From ae1a98558acf1ff74979954d8279f45a8ba3593a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 25 Nov 2024 10:45:54 +0000
Subject: [PATCH 01/26] [chore]: Bump github.com/tdewolff/minify/v2 from 2.21.1
 to 2.21.2 (#3567)

Bumps [github.com/tdewolff/minify/v2](https://github.com/tdewolff/minify) from 2.21.1 to 2.21.2.
- [Release notes](https://github.com/tdewolff/minify/releases)
- [Commits](https://github.com/tdewolff/minify/compare/v2.21.1...v2.21.2)

---
updated-dependencies:
- dependency-name: github.com/tdewolff/minify/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod                                              |  4 ++--
 go.sum                                              |  8 ++++----
 vendor/github.com/tdewolff/parse/v2/buffer/lexer.go |  5 ++---
 vendor/github.com/tdewolff/parse/v2/common.go       | 10 +++++++---
 vendor/github.com/tdewolff/parse/v2/html/lex.go     |  3 ++-
 vendor/github.com/tdewolff/parse/v2/input.go        |  5 ++---
 vendor/modules.txt                                  |  4 ++--
 7 files changed, 21 insertions(+), 18 deletions(-)

diff --git a/go.mod b/go.mod
index 9e6db71f1..0238adc52 100644
--- a/go.mod
+++ b/go.mod
@@ -68,7 +68,7 @@ require (
 	github.com/superseriousbusiness/activity v1.9.0-gts
 	github.com/superseriousbusiness/httpsig v1.2.0-SSB
 	github.com/superseriousbusiness/oauth2/v4 v4.3.2-SSB.0.20230227143000-f4900831d6c8
-	github.com/tdewolff/minify/v2 v2.21.1
+	github.com/tdewolff/minify/v2 v2.21.2
 	github.com/technologize/otel-go-contrib v1.1.1
 	github.com/tetratelabs/wazero v1.8.1
 	github.com/tomnomnom/linkheader v0.0.0-20180905144013-02ca5825eb80
@@ -213,7 +213,7 @@ require (
 	github.com/subosito/gotenv v1.6.0 // indirect
 	github.com/superseriousbusiness/go-jpeg-image-structure/v2 v2.0.0-20220321154430-d89a106fdabe // indirect
 	github.com/superseriousbusiness/go-png-image-structure/v2 v2.0.1-SSB // indirect
-	github.com/tdewolff/parse/v2 v2.7.18 // indirect
+	github.com/tdewolff/parse/v2 v2.7.19 // indirect
 	github.com/tmthrgd/go-hex v0.0.0-20190904060850-447a3041c3bc // indirect
 	github.com/toqueteos/webbrowser v1.2.0 // indirect
 	github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
diff --git a/go.sum b/go.sum
index f00a34326..d4835c21a 100644
--- a/go.sum
+++ b/go.sum
@@ -539,10 +539,10 @@ github.com/superseriousbusiness/httpsig v1.2.0-SSB h1:BinBGKbf2LSuVT5+MuH0XynHN9
 github.com/superseriousbusiness/httpsig v1.2.0-SSB/go.mod h1:+rxfATjFaDoDIVaJOTSP0gj6UrbicaYPEptvCLC9F28=
 github.com/superseriousbusiness/oauth2/v4 v4.3.2-SSB.0.20230227143000-f4900831d6c8 h1:nTIhuP157oOFcscuoK1kCme1xTeGIzztSw70lX9NrDQ=
 github.com/superseriousbusiness/oauth2/v4 v4.3.2-SSB.0.20230227143000-f4900831d6c8/go.mod h1:uYC/W92oVRJ49Vh1GcvTqpeFqHi+Ovrl2sMllQWRAEo=
-github.com/tdewolff/minify/v2 v2.21.1 h1:AAf5iltw6+KlUvjRNPAPrANIXl3XEJNBBzuZom5iCAM=
-github.com/tdewolff/minify/v2 v2.21.1/go.mod h1:PoqFH8ugcuTUvKqVM9vOqXw4msxvuhL/DTmV5ZXhSCI=
-github.com/tdewolff/parse/v2 v2.7.18 h1:uSqjEMT2lwCj5oifBHDcWU2kN1pbLrRENgFWDJa57eI=
-github.com/tdewolff/parse/v2 v2.7.18/go.mod h1:3FbJWZp3XT9OWVN3Hmfp0p/a08v4h8J9W1aghka0soA=
+github.com/tdewolff/minify/v2 v2.21.2 h1:VfTvmGVtBYhMTlUAeHtXM7XOsW0JT/6uMwUPPqgUs9k=
+github.com/tdewolff/minify/v2 v2.21.2/go.mod h1:Olje3eHdBnrMjINKffDsil/3NV98Iv7MhWf7556WQVg=
+github.com/tdewolff/parse/v2 v2.7.19 h1:7Ljh26yj+gdLFEq/7q9LT4SYyKtwQX4ocNrj45UCePg=
+github.com/tdewolff/parse/v2 v2.7.19/go.mod h1:3FbJWZp3XT9OWVN3Hmfp0p/a08v4h8J9W1aghka0soA=
 github.com/tdewolff/test v1.0.11-0.20231101010635-f1265d231d52/go.mod h1:6DAvZliBAAnD7rhVgwaM7DE5/d9NMOAJ09SqYqeK4QE=
 github.com/tdewolff/test v1.0.11-0.20240106005702-7de5f7df4739 h1:IkjBCtQOOjIn03u/dMQK9g+Iw9ewps4mCl1nB8Sscbo=
 github.com/tdewolff/test v1.0.11-0.20240106005702-7de5f7df4739/go.mod h1:XPuWBzvdUzhCuxWO1ojpXsyzsA5bFoS3tO/Q3kFuTG8=
diff --git a/vendor/github.com/tdewolff/parse/v2/buffer/lexer.go b/vendor/github.com/tdewolff/parse/v2/buffer/lexer.go
index 46e6bdafd..3c9da22d3 100644
--- a/vendor/github.com/tdewolff/parse/v2/buffer/lexer.go
+++ b/vendor/github.com/tdewolff/parse/v2/buffer/lexer.go
@@ -2,7 +2,6 @@ package buffer
 
 import (
 	"io"
-	"io/ioutil"
 )
 
 var nullBuffer = []byte{0}
@@ -18,7 +17,7 @@ type Lexer struct {
 	restore func()
 }
 
-// NewLexer returns a new Lexer for a given io.Reader, and uses ioutil.ReadAll to read it into a byte slice.
+// NewLexer returns a new Lexer for a given io.Reader, and uses io.ReadAll to read it into a byte slice.
 // If the io.Reader implements Bytes, that is used instead.
 // It will append a NULL at the end of the buffer.
 func NewLexer(r io.Reader) *Lexer {
@@ -30,7 +29,7 @@ func NewLexer(r io.Reader) *Lexer {
 			b = buffer.Bytes()
 		} else {
 			var err error
-			b, err = ioutil.ReadAll(r)
+			b, err = io.ReadAll(r)
 			if err != nil {
 				return &Lexer{
 					buf: nullBuffer,
diff --git a/vendor/github.com/tdewolff/parse/v2/common.go b/vendor/github.com/tdewolff/parse/v2/common.go
index e0795304c..1883d1bd4 100644
--- a/vendor/github.com/tdewolff/parse/v2/common.go
+++ b/vendor/github.com/tdewolff/parse/v2/common.go
@@ -317,9 +317,13 @@ func replaceEntities(b []byte, i int, entitiesMap map[string][]byte, revEntities
 		}
 	} else {
 		for ; j < len(b) && j-i-1 <= MaxEntityLength && b[j] != ';'; j++ {
+			if !(b[j] >= '0' && b[j] <= '9' || b[j] >= 'a' && b[j] <= 'z' || b[j] >= 'A' && b[j] <= 'Z') {
+				// invalid character reference character
+				break
+			}
 		}
-		if j <= i+1 || len(b) <= j {
-			return b, j - 1
+		if len(b) <= j || j == i+1 || b[j] != ';' {
+			return b, i
 		}
 
 		var ok bool
@@ -399,7 +403,7 @@ func ReplaceMultipleWhitespaceAndEntities(b []byte, entitiesMap map[string][]byt
 	if j == 0 {
 		return b
 	} else if j == 1 { // only if starts with whitespace
-		b[k-1] = b[0]
+		b[k-1] = b[0] // move newline to end of whitespace
 		return b[k-1:]
 	} else if k < len(b) {
 		j += copy(b[j:], b[k:])
diff --git a/vendor/github.com/tdewolff/parse/v2/html/lex.go b/vendor/github.com/tdewolff/parse/v2/html/lex.go
index b24d4dcd2..8774ea264 100644
--- a/vendor/github.com/tdewolff/parse/v2/html/lex.go
+++ b/vendor/github.com/tdewolff/parse/v2/html/lex.go
@@ -362,7 +362,8 @@ func (l *Lexer) shiftBogusComment() []byte {
 
 func (l *Lexer) shiftStartTag() (TokenType, []byte) {
 	for {
-		if c := l.r.Peek(0); (c < 'a' || 'z' < c) && (c < 'A' || 'Z' < c) && (c < '0' || '9' < c) && c != '-' {
+		// spec says only a-zA-Z0-9, but we're lenient here
+		if c := l.r.Peek(0); c == ' ' || c == '>' || c == '/' && l.r.Peek(1) == '>' || c == '\t' || c == '\n' || c == '\r' || c == '\f' || c == 0 && l.r.Err() != nil || 0 < len(l.tmplBegin) && l.at(l.tmplBegin...) {
 			break
 		}
 		l.r.Move(1)
diff --git a/vendor/github.com/tdewolff/parse/v2/input.go b/vendor/github.com/tdewolff/parse/v2/input.go
index 924f14f0c..586ad7306 100644
--- a/vendor/github.com/tdewolff/parse/v2/input.go
+++ b/vendor/github.com/tdewolff/parse/v2/input.go
@@ -2,7 +2,6 @@ package parse
 
 import (
 	"io"
-	"io/ioutil"
 )
 
 var nullBuffer = []byte{0}
@@ -18,7 +17,7 @@ type Input struct {
 	restore func()
 }
 
-// NewInput returns a new Input for a given io.Input and uses ioutil.ReadAll to read it into a byte slice.
+// NewInput returns a new Input for a given io.Input and uses io.ReadAll to read it into a byte slice.
 // If the io.Input implements Bytes, that is used instead. It will append a NULL at the end of the buffer.
 func NewInput(r io.Reader) *Input {
 	var b []byte
@@ -29,7 +28,7 @@ func NewInput(r io.Reader) *Input {
 			b = buffer.Bytes()
 		} else {
 			var err error
-			b, err = ioutil.ReadAll(r)
+			b, err = io.ReadAll(r)
 			if err != nil {
 				return &Input{
 					buf: nullBuffer,
diff --git a/vendor/modules.txt b/vendor/modules.txt
index a5465ec96..68fb93086 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -832,11 +832,11 @@ github.com/superseriousbusiness/oauth2/v4/generates
 github.com/superseriousbusiness/oauth2/v4/manage
 github.com/superseriousbusiness/oauth2/v4/models
 github.com/superseriousbusiness/oauth2/v4/server
-# github.com/tdewolff/minify/v2 v2.21.1
+# github.com/tdewolff/minify/v2 v2.21.2
 ## explicit; go 1.18
 github.com/tdewolff/minify/v2
 github.com/tdewolff/minify/v2/html
-# github.com/tdewolff/parse/v2 v2.7.18
+# github.com/tdewolff/parse/v2 v2.7.19
 ## explicit; go 1.13
 github.com/tdewolff/parse/v2
 github.com/tdewolff/parse/v2/buffer

From 2ed409888b988115433b5eddb62ca38c00c68325 Mon Sep 17 00:00:00 2001
From: Daenney <daenney@users.noreply.github.com>
Date: Mon, 25 Nov 2024 11:50:03 +0100
Subject: [PATCH 02/26] [chore] Update gorilla/websocket (#3561)

The maintainers messed with the v1.5.2 tag which causes Go checksum
validation problems as the Go module proxy saw and recorded the original
hash.

This updates to 1.5.3 which doesn't have the issue.
---
 go.mod                                        |   2 +-
 go.sum                                        |   2 +
 .../gorilla/websocket/.editorconfig           |  20 --
 .../github.com/gorilla/websocket/.gitignore   |  26 +-
 .../gorilla/websocket/.golangci.yml           |  13 -
 vendor/github.com/gorilla/websocket/AUTHORS   |   9 +
 vendor/github.com/gorilla/websocket/LICENSE   |  41 +--
 vendor/github.com/gorilla/websocket/Makefile  |  34 --
 vendor/github.com/gorilla/websocket/README.md |  25 +-
 vendor/github.com/gorilla/websocket/client.go |  13 +-
 vendor/github.com/gorilla/websocket/conn.go   |  72 ++--
 vendor/github.com/gorilla/websocket/proxy.go  |   6 +-
 vendor/github.com/gorilla/websocket/server.go |  12 +-
 .../gorilla/websocket/tls_handshake.go        |   3 +
 .../golang.org/x/net/internal/socks/client.go | 168 ----------
 .../golang.org/x/net/internal/socks/socks.go  | 317 ------------------
 vendor/golang.org/x/net/proxy/dial.go         |  54 ---
 vendor/golang.org/x/net/proxy/direct.go       |  31 --
 vendor/golang.org/x/net/proxy/per_host.go     | 151 ---------
 vendor/golang.org/x/net/proxy/proxy.go        | 149 --------
 vendor/golang.org/x/net/proxy/socks5.go       |  42 ---
 vendor/modules.txt                            |   6 +-
 22 files changed, 115 insertions(+), 1081 deletions(-)
 delete mode 100644 vendor/github.com/gorilla/websocket/.editorconfig
 delete mode 100644 vendor/github.com/gorilla/websocket/.golangci.yml
 create mode 100644 vendor/github.com/gorilla/websocket/AUTHORS
 delete mode 100644 vendor/github.com/gorilla/websocket/Makefile
 delete mode 100644 vendor/golang.org/x/net/internal/socks/client.go
 delete mode 100644 vendor/golang.org/x/net/internal/socks/socks.go
 delete mode 100644 vendor/golang.org/x/net/proxy/dial.go
 delete mode 100644 vendor/golang.org/x/net/proxy/direct.go
 delete mode 100644 vendor/golang.org/x/net/proxy/per_host.go
 delete mode 100644 vendor/golang.org/x/net/proxy/proxy.go
 delete mode 100644 vendor/golang.org/x/net/proxy/socks5.go

diff --git a/go.mod b/go.mod
index 0238adc52..261aefba4 100644
--- a/go.mod
+++ b/go.mod
@@ -52,7 +52,7 @@ require (
 	github.com/google/go-cmp v0.6.0
 	github.com/google/uuid v1.6.0
 	github.com/gorilla/feeds v1.2.0
-	github.com/gorilla/websocket v1.5.2
+	github.com/gorilla/websocket v1.5.3
 	github.com/jackc/pgx/v5 v5.7.1
 	github.com/k3a/html2text v1.2.1
 	github.com/microcosm-cc/bluemonday v1.0.27
diff --git a/go.sum b/go.sum
index d4835c21a..a59ca6946 100644
--- a/go.sum
+++ b/go.sum
@@ -332,6 +332,8 @@ github.com/gorilla/sessions v1.2.2/go.mod h1:ePLdVu+jbEgHH+KWw8I1z2wqd0BAdAQh/8L
 github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/gorilla/websocket v1.5.2 h1:qoW6V1GT3aZxybsbC6oLnailWnB+qTMVwMreOso9XUw=
 github.com/gorilla/websocket v1.5.2/go.mod h1:0n9H61RBAcf5/38py2MCYbxzPIY9rOkpvvMT24Rqs30=
+github.com/gorilla/websocket v1.5.3 h1:saDtZ6Pbx/0u+bgYQ3q96pZgCzfhKXGPqt7kZ72aNNg=
+github.com/gorilla/websocket v1.5.3/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/grpc-ecosystem/grpc-gateway/v2 v2.22.0 h1:asbCHRVmodnJTuQ3qamDwqVOIjwqUPTYmYuemVOx+Ys=
 github.com/grpc-ecosystem/grpc-gateway/v2 v2.22.0/go.mod h1:ggCgvZ2r7uOoQjOyu2Y1NhHmEPPzzuhWgcza5M1Ji1I=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
diff --git a/vendor/github.com/gorilla/websocket/.editorconfig b/vendor/github.com/gorilla/websocket/.editorconfig
deleted file mode 100644
index 2940ec92a..000000000
--- a/vendor/github.com/gorilla/websocket/.editorconfig
+++ /dev/null
@@ -1,20 +0,0 @@
-; https://editorconfig.org/
-
-root = true
-
-[*]
-insert_final_newline = true
-charset = utf-8
-trim_trailing_whitespace = true
-indent_style = space
-indent_size = 2
-
-[{Makefile,go.mod,go.sum,*.go,.gitmodules}]
-indent_style = tab
-indent_size = 4
-
-[*.md]
-indent_size = 4
-trim_trailing_whitespace = false
-
-eclint_indent_style = unset
diff --git a/vendor/github.com/gorilla/websocket/.gitignore b/vendor/github.com/gorilla/websocket/.gitignore
index 84039fec6..cd3fcd1ef 100644
--- a/vendor/github.com/gorilla/websocket/.gitignore
+++ b/vendor/github.com/gorilla/websocket/.gitignore
@@ -1 +1,25 @@
-coverage.coverprofile
+# Compiled Object files, Static and Dynamic libs (Shared Objects)
+*.o
+*.a
+*.so
+
+# Folders
+_obj
+_test
+
+# Architecture specific extensions/prefixes
+*.[568vq]
+[568vq].out
+
+*.cgo1.go
+*.cgo2.c
+_cgo_defun.c
+_cgo_gotypes.go
+_cgo_export.*
+
+_testmain.go
+
+*.exe
+
+.idea/
+*.iml
diff --git a/vendor/github.com/gorilla/websocket/.golangci.yml b/vendor/github.com/gorilla/websocket/.golangci.yml
deleted file mode 100644
index 44cf86a06..000000000
--- a/vendor/github.com/gorilla/websocket/.golangci.yml
+++ /dev/null
@@ -1,13 +0,0 @@
-run:
-  timeout: "5m"
-  # will not run golangci-lint against *_test.go
-  tests: false
-issues:
-  exclude-dirs:
-    - examples/*.go
-  exclude-rules:
-  # excluding error checks from all the .go files
-    - path: ./*.go
-      linters:
-        - errcheck
-
diff --git a/vendor/github.com/gorilla/websocket/AUTHORS b/vendor/github.com/gorilla/websocket/AUTHORS
new file mode 100644
index 000000000..1931f4006
--- /dev/null
+++ b/vendor/github.com/gorilla/websocket/AUTHORS
@@ -0,0 +1,9 @@
+# This is the official list of Gorilla WebSocket authors for copyright
+# purposes.
+#
+# Please keep the list sorted.
+
+Gary Burd <gary@beagledreams.com>
+Google LLC (https://opensource.google.com/)
+Joachim Bauch <mail@joachim-bauch.de>
+
diff --git a/vendor/github.com/gorilla/websocket/LICENSE b/vendor/github.com/gorilla/websocket/LICENSE
index 8692af650..9171c9722 100644
--- a/vendor/github.com/gorilla/websocket/LICENSE
+++ b/vendor/github.com/gorilla/websocket/LICENSE
@@ -1,27 +1,22 @@
-Copyright (c) 2023 The Gorilla Authors. All rights reserved.
+Copyright (c) 2013 The Gorilla WebSocket Authors. All rights reserved.
 
 Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
+modification, are permitted provided that the following conditions are met:
 
-	 * Redistributions of source code must retain the above copyright
-notice, this list of conditions and the following disclaimer.
-	 * Redistributions in binary form must reproduce the above
-copyright notice, this list of conditions and the following disclaimer
-in the documentation and/or other materials provided with the
-distribution.
-	 * Neither the name of Google Inc. nor the names of its
-contributors may be used to endorse or promote products derived from
-this software without specific prior written permission.
+  Redistributions of source code must retain the above copyright notice, this
+  list of conditions and the following disclaimer.
 
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
\ No newline at end of file
+  Redistributions in binary form must reproduce the above copyright notice,
+  this list of conditions and the following disclaimer in the documentation
+  and/or other materials provided with the distribution.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
+FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
+CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/gorilla/websocket/Makefile b/vendor/github.com/gorilla/websocket/Makefile
deleted file mode 100644
index 603a63f50..000000000
--- a/vendor/github.com/gorilla/websocket/Makefile
+++ /dev/null
@@ -1,34 +0,0 @@
-GO_LINT=$(shell which golangci-lint 2> /dev/null || echo '')
-GO_LINT_URI=github.com/golangci/golangci-lint/cmd/golangci-lint@latest
-
-GO_SEC=$(shell which gosec 2> /dev/null || echo '')
-GO_SEC_URI=github.com/securego/gosec/v2/cmd/gosec@latest
-
-GO_VULNCHECK=$(shell which govulncheck 2> /dev/null || echo '')
-GO_VULNCHECK_URI=golang.org/x/vuln/cmd/govulncheck@latest
-
-.PHONY: golangci-lint
-golangci-lint:
-	$(if $(GO_LINT), ,go install $(GO_LINT_URI))
-	@echo "##### Running golangci-lint"
-	golangci-lint run -v
-
-.PHONY: gosec
-gosec:
-	$(if $(GO_SEC), ,go install $(GO_SEC_URI))
-	@echo "##### Running gosec"
-	gosec -exclude-dir examples ./...
-
-.PHONY: govulncheck
-govulncheck:
-	$(if $(GO_VULNCHECK), ,go install $(GO_VULNCHECK_URI))
-	@echo "##### Running govulncheck"
-	govulncheck ./...
-
-.PHONY: verify
-verify: golangci-lint gosec govulncheck
-
-.PHONY: test
-test:
-	@echo "##### Running tests"
-	go test -race -cover -coverprofile=coverage.coverprofile -covermode=atomic -v ./...
diff --git a/vendor/github.com/gorilla/websocket/README.md b/vendor/github.com/gorilla/websocket/README.md
index 525a62a92..d33ed7fdd 100644
--- a/vendor/github.com/gorilla/websocket/README.md
+++ b/vendor/github.com/gorilla/websocket/README.md
@@ -1,23 +1,19 @@
-# gorilla/websocket
+# Gorilla WebSocket
 
-![testing](https://github.com/gorilla/websocket/actions/workflows/test.yml/badge.svg)
-[![codecov](https://codecov.io/github/gorilla/websocket/branch/main/graph/badge.svg)](https://codecov.io/github/gorilla/websocket)
-[![godoc](https://godoc.org/github.com/gorilla/websocket?status.svg)](https://godoc.org/github.com/gorilla/websocket)
-[![sourcegraph](https://sourcegraph.com/github.com/gorilla/websocket/-/badge.svg)](https://sourcegraph.com/github.com/gorilla/websocket?badge)
+[![GoDoc](https://godoc.org/github.com/gorilla/websocket?status.svg)](https://godoc.org/github.com/gorilla/websocket)
+[![CircleCI](https://circleci.com/gh/gorilla/websocket.svg?style=svg)](https://circleci.com/gh/gorilla/websocket)
 
-Gorilla WebSocket is a [Go](http://golang.org/) implementation of the [WebSocket](http://www.rfc-editor.org/rfc/rfc6455.txt) protocol.
-
-![Gorilla Logo](https://github.com/gorilla/.github/assets/53367916/d92caabf-98e0-473e-bfbf-ab554ba435e5)
+Gorilla WebSocket is a [Go](http://golang.org/) implementation of the
+[WebSocket](http://www.rfc-editor.org/rfc/rfc6455.txt) protocol.
 
 
 ### Documentation
 
 * [API Reference](https://pkg.go.dev/github.com/gorilla/websocket?tab=doc)
-* [Chat example](https://github.com/gorilla/websocket/tree/main/examples/chat)
-* [Command example](https://github.com/gorilla/websocket/tree/main/examples/command)
-* [Client and server example](https://github.com/gorilla/websocket/tree/main/examples/echo)
-* [File watch example](https://github.com/gorilla/websocket/tree/main/examples/filewatch)
-* [Write buffer pool example](https://github.com/gorilla/websocket/tree/main/examples/bufferpool)
+* [Chat example](https://github.com/gorilla/websocket/tree/master/examples/chat)
+* [Command example](https://github.com/gorilla/websocket/tree/master/examples/command)
+* [Client and server example](https://github.com/gorilla/websocket/tree/master/examples/echo)
+* [File watch example](https://github.com/gorilla/websocket/tree/master/examples/filewatch)
 
 ### Status
 
@@ -33,4 +29,5 @@ package API is stable.
 
 The Gorilla WebSocket package passes the server tests in the [Autobahn Test
 Suite](https://github.com/crossbario/autobahn-testsuite) using the application in the [examples/autobahn
-subdirectory](https://github.com/gorilla/websocket/tree/main/examples/autobahn).
+subdirectory](https://github.com/gorilla/websocket/tree/master/examples/autobahn).
+
diff --git a/vendor/github.com/gorilla/websocket/client.go b/vendor/github.com/gorilla/websocket/client.go
index 7023e1176..04fdafee1 100644
--- a/vendor/github.com/gorilla/websocket/client.go
+++ b/vendor/github.com/gorilla/websocket/client.go
@@ -11,14 +11,13 @@ import (
 	"errors"
 	"fmt"
 	"io"
+	"io/ioutil"
 	"net"
 	"net/http"
 	"net/http/httptrace"
 	"net/url"
 	"strings"
 	"time"
-
-	"golang.org/x/net/proxy"
 )
 
 // ErrBadHandshake is returned when the server response to opening handshake is
@@ -305,7 +304,7 @@ func (d *Dialer) DialContext(ctx context.Context, urlStr string, requestHeader h
 			return nil, nil, err
 		}
 		if proxyURL != nil {
-			dialer, err := proxy.FromURL(proxyURL, netDialerFunc(netDial))
+			dialer, err := proxy_FromURL(proxyURL, netDialerFunc(netDial))
 			if err != nil {
 				return nil, nil, err
 			}
@@ -392,7 +391,7 @@ func (d *Dialer) DialContext(ctx context.Context, urlStr string, requestHeader h
 		}
 	}
 
-	if resp.StatusCode != http.StatusSwitchingProtocols ||
+	if resp.StatusCode != 101 ||
 		!tokenListContainsValue(resp.Header, "Upgrade", "websocket") ||
 		!tokenListContainsValue(resp.Header, "Connection", "upgrade") ||
 		resp.Header.Get("Sec-Websocket-Accept") != computeAcceptKey(challengeKey) {
@@ -401,7 +400,7 @@ func (d *Dialer) DialContext(ctx context.Context, urlStr string, requestHeader h
 		// debugging.
 		buf := make([]byte, 1024)
 		n, _ := io.ReadFull(resp.Body, buf)
-		resp.Body = io.NopCloser(bytes.NewReader(buf[:n]))
+		resp.Body = ioutil.NopCloser(bytes.NewReader(buf[:n]))
 		return nil, resp, ErrBadHandshake
 	}
 
@@ -419,7 +418,7 @@ func (d *Dialer) DialContext(ctx context.Context, urlStr string, requestHeader h
 		break
 	}
 
-	resp.Body = io.NopCloser(bytes.NewReader([]byte{}))
+	resp.Body = ioutil.NopCloser(bytes.NewReader([]byte{}))
 	conn.subprotocol = resp.Header.Get("Sec-Websocket-Protocol")
 
 	netConn.SetDeadline(time.Time{})
@@ -429,7 +428,7 @@ func (d *Dialer) DialContext(ctx context.Context, urlStr string, requestHeader h
 
 func cloneTLSConfig(cfg *tls.Config) *tls.Config {
 	if cfg == nil {
-		return &tls.Config{MinVersion: tls.VersionTLS12}
+		return &tls.Config{}
 	}
 	return cfg.Clone()
 }
diff --git a/vendor/github.com/gorilla/websocket/conn.go b/vendor/github.com/gorilla/websocket/conn.go
index 49399b120..5161ef81f 100644
--- a/vendor/github.com/gorilla/websocket/conn.go
+++ b/vendor/github.com/gorilla/websocket/conn.go
@@ -6,10 +6,11 @@ package websocket
 
 import (
 	"bufio"
-	"crypto/rand"
 	"encoding/binary"
 	"errors"
 	"io"
+	"io/ioutil"
+	"math/rand"
 	"net"
 	"strconv"
 	"strings"
@@ -180,16 +181,16 @@ var (
 	errInvalidControlFrame = errors.New("websocket: invalid control frame")
 )
 
-// maskRand is an io.Reader for generating mask bytes. The reader is initialized
-// to crypto/rand Reader. Tests swap the reader to a math/rand reader for
-// reproducible results.
-var maskRand = rand.Reader
-
-// newMaskKey returns a new 32 bit value for masking client frames.
 func newMaskKey() [4]byte {
-	var k [4]byte
-	_, _ = io.ReadFull(maskRand, k[:])
-	return k
+	n := rand.Uint32()
+	return [4]byte{byte(n), byte(n >> 8), byte(n >> 16), byte(n >> 24)}
+}
+
+func hideTempErr(err error) error {
+	if e, ok := err.(net.Error); ok && e.Temporary() {
+		err = &netError{msg: e.Error(), timeout: e.Timeout()}
+	}
+	return err
 }
 
 func isControl(frameType int) bool {
@@ -357,6 +358,7 @@ func (c *Conn) RemoteAddr() net.Addr {
 // Write methods
 
 func (c *Conn) writeFatal(err error) error {
+	err = hideTempErr(err)
 	c.writeErrMu.Lock()
 	if c.writeErr == nil {
 		c.writeErr = err
@@ -434,27 +436,21 @@ func (c *Conn) WriteControl(messageType int, data []byte, deadline time.Time) er
 		maskBytes(key, 0, buf[6:])
 	}
 
-	if deadline.IsZero() {
-		// No timeout for zero time.
-		<-c.mu
-	} else {
-		d := time.Until(deadline)
+	d := 1000 * time.Hour
+	if !deadline.IsZero() {
+		d = deadline.Sub(time.Now())
 		if d < 0 {
 			return errWriteTimeout
 		}
-		select {
-		case <-c.mu:
-		default:
-			timer := time.NewTimer(d)
-			select {
-			case <-c.mu:
-				timer.Stop()
-			case <-timer.C:
-				return errWriteTimeout
-			}
-		}
 	}
 
+	timer := time.NewTimer(d)
+	select {
+	case <-c.mu:
+		timer.Stop()
+	case <-timer.C:
+		return errWriteTimeout
+	}
 	defer func() { c.mu <- struct{}{} }()
 
 	c.writeErrMu.Lock()
@@ -799,7 +795,7 @@ func (c *Conn) advanceFrame() (int, error) {
 	// 1. Skip remainder of previous frame.
 
 	if c.readRemaining > 0 {
-		if _, err := io.CopyN(io.Discard, c.br, c.readRemaining); err != nil {
+		if _, err := io.CopyN(ioutil.Discard, c.br, c.readRemaining); err != nil {
 			return noFrame, err
 		}
 	}
@@ -1012,7 +1008,7 @@ func (c *Conn) NextReader() (messageType int, r io.Reader, err error) {
 	for c.readErr == nil {
 		frameType, err := c.advanceFrame()
 		if err != nil {
-			c.readErr = err
+			c.readErr = hideTempErr(err)
 			break
 		}
 
@@ -1052,7 +1048,7 @@ func (r *messageReader) Read(b []byte) (int, error) {
 				b = b[:c.readRemaining]
 			}
 			n, err := c.br.Read(b)
-			c.readErr = err
+			c.readErr = hideTempErr(err)
 			if c.isServer {
 				c.readMaskPos = maskBytes(c.readMaskKey, c.readMaskPos, b[:n])
 			}
@@ -1073,7 +1069,7 @@ func (r *messageReader) Read(b []byte) (int, error) {
 		frameType, err := c.advanceFrame()
 		switch {
 		case err != nil:
-			c.readErr = err
+			c.readErr = hideTempErr(err)
 		case frameType == TextMessage || frameType == BinaryMessage:
 			c.readErr = errors.New("websocket: internal error, unexpected text or binary in Reader")
 		}
@@ -1098,7 +1094,7 @@ func (c *Conn) ReadMessage() (messageType int, p []byte, err error) {
 	if err != nil {
 		return messageType, nil, err
 	}
-	p, err = io.ReadAll(r)
+	p, err = ioutil.ReadAll(r)
 	return messageType, p, err
 }
 
@@ -1165,7 +1161,7 @@ func (c *Conn) SetPingHandler(h func(appData string) error) {
 			err := c.WriteControl(PongMessage, []byte(message), time.Now().Add(writeWait))
 			if err == ErrCloseSent {
 				return nil
-			} else if _, ok := err.(net.Error); ok {
+			} else if e, ok := err.(net.Error); ok && e.Temporary() {
 				return nil
 			}
 			return err
@@ -1240,15 +1236,3 @@ func FormatCloseMessage(closeCode int, text string) []byte {
 	copy(buf[2:], text)
 	return buf
 }
-
-var messageTypes = map[int]string{
-	TextMessage:   "TextMessage",
-	BinaryMessage: "BinaryMessage",
-	CloseMessage:  "CloseMessage",
-	PingMessage:   "PingMessage",
-	PongMessage:   "PongMessage",
-}
-
-func FormatMessageType(mt int) string {
-	return messageTypes[mt]
-}
diff --git a/vendor/github.com/gorilla/websocket/proxy.go b/vendor/github.com/gorilla/websocket/proxy.go
index 3c570c26f..e0f466b72 100644
--- a/vendor/github.com/gorilla/websocket/proxy.go
+++ b/vendor/github.com/gorilla/websocket/proxy.go
@@ -12,8 +12,6 @@ import (
 	"net/http"
 	"net/url"
 	"strings"
-
-	"golang.org/x/net/proxy"
 )
 
 type netDialerFunc func(network, addr string) (net.Conn, error)
@@ -23,7 +21,7 @@ func (fn netDialerFunc) Dial(network, addr string) (net.Conn, error) {
 }
 
 func init() {
-	proxy.RegisterDialerType("http", func(proxyURL *url.URL, forwardDialer proxy.Dialer) (proxy.Dialer, error) {
+	proxy_RegisterDialerType("http", func(proxyURL *url.URL, forwardDialer proxy_Dialer) (proxy_Dialer, error) {
 		return &httpProxyDialer{proxyURL: proxyURL, forwardDial: forwardDialer.Dial}, nil
 	})
 }
@@ -70,7 +68,7 @@ func (hpd *httpProxyDialer) Dial(network string, addr string) (net.Conn, error)
 		return nil, err
 	}
 
-	if resp.StatusCode != http.StatusOK {
+	if resp.StatusCode != 200 {
 		conn.Close()
 		f := strings.SplitN(resp.Status, " ", 2)
 		return nil, errors.New(f[1])
diff --git a/vendor/github.com/gorilla/websocket/server.go b/vendor/github.com/gorilla/websocket/server.go
index fda75ff0d..bb3359743 100644
--- a/vendor/github.com/gorilla/websocket/server.go
+++ b/vendor/github.com/gorilla/websocket/server.go
@@ -33,7 +33,6 @@ type Upgrader struct {
 	// size is zero, then buffers allocated by the HTTP server are used. The
 	// I/O buffer sizes do not limit the size of the messages that can be sent
 	// or received.
-	// The default value is 4096 bytes, 4kb.
 	ReadBufferSize, WriteBufferSize int
 
 	// WriteBufferPool is a pool of buffers for write operations. If the value
@@ -102,8 +101,8 @@ func checkSameOrigin(r *http.Request) bool {
 func (u *Upgrader) selectSubprotocol(r *http.Request, responseHeader http.Header) string {
 	if u.Subprotocols != nil {
 		clientProtocols := Subprotocols(r)
-		for _, clientProtocol := range clientProtocols {
-			for _, serverProtocol := range u.Subprotocols {
+		for _, serverProtocol := range u.Subprotocols {
+			for _, clientProtocol := range clientProtocols {
 				if clientProtocol == serverProtocol {
 					return clientProtocol
 				}
@@ -173,7 +172,12 @@ func (u *Upgrader) Upgrade(w http.ResponseWriter, r *http.Request, responseHeade
 		}
 	}
 
-	netConn, brw, err := http.NewResponseController(w).Hijack()
+	h, ok := w.(http.Hijacker)
+	if !ok {
+		return u.returnError(w, r, http.StatusInternalServerError, "websocket: response does not implement http.Hijacker")
+	}
+	var brw *bufio.ReadWriter
+	netConn, brw, err := h.Hijack()
 	if err != nil {
 		return u.returnError(w, r, http.StatusInternalServerError, err.Error())
 	}
diff --git a/vendor/github.com/gorilla/websocket/tls_handshake.go b/vendor/github.com/gorilla/websocket/tls_handshake.go
index 7f3864534..a62b68ccb 100644
--- a/vendor/github.com/gorilla/websocket/tls_handshake.go
+++ b/vendor/github.com/gorilla/websocket/tls_handshake.go
@@ -1,3 +1,6 @@
+//go:build go1.17
+// +build go1.17
+
 package websocket
 
 import (
diff --git a/vendor/golang.org/x/net/internal/socks/client.go b/vendor/golang.org/x/net/internal/socks/client.go
deleted file mode 100644
index 3d6f516a5..000000000
--- a/vendor/golang.org/x/net/internal/socks/client.go
+++ /dev/null
@@ -1,168 +0,0 @@
-// Copyright 2018 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package socks
-
-import (
-	"context"
-	"errors"
-	"io"
-	"net"
-	"strconv"
-	"time"
-)
-
-var (
-	noDeadline   = time.Time{}
-	aLongTimeAgo = time.Unix(1, 0)
-)
-
-func (d *Dialer) connect(ctx context.Context, c net.Conn, address string) (_ net.Addr, ctxErr error) {
-	host, port, err := splitHostPort(address)
-	if err != nil {
-		return nil, err
-	}
-	if deadline, ok := ctx.Deadline(); ok && !deadline.IsZero() {
-		c.SetDeadline(deadline)
-		defer c.SetDeadline(noDeadline)
-	}
-	if ctx != context.Background() {
-		errCh := make(chan error, 1)
-		done := make(chan struct{})
-		defer func() {
-			close(done)
-			if ctxErr == nil {
-				ctxErr = <-errCh
-			}
-		}()
-		go func() {
-			select {
-			case <-ctx.Done():
-				c.SetDeadline(aLongTimeAgo)
-				errCh <- ctx.Err()
-			case <-done:
-				errCh <- nil
-			}
-		}()
-	}
-
-	b := make([]byte, 0, 6+len(host)) // the size here is just an estimate
-	b = append(b, Version5)
-	if len(d.AuthMethods) == 0 || d.Authenticate == nil {
-		b = append(b, 1, byte(AuthMethodNotRequired))
-	} else {
-		ams := d.AuthMethods
-		if len(ams) > 255 {
-			return nil, errors.New("too many authentication methods")
-		}
-		b = append(b, byte(len(ams)))
-		for _, am := range ams {
-			b = append(b, byte(am))
-		}
-	}
-	if _, ctxErr = c.Write(b); ctxErr != nil {
-		return
-	}
-
-	if _, ctxErr = io.ReadFull(c, b[:2]); ctxErr != nil {
-		return
-	}
-	if b[0] != Version5 {
-		return nil, errors.New("unexpected protocol version " + strconv.Itoa(int(b[0])))
-	}
-	am := AuthMethod(b[1])
-	if am == AuthMethodNoAcceptableMethods {
-		return nil, errors.New("no acceptable authentication methods")
-	}
-	if d.Authenticate != nil {
-		if ctxErr = d.Authenticate(ctx, c, am); ctxErr != nil {
-			return
-		}
-	}
-
-	b = b[:0]
-	b = append(b, Version5, byte(d.cmd), 0)
-	if ip := net.ParseIP(host); ip != nil {
-		if ip4 := ip.To4(); ip4 != nil {
-			b = append(b, AddrTypeIPv4)
-			b = append(b, ip4...)
-		} else if ip6 := ip.To16(); ip6 != nil {
-			b = append(b, AddrTypeIPv6)
-			b = append(b, ip6...)
-		} else {
-			return nil, errors.New("unknown address type")
-		}
-	} else {
-		if len(host) > 255 {
-			return nil, errors.New("FQDN too long")
-		}
-		b = append(b, AddrTypeFQDN)
-		b = append(b, byte(len(host)))
-		b = append(b, host...)
-	}
-	b = append(b, byte(port>>8), byte(port))
-	if _, ctxErr = c.Write(b); ctxErr != nil {
-		return
-	}
-
-	if _, ctxErr = io.ReadFull(c, b[:4]); ctxErr != nil {
-		return
-	}
-	if b[0] != Version5 {
-		return nil, errors.New("unexpected protocol version " + strconv.Itoa(int(b[0])))
-	}
-	if cmdErr := Reply(b[1]); cmdErr != StatusSucceeded {
-		return nil, errors.New("unknown error " + cmdErr.String())
-	}
-	if b[2] != 0 {
-		return nil, errors.New("non-zero reserved field")
-	}
-	l := 2
-	var a Addr
-	switch b[3] {
-	case AddrTypeIPv4:
-		l += net.IPv4len
-		a.IP = make(net.IP, net.IPv4len)
-	case AddrTypeIPv6:
-		l += net.IPv6len
-		a.IP = make(net.IP, net.IPv6len)
-	case AddrTypeFQDN:
-		if _, err := io.ReadFull(c, b[:1]); err != nil {
-			return nil, err
-		}
-		l += int(b[0])
-	default:
-		return nil, errors.New("unknown address type " + strconv.Itoa(int(b[3])))
-	}
-	if cap(b) < l {
-		b = make([]byte, l)
-	} else {
-		b = b[:l]
-	}
-	if _, ctxErr = io.ReadFull(c, b); ctxErr != nil {
-		return
-	}
-	if a.IP != nil {
-		copy(a.IP, b)
-	} else {
-		a.Name = string(b[:len(b)-2])
-	}
-	a.Port = int(b[len(b)-2])<<8 | int(b[len(b)-1])
-	return &a, nil
-}
-
-func splitHostPort(address string) (string, int, error) {
-	host, port, err := net.SplitHostPort(address)
-	if err != nil {
-		return "", 0, err
-	}
-	portnum, err := strconv.Atoi(port)
-	if err != nil {
-		return "", 0, err
-	}
-	if 1 > portnum || portnum > 0xffff {
-		return "", 0, errors.New("port number out of range " + port)
-	}
-	return host, portnum, nil
-}
diff --git a/vendor/golang.org/x/net/internal/socks/socks.go b/vendor/golang.org/x/net/internal/socks/socks.go
deleted file mode 100644
index 84fcc32b6..000000000
--- a/vendor/golang.org/x/net/internal/socks/socks.go
+++ /dev/null
@@ -1,317 +0,0 @@
-// Copyright 2018 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package socks provides a SOCKS version 5 client implementation.
-//
-// SOCKS protocol version 5 is defined in RFC 1928.
-// Username/Password authentication for SOCKS version 5 is defined in
-// RFC 1929.
-package socks
-
-import (
-	"context"
-	"errors"
-	"io"
-	"net"
-	"strconv"
-)
-
-// A Command represents a SOCKS command.
-type Command int
-
-func (cmd Command) String() string {
-	switch cmd {
-	case CmdConnect:
-		return "socks connect"
-	case cmdBind:
-		return "socks bind"
-	default:
-		return "socks " + strconv.Itoa(int(cmd))
-	}
-}
-
-// An AuthMethod represents a SOCKS authentication method.
-type AuthMethod int
-
-// A Reply represents a SOCKS command reply code.
-type Reply int
-
-func (code Reply) String() string {
-	switch code {
-	case StatusSucceeded:
-		return "succeeded"
-	case 0x01:
-		return "general SOCKS server failure"
-	case 0x02:
-		return "connection not allowed by ruleset"
-	case 0x03:
-		return "network unreachable"
-	case 0x04:
-		return "host unreachable"
-	case 0x05:
-		return "connection refused"
-	case 0x06:
-		return "TTL expired"
-	case 0x07:
-		return "command not supported"
-	case 0x08:
-		return "address type not supported"
-	default:
-		return "unknown code: " + strconv.Itoa(int(code))
-	}
-}
-
-// Wire protocol constants.
-const (
-	Version5 = 0x05
-
-	AddrTypeIPv4 = 0x01
-	AddrTypeFQDN = 0x03
-	AddrTypeIPv6 = 0x04
-
-	CmdConnect Command = 0x01 // establishes an active-open forward proxy connection
-	cmdBind    Command = 0x02 // establishes a passive-open forward proxy connection
-
-	AuthMethodNotRequired         AuthMethod = 0x00 // no authentication required
-	AuthMethodUsernamePassword    AuthMethod = 0x02 // use username/password
-	AuthMethodNoAcceptableMethods AuthMethod = 0xff // no acceptable authentication methods
-
-	StatusSucceeded Reply = 0x00
-)
-
-// An Addr represents a SOCKS-specific address.
-// Either Name or IP is used exclusively.
-type Addr struct {
-	Name string // fully-qualified domain name
-	IP   net.IP
-	Port int
-}
-
-func (a *Addr) Network() string { return "socks" }
-
-func (a *Addr) String() string {
-	if a == nil {
-		return "<nil>"
-	}
-	port := strconv.Itoa(a.Port)
-	if a.IP == nil {
-		return net.JoinHostPort(a.Name, port)
-	}
-	return net.JoinHostPort(a.IP.String(), port)
-}
-
-// A Conn represents a forward proxy connection.
-type Conn struct {
-	net.Conn
-
-	boundAddr net.Addr
-}
-
-// BoundAddr returns the address assigned by the proxy server for
-// connecting to the command target address from the proxy server.
-func (c *Conn) BoundAddr() net.Addr {
-	if c == nil {
-		return nil
-	}
-	return c.boundAddr
-}
-
-// A Dialer holds SOCKS-specific options.
-type Dialer struct {
-	cmd          Command // either CmdConnect or cmdBind
-	proxyNetwork string  // network between a proxy server and a client
-	proxyAddress string  // proxy server address
-
-	// ProxyDial specifies the optional dial function for
-	// establishing the transport connection.
-	ProxyDial func(context.Context, string, string) (net.Conn, error)
-
-	// AuthMethods specifies the list of request authentication
-	// methods.
-	// If empty, SOCKS client requests only AuthMethodNotRequired.
-	AuthMethods []AuthMethod
-
-	// Authenticate specifies the optional authentication
-	// function. It must be non-nil when AuthMethods is not empty.
-	// It must return an error when the authentication is failed.
-	Authenticate func(context.Context, io.ReadWriter, AuthMethod) error
-}
-
-// DialContext connects to the provided address on the provided
-// network.
-//
-// The returned error value may be a net.OpError. When the Op field of
-// net.OpError contains "socks", the Source field contains a proxy
-// server address and the Addr field contains a command target
-// address.
-//
-// See func Dial of the net package of standard library for a
-// description of the network and address parameters.
-func (d *Dialer) DialContext(ctx context.Context, network, address string) (net.Conn, error) {
-	if err := d.validateTarget(network, address); err != nil {
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: err}
-	}
-	if ctx == nil {
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: errors.New("nil context")}
-	}
-	var err error
-	var c net.Conn
-	if d.ProxyDial != nil {
-		c, err = d.ProxyDial(ctx, d.proxyNetwork, d.proxyAddress)
-	} else {
-		var dd net.Dialer
-		c, err = dd.DialContext(ctx, d.proxyNetwork, d.proxyAddress)
-	}
-	if err != nil {
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: err}
-	}
-	a, err := d.connect(ctx, c, address)
-	if err != nil {
-		c.Close()
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: err}
-	}
-	return &Conn{Conn: c, boundAddr: a}, nil
-}
-
-// DialWithConn initiates a connection from SOCKS server to the target
-// network and address using the connection c that is already
-// connected to the SOCKS server.
-//
-// It returns the connection's local address assigned by the SOCKS
-// server.
-func (d *Dialer) DialWithConn(ctx context.Context, c net.Conn, network, address string) (net.Addr, error) {
-	if err := d.validateTarget(network, address); err != nil {
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: err}
-	}
-	if ctx == nil {
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: errors.New("nil context")}
-	}
-	a, err := d.connect(ctx, c, address)
-	if err != nil {
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: err}
-	}
-	return a, nil
-}
-
-// Dial connects to the provided address on the provided network.
-//
-// Unlike DialContext, it returns a raw transport connection instead
-// of a forward proxy connection.
-//
-// Deprecated: Use DialContext or DialWithConn instead.
-func (d *Dialer) Dial(network, address string) (net.Conn, error) {
-	if err := d.validateTarget(network, address); err != nil {
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: err}
-	}
-	var err error
-	var c net.Conn
-	if d.ProxyDial != nil {
-		c, err = d.ProxyDial(context.Background(), d.proxyNetwork, d.proxyAddress)
-	} else {
-		c, err = net.Dial(d.proxyNetwork, d.proxyAddress)
-	}
-	if err != nil {
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: err}
-	}
-	if _, err := d.DialWithConn(context.Background(), c, network, address); err != nil {
-		c.Close()
-		return nil, err
-	}
-	return c, nil
-}
-
-func (d *Dialer) validateTarget(network, address string) error {
-	switch network {
-	case "tcp", "tcp6", "tcp4":
-	default:
-		return errors.New("network not implemented")
-	}
-	switch d.cmd {
-	case CmdConnect, cmdBind:
-	default:
-		return errors.New("command not implemented")
-	}
-	return nil
-}
-
-func (d *Dialer) pathAddrs(address string) (proxy, dst net.Addr, err error) {
-	for i, s := range []string{d.proxyAddress, address} {
-		host, port, err := splitHostPort(s)
-		if err != nil {
-			return nil, nil, err
-		}
-		a := &Addr{Port: port}
-		a.IP = net.ParseIP(host)
-		if a.IP == nil {
-			a.Name = host
-		}
-		if i == 0 {
-			proxy = a
-		} else {
-			dst = a
-		}
-	}
-	return
-}
-
-// NewDialer returns a new Dialer that dials through the provided
-// proxy server's network and address.
-func NewDialer(network, address string) *Dialer {
-	return &Dialer{proxyNetwork: network, proxyAddress: address, cmd: CmdConnect}
-}
-
-const (
-	authUsernamePasswordVersion = 0x01
-	authStatusSucceeded         = 0x00
-)
-
-// UsernamePassword are the credentials for the username/password
-// authentication method.
-type UsernamePassword struct {
-	Username string
-	Password string
-}
-
-// Authenticate authenticates a pair of username and password with the
-// proxy server.
-func (up *UsernamePassword) Authenticate(ctx context.Context, rw io.ReadWriter, auth AuthMethod) error {
-	switch auth {
-	case AuthMethodNotRequired:
-		return nil
-	case AuthMethodUsernamePassword:
-		if len(up.Username) == 0 || len(up.Username) > 255 || len(up.Password) > 255 {
-			return errors.New("invalid username/password")
-		}
-		b := []byte{authUsernamePasswordVersion}
-		b = append(b, byte(len(up.Username)))
-		b = append(b, up.Username...)
-		b = append(b, byte(len(up.Password)))
-		b = append(b, up.Password...)
-		// TODO(mikio): handle IO deadlines and cancelation if
-		// necessary
-		if _, err := rw.Write(b); err != nil {
-			return err
-		}
-		if _, err := io.ReadFull(rw, b[:2]); err != nil {
-			return err
-		}
-		if b[0] != authUsernamePasswordVersion {
-			return errors.New("invalid username/password version")
-		}
-		if b[1] != authStatusSucceeded {
-			return errors.New("username/password authentication failed")
-		}
-		return nil
-	}
-	return errors.New("unsupported authentication method " + strconv.Itoa(int(auth)))
-}
diff --git a/vendor/golang.org/x/net/proxy/dial.go b/vendor/golang.org/x/net/proxy/dial.go
deleted file mode 100644
index 811c2e4e9..000000000
--- a/vendor/golang.org/x/net/proxy/dial.go
+++ /dev/null
@@ -1,54 +0,0 @@
-// Copyright 2019 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package proxy
-
-import (
-	"context"
-	"net"
-)
-
-// A ContextDialer dials using a context.
-type ContextDialer interface {
-	DialContext(ctx context.Context, network, address string) (net.Conn, error)
-}
-
-// Dial works like DialContext on net.Dialer but using a dialer returned by FromEnvironment.
-//
-// The passed ctx is only used for returning the Conn, not the lifetime of the Conn.
-//
-// Custom dialers (registered via RegisterDialerType) that do not implement ContextDialer
-// can leak a goroutine for as long as it takes the underlying Dialer implementation to timeout.
-//
-// A Conn returned from a successful Dial after the context has been cancelled will be immediately closed.
-func Dial(ctx context.Context, network, address string) (net.Conn, error) {
-	d := FromEnvironment()
-	if xd, ok := d.(ContextDialer); ok {
-		return xd.DialContext(ctx, network, address)
-	}
-	return dialContext(ctx, d, network, address)
-}
-
-// WARNING: this can leak a goroutine for as long as the underlying Dialer implementation takes to timeout
-// A Conn returned from a successful Dial after the context has been cancelled will be immediately closed.
-func dialContext(ctx context.Context, d Dialer, network, address string) (net.Conn, error) {
-	var (
-		conn net.Conn
-		done = make(chan struct{}, 1)
-		err  error
-	)
-	go func() {
-		conn, err = d.Dial(network, address)
-		close(done)
-		if conn != nil && ctx.Err() != nil {
-			conn.Close()
-		}
-	}()
-	select {
-	case <-ctx.Done():
-		err = ctx.Err()
-	case <-done:
-	}
-	return conn, err
-}
diff --git a/vendor/golang.org/x/net/proxy/direct.go b/vendor/golang.org/x/net/proxy/direct.go
deleted file mode 100644
index 3d66bdef9..000000000
--- a/vendor/golang.org/x/net/proxy/direct.go
+++ /dev/null
@@ -1,31 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package proxy
-
-import (
-	"context"
-	"net"
-)
-
-type direct struct{}
-
-// Direct implements Dialer by making network connections directly using net.Dial or net.DialContext.
-var Direct = direct{}
-
-var (
-	_ Dialer        = Direct
-	_ ContextDialer = Direct
-)
-
-// Dial directly invokes net.Dial with the supplied parameters.
-func (direct) Dial(network, addr string) (net.Conn, error) {
-	return net.Dial(network, addr)
-}
-
-// DialContext instantiates a net.Dialer and invokes its DialContext receiver with the supplied parameters.
-func (direct) DialContext(ctx context.Context, network, addr string) (net.Conn, error) {
-	var d net.Dialer
-	return d.DialContext(ctx, network, addr)
-}
diff --git a/vendor/golang.org/x/net/proxy/per_host.go b/vendor/golang.org/x/net/proxy/per_host.go
deleted file mode 100644
index d7d4b8b6e..000000000
--- a/vendor/golang.org/x/net/proxy/per_host.go
+++ /dev/null
@@ -1,151 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package proxy
-
-import (
-	"context"
-	"net"
-	"strings"
-)
-
-// A PerHost directs connections to a default Dialer unless the host name
-// requested matches one of a number of exceptions.
-type PerHost struct {
-	def, bypass Dialer
-
-	bypassNetworks []*net.IPNet
-	bypassIPs      []net.IP
-	bypassZones    []string
-	bypassHosts    []string
-}
-
-// NewPerHost returns a PerHost Dialer that directs connections to either
-// defaultDialer or bypass, depending on whether the connection matches one of
-// the configured rules.
-func NewPerHost(defaultDialer, bypass Dialer) *PerHost {
-	return &PerHost{
-		def:    defaultDialer,
-		bypass: bypass,
-	}
-}
-
-// Dial connects to the address addr on the given network through either
-// defaultDialer or bypass.
-func (p *PerHost) Dial(network, addr string) (c net.Conn, err error) {
-	host, _, err := net.SplitHostPort(addr)
-	if err != nil {
-		return nil, err
-	}
-
-	return p.dialerForRequest(host).Dial(network, addr)
-}
-
-// DialContext connects to the address addr on the given network through either
-// defaultDialer or bypass.
-func (p *PerHost) DialContext(ctx context.Context, network, addr string) (c net.Conn, err error) {
-	host, _, err := net.SplitHostPort(addr)
-	if err != nil {
-		return nil, err
-	}
-	d := p.dialerForRequest(host)
-	if x, ok := d.(ContextDialer); ok {
-		return x.DialContext(ctx, network, addr)
-	}
-	return dialContext(ctx, d, network, addr)
-}
-
-func (p *PerHost) dialerForRequest(host string) Dialer {
-	if ip := net.ParseIP(host); ip != nil {
-		for _, net := range p.bypassNetworks {
-			if net.Contains(ip) {
-				return p.bypass
-			}
-		}
-		for _, bypassIP := range p.bypassIPs {
-			if bypassIP.Equal(ip) {
-				return p.bypass
-			}
-		}
-		return p.def
-	}
-
-	for _, zone := range p.bypassZones {
-		if strings.HasSuffix(host, zone) {
-			return p.bypass
-		}
-		if host == zone[1:] {
-			// For a zone ".example.com", we match "example.com"
-			// too.
-			return p.bypass
-		}
-	}
-	for _, bypassHost := range p.bypassHosts {
-		if bypassHost == host {
-			return p.bypass
-		}
-	}
-	return p.def
-}
-
-// AddFromString parses a string that contains comma-separated values
-// specifying hosts that should use the bypass proxy. Each value is either an
-// IP address, a CIDR range, a zone (*.example.com) or a host name
-// (localhost). A best effort is made to parse the string and errors are
-// ignored.
-func (p *PerHost) AddFromString(s string) {
-	hosts := strings.Split(s, ",")
-	for _, host := range hosts {
-		host = strings.TrimSpace(host)
-		if len(host) == 0 {
-			continue
-		}
-		if strings.Contains(host, "/") {
-			// We assume that it's a CIDR address like 127.0.0.0/8
-			if _, net, err := net.ParseCIDR(host); err == nil {
-				p.AddNetwork(net)
-			}
-			continue
-		}
-		if ip := net.ParseIP(host); ip != nil {
-			p.AddIP(ip)
-			continue
-		}
-		if strings.HasPrefix(host, "*.") {
-			p.AddZone(host[1:])
-			continue
-		}
-		p.AddHost(host)
-	}
-}
-
-// AddIP specifies an IP address that will use the bypass proxy. Note that
-// this will only take effect if a literal IP address is dialed. A connection
-// to a named host will never match an IP.
-func (p *PerHost) AddIP(ip net.IP) {
-	p.bypassIPs = append(p.bypassIPs, ip)
-}
-
-// AddNetwork specifies an IP range that will use the bypass proxy. Note that
-// this will only take effect if a literal IP address is dialed. A connection
-// to a named host will never match.
-func (p *PerHost) AddNetwork(net *net.IPNet) {
-	p.bypassNetworks = append(p.bypassNetworks, net)
-}
-
-// AddZone specifies a DNS suffix that will use the bypass proxy. A zone of
-// "example.com" matches "example.com" and all of its subdomains.
-func (p *PerHost) AddZone(zone string) {
-	zone = strings.TrimSuffix(zone, ".")
-	if !strings.HasPrefix(zone, ".") {
-		zone = "." + zone
-	}
-	p.bypassZones = append(p.bypassZones, zone)
-}
-
-// AddHost specifies a host name that will use the bypass proxy.
-func (p *PerHost) AddHost(host string) {
-	host = strings.TrimSuffix(host, ".")
-	p.bypassHosts = append(p.bypassHosts, host)
-}
diff --git a/vendor/golang.org/x/net/proxy/proxy.go b/vendor/golang.org/x/net/proxy/proxy.go
deleted file mode 100644
index 9ff4b9a77..000000000
--- a/vendor/golang.org/x/net/proxy/proxy.go
+++ /dev/null
@@ -1,149 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package proxy provides support for a variety of protocols to proxy network
-// data.
-package proxy // import "golang.org/x/net/proxy"
-
-import (
-	"errors"
-	"net"
-	"net/url"
-	"os"
-	"sync"
-)
-
-// A Dialer is a means to establish a connection.
-// Custom dialers should also implement ContextDialer.
-type Dialer interface {
-	// Dial connects to the given address via the proxy.
-	Dial(network, addr string) (c net.Conn, err error)
-}
-
-// Auth contains authentication parameters that specific Dialers may require.
-type Auth struct {
-	User, Password string
-}
-
-// FromEnvironment returns the dialer specified by the proxy-related
-// variables in the environment and makes underlying connections
-// directly.
-func FromEnvironment() Dialer {
-	return FromEnvironmentUsing(Direct)
-}
-
-// FromEnvironmentUsing returns the dialer specify by the proxy-related
-// variables in the environment and makes underlying connections
-// using the provided forwarding Dialer (for instance, a *net.Dialer
-// with desired configuration).
-func FromEnvironmentUsing(forward Dialer) Dialer {
-	allProxy := allProxyEnv.Get()
-	if len(allProxy) == 0 {
-		return forward
-	}
-
-	proxyURL, err := url.Parse(allProxy)
-	if err != nil {
-		return forward
-	}
-	proxy, err := FromURL(proxyURL, forward)
-	if err != nil {
-		return forward
-	}
-
-	noProxy := noProxyEnv.Get()
-	if len(noProxy) == 0 {
-		return proxy
-	}
-
-	perHost := NewPerHost(proxy, forward)
-	perHost.AddFromString(noProxy)
-	return perHost
-}
-
-// proxySchemes is a map from URL schemes to a function that creates a Dialer
-// from a URL with such a scheme.
-var proxySchemes map[string]func(*url.URL, Dialer) (Dialer, error)
-
-// RegisterDialerType takes a URL scheme and a function to generate Dialers from
-// a URL with that scheme and a forwarding Dialer. Registered schemes are used
-// by FromURL.
-func RegisterDialerType(scheme string, f func(*url.URL, Dialer) (Dialer, error)) {
-	if proxySchemes == nil {
-		proxySchemes = make(map[string]func(*url.URL, Dialer) (Dialer, error))
-	}
-	proxySchemes[scheme] = f
-}
-
-// FromURL returns a Dialer given a URL specification and an underlying
-// Dialer for it to make network requests.
-func FromURL(u *url.URL, forward Dialer) (Dialer, error) {
-	var auth *Auth
-	if u.User != nil {
-		auth = new(Auth)
-		auth.User = u.User.Username()
-		if p, ok := u.User.Password(); ok {
-			auth.Password = p
-		}
-	}
-
-	switch u.Scheme {
-	case "socks5", "socks5h":
-		addr := u.Hostname()
-		port := u.Port()
-		if port == "" {
-			port = "1080"
-		}
-		return SOCKS5("tcp", net.JoinHostPort(addr, port), auth, forward)
-	}
-
-	// If the scheme doesn't match any of the built-in schemes, see if it
-	// was registered by another package.
-	if proxySchemes != nil {
-		if f, ok := proxySchemes[u.Scheme]; ok {
-			return f(u, forward)
-		}
-	}
-
-	return nil, errors.New("proxy: unknown scheme: " + u.Scheme)
-}
-
-var (
-	allProxyEnv = &envOnce{
-		names: []string{"ALL_PROXY", "all_proxy"},
-	}
-	noProxyEnv = &envOnce{
-		names: []string{"NO_PROXY", "no_proxy"},
-	}
-)
-
-// envOnce looks up an environment variable (optionally by multiple
-// names) once. It mitigates expensive lookups on some platforms
-// (e.g. Windows).
-// (Borrowed from net/http/transport.go)
-type envOnce struct {
-	names []string
-	once  sync.Once
-	val   string
-}
-
-func (e *envOnce) Get() string {
-	e.once.Do(e.init)
-	return e.val
-}
-
-func (e *envOnce) init() {
-	for _, n := range e.names {
-		e.val = os.Getenv(n)
-		if e.val != "" {
-			return
-		}
-	}
-}
-
-// reset is used by tests
-func (e *envOnce) reset() {
-	e.once = sync.Once{}
-	e.val = ""
-}
diff --git a/vendor/golang.org/x/net/proxy/socks5.go b/vendor/golang.org/x/net/proxy/socks5.go
deleted file mode 100644
index c91651f96..000000000
--- a/vendor/golang.org/x/net/proxy/socks5.go
+++ /dev/null
@@ -1,42 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package proxy
-
-import (
-	"context"
-	"net"
-
-	"golang.org/x/net/internal/socks"
-)
-
-// SOCKS5 returns a Dialer that makes SOCKSv5 connections to the given
-// address with an optional username and password.
-// See RFC 1928 and RFC 1929.
-func SOCKS5(network, address string, auth *Auth, forward Dialer) (Dialer, error) {
-	d := socks.NewDialer(network, address)
-	if forward != nil {
-		if f, ok := forward.(ContextDialer); ok {
-			d.ProxyDial = func(ctx context.Context, network string, address string) (net.Conn, error) {
-				return f.DialContext(ctx, network, address)
-			}
-		} else {
-			d.ProxyDial = func(ctx context.Context, network string, address string) (net.Conn, error) {
-				return dialContext(ctx, forward, network, address)
-			}
-		}
-	}
-	if auth != nil {
-		up := socks.UsernamePassword{
-			Username: auth.User,
-			Password: auth.Password,
-		}
-		d.AuthMethods = []socks.AuthMethod{
-			socks.AuthMethodNotRequired,
-			socks.AuthMethodUsernamePassword,
-		}
-		d.Authenticate = up.Authenticate
-	}
-	return d, nil
-}
diff --git a/vendor/modules.txt b/vendor/modules.txt
index 68fb93086..2f8c861a2 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -364,8 +364,8 @@ github.com/gorilla/securecookie
 # github.com/gorilla/sessions v1.2.2
 ## explicit; go 1.20
 github.com/gorilla/sessions
-# github.com/gorilla/websocket v1.5.2
-## explicit; go 1.20
+# github.com/gorilla/websocket v1.5.3
+## explicit; go 1.12
 github.com/gorilla/websocket
 # github.com/grpc-ecosystem/grpc-gateway/v2 v2.22.0
 ## explicit; go 1.21
@@ -1109,11 +1109,9 @@ golang.org/x/net/http2/hpack
 golang.org/x/net/idna
 golang.org/x/net/internal/iana
 golang.org/x/net/internal/socket
-golang.org/x/net/internal/socks
 golang.org/x/net/internal/timeseries
 golang.org/x/net/ipv4
 golang.org/x/net/ipv6
-golang.org/x/net/proxy
 golang.org/x/net/publicsuffix
 golang.org/x/net/trace
 # golang.org/x/oauth2 v0.24.0

