/click/	8.1.8	cmdbox\licenses\LICENSE.click.8.1.8(BSD License).txt
@@ -18,15 +19,15 @@ Jonathan Hartley <tartley@tartley.com>	BSD License	colorama	https://github.com/t
 The cryptography developers <cryptography-dev@python.org>	Apache Software License; BSD License	cryptography	https://github.com/pyca/cryptography	44.0.2	cmdbox\licenses\LICENSE.cryptography.44.0.2(Apache Software License; BSD License).txt
 David Goodger <goodger@python.org>	BSD License; GNU General Public License (GPL); Public Domain; Python Software Foundation License	docutils	https://docutils.sourceforge.io	0.21.2	cmdbox\licenses\LICENSE.docutils.0.21.2(BSD License; GNU General Public License (GPL); Public Domain; Python Software Foundation License).txt
 =?utf-8?q?Sebasti=C3=A1n_Ram=C3=ADrez?= <tiangolo@gmail.com>	MIT License	fastapi	https://github.com/fastapi/fastapi	0.115.12	cmdbox\licenses\LICENSE.fastapi.0.115.12(MIT License).txt
-Denis Bilenko	MIT	gevent	http://www.gevent.org/	25.4.1	cmdbox\licenses\LICENSE.gevent.25.4.1(MIT).txt
-Alexey Borzenkov	MIT AND Python-2.0	greenlet	https://greenlet.readthedocs.io/	3.2.0	cmdbox\licenses\LICENSE.greenlet.3.2.0(MIT AND Python-2.0).txt
+Denis Bilenko	MIT	gevent	http://www.gevent.org/	25.4.2	cmdbox\licenses\LICENSE.gevent.25.4.2(MIT).txt
+Alexey Borzenkov	MIT AND Python-2.0	greenlet	https://greenlet.readthedocs.io/	3.2.1	cmdbox\licenses\LICENSE.greenlet.3.2.1(MIT AND Python-2.0).txt
 Benoit Chesneau <benoitc@gunicorn.org>	MIT License	gunicorn	https://gunicorn.org	23.0.0	cmdbox\licenses\LICENSE.gunicorn.23.0.0(MIT License).txt
-Nathaniel J. Smith	MIT License	h11	https://github.com/python-hyper/h11	0.14.0	cmdbox\licenses\LICENSE.h11.0.14.0(MIT License).txt
+Nathaniel J. Smith	MIT License	h11	https://github.com/python-hyper/h11	0.16.0	cmdbox\licenses\LICENSE.h11.0.16.0(MIT License).txt
 Yury Selivanov	MIT License	httptools	https://github.com/MagicStack/httptools	0.6.4	cmdbox\licenses\LICENSE.httptools.0.6.4(MIT License).txt
 UNKNOWN	Apache Software License	id	https://pypi.org/project/id/	1.5.0	cmdbox\licenses\LICENSE.id.1.5.0(Apache Software License).txt
 Kim Davies <kim+pypi@gumleaf.org>	BSD License	idna	https://github.com/kjd/idna	3.10	cmdbox\licenses\LICENSE.idna.3.10(BSD License).txt
 Yoshiki Shibukawa	MIT License	imagesize	https://github.com/shibukawa/imagesize_py	1.4.1	cmdbox\licenses\LICENSE.imagesize.1.4.1(MIT License).txt
-"Jason R. Coombs" <jaraco@jaraco.com>	Apache Software License	importlib_metadata	https://github.com/python/importlib_metadata	8.6.1	cmdbox\licenses\LICENSE.importlib_metadata.8.6.1(Apache Software License).txt
+"Jason R. Coombs" <jaraco@jaraco.com>	Apache Software License	importlib_metadata	https://github.com/python/importlib_metadata	8.7.0	cmdbox\licenses\LICENSE.importlib_metadata.8.7.0(Apache Software License).txt
 UNKNOWN	BSD License	itsdangerous	https://github.com/pallets/itsdangerous/	2.2.0	cmdbox\licenses\LICENSE.itsdangerous.2.2.0(BSD License).txt
 Jason R. Coombs	MIT License	jaraco.classes	https://github.com/jaraco/jaraco.classes	3.4.0	cmdbox\licenses\LICENSE.jaraco.classes.3.4.0(MIT License).txt
 "Jason R. Coombs" <jaraco@jaraco.com>	MIT License	jaraco.context	https://github.com/jaraco/jaraco.context	6.0.1	cmdbox\licenses\LICENSE.jaraco.context.6.0.1(MIT License).txt
@@ -34,10 +35,10 @@ Jason R. Coombs	MIT License	jaraco.classes	https://github.com/jaraco/jaraco.clas
 Kang Zhang <jobo.zh@gmail.com>	MIT License	keyring	https://github.com/jaraco/keyring	25.6.0	cmdbox\licenses\LICENSE.keyring.25.6.0(MIT License).txt
 Chris Sewell <chrisj_sewell@hotmail.com>	MIT License	markdown-it-py	https://github.com/executablebooks/markdown-it-py	3.0.0	cmdbox\licenses\LICENSE.markdown-it-py.3.0.0(MIT License).txt