From 934e895ec06acc41a8cf22e3462e7ed1edcf994e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 25 Nov 2024 11:14:48 +0000
Subject: [PATCH 03/26] [chore]: Bump github.com/stretchr/testify from 1.9.0 to
 1.10.0 (#3564)

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.9.0 to 1.10.0.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.9.0...v1.10.0)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod                                        |   2 +-
 go.sum                                        |   3 +-
 .../testify/assert/assertion_compare.go       |  35 +-
 .../testify/assert/assertion_format.go        |  34 +-
 .../testify/assert/assertion_forward.go       |  68 ++-
 .../testify/assert/assertion_order.go         |  10 +-
 .../stretchr/testify/assert/assertions.go     | 157 +++++--
 .../testify/assert/yaml/yaml_custom.go        |  25 +
 .../testify/assert/yaml/yaml_default.go       |  37 ++
 .../stretchr/testify/assert/yaml/yaml_fail.go |  18 +
 .../stretchr/testify/require/require.go       | 432 ++++++++++--------
 .../stretchr/testify/require/require.go.tmpl  |   2 +-
 .../testify/require/require_forward.go        |  68 ++-
 .../stretchr/testify/require/requirements.go  |   2 +-
 .../github.com/stretchr/testify/suite/doc.go  |   4 +
 vendor/modules.txt                            |   3 +-
 16 files changed, 634 insertions(+), 266 deletions(-)
 create mode 100644 vendor/github.com/stretchr/testify/assert/yaml/yaml_custom.go
 create mode 100644 vendor/github.com/stretchr/testify/assert/yaml/yaml_default.go
 create mode 100644 vendor/github.com/stretchr/testify/assert/yaml/yaml_fail.go

diff --git a/go.mod b/go.mod
index 261aefba4..bc1d56a46 100644
--- a/go.mod
+++ b/go.mod
@@ -64,7 +64,7 @@ require (
 	github.com/prometheus/client_golang v1.20.5
 	github.com/spf13/cobra v1.8.1
 	github.com/spf13/viper v1.19.0
-	github.com/stretchr/testify v1.9.0
+	github.com/stretchr/testify v1.10.0
 	github.com/superseriousbusiness/activity v1.9.0-gts
 	github.com/superseriousbusiness/httpsig v1.2.0-SSB
 	github.com/superseriousbusiness/oauth2/v4 v4.3.2-SSB.0.20230227143000-f4900831d6c8
diff --git a/go.sum b/go.sum
index a59ca6946..78d023286 100644
--- a/go.sum
+++ b/go.sum
@@ -527,8 +527,9 @@ github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
-github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
 github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
+github.com/stretchr/testify v1.10.0 h1:Xv5erBjTwe/5IxqUQTdXv5kgmIvbHo3QQyRwhJsOfJA=
+github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/subosito/gotenv v1.6.0 h1:9NlTDc1FTs4qu0DDq7AEtTPNw6SVm7uBMsUCUjABIf8=
 github.com/subosito/gotenv v1.6.0/go.mod h1:Dk4QP5c2W3ibzajGcXpNraDfq2IrhjMIvMSWPKKo0FU=
 github.com/superseriousbusiness/activity v1.9.0-gts h1:qWMDeiGdnVi+XG7CfuM7ET87qe9adousU6utWItBX/o=
diff --git a/vendor/github.com/stretchr/testify/assert/assertion_compare.go b/vendor/github.com/stretchr/testify/assert/assertion_compare.go
index 4d4b4aad6..7e19eba09 100644
--- a/vendor/github.com/stretchr/testify/assert/assertion_compare.go
+++ b/vendor/github.com/stretchr/testify/assert/assertion_compare.go
@@ -7,10 +7,13 @@ import (
 	"time"
 )
 
-type CompareType int
+// Deprecated: CompareType has only ever been for internal use and has accidentally been published since v1.6.0. Do not use it.
+type CompareType = compareResult
+
+type compareResult int
 
 const (
-	compareLess CompareType = iota - 1
+	compareLess compareResult = iota - 1
 	compareEqual
 	compareGreater
 )
@@ -39,7 +42,7 @@ var (
 	bytesType = reflect.TypeOf([]byte{})
 )
 
-func compare(obj1, obj2 interface{}, kind reflect.Kind) (CompareType, bool) {
+func compare(obj1, obj2 interface{}, kind reflect.Kind) (compareResult, bool) {
 	obj1Value := reflect.ValueOf(obj1)
 	obj2Value := reflect.ValueOf(obj2)
 
@@ -325,7 +328,13 @@ func compare(obj1, obj2 interface{}, kind reflect.Kind) (CompareType, bool) {
 				timeObj2 = obj2Value.Convert(timeType).Interface().(time.Time)
 			}
 
-			return compare(timeObj1.UnixNano(), timeObj2.UnixNano(), reflect.Int64)
+			if timeObj1.Before(timeObj2) {
+				return compareLess, true
+			}
+			if timeObj1.Equal(timeObj2) {
+				return compareEqual, true
+			}
+			return compareGreater, true
 		}
 	case reflect.Slice:
 		{
@@ -345,7 +354,7 @@ func compare(obj1, obj2 interface{}, kind reflect.Kind) (CompareType, bool) {
 				bytesObj2 = obj2Value.Convert(bytesType).Interface().([]byte)
 			}
 
-			return CompareType(bytes.Compare(bytesObj1, bytesObj2)), true
+			return compareResult(bytes.Compare(bytesObj1, bytesObj2)), true
 		}
 	case reflect.Uintptr:
 		{
@@ -381,7 +390,7 @@ func Greater(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...interface
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
 	}
-	return compareTwoValues(t, e1, e2, []CompareType{compareGreater}, "\"%v\" is not greater than \"%v\"", msgAndArgs...)
+	return compareTwoValues(t, e1, e2, []compareResult{compareGreater}, "\"%v\" is not greater than \"%v\"", msgAndArgs...)
 }
 
 // GreaterOrEqual asserts that the first element is greater than or equal to the second
@@ -394,7 +403,7 @@ func GreaterOrEqual(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...in
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
 	}
-	return compareTwoValues(t, e1, e2, []CompareType{compareGreater, compareEqual}, "\"%v\" is not greater than or equal to \"%v\"", msgAndArgs...)
+	return compareTwoValues(t, e1, e2, []compareResult{compareGreater, compareEqual}, "\"%v\" is not greater than or equal to \"%v\"", msgAndArgs...)
 }
 
 // Less asserts that the first element is less than the second
@@ -406,7 +415,7 @@ func Less(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...interface{})
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
 	}
-	return compareTwoValues(t, e1, e2, []CompareType{compareLess}, "\"%v\" is not less than \"%v\"", msgAndArgs...)
+	return compareTwoValues(t, e1, e2, []compareResult{compareLess}, "\"%v\" is not less than \"%v\"", msgAndArgs...)
 }
 
 // LessOrEqual asserts that the first element is less than or equal to the second
@@ -419,7 +428,7 @@ func LessOrEqual(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...inter
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
 	}
-	return compareTwoValues(t, e1, e2, []CompareType{compareLess, compareEqual}, "\"%v\" is not less than or equal to \"%v\"", msgAndArgs...)
+	return compareTwoValues(t, e1, e2, []compareResult{compareLess, compareEqual}, "\"%v\" is not less than or equal to \"%v\"", msgAndArgs...)
 }
 
 // Positive asserts that the specified element is positive
@@ -431,7 +440,7 @@ func Positive(t TestingT, e interface{}, msgAndArgs ...interface{}) bool {
 		h.Helper()
 	}
 	zero := reflect.Zero(reflect.TypeOf(e))
-	return compareTwoValues(t, e, zero.Interface(), []CompareType{compareGreater}, "\"%v\" is not positive", msgAndArgs...)
+	return compareTwoValues(t, e, zero.Interface(), []compareResult{compareGreater}, "\"%v\" is not positive", msgAndArgs...)
 }
 
 // Negative asserts that the specified element is negative
@@ -443,10 +452,10 @@ func Negative(t TestingT, e interface{}, msgAndArgs ...interface{}) bool {
 		h.Helper()
 	}
 	zero := reflect.Zero(reflect.TypeOf(e))
-	return compareTwoValues(t, e, zero.Interface(), []CompareType{compareLess}, "\"%v\" is not negative", msgAndArgs...)
+	return compareTwoValues(t, e, zero.Interface(), []compareResult{compareLess}, "\"%v\" is not negative", msgAndArgs...)
 }
 
-func compareTwoValues(t TestingT, e1 interface{}, e2 interface{}, allowedComparesResults []CompareType, failMessage string, msgAndArgs ...interface{}) bool {
+func compareTwoValues(t TestingT, e1 interface{}, e2 interface{}, allowedComparesResults []compareResult, failMessage string, msgAndArgs ...interface{}) bool {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
 	}
@@ -469,7 +478,7 @@ func compareTwoValues(t TestingT, e1 interface{}, e2 interface{}, allowedCompare
 	return true
 }
 
-func containsValue(values []CompareType, value CompareType) bool {
+func containsValue(values []compareResult, value compareResult) bool {
 	for _, v := range values {
 		if v == value {
 			return true
diff --git a/vendor/github.com/stretchr/testify/assert/assertion_format.go b/vendor/github.com/stretchr/testify/assert/assertion_format.go
index 3ddab109a..190634165 100644
--- a/vendor/github.com/stretchr/testify/assert/assertion_format.go
+++ b/vendor/github.com/stretchr/testify/assert/assertion_format.go
@@ -104,8 +104,8 @@ func EqualExportedValuesf(t TestingT, expected interface{}, actual interface{},
 	return EqualExportedValues(t, expected, actual, append([]interface{}{msg}, args...)...)
 }
 
-// EqualValuesf asserts that two objects are equal or convertible to the same types
-// and equal.
+// EqualValuesf asserts that two objects are equal or convertible to the larger
+// type and equal.
 //
 //	assert.EqualValuesf(t, uint32(123), int32(123), "error message %s", "formatted")
 func EqualValuesf(t TestingT, expected interface{}, actual interface{}, msg string, args ...interface{}) bool {
@@ -186,7 +186,7 @@ func Eventuallyf(t TestingT, condition func() bool, waitFor time.Duration, tick
 //	assert.EventuallyWithTf(t, func(c *assert.CollectT, "error message %s", "formatted") {
 //		// add assertions as needed; any assertion failure will fail the current tick
 //		assert.True(c, externalValue, "expected 'externalValue' to be true")
-//	}, 1*time.Second, 10*time.Second, "external state has not changed to 'true'; still false")
+//	}, 10*time.Second, 1*time.Second, "external state has not changed to 'true'; still false")
 func EventuallyWithTf(t TestingT, condition func(collect *CollectT), waitFor time.Duration, tick time.Duration, msg string, args ...interface{}) bool {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -568,6 +568,23 @@ func NotContainsf(t TestingT, s interface{}, contains interface{}, msg string, a
 	return NotContains(t, s, contains, append([]interface{}{msg}, args...)...)
 }
 
+// NotElementsMatchf asserts that the specified listA(array, slice...) is NOT equal to specified
+// listB(array, slice...) ignoring the order of the elements. If there are duplicate elements,
+// the number of appearances of each of them in both lists should not match.
+// This is an inverse of ElementsMatch.
+//
+// assert.NotElementsMatchf(t, [1, 1, 2, 3], [1, 1, 2, 3], "error message %s", "formatted") -> false
+//
+// assert.NotElementsMatchf(t, [1, 1, 2, 3], [1, 2, 3], "error message %s", "formatted") -> true
+//
+// assert.NotElementsMatchf(t, [1, 2, 3], [1, 2, 4], "error message %s", "formatted") -> true
+func NotElementsMatchf(t TestingT, listA interface{}, listB interface{}, msg string, args ...interface{}) bool {
+	if h, ok := t.(tHelper); ok {
+		h.Helper()
+	}
+	return NotElementsMatch(t, listA, listB, append([]interface{}{msg}, args...)...)
+}
+
 // NotEmptyf asserts that the specified object is NOT empty.  I.e. not nil, "", false, 0 or either
 // a slice or a channel with len == 0.
 //
@@ -604,7 +621,16 @@ func NotEqualValuesf(t TestingT, expected interface{}, actual interface{}, msg s
 	return NotEqualValues(t, expected, actual, append([]interface{}{msg}, args...)...)
 }
 
-// NotErrorIsf asserts that at none of the errors in err's chain matches target.
+// NotErrorAsf asserts that none of the errors in err's chain matches target,
+// but if so, sets target to that error value.
+func NotErrorAsf(t TestingT, err error, target interface{}, msg string, args ...interface{}) bool {
+	if h, ok := t.(tHelper); ok {
+		h.Helper()
+	}
+	return NotErrorAs(t, err, target, append([]interface{}{msg}, args...)...)
+}
+
+// NotErrorIsf asserts that none of the errors in err's chain matches target.
 // This is a wrapper for errors.Is.
 func NotErrorIsf(t TestingT, err error, target error, msg string, args ...interface{}) bool {
 	if h, ok := t.(tHelper); ok {
diff --git a/vendor/github.com/stretchr/testify/assert/assertion_forward.go b/vendor/github.com/stretchr/testify/assert/assertion_forward.go
index a84e09bd4..21629087b 100644
--- a/vendor/github.com/stretchr/testify/assert/assertion_forward.go
+++ b/vendor/github.com/stretchr/testify/assert/assertion_forward.go
@@ -186,8 +186,8 @@ func (a *Assertions) EqualExportedValuesf(expected interface{}, actual interface
 	return EqualExportedValuesf(a.t, expected, actual, msg, args...)
 }
 
-// EqualValues asserts that two objects are equal or convertible to the same types
-// and equal.
+// EqualValues asserts that two objects are equal or convertible to the larger
+// type and equal.
 //
 //	a.EqualValues(uint32(123), int32(123))
 func (a *Assertions) EqualValues(expected interface{}, actual interface{}, msgAndArgs ...interface{}) bool {
@@ -197,8 +197,8 @@ func (a *Assertions) EqualValues(expected interface{}, actual interface{}, msgAn
 	return EqualValues(a.t, expected, actual, msgAndArgs...)
 }
 
-// EqualValuesf asserts that two objects are equal or convertible to the same types
-// and equal.
+// EqualValuesf asserts that two objects are equal or convertible to the larger
+// type and equal.
 //
 //	a.EqualValuesf(uint32(123), int32(123), "error message %s", "formatted")
 func (a *Assertions) EqualValuesf(expected interface{}, actual interface{}, msg string, args ...interface{}) bool {
@@ -336,7 +336,7 @@ func (a *Assertions) Eventually(condition func() bool, waitFor time.Duration, ti
 //	a.EventuallyWithT(func(c *assert.CollectT) {
 //		// add assertions as needed; any assertion failure will fail the current tick
 //		assert.True(c, externalValue, "expected 'externalValue' to be true")
-//	}, 1*time.Second, 10*time.Second, "external state has not changed to 'true'; still false")
+//	}, 10*time.Second, 1*time.Second, "external state has not changed to 'true'; still false")
 func (a *Assertions) EventuallyWithT(condition func(collect *CollectT), waitFor time.Duration, tick time.Duration, msgAndArgs ...interface{}) bool {
 	if h, ok := a.t.(tHelper); ok {
 		h.Helper()
@@ -361,7 +361,7 @@ func (a *Assertions) EventuallyWithT(condition func(collect *CollectT), waitFor
 //	a.EventuallyWithTf(func(c *assert.CollectT, "error message %s", "formatted") {
 //		// add assertions as needed; any assertion failure will fail the current tick
 //		assert.True(c, externalValue, "expected 'externalValue' to be true")
-//	}, 1*time.Second, 10*time.Second, "external state has not changed to 'true'; still false")
+//	}, 10*time.Second, 1*time.Second, "external state has not changed to 'true'; still false")
 func (a *Assertions) EventuallyWithTf(condition func(collect *CollectT), waitFor time.Duration, tick time.Duration, msg string, args ...interface{}) bool {
 	if h, ok := a.t.(tHelper); ok {
 		h.Helper()
@@ -1128,6 +1128,40 @@ func (a *Assertions) NotContainsf(s interface{}, contains interface{}, msg strin
 	return NotContainsf(a.t, s, contains, msg, args...)
 }
 
+// NotElementsMatch asserts that the specified listA(array, slice...) is NOT equal to specified
+// listB(array, slice...) ignoring the order of the elements. If there are duplicate elements,
+// the number of appearances of each of them in both lists should not match.
+// This is an inverse of ElementsMatch.
+//
+// a.NotElementsMatch([1, 1, 2, 3], [1, 1, 2, 3]) -> false
+//
+// a.NotElementsMatch([1, 1, 2, 3], [1, 2, 3]) -> true
+//
+// a.NotElementsMatch([1, 2, 3], [1, 2, 4]) -> true
+func (a *Assertions) NotElementsMatch(listA interface{}, listB interface{}, msgAndArgs ...interface{}) bool {
+	if h, ok := a.t.(tHelper); ok {
+		h.Helper()
+	}
+	return NotElementsMatch(a.t, listA, listB, msgAndArgs...)
+}
+
+// NotElementsMatchf asserts that the specified listA(array, slice...) is NOT equal to specified
+// listB(array, slice...) ignoring the order of the elements. If there are duplicate elements,
+// the number of appearances of each of them in both lists should not match.
+// This is an inverse of ElementsMatch.
+//
+// a.NotElementsMatchf([1, 1, 2, 3], [1, 1, 2, 3], "error message %s", "formatted") -> false
+//
+// a.NotElementsMatchf([1, 1, 2, 3], [1, 2, 3], "error message %s", "formatted") -> true
+//
+// a.NotElementsMatchf([1, 2, 3], [1, 2, 4], "error message %s", "formatted") -> true
+func (a *Assertions) NotElementsMatchf(listA interface{}, listB interface{}, msg string, args ...interface{}) bool {
+	if h, ok := a.t.(tHelper); ok {
+		h.Helper()
+	}
+	return NotElementsMatchf(a.t, listA, listB, msg, args...)
+}
+
 // NotEmpty asserts that the specified object is NOT empty.  I.e. not nil, "", false, 0 or either
 // a slice or a channel with len == 0.
 //
@@ -1200,7 +1234,25 @@ func (a *Assertions) NotEqualf(expected interface{}, actual interface{}, msg str
 	return NotEqualf(a.t, expected, actual, msg, args...)
 }
 
-// NotErrorIs asserts that at none of the errors in err's chain matches target.
+// NotErrorAs asserts that none of the errors in err's chain matches target,
+// but if so, sets target to that error value.
+func (a *Assertions) NotErrorAs(err error, target interface{}, msgAndArgs ...interface{}) bool {
+	if h, ok := a.t.(tHelper); ok {
+		h.Helper()
+	}
+	return NotErrorAs(a.t, err, target, msgAndArgs...)
+}
+
+// NotErrorAsf asserts that none of the errors in err's chain matches target,
+// but if so, sets target to that error value.
+func (a *Assertions) NotErrorAsf(err error, target interface{}, msg string, args ...interface{}) bool {
+	if h, ok := a.t.(tHelper); ok {
+		h.Helper()
+	}
+	return NotErrorAsf(a.t, err, target, msg, args...)
+}
+
+// NotErrorIs asserts that none of the errors in err's chain matches target.
 // This is a wrapper for errors.Is.
 func (a *Assertions) NotErrorIs(err error, target error, msgAndArgs ...interface{}) bool {
 	if h, ok := a.t.(tHelper); ok {
@@ -1209,7 +1261,7 @@ func (a *Assertions) NotErrorIs(err error, target error, msgAndArgs ...interface
 	return NotErrorIs(a.t, err, target, msgAndArgs...)
 }
 
-// NotErrorIsf asserts that at none of the errors in err's chain matches target.
+// NotErrorIsf asserts that none of the errors in err's chain matches target.
 // This is a wrapper for errors.Is.
 func (a *Assertions) NotErrorIsf(err error, target error, msg string, args ...interface{}) bool {
 	if h, ok := a.t.(tHelper); ok {
diff --git a/vendor/github.com/stretchr/testify/assert/assertion_order.go b/vendor/github.com/stretchr/testify/assert/assertion_order.go
index 00df62a05..1d2f71824 100644
--- a/vendor/github.com/stretchr/testify/assert/assertion_order.go
+++ b/vendor/github.com/stretchr/testify/assert/assertion_order.go
@@ -6,7 +6,7 @@ import (
 )
 
 // isOrdered checks that collection contains orderable elements.
-func isOrdered(t TestingT, object interface{}, allowedComparesResults []CompareType, failMessage string, msgAndArgs ...interface{}) bool {
+func isOrdered(t TestingT, object interface{}, allowedComparesResults []compareResult, failMessage string, msgAndArgs ...interface{}) bool {
 	objKind := reflect.TypeOf(object).Kind()
 	if objKind != reflect.Slice && objKind != reflect.Array {
 		return false
@@ -50,7 +50,7 @@ func isOrdered(t TestingT, object interface{}, allowedComparesResults []CompareT
 //	assert.IsIncreasing(t, []float{1, 2})
 //	assert.IsIncreasing(t, []string{"a", "b"})
 func IsIncreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) bool {
-	return isOrdered(t, object, []CompareType{compareLess}, "\"%v\" is not less than \"%v\"", msgAndArgs...)
+	return isOrdered(t, object, []compareResult{compareLess}, "\"%v\" is not less than \"%v\"", msgAndArgs...)
 }
 
 // IsNonIncreasing asserts that the collection is not increasing
@@ -59,7 +59,7 @@ func IsIncreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) boo
 //	assert.IsNonIncreasing(t, []float{2, 1})
 //	assert.IsNonIncreasing(t, []string{"b", "a"})
 func IsNonIncreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) bool {
-	return isOrdered(t, object, []CompareType{compareEqual, compareGreater}, "\"%v\" is not greater than or equal to \"%v\"", msgAndArgs...)
+	return isOrdered(t, object, []compareResult{compareEqual, compareGreater}, "\"%v\" is not greater than or equal to \"%v\"", msgAndArgs...)
 }
 
 // IsDecreasing asserts that the collection is decreasing
@@ -68,7 +68,7 @@ func IsNonIncreasing(t TestingT, object interface{}, msgAndArgs ...interface{})
 //	assert.IsDecreasing(t, []float{2, 1})
 //	assert.IsDecreasing(t, []string{"b", "a"})
 func IsDecreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) bool {
-	return isOrdered(t, object, []CompareType{compareGreater}, "\"%v\" is not greater than \"%v\"", msgAndArgs...)
+	return isOrdered(t, object, []compareResult{compareGreater}, "\"%v\" is not greater than \"%v\"", msgAndArgs...)
 }
 
 // IsNonDecreasing asserts that the collection is not decreasing
@@ -77,5 +77,5 @@ func IsDecreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) boo
 //	assert.IsNonDecreasing(t, []float{1, 2})
 //	assert.IsNonDecreasing(t, []string{"a", "b"})
 func IsNonDecreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) bool {
-	return isOrdered(t, object, []CompareType{compareLess, compareEqual}, "\"%v\" is not less than or equal to \"%v\"", msgAndArgs...)
+	return isOrdered(t, object, []compareResult{compareLess, compareEqual}, "\"%v\" is not less than or equal to \"%v\"", msgAndArgs...)
 }
diff --git a/vendor/github.com/stretchr/testify/assert/assertions.go b/vendor/github.com/stretchr/testify/assert/assertions.go
index 0b7570f21..4e91332bb 100644
--- a/vendor/github.com/stretchr/testify/assert/assertions.go
+++ b/vendor/github.com/stretchr/testify/assert/assertions.go
@@ -19,7 +19,9 @@ import (
 
 	"github.com/davecgh/go-spew/spew"
 	"github.com/pmezard/go-difflib/difflib"
-	"gopkg.in/yaml.v3"
+
+	// Wrapper around gopkg.in/yaml.v3
+	"github.com/stretchr/testify/assert/yaml"
 )
 
 //go:generate sh -c "cd ../_codegen && go build && cd - && ../_codegen/_codegen -output-package=assert -template=assertion_format.go.tmpl"
@@ -45,6 +47,10 @@ type BoolAssertionFunc func(TestingT, bool, ...interface{}) bool
 // for table driven tests.
 type ErrorAssertionFunc func(TestingT, error, ...interface{}) bool
 
+// PanicAssertionFunc is a common function prototype when validating a panic value.  Can be useful
+// for table driven tests.
+type PanicAssertionFunc = func(t TestingT, f PanicTestFunc, msgAndArgs ...interface{}) bool
+
 // Comparison is a custom function that returns true on success and false on failure
 type Comparison func() (success bool)
 
@@ -496,7 +502,13 @@ func Same(t TestingT, expected, actual interface{}, msgAndArgs ...interface{}) b
 		h.Helper()
 	}
 
-	if !samePointers(expected, actual) {
+	same, ok := samePointers(expected, actual)
+	if !ok {
+		return Fail(t, "Both arguments must be pointers", msgAndArgs...)
+	}
+
+	if !same {
+		// both are pointers but not the same type & pointing to the same address
 		return Fail(t, fmt.Sprintf("Not same: \n"+
 			"expected: %p %#v\n"+
 			"actual  : %p %#v", expected, expected, actual, actual), msgAndArgs...)
@@ -516,7 +528,13 @@ func NotSame(t TestingT, expected, actual interface{}, msgAndArgs ...interface{}
 		h.Helper()
 	}
 
-	if samePointers(expected, actual) {
+	same, ok := samePointers(expected, actual)
+	if !ok {
+		//fails when the arguments are not pointers
+		return !(Fail(t, "Both arguments must be pointers", msgAndArgs...))
+	}
+
+	if same {
 		return Fail(t, fmt.Sprintf(
 			"Expected and actual point to the same object: %p %#v",
 			expected, expected), msgAndArgs...)
@@ -524,21 +542,23 @@ func NotSame(t TestingT, expected, actual interface{}, msgAndArgs ...interface{}
 	return true
 }
 
-// samePointers compares two generic interface objects and returns whether
-// they point to the same object
-func samePointers(first, second interface{}) bool {
+// samePointers checks if two generic interface objects are pointers of the same
+// type pointing to the same object. It returns two values: same indicating if
+// they are the same type and point to the same object, and ok indicating that
+// both inputs are pointers.
+func samePointers(first, second interface{}) (same bool, ok bool) {
 	firstPtr, secondPtr := reflect.ValueOf(first), reflect.ValueOf(second)
 	if firstPtr.Kind() != reflect.Ptr || secondPtr.Kind() != reflect.Ptr {
-		return false
+		return false, false //not both are pointers
 	}
 
 	firstType, secondType := reflect.TypeOf(first), reflect.TypeOf(second)
 	if firstType != secondType {
-		return false
+		return false, true // both are pointers, but of different types
 	}
 
 	// compare pointer addresses
-	return first == second
+	return first == second, true
 }
 
 // formatUnequalValues takes two values of arbitrary types and returns string
@@ -572,8 +592,8 @@ func truncatingFormat(data interface{}) string {
 	return value
 }
 
-// EqualValues asserts that two objects are equal or convertible to the same types
-// and equal.
+// EqualValues asserts that two objects are equal or convertible to the larger
+// type and equal.
 //
 //	assert.EqualValues(t, uint32(123), int32(123))
 func EqualValues(t TestingT, expected, actual interface{}, msgAndArgs ...interface{}) bool {
@@ -615,21 +635,6 @@ func EqualExportedValues(t TestingT, expected, actual interface{}, msgAndArgs ..
 		return Fail(t, fmt.Sprintf("Types expected to match exactly\n\t%v != %v", aType, bType), msgAndArgs...)
 	}
 
-	if aType.Kind() == reflect.Ptr {
-		aType = aType.Elem()
-	}
-	if bType.Kind() == reflect.Ptr {
-		bType = bType.Elem()
-	}
-
-	if aType.Kind() != reflect.Struct {
-		return Fail(t, fmt.Sprintf("Types expected to both be struct or pointer to struct \n\t%v != %v", aType.Kind(), reflect.Struct), msgAndArgs...)
-	}
-
-	if bType.Kind() != reflect.Struct {
-		return Fail(t, fmt.Sprintf("Types expected to both be struct or pointer to struct \n\t%v != %v", bType.Kind(), reflect.Struct), msgAndArgs...)
-	}
-
 	expected = copyExportedFields(expected)
 	actual = copyExportedFields(actual)
 
@@ -1170,6 +1175,39 @@ func formatListDiff(listA, listB interface{}, extraA, extraB []interface{}) stri
 	return msg.String()
 }
 
+// NotElementsMatch asserts that the specified listA(array, slice...) is NOT equal to specified
+// listB(array, slice...) ignoring the order of the elements. If there are duplicate elements,
+// the number of appearances of each of them in both lists should not match.
+// This is an inverse of ElementsMatch.
+//
+// assert.NotElementsMatch(t, [1, 1, 2, 3], [1, 1, 2, 3]) -> false
+//
+// assert.NotElementsMatch(t, [1, 1, 2, 3], [1, 2, 3]) -> true
+//
+// assert.NotElementsMatch(t, [1, 2, 3], [1, 2, 4]) -> true
+func NotElementsMatch(t TestingT, listA, listB interface{}, msgAndArgs ...interface{}) (ok bool) {
+	if h, ok := t.(tHelper); ok {
+		h.Helper()
+	}
+	if isEmpty(listA) && isEmpty(listB) {
+		return Fail(t, "listA and listB contain the same elements", msgAndArgs)
+	}
+
+	if !isList(t, listA, msgAndArgs...) {
+		return Fail(t, "listA is not a list type", msgAndArgs...)
+	}
+	if !isList(t, listB, msgAndArgs...) {
+		return Fail(t, "listB is not a list type", msgAndArgs...)
+	}
+
+	extraA, extraB := diffLists(listA, listB)
+	if len(extraA) == 0 && len(extraB) == 0 {
+		return Fail(t, "listA and listB contain the same elements", msgAndArgs)
+	}
+
+	return true
+}
+
 // Condition uses a Comparison to assert a complex condition.
 func Condition(t TestingT, comp Comparison, msgAndArgs ...interface{}) bool {
 	if h, ok := t.(tHelper); ok {
@@ -1488,6 +1526,9 @@ func InEpsilon(t TestingT, expected, actual interface{}, epsilon float64, msgAnd
 	if err != nil {
 		return Fail(t, err.Error(), msgAndArgs...)
 	}
+	if math.IsNaN(actualEpsilon) {
+		return Fail(t, "relative error is NaN", msgAndArgs...)
+	}
 	if actualEpsilon > epsilon {
 		return Fail(t, fmt.Sprintf("Relative error is too high: %#v (expected)\n"+
 			"        < %#v (actual)", epsilon, actualEpsilon), msgAndArgs...)
@@ -1611,7 +1652,6 @@ func ErrorContains(t TestingT, theError error, contains string, msgAndArgs ...in
 
 // matchRegexp return true if a specified regexp matches a string.
 func matchRegexp(rx interface{}, str interface{}) bool {
-
 	var r *regexp.Regexp
 	if rr, ok := rx.(*regexp.Regexp); ok {
 		r = rr
@@ -1619,7 +1659,14 @@ func matchRegexp(rx interface{}, str interface{}) bool {
 		r = regexp.MustCompile(fmt.Sprint(rx))
 	}
 
-	return (r.FindStringIndex(fmt.Sprint(str)) != nil)
+	switch v := str.(type) {
+	case []byte:
+		return r.Match(v)
+	case string:
+		return r.MatchString(v)
+	default:
+		return r.MatchString(fmt.Sprint(v))
+	}
 
 }
 
@@ -1872,7 +1919,7 @@ var spewConfigStringerEnabled = spew.ConfigState{
 	MaxDepth:                10,
 }
 
-type tHelper interface {
+type tHelper = interface {
 	Helper()
 }
 
@@ -1911,6 +1958,9 @@ func Eventually(t TestingT, condition func() bool, waitFor time.Duration, tick t
 
 // CollectT implements the TestingT interface and collects all errors.
 type CollectT struct {
+	// A slice of errors. Non-nil slice denotes a failure.
+	// If it's non-nil but len(c.errors) == 0, this is also a failure
+	// obtained by direct c.FailNow() call.
 	errors []error
 }
 
@@ -1919,9 +1969,10 @@ func (c *CollectT) Errorf(format string, args ...interface{}) {
 	c.errors = append(c.errors, fmt.Errorf(format, args...))
 }
 
-// FailNow panics.
-func (*CollectT) FailNow() {
-	panic("Assertion failed")
+// FailNow stops execution by calling runtime.Goexit.
+func (c *CollectT) FailNow() {
+	c.fail()
+	runtime.Goexit()
 }
 
 // Deprecated: That was a method for internal usage that should not have been published. Now just panics.
@@ -1934,6 +1985,16 @@ func (*CollectT) Copy(TestingT) {
 	panic("Copy() is deprecated")
 }
 
+func (c *CollectT) fail() {
+	if !c.failed() {
+		c.errors = []error{} // Make it non-nil to mark a failure.
+	}
+}
+
+func (c *CollectT) failed() bool {
+	return c.errors != nil
+}
+
 // EventuallyWithT asserts that given condition will be met in waitFor time,
 // periodically checking target function each tick. In contrast to Eventually,
 // it supplies a CollectT to the condition function, so that the condition
@@ -1951,14 +2012,14 @@ func (*CollectT) Copy(TestingT) {
 //	assert.EventuallyWithT(t, func(c *assert.CollectT) {
 //		// add assertions as needed; any assertion failure will fail the current tick
 //		assert.True(c, externalValue, "expected 'externalValue' to be true")
-//	}, 1*time.Second, 10*time.Second, "external state has not changed to 'true'; still false")
+//	}, 10*time.Second, 1*time.Second, "external state has not changed to 'true'; still false")
 func EventuallyWithT(t TestingT, condition func(collect *CollectT), waitFor time.Duration, tick time.Duration, msgAndArgs ...interface{}) bool {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
 	}
 
 	var lastFinishedTickErrs []error
-	ch := make(chan []error, 1)
+	ch := make(chan *CollectT, 1)
 
 	timer := time.NewTimer(waitFor)
 	defer timer.Stop()
@@ -1978,16 +2039,16 @@ func EventuallyWithT(t TestingT, condition func(collect *CollectT), waitFor time
 			go func() {
 				collect := new(CollectT)
 				defer func() {
-					ch <- collect.errors
+					ch <- collect
 				}()
 				condition(collect)
 			}()
-		case errs := <-ch:
-			if len(errs) == 0 {
+		case collect := <-ch:
+			if !collect.failed() {
 				return true
 			}
 			// Keep the errors from the last ended condition, so that they can be copied to t if timeout is reached.
-			lastFinishedTickErrs = errs
+			lastFinishedTickErrs = collect.errors
 			tick = ticker.C
 		}
 	}
@@ -2049,7 +2110,7 @@ func ErrorIs(t TestingT, err, target error, msgAndArgs ...interface{}) bool {
 	), msgAndArgs...)
 }
 
-// NotErrorIs asserts that at none of the errors in err's chain matches target.
+// NotErrorIs asserts that none of the errors in err's chain matches target.
 // This is a wrapper for errors.Is.
 func NotErrorIs(t TestingT, err, target error, msgAndArgs ...interface{}) bool {
 	if h, ok := t.(tHelper); ok {
@@ -2090,6 +2151,24 @@ func ErrorAs(t TestingT, err error, target interface{}, msgAndArgs ...interface{
 	), msgAndArgs...)
 }
 
+// NotErrorAs asserts that none of the errors in err's chain matches target,
+// but if so, sets target to that error value.
+func NotErrorAs(t TestingT, err error, target interface{}, msgAndArgs ...interface{}) bool {
+	if h, ok := t.(tHelper); ok {
+		h.Helper()
+	}
+	if !errors.As(err, target) {
+		return true
+	}
+
+	chain := buildErrorChainString(err)
+
+	return Fail(t, fmt.Sprintf("Target error should not be in err chain:\n"+
+		"found: %q\n"+
+		"in chain: %s", target, chain,
+	), msgAndArgs...)
+}
+
 func buildErrorChainString(err error) string {
 	if err == nil {
 		return ""
diff --git a/vendor/github.com/stretchr/testify/assert/yaml/yaml_custom.go b/vendor/github.com/stretchr/testify/assert/yaml/yaml_custom.go
new file mode 100644
index 000000000..baa0cc7d7
--- /dev/null
+++ b/vendor/github.com/stretchr/testify/assert/yaml/yaml_custom.go
@@ -0,0 +1,25 @@
+//go:build testify_yaml_custom && !testify_yaml_fail && !testify_yaml_default
+// +build testify_yaml_custom,!testify_yaml_fail,!testify_yaml_default
+
+// Package yaml is an implementation of YAML functions that calls a pluggable implementation.
+//
+// This implementation is selected with the testify_yaml_custom build tag.
+//
+//	go test -tags testify_yaml_custom
+//
+// This implementation can be used at build time to replace the default implementation
+// to avoid linking with [gopkg.in/yaml.v3].
+//
+// In your test package:
+//
+//		import assertYaml "github.com/stretchr/testify/assert/yaml"
+//
+//		func init() {
+//			assertYaml.Unmarshal = func (in []byte, out interface{}) error {
+//				// ...
+//	     			return nil
+//			}
+//		}
+package yaml
+
+var Unmarshal func(in []byte, out interface{}) error
diff --git a/vendor/github.com/stretchr/testify/assert/yaml/yaml_default.go b/vendor/github.com/stretchr/testify/assert/yaml/yaml_default.go
new file mode 100644
index 000000000..b83c6cf64
--- /dev/null
+++ b/vendor/github.com/stretchr/testify/assert/yaml/yaml_default.go
@@ -0,0 +1,37 @@
+//go:build !testify_yaml_fail && !testify_yaml_custom
+// +build !testify_yaml_fail,!testify_yaml_custom
+
+// Package yaml is just an indirection to handle YAML deserialization.
+//
+// This package is just an indirection that allows the builder to override the
+// indirection with an alternative implementation of this package that uses
+// another implementation of YAML deserialization. This allows to not either not
+// use YAML deserialization at all, or to use another implementation than
+// [gopkg.in/yaml.v3] (for example for license compatibility reasons, see [PR #1120]).
+//
+// Alternative implementations are selected using build tags:
+//
+//   - testify_yaml_fail: [Unmarshal] always fails with an error
+//   - testify_yaml_custom: [Unmarshal] is a variable. Caller must initialize it
+//     before calling any of [github.com/stretchr/testify/assert.YAMLEq] or
+//     [github.com/stretchr/testify/assert.YAMLEqf].
+//
+// Usage:
+//
+//	go test -tags testify_yaml_fail
+//
+// You can check with "go list" which implementation is linked:
+//
+//	go list -f '{{.Imports}}' github.com/stretchr/testify/assert/yaml
+//	go list -tags testify_yaml_fail -f '{{.Imports}}' github.com/stretchr/testify/assert/yaml
+//	go list -tags testify_yaml_custom -f '{{.Imports}}' github.com/stretchr/testify/assert/yaml
+//
+// [PR #1120]: https://github.com/stretchr/testify/pull/1120
+package yaml
+
+import goyaml "gopkg.in/yaml.v3"
+
+// Unmarshal is just a wrapper of [gopkg.in/yaml.v3.Unmarshal].
+func Unmarshal(in []byte, out interface{}) error {
+	return goyaml.Unmarshal(in, out)
+}
diff --git a/vendor/github.com/stretchr/testify/assert/yaml/yaml_fail.go b/vendor/github.com/stretchr/testify/assert/yaml/yaml_fail.go
new file mode 100644
index 000000000..e78f7dfe6
--- /dev/null
+++ b/vendor/github.com/stretchr/testify/assert/yaml/yaml_fail.go
@@ -0,0 +1,18 @@
+//go:build testify_yaml_fail && !testify_yaml_custom && !testify_yaml_default
+// +build testify_yaml_fail,!testify_yaml_custom,!testify_yaml_default
+
+// Package yaml is an implementation of YAML functions that always fail.
+//
+// This implementation can be used at build time to replace the default implementation
+// to avoid linking with [gopkg.in/yaml.v3]:
+//
+//	go test -tags testify_yaml_fail
+package yaml
+
+import "errors"
+
+var errNotImplemented = errors.New("YAML functions are not available (see https://pkg.go.dev/github.com/stretchr/testify/assert/yaml)")
+
+func Unmarshal([]byte, interface{}) error {
+	return errNotImplemented
+}
diff --git a/vendor/github.com/stretchr/testify/require/require.go b/vendor/github.com/stretchr/testify/require/require.go
index 506a82f80..d8921950d 100644
--- a/vendor/github.com/stretchr/testify/require/require.go
+++ b/vendor/github.com/stretchr/testify/require/require.go
@@ -34,9 +34,9 @@ func Conditionf(t TestingT, comp assert.Comparison, msg string, args ...interfac
 // Contains asserts that the specified string, list(array, slice...) or map contains the
 // specified substring or element.
 //
-//	assert.Contains(t, "Hello World", "World")
-//	assert.Contains(t, ["Hello", "World"], "World")
-//	assert.Contains(t, {"Hello": "World"}, "Hello")
+//	require.Contains(t, "Hello World", "World")
+//	require.Contains(t, ["Hello", "World"], "World")
+//	require.Contains(t, {"Hello": "World"}, "Hello")
 func Contains(t TestingT, s interface{}, contains interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -50,9 +50,9 @@ func Contains(t TestingT, s interface{}, contains interface{}, msgAndArgs ...int
 // Containsf asserts that the specified string, list(array, slice...) or map contains the
 // specified substring or element.
 //
-//	assert.Containsf(t, "Hello World", "World", "error message %s", "formatted")
-//	assert.Containsf(t, ["Hello", "World"], "World", "error message %s", "formatted")
-//	assert.Containsf(t, {"Hello": "World"}, "Hello", "error message %s", "formatted")
+//	require.Containsf(t, "Hello World", "World", "error message %s", "formatted")
+//	require.Containsf(t, ["Hello", "World"], "World", "error message %s", "formatted")
+//	require.Containsf(t, {"Hello": "World"}, "Hello", "error message %s", "formatted")
 func Containsf(t TestingT, s interface{}, contains interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -91,7 +91,7 @@ func DirExistsf(t TestingT, path string, msg string, args ...interface{}) {
 // listB(array, slice...) ignoring the order of the elements. If there are duplicate elements,
 // the number of appearances of each of them in both lists should match.
 //
-// assert.ElementsMatch(t, [1, 3, 2, 3], [1, 3, 3, 2])
+// require.ElementsMatch(t, [1, 3, 2, 3], [1, 3, 3, 2])
 func ElementsMatch(t TestingT, listA interface{}, listB interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -106,7 +106,7 @@ func ElementsMatch(t TestingT, listA interface{}, listB interface{}, msgAndArgs
 // listB(array, slice...) ignoring the order of the elements. If there are duplicate elements,
 // the number of appearances of each of them in both lists should match.
 //
-// assert.ElementsMatchf(t, [1, 3, 2, 3], [1, 3, 3, 2], "error message %s", "formatted")
+// require.ElementsMatchf(t, [1, 3, 2, 3], [1, 3, 3, 2], "error message %s", "formatted")
 func ElementsMatchf(t TestingT, listA interface{}, listB interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -120,7 +120,7 @@ func ElementsMatchf(t TestingT, listA interface{}, listB interface{}, msg string
 // Empty asserts that the specified object is empty.  I.e. nil, "", false, 0 or either
 // a slice or a channel with len == 0.
 //
-//	assert.Empty(t, obj)
+//	require.Empty(t, obj)
 func Empty(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -134,7 +134,7 @@ func Empty(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 // Emptyf asserts that the specified object is empty.  I.e. nil, "", false, 0 or either
 // a slice or a channel with len == 0.
 //
-//	assert.Emptyf(t, obj, "error message %s", "formatted")
+//	require.Emptyf(t, obj, "error message %s", "formatted")
 func Emptyf(t TestingT, object interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -147,7 +147,7 @@ func Emptyf(t TestingT, object interface{}, msg string, args ...interface{}) {
 
 // Equal asserts that two objects are equal.
 //
-//	assert.Equal(t, 123, 123)
+//	require.Equal(t, 123, 123)
 //
 // Pointer variable equality is determined based on the equality of the
 // referenced values (as opposed to the memory addresses). Function equality
@@ -166,7 +166,7 @@ func Equal(t TestingT, expected interface{}, actual interface{}, msgAndArgs ...i
 // and that it is equal to the provided error.
 //
 //	actualObj, err := SomeFunction()
-//	assert.EqualError(t, err,  expectedErrorString)
+//	require.EqualError(t, err,  expectedErrorString)
 func EqualError(t TestingT, theError error, errString string, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -181,7 +181,7 @@ func EqualError(t TestingT, theError error, errString string, msgAndArgs ...inte
 // and that it is equal to the provided error.
 //
 //	actualObj, err := SomeFunction()
-//	assert.EqualErrorf(t, err,  expectedErrorString, "error message %s", "formatted")
+//	require.EqualErrorf(t, err,  expectedErrorString, "error message %s", "formatted")
 func EqualErrorf(t TestingT, theError error, errString string, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -200,8 +200,8 @@ func EqualErrorf(t TestingT, theError error, errString string, msg string, args
 //		Exported     	int
 //		notExported   	int
 //	 }
-//	 assert.EqualExportedValues(t, S{1, 2}, S{1, 3}) => true
-//	 assert.EqualExportedValues(t, S{1, 2}, S{2, 3}) => false
+//	 require.EqualExportedValues(t, S{1, 2}, S{1, 3}) => true
+//	 require.EqualExportedValues(t, S{1, 2}, S{2, 3}) => false
 func EqualExportedValues(t TestingT, expected interface{}, actual interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -220,8 +220,8 @@ func EqualExportedValues(t TestingT, expected interface{}, actual interface{}, m
 //		Exported     	int
 //		notExported   	int
 //	 }
-//	 assert.EqualExportedValuesf(t, S{1, 2}, S{1, 3}, "error message %s", "formatted") => true
-//	 assert.EqualExportedValuesf(t, S{1, 2}, S{2, 3}, "error message %s", "formatted") => false
+//	 require.EqualExportedValuesf(t, S{1, 2}, S{1, 3}, "error message %s", "formatted") => true
+//	 require.EqualExportedValuesf(t, S{1, 2}, S{2, 3}, "error message %s", "formatted") => false
 func EqualExportedValuesf(t TestingT, expected interface{}, actual interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -232,10 +232,10 @@ func EqualExportedValuesf(t TestingT, expected interface{}, actual interface{},
 	t.FailNow()
 }
 
-// EqualValues asserts that two objects are equal or convertible to the same types
-// and equal.
+// EqualValues asserts that two objects are equal or convertible to the larger
+// type and equal.
 //
-//	assert.EqualValues(t, uint32(123), int32(123))
+//	require.EqualValues(t, uint32(123), int32(123))
 func EqualValues(t TestingT, expected interface{}, actual interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -246,10 +246,10 @@ func EqualValues(t TestingT, expected interface{}, actual interface{}, msgAndArg
 	t.FailNow()
 }
 
-// EqualValuesf asserts that two objects are equal or convertible to the same types
-// and equal.
+// EqualValuesf asserts that two objects are equal or convertible to the larger
+// type and equal.
 //
-//	assert.EqualValuesf(t, uint32(123), int32(123), "error message %s", "formatted")
+//	require.EqualValuesf(t, uint32(123), int32(123), "error message %s", "formatted")
 func EqualValuesf(t TestingT, expected interface{}, actual interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -262,7 +262,7 @@ func EqualValuesf(t TestingT, expected interface{}, actual interface{}, msg stri
 
 // Equalf asserts that two objects are equal.
 //
-//	assert.Equalf(t, 123, 123, "error message %s", "formatted")
+//	require.Equalf(t, 123, 123, "error message %s", "formatted")
 //
 // Pointer variable equality is determined based on the equality of the
 // referenced values (as opposed to the memory addresses). Function equality
@@ -280,8 +280,8 @@ func Equalf(t TestingT, expected interface{}, actual interface{}, msg string, ar
 // Error asserts that a function returned an error (i.e. not `nil`).
 //
 //	  actualObj, err := SomeFunction()
-//	  if assert.Error(t, err) {
-//		   assert.Equal(t, expectedError, err)
+//	  if require.Error(t, err) {
+//		   require.Equal(t, expectedError, err)
 //	  }
 func Error(t TestingT, err error, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
@@ -321,7 +321,7 @@ func ErrorAsf(t TestingT, err error, target interface{}, msg string, args ...int
 // and that the error contains the specified substring.
 //
 //	actualObj, err := SomeFunction()
-//	assert.ErrorContains(t, err,  expectedErrorSubString)
+//	require.ErrorContains(t, err,  expectedErrorSubString)
 func ErrorContains(t TestingT, theError error, contains string, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -336,7 +336,7 @@ func ErrorContains(t TestingT, theError error, contains string, msgAndArgs ...in
 // and that the error contains the specified substring.
 //
 //	actualObj, err := SomeFunction()
-//	assert.ErrorContainsf(t, err,  expectedErrorSubString, "error message %s", "formatted")
+//	require.ErrorContainsf(t, err,  expectedErrorSubString, "error message %s", "formatted")
 func ErrorContainsf(t TestingT, theError error, contains string, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -374,8 +374,8 @@ func ErrorIsf(t TestingT, err error, target error, msg string, args ...interface
 // Errorf asserts that a function returned an error (i.e. not `nil`).
 //
 //	  actualObj, err := SomeFunction()
-//	  if assert.Errorf(t, err, "error message %s", "formatted") {
-//		   assert.Equal(t, expectedErrorf, err)
+//	  if require.Errorf(t, err, "error message %s", "formatted") {
+//		   require.Equal(t, expectedErrorf, err)
 //	  }
 func Errorf(t TestingT, err error, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
@@ -390,7 +390,7 @@ func Errorf(t TestingT, err error, msg string, args ...interface{}) {
 // Eventually asserts that given condition will be met in waitFor time,
 // periodically checking target function each tick.
 //
-//	assert.Eventually(t, func() bool { return true; }, time.Second, 10*time.Millisecond)
+//	require.Eventually(t, func() bool { return true; }, time.Second, 10*time.Millisecond)
 func Eventually(t TestingT, condition func() bool, waitFor time.Duration, tick time.Duration, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -415,10 +415,10 @@ func Eventually(t TestingT, condition func() bool, waitFor time.Duration, tick t
 //		time.Sleep(8*time.Second)
 //		externalValue = true
 //	}()
-//	assert.EventuallyWithT(t, func(c *assert.CollectT) {
+//	require.EventuallyWithT(t, func(c *require.CollectT) {
 //		// add assertions as needed; any assertion failure will fail the current tick
-//		assert.True(c, externalValue, "expected 'externalValue' to be true")
-//	}, 1*time.Second, 10*time.Second, "external state has not changed to 'true'; still false")
+//		require.True(c, externalValue, "expected 'externalValue' to be true")
+//	}, 10*time.Second, 1*time.Second, "external state has not changed to 'true'; still false")
 func EventuallyWithT(t TestingT, condition func(collect *assert.CollectT), waitFor time.Duration, tick time.Duration, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -443,10 +443,10 @@ func EventuallyWithT(t TestingT, condition func(collect *assert.CollectT), waitF
 //		time.Sleep(8*time.Second)
 //		externalValue = true
 //	}()
-//	assert.EventuallyWithTf(t, func(c *assert.CollectT, "error message %s", "formatted") {
+//	require.EventuallyWithTf(t, func(c *require.CollectT, "error message %s", "formatted") {
 //		// add assertions as needed; any assertion failure will fail the current tick
-//		assert.True(c, externalValue, "expected 'externalValue' to be true")
-//	}, 1*time.Second, 10*time.Second, "external state has not changed to 'true'; still false")
+//		require.True(c, externalValue, "expected 'externalValue' to be true")
+//	}, 10*time.Second, 1*time.Second, "external state has not changed to 'true'; still false")
 func EventuallyWithTf(t TestingT, condition func(collect *assert.CollectT), waitFor time.Duration, tick time.Duration, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -460,7 +460,7 @@ func EventuallyWithTf(t TestingT, condition func(collect *assert.CollectT), wait
 // Eventuallyf asserts that given condition will be met in waitFor time,
 // periodically checking target function each tick.
 //
-//	assert.Eventuallyf(t, func() bool { return true; }, time.Second, 10*time.Millisecond, "error message %s", "formatted")
+//	require.Eventuallyf(t, func() bool { return true; }, time.Second, 10*time.Millisecond, "error message %s", "formatted")
 func Eventuallyf(t TestingT, condition func() bool, waitFor time.Duration, tick time.Duration, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -473,7 +473,7 @@ func Eventuallyf(t TestingT, condition func() bool, waitFor time.Duration, tick
 
 // Exactly asserts that two objects are equal in value and type.
 //
-//	assert.Exactly(t, int32(123), int64(123))
+//	require.Exactly(t, int32(123), int64(123))
 func Exactly(t TestingT, expected interface{}, actual interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -486,7 +486,7 @@ func Exactly(t TestingT, expected interface{}, actual interface{}, msgAndArgs ..
 
 // Exactlyf asserts that two objects are equal in value and type.
 //
-//	assert.Exactlyf(t, int32(123), int64(123), "error message %s", "formatted")
+//	require.Exactlyf(t, int32(123), int64(123), "error message %s", "formatted")
 func Exactlyf(t TestingT, expected interface{}, actual interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -543,7 +543,7 @@ func Failf(t TestingT, failureMessage string, msg string, args ...interface{}) {
 
 // False asserts that the specified value is false.
 //
-//	assert.False(t, myBool)
+//	require.False(t, myBool)
 func False(t TestingT, value bool, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -556,7 +556,7 @@ func False(t TestingT, value bool, msgAndArgs ...interface{}) {
 
 // Falsef asserts that the specified value is false.
 //
-//	assert.Falsef(t, myBool, "error message %s", "formatted")
+//	require.Falsef(t, myBool, "error message %s", "formatted")
 func Falsef(t TestingT, value bool, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -593,9 +593,9 @@ func FileExistsf(t TestingT, path string, msg string, args ...interface{}) {
 
 // Greater asserts that the first element is greater than the second
 //
-//	assert.Greater(t, 2, 1)
-//	assert.Greater(t, float64(2), float64(1))
-//	assert.Greater(t, "b", "a")
+//	require.Greater(t, 2, 1)
+//	require.Greater(t, float64(2), float64(1))
+//	require.Greater(t, "b", "a")
 func Greater(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -608,10 +608,10 @@ func Greater(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...interface
 
 // GreaterOrEqual asserts that the first element is greater than or equal to the second
 //
-//	assert.GreaterOrEqual(t, 2, 1)
-//	assert.GreaterOrEqual(t, 2, 2)
-//	assert.GreaterOrEqual(t, "b", "a")
-//	assert.GreaterOrEqual(t, "b", "b")
+//	require.GreaterOrEqual(t, 2, 1)
+//	require.GreaterOrEqual(t, 2, 2)
+//	require.GreaterOrEqual(t, "b", "a")
+//	require.GreaterOrEqual(t, "b", "b")
 func GreaterOrEqual(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -624,10 +624,10 @@ func GreaterOrEqual(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...in
 
 // GreaterOrEqualf asserts that the first element is greater than or equal to the second
 //
-//	assert.GreaterOrEqualf(t, 2, 1, "error message %s", "formatted")
-//	assert.GreaterOrEqualf(t, 2, 2, "error message %s", "formatted")
-//	assert.GreaterOrEqualf(t, "b", "a", "error message %s", "formatted")
-//	assert.GreaterOrEqualf(t, "b", "b", "error message %s", "formatted")
+//	require.GreaterOrEqualf(t, 2, 1, "error message %s", "formatted")
+//	require.GreaterOrEqualf(t, 2, 2, "error message %s", "formatted")
+//	require.GreaterOrEqualf(t, "b", "a", "error message %s", "formatted")
+//	require.GreaterOrEqualf(t, "b", "b", "error message %s", "formatted")
 func GreaterOrEqualf(t TestingT, e1 interface{}, e2 interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -640,9 +640,9 @@ func GreaterOrEqualf(t TestingT, e1 interface{}, e2 interface{}, msg string, arg
 
 // Greaterf asserts that the first element is greater than the second
 //
-//	assert.Greaterf(t, 2, 1, "error message %s", "formatted")
-//	assert.Greaterf(t, float64(2), float64(1), "error message %s", "formatted")
-//	assert.Greaterf(t, "b", "a", "error message %s", "formatted")
+//	require.Greaterf(t, 2, 1, "error message %s", "formatted")
+//	require.Greaterf(t, float64(2), float64(1), "error message %s", "formatted")
+//	require.Greaterf(t, "b", "a", "error message %s", "formatted")
 func Greaterf(t TestingT, e1 interface{}, e2 interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -656,7 +656,7 @@ func Greaterf(t TestingT, e1 interface{}, e2 interface{}, msg string, args ...in
 // HTTPBodyContains asserts that a specified handler returns a
 // body that contains a string.
 //
-//	assert.HTTPBodyContains(t, myHandler, "GET", "www.google.com", nil, "I'm Feeling Lucky")
+//	require.HTTPBodyContains(t, myHandler, "GET", "www.google.com", nil, "I'm Feeling Lucky")
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPBodyContains(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, str interface{}, msgAndArgs ...interface{}) {
@@ -672,7 +672,7 @@ func HTTPBodyContains(t TestingT, handler http.HandlerFunc, method string, url s
 // HTTPBodyContainsf asserts that a specified handler returns a
 // body that contains a string.
 //
-//	assert.HTTPBodyContainsf(t, myHandler, "GET", "www.google.com", nil, "I'm Feeling Lucky", "error message %s", "formatted")
+//	require.HTTPBodyContainsf(t, myHandler, "GET", "www.google.com", nil, "I'm Feeling Lucky", "error message %s", "formatted")
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPBodyContainsf(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, str interface{}, msg string, args ...interface{}) {
@@ -688,7 +688,7 @@ func HTTPBodyContainsf(t TestingT, handler http.HandlerFunc, method string, url
 // HTTPBodyNotContains asserts that a specified handler returns a
 // body that does not contain a string.
 //
-//	assert.HTTPBodyNotContains(t, myHandler, "GET", "www.google.com", nil, "I'm Feeling Lucky")
+//	require.HTTPBodyNotContains(t, myHandler, "GET", "www.google.com", nil, "I'm Feeling Lucky")
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPBodyNotContains(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, str interface{}, msgAndArgs ...interface{}) {
@@ -704,7 +704,7 @@ func HTTPBodyNotContains(t TestingT, handler http.HandlerFunc, method string, ur
 // HTTPBodyNotContainsf asserts that a specified handler returns a
 // body that does not contain a string.
 //
-//	assert.HTTPBodyNotContainsf(t, myHandler, "GET", "www.google.com", nil, "I'm Feeling Lucky", "error message %s", "formatted")
+//	require.HTTPBodyNotContainsf(t, myHandler, "GET", "www.google.com", nil, "I'm Feeling Lucky", "error message %s", "formatted")
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPBodyNotContainsf(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, str interface{}, msg string, args ...interface{}) {
@@ -719,7 +719,7 @@ func HTTPBodyNotContainsf(t TestingT, handler http.HandlerFunc, method string, u
 
 // HTTPError asserts that a specified handler returns an error status code.
 //
-//	assert.HTTPError(t, myHandler, "POST", "/a/b/c", url.Values{"a": []string{"b", "c"}}
+//	require.HTTPError(t, myHandler, "POST", "/a/b/c", url.Values{"a": []string{"b", "c"}}
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPError(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, msgAndArgs ...interface{}) {
@@ -734,7 +734,7 @@ func HTTPError(t TestingT, handler http.HandlerFunc, method string, url string,
 
 // HTTPErrorf asserts that a specified handler returns an error status code.
 //
-//	assert.HTTPErrorf(t, myHandler, "POST", "/a/b/c", url.Values{"a": []string{"b", "c"}}
+//	require.HTTPErrorf(t, myHandler, "POST", "/a/b/c", url.Values{"a": []string{"b", "c"}}
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPErrorf(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, msg string, args ...interface{}) {
@@ -749,7 +749,7 @@ func HTTPErrorf(t TestingT, handler http.HandlerFunc, method string, url string,
 
 // HTTPRedirect asserts that a specified handler returns a redirect status code.
 //
-//	assert.HTTPRedirect(t, myHandler, "GET", "/a/b/c", url.Values{"a": []string{"b", "c"}}
+//	require.HTTPRedirect(t, myHandler, "GET", "/a/b/c", url.Values{"a": []string{"b", "c"}}
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPRedirect(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, msgAndArgs ...interface{}) {
@@ -764,7 +764,7 @@ func HTTPRedirect(t TestingT, handler http.HandlerFunc, method string, url strin
 
 // HTTPRedirectf asserts that a specified handler returns a redirect status code.
 //
-//	assert.HTTPRedirectf(t, myHandler, "GET", "/a/b/c", url.Values{"a": []string{"b", "c"}}
+//	require.HTTPRedirectf(t, myHandler, "GET", "/a/b/c", url.Values{"a": []string{"b", "c"}}
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPRedirectf(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, msg string, args ...interface{}) {
@@ -779,7 +779,7 @@ func HTTPRedirectf(t TestingT, handler http.HandlerFunc, method string, url stri
 
 // HTTPStatusCode asserts that a specified handler returns a specified status code.
 //
-//	assert.HTTPStatusCode(t, myHandler, "GET", "/notImplemented", nil, 501)
+//	require.HTTPStatusCode(t, myHandler, "GET", "/notImplemented", nil, 501)
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPStatusCode(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, statuscode int, msgAndArgs ...interface{}) {
@@ -794,7 +794,7 @@ func HTTPStatusCode(t TestingT, handler http.HandlerFunc, method string, url str
 
 // HTTPStatusCodef asserts that a specified handler returns a specified status code.
 //
-//	assert.HTTPStatusCodef(t, myHandler, "GET", "/notImplemented", nil, 501, "error message %s", "formatted")
+//	require.HTTPStatusCodef(t, myHandler, "GET", "/notImplemented", nil, 501, "error message %s", "formatted")
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPStatusCodef(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, statuscode int, msg string, args ...interface{}) {
@@ -809,7 +809,7 @@ func HTTPStatusCodef(t TestingT, handler http.HandlerFunc, method string, url st
 
 // HTTPSuccess asserts that a specified handler returns a success status code.
 //
-//	assert.HTTPSuccess(t, myHandler, "POST", "http://www.google.com", nil)
+//	require.HTTPSuccess(t, myHandler, "POST", "http://www.google.com", nil)
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPSuccess(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, msgAndArgs ...interface{}) {
@@ -824,7 +824,7 @@ func HTTPSuccess(t TestingT, handler http.HandlerFunc, method string, url string
 
 // HTTPSuccessf asserts that a specified handler returns a success status code.
 //
-//	assert.HTTPSuccessf(t, myHandler, "POST", "http://www.google.com", nil, "error message %s", "formatted")
+//	require.HTTPSuccessf(t, myHandler, "POST", "http://www.google.com", nil, "error message %s", "formatted")
 //
 // Returns whether the assertion was successful (true) or not (false).
 func HTTPSuccessf(t TestingT, handler http.HandlerFunc, method string, url string, values url.Values, msg string, args ...interface{}) {
@@ -839,7 +839,7 @@ func HTTPSuccessf(t TestingT, handler http.HandlerFunc, method string, url strin
 
 // Implements asserts that an object is implemented by the specified interface.
 //
-//	assert.Implements(t, (*MyInterface)(nil), new(MyObject))
+//	require.Implements(t, (*MyInterface)(nil), new(MyObject))
 func Implements(t TestingT, interfaceObject interface{}, object interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -852,7 +852,7 @@ func Implements(t TestingT, interfaceObject interface{}, object interface{}, msg
 
 // Implementsf asserts that an object is implemented by the specified interface.
 //
-//	assert.Implementsf(t, (*MyInterface)(nil), new(MyObject), "error message %s", "formatted")
+//	require.Implementsf(t, (*MyInterface)(nil), new(MyObject), "error message %s", "formatted")
 func Implementsf(t TestingT, interfaceObject interface{}, object interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -865,7 +865,7 @@ func Implementsf(t TestingT, interfaceObject interface{}, object interface{}, ms
 
 // InDelta asserts that the two numerals are within delta of each other.
 //
-//	assert.InDelta(t, math.Pi, 22/7.0, 0.01)
+//	require.InDelta(t, math.Pi, 22/7.0, 0.01)
 func InDelta(t TestingT, expected interface{}, actual interface{}, delta float64, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -922,7 +922,7 @@ func InDeltaSlicef(t TestingT, expected interface{}, actual interface{}, delta f
 
 // InDeltaf asserts that the two numerals are within delta of each other.
 //
-//	assert.InDeltaf(t, math.Pi, 22/7.0, 0.01, "error message %s", "formatted")
+//	require.InDeltaf(t, math.Pi, 22/7.0, 0.01, "error message %s", "formatted")
 func InDeltaf(t TestingT, expected interface{}, actual interface{}, delta float64, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -979,9 +979,9 @@ func InEpsilonf(t TestingT, expected interface{}, actual interface{}, epsilon fl
 
 // IsDecreasing asserts that the collection is decreasing
 //
-//	assert.IsDecreasing(t, []int{2, 1, 0})
-//	assert.IsDecreasing(t, []float{2, 1})
-//	assert.IsDecreasing(t, []string{"b", "a"})
+//	require.IsDecreasing(t, []int{2, 1, 0})
+//	require.IsDecreasing(t, []float{2, 1})
+//	require.IsDecreasing(t, []string{"b", "a"})
 func IsDecreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -994,9 +994,9 @@ func IsDecreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 
 // IsDecreasingf asserts that the collection is decreasing
 //
-//	assert.IsDecreasingf(t, []int{2, 1, 0}, "error message %s", "formatted")
-//	assert.IsDecreasingf(t, []float{2, 1}, "error message %s", "formatted")
-//	assert.IsDecreasingf(t, []string{"b", "a"}, "error message %s", "formatted")
+//	require.IsDecreasingf(t, []int{2, 1, 0}, "error message %s", "formatted")
+//	require.IsDecreasingf(t, []float{2, 1}, "error message %s", "formatted")
+//	require.IsDecreasingf(t, []string{"b", "a"}, "error message %s", "formatted")
 func IsDecreasingf(t TestingT, object interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1009,9 +1009,9 @@ func IsDecreasingf(t TestingT, object interface{}, msg string, args ...interface
 
 // IsIncreasing asserts that the collection is increasing
 //
-//	assert.IsIncreasing(t, []int{1, 2, 3})
-//	assert.IsIncreasing(t, []float{1, 2})
-//	assert.IsIncreasing(t, []string{"a", "b"})
+//	require.IsIncreasing(t, []int{1, 2, 3})
+//	require.IsIncreasing(t, []float{1, 2})
+//	require.IsIncreasing(t, []string{"a", "b"})
 func IsIncreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1024,9 +1024,9 @@ func IsIncreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 
 // IsIncreasingf asserts that the collection is increasing
 //
-//	assert.IsIncreasingf(t, []int{1, 2, 3}, "error message %s", "formatted")
-//	assert.IsIncreasingf(t, []float{1, 2}, "error message %s", "formatted")
-//	assert.IsIncreasingf(t, []string{"a", "b"}, "error message %s", "formatted")
+//	require.IsIncreasingf(t, []int{1, 2, 3}, "error message %s", "formatted")
+//	require.IsIncreasingf(t, []float{1, 2}, "error message %s", "formatted")
+//	require.IsIncreasingf(t, []string{"a", "b"}, "error message %s", "formatted")
 func IsIncreasingf(t TestingT, object interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1039,9 +1039,9 @@ func IsIncreasingf(t TestingT, object interface{}, msg string, args ...interface
 
 // IsNonDecreasing asserts that the collection is not decreasing
 //
-//	assert.IsNonDecreasing(t, []int{1, 1, 2})
-//	assert.IsNonDecreasing(t, []float{1, 2})
-//	assert.IsNonDecreasing(t, []string{"a", "b"})
+//	require.IsNonDecreasing(t, []int{1, 1, 2})
+//	require.IsNonDecreasing(t, []float{1, 2})
+//	require.IsNonDecreasing(t, []string{"a", "b"})
 func IsNonDecreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1054,9 +1054,9 @@ func IsNonDecreasing(t TestingT, object interface{}, msgAndArgs ...interface{})
 
 // IsNonDecreasingf asserts that the collection is not decreasing
 //
-//	assert.IsNonDecreasingf(t, []int{1, 1, 2}, "error message %s", "formatted")
-//	assert.IsNonDecreasingf(t, []float{1, 2}, "error message %s", "formatted")
-//	assert.IsNonDecreasingf(t, []string{"a", "b"}, "error message %s", "formatted")
+//	require.IsNonDecreasingf(t, []int{1, 1, 2}, "error message %s", "formatted")
+//	require.IsNonDecreasingf(t, []float{1, 2}, "error message %s", "formatted")
+//	require.IsNonDecreasingf(t, []string{"a", "b"}, "error message %s", "formatted")
 func IsNonDecreasingf(t TestingT, object interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1069,9 +1069,9 @@ func IsNonDecreasingf(t TestingT, object interface{}, msg string, args ...interf
 
 // IsNonIncreasing asserts that the collection is not increasing
 //
-//	assert.IsNonIncreasing(t, []int{2, 1, 1})
-//	assert.IsNonIncreasing(t, []float{2, 1})
-//	assert.IsNonIncreasing(t, []string{"b", "a"})
+//	require.IsNonIncreasing(t, []int{2, 1, 1})
+//	require.IsNonIncreasing(t, []float{2, 1})
+//	require.IsNonIncreasing(t, []string{"b", "a"})
 func IsNonIncreasing(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1084,9 +1084,9 @@ func IsNonIncreasing(t TestingT, object interface{}, msgAndArgs ...interface{})
 
 // IsNonIncreasingf asserts that the collection is not increasing
 //
-//	assert.IsNonIncreasingf(t, []int{2, 1, 1}, "error message %s", "formatted")
-//	assert.IsNonIncreasingf(t, []float{2, 1}, "error message %s", "formatted")
-//	assert.IsNonIncreasingf(t, []string{"b", "a"}, "error message %s", "formatted")
+//	require.IsNonIncreasingf(t, []int{2, 1, 1}, "error message %s", "formatted")
+//	require.IsNonIncreasingf(t, []float{2, 1}, "error message %s", "formatted")
+//	require.IsNonIncreasingf(t, []string{"b", "a"}, "error message %s", "formatted")
 func IsNonIncreasingf(t TestingT, object interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1121,7 +1121,7 @@ func IsTypef(t TestingT, expectedType interface{}, object interface{}, msg strin
 
 // JSONEq asserts that two JSON strings are equivalent.
 //
-//	assert.JSONEq(t, `{"hello": "world", "foo": "bar"}`, `{"foo": "bar", "hello": "world"}`)
+//	require.JSONEq(t, `{"hello": "world", "foo": "bar"}`, `{"foo": "bar", "hello": "world"}`)
 func JSONEq(t TestingT, expected string, actual string, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1134,7 +1134,7 @@ func JSONEq(t TestingT, expected string, actual string, msgAndArgs ...interface{
 
 // JSONEqf asserts that two JSON strings are equivalent.
 //
-//	assert.JSONEqf(t, `{"hello": "world", "foo": "bar"}`, `{"foo": "bar", "hello": "world"}`, "error message %s", "formatted")
+//	require.JSONEqf(t, `{"hello": "world", "foo": "bar"}`, `{"foo": "bar", "hello": "world"}`, "error message %s", "formatted")
 func JSONEqf(t TestingT, expected string, actual string, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1148,7 +1148,7 @@ func JSONEqf(t TestingT, expected string, actual string, msg string, args ...int
 // Len asserts that the specified object has specific length.
 // Len also fails if the object has a type that len() not accept.
 //
-//	assert.Len(t, mySlice, 3)
+//	require.Len(t, mySlice, 3)
 func Len(t TestingT, object interface{}, length int, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1162,7 +1162,7 @@ func Len(t TestingT, object interface{}, length int, msgAndArgs ...interface{})
 // Lenf asserts that the specified object has specific length.
 // Lenf also fails if the object has a type that len() not accept.
 //
-//	assert.Lenf(t, mySlice, 3, "error message %s", "formatted")
+//	require.Lenf(t, mySlice, 3, "error message %s", "formatted")
 func Lenf(t TestingT, object interface{}, length int, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1175,9 +1175,9 @@ func Lenf(t TestingT, object interface{}, length int, msg string, args ...interf
 
 // Less asserts that the first element is less than the second
 //
-//	assert.Less(t, 1, 2)
-//	assert.Less(t, float64(1), float64(2))
-//	assert.Less(t, "a", "b")
+//	require.Less(t, 1, 2)
+//	require.Less(t, float64(1), float64(2))
+//	require.Less(t, "a", "b")
 func Less(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1190,10 +1190,10 @@ func Less(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...interface{})
 
 // LessOrEqual asserts that the first element is less than or equal to the second
 //
-//	assert.LessOrEqual(t, 1, 2)
-//	assert.LessOrEqual(t, 2, 2)
-//	assert.LessOrEqual(t, "a", "b")
-//	assert.LessOrEqual(t, "b", "b")
+//	require.LessOrEqual(t, 1, 2)
+//	require.LessOrEqual(t, 2, 2)
+//	require.LessOrEqual(t, "a", "b")
+//	require.LessOrEqual(t, "b", "b")
 func LessOrEqual(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1206,10 +1206,10 @@ func LessOrEqual(t TestingT, e1 interface{}, e2 interface{}, msgAndArgs ...inter
 
 // LessOrEqualf asserts that the first element is less than or equal to the second
 //
-//	assert.LessOrEqualf(t, 1, 2, "error message %s", "formatted")
-//	assert.LessOrEqualf(t, 2, 2, "error message %s", "formatted")
-//	assert.LessOrEqualf(t, "a", "b", "error message %s", "formatted")
-//	assert.LessOrEqualf(t, "b", "b", "error message %s", "formatted")
+//	require.LessOrEqualf(t, 1, 2, "error message %s", "formatted")
+//	require.LessOrEqualf(t, 2, 2, "error message %s", "formatted")
+//	require.LessOrEqualf(t, "a", "b", "error message %s", "formatted")
+//	require.LessOrEqualf(t, "b", "b", "error message %s", "formatted")
 func LessOrEqualf(t TestingT, e1 interface{}, e2 interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1222,9 +1222,9 @@ func LessOrEqualf(t TestingT, e1 interface{}, e2 interface{}, msg string, args .
 
 // Lessf asserts that the first element is less than the second
 //
-//	assert.Lessf(t, 1, 2, "error message %s", "formatted")
-//	assert.Lessf(t, float64(1), float64(2), "error message %s", "formatted")
-//	assert.Lessf(t, "a", "b", "error message %s", "formatted")
+//	require.Lessf(t, 1, 2, "error message %s", "formatted")
+//	require.Lessf(t, float64(1), float64(2), "error message %s", "formatted")
+//	require.Lessf(t, "a", "b", "error message %s", "formatted")
 func Lessf(t TestingT, e1 interface{}, e2 interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1237,8 +1237,8 @@ func Lessf(t TestingT, e1 interface{}, e2 interface{}, msg string, args ...inter
 
 // Negative asserts that the specified element is negative
 //
-//	assert.Negative(t, -1)
-//	assert.Negative(t, -1.23)
+//	require.Negative(t, -1)
+//	require.Negative(t, -1.23)
 func Negative(t TestingT, e interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1251,8 +1251,8 @@ func Negative(t TestingT, e interface{}, msgAndArgs ...interface{}) {
 
 // Negativef asserts that the specified element is negative
 //
-//	assert.Negativef(t, -1, "error message %s", "formatted")
-//	assert.Negativef(t, -1.23, "error message %s", "formatted")
+//	require.Negativef(t, -1, "error message %s", "formatted")
+//	require.Negativef(t, -1.23, "error message %s", "formatted")
 func Negativef(t TestingT, e interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1266,7 +1266,7 @@ func Negativef(t TestingT, e interface{}, msg string, args ...interface{}) {
 // Never asserts that the given condition doesn't satisfy in waitFor time,
 // periodically checking the target function each tick.
 //
-//	assert.Never(t, func() bool { return false; }, time.Second, 10*time.Millisecond)
+//	require.Never(t, func() bool { return false; }, time.Second, 10*time.Millisecond)
 func Never(t TestingT, condition func() bool, waitFor time.Duration, tick time.Duration, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1280,7 +1280,7 @@ func Never(t TestingT, condition func() bool, waitFor time.Duration, tick time.D
 // Neverf asserts that the given condition doesn't satisfy in waitFor time,
 // periodically checking the target function each tick.
 //
-//	assert.Neverf(t, func() bool { return false; }, time.Second, 10*time.Millisecond, "error message %s", "formatted")
+//	require.Neverf(t, func() bool { return false; }, time.Second, 10*time.Millisecond, "error message %s", "formatted")
 func Neverf(t TestingT, condition func() bool, waitFor time.Duration, tick time.Duration, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1293,7 +1293,7 @@ func Neverf(t TestingT, condition func() bool, waitFor time.Duration, tick time.
 
 // Nil asserts that the specified object is nil.
 //
-//	assert.Nil(t, err)
+//	require.Nil(t, err)
 func Nil(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1306,7 +1306,7 @@ func Nil(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 
 // Nilf asserts that the specified object is nil.
 //
-//	assert.Nilf(t, err, "error message %s", "formatted")
+//	require.Nilf(t, err, "error message %s", "formatted")
 func Nilf(t TestingT, object interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1344,8 +1344,8 @@ func NoDirExistsf(t TestingT, path string, msg string, args ...interface{}) {
 // NoError asserts that a function returned no error (i.e. `nil`).
 //
 //	  actualObj, err := SomeFunction()
-//	  if assert.NoError(t, err) {
-//		   assert.Equal(t, expectedObj, actualObj)
+//	  if require.NoError(t, err) {
+//		   require.Equal(t, expectedObj, actualObj)
 //	  }
 func NoError(t TestingT, err error, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
@@ -1360,8 +1360,8 @@ func NoError(t TestingT, err error, msgAndArgs ...interface{}) {
 // NoErrorf asserts that a function returned no error (i.e. `nil`).
 //
 //	  actualObj, err := SomeFunction()
-//	  if assert.NoErrorf(t, err, "error message %s", "formatted") {
-//		   assert.Equal(t, expectedObj, actualObj)
+//	  if require.NoErrorf(t, err, "error message %s", "formatted") {
+//		   require.Equal(t, expectedObj, actualObj)
 //	  }
 func NoErrorf(t TestingT, err error, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
@@ -1400,9 +1400,9 @@ func NoFileExistsf(t TestingT, path string, msg string, args ...interface{}) {
 // NotContains asserts that the specified string, list(array, slice...) or map does NOT contain the
 // specified substring or element.
 //
-//	assert.NotContains(t, "Hello World", "Earth")
-//	assert.NotContains(t, ["Hello", "World"], "Earth")
-//	assert.NotContains(t, {"Hello": "World"}, "Earth")
+//	require.NotContains(t, "Hello World", "Earth")
+//	require.NotContains(t, ["Hello", "World"], "Earth")
+//	require.NotContains(t, {"Hello": "World"}, "Earth")
 func NotContains(t TestingT, s interface{}, contains interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1416,9 +1416,9 @@ func NotContains(t TestingT, s interface{}, contains interface{}, msgAndArgs ...
 // NotContainsf asserts that the specified string, list(array, slice...) or map does NOT contain the
 // specified substring or element.
 //
-//	assert.NotContainsf(t, "Hello World", "Earth", "error message %s", "formatted")
-//	assert.NotContainsf(t, ["Hello", "World"], "Earth", "error message %s", "formatted")
-//	assert.NotContainsf(t, {"Hello": "World"}, "Earth", "error message %s", "formatted")
+//	require.NotContainsf(t, "Hello World", "Earth", "error message %s", "formatted")
+//	require.NotContainsf(t, ["Hello", "World"], "Earth", "error message %s", "formatted")
+//	require.NotContainsf(t, {"Hello": "World"}, "Earth", "error message %s", "formatted")
 func NotContainsf(t TestingT, s interface{}, contains interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1429,11 +1429,51 @@ func NotContainsf(t TestingT, s interface{}, contains interface{}, msg string, a
 	t.FailNow()
 }
 
+// NotElementsMatch asserts that the specified listA(array, slice...) is NOT equal to specified
+// listB(array, slice...) ignoring the order of the elements. If there are duplicate elements,
+// the number of appearances of each of them in both lists should not match.
+// This is an inverse of ElementsMatch.
+//
+// require.NotElementsMatch(t, [1, 1, 2, 3], [1, 1, 2, 3]) -> false
+//
+// require.NotElementsMatch(t, [1, 1, 2, 3], [1, 2, 3]) -> true
+//
+// require.NotElementsMatch(t, [1, 2, 3], [1, 2, 4]) -> true
+func NotElementsMatch(t TestingT, listA interface{}, listB interface{}, msgAndArgs ...interface{}) {
+	if h, ok := t.(tHelper); ok {
+		h.Helper()
+	}
+	if assert.NotElementsMatch(t, listA, listB, msgAndArgs...) {
+		return
+	}
+	t.FailNow()
+}
+
+// NotElementsMatchf asserts that the specified listA(array, slice...) is NOT equal to specified
+// listB(array, slice...) ignoring the order of the elements. If there are duplicate elements,
+// the number of appearances of each of them in both lists should not match.
+// This is an inverse of ElementsMatch.
+//
+// require.NotElementsMatchf(t, [1, 1, 2, 3], [1, 1, 2, 3], "error message %s", "formatted") -> false
+//
+// require.NotElementsMatchf(t, [1, 1, 2, 3], [1, 2, 3], "error message %s", "formatted") -> true
+//
+// require.NotElementsMatchf(t, [1, 2, 3], [1, 2, 4], "error message %s", "formatted") -> true
+func NotElementsMatchf(t TestingT, listA interface{}, listB interface{}, msg string, args ...interface{}) {
+	if h, ok := t.(tHelper); ok {
+		h.Helper()
+	}
+	if assert.NotElementsMatchf(t, listA, listB, msg, args...) {
+		return
+	}
+	t.FailNow()
+}
+
 // NotEmpty asserts that the specified object is NOT empty.  I.e. not nil, "", false, 0 or either
 // a slice or a channel with len == 0.
 //
-//	if assert.NotEmpty(t, obj) {
-//	  assert.Equal(t, "two", obj[1])
+//	if require.NotEmpty(t, obj) {
+//	  require.Equal(t, "two", obj[1])
 //	}
 func NotEmpty(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
@@ -1448,8 +1488,8 @@ func NotEmpty(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 // NotEmptyf asserts that the specified object is NOT empty.  I.e. not nil, "", false, 0 or either
 // a slice or a channel with len == 0.
 //
-//	if assert.NotEmptyf(t, obj, "error message %s", "formatted") {
-//	  assert.Equal(t, "two", obj[1])
+//	if require.NotEmptyf(t, obj, "error message %s", "formatted") {
+//	  require.Equal(t, "two", obj[1])
 //	}
 func NotEmptyf(t TestingT, object interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
@@ -1463,7 +1503,7 @@ func NotEmptyf(t TestingT, object interface{}, msg string, args ...interface{})
 
 // NotEqual asserts that the specified values are NOT equal.
 //
-//	assert.NotEqual(t, obj1, obj2)
+//	require.NotEqual(t, obj1, obj2)
 //
 // Pointer variable equality is determined based on the equality of the
 // referenced values (as opposed to the memory addresses).
@@ -1479,7 +1519,7 @@ func NotEqual(t TestingT, expected interface{}, actual interface{}, msgAndArgs .
 
 // NotEqualValues asserts that two objects are not equal even when converted to the same type
 //
-//	assert.NotEqualValues(t, obj1, obj2)
+//	require.NotEqualValues(t, obj1, obj2)
 func NotEqualValues(t TestingT, expected interface{}, actual interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1492,7 +1532,7 @@ func NotEqualValues(t TestingT, expected interface{}, actual interface{}, msgAnd
 
 // NotEqualValuesf asserts that two objects are not equal even when converted to the same type
 //
-//	assert.NotEqualValuesf(t, obj1, obj2, "error message %s", "formatted")
+//	require.NotEqualValuesf(t, obj1, obj2, "error message %s", "formatted")
 func NotEqualValuesf(t TestingT, expected interface{}, actual interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1505,7 +1545,7 @@ func NotEqualValuesf(t TestingT, expected interface{}, actual interface{}, msg s
 
 // NotEqualf asserts that the specified values are NOT equal.
 //
-//	assert.NotEqualf(t, obj1, obj2, "error message %s", "formatted")
+//	require.NotEqualf(t, obj1, obj2, "error message %s", "formatted")
 //
 // Pointer variable equality is determined based on the equality of the
 // referenced values (as opposed to the memory addresses).
@@ -1519,7 +1559,31 @@ func NotEqualf(t TestingT, expected interface{}, actual interface{}, msg string,
 	t.FailNow()
 }
 
-// NotErrorIs asserts that at none of the errors in err's chain matches target.
+// NotErrorAs asserts that none of the errors in err's chain matches target,
+// but if so, sets target to that error value.
+func NotErrorAs(t TestingT, err error, target interface{}, msgAndArgs ...interface{}) {
+	if h, ok := t.(tHelper); ok {
+		h.Helper()
+	}
+	if assert.NotErrorAs(t, err, target, msgAndArgs...) {
+		return
+	}
+	t.FailNow()
+}
+
+// NotErrorAsf asserts that none of the errors in err's chain matches target,
+// but if so, sets target to that error value.
+func NotErrorAsf(t TestingT, err error, target interface{}, msg string, args ...interface{}) {
+	if h, ok := t.(tHelper); ok {
+		h.Helper()
+	}
+	if assert.NotErrorAsf(t, err, target, msg, args...) {
+		return
+	}
+	t.FailNow()
+}
+
+// NotErrorIs asserts that none of the errors in err's chain matches target.
 // This is a wrapper for errors.Is.
 func NotErrorIs(t TestingT, err error, target error, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
@@ -1531,7 +1595,7 @@ func NotErrorIs(t TestingT, err error, target error, msgAndArgs ...interface{})
 	t.FailNow()
 }
 
-// NotErrorIsf asserts that at none of the errors in err's chain matches target.
+// NotErrorIsf asserts that none of the errors in err's chain matches target.
 // This is a wrapper for errors.Is.
 func NotErrorIsf(t TestingT, err error, target error, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
@@ -1545,7 +1609,7 @@ func NotErrorIsf(t TestingT, err error, target error, msg string, args ...interf
 
 // NotImplements asserts that an object does not implement the specified interface.
 //
-//	assert.NotImplements(t, (*MyInterface)(nil), new(MyObject))
+//	require.NotImplements(t, (*MyInterface)(nil), new(MyObject))
 func NotImplements(t TestingT, interfaceObject interface{}, object interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1558,7 +1622,7 @@ func NotImplements(t TestingT, interfaceObject interface{}, object interface{},
 
 // NotImplementsf asserts that an object does not implement the specified interface.
 //
-//	assert.NotImplementsf(t, (*MyInterface)(nil), new(MyObject), "error message %s", "formatted")
+//	require.NotImplementsf(t, (*MyInterface)(nil), new(MyObject), "error message %s", "formatted")
 func NotImplementsf(t TestingT, interfaceObject interface{}, object interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1571,7 +1635,7 @@ func NotImplementsf(t TestingT, interfaceObject interface{}, object interface{},
 
 // NotNil asserts that the specified object is not nil.
 //
-//	assert.NotNil(t, err)
+//	require.NotNil(t, err)
 func NotNil(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1584,7 +1648,7 @@ func NotNil(t TestingT, object interface{}, msgAndArgs ...interface{}) {
 
 // NotNilf asserts that the specified object is not nil.
 //
-//	assert.NotNilf(t, err, "error message %s", "formatted")
+//	require.NotNilf(t, err, "error message %s", "formatted")
 func NotNilf(t TestingT, object interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1597,7 +1661,7 @@ func NotNilf(t TestingT, object interface{}, msg string, args ...interface{}) {
 
 // NotPanics asserts that the code inside the specified PanicTestFunc does NOT panic.
 //
-//	assert.NotPanics(t, func(){ RemainCalm() })
+//	require.NotPanics(t, func(){ RemainCalm() })
 func NotPanics(t TestingT, f assert.PanicTestFunc, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1610,7 +1674,7 @@ func NotPanics(t TestingT, f assert.PanicTestFunc, msgAndArgs ...interface{}) {
 
 // NotPanicsf asserts that the code inside the specified PanicTestFunc does NOT panic.
 //
-//	assert.NotPanicsf(t, func(){ RemainCalm() }, "error message %s", "formatted")
+//	require.NotPanicsf(t, func(){ RemainCalm() }, "error message %s", "formatted")
 func NotPanicsf(t TestingT, f assert.PanicTestFunc, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1623,8 +1687,8 @@ func NotPanicsf(t TestingT, f assert.PanicTestFunc, msg string, args ...interfac
 
 // NotRegexp asserts that a specified regexp does not match a string.
 //
-//	assert.NotRegexp(t, regexp.MustCompile("starts"), "it's starting")
-//	assert.NotRegexp(t, "^start", "it's not starting")
+//	require.NotRegexp(t, regexp.MustCompile("starts"), "it's starting")
+//	require.NotRegexp(t, "^start", "it's not starting")
 func NotRegexp(t TestingT, rx interface{}, str interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1637,8 +1701,8 @@ func NotRegexp(t TestingT, rx interface{}, str interface{}, msgAndArgs ...interf
 
 // NotRegexpf asserts that a specified regexp does not match a string.
 //
-//	assert.NotRegexpf(t, regexp.MustCompile("starts"), "it's starting", "error message %s", "formatted")
-//	assert.NotRegexpf(t, "^start", "it's not starting", "error message %s", "formatted")
+//	require.NotRegexpf(t, regexp.MustCompile("starts"), "it's starting", "error message %s", "formatted")
+//	require.NotRegexpf(t, "^start", "it's not starting", "error message %s", "formatted")
 func NotRegexpf(t TestingT, rx interface{}, str interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1651,7 +1715,7 @@ func NotRegexpf(t TestingT, rx interface{}, str interface{}, msg string, args ..
 
 // NotSame asserts that two pointers do not reference the same object.
 //
-//	assert.NotSame(t, ptr1, ptr2)
+//	require.NotSame(t, ptr1, ptr2)
 //
 // Both arguments must be pointer variables. Pointer variable sameness is
 // determined based on the equality of both type and value.
@@ -1667,7 +1731,7 @@ func NotSame(t TestingT, expected interface{}, actual interface{}, msgAndArgs ..
 
 // NotSamef asserts that two pointers do not reference the same object.
 //
-//	assert.NotSamef(t, ptr1, ptr2, "error message %s", "formatted")
+//	require.NotSamef(t, ptr1, ptr2, "error message %s", "formatted")
 //
 // Both arguments must be pointer variables. Pointer variable sameness is
 // determined based on the equality of both type and value.
@@ -1685,8 +1749,8 @@ func NotSamef(t TestingT, expected interface{}, actual interface{}, msg string,
 // contain all elements given in the specified subset list(array, slice...) or
 // map.
 //
-//	assert.NotSubset(t, [1, 3, 4], [1, 2])
-//	assert.NotSubset(t, {"x": 1, "y": 2}, {"z": 3})
+//	require.NotSubset(t, [1, 3, 4], [1, 2])
+//	require.NotSubset(t, {"x": 1, "y": 2}, {"z": 3})
 func NotSubset(t TestingT, list interface{}, subset interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1701,8 +1765,8 @@ func NotSubset(t TestingT, list interface{}, subset interface{}, msgAndArgs ...i
 // contain all elements given in the specified subset list(array, slice...) or
 // map.
 //
-//	assert.NotSubsetf(t, [1, 3, 4], [1, 2], "error message %s", "formatted")
-//	assert.NotSubsetf(t, {"x": 1, "y": 2}, {"z": 3}, "error message %s", "formatted")
+//	require.NotSubsetf(t, [1, 3, 4], [1, 2], "error message %s", "formatted")
+//	require.NotSubsetf(t, {"x": 1, "y": 2}, {"z": 3}, "error message %s", "formatted")
 func NotSubsetf(t TestingT, list interface{}, subset interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1737,7 +1801,7 @@ func NotZerof(t TestingT, i interface{}, msg string, args ...interface{}) {
 
 // Panics asserts that the code inside the specified PanicTestFunc panics.
 //
-//	assert.Panics(t, func(){ GoCrazy() })
+//	require.Panics(t, func(){ GoCrazy() })
 func Panics(t TestingT, f assert.PanicTestFunc, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1752,7 +1816,7 @@ func Panics(t TestingT, f assert.PanicTestFunc, msgAndArgs ...interface{}) {
 // panics, and that the recovered panic value is an error that satisfies the
 // EqualError comparison.
 //
-//	assert.PanicsWithError(t, "crazy error", func(){ GoCrazy() })
+//	require.PanicsWithError(t, "crazy error", func(){ GoCrazy() })
 func PanicsWithError(t TestingT, errString string, f assert.PanicTestFunc, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1767,7 +1831,7 @@ func PanicsWithError(t TestingT, errString string, f assert.PanicTestFunc, msgAn
 // panics, and that the recovered panic value is an error that satisfies the
 // EqualError comparison.
 //
-//	assert.PanicsWithErrorf(t, "crazy error", func(){ GoCrazy() }, "error message %s", "formatted")
+//	require.PanicsWithErrorf(t, "crazy error", func(){ GoCrazy() }, "error message %s", "formatted")
 func PanicsWithErrorf(t TestingT, errString string, f assert.PanicTestFunc, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1781,7 +1845,7 @@ func PanicsWithErrorf(t TestingT, errString string, f assert.PanicTestFunc, msg
 // PanicsWithValue asserts that the code inside the specified PanicTestFunc panics, and that
 // the recovered panic value equals the expected panic value.
 //
-//	assert.PanicsWithValue(t, "crazy error", func(){ GoCrazy() })
+//	require.PanicsWithValue(t, "crazy error", func(){ GoCrazy() })
 func PanicsWithValue(t TestingT, expected interface{}, f assert.PanicTestFunc, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1795,7 +1859,7 @@ func PanicsWithValue(t TestingT, expected interface{}, f assert.PanicTestFunc, m
 // PanicsWithValuef asserts that the code inside the specified PanicTestFunc panics, and that
 // the recovered panic value equals the expected panic value.
 //
-//	assert.PanicsWithValuef(t, "crazy error", func(){ GoCrazy() }, "error message %s", "formatted")
+//	require.PanicsWithValuef(t, "crazy error", func(){ GoCrazy() }, "error message %s", "formatted")
 func PanicsWithValuef(t TestingT, expected interface{}, f assert.PanicTestFunc, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1808,7 +1872,7 @@ func PanicsWithValuef(t TestingT, expected interface{}, f assert.PanicTestFunc,
 
 // Panicsf asserts that the code inside the specified PanicTestFunc panics.
 //
-//	assert.Panicsf(t, func(){ GoCrazy() }, "error message %s", "formatted")
+//	require.Panicsf(t, func(){ GoCrazy() }, "error message %s", "formatted")
 func Panicsf(t TestingT, f assert.PanicTestFunc, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1821,8 +1885,8 @@ func Panicsf(t TestingT, f assert.PanicTestFunc, msg string, args ...interface{}
 
 // Positive asserts that the specified element is positive
 //
-//	assert.Positive(t, 1)
-//	assert.Positive(t, 1.23)
+//	require.Positive(t, 1)
+//	require.Positive(t, 1.23)
 func Positive(t TestingT, e interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1835,8 +1899,8 @@ func Positive(t TestingT, e interface{}, msgAndArgs ...interface{}) {
 
 // Positivef asserts that the specified element is positive
 //
-//	assert.Positivef(t, 1, "error message %s", "formatted")
-//	assert.Positivef(t, 1.23, "error message %s", "formatted")
+//	require.Positivef(t, 1, "error message %s", "formatted")
+//	require.Positivef(t, 1.23, "error message %s", "formatted")
 func Positivef(t TestingT, e interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1849,8 +1913,8 @@ func Positivef(t TestingT, e interface{}, msg string, args ...interface{}) {
 
 // Regexp asserts that a specified regexp matches a string.
 //
-//	assert.Regexp(t, regexp.MustCompile("start"), "it's starting")
-//	assert.Regexp(t, "start...$", "it's not starting")
+//	require.Regexp(t, regexp.MustCompile("start"), "it's starting")
+//	require.Regexp(t, "start...$", "it's not starting")
 func Regexp(t TestingT, rx interface{}, str interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1863,8 +1927,8 @@ func Regexp(t TestingT, rx interface{}, str interface{}, msgAndArgs ...interface
 
 // Regexpf asserts that a specified regexp matches a string.
 //
-//	assert.Regexpf(t, regexp.MustCompile("start"), "it's starting", "error message %s", "formatted")
-//	assert.Regexpf(t, "start...$", "it's not starting", "error message %s", "formatted")
+//	require.Regexpf(t, regexp.MustCompile("start"), "it's starting", "error message %s", "formatted")
+//	require.Regexpf(t, "start...$", "it's not starting", "error message %s", "formatted")
 func Regexpf(t TestingT, rx interface{}, str interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1877,7 +1941,7 @@ func Regexpf(t TestingT, rx interface{}, str interface{}, msg string, args ...in
 
 // Same asserts that two pointers reference the same object.
 //
-//	assert.Same(t, ptr1, ptr2)
+//	require.Same(t, ptr1, ptr2)
 //
 // Both arguments must be pointer variables. Pointer variable sameness is
 // determined based on the equality of both type and value.
@@ -1893,7 +1957,7 @@ func Same(t TestingT, expected interface{}, actual interface{}, msgAndArgs ...in
 
 // Samef asserts that two pointers reference the same object.
 //
-//	assert.Samef(t, ptr1, ptr2, "error message %s", "formatted")
+//	require.Samef(t, ptr1, ptr2, "error message %s", "formatted")
 //
 // Both arguments must be pointer variables. Pointer variable sameness is
 // determined based on the equality of both type and value.
@@ -1910,8 +1974,8 @@ func Samef(t TestingT, expected interface{}, actual interface{}, msg string, arg
 // Subset asserts that the specified list(array, slice...) or map contains all
 // elements given in the specified subset list(array, slice...) or map.
 //
-//	assert.Subset(t, [1, 2, 3], [1, 2])
-//	assert.Subset(t, {"x": 1, "y": 2}, {"x": 1})
+//	require.Subset(t, [1, 2, 3], [1, 2])
+//	require.Subset(t, {"x": 1, "y": 2}, {"x": 1})
 func Subset(t TestingT, list interface{}, subset interface{}, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1925,8 +1989,8 @@ func Subset(t TestingT, list interface{}, subset interface{}, msgAndArgs ...inte
 // Subsetf asserts that the specified list(array, slice...) or map contains all
 // elements given in the specified subset list(array, slice...) or map.
 //
-//	assert.Subsetf(t, [1, 2, 3], [1, 2], "error message %s", "formatted")
-//	assert.Subsetf(t, {"x": 1, "y": 2}, {"x": 1}, "error message %s", "formatted")
+//	require.Subsetf(t, [1, 2, 3], [1, 2], "error message %s", "formatted")
+//	require.Subsetf(t, {"x": 1, "y": 2}, {"x": 1}, "error message %s", "formatted")
 func Subsetf(t TestingT, list interface{}, subset interface{}, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1939,7 +2003,7 @@ func Subsetf(t TestingT, list interface{}, subset interface{}, msg string, args
 
 // True asserts that the specified value is true.
 //
-//	assert.True(t, myBool)
+//	require.True(t, myBool)
 func True(t TestingT, value bool, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1952,7 +2016,7 @@ func True(t TestingT, value bool, msgAndArgs ...interface{}) {
 
 // Truef asserts that the specified value is true.
 //
-//	assert.Truef(t, myBool, "error message %s", "formatted")
+//	require.Truef(t, myBool, "error message %s", "formatted")
 func Truef(t TestingT, value bool, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1965,7 +2029,7 @@ func Truef(t TestingT, value bool, msg string, args ...interface{}) {
 
 // WithinDuration asserts that the two times are within duration delta of each other.
 //
-//	assert.WithinDuration(t, time.Now(), time.Now(), 10*time.Second)
+//	require.WithinDuration(t, time.Now(), time.Now(), 10*time.Second)
 func WithinDuration(t TestingT, expected time.Time, actual time.Time, delta time.Duration, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1978,7 +2042,7 @@ func WithinDuration(t TestingT, expected time.Time, actual time.Time, delta time
 
 // WithinDurationf asserts that the two times are within duration delta of each other.
 //
-//	assert.WithinDurationf(t, time.Now(), time.Now(), 10*time.Second, "error message %s", "formatted")
+//	require.WithinDurationf(t, time.Now(), time.Now(), 10*time.Second, "error message %s", "formatted")
 func WithinDurationf(t TestingT, expected time.Time, actual time.Time, delta time.Duration, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -1991,7 +2055,7 @@ func WithinDurationf(t TestingT, expected time.Time, actual time.Time, delta tim
 
 // WithinRange asserts that a time is within a time range (inclusive).
 //
-//	assert.WithinRange(t, time.Now(), time.Now().Add(-time.Second), time.Now().Add(time.Second))
+//	require.WithinRange(t, time.Now(), time.Now().Add(-time.Second), time.Now().Add(time.Second))
 func WithinRange(t TestingT, actual time.Time, start time.Time, end time.Time, msgAndArgs ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
@@ -2004,7 +2068,7 @@ func WithinRange(t TestingT, actual time.Time, start time.Time, end time.Time, m
 
 // WithinRangef asserts that a time is within a time range (inclusive).
 //
-//	assert.WithinRangef(t, time.Now(), time.Now().Add(-time.Second), time.Now().Add(time.Second), "error message %s", "formatted")
+//	require.WithinRangef(t, time.Now(), time.Now().Add(-time.Second), time.Now().Add(time.Second), "error message %s", "formatted")
 func WithinRangef(t TestingT, actual time.Time, start time.Time, end time.Time, msg string, args ...interface{}) {
 	if h, ok := t.(tHelper); ok {
 		h.Helper()
diff --git a/vendor/github.com/stretchr/testify/require/require.go.tmpl b/vendor/github.com/stretchr/testify/require/require.go.tmpl
index 55e42ddeb..8b3283685 100644
--- a/vendor/github.com/stretchr/testify/require/require.go.tmpl
+++ b/vendor/github.com/stretchr/testify/require/require.go.tmpl
@@ -1,4 +1,4 @@
-{{.Comment}}
+{{ replace .Comment "assert." "require."}}
 func {{.DocInfo.Name}}(t TestingT, {{.Params}}) {
 	if h, ok := t.(tHelper); ok { h.Helper() }
 	if assert.{{.DocInfo.Name}}(t, {{.ForwardedParams}}) { return }
diff --git a/vendor/github.com/stretchr/testify/require/require_forward.go b/vendor/github.com/stretchr/testify/require/require_forward.go
index eee8310a5..1bd87304f 100644
--- a/vendor/github.com/stretchr/testify/require/require_forward.go
+++ b/vendor/github.com/stretchr/testify/require/require_forward.go
@@ -187,8 +187,8 @@ func (a *Assertions) EqualExportedValuesf(expected interface{}, actual interface
 	EqualExportedValuesf(a.t, expected, actual, msg, args...)
 }
 
-// EqualValues asserts that two objects are equal or convertible to the same types
-// and equal.
+// EqualValues asserts that two objects are equal or convertible to the larger
+// type and equal.
 //
 //	a.EqualValues(uint32(123), int32(123))
 func (a *Assertions) EqualValues(expected interface{}, actual interface{}, msgAndArgs ...interface{}) {
@@ -198,8 +198,8 @@ func (a *Assertions) EqualValues(expected interface{}, actual interface{}, msgAn
 	EqualValues(a.t, expected, actual, msgAndArgs...)
 }
 
-// EqualValuesf asserts that two objects are equal or convertible to the same types
-// and equal.
+// EqualValuesf asserts that two objects are equal or convertible to the larger
+// type and equal.
 //
 //	a.EqualValuesf(uint32(123), int32(123), "error message %s", "formatted")
 func (a *Assertions) EqualValuesf(expected interface{}, actual interface{}, msg string, args ...interface{}) {
@@ -337,7 +337,7 @@ func (a *Assertions) Eventually(condition func() bool, waitFor time.Duration, ti
 //	a.EventuallyWithT(func(c *assert.CollectT) {
 //		// add assertions as needed; any assertion failure will fail the current tick
 //		assert.True(c, externalValue, "expected 'externalValue' to be true")
-//	}, 1*time.Second, 10*time.Second, "external state has not changed to 'true'; still false")
+//	}, 10*time.Second, 1*time.Second, "external state has not changed to 'true'; still false")
 func (a *Assertions) EventuallyWithT(condition func(collect *assert.CollectT), waitFor time.Duration, tick time.Duration, msgAndArgs ...interface{}) {
 	if h, ok := a.t.(tHelper); ok {
 		h.Helper()
@@ -362,7 +362,7 @@ func (a *Assertions) EventuallyWithT(condition func(collect *assert.CollectT), w
 //	a.EventuallyWithTf(func(c *assert.CollectT, "error message %s", "formatted") {
 //		// add assertions as needed; any assertion failure will fail the current tick
 //		assert.True(c, externalValue, "expected 'externalValue' to be true")
-//	}, 1*time.Second, 10*time.Second, "external state has not changed to 'true'; still false")
+//	}, 10*time.Second, 1*time.Second, "external state has not changed to 'true'; still false")
 func (a *Assertions) EventuallyWithTf(condition func(collect *assert.CollectT), waitFor time.Duration, tick time.Duration, msg string, args ...interface{}) {
 	if h, ok := a.t.(tHelper); ok {
 		h.Helper()
@@ -1129,6 +1129,40 @@ func (a *Assertions) NotContainsf(s interface{}, contains interface{}, msg strin
 	NotContainsf(a.t, s, contains, msg, args...)
 }
 
+// NotElementsMatch asserts that the specified listA(array, slice...) is NOT equal to specified
+// listB(array, slice...) ignoring the order of the elements. If there are duplicate elements,
+// the number of appearances of each of them in both lists should not match.
+// This is an inverse of ElementsMatch.
+//
+// a.NotElementsMatch([1, 1, 2, 3], [1, 1, 2, 3]) -> false
+//
+// a.NotElementsMatch([1, 1, 2, 3], [1, 2, 3]) -> true
+//
+// a.NotElementsMatch([1, 2, 3], [1, 2, 4]) -> true
+func (a *Assertions) NotElementsMatch(listA interface{}, listB interface{}, msgAndArgs ...interface{}) {
+	if h, ok := a.t.(tHelper); ok {
+		h.Helper()
+	}
+	NotElementsMatch(a.t, listA, listB, msgAndArgs...)
+}
+
+// NotElementsMatchf asserts that the specified listA(array, slice...) is NOT equal to specified
+// listB(array, slice...) ignoring the order of the elements. If there are duplicate elements,
+// the number of appearances of each of them in both lists should not match.
+// This is an inverse of ElementsMatch.
+//
+// a.NotElementsMatchf([1, 1, 2, 3], [1, 1, 2, 3], "error message %s", "formatted") -> false
+//
+// a.NotElementsMatchf([1, 1, 2, 3], [1, 2, 3], "error message %s", "formatted") -> true
+//
+// a.NotElementsMatchf([1, 2, 3], [1, 2, 4], "error message %s", "formatted") -> true
+func (a *Assertions) NotElementsMatchf(listA interface{}, listB interface{}, msg string, args ...interface{}) {
+	if h, ok := a.t.(tHelper); ok {
+		h.Helper()
+	}
+	NotElementsMatchf(a.t, listA, listB, msg, args...)
+}
+
 // NotEmpty asserts that the specified object is NOT empty.  I.e. not nil, "", false, 0 or either
 // a slice or a channel with len == 0.
 //
@@ -1201,7 +1235,25 @@ func (a *Assertions) NotEqualf(expected interface{}, actual interface{}, msg str
 	NotEqualf(a.t, expected, actual, msg, args...)
 }
 
-// NotErrorIs asserts that at none of the errors in err's chain matches target.
+// NotErrorAs asserts that none of the errors in err's chain matches target,
+// but if so, sets target to that error value.
+func (a *Assertions) NotErrorAs(err error, target interface{}, msgAndArgs ...interface{}) {
+	if h, ok := a.t.(tHelper); ok {
+		h.Helper()
+	}
+	NotErrorAs(a.t, err, target, msgAndArgs...)
+}
+
+// NotErrorAsf asserts that none of the errors in err's chain matches target,
+// but if so, sets target to that error value.
+func (a *Assertions) NotErrorAsf(err error, target interface{}, msg string, args ...interface{}) {
+	if h, ok := a.t.(tHelper); ok {
+		h.Helper()
+	}
+	NotErrorAsf(a.t, err, target, msg, args...)
+}
+
+// NotErrorIs asserts that none of the errors in err's chain matches target.
 // This is a wrapper for errors.Is.
 func (a *Assertions) NotErrorIs(err error, target error, msgAndArgs ...interface{}) {
 	if h, ok := a.t.(tHelper); ok {
@@ -1210,7 +1262,7 @@ func (a *Assertions) NotErrorIs(err error, target error, msgAndArgs ...interface
 	NotErrorIs(a.t, err, target, msgAndArgs...)
 }
 
-// NotErrorIsf asserts that at none of the errors in err's chain matches target.
+// NotErrorIsf asserts that none of the errors in err's chain matches target.
 // This is a wrapper for errors.Is.
 func (a *Assertions) NotErrorIsf(err error, target error, msg string, args ...interface{}) {
 	if h, ok := a.t.(tHelper); ok {
diff --git a/vendor/github.com/stretchr/testify/require/requirements.go b/vendor/github.com/stretchr/testify/require/requirements.go
index 91772dfeb..6b7ce929e 100644
--- a/vendor/github.com/stretchr/testify/require/requirements.go
+++ b/vendor/github.com/stretchr/testify/require/requirements.go
@@ -6,7 +6,7 @@ type TestingT interface {
 	FailNow()
 }
 
-type tHelper interface {
+type tHelper = interface {
 	Helper()
 }
 
diff --git a/vendor/github.com/stretchr/testify/suite/doc.go b/vendor/github.com/stretchr/testify/suite/doc.go
index 8d55a3aa8..05a562f72 100644
--- a/vendor/github.com/stretchr/testify/suite/doc.go
+++ b/vendor/github.com/stretchr/testify/suite/doc.go
@@ -5,6 +5,8 @@
 // or individual tests (depending on which interface(s) you
 // implement).
 //
+// The suite package does not support parallel tests. See [issue 934].
+//
 // A testing suite is usually built by first extending the built-in
 // suite functionality from suite.Suite in testify.  Alternatively,
 // you could reproduce that logic on your own if you wanted (you
@@ -63,4 +65,6 @@
 //	func TestExampleTestSuite(t *testing.T) {
 //	    suite.Run(t, new(ExampleTestSuite))
 //	}
+//
+// [issue 934]: https://github.com/stretchr/testify/issues/934
 package suite
diff --git a/vendor/modules.txt b/vendor/modules.txt
index 2f8c861a2..8af740067 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -631,9 +631,10 @@ github.com/spf13/viper/internal/encoding/json
 github.com/spf13/viper/internal/encoding/toml
 github.com/spf13/viper/internal/encoding/yaml
 github.com/spf13/viper/internal/features
-# github.com/stretchr/testify v1.9.0
+# github.com/stretchr/testify v1.10.0
 ## explicit; go 1.17
 github.com/stretchr/testify/assert
+github.com/stretchr/testify/assert/yaml
 github.com/stretchr/testify/require
 github.com/stretchr/testify/suite
 # github.com/subosito/gotenv v1.6.0

From cac9d65029e972af9440ff79a2617d5c524a9d64 Mon Sep 17 00:00:00 2001
From: kim <89579420+NyaaaWhatsUpDoc@users.noreply.github.com>
Date: Mon, 25 Nov 2024 13:48:59 +0000
Subject: [PATCH 04/26] [performance] convert enum strings to ints (#3558)

* convert statuses.visibility and notifications.notification_type columns from type string -> int for performance / space savings

* fix test trying to compare string to int

* fix instance count query using string literal instead of gtsmodel const type

* ensure a default value is always set

* also migrate the account settings and sin bin status tables

* initialize maps outside loops and place into singular enum mapping creation func

* use int16 for enum types

* update sinbinstatus creation to be from a snapshot at initial creation

* add snapshot of poll type at creation time
---
 internal/ap/extract.go                        |   2 +-
 .../api/client/accounts/accountverify_test.go |   3 +-
 .../client/notifications/notificationsget.go  |  16 +-
 internal/api/util/parsequery.go               |  47 ++++
 internal/db/bundb/account_test.go             |   2 +-
 internal/db/bundb/instance.go                 |   2 +-
 .../20231002153327_add_status_polls.go        |   3 +-
 .../20231002153327_add_status_polls/polls.go  |  48 ++++
 .../20231002153327_add_status_polls/status.go |  75 ++++++
 .../20240620074530_interaction_policy.go      |   5 +-
 .../status.go                                 |  93 ++++---
 ...40904084406_fedi_api_reject_interaction.go |   2 +-
 .../sinbinstatus.go                           |  66 +++++
 .../20241121121623_enum_strings_to_ints.go    | 249 ++++++++++++++++++
 .../accountsettings.go                        |  45 ++++
 .../notification.go                           |  57 ++++
 .../sinbinstatus.go                           |  45 ++++
 .../status.go                                 |  95 +++++++
 internal/db/bundb/notification.go             |   6 +-
 internal/db/bundb/relationship_follow_req.go  |   8 +-
 internal/db/notification.go                   |   4 +-
 internal/gtsmodel/accountsettings.go          |   4 +-
 internal/gtsmodel/common.go                   |  24 ++
 internal/gtsmodel/interactionpolicy.go        |   2 +-
 internal/gtsmodel/notification.go             |  59 ++++-
 internal/gtsmodel/status.go                   |  55 +++-
 internal/processing/preferences.go            |   2 +-
 internal/processing/status/create.go          |   2 +-
 internal/processing/timeline/notification.go  |   4 +-
 internal/processing/workers/surfacenotify.go  |   2 +-
 internal/typeutils/frontendtointernal.go      |   2 +-
 internal/typeutils/internaltofrontend.go      |   2 +-
 32 files changed, 940 insertions(+), 91 deletions(-)
 create mode 100644 internal/db/bundb/migrations/20231002153327_add_status_polls/polls.go
 create mode 100644 internal/db/bundb/migrations/20231002153327_add_status_polls/status.go
 create mode 100644 internal/db/bundb/migrations/20240904084406_fedi_api_reject_interaction/sinbinstatus.go
 create mode 100644 internal/db/bundb/migrations/20241121121623_enum_strings_to_ints.go
 create mode 100644 internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/accountsettings.go
 create mode 100644 internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/notification.go
 create mode 100644 internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/sinbinstatus.go
 create mode 100644 internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/status.go
 create mode 100644 internal/gtsmodel/common.go

diff --git a/internal/ap/extract.go b/internal/ap/extract.go
index f5486a051..543ee8dca 100644
--- a/internal/ap/extract.go
+++ b/internal/ap/extract.go
@@ -1027,7 +1027,7 @@ func ExtractVisibility(addressable Addressable, actorFollowersURI string) (gtsmo
 	)
 
 	if len(to) == 0 && len(cc) == 0 {
-		return "", gtserror.Newf("message wasn't TO or CC anyone")
+		return 0, gtserror.Newf("message wasn't TO or CC anyone")
 	}
 