 Taneli Hukkinen <hukkin@users.noreply.github.com>	MIT License	mdurl	https://github.com/executablebooks/mdurl	0.1.2	cmdbox\licenses\LICENSE.mdurl.0.1.2(MIT License).txt
-Erik Rose <erikrose@grinchcentral.com>	MIT License	more-itertools	https://github.com/more-itertools/more-itertools	10.6.0	cmdbox\licenses\LICENSE.more-itertools.10.6.0(MIT License).txt
+Erik Rose <erikrose@grinchcentral.com>	MIT License	more-itertools	https://github.com/more-itertools/more-itertools	10.7.0	cmdbox\licenses\LICENSE.more-itertools.10.7.0(MIT License).txt
 messense <messense@icloud.com>	MIT	nh3	UNKNOWN	0.2.21	cmdbox\licenses\LICENSE.nh3.0.2.21(MIT).txt
-Travis E. Oliphant et al.	BSD License	numpy	https://numpy.org	2.2.4	cmdbox\licenses\LICENSE.numpy.2.2.4(BSD License).txt
-Donald Stufft <donald@stufft.io>	Apache Software License; BSD License	packaging	https://github.com/pypa/packaging	24.2	cmdbox\licenses\LICENSE.packaging.24.2(Apache Software License; BSD License).txt
+Travis E. Oliphant et al.	BSD License	numpy	https://numpy.org	2.2.5	cmdbox\licenses\LICENSE.numpy.2.2.5(BSD License).txt
+Donald Stufft <donald@stufft.io>	Apache Software License; BSD License	packaging	https://github.com/pypa/packaging	25.0	cmdbox\licenses\LICENSE.packaging.25.0(Apache Software License; BSD License).txt
 "Jeffrey A. Clark" <aclark@aclark.net>	UNKNOWN	pillow	https://python-pillow.github.io	11.2.1	cmdbox\licenses\LICENSE.pillow.11.2.1(UNKNOWN).txt
 The pip developers <distutils-sig@python.org>	MIT License	pip	https://pip.pypa.io/	24.0	cmdbox\licenses\LICENSE.pip.24.0(MIT License).txt
 Kivy team	MIT License	plyer	https://plyer.readthedocs.org/en/latest/	2.1.0	cmdbox\licenses\LICENSE.plyer.2.1.0(MIT License).txt
@@ -84,7 +85,7 @@ Victorien Plot <contact@vctrn.dev>	MIT License	typing-inspection	https://github.
 "Guido van Rossum, Jukka Lehtosalo, Łukasz Langa, Michael Lee" <levkivskyi@gmail.com>	UNKNOWN	typing_extensions	https://github.com/python/typing_extensions	4.13.2	cmdbox\licenses\LICENSE.typing_extensions.4.13.2(UNKNOWN).txt
 Python Software Foundation	Apache Software License	tzdata	https://github.com/python/tzdata	2025.2	cmdbox\licenses\LICENSE.tzdata.2025.2(Apache Software License).txt
 Andrey Petrov <andrey.petrov@shazow.net>	UNKNOWN	urllib3	https://github.com/urllib3/urllib3/blob/main/CHANGES.rst	2.4.0	cmdbox\licenses\LICENSE.urllib3.2.4.0(UNKNOWN).txt
-Tom Christie <tom@tomchristie.com>, Marcelo Trylesinski <marcelotryle@gmail.com>	BSD License	uvicorn	https://www.uvicorn.org/	0.34.1	cmdbox\licenses\LICENSE.uvicorn.0.34.1(BSD License).txt
+Tom Christie <tom@tomchristie.com>, Marcelo Trylesinski <marcelotryle@gmail.com>	BSD License	uvicorn	https://www.uvicorn.org/	0.34.2	cmdbox\licenses\LICENSE.uvicorn.0.34.2(BSD License).txt
 Samuel Colvin <s@muelcolvin.com>	MIT License	watchfiles	https://github.com/samuelcolvin/watchfiles	1.0.5	cmdbox\licenses\LICENSE.watchfiles.1.0.5(MIT License).txt
 Jeff Quast	MIT License	wcwidth	https://github.com/jquast/wcwidth	0.2.13	cmdbox\licenses\LICENSE.wcwidth.0.2.13(MIT License).txt
 Aymeric Augustin <aymeric.augustin@m4x.org>	BSD License	websockets	https://github.com/python-websockets/websockets	15.0.1	cmdbox\licenses\LICENSE.websockets.15.0.1(BSD License).txt

cmdbox/version.py

@@ -1,9 +1,9 @@
 import datetime
 
-dt_now = datetime.datetime(2025, 4, 18)
+dt_now = datetime.datetime(2025, 4, 29)
 __appid__ = 'cmdbox'
 __title__ = 'cmdbox (Command Development Application)'
-__version__ = '0.5.3'
+__version__ = '0.5.4'
 __copyright__ = f'Copyright © 2023-{dt_now.strftime("%Y")} hamacom2004jp'
 __pypiurl__ = 'https://pypi.org/project/cmdbox/'
 __srcurl__ = 'https://github.com/hamacom2004jp/cmdbox'