 	// Assume most restrictive visibility,
diff --git a/internal/api/client/accounts/accountverify_test.go b/internal/api/client/accounts/accountverify_test.go
index af8c2346c..3f67cdefb 100644
--- a/internal/api/client/accounts/accountverify_test.go
+++ b/internal/api/client/accounts/accountverify_test.go
@@ -28,7 +28,6 @@ import (
 	"github.com/stretchr/testify/suite"
 	"github.com/superseriousbusiness/gotosocial/internal/api/client/accounts"
 	apimodel "github.com/superseriousbusiness/gotosocial/internal/api/model"
-	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
 	"github.com/superseriousbusiness/gotosocial/internal/oauth"
 )
 
@@ -99,7 +98,7 @@ func (suite *AccountVerifyTestSuite) TestAccountVerifyGet() {
 	suite.Equal(2, apimodelAccount.FollowersCount)
 	suite.Equal(2, apimodelAccount.FollowingCount)
 	suite.Equal(8, apimodelAccount.StatusesCount)
-	suite.EqualValues(gtsmodel.VisibilityPublic, apimodelAccount.Source.Privacy)
+	suite.EqualValues(apimodel.VisibilityPublic, apimodelAccount.Source.Privacy)
 	suite.Equal(testAccount.Settings.Language, apimodelAccount.Source.Language)
 	suite.Equal(testAccount.NoteRaw, apimodelAccount.Source.Note)
 }
diff --git a/internal/api/client/notifications/notificationsget.go b/internal/api/client/notifications/notificationsget.go
index f7bcf1994..cc3e5bdb7 100644
--- a/internal/api/client/notifications/notificationsget.go
+++ b/internal/api/client/notifications/notificationsget.go
@@ -164,6 +164,18 @@ func (m *Module) NotificationsGETHandler(c *gin.Context) {
 		limit = int(i)
 	}
 
+	types, errWithCode := apiutil.ParseNotificationTypes(c.QueryArray(TypesKey))
+	if errWithCode != nil {
+		apiutil.ErrorHandler(c, errWithCode, m.processor.InstanceGetV1)
+		return
+	}
+
+	exclTypes, errWithCode := apiutil.ParseNotificationTypes(c.QueryArray(ExcludeTypesKey))
+	if errWithCode != nil {
+		apiutil.ErrorHandler(c, errWithCode, m.processor.InstanceGetV1)
+		return
+	}
+
 	resp, errWithCode := m.processor.Timeline().NotificationsGet(
 		c.Request.Context(),
 		authed,
@@ -171,8 +183,8 @@ func (m *Module) NotificationsGETHandler(c *gin.Context) {
 		c.Query(SinceIDKey),
 		c.Query(MinIDKey),
 		limit,
-		c.QueryArray(TypesKey),
-		c.QueryArray(ExcludeTypesKey),
+		types,
+		exclTypes,
 	)
 	if errWithCode != nil {
 		apiutil.ErrorHandler(c, errWithCode, m.processor.InstanceGetV1)
diff --git a/internal/api/util/parsequery.go b/internal/api/util/parsequery.go
index 9f4c02aed..9929524c5 100644
--- a/internal/api/util/parsequery.go
+++ b/internal/api/util/parsequery.go
@@ -18,11 +18,13 @@
 package util
 
 import (
+	"errors"
 	"fmt"
 	"strconv"
 	"strings"
 
 	"github.com/superseriousbusiness/gotosocial/internal/gtserror"
+	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
 )
 
 const (
@@ -216,6 +218,51 @@ func ParseInteractionReblogs(value string, defaultValue bool) (bool, gtserror.Wi
 	return parseBool(value, defaultValue, InteractionReblogsKey)
 }
 
+func ParseNotificationType(value string) (gtsmodel.NotificationType, gtserror.WithCode) {
+	switch strings.ToLower(value) {
+	case "follow":
+		return gtsmodel.NotificationFollow, nil
+	case "follow_request":
+		return gtsmodel.NotificationFollowRequest, nil
+	case "mention":
+		return gtsmodel.NotificationMention, nil
+	case "reblog":
+		return gtsmodel.NotificationReblog, nil
+	case "favourite":
+		return gtsmodel.NotificationFave, nil
+	case "poll":
+		return gtsmodel.NotificationPoll, nil
+	case "status":
+		return gtsmodel.NotificationStatus, nil
+	case "admin.sign_up":
+		return gtsmodel.NotificationSignup, nil
+	case "pending.favourite":
+		return gtsmodel.NotificationPendingFave, nil
+	case "pending.reply":
+		return gtsmodel.NotificationPendingReply, nil
+	case "pending.reblog":
+		return gtsmodel.NotificationPendingReblog, nil
+	default:
+		text := fmt.Sprintf("unrecognized notification type %s", value)
+		return 0, gtserror.NewErrorBadRequest(errors.New(text), text)
+	}
+}
+
+func ParseNotificationTypes(values []string) ([]gtsmodel.NotificationType, gtserror.WithCode) {
+	if len(values) == 0 {
+		return nil, nil
+	}
+	ntypes := make([]gtsmodel.NotificationType, len(values))
+	for i, value := range values {
+		ntype, errWithCode := ParseNotificationType(value)
+		if errWithCode != nil {
+			return nil, errWithCode
+		}
+		ntypes[i] = ntype
+	}
+	return ntypes, nil
+}
+
 /*
 	Parse functions for *REQUIRED* parameters.
 */
diff --git a/internal/db/bundb/account_test.go b/internal/db/bundb/account_test.go
index 2caffdeb1..7dcc0f9e7 100644
--- a/internal/db/bundb/account_test.go
+++ b/internal/db/bundb/account_test.go
@@ -106,7 +106,7 @@ func (suite *AccountTestSuite) populateTestStatus(testAccountKey string, status
 	status.URI = fmt.Sprintf("http://localhost:8080/users/%s/statuses/%s", testAccount.Username, status.ID)
 	status.Local = util.Ptr(true)
 
-	if status.Visibility == "" {
+	if status.Visibility == 0 {
 		status.Visibility = gtsmodel.VisibilityDefault
 	}
 	if status.ActivityStreamsType == "" {
diff --git a/internal/db/bundb/instance.go b/internal/db/bundb/instance.go
index bbfd82ffb..613a2b13a 100644
--- a/internal/db/bundb/instance.go
+++ b/internal/db/bundb/instance.go
@@ -104,7 +104,7 @@ func (i *instanceDB) CountInstanceStatuses(ctx context.Context, domain string) (
 	q = q.Where("NOT ? = ?", bun.Ident("status.pending_approval"), true)
 
 	// Ignore statuses that are direct messages.
-	q = q.Where("NOT ? = ?", bun.Ident("status.visibility"), "direct")
+	q = q.Where("NOT ? = ?", bun.Ident("status.visibility"), gtsmodel.VisibilityDirect)
 
 	count, err := q.Count(ctx)
 	if err != nil {
diff --git a/internal/db/bundb/migrations/20231002153327_add_status_polls.go b/internal/db/bundb/migrations/20231002153327_add_status_polls.go
index 5e525cc27..019a369d4 100644
--- a/internal/db/bundb/migrations/20231002153327_add_status_polls.go
+++ b/internal/db/bundb/migrations/20231002153327_add_status_polls.go
@@ -21,7 +21,8 @@ import (
 	"context"
 	"strings"
 
-	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
+	gtsmodel "github.com/superseriousbusiness/gotosocial/internal/db/bundb/migrations/20231002153327_add_status_polls"
+
 	"github.com/uptrace/bun"
 )
 
diff --git a/internal/db/bundb/migrations/20231002153327_add_status_polls/polls.go b/internal/db/bundb/migrations/20231002153327_add_status_polls/polls.go
new file mode 100644
index 000000000..c3e03d267
--- /dev/null
+++ b/internal/db/bundb/migrations/20231002153327_add_status_polls/polls.go
@@ -0,0 +1,48 @@
+// GoToSocial
+// Copyright (C) GoToSocial Authors admin@gotosocial.org
+// SPDX-License-Identifier: AGPL-3.0-or-later
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package gtsmodel
+
+import (
+	"time"
+)
+
+// Poll represents an attached (to) Status poll, i.e. a questionaire. Can be remote / local.
+type Poll struct {
+	ID         string    `bun:"type:CHAR(26),pk,nullzero,notnull,unique"` // Unique identity string.
+	Multiple   *bool     `bun:",nullzero,notnull,default:false"`          // Is this a multiple choice poll? i.e. can you vote on multiple options.
+	HideCounts *bool     `bun:",nullzero,notnull,default:false"`          // Hides vote counts until poll ends.
+	Options    []string  `bun:",nullzero,notnull"`                        // The available options for this poll.
+	Votes      []int     `bun:",nullzero,notnull"`                        // Vote counts per choice.
+	Voters     *int      `bun:",nullzero,notnull"`                        // Total no. voters count.
+	StatusID   string    `bun:"type:CHAR(26),nullzero,notnull,unique"`    // Status ID of which this Poll is attached to.
+	ExpiresAt  time.Time `bun:"type:timestamptz,nullzero,notnull"`        // The expiry date of this Poll.
+	ClosedAt   time.Time `bun:"type:timestamptz,nullzero"`                // The closure date of this poll, will be zerotime until set.
+	Closing    bool      `bun:"-"`                                        // An ephemeral field only set on Polls in the middle of closing.
+	// no creation date, use attached Status.CreatedAt.
+}
+
+// PollVote represents a single instance of vote(s) in a Poll by an account.
+// If the Poll is single-choice, len(.Choices) = 1, if multiple-choice then
+// len(.Choices) >= 1. Can be remote or local.
+type PollVote struct {
+	ID        string    `bun:"type:CHAR(26),pk,nullzero,notnull,unique"`                    // Unique identity string.
+	Choices   []int     `bun:",nullzero,notnull"`                                           // The Poll's option indices of which these are votes for.
+	AccountID string    `bun:"type:CHAR(26),nullzero,notnull,unique:in_poll_by_account"`    // Account ID from which this vote originated.
+	PollID    string    `bun:"type:CHAR(26),nullzero,notnull,unique:in_poll_by_account"`    // Poll ID of which this is a vote in.
+	CreatedAt time.Time `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // The creation date of this PollVote.
+}
diff --git a/internal/db/bundb/migrations/20231002153327_add_status_polls/status.go b/internal/db/bundb/migrations/20231002153327_add_status_polls/status.go
new file mode 100644
index 000000000..8e3252e82
--- /dev/null
+++ b/internal/db/bundb/migrations/20231002153327_add_status_polls/status.go
@@ -0,0 +1,75 @@
+// GoToSocial
+// Copyright (C) GoToSocial Authors admin@gotosocial.org
+// SPDX-License-Identifier: AGPL-3.0-or-later
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package gtsmodel
+
+import "time"
+
+// Status represents a user-created 'post' or 'status' in the database, either remote or local
+type Status struct {
+	ID                       string     `bun:"type:CHAR(26),pk,nullzero,notnull,unique"`                    // id of this item in the database
+	CreatedAt                time.Time  `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // when was item created
+	UpdatedAt                time.Time  `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // when was item last updated
+	FetchedAt                time.Time  `bun:"type:timestamptz,nullzero"`                                   // when was item (remote) last fetched.
+	PinnedAt                 time.Time  `bun:"type:timestamptz,nullzero"`                                   // Status was pinned by owning account at this time.
+	URI                      string     `bun:",unique,nullzero,notnull"`                                    // activitypub URI of this status
+	URL                      string     `bun:",nullzero"`                                                   // web url for viewing this status
+	Content                  string     `bun:""`                                                            // content of this status; likely html-formatted but not guaranteed
+	AttachmentIDs            []string   `bun:"attachments,array"`                                           // Database IDs of any media attachments associated with this status
+	TagIDs                   []string   `bun:"tags,array"`                                                  // Database IDs of any tags used in this status
+	MentionIDs               []string   `bun:"mentions,array"`                                              // Database IDs of any mentions in this status
+	EmojiIDs                 []string   `bun:"emojis,array"`                                                // Database IDs of any emojis used in this status
+	Local                    *bool      `bun:",nullzero,notnull,default:false"`                             // is this status from a local account?
+	AccountID                string     `bun:"type:CHAR(26),nullzero,notnull"`                              // which account posted this status?
+	AccountURI               string     `bun:",nullzero,notnull"`                                           // activitypub uri of the owner of this status
+	InReplyToID              string     `bun:"type:CHAR(26),nullzero"`                                      // id of the status this status replies to
+	InReplyToURI             string     `bun:",nullzero"`                                                   // activitypub uri of the status this status is a reply to
+	InReplyToAccountID       string     `bun:"type:CHAR(26),nullzero"`                                      // id of the account that this status replies to
+	BoostOfID                string     `bun:"type:CHAR(26),nullzero"`                                      // id of the status this status is a boost of
+	BoostOfAccountID         string     `bun:"type:CHAR(26),nullzero"`                                      // id of the account that owns the boosted status
+	ThreadID                 string     `bun:"type:CHAR(26),nullzero"`                                      // id of the thread to which this status belongs; only set for remote statuses if a local account is involved at some point in the thread, otherwise null
+	PollID                   string     `bun:"type:CHAR(26),nullzero"`                                      //
+	ContentWarning           string     `bun:",nullzero"`                                                   // cw string for this status
+	Visibility               Visibility `bun:",nullzero,notnull"`                                           // visibility entry for this status
+	Sensitive                *bool      `bun:",nullzero,notnull,default:false"`                             // mark the status as sensitive?
+	Language                 string     `bun:",nullzero"`                                                   // what language is this status written in?
+	CreatedWithApplicationID string     `bun:"type:CHAR(26),nullzero"`                                      // Which application was used to create this status?
+	ActivityStreamsType      string     `bun:",nullzero,notnull"`                                           // What is the activitystreams type of this status? See: https://www.w3.org/TR/activitystreams-vocabulary/#object-types. Will probably almost always be Note but who knows!.
+	Text                     string     `bun:""`                                                            // Original text of the status without formatting
+	Federated                *bool      `bun:",notnull"`                                                    // This status will be federated beyond the local timeline(s)
+	Boostable                *bool      `bun:",notnull"`                                                    // This status can be boosted/reblogged
+	Replyable                *bool      `bun:",notnull"`                                                    // This status can be replied to
+	Likeable                 *bool      `bun:",notnull"`                                                    // This status can be liked/faved
+}
+
+// Visibility represents the visibility granularity of a status.
+type Visibility string
+
+const (
+	// VisibilityPublic means this status will be visible to everyone on all timelines.
+	VisibilityPublic Visibility = "public"
+	// VisibilityUnlocked means this status will be visible to everyone, but will only show on home timeline to followers, and in lists.
+	VisibilityUnlocked Visibility = "unlocked"
+	// VisibilityFollowersOnly means this status is viewable to followers only.
+	VisibilityFollowersOnly Visibility = "followers_only"
+	// VisibilityMutualsOnly means this status is visible to mutual followers only.
+	VisibilityMutualsOnly Visibility = "mutuals_only"
+	// VisibilityDirect means this status is visible only to mentioned recipients.
+	VisibilityDirect Visibility = "direct"
+	// VisibilityDefault is used when no other setting can be found.
+	VisibilityDefault Visibility = VisibilityUnlocked
+)
diff --git a/internal/db/bundb/migrations/20240620074530_interaction_policy.go b/internal/db/bundb/migrations/20240620074530_interaction_policy.go
index bbc75d9ec..7678af7ed 100644
--- a/internal/db/bundb/migrations/20240620074530_interaction_policy.go
+++ b/internal/db/bundb/migrations/20240620074530_interaction_policy.go
@@ -161,11 +161,14 @@ func init() {
 				return err
 			}
 
+			// Get the mapping of old enum string values to new integer values.
+			visibilityMapping := visibilityEnumMapping[oldmodel.Visibility]()
+
 			// For each status found in this way, update
 			// to new version of interaction policy.
 			for _, oldStatus := range oldStatuses {
 				// Start with default policy for this visibility.
-				v := gtsmodel.Visibility(oldStatus.Visibility)
+				v := visibilityMapping[oldStatus.Visibility]
 				policy := gtsmodel.DefaultInteractionPolicyFor(v)
 
 				if !*oldStatus.Likeable {
diff --git a/internal/db/bundb/migrations/20240620074530_interaction_policy/status.go b/internal/db/bundb/migrations/20240620074530_interaction_policy/status.go
index ae96d047d..615c81b66 100644
--- a/internal/db/bundb/migrations/20240620074530_interaction_policy/status.go
+++ b/internal/db/bundb/migrations/20240620074530_interaction_policy/status.go
@@ -22,40 +22,61 @@ import (
 )
 
 type Status struct {
-	ID                       string    `bun:"type:CHAR(26),pk,nullzero,notnull,unique"`
-	CreatedAt                time.Time `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"`
-	UpdatedAt                time.Time `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"`
-	FetchedAt                time.Time `bun:"type:timestamptz,nullzero"`
-	PinnedAt                 time.Time `bun:"type:timestamptz,nullzero"`
-	URI                      string    `bun:",unique,nullzero,notnull"`
-	URL                      string    `bun:",nullzero"`
-	Content                  string    `bun:""`
-	AttachmentIDs            []string  `bun:"attachments,array"`
-	TagIDs                   []string  `bun:"tags,array"`
-	MentionIDs               []string  `bun:"mentions,array"`
-	EmojiIDs                 []string  `bun:"emojis,array"`
-	Local                    *bool     `bun:",nullzero,notnull,default:false"`
-	AccountID                string    `bun:"type:CHAR(26),nullzero,notnull"`
-	AccountURI               string    `bun:",nullzero,notnull"`
-	InReplyToID              string    `bun:"type:CHAR(26),nullzero"`
-	InReplyToURI             string    `bun:",nullzero"`
-	InReplyToAccountID       string    `bun:"type:CHAR(26),nullzero"`
-	InReplyTo                *Status   `bun:"-"`
-	BoostOfID                string    `bun:"type:CHAR(26),nullzero"`
-	BoostOfURI               string    `bun:"-"`
-	BoostOfAccountID         string    `bun:"type:CHAR(26),nullzero"`
-	BoostOf                  *Status   `bun:"-"`
-	ThreadID                 string    `bun:"type:CHAR(26),nullzero"`
-	PollID                   string    `bun:"type:CHAR(26),nullzero"`
-	ContentWarning           string    `bun:",nullzero"`
-	Visibility               string    `bun:",nullzero,notnull"`
-	Sensitive                *bool     `bun:",nullzero,notnull,default:false"`
-	Language                 string    `bun:",nullzero"`
-	CreatedWithApplicationID string    `bun:"type:CHAR(26),nullzero"`
-	ActivityStreamsType      string    `bun:",nullzero,notnull"`
-	Text                     string    `bun:""`
-	Federated                *bool     `bun:",notnull"`
-	Boostable                *bool     `bun:",notnull"`
-	Replyable                *bool     `bun:",notnull"`
-	Likeable                 *bool     `bun:",notnull"`
+	ID                       string     `bun:"type:CHAR(26),pk,nullzero,notnull,unique"`
+	CreatedAt                time.Time  `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"`
+	UpdatedAt                time.Time  `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"`
+	FetchedAt                time.Time  `bun:"type:timestamptz,nullzero"`
+	PinnedAt                 time.Time  `bun:"type:timestamptz,nullzero"`
+	URI                      string     `bun:",unique,nullzero,notnull"`
+	URL                      string     `bun:",nullzero"`
+	Content                  string     `bun:""`
+	AttachmentIDs            []string   `bun:"attachments,array"`
+	TagIDs                   []string   `bun:"tags,array"`
+	MentionIDs               []string   `bun:"mentions,array"`
+	EmojiIDs                 []string   `bun:"emojis,array"`
+	Local                    *bool      `bun:",nullzero,notnull,default:false"`
+	AccountID                string     `bun:"type:CHAR(26),nullzero,notnull"`
+	AccountURI               string     `bun:",nullzero,notnull"`
+	InReplyToID              string     `bun:"type:CHAR(26),nullzero"`
+	InReplyToURI             string     `bun:",nullzero"`
+	InReplyToAccountID       string     `bun:"type:CHAR(26),nullzero"`
+	InReplyTo                *Status    `bun:"-"`
+	BoostOfID                string     `bun:"type:CHAR(26),nullzero"`
+	BoostOfURI               string     `bun:"-"`
+	BoostOfAccountID         string     `bun:"type:CHAR(26),nullzero"`
+	BoostOf                  *Status    `bun:"-"`
+	ThreadID                 string     `bun:"type:CHAR(26),nullzero"`
+	PollID                   string     `bun:"type:CHAR(26),nullzero"`
+	ContentWarning           string     `bun:",nullzero"`
+	Visibility               Visibility `bun:",nullzero,notnull"`
+	Sensitive                *bool      `bun:",nullzero,notnull,default:false"`
+	Language                 string     `bun:",nullzero"`
+	CreatedWithApplicationID string     `bun:"type:CHAR(26),nullzero"`
+	ActivityStreamsType      string     `bun:",nullzero,notnull"`
+	Text                     string     `bun:""`
+	Federated                *bool      `bun:",notnull"`
+	Boostable                *bool      `bun:",notnull"`
+	Replyable                *bool      `bun:",notnull"`
+	Likeable                 *bool      `bun:",notnull"`
 }
+
+// Visibility represents the visibility granularity of a status.
+type Visibility string
+
+const (
+	// VisibilityNone means nobody can see this.
+	// It's only used for web status visibility.
+	VisibilityNone Visibility = "none"
+	// VisibilityPublic means this status will be visible to everyone on all timelines.
+	VisibilityPublic Visibility = "public"
+	// VisibilityUnlocked means this status will be visible to everyone, but will only show on home timeline to followers, and in lists.
+	VisibilityUnlocked Visibility = "unlocked"
+	// VisibilityFollowersOnly means this status is viewable to followers only.
+	VisibilityFollowersOnly Visibility = "followers_only"
+	// VisibilityMutualsOnly means this status is visible to mutual followers only.
+	VisibilityMutualsOnly Visibility = "mutuals_only"
+	// VisibilityDirect means this status is visible only to mentioned recipients.
+	VisibilityDirect Visibility = "direct"
+	// VisibilityDefault is used when no other setting can be found.
+	VisibilityDefault Visibility = VisibilityUnlocked
+)
diff --git a/internal/db/bundb/migrations/20240904084406_fedi_api_reject_interaction.go b/internal/db/bundb/migrations/20240904084406_fedi_api_reject_interaction.go
index d97d35372..d3c0f49a4 100644
--- a/internal/db/bundb/migrations/20240904084406_fedi_api_reject_interaction.go
+++ b/internal/db/bundb/migrations/20240904084406_fedi_api_reject_interaction.go
@@ -20,7 +20,7 @@ package migrations
 import (
 	"context"
 
-	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
+	gtsmodel "github.com/superseriousbusiness/gotosocial/internal/db/bundb/migrations/20240904084406_fedi_api_reject_interaction"
 	"github.com/uptrace/bun"
 )
 
diff --git a/internal/db/bundb/migrations/20240904084406_fedi_api_reject_interaction/sinbinstatus.go b/internal/db/bundb/migrations/20240904084406_fedi_api_reject_interaction/sinbinstatus.go
new file mode 100644
index 000000000..e18affa9b
--- /dev/null
+++ b/internal/db/bundb/migrations/20240904084406_fedi_api_reject_interaction/sinbinstatus.go
@@ -0,0 +1,66 @@
+// GoToSocial
+// Copyright (C) GoToSocial Authors admin@gotosocial.org
+// SPDX-License-Identifier: AGPL-3.0-or-later
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package gtsmodel
+
+import "time"
+
+// SinBinStatus represents a status that's been rejected and/or reported + quarantined.
+//
+// Automatically rejected statuses are not put in the sin bin, only statuses that were
+// stored on the instance and which someone (local or remote) has subsequently rejected.
+type SinBinStatus struct {
+	ID                  string     `bun:"type:CHAR(26),pk,nullzero,notnull,unique"`                    // ID of this item in the database.
+	CreatedAt           time.Time  `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // Creation time of this item.
+	UpdatedAt           time.Time  `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // Last-updated time of this item.
+	URI                 string     `bun:",unique,nullzero,notnull"`                                    // ActivityPub URI/ID of this status.
+	URL                 string     `bun:",nullzero"`                                                   // Web url for viewing this status.
+	Domain              string     `bun:",nullzero"`                                                   // Domain of the status, will be null if this is a local status, otherwise something like `example.org`.
+	AccountURI          string     `bun:",nullzero,notnull"`                                           // ActivityPub uri of the author of this status.
+	InReplyToURI        string     `bun:",nullzero"`                                                   // ActivityPub uri of the status this status is a reply to.
+	Content             string     `bun:",nullzero"`                                                   // Content of this status.
+	AttachmentLinks     []string   `bun:",nullzero,array"`                                             // Links to attachments of this status.
+	MentionTargetURIs   []string   `bun:",nullzero,array"`                                             // URIs of mentioned accounts.
+	EmojiLinks          []string   `bun:",nullzero,array"`                                             // Links to any emoji images used in this status.
+	PollOptions         []string   `bun:",nullzero,array"`                                             // String values of any poll options used in this status.
+	ContentWarning      string     `bun:",nullzero"`                                                   // CW / subject string for this status.
+	Visibility          Visibility `bun:",nullzero,notnull"`                                           // Visibility level of this status.
+	Sensitive           *bool      `bun:",nullzero,notnull,default:false"`                             // Mark the status as sensitive.
+	Language            string     `bun:",nullzero"`                                                   // Language code for this status.
+	ActivityStreamsType string     `bun:",nullzero,notnull"`                                           // ActivityStreams type of this status.
+}
+
+// Visibility represents the visibility granularity of a status.
+type Visibility string
+
+const (
+	// VisibilityNone means nobody can see this.
+	// It's only used for web status visibility.
+	VisibilityNone Visibility = "none"
+	// VisibilityPublic means this status will be visible to everyone on all timelines.
+	VisibilityPublic Visibility = "public"
+	// VisibilityUnlocked means this status will be visible to everyone, but will only show on home timeline to followers, and in lists.
+	VisibilityUnlocked Visibility = "unlocked"
+	// VisibilityFollowersOnly means this status is viewable to followers only.
+	VisibilityFollowersOnly Visibility = "followers_only"
+	// VisibilityMutualsOnly means this status is visible to mutual followers only.
+	VisibilityMutualsOnly Visibility = "mutuals_only"
+	// VisibilityDirect means this status is visible only to mentioned recipients.
+	VisibilityDirect Visibility = "direct"
+	// VisibilityDefault is used when no other setting can be found.
+	VisibilityDefault Visibility = VisibilityUnlocked
+)
diff --git a/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints.go b/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints.go
new file mode 100644
index 000000000..10ae95c17
--- /dev/null
+++ b/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints.go
@@ -0,0 +1,249 @@
+// GoToSocial
+// Copyright (C) GoToSocial Authors admin@gotosocial.org
+// SPDX-License-Identifier: AGPL-3.0-or-later
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package migrations
+
+import (
+	"context"
+	"errors"
+
+	old_gtsmodel "github.com/superseriousbusiness/gotosocial/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints"
+	"github.com/superseriousbusiness/gotosocial/internal/gtserror"
+	new_gtsmodel "github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
+	"github.com/superseriousbusiness/gotosocial/internal/log"
+	"github.com/superseriousbusiness/gotosocial/internal/util"
+
+	"github.com/uptrace/bun"
+)
+
+func init() {
+	up := func(ctx context.Context, db *bun.DB) error {
+		return db.RunInTx(ctx, nil, func(ctx context.Context, tx bun.Tx) error {
+
+			// Tables with visibility types.
+			var visTables = []struct {
+				Table   string
+				Column  string
+				Default *new_gtsmodel.Visibility
+			}{
+				{Table: "statuses", Column: "visibility"},
+				{Table: "sin_bin_statuses", Column: "visibility"},
+				{Table: "account_settings", Column: "privacy", Default: util.Ptr(new_gtsmodel.VisibilityDefault)},
+				{Table: "account_settings", Column: "web_visibility", Default: util.Ptr(new_gtsmodel.VisibilityDefault)},
+			}
+
+			// Visibility type indices.
+			var visIndices = []struct {
+				name  string
+				cols  []string
+				order string
+			}{
+				{
+					name:  "statuses_visibility_idx",
+					cols:  []string{"visibility"},
+					order: "",
+				},
+				{
+					name:  "statuses_profile_web_view_idx",
+					cols:  []string{"account_id", "visibility"},
+					order: "id DESC",
+				},
+				{
+					name:  "statuses_public_timeline_idx",
+					cols:  []string{"visibility"},
+					order: "id DESC",
+				},
+			}
+
+			// Before making changes to the visibility col
+			// we must drop all indices that rely on it.
+			for _, index := range visIndices {
+				if _, err := tx.NewDropIndex().
+					Index(index.name).
+					Exec(ctx); err != nil {
+					return err
+				}
+			}
+
+			// Get the mapping of old enum string values to new integer values.
+			visibilityMapping := visibilityEnumMapping[old_gtsmodel.Visibility]()
+
+			// Convert all visibility tables.
+			for _, table := range visTables {
+				if err := convertEnums(ctx, tx, table.Table, table.Column,
+					visibilityMapping, table.Default); err != nil {
+					return err
+				}
+			}
+
+			// Recreate the visibility indices.
+			for _, index := range visIndices {
+				q := tx.NewCreateIndex().
+					Table("statuses").
+					Index(index.name).
+					Column(index.cols...)
+				if index.order != "" {
+					q = q.ColumnExpr(index.order)
+				}
+				if _, err := q.Exec(ctx); err != nil {
+					return err
+				}
+			}
+
+			// Get the mapping of old enum string values to the new integer value types.
+			notificationMapping := notificationEnumMapping[old_gtsmodel.NotificationType]()
+
+			// Migrate over old notifications table column over to new column type.
+			if err := convertEnums(ctx, tx, "notifications", "notification_type", //nolint:revive
+				notificationMapping, nil); err != nil {
+				return err
+			}
+
+			return nil
+		})
+	}
+
+	down := func(ctx context.Context, db *bun.DB) error {
+		return db.RunInTx(ctx, nil, func(ctx context.Context, tx bun.Tx) error {
+			return nil
+		})
+	}
+
+	if err := Migrations.Register(up, down); err != nil {
+		panic(err)
+	}
+}
+
+// convertEnums performs a transaction that converts
+// a table's column of our old-style enums (strings) to
+// more performant and space-saving integer types.
+func convertEnums[OldType ~string, NewType ~int16](
+	ctx context.Context,
+	tx bun.Tx,
+	table string,
+	column string,
+	mapping map[OldType]NewType,
+	defaultValue *NewType,
+) error {
+	if len(mapping) == 0 {
+		return errors.New("empty mapping")
+	}
+
+	// Generate new column name.
+	newColumn := column + "_new"
+
+	log.Infof(ctx, "converting %s.%s enums; "+
+		"this may take a while, please don't interrupt!",
+		table, column,
+	)
+
+	// Ensure a default value.
+	if defaultValue == nil {
+		var zero NewType
+		defaultValue = &zero
+	}
+
+	// Add new column to database.
+	if _, err := tx.NewAddColumn().
+		Table(table).
+		ColumnExpr("? SMALLINT NOT NULL DEFAULT ?",
+			bun.Ident(newColumn),
+			*defaultValue).
+		Exec(ctx); err != nil {
+		return gtserror.Newf("error adding new column: %w", err)
+	}
+
+	// Get a count of all in table.
+	total, err := tx.NewSelect().
+		Table(table).
+		Count(ctx)
+	if err != nil {
+		return gtserror.Newf("error selecting total count: %w", err)
+	}
+
+	var updated int
+	for old, new := range mapping {
+
+		// Update old to new values.
+		res, err := tx.NewUpdate().
+			Table(table).
+			Where("? = ?", bun.Ident(column), old).
+			Set("? = ?", bun.Ident(newColumn), new).
+			Exec(ctx)
+		if err != nil {
+			return gtserror.Newf("error updating old column values: %w", err)
+		}
+
+		// Count number items updated.
+		n, _ := res.RowsAffected()
+		updated += int(n)
+	}
+
+	// Check total updated.
+	if total != updated {
+		log.Warnf(ctx, "total=%d does not match updated=%d", total, updated)
+	}
+
+	// Drop the old column from table.
+	if _, err := tx.NewDropColumn().
+		Table(table).
+		ColumnExpr("?", bun.Ident(column)).
+		Exec(ctx); err != nil {
+		return gtserror.Newf("error dropping old column: %w", err)
+	}
+
+	// Rename new to old name.
+	if _, err := tx.NewRaw(
+		"ALTER TABLE ? RENAME COLUMN ? TO ?",
+		bun.Ident(table),
+		bun.Ident(newColumn),
+		bun.Ident(column),
+	).Exec(ctx); err != nil {
+		return gtserror.Newf("error renaming new column: %w", err)
+	}
+
+	return nil
+}
+
+// visibilityEnumMapping maps old Visibility enum values to their newer integer type.
+func visibilityEnumMapping[T ~string]() map[T]new_gtsmodel.Visibility {
+	return map[T]new_gtsmodel.Visibility{
+		T(old_gtsmodel.VisibilityNone):          new_gtsmodel.VisibilityNone,
+		T(old_gtsmodel.VisibilityPublic):        new_gtsmodel.VisibilityPublic,
+		T(old_gtsmodel.VisibilityUnlocked):      new_gtsmodel.VisibilityUnlocked,
+		T(old_gtsmodel.VisibilityFollowersOnly): new_gtsmodel.VisibilityFollowersOnly,
+		T(old_gtsmodel.VisibilityMutualsOnly):   new_gtsmodel.VisibilityMutualsOnly,
+		T(old_gtsmodel.VisibilityDirect):        new_gtsmodel.VisibilityDirect,
+	}
+}
+
+// notificationEnumMapping maps old NotificationType enum values to their newer integer type.
+func notificationEnumMapping[T ~string]() map[T]new_gtsmodel.NotificationType {
+	return map[T]new_gtsmodel.NotificationType{
+		T(old_gtsmodel.NotificationFollow):        new_gtsmodel.NotificationFollow,
+		T(old_gtsmodel.NotificationFollowRequest): new_gtsmodel.NotificationFollowRequest,
+		T(old_gtsmodel.NotificationMention):       new_gtsmodel.NotificationMention,
+		T(old_gtsmodel.NotificationReblog):        new_gtsmodel.NotificationReblog,
+		T(old_gtsmodel.NotificationFave):          new_gtsmodel.NotificationFave,
+		T(old_gtsmodel.NotificationPoll):          new_gtsmodel.NotificationPoll,
+		T(old_gtsmodel.NotificationStatus):        new_gtsmodel.NotificationStatus,
+		T(old_gtsmodel.NotificationSignup):        new_gtsmodel.NotificationSignup,
+		T(old_gtsmodel.NotificationPendingFave):   new_gtsmodel.NotificationPendingFave,
+		T(old_gtsmodel.NotificationPendingReply):  new_gtsmodel.NotificationPendingReply,
+		T(old_gtsmodel.NotificationPendingReblog): new_gtsmodel.NotificationPendingReblog,
+	}
+}
diff --git a/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/accountsettings.go b/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/accountsettings.go
new file mode 100644
index 000000000..9a9cfd8e1
--- /dev/null
+++ b/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/accountsettings.go
@@ -0,0 +1,45 @@
+// GoToSocial
+// Copyright (C) GoToSocial Authors admin@gotosocial.org
+// SPDX-License-Identifier: AGPL-3.0-or-later
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package gtsmodel
+
+import (
+	"time"
+
+	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
+)
+
+// AccountSettings models settings / preferences for a local, non-instance account.
+type AccountSettings struct {
+	AccountID                      string                      `bun:"type:CHAR(26),pk,nullzero,notnull,unique"`                    // AccountID that owns this settings.
+	CreatedAt                      time.Time                   `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // when was item created.
+	UpdatedAt                      time.Time                   `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // when was item was last updated.
+	Privacy                        Visibility                  `bun:",nullzero,default:3"`                                         // Default post privacy for this account
+	Sensitive                      *bool                       `bun:",nullzero,notnull,default:false"`                             // Set posts from this account to sensitive by default?
+	Language                       string                      `bun:",nullzero,notnull,default:'en'"`                              // What language does this account post in?
+	StatusContentType              string                      `bun:",nullzero"`                                                   // What is the default format for statuses posted by this account (only for local accounts).
+	Theme                          string                      `bun:",nullzero"`                                                   // Preset CSS theme filename selected by this Account (empty string if nothing set).
+	CustomCSS                      string                      `bun:",nullzero"`                                                   // Custom CSS that should be displayed for this Account's profile and statuses.
+	EnableRSS                      *bool                       `bun:",nullzero,notnull,default:false"`                             // enable RSS feed subscription for this account's public posts at [URL]/feed
+	HideCollections                *bool                       `bun:",nullzero,notnull,default:false"`                             // Hide this account's followers/following collections.
+	WebVisibility                  Visibility                  `bun:",nullzero,notnull,default:3"`                                 // Visibility level of statuses that visitors can view via the web profile.
+	InteractionPolicyDirect        *gtsmodel.InteractionPolicy `bun:""`                                                            // Interaction policy to use for new direct visibility statuses by this account. If null, assume default policy.
+	InteractionPolicyMutualsOnly   *gtsmodel.InteractionPolicy `bun:""`                                                            // Interaction policy to use for new mutuals only visibility statuses. If null, assume default policy.
+	InteractionPolicyFollowersOnly *gtsmodel.InteractionPolicy `bun:""`                                                            // Interaction policy to use for new followers only visibility statuses. If null, assume default policy.
+	InteractionPolicyUnlocked      *gtsmodel.InteractionPolicy `bun:""`                                                            // Interaction policy to use for new unlocked visibility statuses. If null, assume default policy.
+	InteractionPolicyPublic        *gtsmodel.InteractionPolicy `bun:""`                                                            // Interaction policy to use for new public visibility statuses. If null, assume default policy.
+}
diff --git a/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/notification.go b/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/notification.go
new file mode 100644
index 000000000..77166a35d
--- /dev/null
+++ b/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/notification.go
@@ -0,0 +1,57 @@
+// GoToSocial
+// Copyright (C) GoToSocial Authors admin@gotosocial.org
+// SPDX-License-Identifier: AGPL-3.0-or-later
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package gtsmodel
+
+import (
+	"time"
+
+	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
+)
+
+// Notification models an alert/notification sent to an account about something like a reblog, like, new follow request, etc.
+type Notification struct {
+	ID               string            `bun:"type:CHAR(26),pk,nullzero,notnull,unique"`                    // id of this item in the database
+	CreatedAt        time.Time         `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // when was item created
+	UpdatedAt        time.Time         `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // when was item last updated
+	NotificationType NotificationType  `bun:",nullzero,notnull"`                                           // Type of this notification
+	TargetAccountID  string            `bun:"type:CHAR(26),nullzero,notnull"`                              // ID of the account targeted by the notification (ie., who will receive the notification?)
+	TargetAccount    *gtsmodel.Account `bun:"-"`                                                           // Account corresponding to TargetAccountID. Can be nil, always check first + select using ID if necessary.
+	OriginAccountID  string            `bun:"type:CHAR(26),nullzero,notnull"`                              // ID of the account that performed the action that created the notification.
+	OriginAccount    *gtsmodel.Account `bun:"-"`                                                           // Account corresponding to OriginAccountID. Can be nil, always check first + select using ID if necessary.
+	StatusID         string            `bun:"type:CHAR(26),nullzero"`                                      // If the notification pertains to a status, what is the database ID of that status?
+	Status           *Status           `bun:"-"`                                                           // Status corresponding to StatusID. Can be nil, always check first + select using ID if necessary.
+	Read             *bool             `bun:",nullzero,notnull,default:false"`                             // Notification has been seen/read
+}
+
+// NotificationType describes the reason/type of this notification.
+type NotificationType string
+
+// Notification Types
+const (
+	NotificationFollow        NotificationType = "follow"            // NotificationFollow -- someone followed you
+	NotificationFollowRequest NotificationType = "follow_request"    // NotificationFollowRequest -- someone requested to follow you
+	NotificationMention       NotificationType = "mention"           // NotificationMention -- someone mentioned you in their status
+	NotificationReblog        NotificationType = "reblog"            // NotificationReblog -- someone boosted one of your statuses
+	NotificationFave          NotificationType = "favourite"         // NotificationFave -- someone faved/liked one of your statuses
+	NotificationPoll          NotificationType = "poll"              // NotificationPoll -- a poll you voted in or created has ended
+	NotificationStatus        NotificationType = "status"            // NotificationStatus -- someone you enabled notifications for has posted a status.
+	NotificationSignup        NotificationType = "admin.sign_up"     // NotificationSignup -- someone has submitted a new account sign-up to the instance.
+	NotificationPendingFave   NotificationType = "pending.favourite" // Someone has faved a status of yours, which requires approval by you.
+	NotificationPendingReply  NotificationType = "pending.reply"     // Someone has replied to a status of yours, which requires approval by you.
+	NotificationPendingReblog NotificationType = "pending.reblog"    // Someone has boosted a status of yours, which requires approval by you.
+)
diff --git a/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/sinbinstatus.go b/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/sinbinstatus.go
new file mode 100644
index 000000000..d1dfcddd1
--- /dev/null
+++ b/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/sinbinstatus.go
@@ -0,0 +1,45 @@
+// GoToSocial
+// Copyright (C) GoToSocial Authors admin@gotosocial.org
+// SPDX-License-Identifier: AGPL-3.0-or-later
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package gtsmodel
+
+import "time"
+
+// SinBinStatus represents a status that's been rejected and/or reported + quarantined.
+//
+// Automatically rejected statuses are not put in the sin bin, only statuses that were
+// stored on the instance and which someone (local or remote) has subsequently rejected.
+type SinBinStatus struct {
+	ID                  string     `bun:"type:CHAR(26),pk,nullzero,notnull,unique"`                    // ID of this item in the database.
+	CreatedAt           time.Time  `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // Creation time of this item.
+	UpdatedAt           time.Time  `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // Last-updated time of this item.
+	URI                 string     `bun:",unique,nullzero,notnull"`                                    // ActivityPub URI/ID of this status.
+	URL                 string     `bun:",nullzero"`                                                   // Web url for viewing this status.
+	Domain              string     `bun:",nullzero"`                                                   // Domain of the status, will be null if this is a local status, otherwise something like `example.org`.
+	AccountURI          string     `bun:",nullzero,notnull"`                                           // ActivityPub uri of the author of this status.
+	InReplyToURI        string     `bun:",nullzero"`                                                   // ActivityPub uri of the status this status is a reply to.
+	Content             string     `bun:",nullzero"`                                                   // Content of this status.
+	AttachmentLinks     []string   `bun:",nullzero,array"`                                             // Links to attachments of this status.
+	MentionTargetURIs   []string   `bun:",nullzero,array"`                                             // URIs of mentioned accounts.
+	EmojiLinks          []string   `bun:",nullzero,array"`                                             // Links to any emoji images used in this status.
+	PollOptions         []string   `bun:",nullzero,array"`                                             // String values of any poll options used in this status.
+	ContentWarning      string     `bun:",nullzero"`                                                   // CW / subject string for this status.
+	Visibility          Visibility `bun:",nullzero,notnull"`                                           // Visibility level of this status.
+	Sensitive           *bool      `bun:",nullzero,notnull,default:false"`                             // Mark the status as sensitive.
+	Language            string     `bun:",nullzero"`                                                   // Language code for this status.
+	ActivityStreamsType string     `bun:",nullzero,notnull"`                                           // ActivityStreams type of this status.
+}
diff --git a/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/status.go b/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/status.go
new file mode 100644
index 000000000..38583c7fc
--- /dev/null
+++ b/internal/db/bundb/migrations/20241121121623_enum_strings_to_ints/status.go
@@ -0,0 +1,95 @@
+// GoToSocial
+// Copyright (C) GoToSocial Authors admin@gotosocial.org
+// SPDX-License-Identifier: AGPL-3.0-or-later
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package gtsmodel
+
+import (
+	"time"
+
+	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
+)
+
+// Status represents a user-created 'post' or 'status' in the database, either remote or local
+type Status struct {
+	ID                       string                      `bun:"type:CHAR(26),pk,nullzero,notnull,unique"`                    // id of this item in the database
+	CreatedAt                time.Time                   `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // when was item created
+	UpdatedAt                time.Time                   `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // when was item last updated
+	FetchedAt                time.Time                   `bun:"type:timestamptz,nullzero"`                                   // when was item (remote) last fetched.
+	PinnedAt                 time.Time                   `bun:"type:timestamptz,nullzero"`                                   // Status was pinned by owning account at this time.
+	URI                      string                      `bun:",unique,nullzero,notnull"`                                    // activitypub URI of this status
+	URL                      string                      `bun:",nullzero"`                                                   // web url for viewing this status
+	Content                  string                      `bun:""`                                                            // content of this status; likely html-formatted but not guaranteed
+	AttachmentIDs            []string                    `bun:"attachments,array"`                                           // Database IDs of any media attachments associated with this status
+	Attachments              []*gtsmodel.MediaAttachment `bun:"attached_media,rel:has-many"`                                 // Attachments corresponding to attachmentIDs
+	TagIDs                   []string                    `bun:"tags,array"`                                                  // Database IDs of any tags used in this status
+	Tags                     []*gtsmodel.Tag             `bun:"attached_tags,m2m:status_to_tags"`                            // Tags corresponding to tagIDs. https://bun.uptrace.dev/guide/relations.html#many-to-many-relation
+	MentionIDs               []string                    `bun:"mentions,array"`                                              // Database IDs of any mentions in this status
+	Mentions                 []*gtsmodel.Mention         `bun:"attached_mentions,rel:has-many"`                              // Mentions corresponding to mentionIDs
+	EmojiIDs                 []string                    `bun:"emojis,array"`                                                // Database IDs of any emojis used in this status
+	Emojis                   []*gtsmodel.Emoji           `bun:"attached_emojis,m2m:status_to_emojis"`                        // Emojis corresponding to emojiIDs. https://bun.uptrace.dev/guide/relations.html#many-to-many-relation
+	Local                    *bool                       `bun:",nullzero,notnull,default:false"`                             // is this status from a local account?
+	AccountID                string                      `bun:"type:CHAR(26),nullzero,notnull"`                              // which account posted this status?
+	Account                  *gtsmodel.Account           `bun:"rel:belongs-to"`                                              // account corresponding to accountID
+	AccountURI               string                      `bun:",nullzero,notnull"`                                           // activitypub uri of the owner of this status
+	InReplyToID              string                      `bun:"type:CHAR(26),nullzero"`                                      // id of the status this status replies to
+	InReplyToURI             string                      `bun:",nullzero"`                                                   // activitypub uri of the status this status is a reply to
+	InReplyToAccountID       string                      `bun:"type:CHAR(26),nullzero"`                                      // id of the account that this status replies to
+	InReplyTo                *Status                     `bun:"-"`                                                           // status corresponding to inReplyToID
+	InReplyToAccount         *gtsmodel.Account           `bun:"rel:belongs-to"`                                              // account corresponding to inReplyToAccountID
+	BoostOfID                string                      `bun:"type:CHAR(26),nullzero"`                                      // id of the status this status is a boost of
+	BoostOfURI               string                      `bun:"-"`                                                           // URI of the status this status is a boost of; field not inserted in the db, just for dereferencing purposes.
+	BoostOfAccountID         string                      `bun:"type:CHAR(26),nullzero"`                                      // id of the account that owns the boosted status
+	BoostOf                  *Status                     `bun:"-"`                                                           // status that corresponds to boostOfID
+	BoostOfAccount           *gtsmodel.Account           `bun:"rel:belongs-to"`                                              // account that corresponds to boostOfAccountID
+	ThreadID                 string                      `bun:"type:CHAR(26),nullzero"`                                      // id of the thread to which this status belongs; only set for remote statuses if a local account is involved at some point in the thread, otherwise null
+	PollID                   string                      `bun:"type:CHAR(26),nullzero"`                                      //
+	Poll                     *gtsmodel.Poll              `bun:"-"`                                                           //
+	ContentWarning           string                      `bun:",nullzero"`                                                   // cw string for this status
+	Visibility               Visibility                  `bun:",nullzero,notnull"`                                           // visibility entry for this status
+	Sensitive                *bool                       `bun:",nullzero,notnull,default:false"`                             // mark the status as sensitive?
+	Language                 string                      `bun:",nullzero"`                                                   // what language is this status written in?
+	CreatedWithApplicationID string                      `bun:"type:CHAR(26),nullzero"`                                      // Which application was used to create this status?
+	CreatedWithApplication   *gtsmodel.Application       `bun:"rel:belongs-to"`                                              // application corresponding to createdWithApplicationID
+	ActivityStreamsType      string                      `bun:",nullzero,notnull"`                                           // What is the activitystreams type of this status? See: https://www.w3.org/TR/activitystreams-vocabulary/#object-types. Will probably almost always be Note but who knows!.
+	Text                     string                      `bun:""`                                                            // Original text of the status without formatting
+	Federated                *bool                       `bun:",notnull"`                                                    // This status will be federated beyond the local timeline(s)
+	InteractionPolicy        *gtsmodel.InteractionPolicy `bun:""`                                                            // InteractionPolicy for this status. If null then the default InteractionPolicy should be assumed for this status's Visibility. Always null for boost wrappers.
+	PendingApproval          *bool                       `bun:",nullzero,notnull,default:false"`                             // If true then status is a reply or boost wrapper that must be Approved by the reply-ee or boost-ee before being fully distributed.
+	PreApproved              bool                        `bun:"-"`                                                           // If true, then status is a reply to or boost wrapper of a status on our instance, has permission to do the interaction, and an Accept should be sent out for it immediately. Field not stored in the DB.
+	ApprovedByURI            string                      `bun:",nullzero"`                                                   // URI of an Accept Activity that approves the Announce or Create Activity that this status was/will be attached to.
+}
+
+// Visibility represents the visibility granularity of a status.
+type Visibility string
+
+const (
+	// VisibilityNone means nobody can see this.
+	// It's only used for web status visibility.
+	VisibilityNone Visibility = "none"
+	// VisibilityPublic means this status will be visible to everyone on all timelines.
+	VisibilityPublic Visibility = "public"
+	// VisibilityUnlocked means this status will be visible to everyone, but will only show on home timeline to followers, and in lists.
+	VisibilityUnlocked Visibility = "unlocked"
+	// VisibilityFollowersOnly means this status is viewable to followers only.
+	VisibilityFollowersOnly Visibility = "followers_only"
+	// VisibilityMutualsOnly means this status is visible to mutual followers only.
+	VisibilityMutualsOnly Visibility = "mutuals_only"
+	// VisibilityDirect means this status is visible only to mentioned recipients.
+	VisibilityDirect Visibility = "direct"
+	// VisibilityDefault is used when no other setting can be found.
+	VisibilityDefault Visibility = VisibilityUnlocked
+)
diff --git a/internal/db/bundb/notification.go b/internal/db/bundb/notification.go
index ef2527637..a20ab7e3f 100644
--- a/internal/db/bundb/notification.go
+++ b/internal/db/bundb/notification.go
@@ -196,8 +196,8 @@ func (n *notificationDB) GetAccountNotifications(
 	sinceID string,
 	minID string,
 	limit int,
-	types []string,
-	excludeTypes []string,
+	types []gtsmodel.NotificationType,
+	excludeTypes []gtsmodel.NotificationType,
 ) ([]*gtsmodel.Notification, error) {
 	// Ensure reasonable
 	if limit < 0 {
@@ -303,7 +303,7 @@ func (n *notificationDB) DeleteNotificationByID(ctx context.Context, id string)
 	return nil
 }
 
-func (n *notificationDB) DeleteNotifications(ctx context.Context, types []string, targetAccountID string, originAccountID string) error {
+func (n *notificationDB) DeleteNotifications(ctx context.Context, types []gtsmodel.NotificationType, targetAccountID string, originAccountID string) error {
 	if targetAccountID == "" && originAccountID == "" {
 		return gtserror.New("one of targetAccountID or originAccountID must be set")
 	}
diff --git a/internal/db/bundb/relationship_follow_req.go b/internal/db/bundb/relationship_follow_req.go
index 030c99c58..f36d626ca 100644
--- a/internal/db/bundb/relationship_follow_req.go
+++ b/internal/db/bundb/relationship_follow_req.go
@@ -265,8 +265,8 @@ func (r *relationshipDB) AcceptFollowRequest(ctx context.Context, sourceAccountI
 	}
 
 	// Delete original follow request notification
-	if err := r.state.DB.DeleteNotifications(ctx, []string{
-		string(gtsmodel.NotificationFollowRequest),
+	if err := r.state.DB.DeleteNotifications(ctx, []gtsmodel.NotificationType{
+		gtsmodel.NotificationFollowRequest,
 	}, targetAccountID, sourceAccountID); err != nil {
 		return nil, err
 	}
@@ -281,8 +281,8 @@ func (r *relationshipDB) RejectFollowRequest(ctx context.Context, sourceAccountI
 	}
 
 	// Delete follow request notification
-	return r.state.DB.DeleteNotifications(ctx, []string{
-		string(gtsmodel.NotificationFollowRequest),
+	return r.state.DB.DeleteNotifications(ctx, []gtsmodel.NotificationType{
+		gtsmodel.NotificationFollowRequest,
 	}, targetAccountID, sourceAccountID)
 }
 
diff --git a/internal/db/notification.go b/internal/db/notification.go
index deb58835a..c962023be 100644
--- a/internal/db/notification.go
+++ b/internal/db/notification.go
@@ -29,7 +29,7 @@ type Notification interface {
 	//
 	// Returned notifications will be ordered ID descending (ie., highest/newest to lowest/oldest).
 	// If types is empty, *all* notification types will be included.
-	GetAccountNotifications(ctx context.Context, accountID string, maxID string, sinceID string, minID string, limit int, types []string, excludeTypes []string) ([]*gtsmodel.Notification, error)
+	GetAccountNotifications(ctx context.Context, accountID string, maxID string, sinceID string, minID string, limit int, types []gtsmodel.NotificationType, excludeTypes []gtsmodel.NotificationType) ([]*gtsmodel.Notification, error)
 
 	// GetNotificationByID returns one notification according to its id.
 	GetNotificationByID(ctx context.Context, id string) (*gtsmodel.Notification, error)
@@ -64,7 +64,7 @@ type Notification interface {
 	// originate from originAccountID will be deleted.
 	//
 	// At least one parameter must not be an empty string.
-	DeleteNotifications(ctx context.Context, types []string, targetAccountID string, originAccountID string) error
+	DeleteNotifications(ctx context.Context, types []gtsmodel.NotificationType, targetAccountID string, originAccountID string) error
 
 	// DeleteNotificationsForStatus deletes all notifications that relate to
 	// the given statusID. This function is useful when a status has been deleted,
diff --git a/internal/gtsmodel/accountsettings.go b/internal/gtsmodel/accountsettings.go
index 3151ba5b7..4624aa0b1 100644
--- a/internal/gtsmodel/accountsettings.go
+++ b/internal/gtsmodel/accountsettings.go
@@ -26,7 +26,7 @@ type AccountSettings struct {
 	AccountID                      string             `bun:"type:CHAR(26),pk,nullzero,notnull,unique"`                    // AccountID that owns this settings.
 	CreatedAt                      time.Time          `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // when was item created.
 	UpdatedAt                      time.Time          `bun:"type:timestamptz,nullzero,notnull,default:current_timestamp"` // when was item was last updated.
-	Privacy                        Visibility         `bun:",nullzero"`                                                   // Default post privacy for this account
+	Privacy                        Visibility         `bun:",nullzero,default:3"`                                         // Default post privacy for this account
 	Sensitive                      *bool              `bun:",nullzero,notnull,default:false"`                             // Set posts from this account to sensitive by default?
 	Language                       string             `bun:",nullzero,notnull,default:'en'"`                              // What language does this account post in?
 	StatusContentType              string             `bun:",nullzero"`                                                   // What is the default format for statuses posted by this account (only for local accounts).
@@ -34,7 +34,7 @@ type AccountSettings struct {
 	CustomCSS                      string             `bun:",nullzero"`                                                   // Custom CSS that should be displayed for this Account's profile and statuses.
 	EnableRSS                      *bool              `bun:",nullzero,notnull,default:false"`                             // enable RSS feed subscription for this account's public posts at [URL]/feed
 	HideCollections                *bool              `bun:",nullzero,notnull,default:false"`                             // Hide this account's followers/following collections.
-	WebVisibility                  Visibility         `bun:",nullzero,notnull,default:public"`                            // Visibility level of statuses that visitors can view via the web profile.
+	WebVisibility                  Visibility         `bun:",nullzero,notnull,default:3"`                                 // Visibility level of statuses that visitors can view via the web profile.
 	InteractionPolicyDirect        *InteractionPolicy `bun:""`                                                            // Interaction policy to use for new direct visibility statuses by this account. If null, assume default policy.
 	InteractionPolicyMutualsOnly   *InteractionPolicy `bun:""`                                                            // Interaction policy to use for new mutuals only visibility statuses. If null, assume default policy.
 	InteractionPolicyFollowersOnly *InteractionPolicy `bun:""`                                                            // Interaction policy to use for new followers only visibility statuses. If null, assume default policy.
diff --git a/internal/gtsmodel/common.go b/internal/gtsmodel/common.go
new file mode 100644
index 000000000..e740bbb81
--- /dev/null
+++ b/internal/gtsmodel/common.go
@@ -0,0 +1,24 @@
+// GoToSocial
+// Copyright (C) GoToSocial Authors admin@gotosocial.org
+// SPDX-License-Identifier: AGPL-3.0-or-later
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package gtsmodel
+
+// enumType is the type we (at least, should) use
+// for database enum types. it is the largest size
+// supported by a PostgreSQL SMALLINT, since an
+// SQLite SMALLINT is actually variable in size.
+type enumType int16
diff --git a/internal/gtsmodel/interactionpolicy.go b/internal/gtsmodel/interactionpolicy.go
index d8d890e69..7fcafc80d 100644
--- a/internal/gtsmodel/interactionpolicy.go
+++ b/internal/gtsmodel/interactionpolicy.go
@@ -224,7 +224,7 @@ func DefaultInteractionPolicyFor(v Visibility) *InteractionPolicy {
 	case VisibilityDirect:
 		return DefaultInteractionPolicyDirect()
 	default:
-		panic("visibility " + v + " not recognized")
+		panic("invalid visibility")
 	}
 }
 
diff --git a/internal/gtsmodel/notification.go b/internal/gtsmodel/notification.go
index 5cf6b061a..49f1fe2bb 100644
--- a/internal/gtsmodel/notification.go
+++ b/internal/gtsmodel/notification.go
@@ -34,20 +34,51 @@ type Notification struct {
 	Read             *bool            `bun:",nullzero,notnull,default:false"`                             // Notification has been seen/read
 }
 
-// NotificationType describes the reason/type of this notification.
-type NotificationType string
+// NotificationType describes the
+// reason/type of this notification.
+type NotificationType enumType
 
-// Notification Types
 const (
-	NotificationFollow        NotificationType = "follow"            // NotificationFollow -- someone followed you
-	NotificationFollowRequest NotificationType = "follow_request"    // NotificationFollowRequest -- someone requested to follow you
-	NotificationMention       NotificationType = "mention"           // NotificationMention -- someone mentioned you in their status
-	NotificationReblog        NotificationType = "reblog"            // NotificationReblog -- someone boosted one of your statuses
-	NotificationFave          NotificationType = "favourite"         // NotificationFave -- someone faved/liked one of your statuses
-	NotificationPoll          NotificationType = "poll"              // NotificationPoll -- a poll you voted in or created has ended
-	NotificationStatus        NotificationType = "status"            // NotificationStatus -- someone you enabled notifications for has posted a status.
-	NotificationSignup        NotificationType = "admin.sign_up"     // NotificationSignup -- someone has submitted a new account sign-up to the instance.
-	NotificationPendingFave   NotificationType = "pending.favourite" // Someone has faved a status of yours, which requires approval by you.
-	NotificationPendingReply  NotificationType = "pending.reply"     // Someone has replied to a status of yours, which requires approval by you.
-	NotificationPendingReblog NotificationType = "pending.reblog"    // Someone has boosted a status of yours, which requires approval by you.
+	// Notification Types
+	NotificationFollow        NotificationType = 1  // NotificationFollow -- someone followed you
+	NotificationFollowRequest NotificationType = 2  // NotificationFollowRequest -- someone requested to follow you
+	NotificationMention       NotificationType = 3  // NotificationMention -- someone mentioned you in their status
+	NotificationReblog        NotificationType = 4  // NotificationReblog -- someone boosted one of your statuses
+	NotificationFave          NotificationType = 5  // NotificationFave -- someone faved/liked one of your statuses
+	NotificationPoll          NotificationType = 6  // NotificationPoll -- a poll you voted in or created has ended
+	NotificationStatus        NotificationType = 7  // NotificationStatus -- someone you enabled notifications for has posted a status.
+	NotificationSignup        NotificationType = 8  // NotificationSignup -- someone has submitted a new account sign-up to the instance.
+	NotificationPendingFave   NotificationType = 9  // Someone has faved a status of yours, which requires approval by you.
+	NotificationPendingReply  NotificationType = 10 // Someone has replied to a status of yours, which requires approval by you.
+	NotificationPendingReblog NotificationType = 11 // Someone has boosted a status of yours, which requires approval by you.
 )
+
+// String returns a stringified, frontend API compatible form of NotificationType.
+func (t NotificationType) String() string {
+	switch t {
+	case NotificationFollow:
+		return "follow"
+	case NotificationFollowRequest:
+		return "follow_request"
+	case NotificationMention:
+		return "mention"
+	case NotificationReblog:
+		return "reblog"
+	case NotificationFave:
+		return "favourite"
+	case NotificationPoll:
+		return "poll"
+	case NotificationStatus:
+		return "status"
+	case NotificationSignup:
+		return "admin.sign_up"
+	case NotificationPendingFave:
+		return "pending.favourite"
+	case NotificationPendingReply:
+		return "pending.reply"
+	case NotificationPendingReblog:
+		return "pending.reblog"
+	default:
+		panic("invalid notification type")
+	}
+}
diff --git a/internal/gtsmodel/status.go b/internal/gtsmodel/status.go
index 91c0ada61..f8bd068ab 100644
--- a/internal/gtsmodel/status.go
+++ b/internal/gtsmodel/status.go
@@ -263,27 +263,58 @@ type StatusToEmoji struct {
 	Emoji    *Emoji  `bun:"rel:belongs-to"`
 }
 
-// Visibility represents the visibility granularity of a status.
-type Visibility string
+// Visibility represents the
+// visibility granularity of a status.
+type Visibility enumType
 
 const (
 	// VisibilityNone means nobody can see this.
 	// It's only used for web status visibility.
-	VisibilityNone Visibility = "none"
-	// VisibilityPublic means this status will be visible to everyone on all timelines.
-	VisibilityPublic Visibility = "public"
-	// VisibilityUnlocked means this status will be visible to everyone, but will only show on home timeline to followers, and in lists.
-	VisibilityUnlocked Visibility = "unlocked"
+	VisibilityNone Visibility = 1
+
+	// VisibilityPublic means this status will
+	// be visible to everyone on all timelines.
+	VisibilityPublic Visibility = 2
+
+	// VisibilityUnlocked means this status will be visible to everyone,
+	// but will only show on home timeline to followers, and in lists.
+	VisibilityUnlocked Visibility = 3
+
 	// VisibilityFollowersOnly means this status is viewable to followers only.
-	VisibilityFollowersOnly Visibility = "followers_only"
-	// VisibilityMutualsOnly means this status is visible to mutual followers only.
-	VisibilityMutualsOnly Visibility = "mutuals_only"
-	// VisibilityDirect means this status is visible only to mentioned recipients.
-	VisibilityDirect Visibility = "direct"
+	VisibilityFollowersOnly Visibility = 4
+
+	// VisibilityMutualsOnly means this status
+	// is visible to mutual followers only.
+	VisibilityMutualsOnly Visibility = 5
+
+	// VisibilityDirect means this status is
+	// visible only to mentioned recipients.
+	VisibilityDirect Visibility = 6
+
 	// VisibilityDefault is used when no other setting can be found.
 	VisibilityDefault Visibility = VisibilityUnlocked
 )
 
+// String returns a stringified, frontend API compatible form of Visibility.
+func (v Visibility) String() string {
+	switch v {
+	case VisibilityNone:
+		return "none"
+	case VisibilityPublic:
+		return "public"
+	case VisibilityUnlocked:
+		return "unlocked"
+	case VisibilityFollowersOnly:
+		return "followers_only"
+	case VisibilityMutualsOnly:
+		return "mutuals_only"
+	case VisibilityDirect:
+		return "direct"
+	default:
+		panic("invalid visibility")
+	}
+}
+
 // Content models the simple string content
 // of a status along with its ContentMap,
 // which contains content entries keyed by
diff --git a/internal/processing/preferences.go b/internal/processing/preferences.go
index 0a5f566ae..fb445ec5b 100644
--- a/internal/processing/preferences.go
+++ b/internal/processing/preferences.go
@@ -46,7 +46,7 @@ func (p *Processor) PreferencesGet(ctx context.Context, accountID string) (*apim
 func mastoPrefVisibility(vis gtsmodel.Visibility) string {
 	switch vis {
 	case gtsmodel.VisibilityPublic, gtsmodel.VisibilityDirect:
-		return string(vis)
+		return vis.String()
 	case gtsmodel.VisibilityUnlocked:
 		return "unlisted"
 	default:
diff --git a/internal/processing/status/create.go b/internal/processing/status/create.go
index fbc2dadf7..ef8f8aa56 100644
--- a/internal/processing/status/create.go
+++ b/internal/processing/status/create.go
@@ -372,7 +372,7 @@ func (p *Processor) processVisibility(
 
 	// Fall back to account default, set
 	// this back on the form for later use.
-	case accountDefaultVis != "":
+	case accountDefaultVis != 0:
 		status.Visibility = accountDefaultVis
 		form.Visibility = p.converter.VisToAPIVis(ctx, accountDefaultVis)
 
diff --git a/internal/processing/timeline/notification.go b/internal/processing/timeline/notification.go
index 34e6d865d..92dbf851f 100644
--- a/internal/processing/timeline/notification.go
+++ b/internal/processing/timeline/notification.go
@@ -41,8 +41,8 @@ func (p *Processor) NotificationsGet(
 	sinceID string,
 	minID string,
 	limit int,
-	types []string,
-	excludeTypes []string,
+	types []gtsmodel.NotificationType,
+	excludeTypes []gtsmodel.NotificationType,
 ) (*apimodel.PageableResponse, gtserror.WithCode) {
 	notifs, err := p.state.DB.GetAccountNotifications(
 		ctx,
diff --git a/internal/processing/workers/surfacenotify.go b/internal/processing/workers/surfacenotify.go
index 872ccca65..1520d2ec0 100644
--- a/internal/processing/workers/surfacenotify.go
+++ b/internal/processing/workers/surfacenotify.go
@@ -542,7 +542,7 @@ func getNotifyLockURI(
 ) string {
 	builder := strings.Builder{}
 	builder.WriteString("notification:?")
-	builder.WriteString("type=" + string(notificationType))
+	builder.WriteString("type=" + notificationType.String())
 	builder.WriteString("&target=" + targetAccount.URI)
 	builder.WriteString("&origin=" + originAccount.URI)
 	if statusID != "" {
diff --git a/internal/typeutils/frontendtointernal.go b/internal/typeutils/frontendtointernal.go
index 1f7d1877e..82957ee05 100644
--- a/internal/typeutils/frontendtointernal.go
+++ b/internal/typeutils/frontendtointernal.go
@@ -41,7 +41,7 @@ func APIVisToVis(m apimodel.Visibility) gtsmodel.Visibility {
 	case apimodel.VisibilityNone:
 		return gtsmodel.VisibilityNone
 	}
-	return ""
+	return 0
 }
 
 func APIMarkerNameToMarkerName(m apimodel.MarkerName) gtsmodel.MarkerName {
diff --git a/internal/typeutils/internaltofrontend.go b/internal/typeutils/internaltofrontend.go
index 5f919f014..750d4eec4 100644
--- a/internal/typeutils/internaltofrontend.go
+++ b/internal/typeutils/internaltofrontend.go
@@ -1862,7 +1862,7 @@ func (c *Converter) NotificationToAPINotification(
 
 	return &apimodel.Notification{
 		ID:        n.ID,
-		Type:      string(n.NotificationType),
+		Type:      n.NotificationType.String(),
 		CreatedAt: util.FormatISO8601(n.CreatedAt),
 		Account:   apiAccount,
 		Status:    apiStatus,

From da4db81bcf1a66d0de559015e061e602d8f2fcb8 Mon Sep 17 00:00:00 2001
From: VirtualWolf <VirtualWolf@users.noreply.github.com>
Date: Tue, 26 Nov 2024 00:50:41 +1100
Subject: [PATCH 05/26] [docs] Added note to documentation about mutuals-only
 posts not being functional. (#3557)

---
 docs/user_guide/posts.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/docs/user_guide/posts.md b/docs/user_guide/posts.md
index 6e2f57e6f..1f718cfae 100644
--- a/docs/user_guide/posts.md
+++ b/docs/user_guide/posts.md
@@ -36,6 +36,9 @@ Direct posts are **not** accessible via a web URL on your GoToSocial instance.
 
 ### Mutuals-only
 
+!!! warning
+    Mutuals-only posts are not currently functional.
+
 Posts with a visibility of `mutuals_only` will only appear to the post author, and to *mutual follows* of the post author. In other words, they can only be seen by others if two conditions are met:
 
 1. The other account follows the post author.

From c454b1b4882389122964c75d7d764b51312743f7 Mon Sep 17 00:00:00 2001
From: tobi <31960611+tsmethurst@users.noreply.github.com>
Date: Mon, 25 Nov 2024 16:15:33 +0100
Subject: [PATCH 06/26] [chore] Bump tooling versions, bump go -> v1.23.0
 (#3258)

* [chore] Bump tooling versions, bump go -> v1.23.0

* undo silly change

* sign

* bump go version in go.mod

* allow overflow in imaging

* goreleaser deprecation notices

* bump versions

* undo accidental rebase change

* update container versions to just use latest major version

* update swagger to our release with go1.23 fix

* update goreleaser to use our vendored swagger version

---------

Co-authored-by: kim <grufwub@gmail.com>
---
 .drone.yml                                           | 12 ++++++------
 .goreleaser.yml                                      |  5 +++--
 Dockerfile                                           |  4 ++--
 go.mod                                               |  5 ++++-
 go.sum                                               |  6 ++----
 internal/db/bundb/bundb.go                           | 11 +++++------
 test/swagger.sh                                      |  2 +-
 .../go-swagger/go-swagger/codescan/schema.go         |  2 ++
 vendor/modules.txt                                   |  3 ++-
 9 files changed, 27 insertions(+), 23 deletions(-)

diff --git a/.drone.yml b/.drone.yml
index 589c20b24..5b954876d 100644
--- a/.drone.yml
+++ b/.drone.yml
@@ -12,7 +12,7 @@ steps:
   # We use golangci-lint for linting.
   # See: https://golangci-lint.run/
   - name: lint
-    image: golangci/golangci-lint:v1.57.2
+    image: golangci/golangci-lint:v1.62.0
     volumes:
       - name: go-build-cache
         path: /root/.cache/go-build
@@ -28,7 +28,7 @@ steps:
           - pull_request
 
   - name: test
-    image: golang:1.22-alpine
+    image: golang:1.23-alpine
     volumes:
       - name: go-build-cache
         path: /root/.cache/go-build
@@ -94,7 +94,7 @@ steps:
           - pull_request
 
   - name: snapshot
-    image: superseriousbusiness/gotosocial-drone-build:0.6.2 # https://github.com/superseriousbusiness/gotosocial-drone-build
+    image: superseriousbusiness/gotosocial-drone-build:0.7.0 # https://github.com/superseriousbusiness/gotosocial-drone-build
     volumes:
       - name: go-build-cache
         path: /root/.cache/go-build
@@ -141,7 +141,7 @@ steps:
           - main
 
   - name: release
-    image: superseriousbusiness/gotosocial-drone-build:0.6.2 # https://github.com/superseriousbusiness/gotosocial-drone-build
+    image: superseriousbusiness/gotosocial-drone-build:0.7.0 # https://github.com/superseriousbusiness/gotosocial-drone-build
     volumes:
       - name: go-build-cache
         path: /root/.cache/go-build
@@ -210,7 +210,7 @@ clone:
 
 steps:
   - name: mirror
-    image: superseriousbusiness/gotosocial-drone-build:0.6.2
+    image: superseriousbusiness/gotosocial-drone-build:0.7.0
     environment:
       ORIGIN_REPO: https://github.com/superseriousbusiness/gotosocial
       TARGET_REPO: https://codeberg.org/superseriousbusiness/gotosocial
@@ -223,6 +223,6 @@ steps:
 
 ---
 kind: signature
-hmac: 1b89e3a538fbca72eb9a0b398cd82f09a774ba3649013e19d36012eda327e83f
+hmac: 9810bf692fb1029c13b0a1e2f556e2306d16f7d3eec9ca6163a0499c147280c1
 
 ...
diff --git a/.goreleaser.yml b/.goreleaser.yml
index 8b4589395..c1c170c5a 100644
--- a/.goreleaser.yml
+++ b/.goreleaser.yml
@@ -1,4 +1,5 @@
-# https://goreleaser.com
+# Version 2 of GoReleaser: https://goreleaser.com/errors/version/
+version: 2
 project_name: gotosocial
 version: 2
 
@@ -6,7 +7,7 @@ version: 2
 before:
   hooks:
   # generate the swagger.yaml file using go-swagger and bundle it into the assets directory
-  - swagger generate spec --scan-models --exclude-deps -o web/assets/swagger.yaml
+  - go run ./vendor/github.com/go-swagger/go-swagger/cmd/swagger generate spec --scan-models --exclude-deps -o web/assets/swagger.yaml
   - sed -i "s/REPLACE_ME/{{ incpatch .Version }}/" web/assets/swagger.yaml
   # Install web deps + bundle web assets
   - yarn --cwd ./web/source install
diff --git a/Dockerfile b/Dockerfile
index df4fc56da..7b7728a53 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -2,7 +2,7 @@
 # Dockerfile reference: https://docs.docker.com/engine/reference/builder/
 
 # stage 1: generate up-to-date swagger.yaml to put in the final container
-FROM --platform=${BUILDPLATFORM} golang:1.22-alpine AS swagger
+FROM --platform=${BUILDPLATFORM} golang:1.23-alpine AS swagger
 
 RUN \
     ### Installs goswagger for building swagger definitions inside this container
@@ -28,7 +28,7 @@ RUN yarn --cwd ./web/source install && \
     rm -rf ./web/source
 
 # stage 3: build the executor container
-FROM --platform=${TARGETPLATFORM} alpine:3.19.1 as executor
+FROM --platform=${TARGETPLATFORM} alpine:3.20 as executor
 
 # switch to non-root user:group for GtS
 USER 1000:1000
diff --git a/go.mod b/go.mod
index bc1d56a46..e95aecc68 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,9 @@
 module github.com/superseriousbusiness/gotosocial
 
-go 1.22.2
+go 1.23
+
+// Replace go-swagger with our version that fixes (ours particularly) use of Go1.23
+replace github.com/go-swagger/go-swagger => github.com/superseriousbusiness/go-swagger v0.31.0-gts-go1.23-fix
 
 // Replace modernc/sqlite with our version that fixes the concurrency INTERRUPT issue
 replace modernc.org/sqlite => gitlab.com/NyaaaWhatsUpDoc/sqlite v1.33.1-concurrency-workaround
diff --git a/go.sum b/go.sum
index 78d023286..3ce2e8853 100644
--- a/go.sum
+++ b/go.sum
@@ -238,8 +238,6 @@ github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91
 github.com/go-playground/validator/v10 v10.20.0 h1:K9ISHbSaI0lyB2eWMPJo+kOS/FBExVwjEviJTixqxL8=
 github.com/go-playground/validator/v10 v10.20.0/go.mod h1:dbuPbCMFw/DrkbEynArYaCwl3amGuJotoKCe95atGMM=
 github.com/go-session/session v3.1.2+incompatible/go.mod h1:8B3iivBQjrz/JtC68Np2T1yBBLxTan3mn/3OM0CyRt0=
-github.com/go-swagger/go-swagger v0.31.0 h1:H8eOYQnY2u7vNKWDNykv2xJP3pBhRG/R+SOCAmKrLlc=
-github.com/go-swagger/go-swagger v0.31.0/go.mod h1:WSigRRWEig8zV6t6Sm8Y+EmUjlzA/HoaZJ5edupq7po=
 github.com/go-test/deep v1.0.8 h1:TDsG77qcSprGbC6vTN8OuXp5g+J+b5Pcguhf7Zt61VM=
 github.com/go-test/deep v1.0.8/go.mod h1:5C2ZWiW0ErCdrYzpqxLbTX7MG14M9iiw8DgHncVwcsE=
 github.com/go-xmlfmt/xmlfmt v0.0.0-20191208150333-d5b6f63a941b h1:khEcpUM4yFcxg4/FHQWkvVRmgijNXRfzkIDHh23ggEo=
@@ -330,8 +328,6 @@ github.com/gorilla/securecookie v1.1.2/go.mod h1:NfCASbcHqRSY+3a8tlWJwsQap2VX5pw
 github.com/gorilla/sessions v1.2.2 h1:lqzMYz6bOfvn2WriPUjNByzeXIlVzURcPmgMczkmTjY=
 github.com/gorilla/sessions v1.2.2/go.mod h1:ePLdVu+jbEgHH+KWw8I1z2wqd0BAdAQh/8LRvBeoNcQ=
 github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
-github.com/gorilla/websocket v1.5.2 h1:qoW6V1GT3aZxybsbC6oLnailWnB+qTMVwMreOso9XUw=
-github.com/gorilla/websocket v1.5.2/go.mod h1:0n9H61RBAcf5/38py2MCYbxzPIY9rOkpvvMT24Rqs30=
 github.com/gorilla/websocket v1.5.3 h1:saDtZ6Pbx/0u+bgYQ3q96pZgCzfhKXGPqt7kZ72aNNg=
 github.com/gorilla/websocket v1.5.3/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/grpc-ecosystem/grpc-gateway/v2 v2.22.0 h1:asbCHRVmodnJTuQ3qamDwqVOIjwqUPTYmYuemVOx+Ys=
@@ -538,6 +534,8 @@ github.com/superseriousbusiness/go-jpeg-image-structure/v2 v2.0.0-20220321154430
 github.com/superseriousbusiness/go-jpeg-image-structure/v2 v2.0.0-20220321154430-d89a106fdabe/go.mod h1:gH4P6gN1V+wmIw5o97KGaa1RgXB/tVpC2UNzijhg3E4=
 github.com/superseriousbusiness/go-png-image-structure/v2 v2.0.1-SSB h1:8psprYSK1KdOSH7yQ4PbJq0YYaGQY+gzdW/B0ExDb/8=
 github.com/superseriousbusiness/go-png-image-structure/v2 v2.0.1-SSB/go.mod h1:ymKGfy9kg4dIdraeZRAdobMS/flzLk3VcRPLpEWOAXg=
+github.com/superseriousbusiness/go-swagger v0.31.0-gts-go1.23-fix h1:CXcjArOyxBPFgsNAu4As+RK9BwOUEG1LL7ja4g7iax0=
+github.com/superseriousbusiness/go-swagger v0.31.0-gts-go1.23-fix/go.mod h1:WSigRRWEig8zV6t6Sm8Y+EmUjlzA/HoaZJ5edupq7po=
 github.com/superseriousbusiness/httpsig v1.2.0-SSB h1:BinBGKbf2LSuVT5+MuH0XynHN9f0XVshx2CTDtkaWj0=
 github.com/superseriousbusiness/httpsig v1.2.0-SSB/go.mod h1:+rxfATjFaDoDIVaJOTSP0gj6UrbicaYPEptvCLC9F28=
 github.com/superseriousbusiness/oauth2/v4 v4.3.2-SSB.0.20230227143000-f4900831d6c8 h1:nTIhuP157oOFcscuoK1kCme1xTeGIzztSw70lX9NrDQ=
diff --git a/internal/db/bundb/bundb.go b/internal/db/bundb/bundb.go
index d10f372fd..8756e086b 100644
--- a/internal/db/bundb/bundb.go
+++ b/internal/db/bundb/bundb.go
@@ -420,13 +420,12 @@ func maxOpenConns() int {
 // deriveBunDBPGOptions takes an application config and returns either a ready-to-use set of options
 // with sensible defaults, or an error if it's not satisfied by the provided config.
 func deriveBunDBPGOptions() (*pgx.ConnConfig, error) {
-	url := config.GetDbPostgresConnectionString()
-
-	// if database URL is defined, ignore other DB related configuration fields
-	if url != "" {
-		cfg, err := pgx.ParseConfig(url)
-		return cfg, err
+	// If database URL is defined, ignore
+	// other DB-related configuration fields.
+	if url := config.GetDbPostgresConnectionString(); url != "" {
+		return pgx.ParseConfig(url)
 	}
+
 	// these are all optional, the db adapter figures out defaults
 	address := config.GetDbAddress()
 
diff --git a/test/swagger.sh b/test/swagger.sh
index e8b4b5864..c7644c1af 100755
--- a/test/swagger.sh
+++ b/test/swagger.sh
@@ -5,7 +5,7 @@
 set -eu
 
 swagger_cmd() {
-  go run github.com/go-swagger/go-swagger/cmd/swagger "$@"
+  go run ./vendor/github.com/go-swagger/go-swagger/cmd/swagger "$@"
 }
 swagger_spec='docs/api/swagger.yaml'
 
diff --git a/vendor/github.com/go-swagger/go-swagger/codescan/schema.go b/vendor/github.com/go-swagger/go-swagger/codescan/schema.go
index dce74fc30..98bdecba6 100644
--- a/vendor/github.com/go-swagger/go-swagger/codescan/schema.go
+++ b/vendor/github.com/go-swagger/go-swagger/codescan/schema.go
@@ -303,6 +303,8 @@ func (s *schemaBuilder) buildFromType(tpe types.Type, tgt swaggerTypable) error
 	}
 
 	switch titpe := tpe.(type) {
+	case *types.Alias:
+		return nil // resolves panic
 	case *types.Basic:
 		return swaggerSchemaForType(titpe.String(), tgt)
 	case *types.Pointer:
diff --git a/vendor/modules.txt b/vendor/modules.txt
index 8af740067..eb965e0cb 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -300,7 +300,7 @@ github.com/go-playground/universal-translator
 # github.com/go-playground/validator/v10 v10.20.0
 ## explicit; go 1.18
 github.com/go-playground/validator/v10
-# github.com/go-swagger/go-swagger v0.31.0
+# github.com/go-swagger/go-swagger v0.31.0 => github.com/superseriousbusiness/go-swagger v0.31.0-gts-go1.23-fix
 ## explicit; go 1.21
 github.com/go-swagger/go-swagger/cmd/swagger
 github.com/go-swagger/go-swagger/cmd/swagger/commands
@@ -1344,6 +1344,7 @@ modernc.org/token
 # mvdan.cc/xurls/v2 v2.5.0
 ## explicit; go 1.19
 mvdan.cc/xurls/v2
+# github.com/go-swagger/go-swagger => github.com/superseriousbusiness/go-swagger v0.31.0-gts-go1.23-fix
 # modernc.org/sqlite => gitlab.com/NyaaaWhatsUpDoc/sqlite v1.33.1-concurrency-workaround
 # go.opentelemetry.io/otel => go.opentelemetry.io/otel v1.29.0
 # go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc => go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.29.0

From a444adee979375ed5d7af38346029a3d90bc77eb Mon Sep 17 00:00:00 2001
From: kim <89579420+NyaaaWhatsUpDoc@users.noreply.github.com>
Date: Mon, 25 Nov 2024 15:33:21 +0000
Subject: [PATCH 07/26] [bugfix] notification types missing from link header
 (#3571)

* ensure notification types get included in link header query for notifications

* fix type query keys
---
 .../client/notifications/notificationsget.go  | 30 ++++------
 internal/db/bundb/notification.go             | 53 +++++++-----------
 internal/db/bundb/notification_test.go        | 46 ++++++++-------
 internal/db/notification.go                   |  3 +-
 internal/processing/timeline/notification.go  | 56 +++++++++----------
 .../processing/workers/surfacenotify_test.go  |  2 +-
 6 files changed, 87 insertions(+), 103 deletions(-)

diff --git a/internal/api/client/notifications/notificationsget.go b/internal/api/client/notifications/notificationsget.go
index cc3e5bdb7..841768c63 100644
--- a/internal/api/client/notifications/notificationsget.go
+++ b/internal/api/client/notifications/notificationsget.go
@@ -18,14 +18,13 @@
 package notifications
 
 import (
-	"fmt"
 	"net/http"
-	"strconv"
 
 	"github.com/gin-gonic/gin"
 	apiutil "github.com/superseriousbusiness/gotosocial/internal/api/util"
 	"github.com/superseriousbusiness/gotosocial/internal/gtserror"
 	"github.com/superseriousbusiness/gotosocial/internal/oauth"
+	"github.com/superseriousbusiness/gotosocial/internal/paging"
 )
 
 // NotificationsGETHandler swagger:operation GET /api/v1/notifications notifications
@@ -152,18 +151,6 @@ func (m *Module) NotificationsGETHandler(c *gin.Context) {
 		return
 	}
 
-	limit := 20
-	limitString := c.Query(LimitKey)
-	if limitString != "" {
-		i, err := strconv.ParseInt(limitString, 10, 32)
-		if err != nil {
-			err := fmt.Errorf("error parsing %s: %s", LimitKey, err)
-			apiutil.ErrorHandler(c, gtserror.NewErrorBadRequest(err, err.Error()), m.processor.InstanceGetV1)
-			return
-		}
-		limit = int(i)
-	}
-
 	types, errWithCode := apiutil.ParseNotificationTypes(c.QueryArray(TypesKey))
 	if errWithCode != nil {
 		apiutil.ErrorHandler(c, errWithCode, m.processor.InstanceGetV1)
@@ -176,13 +163,20 @@ func (m *Module) NotificationsGETHandler(c *gin.Context) {
 		return
 	}
 
+	page, errWithCode := paging.ParseIDPage(c,
+		1,  // min limit
+		80, // max limit
+		20, // no limit
+	)
+	if errWithCode != nil {
+		apiutil.ErrorHandler(c, errWithCode, m.processor.InstanceGetV1)
+		return
+	}
+
 	resp, errWithCode := m.processor.Timeline().NotificationsGet(
 		c.Request.Context(),
 		authed,
-		c.Query(MaxIDKey),
-		c.Query(SinceIDKey),
-		c.Query(MinIDKey),
-		limit,
+		page,
 		types,
 		exclTypes,
 	)
diff --git a/internal/db/bundb/notification.go b/internal/db/bundb/notification.go
index a20ab7e3f..d4f8799bd 100644
--- a/internal/db/bundb/notification.go
+++ b/internal/db/bundb/notification.go
@@ -26,8 +26,8 @@ import (
 	"github.com/superseriousbusiness/gotosocial/internal/gtscontext"
 	"github.com/superseriousbusiness/gotosocial/internal/gtserror"
 	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
-	"github.com/superseriousbusiness/gotosocial/internal/id"
 	"github.com/superseriousbusiness/gotosocial/internal/log"
+	"github.com/superseriousbusiness/gotosocial/internal/paging"
 	"github.com/superseriousbusiness/gotosocial/internal/state"
 	"github.com/superseriousbusiness/gotosocial/internal/util/xslices"
 	"github.com/uptrace/bun"
@@ -192,22 +192,19 @@ func (n *notificationDB) PopulateNotification(ctx context.Context, notif *gtsmod
 func (n *notificationDB) GetAccountNotifications(
 	ctx context.Context,
 	accountID string,
-	maxID string,
-	sinceID string,
-	minID string,
-	limit int,
+	page *paging.Page,
 	types []gtsmodel.NotificationType,
 	excludeTypes []gtsmodel.NotificationType,
 ) ([]*gtsmodel.Notification, error) {
-	// Ensure reasonable
-	if limit < 0 {
-		limit = 0
-	}
-
-	// Make educated guess for slice size
 	var (
-		notifIDs    = make([]string, 0, limit)
-		frontToBack = true
+		// Get paging params.
+		minID = page.GetMin()
+		maxID = page.GetMax()
+		limit = page.GetLimit()
+		order = page.GetOrder()
+
+		// Make educated guess for slice size
+		notifIDs = make([]string, 0, limit)
 	)
 
 	q := n.db.
@@ -215,23 +212,14 @@ func (n *notificationDB) GetAccountNotifications(
 		TableExpr("? AS ?", bun.Ident("notifications"), bun.Ident("notification")).
 		Column("notification.id")
 
-	if maxID == "" {
-		maxID = id.Highest
-	}
-
-	// Return only notifs LOWER (ie., older) than maxID.
-	q = q.Where("? < ?", bun.Ident("notification.id"), maxID)
-
-	if sinceID != "" {
-		// Return only notifs HIGHER (ie., newer) than sinceID.
-		q = q.Where("? > ?", bun.Ident("notification.id"), sinceID)
+	if maxID != "" {
+		// Return only notifs LOWER (ie., older) than maxID.
+		q = q.Where("? < ?", bun.Ident("notification.id"), maxID)
 	}
 
 	if minID != "" {
 		// Return only notifs HIGHER (ie., newer) than minID.
 		q = q.Where("? > ?", bun.Ident("notification.id"), minID)
-
-		frontToBack = false // page up
 	}
 
 	if len(types) > 0 {
@@ -251,12 +239,12 @@ func (n *notificationDB) GetAccountNotifications(
 		q = q.Limit(limit)
 	}
 
-	if frontToBack {
-		// Page down.
-		q = q.Order("notification.id DESC")
-	} else {
+	if order == paging.OrderAscending {
 		// Page up.
 		q = q.Order("notification.id ASC")
+	} else {
+		// Page down.
+		q = q.Order("notification.id DESC")
 	}
 
 	if err := q.Scan(ctx, &notifIDs); err != nil {
@@ -269,11 +257,8 @@ func (n *notificationDB) GetAccountNotifications(
 
 	// If we're paging up, we still want notifications
 	// to be sorted by ID desc, so reverse ids slice.
-	// https://zchee.github.io/golang-wiki/SliceTricks/#reversing
-	if !frontToBack {
-		for l, r := 0, len(notifIDs)-1; l < r; l, r = l+1, r-1 {
-			notifIDs[l], notifIDs[r] = notifIDs[r], notifIDs[l]
-		}
+	if order == paging.OrderAscending {
+		slices.Reverse(notifIDs)
 	}
 
 	// Fetch notification models by their IDs.
diff --git a/internal/db/bundb/notification_test.go b/internal/db/bundb/notification_test.go
index eb2c02066..8e2fb8031 100644
--- a/internal/db/bundb/notification_test.go
+++ b/internal/db/bundb/notification_test.go
@@ -28,6 +28,7 @@ import (
 	"github.com/superseriousbusiness/gotosocial/internal/gtscontext"
 	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
 	"github.com/superseriousbusiness/gotosocial/internal/id"
+	"github.com/superseriousbusiness/gotosocial/internal/paging"
 	"github.com/superseriousbusiness/gotosocial/internal/util"
 )
 
@@ -92,10 +93,11 @@ func (suite *NotificationTestSuite) TestGetAccountNotificationsWithSpam() {
 	notifications, err := suite.db.GetAccountNotifications(
 		gtscontext.SetBarebones(context.Background()),
 		testAccount.ID,
-		id.Highest,
-		id.Lowest,
-		"",
-		20,
+		&paging.Page{
+			Min:   paging.EitherMinID("", id.Lowest),
+			Max:   paging.MaxID(id.Highest),
+			Limit: 20,
+		},
 		nil,
 		nil,
 	)
@@ -115,10 +117,11 @@ func (suite *NotificationTestSuite) TestGetAccountNotificationsWithoutSpam() {
 	notifications, err := suite.db.GetAccountNotifications(
 		gtscontext.SetBarebones(context.Background()),
 		testAccount.ID,
-		id.Highest,
-		id.Lowest,
-		"",
-		20,
+		&paging.Page{
+			Min:   paging.EitherMinID("", id.Lowest),
+			Max:   paging.MaxID(id.Highest),
+			Limit: 20,
+		},
 		nil,
 		nil,
 	)
@@ -140,10 +143,11 @@ func (suite *NotificationTestSuite) TestDeleteNotificationsWithSpam() {
 	notifications, err := suite.db.GetAccountNotifications(
 		gtscontext.SetBarebones(context.Background()),
 		testAccount.ID,
-		id.Highest,
-		id.Lowest,
-		"",
-		20,
+		&paging.Page{
+			Min:   paging.EitherMinID("", id.Lowest),
+			Max:   paging.MaxID(id.Highest),
+			Limit: 20,
+		},
 		nil,
 		nil,
 	)
@@ -161,10 +165,11 @@ func (suite *NotificationTestSuite) TestDeleteNotificationsWithSpam() {
 	notifications, err = suite.db.GetAccountNotifications(
 		gtscontext.SetBarebones(context.Background()),
 		testAccount.ID,
-		id.Highest,
-		id.Lowest,
-		"",
-		20,
+		&paging.Page{
+			Min:   paging.EitherMinID("", id.Lowest),
+			Max:   paging.MaxID(id.Highest),
+			Limit: 20,
+		},
 		nil,
 		nil,
 	)
@@ -183,10 +188,11 @@ func (suite *NotificationTestSuite) TestDeleteNotificationsWithTwoAccounts() {
 	notifications, err := suite.db.GetAccountNotifications(
 		gtscontext.SetBarebones(context.Background()),
 		testAccount.ID,
-		id.Highest,
-		id.Lowest,
-		"",
-		20,
+		&paging.Page{
+			Min:   paging.EitherMinID("", id.Lowest),
+			Max:   paging.MaxID(id.Highest),
+			Limit: 20,
+		},
 		nil,
 		nil,
 	)
diff --git a/internal/db/notification.go b/internal/db/notification.go
index c962023be..c608261dc 100644
--- a/internal/db/notification.go
+++ b/internal/db/notification.go
@@ -21,6 +21,7 @@ import (
 	"context"
 
 	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
+	"github.com/superseriousbusiness/gotosocial/internal/paging"
 )
 
 // Notification contains functions for creating and getting notifications.
@@ -29,7 +30,7 @@ type Notification interface {
 	//
 	// Returned notifications will be ordered ID descending (ie., highest/newest to lowest/oldest).
 	// If types is empty, *all* notification types will be included.
-	GetAccountNotifications(ctx context.Context, accountID string, maxID string, sinceID string, minID string, limit int, types []gtsmodel.NotificationType, excludeTypes []gtsmodel.NotificationType) ([]*gtsmodel.Notification, error)
+	GetAccountNotifications(ctx context.Context, accountID string, page *paging.Page, types []gtsmodel.NotificationType, excludeTypes []gtsmodel.NotificationType) ([]*gtsmodel.Notification, error)
 
 	// GetNotificationByID returns one notification according to its id.
 	GetNotificationByID(ctx context.Context, id string) (*gtsmodel.Notification, error)
diff --git a/internal/processing/timeline/notification.go b/internal/processing/timeline/notification.go
index 92dbf851f..a242c7b74 100644
--- a/internal/processing/timeline/notification.go
+++ b/internal/processing/timeline/notification.go
@@ -21,6 +21,7 @@ import (
 	"context"
 	"errors"
 	"fmt"
+	"net/url"
 
 	apimodel "github.com/superseriousbusiness/gotosocial/internal/api/model"
 	"github.com/superseriousbusiness/gotosocial/internal/db"
@@ -31,26 +32,21 @@ import (
 	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
 	"github.com/superseriousbusiness/gotosocial/internal/log"
 	"github.com/superseriousbusiness/gotosocial/internal/oauth"
+	"github.com/superseriousbusiness/gotosocial/internal/paging"
 	"github.com/superseriousbusiness/gotosocial/internal/util"
 )
 
 func (p *Processor) NotificationsGet(
 	ctx context.Context,
 	authed *oauth.Auth,
-	maxID string,
-	sinceID string,
-	minID string,
-	limit int,
+	page *paging.Page,
 	types []gtsmodel.NotificationType,
 	excludeTypes []gtsmodel.NotificationType,
 ) (*apimodel.PageableResponse, gtserror.WithCode) {
 	notifs, err := p.state.DB.GetAccountNotifications(
 		ctx,
 		authed.Account.ID,
-		maxID,
-		sinceID,
-		minID,
-		limit,
+		page,
 		types,
 		excludeTypes,
 	)
@@ -78,22 +74,15 @@ func (p *Processor) NotificationsGet(
 	compiledMutes := usermute.NewCompiledUserMuteList(mutes)
 
 	var (
-		items          = make([]interface{}, 0, count)
-		nextMaxIDValue string
-		prevMinIDValue string
+		items = make([]interface{}, 0, count)
+
+		// Get the lowest and highest
+		// ID values, used for paging.
+		lo = notifs[count-1].ID
+		hi = notifs[0].ID
 	)
 
-	for i, n := range notifs {
-		// Set next + prev values before filtering and API
-		// converting, so caller can still page properly.
-		if i == count-1 {
-			nextMaxIDValue = n.ID
-		}
-
-		if i == 0 {
-			prevMinIDValue = n.ID
-		}
-
+	for _, n := range notifs {
 		visible, err := p.notifVisible(ctx, n, authed.Account)
 		if err != nil {
 			log.Debugf(ctx, "skipping notification %s because of an error checking notification visibility: %v", n.ID, err)
@@ -115,13 +104,22 @@ func (p *Processor) NotificationsGet(
 		items = append(items, item)
 	}
 
-	return util.PackagePageableResponse(util.PageableResponseParams{
-		Items:          items,
-		Path:           "api/v1/notifications",
-		NextMaxIDValue: nextMaxIDValue,
-		PrevMinIDValue: prevMinIDValue,
-		Limit:          limit,
-	})
+	// Build type query string.
+	query := make(url.Values)
+	for _, typ := range types {
+		query.Add("types[]", typ.String())
+	}
+	for _, typ := range excludeTypes {
+		query.Add("exclude_types[]", typ.String())
+	}
+
+	return paging.PackageResponse(paging.ResponseParams{
+		Items: items,
+		Path:  "/api/v1/notifications",
+		Next:  page.Next(lo, hi),
+		Prev:  page.Prev(lo, hi),
+		Query: query,
+	}), nil
 }
 
 func (p *Processor) NotificationGet(ctx context.Context, account *gtsmodel.Account, targetNotifID string) (*apimodel.Notification, gtserror.WithCode) {
diff --git a/internal/processing/workers/surfacenotify_test.go b/internal/processing/workers/surfacenotify_test.go
index dc445d0ac..52ee89e8b 100644
--- a/internal/processing/workers/surfacenotify_test.go
+++ b/internal/processing/workers/surfacenotify_test.go
@@ -89,7 +89,7 @@ func (suite *SurfaceNotifyTestSuite) TestSpamNotifs() {
 	notifs, err := testStructs.State.DB.GetAccountNotifications(
 		gtscontext.SetBarebones(ctx),
 		targetAccount.ID,
-		"", "", "", 0, nil, nil,
+		nil, nil, nil,
 	)
 	if err != nil {
 		suite.FailNow(err.Error())

From 3fceb5fc1a83a6ba3ca3c314eef50f0b45cd6009 Mon Sep 17 00:00:00 2001
From: kim <89579420+NyaaaWhatsUpDoc@users.noreply.github.com>
Date: Mon, 25 Nov 2024 15:42:37 +0000
Subject: [PATCH 08/26] bumps uptrace/bun dependencies to v1.2.6 (#3569)

---
 go.mod                                        |   11 +-
 go.sum                                        |   22 +-
 .../github.com/bahlo/generic-list-go/LICENSE  |   27 +
 .../bahlo/generic-list-go/README.md           |    5 +
 .../github.com/bahlo/generic-list-go/list.go  |  235 +++
 vendor/github.com/buger/jsonparser/.gitignore |   12 +
 .../github.com/buger/jsonparser/.travis.yml   |   11 +
 vendor/github.com/buger/jsonparser/Dockerfile |   12 +
 vendor/github.com/buger/jsonparser/LICENSE    |   21 +
 vendor/github.com/buger/jsonparser/Makefile   |   36 +
 vendor/github.com/buger/jsonparser/README.md  |  365 +++++
 vendor/github.com/buger/jsonparser/bytes.go   |   47 +
 .../github.com/buger/jsonparser/bytes_safe.go |   25 +
 .../buger/jsonparser/bytes_unsafe.go          |   44 +
 vendor/github.com/buger/jsonparser/escape.go  |  173 +++
 vendor/github.com/buger/jsonparser/fuzz.go    |  117 ++
 .../buger/jsonparser/oss-fuzz-build.sh        |   47 +
 vendor/github.com/buger/jsonparser/parser.go  | 1283 +++++++++++++++++
 vendor/github.com/uptrace/bun/CHANGELOG.md    |   49 +
 vendor/github.com/uptrace/bun/Makefile        |    2 +-
 vendor/github.com/uptrace/bun/README.md       |    1 +
 vendor/github.com/uptrace/bun/db.go           |    3 +-
 .../github.com/uptrace/bun/dialect/append.go  |   18 +-
 .../uptrace/bun/dialect/feature/feature.go    |    5 +-
 .../bun/dialect/pgdialect/alter_table.go      |  245 ++++
 .../uptrace/bun/dialect/pgdialect/array.go    |   31 +-
 .../uptrace/bun/dialect/pgdialect/dialect.go  |   13 +-
 .../bun/dialect/pgdialect/inspector.go        |  297 ++++
 .../uptrace/bun/dialect/pgdialect/sqltype.go  |   84 +-
 .../uptrace/bun/dialect/pgdialect/version.go  |    2 +-
 .../bun/dialect/sqlitedialect/dialect.go      |   14 +-
 .../bun/dialect/sqlitedialect/version.go      |    2 +-
 .../github.com/uptrace/bun/internal/util.go   |    6 +
 vendor/github.com/uptrace/bun/migrate/auto.go |  429 ++++++
 vendor/github.com/uptrace/bun/migrate/diff.go |  411 ++++++
 .../uptrace/bun/migrate/migrator.go           |   23 +-
 .../uptrace/bun/migrate/operations.go         |  340 +++++
 .../uptrace/bun/migrate/sqlschema/column.go   |   75 +
 .../uptrace/bun/migrate/sqlschema/database.go |  127 ++
 .../bun/migrate/sqlschema/inspector.go        |  241 ++++
 .../uptrace/bun/migrate/sqlschema/migrator.go |   49 +
 .../uptrace/bun/migrate/sqlschema/table.go    |   60 +
 .../uptrace/bun/model_table_has_many.go       |   11 +-
 vendor/github.com/uptrace/bun/package.json    |    2 +-
 vendor/github.com/uptrace/bun/query_base.go   |  112 ++
 .../uptrace/bun/query_column_add.go           |    9 +-
 .../uptrace/bun/query_column_drop.go          |    9 +-
 vendor/github.com/uptrace/bun/query_delete.go |   63 +-
 vendor/github.com/uptrace/bun/query_insert.go |   10 +-
 vendor/github.com/uptrace/bun/query_merge.go  |   10 +-
 vendor/github.com/uptrace/bun/query_raw.go    |    9 +
 vendor/github.com/uptrace/bun/query_select.go |  105 +-
 .../uptrace/bun/query_table_drop.go           |    9 +
 vendor/github.com/uptrace/bun/query_update.go |   49 +-
 .../github.com/uptrace/bun/schema/dialect.go  |    7 +
 vendor/github.com/uptrace/bun/schema/table.go |   63 +-
 .../github.com/uptrace/bun/schema/tables.go   |   12 +
 vendor/github.com/uptrace/bun/version.go      |    2 +-
 .../wk8/go-ordered-map/v2/.gitignore          |    1 +
 .../wk8/go-ordered-map/v2/.golangci.yml       |   78 +
 .../wk8/go-ordered-map/v2/CHANGELOG.md        |   38 +
 .../github.com/wk8/go-ordered-map/v2/LICENSE  |  201 +++
 .../github.com/wk8/go-ordered-map/v2/Makefile |   32 +
 .../wk8/go-ordered-map/v2/README.md           |  207 +++
 .../github.com/wk8/go-ordered-map/v2/json.go  |  182 +++
 .../wk8/go-ordered-map/v2/orderedmap.go       |  373 +++++
 .../github.com/wk8/go-ordered-map/v2/yaml.go  |   71 +
 vendor/modules.txt                            |   26 +-
 68 files changed, 6517 insertions(+), 194 deletions(-)
 create mode 100644 vendor/github.com/bahlo/generic-list-go/LICENSE
 create mode 100644 vendor/github.com/bahlo/generic-list-go/README.md
 create mode 100644 vendor/github.com/bahlo/generic-list-go/list.go
 create mode 100644 vendor/github.com/buger/jsonparser/.gitignore
 create mode 100644 vendor/github.com/buger/jsonparser/.travis.yml
 create mode 100644 vendor/github.com/buger/jsonparser/Dockerfile
 create mode 100644 vendor/github.com/buger/jsonparser/LICENSE
 create mode 100644 vendor/github.com/buger/jsonparser/Makefile
 create mode 100644 vendor/github.com/buger/jsonparser/README.md
 create mode 100644 vendor/github.com/buger/jsonparser/bytes.go
 create mode 100644 vendor/github.com/buger/jsonparser/bytes_safe.go
 create mode 100644 vendor/github.com/buger/jsonparser/bytes_unsafe.go
 create mode 100644 vendor/github.com/buger/jsonparser/escape.go
 create mode 100644 vendor/github.com/buger/jsonparser/fuzz.go
 create mode 100644 vendor/github.com/buger/jsonparser/oss-fuzz-build.sh
 create mode 100644 vendor/github.com/buger/jsonparser/parser.go
 create mode 100644 vendor/github.com/uptrace/bun/dialect/pgdialect/alter_table.go
 create mode 100644 vendor/github.com/uptrace/bun/dialect/pgdialect/inspector.go
 create mode 100644 vendor/github.com/uptrace/bun/migrate/auto.go
 create mode 100644 vendor/github.com/uptrace/bun/migrate/diff.go
 create mode 100644 vendor/github.com/uptrace/bun/migrate/operations.go
 create mode 100644 vendor/github.com/uptrace/bun/migrate/sqlschema/column.go
 create mode 100644 vendor/github.com/uptrace/bun/migrate/sqlschema/database.go
 create mode 100644 vendor/github.com/uptrace/bun/migrate/sqlschema/inspector.go
 create mode 100644 vendor/github.com/uptrace/bun/migrate/sqlschema/migrator.go
 create mode 100644 vendor/github.com/uptrace/bun/migrate/sqlschema/table.go
 create mode 100644 vendor/github.com/wk8/go-ordered-map/v2/.gitignore
 create mode 100644 vendor/github.com/wk8/go-ordered-map/v2/.golangci.yml
 create mode 100644 vendor/github.com/wk8/go-ordered-map/v2/CHANGELOG.md
 create mode 100644 vendor/github.com/wk8/go-ordered-map/v2/LICENSE
 create mode 100644 vendor/github.com/wk8/go-ordered-map/v2/Makefile
 create mode 100644 vendor/github.com/wk8/go-ordered-map/v2/README.md
 create mode 100644 vendor/github.com/wk8/go-ordered-map/v2/json.go
 create mode 100644 vendor/github.com/wk8/go-ordered-map/v2/orderedmap.go
 create mode 100644 vendor/github.com/wk8/go-ordered-map/v2/yaml.go

diff --git a/go.mod b/go.mod
index e95aecc68..d8e34f7d1 100644
--- a/go.mod
+++ b/go.mod
@@ -76,10 +76,10 @@ require (
 	github.com/tetratelabs/wazero v1.8.1
 	github.com/tomnomnom/linkheader v0.0.0-20180905144013-02ca5825eb80
 	github.com/ulule/limiter/v3 v3.11.2
-	github.com/uptrace/bun v1.2.5
-	github.com/uptrace/bun/dialect/pgdialect v1.2.5
-	github.com/uptrace/bun/dialect/sqlitedialect v1.2.5
-	github.com/uptrace/bun/extra/bunotel v1.2.5
+	github.com/uptrace/bun v1.2.6
+	github.com/uptrace/bun/dialect/pgdialect v1.2.6
+	github.com/uptrace/bun/dialect/sqlitedialect v1.2.6
+	github.com/uptrace/bun/extra/bunotel v1.2.6
 	github.com/wagslane/go-password-validator v0.3.0
 	github.com/yuin/goldmark v1.7.8
 	go.opentelemetry.io/otel v1.32.0
@@ -111,7 +111,9 @@ require (
 	github.com/Masterminds/sprig/v3 v3.2.3 // indirect
 	github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 // indirect
 	github.com/aymerick/douceur v0.2.0 // indirect
+	github.com/bahlo/generic-list-go v0.2.0 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
+	github.com/buger/jsonparser v1.1.1 // indirect
 	github.com/bytedance/sonic v1.11.6 // indirect
 	github.com/bytedance/sonic/loader v0.1.1 // indirect
 	github.com/cenkalti/backoff/v4 v4.3.0 // indirect
@@ -224,6 +226,7 @@ require (
 	github.com/uptrace/opentelemetry-go-extra/otelsql v0.3.2 // indirect
 	github.com/vmihailenco/msgpack/v5 v5.4.1 // indirect
 	github.com/vmihailenco/tagparser/v2 v2.0.0 // indirect
+	github.com/wk8/go-ordered-map/v2 v2.1.9-0.20240816141633-0a40785b4f41 // indirect
 	go.mongodb.org/mongo-driver v1.14.0 // indirect
 	go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.29.0 // indirect
 	go.opentelemetry.io/proto/otlp v1.3.1 // indirect
diff --git a/go.sum b/go.sum
index 3ce2e8853..ce53cf54b 100644
--- a/go.sum
+++ b/go.sum
@@ -97,10 +97,14 @@ github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 h1:DklsrG3d
 github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2/go.mod h1:WaHUgvxTVq04UNunO+XhnAqY/wQc+bxr74GqbsZ/Jqw=
 github.com/aymerick/douceur v0.2.0 h1:Mv+mAeH1Q+n9Fr+oyamOlAkUNPWPlA8PPGR0QAaYuPk=
 github.com/aymerick/douceur v0.2.0/go.mod h1:wlT5vV2O3h55X9m7iVYN0TBM0NH/MmbLnd30/FjWUq4=
+github.com/bahlo/generic-list-go v0.2.0 h1:5sz/EEAK+ls5wF+NeqDpk5+iNdMDXrh3z3nPnH1Wvgk=
+github.com/bahlo/generic-list-go v0.2.0/go.mod h1:2KvAjgMlE5NNynlg/5iLrrCCZ2+5xWbdbCW3pNTGyYg=
 github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
 github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw=
 github.com/buckket/go-blurhash v1.1.0 h1:X5M6r0LIvwdvKiUtiNcRL2YlmOfMzYobI3VCKCZc9Do=
 github.com/buckket/go-blurhash v1.1.0/go.mod h1:aT2iqo5W9vu9GpyoLErKfTHwgODsZp3bQfXjXJUxNb8=
+github.com/buger/jsonparser v1.1.1 h1:2PnMjfWD7wBILjqQbt530v576A/cAbQvEW9gGIpYMUs=
+github.com/buger/jsonparser v1.1.1/go.mod h1:6RYKKt7H4d4+iWqouImQ9R2FZql3VbhNgx27UK13J/0=
 github.com/bytedance/sonic v1.11.6 h1:oUp34TzMlL+OY1OUWxHqsdkgC/Zfc85zGqw9siXjrc0=
 github.com/bytedance/sonic v1.11.6/go.mod h1:LysEHSvpvDySVdC2f87zGWf6CIKJcAvqab1ZaiQtds4=
 github.com/bytedance/sonic/loader v0.1.1 h1:c+e5Pt1k/cy5wMveRDyk2X4B9hF4g7an8N3zCYjJFNM=
@@ -581,14 +585,14 @@ github.com/ugorji/go/codec v1.2.12 h1:9LC83zGrHhuUA9l16C9AHXAqEV/2wBQ4nkvumAE65E
 github.com/ugorji/go/codec v1.2.12/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
 github.com/ulule/limiter/v3 v3.11.2 h1:P4yOrxoEMJbOTfRJR2OzjL90oflzYPPmWg+dvwN2tHA=
 github.com/ulule/limiter/v3 v3.11.2/go.mod h1:QG5GnFOCV+k7lrL5Y8kgEeeflPH3+Cviqlqa8SVSQxI=
-github.com/uptrace/bun v1.2.5 h1:gSprL5xiBCp+tzcZHgENzJpXnmQwRM/A6s4HnBF85mc=
-github.com/uptrace/bun v1.2.5/go.mod h1:vkQMS4NNs4VNZv92y53uBSHXRqYyJp4bGhMHgaNCQpY=
-github.com/uptrace/bun/dialect/pgdialect v1.2.5 h1:dWLUxpjTdglzfBks2x+U2WIi+nRVjuh7Z3DLYVFswJk=
-github.com/uptrace/bun/dialect/pgdialect v1.2.5/go.mod h1:stwnlE8/6x8cuQ2aXcZqwDK/d+6jxgO3iQewflJT6C4=
-github.com/uptrace/bun/dialect/sqlitedialect v1.2.5 h1:liDvMaIWrN8DrHcxVbviOde/VDss9uhcqpcTSL3eJjc=
-github.com/uptrace/bun/dialect/sqlitedialect v1.2.5/go.mod h1:Mw6IDL/jNUL5ozcREAezOJSZ9Jm4LJlfoaXxBEfNBlM=
-github.com/uptrace/bun/extra/bunotel v1.2.5 h1:kkuuTbrG9d5leYZuSBKhq2gtq346lIrxf98Mig2y128=
-github.com/uptrace/bun/extra/bunotel v1.2.5/go.mod h1:rCHLszRZwppWE9cGDodO2FCI1qCrLwDjONp38KD3bA8=
+github.com/uptrace/bun v1.2.6 h1:lyGBQAhNiClchb97HA2cBnDeRxwTRLhSIgiFPXVisV8=
+github.com/uptrace/bun v1.2.6/go.mod h1:xMgnVFf+/5xsrFBU34HjDJmzZnXbVuNEt/Ih56I8qBU=
+github.com/uptrace/bun/dialect/pgdialect v1.2.6 h1:iNd1YLx619K+sZK+dRcWPzluurXYK1QwIkp9FEfNB/8=
+github.com/uptrace/bun/dialect/pgdialect v1.2.6/go.mod h1:OL7d3qZLxKYP8kxNhMg3IheN1pDR3UScGjoUP+ivxJQ=
+github.com/uptrace/bun/dialect/sqlitedialect v1.2.6 h1:p8vA39kR9Ypw0so+gUhFhd8NOufx3MzvoxJeUpwieQU=
+github.com/uptrace/bun/dialect/sqlitedialect v1.2.6/go.mod h1:sdGy8eCv9WVGDrPhagE9i7FASeyj3BFkHzkRMF/qK3w=
+github.com/uptrace/bun/extra/bunotel v1.2.6 h1:6m90acv9hsDuTYRo3oiKCWMatGPmi+feKAx8Y/GPj9A=
+github.com/uptrace/bun/extra/bunotel v1.2.6/go.mod h1:QGqnFNJ2H88juh7DmgdPJZVN9bSTpj7UaGllSO9JDKk=
 github.com/uptrace/opentelemetry-go-extra/otelsql v0.3.2 h1:ZjUj9BLYf9PEqBn8W/OapxhPjVRdC6CsXTdULHsyk5c=
 github.com/uptrace/opentelemetry-go-extra/otelsql v0.3.2/go.mod h1:O8bHQfyinKwTXKkiKNGmLQS7vRsqRxIQTFZpYpHK3IQ=
 github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
@@ -603,6 +607,8 @@ github.com/vmihailenco/tagparser/v2 v2.0.0 h1:y09buUbR+b5aycVFQs/g70pqKVZNBmxwAh
 github.com/vmihailenco/tagparser/v2 v2.0.0/go.mod h1:Wri+At7QHww0WTrCBeu4J6bNtoV6mEfg5OIWRZA9qds=
 github.com/wagslane/go-password-validator v0.3.0 h1:vfxOPzGHkz5S146HDpavl0cw1DSVP061Ry2PX0/ON6I=
 github.com/wagslane/go-password-validator v0.3.0/go.mod h1:TI1XJ6T5fRdRnHqHt14pvy1tNVnrwe7m3/f1f2fDphQ=
+github.com/wk8/go-ordered-map/v2 v2.1.9-0.20240816141633-0a40785b4f41 h1:rnB8ZLMeAr3VcqjfRkAm27qb8y6zFKNfuHvy1Gfe7KI=
+github.com/wk8/go-ordered-map/v2 v2.1.9-0.20240816141633-0a40785b4f41/go.mod h1:DbzwytT4g/odXquuOCqroKvtxxldI4nb3nuesHF/Exo=
 github.com/x448/float16 v0.8.4 h1:qLwI1I70+NjRFUR3zs1JPUCgaCXSh3SW62uAKT1mSBM=
 github.com/x448/float16 v0.8.4/go.mod h1:14CWIYCyZA/cWjXOioeEpHeN/83MdbZDRQHoFcYsOfg=
 github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f h1:J9EGpcZtP0E/raorCMxlFGSTBrsSlaDGf3jU/qvAE2c=
diff --git a/vendor/github.com/bahlo/generic-list-go/LICENSE b/vendor/github.com/bahlo/generic-list-go/LICENSE
new file mode 100644
index 000000000..6a66aea5e
--- /dev/null
+++ b/vendor/github.com/bahlo/generic-list-go/LICENSE
@@ -0,0 +1,27 @@
+Copyright (c) 2009 The Go Authors. All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are
+met:
+
+   * Redistributions of source code must retain the above copyright
+notice, this list of conditions and the following disclaimer.
+   * Redistributions in binary form must reproduce the above
+copyright notice, this list of conditions and the following disclaimer
+in the documentation and/or other materials provided with the
+distribution.
+   * Neither the name of Google Inc. nor the names of its
+contributors may be used to endorse or promote products derived from
+this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/bahlo/generic-list-go/README.md b/vendor/github.com/bahlo/generic-list-go/README.md
new file mode 100644
index 000000000..68bbce9fb
--- /dev/null
+++ b/vendor/github.com/bahlo/generic-list-go/README.md
@@ -0,0 +1,5 @@
+# generic-list-go [![CI](https://github.com/bahlo/generic-list-go/actions/workflows/ci.yml/badge.svg)](https://github.com/bahlo/generic-list-go/actions/workflows/ci.yml)
+
+Go [container/list](https://pkg.go.dev/container/list) but with generics.
+
+The code is based on `container/list` in `go1.18beta2`.
diff --git a/vendor/github.com/bahlo/generic-list-go/list.go b/vendor/github.com/bahlo/generic-list-go/list.go
new file mode 100644
index 000000000..a06a7c612
--- /dev/null
+++ b/vendor/github.com/bahlo/generic-list-go/list.go
@@ -0,0 +1,235 @@
+// Copyright 2009 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package list implements a doubly linked list.
+//
+// To iterate over a list (where l is a *List):
+//	for e := l.Front(); e != nil; e = e.Next() {
+//		// do something with e.Value
+//	}
+//
+package list
+
+// Element is an element of a linked list.
+type Element[T any] struct {
+	// Next and previous pointers in the doubly-linked list of elements.
+	// To simplify the implementation, internally a list l is implemented
+	// as a ring, such that &l.root is both the next element of the last
+	// list element (l.Back()) and the previous element of the first list
+	// element (l.Front()).
+	next, prev *Element[T]
+
+	// The list to which this element belongs.
+	list *List[T]
+
+	// The value stored with this element.
+	Value T
+}
+
+// Next returns the next list element or nil.
+func (e *Element[T]) Next() *Element[T] {
+	if p := e.next; e.list != nil && p != &e.list.root {
+		return p
+	}
+	return nil
+}
+
+// Prev returns the previous list element or nil.
+func (e *Element[T]) Prev() *Element[T] {
+	if p := e.prev; e.list != nil && p != &e.list.root {
+		return p
+	}
+	return nil
+}
+
+// List represents a doubly linked list.
+// The zero value for List is an empty list ready to use.
+type List[T any] struct {
+	root Element[T] // sentinel list element, only &root, root.prev, and root.next are used
+	len  int        // current list length excluding (this) sentinel element
+}
+
+// Init initializes or clears list l.
+func (l *List[T]) Init() *List[T] {
+	l.root.next = &l.root
+	l.root.prev = &l.root
+	l.len = 0
+	return l
+}
+
+// New returns an initialized list.
+func New[T any]() *List[T] { return new(List[T]).Init() }
+
+// Len returns the number of elements of list l.
+// The complexity is O(1).
+func (l *List[T]) Len() int { return l.len }
+
+// Front returns the first element of list l or nil if the list is empty.
+func (l *List[T]) Front() *Element[T] {
+	if l.len == 0 {
+		return nil
+	}
+	return l.root.next
+}
+
+// Back returns the last element of list l or nil if the list is empty.
+func (l *List[T]) Back() *Element[T] {
+	if l.len == 0 {
+		return nil
+	}
+	return l.root.prev
+}
+
+// lazyInit lazily initializes a zero List value.
+func (l *List[T]) lazyInit() {
+	if l.root.next == nil {
+		l.Init()
+	}
+}
+
+// insert inserts e after at, increments l.len, and returns e.
+func (l *List[T]) insert(e, at *Element[T]) *Element[T] {
+	e.prev = at
+	e.next = at.next
+	e.prev.next = e
+	e.next.prev = e
+	e.list = l
+	l.len++
+	return e
+}
+
+// insertValue is a convenience wrapper for insert(&Element{Value: v}, at).
+func (l *List[T]) insertValue(v T, at *Element[T]) *Element[T] {
+	return l.insert(&Element[T]{Value: v}, at)
+}
+
+// remove removes e from its list, decrements l.len
+func (l *List[T]) remove(e *Element[T]) {
+	e.prev.next = e.next
+	e.next.prev = e.prev
+	e.next = nil // avoid memory leaks
+	e.prev = nil // avoid memory leaks
+	e.list = nil
+	l.len--
+}
+
+// move moves e to next to at.
+func (l *List[T]) move(e, at *Element[T]) {
+	if e == at {
+		return
+	}
+	e.prev.next = e.next
+	e.next.prev = e.prev
+
+	e.prev = at
+	e.next = at.next
+	e.prev.next = e
+	e.next.prev = e
+}
+
+// Remove removes e from l if e is an element of list l.
+// It returns the element value e.Value.
+// The element must not be nil.
+func (l *List[T]) Remove(e *Element[T]) T {
+	if e.list == l {
+		// if e.list == l, l must have been initialized when e was inserted
+		// in l or l == nil (e is a zero Element) and l.remove will crash
+		l.remove(e)
+	}
+	return e.Value
+}
+
+// PushFront inserts a new element e with value v at the front of list l and returns e.
+func (l *List[T]) PushFront(v T) *Element[T] {
+	l.lazyInit()
+	return l.insertValue(v, &l.root)
+}
+
+// PushBack inserts a new element e with value v at the back of list l and returns e.
+func (l *List[T]) PushBack(v T) *Element[T] {
+	l.lazyInit()
+	return l.insertValue(v, l.root.prev)
+}
+
+// InsertBefore inserts a new element e with value v immediately before mark and returns e.
+// If mark is not an element of l, the list is not modified.
+// The mark must not be nil.
+func (l *List[T]) InsertBefore(v T, mark *Element[T]) *Element[T] {
+	if mark.list != l {
+		return nil
+	}
+	// see comment in List.Remove about initialization of l
+	return l.insertValue(v, mark.prev)
+}
+
+// InsertAfter inserts a new element e with value v immediately after mark and returns e.
+// If mark is not an element of l, the list is not modified.
+// The mark must not be nil.
+func (l *List[T]) InsertAfter(v T, mark *Element[T]) *Element[T] {
+	if mark.list != l {
+		return nil
+	}
+	// see comment in List.Remove about initialization of l
+	return l.insertValue(v, mark)
+}
+
+// MoveToFront moves element e to the front of list l.
+// If e is not an element of l, the list is not modified.
+// The element must not be nil.
+func (l *List[T]) MoveToFront(e *Element[T]) {
+	if e.list != l || l.root.next == e {
+		return
+	}
+	// see comment in List.Remove about initialization of l
+	l.move(e, &l.root)
+}
+
+// MoveToBack moves element e to the back of list l.
+// If e is not an element of l, the list is not modified.
+// The element must not be nil.
+func (l *List[T]) MoveToBack(e *Element[T]) {
+	if e.list != l || l.root.prev == e {
+		return
+	}
+	// see comment in List.Remove about initialization of l
+	l.move(e, l.root.prev)
+}
+
+// MoveBefore moves element e to its new position before mark.
+// If e or mark is not an element of l, or e == mark, the list is not modified.
+// The element and mark must not be nil.
+func (l *List[T]) MoveBefore(e, mark *Element[T]) {
+	if e.list != l || e == mark || mark.list != l {
+		return
+	}
+	l.move(e, mark.prev)
+}
+
+// MoveAfter moves element e to its new position after mark.
+// If e or mark is not an element of l, or e == mark, the list is not modified.
+// The element and mark must not be nil.
+func (l *List[T]) MoveAfter(e, mark *Element[T]) {
+	if e.list != l || e == mark || mark.list != l {
+		return
+	}
+	l.move(e, mark)
+}
+
+// PushBackList inserts a copy of another list at the back of list l.
+// The lists l and other may be the same. They must not be nil.
+func (l *List[T]) PushBackList(other *List[T]) {
+	l.lazyInit()
+	for i, e := other.Len(), other.Front(); i > 0; i, e = i-1, e.Next() {
+		l.insertValue(e.Value, l.root.prev)
+	}
+}
+
+// PushFrontList inserts a copy of another list at the front of list l.
+// The lists l and other may be the same. They must not be nil.
+func (l *List[T]) PushFrontList(other *List[T]) {
+	l.lazyInit()
+	for i, e := other.Len(), other.Back(); i > 0; i, e = i-1, e.Prev() {
+		l.insertValue(e.Value, &l.root)
+	}
+}
diff --git a/vendor/github.com/buger/jsonparser/.gitignore b/vendor/github.com/buger/jsonparser/.gitignore
new file mode 100644
index 000000000..5598d8a56
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/.gitignore
@@ -0,0 +1,12 @@
+
+*.test
+
+*.out
+
+*.mprof
+
+.idea
+
+vendor/github.com/buger/goterm/
+prof.cpu
+prof.mem
diff --git a/vendor/github.com/buger/jsonparser/.travis.yml b/vendor/github.com/buger/jsonparser/.travis.yml
new file mode 100644
index 000000000..dbfb7cf98
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/.travis.yml
@@ -0,0 +1,11 @@
+language: go
+arch:
+    - amd64
+    - ppc64le
+go:
+    - 1.7.x
+    - 1.8.x
+    - 1.9.x
+    - 1.10.x
+    - 1.11.x
+script: go test -v ./.
diff --git a/vendor/github.com/buger/jsonparser/Dockerfile b/vendor/github.com/buger/jsonparser/Dockerfile
new file mode 100644
index 000000000..37fc9fd0b
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/Dockerfile
@@ -0,0 +1,12 @@
+FROM golang:1.6
+
+RUN go get github.com/Jeffail/gabs
+RUN go get github.com/bitly/go-simplejson
+RUN go get github.com/pquerna/ffjson
+RUN go get github.com/antonholmquist/jason
+RUN go get github.com/mreiferson/go-ujson
+RUN go get -tags=unsafe -u github.com/ugorji/go/codec
+RUN go get github.com/mailru/easyjson
+
+WORKDIR /go/src/github.com/buger/jsonparser
+ADD . /go/src/github.com/buger/jsonparser
\ No newline at end of file
diff --git a/vendor/github.com/buger/jsonparser/LICENSE b/vendor/github.com/buger/jsonparser/LICENSE
new file mode 100644
index 000000000..ac25aeb7d
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/LICENSE
@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2016 Leonid Bugaev
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
diff --git a/vendor/github.com/buger/jsonparser/Makefile b/vendor/github.com/buger/jsonparser/Makefile
new file mode 100644
index 000000000..e843368cf
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/Makefile
@@ -0,0 +1,36 @@
+SOURCE = parser.go
+CONTAINER = jsonparser
+SOURCE_PATH = /go/src/github.com/buger/jsonparser
+BENCHMARK = JsonParser
+BENCHTIME = 5s
+TEST = .
+DRUN = docker run -v `pwd`:$(SOURCE_PATH) -i -t $(CONTAINER)
+
+build:
+	docker build -t $(CONTAINER) .
+
+race:
+	$(DRUN) --env GORACE="halt_on_error=1" go test ./. $(ARGS) -v -race -timeout 15s
+
+bench:
+	$(DRUN) go test $(LDFLAGS) -test.benchmem -bench $(BENCHMARK) ./benchmark/ $(ARGS) -benchtime $(BENCHTIME) -v
+
+bench_local:
+	$(DRUN) go test $(LDFLAGS) -test.benchmem -bench . $(ARGS) -benchtime $(BENCHTIME) -v
+
+profile:
+	$(DRUN) go test $(LDFLAGS) -test.benchmem -bench $(BENCHMARK) ./benchmark/ $(ARGS) -memprofile mem.mprof -v
+	$(DRUN) go test $(LDFLAGS) -test.benchmem -bench $(BENCHMARK) ./benchmark/ $(ARGS) -cpuprofile cpu.out -v
+	$(DRUN) go test $(LDFLAGS) -test.benchmem -bench $(BENCHMARK) ./benchmark/ $(ARGS) -c
+
+test:
+	$(DRUN) go test $(LDFLAGS) ./ -run $(TEST) -timeout 10s $(ARGS) -v
+
+fmt:
+	$(DRUN) go fmt ./...
+
+vet:
+	$(DRUN) go vet ./.
+
+bash:
+	$(DRUN) /bin/bash
\ No newline at end of file
diff --git a/vendor/github.com/buger/jsonparser/README.md b/vendor/github.com/buger/jsonparser/README.md
new file mode 100644
index 000000000..d7e0ec397
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/README.md
@@ -0,0 +1,365 @@
+[![Go Report Card](https://goreportcard.com/badge/github.com/buger/jsonparser)](https://goreportcard.com/report/github.com/buger/jsonparser) ![License](https://img.shields.io/dub/l/vibe-d.svg)
+# Alternative JSON parser for Go (10x times faster standard library)
+
+It does not require you to know the structure of the payload (eg. create structs), and allows accessing fields by providing the path to them. It is up to **10 times faster** than standard `encoding/json` package (depending on payload size and usage), **allocates no memory**. See benchmarks below.
+
+## Rationale
+Originally I made this for a project that relies on a lot of 3rd party APIs that can be unpredictable and complex.
+I love simplicity and prefer to avoid external dependecies. `encoding/json` requires you to know exactly your data structures, or if you prefer to use `map[string]interface{}` instead, it will be very slow and hard to manage.
+I investigated what's on the market and found that most libraries are just wrappers around `encoding/json`, there is few options with own parsers (`ffjson`, `easyjson`), but they still requires you to create data structures.
+
+
+Goal of this project is to push JSON parser to the performance limits and not sacrifice with compliance and developer user experience.
+
+## Example
+For the given JSON our goal is to extract the user's full name, number of github followers and avatar.
+
+```go
+import "github.com/buger/jsonparser"
+
+...
+
+data := []byte(`{
+  "person": {
+    "name": {
+      "first": "Leonid",
+      "last": "Bugaev",
+      "fullName": "Leonid Bugaev"
+    },
+    "github": {
+      "handle": "buger",
+      "followers": 109
+    },
+    "avatars": [
+      { "url": "https://avatars1.githubusercontent.com/u/14009?v=3&s=460", "type": "thumbnail" }
+    ]
+  },
+  "company": {
+    "name": "Acme"
+  }
+}`)
+
+// You can specify key path by providing arguments to Get function
+jsonparser.Get(data, "person", "name", "fullName")
+
+// There is `GetInt` and `GetBoolean` helpers if you exactly know key data type
+jsonparser.GetInt(data, "person", "github", "followers")
+
+// When you try to get object, it will return you []byte slice pointer to data containing it
+// In `company` it will be `{"name": "Acme"}`
+jsonparser.Get(data, "company")
+
+// If the key doesn't exist it will throw an error
+var size int64
+if value, err := jsonparser.GetInt(data, "company", "size"); err == nil {
+  size = value
+}
+
+// You can use `ArrayEach` helper to iterate items [item1, item2 .... itemN]
+jsonparser.ArrayEach(data, func(value []byte, dataType jsonparser.ValueType, offset int, err error) {
+	fmt.Println(jsonparser.Get(value, "url"))
+}, "person", "avatars")
+
+// Or use can access fields by index!
+jsonparser.GetString(data, "person", "avatars", "[0]", "url")
+
+// You can use `ObjectEach` helper to iterate objects { "key1":object1, "key2":object2, .... "keyN":objectN }
+jsonparser.ObjectEach(data, func(key []byte, value []byte, dataType jsonparser.ValueType, offset int) error {
+        fmt.Printf("Key: '%s'\n Value: '%s'\n Type: %s\n", string(key), string(value), dataType)
+	return nil
+}, "person", "name")
+
+// The most efficient way to extract multiple keys is `EachKey`
+
+paths := [][]string{
+  []string{"person", "name", "fullName"},
+  []string{"person", "avatars", "[0]", "url"},
+  []string{"company", "url"},
+}
+jsonparser.EachKey(data, func(idx int, value []byte, vt jsonparser.ValueType, err error){
+  switch idx {
+  case 0: // []string{"person", "name", "fullName"}
+    ...
+  case 1: // []string{"person", "avatars", "[0]", "url"}
+    ...
+  case 2: // []string{"company", "url"},
+    ...
+  }
+}, paths...)
+
+// For more information see docs below
+```
+
+## Need to speedup your app?
+
+I'm available for consulting and can help you push your app performance to the limits. Ping me at: leonsbox@gmail.com.
+
+## Reference
+
+Library API is really simple. You just need the `Get` method to perform any operation. The rest is just helpers around it.
+
+You also can view API at [godoc.org](https://godoc.org/github.com/buger/jsonparser)
+
+
+### **`Get`**
+```go
+func Get(data []byte, keys ...string) (value []byte, dataType jsonparser.ValueType, offset int, err error)
+```
+Receives data structure, and key path to extract value from.
+
+Returns:
+* `value` - Pointer to original data structure containing key value, or just empty slice if nothing found or error
+* `dataType` - 	Can be: `NotExist`, `String`, `Number`, `Object`, `Array`, `Boolean` or `Null`
+* `offset` - Offset from provided data structure where key value ends. Used mostly internally, for example for `ArrayEach` helper.
+* `err` - If the key is not found or any other parsing issue, it should return error. If key not found it also sets `dataType` to `NotExist`
+
+Accepts multiple keys to specify path to JSON value (in case of quering nested structures).
+If no keys are provided it will try to extract the closest JSON value (simple ones or object/array), useful for reading streams or arrays, see `ArrayEach` implementation.
+
+Note that keys can be an array indexes: `jsonparser.GetInt("person", "avatars", "[0]", "url")`, pretty cool, yeah?
+
+### **`GetString`**
+```go
+func GetString(data []byte, keys ...string) (val string, err error)
+```
+Returns strings properly handing escaped and unicode characters. Note that this will cause additional memory allocations.
+
+### **`GetUnsafeString`**
+If you need string in your app, and ready to sacrifice with support of escaped symbols in favor of speed. It returns string mapped to existing byte slice memory, without any allocations:
+```go
+s, _, := jsonparser.GetUnsafeString(data, "person", "name", "title")
+switch s {
+  case 'CEO':
+    ...
+  case 'Engineer'
+    ...
+  ...
+}
+```
+Note that `unsafe` here means that your string will exist until GC will free underlying byte slice, for most of cases it means that you can use this string only in current context, and should not pass it anywhere externally: through channels or any other way.
+
+
+### **`GetBoolean`**, **`GetInt`** and **`GetFloat`**
+```go
+func GetBoolean(data []byte, keys ...string) (val bool, err error)
+
+func GetFloat(data []byte, keys ...string) (val float64, err error)
+
+func GetInt(data []byte, keys ...string) (val int64, err error)
+```
+If you know the key type, you can use the helpers above.
+If key data type do not match, it will return error.
+
+### **`ArrayEach`**
+```go
+func ArrayEach(data []byte, cb func(value []byte, dataType jsonparser.ValueType, offset int, err error), keys ...string)
+```
+Needed for iterating arrays, accepts a callback function with the same return arguments as `Get`.
+
+### **`ObjectEach`**
+```go
+func ObjectEach(data []byte, callback func(key []byte, value []byte, dataType ValueType, offset int) error, keys ...string) (err error)
+```
+Needed for iterating object, accepts a callback function. Example:
+```go
+var handler func([]byte, []byte, jsonparser.ValueType, int) error
+handler = func(key []byte, value []byte, dataType jsonparser.ValueType, offset int) error {
+	//do stuff here
+}
+jsonparser.ObjectEach(myJson, handler)
+```
+
+
+### **`EachKey`**
+```go
+func EachKey(data []byte, cb func(idx int, value []byte, dataType jsonparser.ValueType, err error), paths ...[]string)
+```
+When you need to read multiple keys, and you do not afraid of low-level API `EachKey` is your friend. It read payload only single time, and calls callback function once path is found. For example when you call multiple times `Get`, it has to process payload multiple times, each time you call it. Depending on payload `EachKey` can be multiple times faster than `Get`. Path can use nested keys as well!
+
+```go
+paths := [][]string{
+	[]string{"uuid"},
+	[]string{"tz"},
+	[]string{"ua"},
+	[]string{"st"},
+}
+var data SmallPayload
+
+jsonparser.EachKey(smallFixture, func(idx int, value []byte, vt jsonparser.ValueType, err error){
+	switch idx {
+	case 0:
+		data.Uuid, _ = value
+	case 1:
+		v, _ := jsonparser.ParseInt(value)
+		data.Tz = int(v)
+	case 2:
+		data.Ua, _ = value
+	case 3:
+		v, _ := jsonparser.ParseInt(value)
+		data.St = int(v)
+	}
+}, paths...)
+```
+
+### **`Set`**
+```go
+func Set(data []byte, setValue []byte, keys ...string) (value []byte, err error)
+```
+Receives existing data structure, key path to set, and value to set at that key. *This functionality is experimental.*
+
+Returns:
+* `value` - Pointer to original data structure with updated or added key value.
+* `err` - If any parsing issue, it should return error.
+
+Accepts multiple keys to specify path to JSON value (in case of updating or creating  nested structures).
+
+Note that keys can be an array indexes: `jsonparser.Set(data, []byte("http://github.com"), "person", "avatars", "[0]", "url")`
+
+### **`Delete`**
+```go
+func Delete(data []byte, keys ...string) value []byte
+```
+Receives existing data structure, and key path to delete. *This functionality is experimental.*
+
+Returns:
+* `value` - Pointer to original data structure with key path deleted if it can be found. If there is no key path, then the whole data structure is deleted.
+
+Accepts multiple keys to specify path to JSON value (in case of updating or creating  nested structures).
+
+Note that keys can be an array indexes: `jsonparser.Delete(data, "person", "avatars", "[0]", "url")`
+
+
+## What makes it so fast?
+* It does not rely on `encoding/json`, `reflection` or `interface{}`, the only real package dependency is `bytes`.
+* Operates with JSON payload on byte level, providing you pointers to the original data structure: no memory allocation.
+* No automatic type conversions, by default everything is a []byte, but it provides you value type, so you can convert by yourself (there is few helpers included).
+* Does not parse full record, only keys you specified
+
+
+## Benchmarks
+
+There are 3 benchmark types, trying to simulate real-life usage for small, medium and large JSON payloads.
+For each metric, the lower value is better. Time/op is in nanoseconds. Values better than standard encoding/json marked as bold text.
+Benchmarks run on standard Linode 1024 box.
+
+Compared libraries:
+* https://golang.org/pkg/encoding/json
+* https://github.com/Jeffail/gabs
+* https://github.com/a8m/djson
+* https://github.com/bitly/go-simplejson
+* https://github.com/antonholmquist/jason
+* https://github.com/mreiferson/go-ujson
+* https://github.com/ugorji/go/codec
+* https://github.com/pquerna/ffjson
+* https://github.com/mailru/easyjson
+* https://github.com/buger/jsonparser
+
+#### TLDR
+If you want to skip next sections we have 2 winner: `jsonparser` and `easyjson`.
+`jsonparser` is up to 10 times faster than standard `encoding/json` package (depending on payload size and usage), and almost infinitely (literally) better in memory consumption because it operates with data on byte level, and provide direct slice pointers.
+`easyjson` wins in CPU in medium tests and frankly i'm impressed with this package: it is remarkable results considering that it is almost drop-in replacement for `encoding/json` (require some code generation).
+
+It's hard to fully compare `jsonparser` and `easyjson` (or `ffson`), they a true parsers and fully process record, unlike `jsonparser` which parse only keys you specified.
+
+If you searching for replacement of `encoding/json` while keeping structs, `easyjson` is an amazing choice. If you want to process dynamic JSON, have memory constrains, or more control over your data you should try `jsonparser`.
+
+`jsonparser` performance heavily depends on usage, and it works best when you do not need to process full record, only some keys. The more calls you need to make, the slower it will be, in contrast `easyjson` (or `ffjson`, `encoding/json`) parser record only 1 time, and then you can make as many calls as you want.
+
+With great power comes great responsibility! :)
+
+
+#### Small payload
+
+Each test processes 190 bytes of http log as a JSON record.
+It should read multiple fields.
+https://github.com/buger/jsonparser/blob/master/benchmark/benchmark_small_payload_test.go
+
+Library | time/op | bytes/op | allocs/op 
+ ------ | ------- | -------- | -------
+encoding/json struct | 7879 | 880 | 18 
+encoding/json interface{} | 8946 | 1521 | 38
+Jeffail/gabs | 10053 | 1649 | 46
+bitly/go-simplejson | 10128 | 2241 | 36 
+antonholmquist/jason | 27152 | 7237 | 101 
+github.com/ugorji/go/codec | 8806 | 2176 | 31 
+mreiferson/go-ujson | **7008** | **1409** | 37 
+a8m/djson | 3862 | 1249 | 30 
+pquerna/ffjson | **3769** | **624** | **15** 
+mailru/easyjson | **2002** | **192** | **9** 
+buger/jsonparser | **1367** | **0** | **0** 
+buger/jsonparser (EachKey API) | **809** | **0** | **0** 
+
+Winners are ffjson, easyjson and jsonparser, where jsonparser is up to 9.8x faster than encoding/json and 4.6x faster than ffjson, and slightly faster than easyjson.
+If you look at memory allocation, jsonparser has no rivals, as it makes no data copy and operates with raw []byte structures and pointers to it.
+
+#### Medium payload
+
+Each test processes a 2.4kb JSON record (based on Clearbit API).
+It should read multiple nested fields and 1 array.
+
+https://github.com/buger/jsonparser/blob/master/benchmark/benchmark_medium_payload_test.go
+
+| Library | time/op | bytes/op | allocs/op |
+| ------- | ------- | -------- | --------- |
+| encoding/json struct | 57749 | 1336 | 29 |
+| encoding/json interface{} | 79297 | 10627 | 215 |
+| Jeffail/gabs | 83807 | 11202 | 235 |
+| bitly/go-simplejson | 88187 | 17187 | 220 |
+| antonholmquist/jason | 94099 | 19013 | 247 |
+| github.com/ugorji/go/codec | 114719 | 6712 | 152 |
+| mreiferson/go-ujson | **56972** | 11547 | 270 |
+| a8m/djson | 28525 | 10196 | 198 | 
+| pquerna/ffjson | **20298** | **856** | **20** |
+| mailru/easyjson | **10512** | **336** | **12** |
+| buger/jsonparser | **15955** | **0** | **0** |
+| buger/jsonparser (EachKey API) | **8916** | **0** | **0** |
+
+The difference between ffjson and jsonparser in CPU usage is smaller, while the memory consumption difference is growing. On the other hand `easyjson` shows remarkable performance for medium payload.
+
+`gabs`, `go-simplejson` and `jason` are based on encoding/json and map[string]interface{} and actually only helpers for unstructured JSON, their performance correlate with `encoding/json interface{}`, and they will skip next round.
+`go-ujson` while have its own parser, shows same performance as `encoding/json`, also skips next round. Same situation with `ugorji/go/codec`, but it showed unexpectedly bad performance for complex payloads.
+
+
+#### Large payload
+
+Each test processes a 24kb JSON record (based on Discourse API)
+It should read 2 arrays, and for each item in array get a few fields.
+Basically it means processing a full JSON file.
+
+https://github.com/buger/jsonparser/blob/master/benchmark/benchmark_large_payload_test.go
+
+| Library | time/op | bytes/op | allocs/op |
+| --- | --- | --- | --- |
+| encoding/json struct | 748336 | 8272 | 307 |
+| encoding/json interface{} | 1224271 | 215425 | 3395 |
+| a8m/djson | 510082 | 213682 | 2845 |
+| pquerna/ffjson | **312271** | **7792** | **298** |
+| mailru/easyjson | **154186** | **6992** | **288** |
+| buger/jsonparser | **85308** | **0** | **0** |
+
+`jsonparser` now is a winner, but do not forget that it is way more lightweight parser than `ffson` or `easyjson`, and they have to parser all the data, while `jsonparser` parse only what you need. All `ffjson`, `easysjon` and `jsonparser` have their own parsing code, and does not depend on `encoding/json` or `interface{}`, thats one of the reasons why they are so fast. `easyjson` also use a bit of `unsafe` package to reduce memory consuption (in theory it can lead to some unexpected GC issue, but i did not tested enough)
+
+Also last benchmark did not included `EachKey` test, because in this particular case we need to read lot of Array values, and using `ArrayEach` is more efficient. 
+
+## Questions and support
+
+All bug-reports and suggestions should go though Github Issues.
+
+## Contributing
+
+1. Fork it
+2. Create your feature branch (git checkout -b my-new-feature)
+3. Commit your changes (git commit -am 'Added some feature')
+4. Push to the branch (git push origin my-new-feature)
+5. Create new Pull Request
+
+## Development
+
+All my development happens using Docker, and repo include some Make tasks to simplify development.
+
+* `make build` - builds docker image, usually can be called only once
+* `make test` - run tests
+* `make fmt` - run go fmt
+* `make bench` - run benchmarks (if you need to run only single benchmark modify `BENCHMARK` variable in make file)
+* `make profile` - runs benchmark and generate 3 files-  `cpu.out`, `mem.mprof` and `benchmark.test` binary, which can be used for `go tool pprof`
+* `make bash` - enter container (i use it for running `go tool pprof` above)
diff --git a/vendor/github.com/buger/jsonparser/bytes.go b/vendor/github.com/buger/jsonparser/bytes.go
new file mode 100644
index 000000000..0bb0ff395
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/bytes.go
@@ -0,0 +1,47 @@
+package jsonparser
+
+import (
+	bio "bytes"
+)
+
+// minInt64 '-9223372036854775808' is the smallest representable number in int64
+const minInt64 = `9223372036854775808`
+
+// About 2x faster then strconv.ParseInt because it only supports base 10, which is enough for JSON
+func parseInt(bytes []byte) (v int64, ok bool, overflow bool) {
+	if len(bytes) == 0 {
+		return 0, false, false
+	}
+
+	var neg bool = false
+	if bytes[0] == '-' {
+		neg = true
+		bytes = bytes[1:]
+	}
+
+	var b int64 = 0
+	for _, c := range bytes {
+		if c >= '0' && c <= '9' {
+			b = (10 * v) + int64(c-'0')
+		} else {
+			return 0, false, false
+		}
+		if overflow = (b < v); overflow {
+			break
+		}
+		v = b
+	}
+
+	if overflow {
+		if neg && bio.Equal(bytes, []byte(minInt64)) {
+			return b, true, false
+		}
+		return 0, false, true
+	}
+
+	if neg {
+		return -v, true, false
+	} else {
+		return v, true, false
+	}
+}
diff --git a/vendor/github.com/buger/jsonparser/bytes_safe.go b/vendor/github.com/buger/jsonparser/bytes_safe.go
new file mode 100644
index 000000000..ff16a4a19
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/bytes_safe.go
@@ -0,0 +1,25 @@
+// +build appengine appenginevm
+
+package jsonparser
+
+import (
+	"strconv"
+)
+
+// See fastbytes_unsafe.go for explanation on why *[]byte is used (signatures must be consistent with those in that file)
+
+func equalStr(b *[]byte, s string) bool {
+	return string(*b) == s
+}
+
+func parseFloat(b *[]byte) (float64, error) {
+	return strconv.ParseFloat(string(*b), 64)
+}
+
+func bytesToString(b *[]byte) string {
+	return string(*b)
+}
+
+func StringToBytes(s string) []byte {
+	return []byte(s)
+}
diff --git a/vendor/github.com/buger/jsonparser/bytes_unsafe.go b/vendor/github.com/buger/jsonparser/bytes_unsafe.go
new file mode 100644
index 000000000..589fea87e
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/bytes_unsafe.go
@@ -0,0 +1,44 @@
+// +build !appengine,!appenginevm
+
+package jsonparser
+
+import (
+	"reflect"
+	"strconv"
+	"unsafe"
+	"runtime"
+)
+
+//
+// The reason for using *[]byte rather than []byte in parameters is an optimization. As of Go 1.6,
+// the compiler cannot perfectly inline the function when using a non-pointer slice. That is,
+// the non-pointer []byte parameter version is slower than if its function body is manually
+// inlined, whereas the pointer []byte version is equally fast to the manually inlined
+// version. Instruction count in assembly taken from "go tool compile" confirms this difference.
+//
+// TODO: Remove hack after Go 1.7 release
+//
+func equalStr(b *[]byte, s string) bool {
+	return *(*string)(unsafe.Pointer(b)) == s
+}
+
+func parseFloat(b *[]byte) (float64, error) {
+	return strconv.ParseFloat(*(*string)(unsafe.Pointer(b)), 64)
+}
+
+// A hack until issue golang/go#2632 is fixed.
+// See: https://github.com/golang/go/issues/2632
+func bytesToString(b *[]byte) string {
+	return *(*string)(unsafe.Pointer(b))
+}
+
+func StringToBytes(s string) []byte {
+	b := make([]byte, 0, 0)
+	bh := (*reflect.SliceHeader)(unsafe.Pointer(&b))
+	sh := (*reflect.StringHeader)(unsafe.Pointer(&s))
+	bh.Data = sh.Data
+	bh.Cap = sh.Len
+	bh.Len = sh.Len
+	runtime.KeepAlive(s)
+	return b
+}
diff --git a/vendor/github.com/buger/jsonparser/escape.go b/vendor/github.com/buger/jsonparser/escape.go
new file mode 100644
index 000000000..49669b942
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/escape.go
@@ -0,0 +1,173 @@
+package jsonparser
+
+import (
+	"bytes"
+	"unicode/utf8"
+)
+
+// JSON Unicode stuff: see https://tools.ietf.org/html/rfc7159#section-7
+
+const supplementalPlanesOffset = 0x10000
+const highSurrogateOffset = 0xD800
+const lowSurrogateOffset = 0xDC00
+
+const basicMultilingualPlaneReservedOffset = 0xDFFF
+const basicMultilingualPlaneOffset = 0xFFFF
+
+func combineUTF16Surrogates(high, low rune) rune {
+	return supplementalPlanesOffset + (high-highSurrogateOffset)<<10 + (low - lowSurrogateOffset)
+}
+
+const badHex = -1
+
+func h2I(c byte) int {
+	switch {
+	case c >= '0' && c <= '9':
+		return int(c - '0')
+	case c >= 'A' && c <= 'F':
+		return int(c - 'A' + 10)
+	case c >= 'a' && c <= 'f':
+		return int(c - 'a' + 10)
+	}
+	return badHex
+}
+
+// decodeSingleUnicodeEscape decodes a single \uXXXX escape sequence. The prefix \u is assumed to be present and
+// is not checked.
+// In JSON, these escapes can either come alone or as part of "UTF16 surrogate pairs" that must be handled together.
+// This function only handles one; decodeUnicodeEscape handles this more complex case.
+func decodeSingleUnicodeEscape(in []byte) (rune, bool) {
+	// We need at least 6 characters total
+	if len(in) < 6 {
+		return utf8.RuneError, false
+	}
+
+	// Convert hex to decimal
+	h1, h2, h3, h4 := h2I(in[2]), h2I(in[3]), h2I(in[4]), h2I(in[5])
+	if h1 == badHex || h2 == badHex || h3 == badHex || h4 == badHex {
+		return utf8.RuneError, false
+	}
+
+	// Compose the hex digits
+	return rune(h1<<12 + h2<<8 + h3<<4 + h4), true
+}
+
+// isUTF16EncodedRune checks if a rune is in the range for non-BMP characters,
+// which is used to describe UTF16 chars.
+// Source: https://en.wikipedia.org/wiki/Plane_(Unicode)#Basic_Multilingual_Plane
+func isUTF16EncodedRune(r rune) bool {
+	return highSurrogateOffset <= r && r <= basicMultilingualPlaneReservedOffset
+}
+
+func decodeUnicodeEscape(in []byte) (rune, int) {
+	if r, ok := decodeSingleUnicodeEscape(in); !ok {
+		// Invalid Unicode escape
+		return utf8.RuneError, -1
+	} else if r <= basicMultilingualPlaneOffset && !isUTF16EncodedRune(r) {
+		// Valid Unicode escape in Basic Multilingual Plane
+		return r, 6
+	} else if r2, ok := decodeSingleUnicodeEscape(in[6:]); !ok { // Note: previous decodeSingleUnicodeEscape success guarantees at least 6 bytes remain
+		// UTF16 "high surrogate" without manditory valid following Unicode escape for the "low surrogate"
+		return utf8.RuneError, -1
+	} else if r2 < lowSurrogateOffset {
+		// Invalid UTF16 "low surrogate"
+		return utf8.RuneError, -1
+	} else {
+		// Valid UTF16 surrogate pair
+		return combineUTF16Surrogates(r, r2), 12
+	}
+}
+
+// backslashCharEscapeTable: when '\X' is found for some byte X, it is to be replaced with backslashCharEscapeTable[X]
+var backslashCharEscapeTable = [...]byte{
+	'"':  '"',
+	'\\': '\\',
+	'/':  '/',
+	'b':  '\b',
+	'f':  '\f',
+	'n':  '\n',
+	'r':  '\r',
+	't':  '\t',
+}
+
+// unescapeToUTF8 unescapes the single escape sequence starting at 'in' into 'out' and returns
+// how many characters were consumed from 'in' and emitted into 'out'.
+// If a valid escape sequence does not appear as a prefix of 'in', (-1, -1) to signal the error.
+func unescapeToUTF8(in, out []byte) (inLen int, outLen int) {
+	if len(in) < 2 || in[0] != '\\' {
+		// Invalid escape due to insufficient characters for any escape or no initial backslash
+		return -1, -1
+	}
+
+	// https://tools.ietf.org/html/rfc7159#section-7
+	switch e := in[1]; e {
+	case '"', '\\', '/', 'b', 'f', 'n', 'r', 't':
+		// Valid basic 2-character escapes (use lookup table)
+		out[0] = backslashCharEscapeTable[e]
+		return 2, 1
+	case 'u':
+		// Unicode escape
+		if r, inLen := decodeUnicodeEscape(in); inLen == -1 {
+			// Invalid Unicode escape
+			return -1, -1
+		} else {
+			// Valid Unicode escape; re-encode as UTF8
+			outLen := utf8.EncodeRune(out, r)
+			return inLen, outLen
+		}
+	}
+
+	return -1, -1
+}
+
+// unescape unescapes the string contained in 'in' and returns it as a slice.
+// If 'in' contains no escaped characters:
+//   Returns 'in'.
+// Else, if 'out' is of sufficient capacity (guaranteed if cap(out) >= len(in)):
+//   'out' is used to build the unescaped string and is returned with no extra allocation
+// Else:
+//   A new slice is allocated and returned.
+func Unescape(in, out []byte) ([]byte, error) {
+	firstBackslash := bytes.IndexByte(in, '\\')
+	if firstBackslash == -1 {
+		return in, nil
+	}
+
+	// Get a buffer of sufficient size (allocate if needed)
+	if cap(out) < len(in) {
+		out = make([]byte, len(in))
+	} else {
+		out = out[0:len(in)]
+	}
+
+	// Copy the first sequence of unescaped bytes to the output and obtain a buffer pointer (subslice)
+	copy(out, in[:firstBackslash])
+	in = in[firstBackslash:]
+	buf := out[firstBackslash:]
+
+	for len(in) > 0 {
+		// Unescape the next escaped character
+		inLen, bufLen := unescapeToUTF8(in, buf)
+		if inLen == -1 {
+			return nil, MalformedStringEscapeError
+		}
+
+		in = in[inLen:]
+		buf = buf[bufLen:]
+
+		// Copy everything up until the next backslash
+		nextBackslash := bytes.IndexByte(in, '\\')
+		if nextBackslash == -1 {
+			copy(buf, in)
+			buf = buf[len(in):]
+			break
+		} else {
+			copy(buf, in[:nextBackslash])
+			buf = buf[nextBackslash:]
+			in = in[nextBackslash:]
+		}
+	}
+
+	// Trim the out buffer to the amount that was actually emitted
+	return out[:len(out)-len(buf)], nil
+}
diff --git a/vendor/github.com/buger/jsonparser/fuzz.go b/vendor/github.com/buger/jsonparser/fuzz.go
new file mode 100644
index 000000000..854bd11b2
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/fuzz.go
@@ -0,0 +1,117 @@
+package jsonparser
+
+func FuzzParseString(data []byte) int {
+	r, err := ParseString(data)
+	if err != nil || r == "" {
+		return 0
+	}
+	return 1
+}
+
+func FuzzEachKey(data []byte) int {
+	paths := [][]string{
+		{"name"},
+		{"order"},
+		{"nested", "a"},
+		{"nested", "b"},
+		{"nested2", "a"},
+		{"nested", "nested3", "b"},
+		{"arr", "[1]", "b"},
+		{"arrInt", "[3]"},
+		{"arrInt", "[5]"},
+		{"nested"},
+		{"arr", "["},
+		{"a\n", "b\n"},
+	}
+	EachKey(data, func(idx int, value []byte, vt ValueType, err error) {}, paths...)
+	return 1
+}
+
+func FuzzDelete(data []byte) int {
+	Delete(data, "test")
+	return 1
+}
+
+func FuzzSet(data []byte) int {
+	_, err := Set(data, []byte(`"new value"`), "test")
+	if err != nil {
+		return 0
+	}
+	return 1
+}
+
+func FuzzObjectEach(data []byte) int {
+	_ = ObjectEach(data, func(key, value []byte, valueType ValueType, off int) error {
+		return nil
+	})
+	return 1
+}
+
+func FuzzParseFloat(data []byte) int {
+	_, err := ParseFloat(data)
+	if err != nil {
+		return 0
+	}
+	return 1
+}
+
+func FuzzParseInt(data []byte) int {
+	_, err := ParseInt(data)
+	if err != nil {
+		return 0
+	}
+	return 1
+}
+
+func FuzzParseBool(data []byte) int {
+	_, err := ParseBoolean(data)
+	if err != nil {
+		return 0
+	}
+	return 1
+}
+
+func FuzzTokenStart(data []byte) int {
+	_ = tokenStart(data)
+	return 1
+}
+
+func FuzzGetString(data []byte) int {
+	_, err := GetString(data, "test")
+	if err != nil {
+		return 0
+	}
+	return 1
+}
+
+func FuzzGetFloat(data []byte) int {
+	_, err := GetFloat(data, "test")
+	if err != nil {
+		return 0
+	}
+	return 1
+}
+
+func FuzzGetInt(data []byte) int {
+	_, err := GetInt(data, "test")
+	if err != nil {
+		return 0
+	}
+	return 1
+}
+
+func FuzzGetBoolean(data []byte) int {
+	_, err := GetBoolean(data, "test")
+	if err != nil {
+		return 0
+	}
+	return 1
+}
+
+func FuzzGetUnsafeString(data []byte) int {
+	_, err := GetUnsafeString(data, "test")
+	if err != nil {
+		return 0
+	}
+	return 1
+}
diff --git a/vendor/github.com/buger/jsonparser/oss-fuzz-build.sh b/vendor/github.com/buger/jsonparser/oss-fuzz-build.sh
new file mode 100644
index 000000000..c573b0e2d
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/oss-fuzz-build.sh
@@ -0,0 +1,47 @@
+#!/bin/bash -eu
+
+git clone https://github.com/dvyukov/go-fuzz-corpus
+zip corpus.zip go-fuzz-corpus/json/corpus/*
+
+cp corpus.zip $OUT/fuzzparsestring_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzParseString fuzzparsestring
+
+cp corpus.zip $OUT/fuzzeachkey_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzEachKey fuzzeachkey
+
+cp corpus.zip $OUT/fuzzdelete_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzDelete fuzzdelete
+
+cp corpus.zip $OUT/fuzzset_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzSet fuzzset
+
+cp corpus.zip $OUT/fuzzobjecteach_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzObjectEach fuzzobjecteach
+
+cp corpus.zip $OUT/fuzzparsefloat_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzParseFloat fuzzparsefloat
+
+cp corpus.zip $OUT/fuzzparseint_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzParseInt fuzzparseint
+
+cp corpus.zip $OUT/fuzzparsebool_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzParseBool fuzzparsebool
+
+cp corpus.zip $OUT/fuzztokenstart_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzTokenStart fuzztokenstart
+
+cp corpus.zip $OUT/fuzzgetstring_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzGetString fuzzgetstring
+
+cp corpus.zip $OUT/fuzzgetfloat_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzGetFloat fuzzgetfloat
+
+cp corpus.zip $OUT/fuzzgetint_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzGetInt fuzzgetint
+
+cp corpus.zip $OUT/fuzzgetboolean_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzGetBoolean fuzzgetboolean
+
+cp corpus.zip $OUT/fuzzgetunsafestring_seed_corpus.zip
+compile_go_fuzzer github.com/buger/jsonparser FuzzGetUnsafeString fuzzgetunsafestring
+
diff --git a/vendor/github.com/buger/jsonparser/parser.go b/vendor/github.com/buger/jsonparser/parser.go
new file mode 100644
index 000000000..14b80bc48
--- /dev/null
+++ b/vendor/github.com/buger/jsonparser/parser.go
@@ -0,0 +1,1283 @@
+package jsonparser
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"strconv"
+)
+
+// Errors
+var (
+	KeyPathNotFoundError       = errors.New("Key path not found")
+	UnknownValueTypeError      = errors.New("Unknown value type")
+	MalformedJsonError         = errors.New("Malformed JSON error")
+	MalformedStringError       = errors.New("Value is string, but can't find closing '\"' symbol")
+	MalformedArrayError        = errors.New("Value is array, but can't find closing ']' symbol")
+	MalformedObjectError       = errors.New("Value looks like object, but can't find closing '}' symbol")
+	MalformedValueError        = errors.New("Value looks like Number/Boolean/None, but can't find its end: ',' or '}' symbol")
+	OverflowIntegerError       = errors.New("Value is number, but overflowed while parsing")
+	MalformedStringEscapeError = errors.New("Encountered an invalid escape sequence in a string")
+)
+
+// How much stack space to allocate for unescaping JSON strings; if a string longer
+// than this needs to be escaped, it will result in a heap allocation
+const unescapeStackBufSize = 64
+
+func tokenEnd(data []byte) int {
+	for i, c := range data {
+		switch c {
+		case ' ', '\n', '\r', '\t', ',', '}', ']':
+			return i
+		}
+	}
+
+	return len(data)
+}
+
+func findTokenStart(data []byte, token byte) int {
+	for i := len(data) - 1; i >= 0; i-- {
+		switch data[i] {
+		case token:
+			return i
+		case '[', '{':
+			return 0
+		}
+	}
+
+	return 0
+}
+
+func findKeyStart(data []byte, key string) (int, error) {
+	i := 0
+	ln := len(data)
+	if ln > 0 && (data[0] == '{' || data[0] == '[') {
+		i = 1
+	}
+	var stackbuf [unescapeStackBufSize]byte // stack-allocated array for allocation-free unescaping of small strings
+
+	if ku, err := Unescape(StringToBytes(key), stackbuf[:]); err == nil {
+		key = bytesToString(&ku)
+	}
+
+	for i < ln {
+		switch data[i] {
+		case '"':
+			i++
+			keyBegin := i
+
+			strEnd, keyEscaped := stringEnd(data[i:])
+			if strEnd == -1 {
+				break
+			}
+			i += strEnd
+			keyEnd := i - 1
+
+			valueOffset := nextToken(data[i:])
+			if valueOffset == -1 {
+				break
+			}
+
+			i += valueOffset
+
+			// if string is a key, and key level match
+			k := data[keyBegin:keyEnd]
+			// for unescape: if there are no escape sequences, this is cheap; if there are, it is a
+			// bit more expensive, but causes no allocations unless len(key) > unescapeStackBufSize
+			if keyEscaped {
+				if ku, err := Unescape(k, stackbuf[:]); err != nil {
+					break
+				} else {
+					k = ku
+				}
+			}
+
+			if data[i] == ':' && len(key) == len(k) && bytesToString(&k) == key {
+				return keyBegin - 1, nil
+			}
+
+		case '[':
+			end := blockEnd(data[i:], data[i], ']')
+			if end != -1 {
+				i = i + end
+			}
+		case '{':
+			end := blockEnd(data[i:], data[i], '}')
+			if end != -1 {
+				i = i + end
+			}
+		}
+		i++
+	}
+
+	return -1, KeyPathNotFoundError
+}
+
+func tokenStart(data []byte) int {
+	for i := len(data) - 1; i >= 0; i-- {
+		switch data[i] {
+		case '\n', '\r', '\t', ',', '{', '[':
+			return i
+		}
+	}
+
+	return 0
+}
+
+// Find position of next character which is not whitespace
+func nextToken(data []byte) int {
+	for i, c := range data {
+		switch c {
+		case ' ', '\n', '\r', '\t':
+			continue
+		default:
+			return i
+		}
+	}
+
+	return -1
+}
+
+// Find position of last character which is not whitespace
+func lastToken(data []byte) int {
+	for i := len(data) - 1; i >= 0; i-- {
+		switch data[i] {
+		case ' ', '\n', '\r', '\t':
+			continue
+		default:
+			return i
+		}
+	}
+
+	return -1
+}
+
+// Tries to find the end of string
+// Support if string contains escaped quote symbols.
+func stringEnd(data []byte) (int, bool) {
+	escaped := false
+	for i, c := range data {
+		if c == '"' {
+			if !escaped {
+				return i + 1, false
+			} else {
+				j := i - 1
+				for {
+					if j < 0 || data[j] != '\\' {
+						return i + 1, true // even number of backslashes
+					}
+					j--
+					if j < 0 || data[j] != '\\' {
+						break // odd number of backslashes
+					}
+					j--
+
+				}
+			}
+		} else if c == '\\' {
+			escaped = true
+		}
+	}
+
+	return -1, escaped
+}
+
+// Find end of the data structure, array or object.
+// For array openSym and closeSym will be '[' and ']', for object '{' and '}'
+func blockEnd(data []byte, openSym byte, closeSym byte) int {
+	level := 0
+	i := 0
+	ln := len(data)
+
+	for i < ln {
+		switch data[i] {
+		case '"': // If inside string, skip it
+			se, _ := stringEnd(data[i+1:])
+			if se == -1 {
+				return -1
+			}
+			i += se
+		case openSym: // If open symbol, increase level
+			level++
+		case closeSym: // If close symbol, increase level
+			level--
+
+			// If we have returned to the original level, we're done
+			if level == 0 {
+				return i + 1
+			}
+		}
+		i++
+	}
+
+	return -1
+}
+
+func searchKeys(data []byte, keys ...string) int {
+	keyLevel := 0
+	level := 0
+	i := 0
+	ln := len(data)
+	lk := len(keys)
+	lastMatched := true
+
+	if lk == 0 {
+		return 0
+	}
+
+	var stackbuf [unescapeStackBufSize]byte // stack-allocated array for allocation-free unescaping of small strings
+
+	for i < ln {
+		switch data[i] {
+		case '"':
+			i++
+			keyBegin := i
+
+			strEnd, keyEscaped := stringEnd(data[i:])
+			if strEnd == -1 {
+				return -1
+			}
+			i += strEnd
+			keyEnd := i - 1
+
+			valueOffset := nextToken(data[i:])
+			if valueOffset == -1 {
+				return -1
+			}
+
+			i += valueOffset
+
+			// if string is a key
+			if data[i] == ':' {
+				if level < 1 {
+					return -1
+				}
+
+				key := data[keyBegin:keyEnd]
+
+				// for unescape: if there are no escape sequences, this is cheap; if there are, it is a
+				// bit more expensive, but causes no allocations unless len(key) > unescapeStackBufSize
+				var keyUnesc []byte
+				if !keyEscaped {
+					keyUnesc = key
+				} else if ku, err := Unescape(key, stackbuf[:]); err != nil {
+					return -1
+				} else {
+					keyUnesc = ku
+				}
+
+				if level <= len(keys) {
+					if equalStr(&keyUnesc, keys[level-1]) {
+						lastMatched = true
+
+						// if key level match
+						if keyLevel == level-1 {
+							keyLevel++
+							// If we found all keys in path
+							if keyLevel == lk {
+								return i + 1
+							}
+						}
+					} else {
+						lastMatched = false
+					}
+				} else {
+					return -1
+				}
+			} else {
+				i--
+			}
+		case '{':
+
+			// in case parent key is matched then only we will increase the level otherwise can directly
+			// can move to the end of this block
+			if !lastMatched {
+				end := blockEnd(data[i:], '{', '}')
+				if end == -1 {
+					return -1
+				}
+				i += end - 1
+			} else {
+				level++
+			}
+		case '}':
+			level--
+			if level == keyLevel {
+				keyLevel--
+			}
+		case '[':
+			// If we want to get array element by index
+			if keyLevel == level && keys[level][0] == '[' {
+				var keyLen = len(keys[level])
+				if keyLen < 3 || keys[level][0] != '[' || keys[level][keyLen-1] != ']' {
+					return -1
+				}
+				aIdx, err := strconv.Atoi(keys[level][1 : keyLen-1])
+				if err != nil {
+					return -1
+				}
+				var curIdx int
+				var valueFound []byte
+				var valueOffset int
+				var curI = i
+				ArrayEach(data[i:], func(value []byte, dataType ValueType, offset int, err error) {
+					if curIdx == aIdx {
+						valueFound = value
+						valueOffset = offset
+						if dataType == String {
+							valueOffset = valueOffset - 2
+							valueFound = data[curI+valueOffset : curI+valueOffset+len(value)+2]
+						}
+					}
+					curIdx += 1
+				})
+
+				if valueFound == nil {
+					return -1
+				} else {
+					subIndex := searchKeys(valueFound, keys[level+1:]...)
+					if subIndex < 0 {
+						return -1
+					}
+					return i + valueOffset + subIndex
+				}
+			} else {
+				// Do not search for keys inside arrays
+				if arraySkip := blockEnd(data[i:], '[', ']'); arraySkip == -1 {
+					return -1
+				} else {
+					i += arraySkip - 1
+				}
+			}
+		case ':': // If encountered, JSON data is malformed
+			return -1
+		}
+
+		i++
+	}
+
+	return -1
+}
+
+func sameTree(p1, p2 []string) bool {
+	minLen := len(p1)
+	if len(p2) < minLen {
+		minLen = len(p2)
+	}
+
+	for pi_1, p_1 := range p1[:minLen] {
+		if p2[pi_1] != p_1 {
+			return false
+		}
+	}
+
+	return true
+}
+
+func EachKey(data []byte, cb func(int, []byte, ValueType, error), paths ...[]string) int {
+	var x struct{}
+	pathFlags := make([]bool, len(paths))
+	var level, pathsMatched, i int
+	ln := len(data)
+
+	var maxPath int
+	for _, p := range paths {
+		if len(p) > maxPath {
+			maxPath = len(p)
+		}
+	}
+
+	pathsBuf := make([]string, maxPath)
+
+	for i < ln {
+		switch data[i] {
+		case '"':
+			i++
+			keyBegin := i
+
+			strEnd, keyEscaped := stringEnd(data[i:])
+			if strEnd == -1 {
+				return -1
+			}
+			i += strEnd
+
+			keyEnd := i - 1
+
+			valueOffset := nextToken(data[i:])
+			if valueOffset == -1 {
+				return -1
+			}
+
+			i += valueOffset
+
+			// if string is a key, and key level match
+			if data[i] == ':' {
+				match := -1
+				key := data[keyBegin:keyEnd]
+
+				// for unescape: if there are no escape sequences, this is cheap; if there are, it is a
+				// bit more expensive, but causes no allocations unless len(key) > unescapeStackBufSize
+				var keyUnesc []byte
+				if !keyEscaped {
+					keyUnesc = key
+				} else {
+					var stackbuf [unescapeStackBufSize]byte
+					if ku, err := Unescape(key, stackbuf[:]); err != nil {
+						return -1
+					} else {
+						keyUnesc = ku
+					}
+				}
+
+				if maxPath >= level {
+					if level < 1 {
+						cb(-1, nil, Unknown, MalformedJsonError)
+						return -1
+					}
+
+					pathsBuf[level-1] = bytesToString(&keyUnesc)
+					for pi, p := range paths {
+						if len(p) != level || pathFlags[pi] || !equalStr(&keyUnesc, p[level-1]) || !sameTree(p, pathsBuf[:level]) {
+							continue
+						}
+
+						match = pi
+
+						pathsMatched++
+						pathFlags[pi] = true
+
+						v, dt, _, e := Get(data[i+1:])
+						cb(pi, v, dt, e)
+
+						if pathsMatched == len(paths) {
+							break
+						}
+					}
+					if pathsMatched == len(paths) {
+						return i
+					}
+				}
+
+				if match == -1 {
+					tokenOffset := nextToken(data[i+1:])
+					i += tokenOffset
+
+					if data[i] == '{' {
+						blockSkip := blockEnd(data[i:], '{', '}')
+						i += blockSkip + 1
+					}
+				}
+
+				if i < ln {
+					switch data[i] {
+					case '{', '}', '[', '"':
+						i--
+					}
+				}
+			} else {
+				i--
+			}
+		case '{':
+			level++
+		case '}':
+			level--
+		case '[':
+			var ok bool
+			arrIdxFlags := make(map[int]struct{})
+			pIdxFlags := make([]bool, len(paths))
+
+			if level < 0 {
+				cb(-1, nil, Unknown, MalformedJsonError)
+				return -1
+			}
+
+			for pi, p := range paths {
+				if len(p) < level+1 || pathFlags[pi] || p[level][0] != '[' || !sameTree(p, pathsBuf[:level]) {
+					continue
+				}
+				if len(p[level]) >= 2 {
+					aIdx, _ := strconv.Atoi(p[level][1 : len(p[level])-1])
+					arrIdxFlags[aIdx] = x
+					pIdxFlags[pi] = true
+				}
+			}
+
+			if len(arrIdxFlags) > 0 {
+				level++
+
+				var curIdx int
+				arrOff, _ := ArrayEach(data[i:], func(value []byte, dataType ValueType, offset int, err error) {
+					if _, ok = arrIdxFlags[curIdx]; ok {
+						for pi, p := range paths {
+							if pIdxFlags[pi] {
+								aIdx, _ := strconv.Atoi(p[level-1][1 : len(p[level-1])-1])
+
+								if curIdx == aIdx {
+									of := searchKeys(value, p[level:]...)
+
+									pathsMatched++
+									pathFlags[pi] = true
+
+									if of != -1 {
+										v, dt, _, e := Get(value[of:])
+										cb(pi, v, dt, e)
+									}
+								}
+							}
+						}
+					}
+
+					curIdx += 1
+				})
+
+				if pathsMatched == len(paths) {
+					return i
+				}
+
+				i += arrOff - 1
+			} else {
+				// Do not search for keys inside arrays
+				if arraySkip := blockEnd(data[i:], '[', ']'); arraySkip == -1 {
+					return -1
+				} else {
+					i += arraySkip - 1
+				}
+			}
+		case ']':
+			level--
+		}
+
+		i++
+	}
+
+	return -1
+}
+
+// Data types available in valid JSON data.
+type ValueType int
+
+const (
+	NotExist = ValueType(iota)
+	String
+	Number
+	Object
+	Array
+	Boolean
+	Null
+	Unknown
+)
+
+func (vt ValueType) String() string {
+	switch vt {
+	case NotExist:
+		return "non-existent"
+	case String:
+		return "string"
+	case Number:
+		return "number"
+	case Object:
+		return "object"
+	case Array:
+		return "array"
+	case Boolean:
+		return "boolean"
+	case Null:
+		return "null"
+	default:
+		return "unknown"
+	}
+}
+
+var (
+	trueLiteral  = []byte("true")
+	falseLiteral = []byte("false")
+	nullLiteral  = []byte("null")
+)
+
+func createInsertComponent(keys []string, setValue []byte, comma, object bool) []byte {
+	isIndex := string(keys[0][0]) == "["
+	offset := 0
+	lk := calcAllocateSpace(keys, setValue, comma, object)
+	buffer := make([]byte, lk, lk)
+	if comma {
+		offset += WriteToBuffer(buffer[offset:], ",")
+	}
+	if isIndex && !comma {
+		offset += WriteToBuffer(buffer[offset:], "[")
+	} else {
+		if object {
+			offset += WriteToBuffer(buffer[offset:], "{")
+		}
+		if !isIndex {
+			offset += WriteToBuffer(buffer[offset:], "\"")
+			offset += WriteToBuffer(buffer[offset:], keys[0])
+			offset += WriteToBuffer(buffer[offset:], "\":")
+		}
+	}
+
+	for i := 1; i < len(keys); i++ {
+		if string(keys[i][0]) == "[" {
+			offset += WriteToBuffer(buffer[offset:], "[")
+		} else {
+			offset += WriteToBuffer(buffer[offset:], "{\"")
+			offset += WriteToBuffer(buffer[offset:], keys[i])
+			offset += WriteToBuffer(buffer[offset:], "\":")
+		}
+	}
+	offset += WriteToBuffer(buffer[offset:], string(setValue))
+	for i := len(keys) - 1; i > 0; i-- {
+		if string(keys[i][0]) == "[" {
+			offset += WriteToBuffer(buffer[offset:], "]")
+		} else {
+			offset += WriteToBuffer(buffer[offset:], "}")
+		}
+	}
+	if isIndex && !comma {
+		offset += WriteToBuffer(buffer[offset:], "]")
+	}
+	if object && !isIndex {
+		offset += WriteToBuffer(buffer[offset:], "}")
+	}
+	return buffer
+}
+
+func calcAllocateSpace(keys []string, setValue []byte, comma, object bool) int {
+	isIndex := string(keys[0][0]) == "["
+	lk := 0
+	if comma {
+		// ,
+		lk += 1
+	}
+	if isIndex && !comma {
+		// []
+		lk += 2
+	} else {
+		if object {
+			// {
+			lk += 1
+		}
+		if !isIndex {
+			// "keys[0]"
+			lk += len(keys[0]) + 3
+		}
+	}
+
+
+	lk += len(setValue)
+	for i := 1; i < len(keys); i++ {
+		if string(keys[i][0]) == "[" {
+			// []
+			lk += 2
+		} else {
+			// {"keys[i]":setValue}
+			lk += len(keys[i]) + 5
+		}
+	}
+
+	if object && !isIndex {
+		// }
+		lk += 1
+	}
+
+	return lk
+}
+
+func WriteToBuffer(buffer []byte, str string) int {
+	copy(buffer, str)
+	return len(str)
+}
+
+/*
+
+Del - Receives existing data structure, path to delete.
+
+Returns:
+`data` - return modified data
+
+*/
+func Delete(data []byte, keys ...string) []byte {
+	lk := len(keys)
+	if lk == 0 {
+		return data[:0]
+	}
+
+	array := false
+	if len(keys[lk-1]) > 0 && string(keys[lk-1][0]) == "[" {
+		array = true
+	}
+
+	var startOffset, keyOffset int
+	endOffset := len(data)
+	var err error
+	if !array {
+		if len(keys) > 1 {
+			_, _, startOffset, endOffset, err = internalGet(data, keys[:lk-1]...)
+			if err == KeyPathNotFoundError {
+				// problem parsing the data
+				return data
+			}
+		}
+
+		keyOffset, err = findKeyStart(data[startOffset:endOffset], keys[lk-1])
+		if err == KeyPathNotFoundError {
+			// problem parsing the data
+			return data
+		}
+		keyOffset += startOffset
+		_, _, _, subEndOffset, _ := internalGet(data[startOffset:endOffset], keys[lk-1])
+		endOffset = startOffset + subEndOffset
+		tokEnd := tokenEnd(data[endOffset:])
+		tokStart := findTokenStart(data[:keyOffset], ","[0])
+
+		if data[endOffset+tokEnd] == ","[0] {
+			endOffset += tokEnd + 1
+		} else if data[endOffset+tokEnd] == " "[0] && len(data) > endOffset+tokEnd+1 && data[endOffset+tokEnd+1] == ","[0] {
+			endOffset += tokEnd + 2
+		} else if data[endOffset+tokEnd] == "}"[0] && data[tokStart] == ","[0] {
+			keyOffset = tokStart
+		}
+	} else {
+		_, _, keyOffset, endOffset, err = internalGet(data, keys...)
+		if err == KeyPathNotFoundError {
+			// problem parsing the data
+			return data
+		}
+
+		tokEnd := tokenEnd(data[endOffset:])
+		tokStart := findTokenStart(data[:keyOffset], ","[0])
+
+		if data[endOffset+tokEnd] == ","[0] {
+			endOffset += tokEnd + 1
+		} else if data[endOffset+tokEnd] == "]"[0] && data[tokStart] == ","[0] {
+			keyOffset = tokStart
+		}
+	}
+
+	// We need to remove remaining trailing comma if we delete las element in the object
+	prevTok := lastToken(data[:keyOffset])
+	remainedValue := data[endOffset:]
+
+	var newOffset int
+	if nextToken(remainedValue) > -1 && remainedValue[nextToken(remainedValue)] == '}' && data[prevTok] == ',' {
+		newOffset = prevTok
+	} else {
+		newOffset = prevTok + 1
+	}
+
+	// We have to make a copy here if we don't want to mangle the original data, because byte slices are
+	// accessed by reference and not by value
+	dataCopy := make([]byte, len(data))
+	copy(dataCopy, data)
+	data = append(dataCopy[:newOffset], dataCopy[endOffset:]...)
+
+	return data
+}
+
+/*
+
+Set - Receives existing data structure, path to set, and data to set at that key.
+
+Returns:
+`value` - modified byte array
+`err` - On any parsing error
+
+*/
+func Set(data []byte, setValue []byte, keys ...string) (value []byte, err error) {
+	// ensure keys are set
+	if len(keys) == 0 {
+		return nil, KeyPathNotFoundError
+	}
+
+	_, _, startOffset, endOffset, err := internalGet(data, keys...)
+	if err != nil {
+		if err != KeyPathNotFoundError {
+			// problem parsing the data
+			return nil, err
+		}
+		// full path doesnt exist
+		// does any subpath exist?
+		var depth int
+		for i := range keys {
+			_, _, start, end, sErr := internalGet(data, keys[:i+1]...)
+			if sErr != nil {
+				break
+			} else {
+				endOffset = end
+				startOffset = start
+				depth++
+			}
+		}
+		comma := true
+		object := false
+		if endOffset == -1 {
+			firstToken := nextToken(data)
+			// We can't set a top-level key if data isn't an object
+			if firstToken < 0 || data[firstToken] != '{' {
+				return nil, KeyPathNotFoundError
+			}
+			// Don't need a comma if the input is an empty object
+			secondToken := firstToken + 1 + nextToken(data[firstToken+1:])
+			if data[secondToken] == '}' {
+				comma = false
+			}
+			// Set the top level key at the end (accounting for any trailing whitespace)
+			// This assumes last token is valid like '}', could check and return error
+			endOffset = lastToken(data)
+		}
+		depthOffset := endOffset
+		if depth != 0 {
+			// if subpath is a non-empty object, add to it
+			// or if subpath is a non-empty array, add to it
+			if (data[startOffset] == '{' && data[startOffset+1+nextToken(data[startOffset+1:])] != '}') ||
+				(data[startOffset] == '[' && data[startOffset+1+nextToken(data[startOffset+1:])] == '{') && keys[depth:][0][0] == 91 {
+				depthOffset--
+				startOffset = depthOffset
+				// otherwise, over-write it with a new object
+			} else {
+				comma = false
+				object = true
+			}
+		} else {
+			startOffset = depthOffset
+		}
+		value = append(data[:startOffset], append(createInsertComponent(keys[depth:], setValue, comma, object), data[depthOffset:]...)...)
+	} else {
+		// path currently exists
+		startComponent := data[:startOffset]
+		endComponent := data[endOffset:]
+
+		value = make([]byte, len(startComponent)+len(endComponent)+len(setValue))
+		newEndOffset := startOffset + len(setValue)
+		copy(value[0:startOffset], startComponent)
+		copy(value[startOffset:newEndOffset], setValue)
+		copy(value[newEndOffset:], endComponent)
+	}
+	return value, nil
+}
+
+func getType(data []byte, offset int) ([]byte, ValueType, int, error) {
+	var dataType ValueType
+	endOffset := offset
+
+	// if string value
+	if data[offset] == '"' {
+		dataType = String
+		if idx, _ := stringEnd(data[offset+1:]); idx != -1 {
+			endOffset += idx + 1
+		} else {
+			return nil, dataType, offset, MalformedStringError
+		}
+	} else if data[offset] == '[' { // if array value
+		dataType = Array
+		// break label, for stopping nested loops
+		endOffset = blockEnd(data[offset:], '[', ']')
+
+		if endOffset == -1 {
+			return nil, dataType, offset, MalformedArrayError
+		}
+
+		endOffset += offset
+	} else if data[offset] == '{' { // if object value
+		dataType = Object
+		// break label, for stopping nested loops
+		endOffset = blockEnd(data[offset:], '{', '}')
+
+		if endOffset == -1 {
+			return nil, dataType, offset, MalformedObjectError
+		}
+
+		endOffset += offset
+	} else {
+		// Number, Boolean or None
+		end := tokenEnd(data[endOffset:])
+
+		if end == -1 {
+			return nil, dataType, offset, MalformedValueError
+		}
+
+		value := data[offset : endOffset+end]
+
+		switch data[offset] {
+		case 't', 'f': // true or false
+			if bytes.Equal(value, trueLiteral) || bytes.Equal(value, falseLiteral) {
+				dataType = Boolean
+			} else {
+				return nil, Unknown, offset, UnknownValueTypeError
+			}
+		case 'u', 'n': // undefined or null
+			if bytes.Equal(value, nullLiteral) {
+				dataType = Null
+			} else {
+				return nil, Unknown, offset, UnknownValueTypeError
+			}
+		case '0', '1', '2', '3', '4', '5', '6', '7', '8', '9', '-':
+			dataType = Number
+		default:
+			return nil, Unknown, offset, UnknownValueTypeError
+		}
+
+		endOffset += end
+	}
+	return data[offset:endOffset], dataType, endOffset, nil
+}
+
+/*
+Get - Receives data structure, and key path to extract value from.
+
+Returns:
+`value` - Pointer to original data structure containing key value, or just empty slice if nothing found or error
+`dataType` -    Can be: `NotExist`, `String`, `Number`, `Object`, `Array`, `Boolean` or `Null`
+`offset` - Offset from provided data structure where key value ends. Used mostly internally, for example for `ArrayEach` helper.
+`err` - If key not found or any other parsing issue it should return error. If key not found it also sets `dataType` to `NotExist`
+
+Accept multiple keys to specify path to JSON value (in case of quering nested structures).
+If no keys provided it will try to extract closest JSON value (simple ones or object/array), useful for reading streams or arrays, see `ArrayEach` implementation.
+*/
+func Get(data []byte, keys ...string) (value []byte, dataType ValueType, offset int, err error) {
+	a, b, _, d, e := internalGet(data, keys...)
+	return a, b, d, e
+}
+
+func internalGet(data []byte, keys ...string) (value []byte, dataType ValueType, offset, endOffset int, err error) {
+	if len(keys) > 0 {
+		if offset = searchKeys(data, keys...); offset == -1 {
+			return nil, NotExist, -1, -1, KeyPathNotFoundError
+		}
+	}
+
+	// Go to closest value
+	nO := nextToken(data[offset:])
+	if nO == -1 {
+		return nil, NotExist, offset, -1, MalformedJsonError
+	}
+
+	offset += nO
+	value, dataType, endOffset, err = getType(data, offset)
+	if err != nil {
+		return value, dataType, offset, endOffset, err
+	}
+
+	// Strip quotes from string values
+	if dataType == String {
+		value = value[1 : len(value)-1]
+	}
+
+	return value[:len(value):len(value)], dataType, offset, endOffset, nil
+}
+
+// ArrayEach is used when iterating arrays, accepts a callback function with the same return arguments as `Get`.
+func ArrayEach(data []byte, cb func(value []byte, dataType ValueType, offset int, err error), keys ...string) (offset int, err error) {
+	if len(data) == 0 {
+		return -1, MalformedObjectError
+	}
+
+	nT := nextToken(data)
+	if nT == -1 {
+		return -1, MalformedJsonError
+	}
+
+	offset = nT + 1
+
+	if len(keys) > 0 {
+		if offset = searchKeys(data, keys...); offset == -1 {
+			return offset, KeyPathNotFoundError
+		}
+
+		// Go to closest value
+		nO := nextToken(data[offset:])
+		if nO == -1 {
+			return offset, MalformedJsonError
+		}
+
+		offset += nO
+
+		if data[offset] != '[' {
+			return offset, MalformedArrayError
+		}
+
+		offset++
+	}
+
+	nO := nextToken(data[offset:])
+	if nO == -1 {
+		return offset, MalformedJsonError
+	}
+
+	offset += nO
+
+	if data[offset] == ']' {
+		return offset, nil
+	}
+
+	for true {
+		v, t, o, e := Get(data[offset:])
+
+		if e != nil {
+			return offset, e
+		}
+
+		if o == 0 {
+			break
+		}
+
+		if t != NotExist {
+			cb(v, t, offset+o-len(v), e)
+		}
+
+		if e != nil {
+			break
+		}
+
+		offset += o
+
+		skipToToken := nextToken(data[offset:])
+		if skipToToken == -1 {
+			return offset, MalformedArrayError
+		}
+		offset += skipToToken
+
+		if data[offset] == ']' {
+			break
+		}
+
+		if data[offset] != ',' {
+			return offset, MalformedArrayError
+		}
+
+		offset++
+	}
+
+	return offset, nil
+}
+
+// ObjectEach iterates over the key-value pairs of a JSON object, invoking a given callback for each such entry
+func ObjectEach(data []byte, callback func(key []byte, value []byte, dataType ValueType, offset int) error, keys ...string) (err error) {
+	offset := 0
+
+	// Descend to the desired key, if requested
+	if len(keys) > 0 {
+		if off := searchKeys(data, keys...); off == -1 {
+			return KeyPathNotFoundError
+		} else {
+			offset = off
+		}
+	}
+
+	// Validate and skip past opening brace
+	if off := nextToken(data[offset:]); off == -1 {
+		return MalformedObjectError
+	} else if offset += off; data[offset] != '{' {
+		return MalformedObjectError
+	} else {
+		offset++
+	}
+
+	// Skip to the first token inside the object, or stop if we find the ending brace
+	if off := nextToken(data[offset:]); off == -1 {
+		return MalformedJsonError
+	} else if offset += off; data[offset] == '}' {
+		return nil
+	}
+
+	// Loop pre-condition: data[offset] points to what should be either the next entry's key, or the closing brace (if it's anything else, the JSON is malformed)
+	for offset < len(data) {
+		// Step 1: find the next key
+		var key []byte
+
+		// Check what the the next token is: start of string, end of object, or something else (error)
+		switch data[offset] {
+		case '"':
+			offset++ // accept as string and skip opening quote
+		case '}':
+			return nil // we found the end of the object; stop and return success
+		default:
+			return MalformedObjectError
+		}
+
+		// Find the end of the key string
+		var keyEscaped bool
+		if off, esc := stringEnd(data[offset:]); off == -1 {
+			return MalformedJsonError
+		} else {
+			key, keyEscaped = data[offset:offset+off-1], esc
+			offset += off
+		}
+
+		// Unescape the string if needed
+		if keyEscaped {
+			var stackbuf [unescapeStackBufSize]byte // stack-allocated array for allocation-free unescaping of small strings
+			if keyUnescaped, err := Unescape(key, stackbuf[:]); err != nil {
+				return MalformedStringEscapeError
+			} else {
+				key = keyUnescaped
+			}
+		}
+
+		// Step 2: skip the colon
+		if off := nextToken(data[offset:]); off == -1 {
+			return MalformedJsonError
+		} else if offset += off; data[offset] != ':' {
+			return MalformedJsonError
+		} else {
+			offset++
+		}
+
+		// Step 3: find the associated value, then invoke the callback
+		if value, valueType, off, err := Get(data[offset:]); err != nil {
+			return err
+		} else if err := callback(key, value, valueType, offset+off); err != nil { // Invoke the callback here!
+			return err
+		} else {
+			offset += off
+		}
+
+		// Step 4: skip over the next comma to the following token, or stop if we hit the ending brace
+		if off := nextToken(data[offset:]); off == -1 {
+			return MalformedArrayError
+		} else {
+			offset += off
+			switch data[offset] {
+			case '}':
+				return nil // Stop if we hit the close brace
+			case ',':
+				offset++ // Ignore the comma
+			default:
+				return MalformedObjectError
+			}
+		}
+
+		// Skip to the next token after the comma
+		if off := nextToken(data[offset:]); off == -1 {
+			return MalformedArrayError
+		} else {
+			offset += off
+		}
+	}
+
+	return MalformedObjectError // we shouldn't get here; it's expected that we will return via finding the ending brace
+}
+
+// GetUnsafeString returns the value retrieved by `Get`, use creates string without memory allocation by mapping string to slice memory. It does not handle escape symbols.
+func GetUnsafeString(data []byte, keys ...string) (val string, err error) {
+	v, _, _, e := Get(data, keys...)
+
+	if e != nil {
+		return "", e
+	}
+
+	return bytesToString(&v), nil
+}
+
+// GetString returns the value retrieved by `Get`, cast to a string if possible, trying to properly handle escape and utf8 symbols
+// If key data type do not match, it will return an error.
+func GetString(data []byte, keys ...string) (val string, err error) {
+	v, t, _, e := Get(data, keys...)
+
+	if e != nil {
+		return "", e
+	}
+
+	if t != String {
+		return "", fmt.Errorf("Value is not a string: %s", string(v))
+	}
+
+	// If no escapes return raw content
+	if bytes.IndexByte(v, '\\') == -1 {
+		return string(v), nil
+	}
+
+	return ParseString(v)
+}
+
+// GetFloat returns the value retrieved by `Get`, cast to a float64 if possible.
+// The offset is the same as in `Get`.
+// If key data type do not match, it will return an error.
+func GetFloat(data []byte, keys ...string) (val float64, err error) {
+	v, t, _, e := Get(data, keys...)
+
+	if e != nil {
+		return 0, e
+	}
+
+	if t != Number {
+		return 0, fmt.Errorf("Value is not a number: %s", string(v))
+	}
+
+	return ParseFloat(v)
+}
+
+// GetInt returns the value retrieved by `Get`, cast to a int64 if possible.
+// If key data type do not match, it will return an error.
+func GetInt(data []byte, keys ...string) (val int64, err error) {
+	v, t, _, e := Get(data, keys...)
+
+	if e != nil {
+		return 0, e
+	}
+
+	if t != Number {
+		return 0, fmt.Errorf("Value is not a number: %s", string(v))
+	}
+
+	return ParseInt(v)
+}
+
+// GetBoolean returns the value retrieved by `Get`, cast to a bool if possible.
+// The offset is the same as in `Get`.
+// If key data type do not match, it will return error.
+func GetBoolean(data []byte, keys ...string) (val bool, err error) {
+	v, t, _, e := Get(data, keys...)
+
+	if e != nil {
+		return false, e
+	}
+
+	if t != Boolean {
+		return false, fmt.Errorf("Value is not a boolean: %s", string(v))
+	}
+
+	return ParseBoolean(v)
+}
+
+// ParseBoolean parses a Boolean ValueType into a Go bool (not particularly useful, but here for completeness)
+func ParseBoolean(b []byte) (bool, error) {
+	switch {
+	case bytes.Equal(b, trueLiteral):
+		return true, nil
+	case bytes.Equal(b, falseLiteral):
+		return false, nil
+	default:
+		return false, MalformedValueError
+	}
+}
+
+// ParseString parses a String ValueType into a Go string (the main parsing work is unescaping the JSON string)
+func ParseString(b []byte) (string, error) {
+	var stackbuf [unescapeStackBufSize]byte // stack-allocated array for allocation-free unescaping of small strings
+	if bU, err := Unescape(b, stackbuf[:]); err != nil {
+		return "", MalformedValueError
+	} else {
+		return string(bU), nil
+	}
+}
+
+// ParseNumber parses a Number ValueType into a Go float64
+func ParseFloat(b []byte) (float64, error) {
+	if v, err := parseFloat(&b); err != nil {
+		return 0, MalformedValueError
+	} else {
+		return v, nil
+	}
+}
+
+// ParseInt parses a Number ValueType into a Go int64
+func ParseInt(b []byte) (int64, error) {
+	if v, ok, overflow := parseInt(b); !ok {
+		if overflow {
+			return 0, OverflowIntegerError
+		}
+		return 0, MalformedValueError
+	} else {
+		return v, nil
+	}
+}
diff --git a/vendor/github.com/uptrace/bun/CHANGELOG.md b/vendor/github.com/uptrace/bun/CHANGELOG.md
index ded6f1f40..82ee95a83 100644
--- a/vendor/github.com/uptrace/bun/CHANGELOG.md
+++ b/vendor/github.com/uptrace/bun/CHANGELOG.md
@@ -1,3 +1,52 @@
+## [1.2.6](https://github.com/uptrace/bun/compare/v1.2.5...v1.2.6) (2024-11-20)
+
+
+### Bug Fixes
+
+* append IDENTITY to ADD COLUMN statement if needed ([694f873](https://github.com/uptrace/bun/commit/694f873d61ed8d2f09032ae0c0dbec4b71c3719e))
+* **ci:** prune stale should be executed at 3 AM every day ([0cedcb0](https://github.com/uptrace/bun/commit/0cedcb068229b63041a4f48de12bb767c8454048))
+* cleanup after testUniqueRenamedTable ([b1ae32e](https://github.com/uptrace/bun/commit/b1ae32e9e9f45ff2a66e50bfd13bedcf6653d874))
+* fix go.mod of oracledialect ([89e21ea](https://github.com/uptrace/bun/commit/89e21eab362c60511cca00890ae29551a2ba7c46))
+* has many relationship with multiple columns ([1664b2c](https://github.com/uptrace/bun/commit/1664b2c07a5f6cfd3b6730e5005373686e9830a6))
+* ignore case for type equivalence ([c3253a5](https://github.com/uptrace/bun/commit/c3253a5c59b078607db9e216ddc11afdef546e05))
+* implement DefaultSchema for Oracle dialect ([d08fa40](https://github.com/uptrace/bun/commit/d08fa40cc87d67296a83a77448ea511531fc8cdd))
+* **oracledialect:** add go.mod file so the dialect is released properly ([#1043](https://github.com/uptrace/bun/issues/1043)) ([1bb5597](https://github.com/uptrace/bun/commit/1bb5597f1a32f5d693101ef4a62e25d99f5b9db5))
+* **oracledialect:** update go.mod by go mod tidy to fix tests ([7f90a15](https://github.com/uptrace/bun/commit/7f90a15c51a2482dda94226dd13b913d6b470a29))
+* **pgdialect:** array value quoting ([892c416](https://github.com/uptrace/bun/commit/892c416272a8428c592896d65d3ad51a6f2356d8))
+* remove schema name from t.Name during bun-schema inspection ([31ed582](https://github.com/uptrace/bun/commit/31ed58254ad08143d88684672acd33ce044ea5a9))
+* rename column only if the name does not exist in 'target' ([fed6012](https://github.com/uptrace/bun/commit/fed6012d177e55b8320b31ef37fc02a0cbf0b9f5))
+* support embed with tag Unique ([3acd6dd](https://github.com/uptrace/bun/commit/3acd6dd8546118d7b867ca796a5e56311edad070))
+* update oracledialect/version.go in release.sh ([bcd070f](https://github.com/uptrace/bun/commit/bcd070f48a75d0092a5620261658c9c5994f0bf6))
+* update schema.Field names ([9b810de](https://github.com/uptrace/bun/commit/9b810dee4b1a721efb82c913099f39f52c44eb57))
+
+
+### Features
+
+* add and drop columns ([3fdd5b8](https://github.com/uptrace/bun/commit/3fdd5b8f635f849a74e78c665274609f75245b19))
+* add and drop IDENTITY ([dd83779](https://github.com/uptrace/bun/commit/dd837795c31490fd8816eec0e9833e79fafdda32))
+* add support type for net/netip.addr and net/netip.prefix ([#1028](https://github.com/uptrace/bun/issues/1028)) ([95c4a8e](https://github.com/uptrace/bun/commit/95c4a8ebd634e1e99114727a7b157eeeb9297ee9))
+* **automigrate:** detect renamed tables ([c03938f](https://github.com/uptrace/bun/commit/c03938ff5e9fa2f653e4c60668b1368357d2de10))
+* change column type ([3cfd8c6](https://github.com/uptrace/bun/commit/3cfd8c62125786aaf6f493acc5b39f4d3db3d628))
+* **ci:** support release on osx ([435510b](https://github.com/uptrace/bun/commit/435510b0a73b0d9e6d06e3e3c3f0fa4379e9ed8c))
+* create sql migrations and apply them ([1bf7cfd](https://github.com/uptrace/bun/commit/1bf7cfd067e0e26ae212b0f7421e5abc6f67fb4f))
+* create transactional migration files ([c3320f6](https://github.com/uptrace/bun/commit/c3320f624830dc2fe99af2c7cbe492b2a83f9e4a))
+* detect Create/Drop table ([408859f](https://github.com/uptrace/bun/commit/408859f07be38236b39a00909cdce55d49f6f824))
+* detect modified relations ([a918dc4](https://github.com/uptrace/bun/commit/a918dc472a33dd24c5fffd4d048bcf49f2e07a42))
+* detect renamed columns ([886d0a5](https://github.com/uptrace/bun/commit/886d0a5b18aba272f1c86af2a2cf68ce4c8879f2))
+* detect renamed tables ([8857bab](https://github.com/uptrace/bun/commit/8857bab54b94170d218633f3b210d379e4e51a21))
+* enhance Apply method to accept multiple functions ([7823f2f](https://github.com/uptrace/bun/commit/7823f2f24c814e104dc59475156255c7b3b26144))
+* implement fmt.Stringer queries ([5060e47](https://github.com/uptrace/bun/commit/5060e47db13451a982e48d0f14055a58ba60b472))
+* improve FK handling ([a822fc5](https://github.com/uptrace/bun/commit/a822fc5f8ae547b7cd41e1ca35609d519d78598b))
+* include target schema name in migration name ([ac8d221](https://github.com/uptrace/bun/commit/ac8d221e6443b469e794314c5fc189250fa542d5))
+* **mariadb:** support RETURNING clause in DELETE statement ([b8dec9d](https://github.com/uptrace/bun/commit/b8dec9d9a06124696bd5ee2abbf33f19087174b6))
+* migrate FKs ([4c1dfdb](https://github.com/uptrace/bun/commit/4c1dfdbe99c73d0c0f2d7b1f8b11adf30c6a41f7))
+* **mysql:** support ORDER BY and LIMIT clauses in UPDATE and DELETE statements ([de71bed](https://github.com/uptrace/bun/commit/de71bed9252980648269af85b7a51cbc464ce710))
+* support modifying primary keys ([a734629](https://github.com/uptrace/bun/commit/a734629fa285406038cbe4a50798626b5ac08539))
+* support UNIQUE constraints ([3c4d5d2](https://github.com/uptrace/bun/commit/3c4d5d2c47be4652fb9b5cf1c6bd7b6c0a437287))
+* use *bun.DB in MigratorDialect ([a8788bf](https://github.com/uptrace/bun/commit/a8788bf62cbcc954a08532c299c774262de7a81d))
+
+
+
 ## [1.2.5](https://github.com/uptrace/bun/compare/v1.2.3...v1.2.5) (2024-10-26)
 
 
diff --git a/vendor/github.com/uptrace/bun/Makefile b/vendor/github.com/uptrace/bun/Makefile
index 50a1903e7..255d0f7ee 100644
--- a/vendor/github.com/uptrace/bun/Makefile
+++ b/vendor/github.com/uptrace/bun/Makefile
@@ -6,7 +6,7 @@ test:
 	  echo "go test in $${dir}"; \
 	  (cd "$${dir}" && \
 	    go test && \
-	    env GOOS=linux GOARCH=386 go test && \
+	    env GOOS=linux GOARCH=386 TZ= go test && \
 	    go vet); \
 	done
 
diff --git a/vendor/github.com/uptrace/bun/README.md b/vendor/github.com/uptrace/bun/README.md
index dbe5bc0b4..eb2d98bc5 100644
--- a/vendor/github.com/uptrace/bun/README.md
+++ b/vendor/github.com/uptrace/bun/README.md
@@ -4,6 +4,7 @@
 [![PkgGoDev](https://pkg.go.dev/badge/github.com/uptrace/bun)](https://pkg.go.dev/github.com/uptrace/bun)
 [![Documentation](https://img.shields.io/badge/bun-documentation-informational)](https://bun.uptrace.dev/)
 [![Chat](https://discordapp.com/api/guilds/752070105847955518/widget.png)](https://discord.gg/rWtp5Aj)
+[![Gurubase](https://img.shields.io/badge/Gurubase-Ask%20Bun%20Guru-006BFF)](https://gurubase.io/g/bun)
 
 > Bun is brought to you by :star: [**uptrace/uptrace**](https://github.com/uptrace/uptrace). Uptrace
 > is an open-source APM tool that supports distributed tracing, metrics, and logs. You can use it to
diff --git a/vendor/github.com/uptrace/bun/db.go b/vendor/github.com/uptrace/bun/db.go
index 106dfe905..2f52a2248 100644
--- a/vendor/github.com/uptrace/bun/db.go
+++ b/vendor/github.com/uptrace/bun/db.go
@@ -703,6 +703,5 @@ func (tx Tx) NewDropColumn() *DropColumnQuery {
 //------------------------------------------------------------------------------
 
 func (db *DB) makeQueryBytes() []byte {
-	// TODO: make this configurable?
-	return make([]byte, 0, 4096)
+	return internal.MakeQueryBytes()
 }
diff --git a/vendor/github.com/uptrace/bun/dialect/append.go b/vendor/github.com/uptrace/bun/dialect/append.go
index 48f092284..8f5485fe3 100644
--- a/vendor/github.com/uptrace/bun/dialect/append.go
+++ b/vendor/github.com/uptrace/bun/dialect/append.go
@@ -25,24 +25,24 @@ func AppendBool(b []byte, v bool) []byte {
 	return append(b, "FALSE"...)
 }
 
-func AppendFloat32(b []byte, v float32) []byte {
-	return appendFloat(b, float64(v), 32)
+func AppendFloat32(b []byte, num float32) []byte {
+	return appendFloat(b, float64(num), 32)
 }
 
-func AppendFloat64(b []byte, v float64) []byte {
-	return appendFloat(b, v, 64)
+func AppendFloat64(b []byte, num float64) []byte {
+	return appendFloat(b, num, 64)
 }
 
-func appendFloat(b []byte, v float64, bitSize int) []byte {
+func appendFloat(b []byte, num float64, bitSize int) []byte {
 	switch {
-	case math.IsNaN(v):
+	case math.IsNaN(num):
 		return append(b, "'NaN'"...)
-	case math.IsInf(v, 1):
+	case math.IsInf(num, 1):
 		return append(b, "'Infinity'"...)
-	case math.IsInf(v, -1):
+	case math.IsInf(num, -1):
 		return append(b, "'-Infinity'"...)
 	default:
-		return strconv.AppendFloat(b, v, 'f', -1, bitSize)
+		return strconv.AppendFloat(b, num, 'f', -1, bitSize)
 	}
 }
 
diff --git a/vendor/github.com/uptrace/bun/dialect/feature/feature.go b/vendor/github.com/uptrace/bun/dialect/feature/feature.go
index e311394d5..0707c6f88 100644
--- a/vendor/github.com/uptrace/bun/dialect/feature/feature.go
+++ b/vendor/github.com/uptrace/bun/dialect/feature/feature.go
@@ -31,5 +31,8 @@ const (
 	UpdateFromTable
 	MSSavepoint
 	GeneratedIdentity
-	CompositeIn // ... WHERE (A,B) IN ((N, NN), (N, NN)...)
+	CompositeIn      // ... WHERE (A,B) IN ((N, NN), (N, NN)...)
+	UpdateOrderLimit // UPDATE ... ORDER BY ... LIMIT ...
+	DeleteOrderLimit // DELETE ... ORDER BY ... LIMIT ...
+	DeleteReturning
 )
diff --git a/vendor/github.com/uptrace/bun/dialect/pgdialect/alter_table.go b/vendor/github.com/uptrace/bun/dialect/pgdialect/alter_table.go
new file mode 100644
index 000000000..d20f8c069
--- /dev/null
+++ b/vendor/github.com/uptrace/bun/dialect/pgdialect/alter_table.go
@@ -0,0 +1,245 @@
+package pgdialect
+
+import (
+	"fmt"
+	"strings"
+
+	"github.com/uptrace/bun"
+	"github.com/uptrace/bun/migrate"
+	"github.com/uptrace/bun/migrate/sqlschema"
+	"github.com/uptrace/bun/schema"
+)
+
+func (d *Dialect) NewMigrator(db *bun.DB, schemaName string) sqlschema.Migrator {
+	return &migrator{db: db, schemaName: schemaName, BaseMigrator: sqlschema.NewBaseMigrator(db)}
+}
+
+type migrator struct {
+	*sqlschema.BaseMigrator
+
+	db         *bun.DB
+	schemaName string
+}
+
+var _ sqlschema.Migrator = (*migrator)(nil)
+
+func (m *migrator) AppendSQL(b []byte, operation interface{}) (_ []byte, err error) {
+	fmter := m.db.Formatter()
+
+	// Append ALTER TABLE statement to the enclosed query bytes []byte.
+	appendAlterTable := func(query []byte, tableName string) []byte {
+		query = append(query, "ALTER TABLE "...)
+		query = m.appendFQN(fmter, query, tableName)
+		return append(query, " "...)
+	}
+
+	switch change := operation.(type) {
+	case *migrate.CreateTableOp:
+		return m.AppendCreateTable(b, change.Model)
+	case *migrate.DropTableOp:
+		return m.AppendDropTable(b, m.schemaName, change.TableName)
+	case *migrate.RenameTableOp:
+		b, err = m.renameTable(fmter, appendAlterTable(b, change.TableName), change)
+	case *migrate.RenameColumnOp:
+		b, err = m.renameColumn(fmter, appendAlterTable(b, change.TableName), change)
+	case *migrate.AddColumnOp:
+		b, err = m.addColumn(fmter, appendAlterTable(b, change.TableName), change)
+	case *migrate.DropColumnOp:
+		b, err = m.dropColumn(fmter, appendAlterTable(b, change.TableName), change)
+	case *migrate.AddPrimaryKeyOp:
+		b, err = m.addPrimaryKey(fmter, appendAlterTable(b, change.TableName), change.PrimaryKey)
+	case *migrate.ChangePrimaryKeyOp:
+		b, err = m.changePrimaryKey(fmter, appendAlterTable(b, change.TableName), change)
+	case *migrate.DropPrimaryKeyOp:
+		b, err = m.dropConstraint(fmter, appendAlterTable(b, change.TableName), change.PrimaryKey.Name)
+	case *migrate.AddUniqueConstraintOp:
+		b, err = m.addUnique(fmter, appendAlterTable(b, change.TableName), change)
+	case *migrate.DropUniqueConstraintOp:
+		b, err = m.dropConstraint(fmter, appendAlterTable(b, change.TableName), change.Unique.Name)
+	case *migrate.ChangeColumnTypeOp:
+		b, err = m.changeColumnType(fmter, appendAlterTable(b, change.TableName), change)
+	case *migrate.AddForeignKeyOp:
+		b, err = m.addForeignKey(fmter, appendAlterTable(b, change.TableName()), change)
+	case *migrate.DropForeignKeyOp:
+		b, err = m.dropConstraint(fmter, appendAlterTable(b, change.TableName()), change.ConstraintName)
+	default:
+		return nil, fmt.Errorf("append sql: unknown operation %T", change)
+	}
+	if err != nil {
+		return nil, fmt.Errorf("append sql: %w", err)
+	}
+	return b, nil
+}
+
+func (m *migrator) appendFQN(fmter schema.Formatter, b []byte, tableName string) []byte {
+	return fmter.AppendQuery(b, "?.?", bun.Ident(m.schemaName), bun.Ident(tableName))
+}
+
+func (m *migrator) renameTable(fmter schema.Formatter, b []byte, rename *migrate.RenameTableOp) (_ []byte, err error) {
+	b = append(b, "RENAME TO "...)
+	b = fmter.AppendName(b, rename.NewName)
+	return b, nil
+}
+
+func (m *migrator) renameColumn(fmter schema.Formatter, b []byte, rename *migrate.RenameColumnOp) (_ []byte, err error) {
+	b = append(b, "RENAME COLUMN "...)
+	b = fmter.AppendName(b, rename.OldName)
+
+	b = append(b, " TO "...)
+	b = fmter.AppendName(b, rename.NewName)
+
+	return b, nil
+}
+
+func (m *migrator) addColumn(fmter schema.Formatter, b []byte, add *migrate.AddColumnOp) (_ []byte, err error) {
+	b = append(b, "ADD COLUMN "...)
+	b = fmter.AppendName(b, add.ColumnName)
+	b = append(b, " "...)
+
+	b, err = add.Column.AppendQuery(fmter, b)
+	if err != nil {
+		return nil, err
+	}
+
+	if add.Column.GetDefaultValue() != "" {
+		b = append(b, " DEFAULT "...)
+		b = append(b, add.Column.GetDefaultValue()...)
+		b = append(b, " "...)
+	}
+
+	if add.Column.GetIsIdentity() {
+		b = appendGeneratedAsIdentity(b)
+	}
+
+	return b, nil
+}
+
+func (m *migrator) dropColumn(fmter schema.Formatter, b []byte, drop *migrate.DropColumnOp) (_ []byte, err error) {
+	b = append(b, "DROP COLUMN "...)
+	b = fmter.AppendName(b, drop.ColumnName)
+
+	return b, nil
+}
+
+func (m *migrator) addPrimaryKey(fmter schema.Formatter, b []byte, pk sqlschema.PrimaryKey) (_ []byte, err error) {
+	b = append(b, "ADD PRIMARY KEY ("...)
+	b, _ = pk.Columns.AppendQuery(fmter, b)
+	b = append(b, ")"...)
+
+	return b, nil
+}
+
+func (m *migrator) changePrimaryKey(fmter schema.Formatter, b []byte, change *migrate.ChangePrimaryKeyOp) (_ []byte, err error) {
+	b, _ = m.dropConstraint(fmter, b, change.Old.Name)
+	b = append(b, ", "...)
+	b, _ = m.addPrimaryKey(fmter, b, change.New)
+	return b, nil
+}
+
+func (m *migrator) addUnique(fmter schema.Formatter, b []byte, change *migrate.AddUniqueConstraintOp) (_ []byte, err error) {
+	b = append(b, "ADD CONSTRAINT "...)
+	if change.Unique.Name != "" {
+		b = fmter.AppendName(b, change.Unique.Name)
+	} else {
+		// Default naming scheme for unique constraints in Postgres is <table>_<column>_key
+		b = fmter.AppendName(b, fmt.Sprintf("%s_%s_key", change.TableName, change.Unique.Columns))
+	}
+	b = append(b, " UNIQUE ("...)
+	b, _ = change.Unique.Columns.AppendQuery(fmter, b)
+	b = append(b, ")"...)
+
+	return b, nil
+}
+
+func (m *migrator) dropConstraint(fmter schema.Formatter, b []byte, name string) (_ []byte, err error) {
+	b = append(b, "DROP CONSTRAINT "...)
+	b = fmter.AppendName(b, name)
+
+	return b, nil
+}
+
+func (m *migrator) addForeignKey(fmter schema.Formatter, b []byte, add *migrate.AddForeignKeyOp) (_ []byte, err error) {
+	b = append(b, "ADD CONSTRAINT "...)
+
+	name := add.ConstraintName
+	if name == "" {
+		colRef := add.ForeignKey.From
+		columns := strings.Join(colRef.Column.Split(), "_")
+		name = fmt.Sprintf("%s_%s_fkey", colRef.TableName, columns)
+	}
+	b = fmter.AppendName(b, name)
+
+	b = append(b, " FOREIGN KEY ("...)
+	if b, err = add.ForeignKey.From.Column.AppendQuery(fmter, b); err != nil {
+		return b, err
+	}
+	b = append(b, ")"...)
+
+	b = append(b, " REFERENCES "...)
+	b = m.appendFQN(fmter, b, add.ForeignKey.To.TableName)
+
+	b = append(b, " ("...)
+	if b, err = add.ForeignKey.To.Column.AppendQuery(fmter, b); err != nil {
+		return b, err
+	}
+	b = append(b, ")"...)
+
+	return b, nil
+}
+
+func (m *migrator) changeColumnType(fmter schema.Formatter, b []byte, colDef *migrate.ChangeColumnTypeOp) (_ []byte, err error) {
+	// alterColumn never re-assigns err, so there is no need to check for err != nil after calling it
+	var i int
+	appendAlterColumn := func() {
+		if i > 0 {
+			b = append(b, ", "...)
+		}
+		b = append(b, "ALTER COLUMN "...)
+		b = fmter.AppendName(b, colDef.Column)
+		i++
+	}
+
+	got, want := colDef.From, colDef.To
+
+	inspector := m.db.Dialect().(sqlschema.InspectorDialect)
+	if !inspector.CompareType(want, got) {
+		appendAlterColumn()
+		b = append(b, " SET DATA TYPE "...)
+		if b, err = want.AppendQuery(fmter, b); err != nil {
+			return b, err
+		}
+	}
+
+	// Column must be declared NOT NULL before identity can be added.
+	// Although PG can resolve the order of operations itself, we make this explicit in the query.
+	if want.GetIsNullable() != got.GetIsNullable() {
+		appendAlterColumn()
+		if !want.GetIsNullable() {
+			b = append(b, " SET NOT NULL"...)
+		} else {
+			b = append(b, " DROP NOT NULL"...)
+		}
+	}
+
+	if want.GetIsIdentity() != got.GetIsIdentity() {
+		appendAlterColumn()
+		if !want.GetIsIdentity() {
+			b = append(b, " DROP IDENTITY"...)
+		} else {
+			b = append(b, " ADD"...)
+			b = appendGeneratedAsIdentity(b)
+		}
+	}
+
+	if want.GetDefaultValue() != got.GetDefaultValue() {
+		appendAlterColumn()
+		if want.GetDefaultValue() == "" {
+			b = append(b, " DROP DEFAULT"...)
+		} else {
+			b = append(b, " SET DEFAULT "...)
+			b = append(b, want.GetDefaultValue()...)
+		}
+	}
+
+	return b, nil
+}
diff --git a/vendor/github.com/uptrace/bun/dialect/pgdialect/array.go b/vendor/github.com/uptrace/bun/dialect/pgdialect/array.go
index 46b55659b..b0d9a2331 100644
--- a/vendor/github.com/uptrace/bun/dialect/pgdialect/array.go
+++ b/vendor/github.com/uptrace/bun/dialect/pgdialect/array.go
@@ -5,6 +5,7 @@ import (
 	"database/sql/driver"
 	"encoding/hex"
 	"fmt"
+	"math"
 	"reflect"
 	"strconv"
 	"time"
@@ -159,7 +160,7 @@ func arrayAppend(fmter schema.Formatter, b []byte, v interface{}) []byte {
 	case int64:
 		return strconv.AppendInt(b, v, 10)
 	case float64:
-		return dialect.AppendFloat64(b, v)
+		return arrayAppendFloat64(b, v)
 	case bool:
 		return dialect.AppendBool(b, v)
 	case []byte:
@@ -167,7 +168,10 @@ func arrayAppend(fmter schema.Formatter, b []byte, v interface{}) []byte {
 	case string:
 		return arrayAppendString(b, v)
 	case time.Time:
-		return fmter.Dialect().AppendTime(b, v)
+		b = append(b, '"')
+		b = appendTime(b, v)
+		b = append(b, '"')
+		return b
 	default:
 		err := fmt.Errorf("pgdialect: can't append %T", v)
 		return dialect.AppendError(b, err)
@@ -288,7 +292,7 @@ func appendFloat64Slice(b []byte, floats []float64) []byte {
 
 	b = append(b, '{')
 	for _, n := range floats {
-		b = dialect.AppendFloat64(b, n)
+		b = arrayAppendFloat64(b, n)
 		b = append(b, ',')
 	}
 	if len(floats) > 0 {
@@ -302,6 +306,19 @@ func appendFloat64Slice(b []byte, floats []float64) []byte {
 	return b
 }
 
+func arrayAppendFloat64(b []byte, num float64) []byte {
+	switch {
+	case math.IsNaN(num):
+		return append(b, "NaN"...)
+	case math.IsInf(num, 1):
+		return append(b, "Infinity"...)
+	case math.IsInf(num, -1):
+		return append(b, "-Infinity"...)
+	default:
+		return strconv.AppendFloat(b, num, 'f', -1, 64)
+	}
+}
+
 func appendTimeSliceValue(fmter schema.Formatter, b []byte, v reflect.Value) []byte {
 	ts := v.Convert(sliceTimeType).Interface().([]time.Time)
 	return appendTimeSlice(fmter, b, ts)
@@ -383,6 +400,10 @@ func arrayScanner(typ reflect.Type) schema.ScannerFunc {
 			}
 		}
 
+		if src == nil {
+			return nil
+		}
+
 		b, err := toBytes(src)
 		if err != nil {
 			return err
@@ -553,7 +574,7 @@ func scanFloat64SliceValue(dest reflect.Value, src interface{}) error {
 }
 
 func scanFloat64Slice(src interface{}) ([]float64, error) {
-	if src == -1 {
+	if src == nil {
 		return nil, nil
 	}
 
@@ -593,7 +614,7 @@ func toBytes(src interface{}) ([]byte, error) {
 	case []byte:
 		return src, nil
 	default:
-		return nil, fmt.Errorf("bun: got %T, wanted []byte or string", src)
+		return nil, fmt.Errorf("pgdialect: got %T, wanted []byte or string", src)
 	}
 }
 
diff --git a/vendor/github.com/uptrace/bun/dialect/pgdialect/dialect.go b/vendor/github.com/uptrace/bun/dialect/pgdialect/dialect.go
index 358971f61..040163f98 100644
--- a/vendor/github.com/uptrace/bun/dialect/pgdialect/dialect.go
+++ b/vendor/github.com/uptrace/bun/dialect/pgdialect/dialect.go
@@ -10,6 +10,7 @@ import (
 	"github.com/uptrace/bun/dialect"
 	"github.com/uptrace/bun/dialect/feature"
 	"github.com/uptrace/bun/dialect/sqltype"
+	"github.com/uptrace/bun/migrate/sqlschema"
 	"github.com/uptrace/bun/schema"
 )
 
@@ -29,6 +30,10 @@ type Dialect struct {
 	features feature.Feature
 }
 
+var _ schema.Dialect = (*Dialect)(nil)
+var _ sqlschema.InspectorDialect = (*Dialect)(nil)
+var _ sqlschema.MigratorDialect = (*Dialect)(nil)
+
 func New() *Dialect {
 	d := new(Dialect)
 	d.tables = schema.NewTables(d)
@@ -48,7 +53,8 @@ func New() *Dialect {
 		feature.InsertOnConflict |
 		feature.SelectExists |
 		feature.GeneratedIdentity |
-		feature.CompositeIn
+		feature.CompositeIn |
+		feature.DeleteReturning
 	return d
 }
 
@@ -118,5 +124,10 @@ func (d *Dialect) AppendUint64(b []byte, n uint64) []byte {
 }
 
 func (d *Dialect) AppendSequence(b []byte, _ *schema.Table, _ *schema.Field) []byte {
+	return appendGeneratedAsIdentity(b)
+}
+
+// appendGeneratedAsIdentity appends GENERATED BY DEFAULT AS IDENTITY to the column definition.
+func appendGeneratedAsIdentity(b []byte) []byte {
 	return append(b, " GENERATED BY DEFAULT AS IDENTITY"...)
 }
diff --git a/vendor/github.com/uptrace/bun/dialect/pgdialect/inspector.go b/vendor/github.com/uptrace/bun/dialect/pgdialect/inspector.go
new file mode 100644
index 000000000..42bbbe84f
--- /dev/null
+++ b/vendor/github.com/uptrace/bun/dialect/pgdialect/inspector.go
@@ -0,0 +1,297 @@
+package pgdialect
+
+import (
+	"context"
+	"strings"
+
+	"github.com/uptrace/bun"
+	"github.com/uptrace/bun/migrate/sqlschema"
+	orderedmap "github.com/wk8/go-ordered-map/v2"
+)
+
+type (
+	Schema = sqlschema.BaseDatabase
+	Table  = sqlschema.BaseTable
+	Column = sqlschema.BaseColumn
+)
+
+func (d *Dialect) NewInspector(db *bun.DB, options ...sqlschema.InspectorOption) sqlschema.Inspector {
+	return newInspector(db, options...)
+}
+
+type Inspector struct {
+	sqlschema.InspectorConfig
+	db *bun.DB
+}
+
+var _ sqlschema.Inspector = (*Inspector)(nil)
+
+func newInspector(db *bun.DB, options ...sqlschema.InspectorOption) *Inspector {
+	i := &Inspector{db: db}
+	sqlschema.ApplyInspectorOptions(&i.InspectorConfig, options...)
+	return i
+}
+
+func (in *Inspector) Inspect(ctx context.Context) (sqlschema.Database, error) {
+	dbSchema := Schema{
+		Tables:      orderedmap.New[string, sqlschema.Table](),
+		ForeignKeys: make(map[sqlschema.ForeignKey]string),
+	}
+
+	exclude := in.ExcludeTables
+	if len(exclude) == 0 {
+		// Avoid getting NOT IN (NULL) if bun.In() is called with an empty slice.
+		exclude = []string{""}
+	}
+
+	var tables []*InformationSchemaTable
+	if err := in.db.NewRaw(sqlInspectTables, in.SchemaName, bun.In(exclude)).Scan(ctx, &tables); err != nil {
+		return dbSchema, err
+	}
+
+	var fks []*ForeignKey
+	if err := in.db.NewRaw(sqlInspectForeignKeys, in.SchemaName, bun.In(exclude), bun.In(exclude)).Scan(ctx, &fks); err != nil {
+		return dbSchema, err
+	}
+	dbSchema.ForeignKeys = make(map[sqlschema.ForeignKey]string, len(fks))
+
+	for _, table := range tables {
+		var columns []*InformationSchemaColumn
+		if err := in.db.NewRaw(sqlInspectColumnsQuery, table.Schema, table.Name).Scan(ctx, &columns); err != nil {
+			return dbSchema, err
+		}
+
+		colDefs := orderedmap.New[string, sqlschema.Column]()
+		uniqueGroups := make(map[string][]string)
+
+		for _, c := range columns {
+			def := c.Default
+			if c.IsSerial || c.IsIdentity {
+				def = ""
+			} else if !c.IsDefaultLiteral {
+				def = strings.ToLower(def)
+			}
+
+			colDefs.Set(c.Name, &Column{
+				Name:            c.Name,
+				SQLType:         c.DataType,
+				VarcharLen:      c.VarcharLen,
+				DefaultValue:    def,
+				IsNullable:      c.IsNullable,
+				IsAutoIncrement: c.IsSerial,
+				IsIdentity:      c.IsIdentity,
+			})
+
+			for _, group := range c.UniqueGroups {
+				uniqueGroups[group] = append(uniqueGroups[group], c.Name)
+			}
+		}
+
+		var unique []sqlschema.Unique
+		for name, columns := range uniqueGroups {
+			unique = append(unique, sqlschema.Unique{
+				Name:    name,
+				Columns: sqlschema.NewColumns(columns...),
+			})
+		}
+
+		var pk *sqlschema.PrimaryKey
+		if len(table.PrimaryKey.Columns) > 0 {
+			pk = &sqlschema.PrimaryKey{
+				Name:    table.PrimaryKey.ConstraintName,
+				Columns: sqlschema.NewColumns(table.PrimaryKey.Columns...),
+			}
+		}
+
+		dbSchema.Tables.Set(table.Name, &Table{
+			Schema:            table.Schema,
+			Name:              table.Name,
+			Columns:           colDefs,
+			PrimaryKey:        pk,
+			UniqueConstraints: unique,
+		})
+	}
+
+	for _, fk := range fks {
+		dbSchema.ForeignKeys[sqlschema.ForeignKey{
+			From: sqlschema.NewColumnReference(fk.SourceTable, fk.SourceColumns...),
+			To:   sqlschema.NewColumnReference(fk.TargetTable, fk.TargetColumns...),
+		}] = fk.ConstraintName
+	}
+	return dbSchema, nil
+}
+
+type InformationSchemaTable struct {
+	Schema     string     `bun:"table_schema,pk"`
+	Name       string     `bun:"table_name,pk"`
+	PrimaryKey PrimaryKey `bun:"embed:primary_key_"`
+
+	Columns []*InformationSchemaColumn `bun:"rel:has-many,join:table_schema=table_schema,join:table_name=table_name"`
+}
+
+type InformationSchemaColumn struct {
+	Schema           string   `bun:"table_schema"`
+	Table            string   `bun:"table_name"`
+	Name             string   `bun:"column_name"`
+	DataType         string   `bun:"data_type"`
+	VarcharLen       int      `bun:"varchar_len"`
+	IsArray          bool     `bun:"is_array"`
+	ArrayDims        int      `bun:"array_dims"`
+	Default          string   `bun:"default"`
+	IsDefaultLiteral bool     `bun:"default_is_literal_expr"`
+	IsIdentity       bool     `bun:"is_identity"`
+	IndentityType    string   `bun:"identity_type"`
+	IsSerial         bool     `bun:"is_serial"`
+	IsNullable       bool     `bun:"is_nullable"`
+	UniqueGroups     []string `bun:"unique_groups,array"`
+}
+
+type ForeignKey struct {
+	ConstraintName string   `bun:"constraint_name"`
+	SourceSchema   string   `bun:"schema_name"`
+	SourceTable    string   `bun:"table_name"`
+	SourceColumns  []string `bun:"columns,array"`
+	TargetSchema   string   `bun:"target_schema"`
+	TargetTable    string   `bun:"target_table"`
+	TargetColumns  []string `bun:"target_columns,array"`
+}
+
+type PrimaryKey struct {
+	ConstraintName string   `bun:"name"`
+	Columns        []string `bun:"columns,array"`
+}
+
+const (
+	// sqlInspectTables retrieves all user-defined tables in the selected schema.
+	// Pass bun.In([]string{...}) to exclude tables from this inspection or bun.In([]string{''}) to include all results.
+	sqlInspectTables = `
+SELECT
+	"t".table_schema,
+	"t".table_name,
+	pk.name AS primary_key_name,
+	pk.columns AS primary_key_columns
+FROM information_schema.tables "t"
+	LEFT JOIN (
+		SELECT i.indrelid, "idx".relname AS "name", ARRAY_AGG("a".attname) AS "columns"
+		FROM pg_index i
+			JOIN pg_attribute "a"
+				ON "a".attrelid = i.indrelid
+				AND "a".attnum = ANY("i".indkey)
+				AND i.indisprimary
+			JOIN pg_class "idx" ON i.indexrelid = "idx".oid
+		GROUP BY 1, 2
+	) pk
+	ON ("t".table_schema || '.' || "t".table_name)::regclass = pk.indrelid
+WHERE table_type = 'BASE TABLE'
+	AND "t".table_schema = ?
+	AND "t".table_schema NOT LIKE 'pg_%'
+	AND "table_name" NOT IN (?)
+ORDER BY "t".table_schema, "t".table_name
+`
+
+	// sqlInspectColumnsQuery retrieves column definitions for the specified table.
+	// Unlike sqlInspectTables and sqlInspectSchema, it should be passed to bun.NewRaw
+	// with additional args for table_schema and table_name.
+	sqlInspectColumnsQuery = `
+SELECT
+	"c".table_schema,
+	"c".table_name,
+	"c".column_name,
+	"c".data_type,
+	"c".character_maximum_length::integer AS varchar_len,
+	"c".data_type = 'ARRAY' AS is_array,
+	COALESCE("c".array_dims, 0) AS array_dims,
+	CASE
+		WHEN "c".column_default ~ '^''.*''::.*$' THEN substring("c".column_default FROM '^''(.*)''::.*$')
+		ELSE "c".column_default
+	END AS "default",
+	"c".column_default ~ '^''.*''::.*$' OR "c".column_default ~ '^[0-9\.]+$' AS default_is_literal_expr,
+	"c".is_identity = 'YES' AS is_identity,
+	"c".column_default = format('nextval(''%s_%s_seq''::regclass)', "c".table_name, "c".column_name) AS is_serial,
+	COALESCE("c".identity_type, '') AS identity_type,
+	"c".is_nullable = 'YES' AS is_nullable,
+	"c"."unique_groups" AS unique_groups
+FROM (
+	SELECT
+		"table_schema",
+		"table_name",
+		"column_name",
+		"c".data_type,
+		"c".character_maximum_length,
+		"c".column_default,
+		"c".is_identity,
+		"c".is_nullable,
+		att.array_dims,
+		att.identity_type,
+		att."unique_groups",
+		att."constraint_type"
+	FROM information_schema.columns "c"
+		LEFT JOIN (
+			SELECT
+				s.nspname AS "table_schema",
+				"t".relname AS "table_name",
+				"c".attname AS "column_name",
+				"c".attndims AS array_dims,
+				"c".attidentity AS identity_type,
+				ARRAY_AGG(con.conname) FILTER (WHERE con.contype = 'u') AS "unique_groups",
+				ARRAY_AGG(con.contype) AS "constraint_type"
+			FROM (
+				SELECT
+					conname,
+					contype,
+					connamespace,
+					conrelid,
+					conrelid AS attrelid,
+					UNNEST(conkey) AS attnum
+				FROM pg_constraint
+			) con
+				LEFT JOIN pg_attribute "c" USING (attrelid, attnum)
+				LEFT JOIN pg_namespace s ON s.oid = con.connamespace
+				LEFT JOIN pg_class "t" ON "t".oid = con.conrelid
+			GROUP BY 1, 2, 3, 4, 5
+		) att USING ("table_schema", "table_name", "column_name")
+	) "c"
+WHERE "table_schema" = ? AND "table_name" = ?
+ORDER BY "table_schema", "table_name", "column_name"
+`
+
+	// sqlInspectForeignKeys get FK definitions for user-defined tables.
+	// Pass bun.In([]string{...}) to exclude tables from this inspection or bun.In([]string{''}) to include all results.
+	sqlInspectForeignKeys = `
+WITH
+	"schemas" AS (
+		SELECT oid, nspname
+		FROM pg_namespace
+	),
+	"tables" AS (
+		SELECT oid, relnamespace, relname, relkind
+		FROM pg_class
+	),
+	"columns" AS (
+		SELECT attrelid, attname, attnum
+		FROM pg_attribute
+		WHERE attisdropped = false
+	)
+SELECT DISTINCT
+	co.conname AS "constraint_name",
+	ss.nspname AS schema_name,
+	s.relname AS "table_name",
+	ARRAY_AGG(sc.attname) AS "columns",
+	ts.nspname AS target_schema,
+	"t".relname AS target_table,
+	ARRAY_AGG(tc.attname) AS target_columns
+FROM pg_constraint co
+	LEFT JOIN "tables" s ON s.oid = co.conrelid
+	LEFT JOIN "schemas" ss ON ss.oid = s.relnamespace
+	LEFT JOIN "columns" sc ON sc.attrelid = s.oid AND sc.attnum = ANY(co.conkey)
+	LEFT JOIN "tables" t ON t.oid = co.confrelid
+	LEFT JOIN "schemas" ts ON ts.oid = "t".relnamespace
+	LEFT JOIN "columns" tc ON tc.attrelid = "t".oid AND tc.attnum = ANY(co.confkey)
+WHERE co.contype = 'f'
+	AND co.conrelid IN (SELECT oid FROM pg_class WHERE relkind = 'r')
+	AND ARRAY_POSITION(co.conkey, sc.attnum) = ARRAY_POSITION(co.confkey, tc.attnum)
+	AND ss.nspname = ?
+	AND s.relname NOT IN (?) AND "t".relname NOT IN (?)
+GROUP BY "constraint_name", "schema_name", "table_name", target_schema, target_table
+`
+)
diff --git a/vendor/github.com/uptrace/bun/dialect/pgdialect/sqltype.go b/vendor/github.com/uptrace/bun/dialect/pgdialect/sqltype.go
index fad84209d..bacc00e86 100644
--- a/vendor/github.com/uptrace/bun/dialect/pgdialect/sqltype.go
+++ b/vendor/github.com/uptrace/bun/dialect/pgdialect/sqltype.go
@@ -5,18 +5,22 @@ import (
 	"encoding/json"
 	"net"
 	"reflect"
+	"strings"
 
 	"github.com/uptrace/bun/dialect/sqltype"
+	"github.com/uptrace/bun/migrate/sqlschema"
 	"github.com/uptrace/bun/schema"
 )
 
 const (
 	// Date / Time
-	pgTypeTimestampTz = "TIMESTAMPTZ"         // Timestamp with a time zone
-	pgTypeDate        = "DATE"                // Date
-	pgTypeTime        = "TIME"                // Time without a time zone
-	pgTypeTimeTz      = "TIME WITH TIME ZONE" // Time with a time zone
-	pgTypeInterval    = "INTERVAL"            // Time Interval
+	pgTypeTimestamp       = "TIMESTAMP"                // Timestamp
+	pgTypeTimestampWithTz = "TIMESTAMP WITH TIME ZONE" // Timestamp with a time zone
+	pgTypeTimestampTz     = "TIMESTAMPTZ"              // Timestamp with a time zone (alias)
+	pgTypeDate            = "DATE"                     // Date
+	pgTypeTime            = "TIME"                     // Time without a time zone
+	pgTypeTimeTz          = "TIME WITH TIME ZONE"      // Time with a time zone
+	pgTypeInterval        = "INTERVAL"                 // Time interval
 
 	// Network Addresses
 	pgTypeInet    = "INET"    // IPv4 or IPv6 hosts and networks
@@ -28,6 +32,13 @@ const (
 	pgTypeSerial      = "SERIAL"      // 4 byte autoincrementing integer
 	pgTypeBigSerial   = "BIGSERIAL"   // 8 byte autoincrementing integer
 
+	// Character Types
+	pgTypeChar             = "CHAR"              // fixed length string (blank padded)
+	pgTypeCharacter        = "CHARACTER"         // alias for CHAR
+	pgTypeText             = "TEXT"              // variable length string without limit
+	pgTypeVarchar          = "VARCHAR"           // variable length string with optional limit
+	pgTypeCharacterVarying = "CHARACTER VARYING" // alias for VARCHAR
+
 	// Binary Data Types
 	pgTypeBytea = "BYTEA" // binary string
 )
@@ -43,6 +54,10 @@ func (d *Dialect) DefaultVarcharLen() int {
 	return 0
 }
 
+func (d *Dialect) DefaultSchema() string {
+	return "public"
+}
+
 func fieldSQLType(field *schema.Field) string {
 	if field.UserSQLType != "" {
 		return field.UserSQLType
@@ -103,3 +118,62 @@ func sqlType(typ reflect.Type) string {
 
 	return sqlType
 }
+
+var (
+	char        = newAliases(pgTypeChar, pgTypeCharacter)
+	varchar     = newAliases(pgTypeVarchar, pgTypeCharacterVarying)
+	timestampTz = newAliases(sqltype.Timestamp, pgTypeTimestampTz, pgTypeTimestampWithTz)
+)
+
+func (d *Dialect) CompareType(col1, col2 sqlschema.Column) bool {
+	typ1, typ2 := strings.ToUpper(col1.GetSQLType()), strings.ToUpper(col2.GetSQLType())
+
+	if typ1 == typ2 {
+		return checkVarcharLen(col1, col2, d.DefaultVarcharLen())
+	}
+
+	switch {
+	case char.IsAlias(typ1) && char.IsAlias(typ2):
+		return checkVarcharLen(col1, col2, d.DefaultVarcharLen())
+	case varchar.IsAlias(typ1) && varchar.IsAlias(typ2):
+		return checkVarcharLen(col1, col2, d.DefaultVarcharLen())
+	case timestampTz.IsAlias(typ1) && timestampTz.IsAlias(typ2):
+		return true
+	}
+	return false
+}
+
+// checkVarcharLen returns true if columns have the same VarcharLen, or,
+// if one specifies no VarcharLen and the other one has the default lenght for pgdialect.
+// We assume that the types are otherwise equivalent and that any non-character column
+// would have VarcharLen == 0;
+func checkVarcharLen(col1, col2 sqlschema.Column, defaultLen int) bool {
+	vl1, vl2 := col1.GetVarcharLen(), col2.GetVarcharLen()
+
+	if vl1 == vl2 {
+		return true
+	}
+
+	if (vl1 == 0 && vl2 == defaultLen) || (vl1 == defaultLen && vl2 == 0) {
+		return true
+	}
+	return false
+}
+
+// typeAlias defines aliases for common data types. It is a lightweight string set implementation.
+type typeAlias map[string]struct{}
+
+// IsAlias checks if typ1 and typ2 are aliases of the same data type.
+func (t typeAlias) IsAlias(typ string) bool {
+	_, ok := t[typ]
+	return ok
+}
+
+// newAliases creates a set of aliases.
+func newAliases(aliases ...string) typeAlias {
+	types := make(typeAlias)
+	for _, a := range aliases {
+		types[a] = struct{}{}
+	}
+	return types
+}
diff --git a/vendor/github.com/uptrace/bun/dialect/pgdialect/version.go b/vendor/github.com/uptrace/bun/dialect/pgdialect/version.go
index c06043647..a4a6a760a 100644
--- a/vendor/github.com/uptrace/bun/dialect/pgdialect/version.go
+++ b/vendor/github.com/uptrace/bun/dialect/pgdialect/version.go
@@ -2,5 +2,5 @@ package pgdialect
 
 // Version is the current release version.
 func Version() string {
-	return "1.2.5"
+	return "1.2.6"
 }
diff --git a/vendor/github.com/uptrace/bun/dialect/sqlitedialect/dialect.go b/vendor/github.com/uptrace/bun/dialect/sqlitedialect/dialect.go
index 3bfe500ff..92959482e 100644
--- a/vendor/github.com/uptrace/bun/dialect/sqlitedialect/dialect.go
+++ b/vendor/github.com/uptrace/bun/dialect/sqlitedialect/dialect.go
@@ -40,7 +40,8 @@ func New() *Dialect {
 		feature.TableNotExists |
 		feature.SelectExists |
 		feature.AutoIncrement |
-		feature.CompositeIn
+		feature.CompositeIn |
+		feature.DeleteReturning
 	return d
 }
 
@@ -96,9 +97,13 @@ func (d *Dialect) DefaultVarcharLen() int {
 // AUTOINCREMENT is only valid for INTEGER PRIMARY KEY, and this method will be a noop for other columns.
 //
 // Because this is a valid construct:
+//
 //	CREATE TABLE ("id" INTEGER PRIMARY KEY AUTOINCREMENT);
+//
 // and this is not:
+//
 //	CREATE TABLE ("id" INTEGER AUTOINCREMENT, PRIMARY KEY ("id"));
+//
 // AppendSequence adds a primary key constraint as a *side-effect*. Callers should expect it to avoid building invalid SQL.
 // SQLite also [does not support] AUTOINCREMENT column in composite primary keys.
 //
@@ -111,6 +116,13 @@ func (d *Dialect) AppendSequence(b []byte, table *schema.Table, field *schema.Fi
 	return b
 }
 
+// DefaultSchemaName is the "schema-name" of the main database.
+// The details might differ from other dialects, but for all means and purposes
+// "main" is the default schema in an SQLite database.
+func (d *Dialect) DefaultSchema() string {
+	return "main"
+}
+
 func fieldSQLType(field *schema.Field) string {
 	switch field.DiscoveredSQLType {
 	case sqltype.SmallInt, sqltype.BigInt:
diff --git a/vendor/github.com/uptrace/bun/dialect/sqlitedialect/version.go b/vendor/github.com/uptrace/bun/dialect/sqlitedialect/version.go
index e3cceaa77..18c6f7857 100644
--- a/vendor/github.com/uptrace/bun/dialect/sqlitedialect/version.go
+++ b/vendor/github.com/uptrace/bun/dialect/sqlitedialect/version.go
@@ -2,5 +2,5 @@ package sqlitedialect
 
 // Version is the current release version.
 func Version() string {
-	return "1.2.5"
+	return "1.2.6"
 }
diff --git a/vendor/github.com/uptrace/bun/internal/util.go b/vendor/github.com/uptrace/bun/internal/util.go
index 66b92b3c5..ba1341e61 100644
--- a/vendor/github.com/uptrace/bun/internal/util.go
+++ b/vendor/github.com/uptrace/bun/internal/util.go
@@ -79,3 +79,9 @@ func indirectNil(v reflect.Value) reflect.Value {
 	}
 	return v
 }
+
+// MakeQueryBytes returns zero-length byte slice with capacity of 4096.
+func MakeQueryBytes() []byte {
+	// TODO: make this configurable?
+	return make([]byte, 0, 4096)
+}
diff --git a/vendor/github.com/uptrace/bun/migrate/auto.go b/vendor/github.com/uptrace/bun/migrate/auto.go
new file mode 100644
index 000000000..e56fa23a0
--- /dev/null
+++ b/vendor/github.com/uptrace/bun/migrate/auto.go
@@ -0,0 +1,429 @@
+package migrate
+
+import (
+	"bytes"
+	"context"
+	"errors"
+	"fmt"
+	"io"
+	"os"
+	"path/filepath"
+
+	"github.com/uptrace/bun"
+	"github.com/uptrace/bun/internal"
+	"github.com/uptrace/bun/migrate/sqlschema"
+	"github.com/uptrace/bun/schema"
+)
+
+type AutoMigratorOption func(m *AutoMigrator)
+
+// WithModel adds a bun.Model to the scope of migrations.
+func WithModel(models ...interface{}) AutoMigratorOption {
+	return func(m *AutoMigrator) {
+		m.includeModels = append(m.includeModels, models...)
+	}
+}
+
+// WithExcludeTable tells the AutoMigrator to ignore a table in the database.
+// This prevents AutoMigrator from dropping tables which may exist in the schema
+// but which are not used by the application.
+//
+// Do not exclude tables included via WithModel, as BunModelInspector ignores this setting.
+func WithExcludeTable(tables ...string) AutoMigratorOption {
+	return func(m *AutoMigrator) {
+		m.excludeTables = append(m.excludeTables, tables...)
+	}
+}
+
+// WithSchemaName changes the default database schema to migrate objects in.
+func WithSchemaName(schemaName string) AutoMigratorOption {
+	return func(m *AutoMigrator) {
+		m.schemaName = schemaName
+	}
+}
+
+// WithTableNameAuto overrides default migrations table name.
+func WithTableNameAuto(table string) AutoMigratorOption {
+	return func(m *AutoMigrator) {
+		m.table = table
+		m.migratorOpts = append(m.migratorOpts, WithTableName(table))
+	}
+}
+
+// WithLocksTableNameAuto overrides default migration locks table name.
+func WithLocksTableNameAuto(table string) AutoMigratorOption {
+	return func(m *AutoMigrator) {
+		m.locksTable = table
+		m.migratorOpts = append(m.migratorOpts, WithLocksTableName(table))
+	}
+}
+
+// WithMarkAppliedOnSuccessAuto sets the migrator to only mark migrations as applied/unapplied
+// when their up/down is successful.
+func WithMarkAppliedOnSuccessAuto(enabled bool) AutoMigratorOption {
+	return func(m *AutoMigrator) {
+		m.migratorOpts = append(m.migratorOpts, WithMarkAppliedOnSuccess(enabled))
+	}
+}
+
+// WithMigrationsDirectoryAuto overrides the default directory for migration files.
+func WithMigrationsDirectoryAuto(directory string) AutoMigratorOption {
+	return func(m *AutoMigrator) {
+		m.migrationsOpts = append(m.migrationsOpts, WithMigrationsDirectory(directory))
+	}
+}
+
+// AutoMigrator performs automated schema migrations.
+//
+// It is designed to be a drop-in replacement for some Migrator functionality and supports all existing
+// configuration options.
+// Similarly to Migrator, it has methods to create SQL migrations, write them to a file, and apply them.
+// Unlike Migrator, it detects the differences between the state defined by bun models and the current
+// database schema automatically.
+//
+// Usage:
+//  1. Generate migrations and apply them au once with AutoMigrator.Migrate().
+//  2. Create up- and down-SQL migration files and apply migrations using Migrator.Migrate().
+//
+// While both methods produce complete, reversible migrations (with entries in the database
+// and SQL migration files), prefer creating migrations and applying them separately for
+// any non-trivial cases to ensure AutoMigrator detects expected changes correctly.
+//
+// Limitations:
+//   - AutoMigrator only supports a subset of the possible ALTER TABLE modifications.
+//   - Some changes are not automatically reversible. For example, you would need to manually
+//     add a CREATE TABLE query to the .down migration file to revert a DROP TABLE migration.
+//   - Does not validate most dialect-specific constraints. For example, when changing column
+//     data type, make sure the data con be auto-casted to the new type.
+//   - Due to how the schema-state diff is calculated, it is not possible to rename a table and
+//     modify any of its columns' _data type_ in a single run. This will cause the AutoMigrator
+//     to drop and re-create the table under a different name; it is better to apply this change in 2 steps.
+//     Renaming a table and renaming its columns at the same time is possible.
+//   - Renaming table/column to an existing name, i.e. like this [A->B] [B->C], is not possible due to how
+//     AutoMigrator distinguishes "rename" and "unchanged" columns.
+//
+// Dialect must implement both sqlschema.Inspector and sqlschema.Migrator to be used with AutoMigrator.
+type AutoMigrator struct {
+	db *bun.DB
+
+	// dbInspector creates the current state for the target database.
+	dbInspector sqlschema.Inspector
+
+	// modelInspector creates the desired state based on the model definitions.
+	modelInspector sqlschema.Inspector
+
+	// dbMigrator executes ALTER TABLE queries.
+	dbMigrator sqlschema.Migrator
+
+	table      string // Migrations table (excluded from database inspection)
+	locksTable string // Migration locks table (excluded from database inspection)
+
+	// schemaName is the database schema considered for migration.
+	schemaName string
+
+	// includeModels define the migration scope.
+	includeModels []interface{}
+
+	// excludeTables are excluded from database inspection.
+	excludeTables []string
+
+	// diffOpts are passed to detector constructor.
+	diffOpts []diffOption
+
+	// migratorOpts are passed to Migrator constructor.
+	migratorOpts []MigratorOption
+
+	// migrationsOpts are passed to Migrations constructor.
+	migrationsOpts []MigrationsOption
+}
+
+func NewAutoMigrator(db *bun.DB, opts ...AutoMigratorOption) (*AutoMigrator, error) {
+	am := &AutoMigrator{
+		db:         db,
+		table:      defaultTable,
+		locksTable: defaultLocksTable,
+		schemaName: db.Dialect().DefaultSchema(),
+	}
+
+	for _, opt := range opts {
+		opt(am)
+	}
+	am.excludeTables = append(am.excludeTables, am.table, am.locksTable)
+
+	dbInspector, err := sqlschema.NewInspector(db, sqlschema.WithSchemaName(am.schemaName), sqlschema.WithExcludeTables(am.excludeTables...))
+	if err != nil {
+		return nil, err
+	}
+	am.dbInspector = dbInspector
+	am.diffOpts = append(am.diffOpts, withCompareTypeFunc(db.Dialect().(sqlschema.InspectorDialect).CompareType))
+
+	dbMigrator, err := sqlschema.NewMigrator(db, am.schemaName)
+	if err != nil {
+		return nil, err
+	}
+	am.dbMigrator = dbMigrator
+
+	tables := schema.NewTables(db.Dialect())
+	tables.Register(am.includeModels...)
+	am.modelInspector = sqlschema.NewBunModelInspector(tables, sqlschema.WithSchemaName(am.schemaName))
+
+	return am, nil
+}
+
+func (am *AutoMigrator) plan(ctx context.Context) (*changeset, error) {
+	var err error
+
+	got, err := am.dbInspector.Inspect(ctx)
+	if err != nil {
+		return nil, err
+	}
+
+	want, err := am.modelInspector.Inspect(ctx)
+	if err != nil {
+		return nil, err
+	}
+
+	changes := diff(got, want, am.diffOpts...)
+	if err := changes.ResolveDependencies(); err != nil {
+		return nil, fmt.Errorf("plan migrations: %w", err)
+	}
+	return changes, nil
+}
+
+// Migrate writes required changes to a new migration file and runs the migration.
+// This will create and entry in the migrations table, making it possible to revert
+// the changes with Migrator.Rollback(). MigrationOptions are passed on to Migrator.Migrate().
+func (am *AutoMigrator) Migrate(ctx context.Context, opts ...MigrationOption) (*MigrationGroup, error) {
+	migrations, _, err := am.createSQLMigrations(ctx, false)
+	if err != nil {
+		return nil, fmt.Errorf("auto migrate: %w", err)
+	}
+
+	migrator := NewMigrator(am.db, migrations, am.migratorOpts...)
+	if err := migrator.Init(ctx); err != nil {
+		return nil, fmt.Errorf("auto migrate: %w", err)
+	}
+
+	group, err := migrator.Migrate(ctx, opts...)
+	if err != nil {
+		return nil, fmt.Errorf("auto migrate: %w", err)
+	}
+	return group, nil
+}
+
+// CreateSQLMigration writes required changes to a new migration file.
+// Use migrate.Migrator to apply the generated migrations.
+func (am *AutoMigrator) CreateSQLMigrations(ctx context.Context) ([]*MigrationFile, error) {
+	_, files, err := am.createSQLMigrations(ctx, true)
+	return files, err
+}
+
+// CreateTxSQLMigration writes required changes to a new migration file making sure they will be executed
+// in a transaction when applied. Use migrate.Migrator to apply the generated migrations.
+func (am *AutoMigrator) CreateTxSQLMigrations(ctx context.Context) ([]*MigrationFile, error) {
+	_, files, err := am.createSQLMigrations(ctx, false)
+	return files, err
+}
+
+func (am *AutoMigrator) createSQLMigrations(ctx context.Context, transactional bool) (*Migrations, []*MigrationFile, error) {
+	changes, err := am.plan(ctx)
+	if err != nil {
+		return nil, nil, fmt.Errorf("create sql migrations: %w", err)
+	}
+
+	name, _ := genMigrationName(am.schemaName + "_auto")
+	migrations := NewMigrations(am.migrationsOpts...)
+	migrations.Add(Migration{
+		Name:    name,
+		Up:      changes.Up(am.dbMigrator),
+		Down:    changes.Down(am.dbMigrator),
+		Comment: "Changes detected by bun.AutoMigrator",
+	})
+
+	// Append .tx.up.sql or .up.sql to migration name, dependin if it should be transactional.
+	fname := func(direction string) string {
+		return name + map[bool]string{true: ".tx.", false: "."}[transactional] + direction + ".sql"
+	}
+
+	up, err := am.createSQL(ctx, migrations, fname("up"), changes, transactional)
+	if err != nil {
+		return nil, nil, fmt.Errorf("create sql migration up: %w", err)
+	}
+
+	down, err := am.createSQL(ctx, migrations, fname("down"), changes.GetReverse(), transactional)
+	if err != nil {
+		return nil, nil, fmt.Errorf("create sql migration down: %w", err)
+	}
+	return migrations, []*MigrationFile{up, down}, nil
+}
+
+func (am *AutoMigrator) createSQL(_ context.Context, migrations *Migrations, fname string, changes *changeset, transactional bool) (*MigrationFile, error) {
+	var buf bytes.Buffer
+
+	if transactional {
+		buf.WriteString("SET statement_timeout = 0;")
+	}
+
+	if err := changes.WriteTo(&buf, am.dbMigrator); err != nil {
+		return nil, err
+	}
+	content := buf.Bytes()
+
+	fpath := filepath.Join(migrations.getDirectory(), fname)
+	if err := os.WriteFile(fpath, content, 0o644); err != nil {
+		return nil, err
+	}
+
+	mf := &MigrationFile{
+		Name:    fname,
+		Path:    fpath,
+		Content: string(content),
+	}
+	return mf, nil
+}
+
+// Func creates a MigrationFunc that applies all operations all the changeset.
+func (c *changeset) Func(m sqlschema.Migrator) MigrationFunc {
+	return func(ctx context.Context, db *bun.DB) error {
+		return c.apply(ctx, db, m)
+	}
+}
+
+// GetReverse returns a new changeset with each operation in it "reversed" and in reverse order.
+func (c *changeset) GetReverse() *changeset {
+	var reverse changeset
+	for i := len(c.operations) - 1; i >= 0; i-- {
+		reverse.Add(c.operations[i].GetReverse())
+	}
+	return &reverse
+}
+
+// Up is syntactic sugar.
+func (c *changeset) Up(m sqlschema.Migrator) MigrationFunc {
+	return c.Func(m)
+}
+
+// Down is syntactic sugar.
+func (c *changeset) Down(m sqlschema.Migrator) MigrationFunc {
+	return c.GetReverse().Func(m)
+}
+
+// apply generates SQL for each operation and executes it.
+func (c *changeset) apply(ctx context.Context, db *bun.DB, m sqlschema.Migrator) error {
+	if len(c.operations) == 0 {
+		return nil
+	}
+
+	for _, op := range c.operations {
+		if _, isComment := op.(*comment); isComment {
+			continue
+		}
+
+		b := internal.MakeQueryBytes()
+		b, err := m.AppendSQL(b, op)
+		if err != nil {
+			return fmt.Errorf("apply changes: %w", err)
+		}
+
+		query := internal.String(b)
+		if _, err = db.ExecContext(ctx, query); err != nil {
+			return fmt.Errorf("apply changes: %w", err)
+		}
+	}
+	return nil
+}
+
+func (c *changeset) WriteTo(w io.Writer, m sqlschema.Migrator) error {
+	var err error
+
+	b := internal.MakeQueryBytes()
+	for _, op := range c.operations {
+		if c, isComment := op.(*comment); isComment {
+			b = append(b, "/*\n"...)
+			b = append(b, *c...)
+			b = append(b, "\n*/"...)
+			continue
+		}
+
+		b, err = m.AppendSQL(b, op)
+		if err != nil {
+			return fmt.Errorf("write changeset: %w", err)
+		}
+		b = append(b, ";\n"...)
+	}
+	if _, err := w.Write(b); err != nil {
+		return fmt.Errorf("write changeset: %w", err)
+	}
+	return nil
+}
+
+func (c *changeset) ResolveDependencies() error {
+	if len(c.operations) <= 1 {
+		return nil
+	}
+
+	const (
+		unvisited = iota
+		current
+		visited
+	)
+
+	status := make(map[Operation]int, len(c.operations))
+	for _, op := range c.operations {
+		status[op] = unvisited
+	}
+
+	var resolved []Operation
+	var nextOp Operation
+	var visit func(op Operation) error
+
+	next := func() bool {
+		for op, s := range status {
+			if s == unvisited {
+				nextOp = op
+				return true
+			}
+		}
+		return false
+	}
+
+	// visit iterates over c.operations until it finds all operations that depend on the current one
+	// or runs into cirtular dependency, in which case it will return an error.
+	visit = func(op Operation) error {
+		switch status[op] {
+		case visited:
+			return nil
+		case current:
+			// TODO: add details (circle) to the error message
+			return errors.New("detected circular dependency")
+		}
+
+		status[op] = current
+
+		for _, another := range c.operations {
+			if dop, hasDeps := another.(interface {
+				DependsOn(Operation) bool
+			}); another == op || !hasDeps || !dop.DependsOn(op) {
+				continue
+			}
+			if err := visit(another); err != nil {
+				return err
+			}
+		}
+
+		status[op] = visited
+
+		// Any dependent nodes would've already been added to the list by now, so we prepend.
+		resolved = append([]Operation{op}, resolved...)
+		return nil
+	}
+
+	for next() {
+		if err := visit(nextOp); err != nil {
+			return err
+		}
+	}
+
+	c.operations = resolved
+	return nil
+}
diff --git a/vendor/github.com/uptrace/bun/migrate/diff.go b/vendor/github.com/uptrace/bun/migrate/diff.go
new file mode 100644
index 000000000..42e55dcde
--- /dev/null
+++ b/vendor/github.com/uptrace/bun/migrate/diff.go
@@ -0,0 +1,411 @@
+package migrate
+
+import (
+	"github.com/uptrace/bun/migrate/sqlschema"
+)
+
+// changeset is a set of changes to the database schema definition.
+type changeset struct {
+	operations []Operation
+}
+
+// Add new operations to the changeset.
+func (c *changeset) Add(op ...Operation) {
+	c.operations = append(c.operations, op...)
+}
+
+// diff calculates the diff between the current database schema and the target state.
+// The changeset is not sorted -- the caller should resolve dependencies before applying the changes.
+func diff(got, want sqlschema.Database, opts ...diffOption) *changeset {
+	d := newDetector(got, want, opts...)
+	return d.detectChanges()
+}
+
+func (d *detector) detectChanges() *changeset {
+	currentTables := d.current.GetTables()
+	targetTables := d.target.GetTables()
+
+RenameCreate:
+	for wantName, wantTable := range targetTables.FromOldest() {
+
+		// A table with this name exists in the database. We assume that schema objects won't
+		// be renamed to an already existing name, nor do we support such cases.
+		// Simply check if the table definition has changed.
+		if haveTable, ok := currentTables.Get(wantName); ok {
+			d.detectColumnChanges(haveTable, wantTable, true)
+			d.detectConstraintChanges(haveTable, wantTable)
+			continue
+		}
+
+		// Find all renamed tables. We assume that renamed tables have the same signature.
+		for haveName, haveTable := range currentTables.FromOldest() {
+			if _, exists := targetTables.Get(haveName); !exists && d.canRename(haveTable, wantTable) {
+				d.changes.Add(&RenameTableOp{
+					TableName: haveTable.GetName(),
+					NewName:   wantName,
+				})
+				d.refMap.RenameTable(haveTable.GetName(), wantName)
+
+				// Find renamed columns, if any, and check if constraints (PK, UNIQUE) have been updated.
+				// We need not check wantTable any further.
+				d.detectColumnChanges(haveTable, wantTable, false)
+				d.detectConstraintChanges(haveTable, wantTable)
+				currentTables.Delete(haveName)
+				continue RenameCreate
+			}
+		}
+
+		// If wantTable does not exist in the database and was not renamed
+		// then we need to create this table in the database.
+		additional := wantTable.(*sqlschema.BunTable)
+		d.changes.Add(&CreateTableOp{
+			TableName: wantTable.GetName(),
+			Model:     additional.Model,
+		})
+	}
+
+	// Drop any remaining "current" tables which do not have a model.
+	for name, table := range currentTables.FromOldest() {
+		if _, keep := targetTables.Get(name); !keep {
+			d.changes.Add(&DropTableOp{
+				TableName: table.GetName(),
+			})
+		}
+	}
+
+	targetFKs := d.target.GetForeignKeys()
+	currentFKs := d.refMap.Deref()
+
+	for fk := range targetFKs {
+		if _, ok := currentFKs[fk]; !ok {
+			d.changes.Add(&AddForeignKeyOp{
+				ForeignKey:     fk,
+				ConstraintName: "", // leave empty to let each dialect apply their convention
+			})
+		}
+	}
+
+	for fk, name := range currentFKs {
+		if _, ok := targetFKs[fk]; !ok {
+			d.changes.Add(&DropForeignKeyOp{
+				ConstraintName: name,
+				ForeignKey:     fk,
+			})
+		}
+	}
+
+	return &d.changes
+}
+
+// detechColumnChanges finds renamed columns and, if checkType == true, columns with changed type.
+func (d *detector) detectColumnChanges(current, target sqlschema.Table, checkType bool) {
+	currentColumns := current.GetColumns()
+	targetColumns := target.GetColumns()
+
+ChangeRename:
+	for tName, tCol := range targetColumns.FromOldest() {
+
+		// This column exists in the database, so it hasn't been renamed, dropped, or added.
+		// Still, we should not delete(columns, thisColumn), because later we will need to
+		// check that we do not try to rename a column to an already a name that already exists.
+		if cCol, ok := currentColumns.Get(tName); ok {
+			if checkType && !d.equalColumns(cCol, tCol) {
+				d.changes.Add(&ChangeColumnTypeOp{
+					TableName: target.GetName(),
+					Column:    tName,
+					From:      cCol,
+					To:        d.makeTargetColDef(cCol, tCol),
+				})
+			}
+			continue
+		}
+
+		// Column tName does not exist in the database -- it's been either renamed or added.
+		// Find renamed columns first.
+		for cName, cCol := range currentColumns.FromOldest() {
+			// Cannot rename if a column with this name already exists or the types differ.
+			if _, exists := targetColumns.Get(cName); exists || !d.equalColumns(tCol, cCol) {
+				continue
+			}
+			d.changes.Add(&RenameColumnOp{
+				TableName: target.GetName(),
+				OldName:   cName,
+				NewName:   tName,
+			})
+			d.refMap.RenameColumn(target.GetName(), cName, tName)
+			currentColumns.Delete(cName) // no need to check this column again
+
+			// Update primary key definition to avoid superficially recreating the constraint.
+			current.GetPrimaryKey().Columns.Replace(cName, tName)
+
+			continue ChangeRename
+		}
+
+		d.changes.Add(&AddColumnOp{
+			TableName:  target.GetName(),
+			ColumnName: tName,
+			Column:     tCol,
+		})
+	}
+
+	// Drop columns which do not exist in the target schema and were not renamed.
+	for cName, cCol := range currentColumns.FromOldest() {
+		if _, keep := targetColumns.Get(cName); !keep {
+			d.changes.Add(&DropColumnOp{
+				TableName:  target.GetName(),
+				ColumnName: cName,
+				Column:     cCol,
+			})
+		}
+	}
+}
+
+func (d *detector) detectConstraintChanges(current, target sqlschema.Table) {
+Add:
+	for _, want := range target.GetUniqueConstraints() {
+		for _, got := range current.GetUniqueConstraints() {
+			if got.Equals(want) {
+				continue Add
+			}
+		}
+		d.changes.Add(&AddUniqueConstraintOp{
+			TableName: target.GetName(),
+			Unique:    want,
+		})
+	}
+
+Drop:
+	for _, got := range current.GetUniqueConstraints() {
+		for _, want := range target.GetUniqueConstraints() {
+			if got.Equals(want) {
+				continue Drop
+			}
+		}
+
+		d.changes.Add(&DropUniqueConstraintOp{
+			TableName: target.GetName(),
+			Unique:    got,
+		})
+	}
+
+	targetPK := target.GetPrimaryKey()
+	currentPK := current.GetPrimaryKey()
+
+	// Detect primary key changes
+	if targetPK == nil && currentPK == nil {
+		return
+	}
+	switch {
+	case targetPK == nil && currentPK != nil:
+		d.changes.Add(&DropPrimaryKeyOp{
+			TableName:  target.GetName(),
+			PrimaryKey: *currentPK,
+		})
+	case currentPK == nil && targetPK != nil:
+		d.changes.Add(&AddPrimaryKeyOp{
+			TableName:  target.GetName(),
+			PrimaryKey: *targetPK,
+		})
+	case targetPK.Columns != currentPK.Columns:
+		d.changes.Add(&ChangePrimaryKeyOp{
+			TableName: target.GetName(),
+			Old:       *currentPK,
+			New:       *targetPK,
+		})
+	}
+}
+
+func newDetector(got, want sqlschema.Database, opts ...diffOption) *detector {
+	cfg := &detectorConfig{
+		cmpType: func(c1, c2 sqlschema.Column) bool {
+			return c1.GetSQLType() == c2.GetSQLType() && c1.GetVarcharLen() == c2.GetVarcharLen()
+		},
+	}
+	for _, opt := range opts {
+		opt(cfg)
+	}
+
+	return &detector{
+		current: got,
+		target:  want,
+		refMap:  newRefMap(got.GetForeignKeys()),
+		cmpType: cfg.cmpType,
+	}
+}
+
+type diffOption func(*detectorConfig)
+
+func withCompareTypeFunc(f CompareTypeFunc) diffOption {
+	return func(cfg *detectorConfig) {
+		cfg.cmpType = f
+	}
+}
+
+// detectorConfig controls how differences in the model states are resolved.
+type detectorConfig struct {
+	cmpType CompareTypeFunc
+}
+
+// detector may modify the passed database schemas, so it isn't safe to re-use them.
+type detector struct {
+	// current state represents the existing database schema.
+	current sqlschema.Database
+
+	// target state represents the database schema defined in bun models.
+	target sqlschema.Database
+
+	changes changeset
+	refMap  refMap
+
+	// cmpType determines column type equivalence.
+	// Default is direct comparison with '==' operator, which is inaccurate
+	// due to the existence of dialect-specific type aliases. The caller
+	// should pass a concrete InspectorDialect.EquuivalentType for robust comparison.
+	cmpType CompareTypeFunc
+}
+
+// canRename checks if t1 can be renamed to t2.
+func (d detector) canRename(t1, t2 sqlschema.Table) bool {
+	return t1.GetSchema() == t2.GetSchema() && equalSignatures(t1, t2, d.equalColumns)
+}
+
+func (d detector) equalColumns(col1, col2 sqlschema.Column) bool {
+	return d.cmpType(col1, col2) &&
+		col1.GetDefaultValue() == col2.GetDefaultValue() &&
+		col1.GetIsNullable() == col2.GetIsNullable() &&
+		col1.GetIsAutoIncrement() == col2.GetIsAutoIncrement() &&
+		col1.GetIsIdentity() == col2.GetIsIdentity()
+}
+
+func (d detector) makeTargetColDef(current, target sqlschema.Column) sqlschema.Column {
+	// Avoid unneccessary type-change migrations if the types are equivalent.
+	if d.cmpType(current, target) {
+		target = &sqlschema.BaseColumn{
+			Name:            target.GetName(),
+			DefaultValue:    target.GetDefaultValue(),
+			IsNullable:      target.GetIsNullable(),
+			IsAutoIncrement: target.GetIsAutoIncrement(),
+			IsIdentity:      target.GetIsIdentity(),
+
+			SQLType:    current.GetSQLType(),
+			VarcharLen: current.GetVarcharLen(),
+		}
+	}
+	return target
+}
+
+type CompareTypeFunc func(sqlschema.Column, sqlschema.Column) bool
+
+// equalSignatures determines if two tables have the same "signature".
+func equalSignatures(t1, t2 sqlschema.Table, eq CompareTypeFunc) bool {
+	sig1 := newSignature(t1, eq)
+	sig2 := newSignature(t2, eq)
+	return sig1.Equals(sig2)
+}
+
+// signature is a set of column definitions, which allows "relation/name-agnostic" comparison between them;
+// meaning that two columns are considered equal if their types are the same.
+type signature struct {
+
+	// underlying stores the number of occurences for each unique column type.
+	// It helps to account for the fact that a table might have multiple columns that have the same type.
+	underlying map[sqlschema.BaseColumn]int
+
+	eq CompareTypeFunc
+}
+
+func newSignature(t sqlschema.Table, eq CompareTypeFunc) signature {
+	s := signature{
+		underlying: make(map[sqlschema.BaseColumn]int),
+		eq:         eq,
+	}
+	s.scan(t)
+	return s
+}
+
+// scan iterates over table's field and counts occurrences of each unique column definition.
+func (s *signature) scan(t sqlschema.Table) {
+	for _, icol := range t.GetColumns().FromOldest() {
+		scanCol := icol.(*sqlschema.BaseColumn)
+		// This is slightly more expensive than if the columns could be compared directly
+		// and we always did s.underlying[col]++, but we get type-equivalence in return.
+		col, count := s.getCount(*scanCol)
+		if count == 0 {
+			s.underlying[*scanCol] = 1
+		} else {
+			s.underlying[col]++
+		}
+	}
+}
+
+// getCount uses CompareTypeFunc to find a column with the same (equivalent) SQL type
+// and returns its count. Count 0 means there are no columns with of this type.
+func (s *signature) getCount(keyCol sqlschema.BaseColumn) (key sqlschema.BaseColumn, count int) {
+	for col, cnt := range s.underlying {
+		if s.eq(&col, &keyCol) {
+			return col, cnt
+		}
+	}
+	return keyCol, 0
+}
+
+// Equals returns true if 2 signatures share an identical set of columns.
+func (s *signature) Equals(other signature) bool {
+	if len(s.underlying) != len(other.underlying) {
+		return false
+	}
+	for col, count := range s.underlying {
+		if _, countOther := other.getCount(col); countOther != count {
+			return false
+		}
+	}
+	return true
+}
+
+// refMap is a utility for tracking superficial changes in foreign keys,
+// which do not require any modificiation in the database.
+// Modern SQL dialects automatically updated foreign key constraints whenever
+// a column or a table is renamed. Detector can use refMap to ignore any
+// differences in foreign keys which were caused by renamed column/table.
+type refMap map[*sqlschema.ForeignKey]string
+
+func newRefMap(fks map[sqlschema.ForeignKey]string) refMap {
+	rm := make(map[*sqlschema.ForeignKey]string)
+	for fk, name := range fks {
+		rm[&fk] = name
+	}
+	return rm
+}
+
+// RenameT updates table name in all foreign key definions which depend on it.
+func (rm refMap) RenameTable(tableName string, newName string) {
+	for fk := range rm {
+		switch tableName {
+		case fk.From.TableName:
+			fk.From.TableName = newName
+		case fk.To.TableName:
+			fk.To.TableName = newName
+		}
+	}
+}
+
+// RenameColumn updates column name in all foreign key definions which depend on it.
+func (rm refMap) RenameColumn(tableName string, column, newName string) {
+	for fk := range rm {
+		if tableName == fk.From.TableName {
+			fk.From.Column.Replace(column, newName)
+		}
+		if tableName == fk.To.TableName {
+			fk.To.Column.Replace(column, newName)
+		}
+	}
+}
+
+// Deref returns copies of ForeignKey values to a map.
+func (rm refMap) Deref() map[sqlschema.ForeignKey]string {
+	out := make(map[sqlschema.ForeignKey]string)
+	for fk, name := range rm {
+		out[*fk] = name
+	}
+	return out
+}
diff --git a/vendor/github.com/uptrace/bun/migrate/migrator.go b/vendor/github.com/uptrace/bun/migrate/migrator.go
index e6d70e39f..d5a72aec0 100644
--- a/vendor/github.com/uptrace/bun/migrate/migrator.go
+++ b/vendor/github.com/uptrace/bun/migrate/migrator.go
@@ -12,14 +12,21 @@ import (
 	"github.com/uptrace/bun"
 )
 
+const (
+	defaultTable      = "bun_migrations"
+	defaultLocksTable = "bun_migration_locks"
+)
+
 type MigratorOption func(m *Migrator)
 
+// WithTableName overrides default migrations table name.
 func WithTableName(table string) MigratorOption {
 	return func(m *Migrator) {
 		m.table = table
 	}
 }
 
+// WithLocksTableName overrides default migration locks table name.
 func WithLocksTableName(table string) MigratorOption {
 	return func(m *Migrator) {
 		m.locksTable = table
@@ -27,7 +34,7 @@ func WithLocksTableName(table string) MigratorOption {
 }
 
 // WithMarkAppliedOnSuccess sets the migrator to only mark migrations as applied/unapplied
-// when their up/down is successful
+// when their up/down is successful.
 func WithMarkAppliedOnSuccess(enabled bool) MigratorOption {
 	return func(m *Migrator) {
 		m.markAppliedOnSuccess = enabled
@@ -52,8 +59,8 @@ func NewMigrator(db *bun.DB, migrations *Migrations, opts ...MigratorOption) *Mi
 
 		ms: migrations.ms,
 
-		table:      "bun_migrations",
-		locksTable: "bun_migration_locks",
+		table:      defaultTable,
+		locksTable: defaultLocksTable,
 	}
 	for _, opt := range opts {
 		opt(m)
@@ -246,7 +253,7 @@ func (m *Migrator) CreateGoMigration(
 		opt(cfg)
 	}
 
-	name, err := m.genMigrationName(name)
+	name, err := genMigrationName(name)
 	if err != nil {
 		return nil, err
 	}
@@ -269,7 +276,7 @@ func (m *Migrator) CreateGoMigration(
 
 // CreateTxSQLMigration creates transactional up and down SQL migration files.
 func (m *Migrator) CreateTxSQLMigrations(ctx context.Context, name string) ([]*MigrationFile, error) {
-	name, err := m.genMigrationName(name)
+	name, err := genMigrationName(name)
 	if err != nil {
 		return nil, err
 	}
@@ -289,7 +296,7 @@ func (m *Migrator) CreateTxSQLMigrations(ctx context.Context, name string) ([]*M
 
 // CreateSQLMigrations creates up and down SQL migration files.
 func (m *Migrator) CreateSQLMigrations(ctx context.Context, name string) ([]*MigrationFile, error) {
-	name, err := m.genMigrationName(name)
+	name, err := genMigrationName(name)
 	if err != nil {
 		return nil, err
 	}
@@ -307,7 +314,7 @@ func (m *Migrator) CreateSQLMigrations(ctx context.Context, name string) ([]*Mig
 	return []*MigrationFile{up, down}, nil
 }
 
-func (m *Migrator) createSQL(ctx context.Context, fname string, transactional bool) (*MigrationFile, error) {
+func (m *Migrator) createSQL(_ context.Context, fname string, transactional bool) (*MigrationFile, error) {
 	fpath := filepath.Join(m.migrations.getDirectory(), fname)
 
 	template := sqlTemplate
@@ -329,7 +336,7 @@ func (m *Migrator) createSQL(ctx context.Context, fname string, transactional bo
 
 var nameRE = regexp.MustCompile(`^[0-9a-z_\-]+$`)
 
-func (m *Migrator) genMigrationName(name string) (string, error) {
+func genMigrationName(name string) (string, error) {
 	const timeFormat = "20060102150405"
 
 	if name == "" {
diff --git a/vendor/github.com/uptrace/bun/migrate/operations.go b/vendor/github.com/uptrace/bun/migrate/operations.go
new file mode 100644
index 000000000..7b749c5a0
--- /dev/null
+++ b/vendor/github.com/uptrace/bun/migrate/operations.go
@@ -0,0 +1,340 @@
+package migrate
+
+import (
+	"fmt"
+
+	"github.com/uptrace/bun/migrate/sqlschema"
+)
+
+// Operation encapsulates the request to change a database definition
+// and knowns which operation can revert it.
+//
+// It is useful to define "monolith" Operations whenever possible,
+// even though they a dialect may require several distinct steps to apply them.
+// For example, changing a primary key involves first dropping the old constraint
+// before generating the new one. Yet, this is only an implementation detail and
+// passing a higher-level ChangePrimaryKeyOp will give the dialect more information
+// about the applied change.
+//
+// Some operations might be irreversible due to technical limitations. Returning
+// a *comment from GetReverse() will add an explanatory note to the generate migation file.
+//
+// To declare dependency on another Operation, operations should implement
+// { DependsOn(Operation) bool } interface, which Changeset will use to resolve dependencies.
+type Operation interface {
+	GetReverse() Operation
+}
+
+// CreateTableOp creates a new table in the schema.
+//
+// It does not report dependency on any other migration and may be executed first.
+// Make sure the dialect does not include FOREIGN KEY constraints in the CREATE TABLE
+// statement, as those may potentially reference not-yet-existing columns/tables.
+type CreateTableOp struct {
+	TableName string
+	Model     interface{}
+}
+
+var _ Operation = (*CreateTableOp)(nil)
+
+func (op *CreateTableOp) GetReverse() Operation {
+	return &DropTableOp{TableName: op.TableName}
+}
+
+// DropTableOp drops a database table. This operation is not reversible.
+type DropTableOp struct {
+	TableName string
+}
+
+var _ Operation = (*DropTableOp)(nil)
+
+func (op *DropTableOp) DependsOn(another Operation) bool {
+	drop, ok := another.(*DropForeignKeyOp)
+	return ok && drop.ForeignKey.DependsOnTable(op.TableName)
+}
+
+// GetReverse for a DropTable returns a no-op migration. Logically, CreateTable is the reverse,
+// but DropTable does not have the table's definition to create one.
+func (op *DropTableOp) GetReverse() Operation {
+	c := comment(fmt.Sprintf("WARNING: \"DROP TABLE %s\" cannot be reversed automatically because table definition is not available", op.TableName))
+	return &c
+}
+
+// RenameTableOp renames the table. Changing the "schema" part of the table's FQN (moving tables between schemas) is not allowed.
+type RenameTableOp struct {
+	TableName string
+	NewName   string
+}
+
+var _ Operation = (*RenameTableOp)(nil)
+
+func (op *RenameTableOp) GetReverse() Operation {
+	return &RenameTableOp{
+		TableName: op.NewName,
+		NewName:   op.TableName,
+	}
+}
+
+// RenameColumnOp renames a column in the table. If the changeset includes a rename operation
+// for the column's table, it should be executed first.
+type RenameColumnOp struct {
+	TableName string
+	OldName   string
+	NewName   string
+}
+
+var _ Operation = (*RenameColumnOp)(nil)
+
+func (op *RenameColumnOp) GetReverse() Operation {
+	return &RenameColumnOp{
+		TableName: op.TableName,
+		OldName:   op.NewName,
+		NewName:   op.OldName,
+	}
+}
+
+func (op *RenameColumnOp) DependsOn(another Operation) bool {
+	rename, ok := another.(*RenameTableOp)
+	return ok && op.TableName == rename.NewName
+}
+
+// AddColumnOp adds a new column to the table.
+type AddColumnOp struct {
+	TableName  string
+	ColumnName string
+	Column     sqlschema.Column
+}
+
+var _ Operation = (*AddColumnOp)(nil)
+
+func (op *AddColumnOp) GetReverse() Operation {
+	return &DropColumnOp{
+		TableName:  op.TableName,
+		ColumnName: op.ColumnName,
+		Column:     op.Column,
+	}
+}
+
+// DropColumnOp drop a column from the table.
+//
+// While some dialects allow DROP CASCADE to drop dependent constraints,
+// explicit handling on constraints is preferred for transparency and debugging.
+// DropColumnOp depends on DropForeignKeyOp, DropPrimaryKeyOp, and ChangePrimaryKeyOp
+// if any of the constraints is defined on this table.
+type DropColumnOp struct {
+	TableName  string
+	ColumnName string
+	Column     sqlschema.Column
+}
+
+var _ Operation = (*DropColumnOp)(nil)
+
+func (op *DropColumnOp) GetReverse() Operation {
+	return &AddColumnOp{
+		TableName:  op.TableName,
+		ColumnName: op.ColumnName,
+		Column:     op.Column,
+	}
+}
+
+func (op *DropColumnOp) DependsOn(another Operation) bool {
+	switch drop := another.(type) {
+	case *DropForeignKeyOp:
+		return drop.ForeignKey.DependsOnColumn(op.TableName, op.ColumnName)
+	case *DropPrimaryKeyOp:
+		return op.TableName == drop.TableName && drop.PrimaryKey.Columns.Contains(op.ColumnName)
+	case *ChangePrimaryKeyOp:
+		return op.TableName == drop.TableName && drop.Old.Columns.Contains(op.ColumnName)
+	}
+	return false
+}
+
+// AddForeignKey adds a new FOREIGN KEY constraint.
+type AddForeignKeyOp struct {
+	ForeignKey     sqlschema.ForeignKey
+	ConstraintName string
+}
+
+var _ Operation = (*AddForeignKeyOp)(nil)
+
+func (op *AddForeignKeyOp) TableName() string {
+	return op.ForeignKey.From.TableName
+}
+
+func (op *AddForeignKeyOp) DependsOn(another Operation) bool {
+	switch another := another.(type) {
+	case *RenameTableOp:
+		return op.ForeignKey.DependsOnTable(another.TableName) || op.ForeignKey.DependsOnTable(another.NewName)
+	case *CreateTableOp:
+		return op.ForeignKey.DependsOnTable(another.TableName)
+	}
+	return false
+}
+
+func (op *AddForeignKeyOp) GetReverse() Operation {
+	return &DropForeignKeyOp{
+		ForeignKey:     op.ForeignKey,
+		ConstraintName: op.ConstraintName,
+	}
+}
+
+// DropForeignKeyOp drops a FOREIGN KEY constraint.
+type DropForeignKeyOp struct {
+	ForeignKey     sqlschema.ForeignKey
+	ConstraintName string
+}
+
+var _ Operation = (*DropForeignKeyOp)(nil)
+
+func (op *DropForeignKeyOp) TableName() string {
+	return op.ForeignKey.From.TableName
+}
+
+func (op *DropForeignKeyOp) GetReverse() Operation {
+	return &AddForeignKeyOp{
+		ForeignKey:     op.ForeignKey,
+		ConstraintName: op.ConstraintName,
+	}
+}
+
+// AddUniqueConstraintOp adds new UNIQUE constraint to the table.
+type AddUniqueConstraintOp struct {
+	TableName string
+	Unique    sqlschema.Unique
+}
+
+var _ Operation = (*AddUniqueConstraintOp)(nil)
+
+func (op *AddUniqueConstraintOp) GetReverse() Operation {
+	return &DropUniqueConstraintOp{
+		TableName: op.TableName,
+		Unique:    op.Unique,
+	}
+}
+
+func (op *AddUniqueConstraintOp) DependsOn(another Operation) bool {
+	switch another := another.(type) {
+	case *AddColumnOp:
+		return op.TableName == another.TableName && op.Unique.Columns.Contains(another.ColumnName)
+	case *RenameTableOp:
+		return op.TableName == another.NewName
+	case *DropUniqueConstraintOp:
+		// We want to drop the constraint with the same name before adding this one.
+		return op.TableName == another.TableName && op.Unique.Name == another.Unique.Name
+	default:
+		return false
+	}
+
+}
+
+// DropUniqueConstraintOp drops a UNIQUE constraint.
+type DropUniqueConstraintOp struct {
+	TableName string
+	Unique    sqlschema.Unique
+}
+
+var _ Operation = (*DropUniqueConstraintOp)(nil)
+
+func (op *DropUniqueConstraintOp) DependsOn(another Operation) bool {
+	if rename, ok := another.(*RenameTableOp); ok {
+		return op.TableName == rename.NewName
+	}
+	return false
+}
+
+func (op *DropUniqueConstraintOp) GetReverse() Operation {
+	return &AddUniqueConstraintOp{
+		TableName: op.TableName,
+		Unique:    op.Unique,
+	}
+}
+
+// ChangeColumnTypeOp set a new data type for the column.
+// The two types should be such that the data can be auto-casted from one to another.
+// E.g. reducing VARCHAR lenght is not possible in most dialects.
+// AutoMigrator does not enforce or validate these rules.
+type ChangeColumnTypeOp struct {
+	TableName string
+	Column    string
+	From      sqlschema.Column
+	To        sqlschema.Column
+}
+
+var _ Operation = (*ChangeColumnTypeOp)(nil)
+
+func (op *ChangeColumnTypeOp) GetReverse() Operation {
+	return &ChangeColumnTypeOp{
+		TableName: op.TableName,
+		Column:    op.Column,
+		From:      op.To,
+		To:        op.From,
+	}
+}
+
+// DropPrimaryKeyOp drops the table's PRIMARY KEY.
+type DropPrimaryKeyOp struct {
+	TableName  string
+	PrimaryKey sqlschema.PrimaryKey
+}
+
+var _ Operation = (*DropPrimaryKeyOp)(nil)
+
+func (op *DropPrimaryKeyOp) GetReverse() Operation {
+	return &AddPrimaryKeyOp{
+		TableName:  op.TableName,
+		PrimaryKey: op.PrimaryKey,
+	}
+}
+
+// AddPrimaryKeyOp adds a new PRIMARY KEY to the table.
+type AddPrimaryKeyOp struct {
+	TableName  string
+	PrimaryKey sqlschema.PrimaryKey
+}
+
+var _ Operation = (*AddPrimaryKeyOp)(nil)
+
+func (op *AddPrimaryKeyOp) GetReverse() Operation {
+	return &DropPrimaryKeyOp{
+		TableName:  op.TableName,
+		PrimaryKey: op.PrimaryKey,
+	}
+}
+
+func (op *AddPrimaryKeyOp) DependsOn(another Operation) bool {
+	switch another := another.(type) {
+	case *AddColumnOp:
+		return op.TableName == another.TableName && op.PrimaryKey.Columns.Contains(another.ColumnName)
+	}
+	return false
+}
+
+// ChangePrimaryKeyOp changes the PRIMARY KEY of the table.
+type ChangePrimaryKeyOp struct {
+	TableName string
+	Old       sqlschema.PrimaryKey
+	New       sqlschema.PrimaryKey
+}
+
+var _ Operation = (*AddPrimaryKeyOp)(nil)
+
+func (op *ChangePrimaryKeyOp) GetReverse() Operation {
+	return &ChangePrimaryKeyOp{
+		TableName: op.TableName,
+		Old:       op.New,
+		New:       op.Old,
+	}
+}
+
+// comment denotes an Operation that cannot be executed.
+//
+// Operations, which cannot be reversed due to current technical limitations,
+// may return &comment with a helpful message from their GetReverse() method.
+//
+// Chnagelog should skip it when applying operations or output as log message,
+// and write it as an SQL comment when creating migration files.
+type comment string
+
+var _ Operation = (*comment)(nil)
+
+func (c *comment) GetReverse() Operation { return c }
diff --git a/vendor/github.com/uptrace/bun/migrate/sqlschema/column.go b/vendor/github.com/uptrace/bun/migrate/sqlschema/column.go
new file mode 100644
index 000000000..60f7ea8a6
--- /dev/null
+++ b/vendor/github.com/uptrace/bun/migrate/sqlschema/column.go
@@ -0,0 +1,75 @@
+package sqlschema
+
+import (
+	"fmt"
+
+	"github.com/uptrace/bun/schema"
+)
+
+type Column interface {
+	GetName() string
+	GetSQLType() string
+	GetVarcharLen() int
+	GetDefaultValue() string
+	GetIsNullable() bool
+	GetIsAutoIncrement() bool
+	GetIsIdentity() bool
+	AppendQuery(schema.Formatter, []byte) ([]byte, error)
+}
+
+var _ Column = (*BaseColumn)(nil)
+
+// BaseColumn is a base column definition that stores various attributes of a column.
+//
+// Dialects and only dialects can use it to implement the Column interface.
+// Other packages must use the Column interface.
+type BaseColumn struct {
+	Name            string
+	SQLType         string
+	VarcharLen      int
+	DefaultValue    string
+	IsNullable      bool
+	IsAutoIncrement bool
+	IsIdentity      bool
+	// TODO: add Precision and Cardinality for timestamps/bit-strings/floats and arrays respectively.
+}
+
+func (cd BaseColumn) GetName() string {
+	return cd.Name
+}
+
+func (cd BaseColumn) GetSQLType() string {
+	return cd.SQLType
+}
+
+func (cd BaseColumn) GetVarcharLen() int {
+	return cd.VarcharLen
+}
+
+func (cd BaseColumn) GetDefaultValue() string {
+	return cd.DefaultValue
+}
+
+func (cd BaseColumn) GetIsNullable() bool {
+	return cd.IsNullable
+}
+
+func (cd BaseColumn) GetIsAutoIncrement() bool {
+	return cd.IsAutoIncrement
+}
+
+func (cd BaseColumn) GetIsIdentity() bool {
+	return cd.IsIdentity
+}
+
+// AppendQuery appends full SQL data type.
+func (c *BaseColumn) AppendQuery(fmter schema.Formatter, b []byte) (_ []byte, err error) {
+	b = append(b, c.SQLType...)
+	if c.VarcharLen == 0 {
+		return b, nil
+	}
+	b = append(b, "("...)
+	b = append(b, fmt.Sprint(c.VarcharLen)...)
+	b = append(b, ")"...)
+	return b, nil
+}
diff --git a/vendor/github.com/uptrace/bun/migrate/sqlschema/database.go b/vendor/github.com/uptrace/bun/migrate/sqlschema/database.go
new file mode 100644
index 000000000..cdc5b2d50
--- /dev/null
+++ b/vendor/github.com/uptrace/bun/migrate/sqlschema/database.go
@@ -0,0 +1,127 @@
+package sqlschema
+
+import (
+	"slices"
+	"strings"
+
+	"github.com/uptrace/bun/schema"
+	orderedmap "github.com/wk8/go-ordered-map/v2"
+)
+
+type Database interface {
+	GetTables() *orderedmap.OrderedMap[string, Table]
+	GetForeignKeys() map[ForeignKey]string
+}
+
+var _ Database = (*BaseDatabase)(nil)
+
+// BaseDatabase is a base database definition.
+//
+// Dialects and only dialects can use it to implement the Database interface.
+// Other packages must use the Database interface.
+type BaseDatabase struct {
+	Tables      *orderedmap.OrderedMap[string, Table]
+	ForeignKeys map[ForeignKey]string
+}
+
+func (ds BaseDatabase) GetTables() *orderedmap.OrderedMap[string, Table] {
+	return ds.Tables
+}
+
+func (ds BaseDatabase) GetForeignKeys() map[ForeignKey]string {
+	return ds.ForeignKeys
+}
+
+type ForeignKey struct {
+	From ColumnReference
+	To   ColumnReference
+}
+
+func NewColumnReference(tableName string, columns ...string) ColumnReference {
+	return ColumnReference{
+		TableName: tableName,
+		Column:    NewColumns(columns...),
+	}
+}
+
+func (fk ForeignKey) DependsOnTable(tableName string) bool {
+	return fk.From.TableName == tableName || fk.To.TableName == tableName
+}
+
+func (fk ForeignKey) DependsOnColumn(tableName string, column string) bool {
+	return fk.DependsOnTable(tableName) &&
+		(fk.From.Column.Contains(column) || fk.To.Column.Contains(column))
+}
+
+// Columns is a hashable representation of []string used to define schema constraints that depend on multiple columns.
+// Although having duplicated column references in these constraints is illegal, Columns neither validates nor enforces this constraint on the caller.
+type Columns string
+
+// NewColumns creates a composite column from a slice of column names.
+func NewColumns(columns ...string) Columns {
+	slices.Sort(columns)
+	return Columns(strings.Join(columns, ","))
+}
+
+func (c *Columns) String() string {
+	return string(*c)
+}
+
+func (c *Columns) AppendQuery(fmter schema.Formatter, b []byte) ([]byte, error) {
+	return schema.Safe(*c).AppendQuery(fmter, b)
+}
+
+// Split returns a slice of column names that make up the composite.
+func (c *Columns) Split() []string {
+	return strings.Split(c.String(), ",")
+}
+
+// ContainsColumns checks that columns in "other" are a subset of current colums.
+func (c *Columns) ContainsColumns(other Columns) bool {
+	columns := c.Split()
+Outer:
+	for _, check := range other.Split() {
+		for _, column := range columns {
+			if check == column {
+				continue Outer
+			}
+		}
+		return false
+	}
+	return true
+}
+
+// Contains checks that a composite column contains the current column.
+func (c *Columns) Contains(other string) bool {
+	return c.ContainsColumns(Columns(other))
+}
+
+// Replace renames a column if it is part of the composite.
+// If a composite consists of multiple columns, only one column will be renamed.
+func (c *Columns) Replace(oldColumn, newColumn string) bool {
+	columns := c.Split()
+	for i, column := range columns {
+		if column == oldColumn {
+			columns[i] = newColumn
+			*c = NewColumns(columns...)
+			return true
+		}
+	}
+	return false
+}
+
+// Unique represents a unique constraint defined on 1 or more columns.
+type Unique struct {
+	Name    string
+	Columns Columns
+}
+
+// Equals checks that two unique constraint are the same, assuming both are defined for the same table.
+func (u Unique) Equals(other Unique) bool {
+	return u.Columns == other.Columns
+}
+
+type ColumnReference struct {
+	TableName string
+	Column    Columns
+}
diff --git a/vendor/github.com/uptrace/bun/migrate/sqlschema/inspector.go b/vendor/github.com/uptrace/bun/migrate/sqlschema/inspector.go
new file mode 100644
index 000000000..fc9af06fc
--- /dev/null
+++ b/vendor/github.com/uptrace/bun/migrate/sqlschema/inspector.go
@@ -0,0 +1,241 @@
+package sqlschema
+
+import (
+	"context"
+	"fmt"
+	"strconv"
+	"strings"
+
+	"github.com/uptrace/bun"
+	"github.com/uptrace/bun/schema"
+	orderedmap "github.com/wk8/go-ordered-map/v2"
+)
+
+type InspectorDialect interface {
+	schema.Dialect
+
+	// Inspector returns a new instance of Inspector for the dialect.
+	// Dialects MAY set their default InspectorConfig values in constructor
+	// but MUST apply InspectorOptions to ensure they can be overriden.
+	//
+	// Use ApplyInspectorOptions to reduce boilerplate.
+	NewInspector(db *bun.DB, options ...InspectorOption) Inspector
+
+	// CompareType returns true if col1 and co2 SQL types are equivalent,
+	// i.e. they might use dialect-specifc type aliases (SERIAL ~ SMALLINT)
+	// or specify the same VARCHAR length differently (VARCHAR(255) ~ VARCHAR).
+	CompareType(Column, Column) bool
+}
+
+// InspectorConfig controls the scope of migration by limiting the objects Inspector should return.
+// Inspectors SHOULD use the configuration directly instead of copying it, or MAY choose to embed it,
+// to make sure options are always applied correctly.
+type InspectorConfig struct {
+	// SchemaName limits inspection to tables in a particular schema.
+	SchemaName string
+
+	// ExcludeTables from inspection.
+	ExcludeTables []string
+}
+
+// Inspector reads schema state.
+type Inspector interface {
+	Inspect(ctx context.Context) (Database, error)
+}
+
+func WithSchemaName(schemaName string) InspectorOption {
+	return func(cfg *InspectorConfig) {
+		cfg.SchemaName = schemaName
+	}
+}
+
+// WithExcludeTables works in append-only mode, i.e. tables cannot be re-included.
+func WithExcludeTables(tables ...string) InspectorOption {
+	return func(cfg *InspectorConfig) {
+		cfg.ExcludeTables = append(cfg.ExcludeTables, tables...)
+	}
+}
+
+// NewInspector creates a new database inspector, if the dialect supports it.
+func NewInspector(db *bun.DB, options ...InspectorOption) (Inspector, error) {
+	dialect, ok := (db.Dialect()).(InspectorDialect)
+	if !ok {
+		return nil, fmt.Errorf("%s does not implement sqlschema.Inspector", db.Dialect().Name())
+	}
+	return &inspector{
+		Inspector: dialect.NewInspector(db, options...),
+	}, nil
+}
+
+func NewBunModelInspector(tables *schema.Tables, options ...InspectorOption) *BunModelInspector {
+	bmi := &BunModelInspector{
+		tables: tables,
+	}
+	ApplyInspectorOptions(&bmi.InspectorConfig, options...)
+	return bmi
+}
+
+type InspectorOption func(*InspectorConfig)
+
+func ApplyInspectorOptions(cfg *InspectorConfig, options ...InspectorOption) {
+	for _, opt := range options {
+		opt(cfg)
+	}
+}
+
+// inspector is opaque pointer to a database inspector.
+type inspector struct {
+	Inspector
+}
+
+// BunModelInspector creates the current project state from the passed bun.Models.
+// Do not recycle BunModelInspector for different sets of models, as older models will not be de-registerred before the next run.
+type BunModelInspector struct {
+	InspectorConfig
+	tables *schema.Tables
+}
+
+var _ Inspector = (*BunModelInspector)(nil)
+
+func (bmi *BunModelInspector) Inspect(ctx context.Context) (Database, error) {
+	state := BunModelSchema{
+		BaseDatabase: BaseDatabase{
+			ForeignKeys: make(map[ForeignKey]string),
+		},
+		Tables: orderedmap.New[string, Table](),
+	}
+	for _, t := range bmi.tables.All() {
+		if t.Schema != bmi.SchemaName {
+			continue
+		}
+
+		columns := orderedmap.New[string, Column]()
+		for _, f := range t.Fields {
+
+			sqlType, length, err := parseLen(f.CreateTableSQLType)
+			if err != nil {
+				return nil, fmt.Errorf("parse length in %q: %w", f.CreateTableSQLType, err)
+			}
+			columns.Set(f.Name, &BaseColumn{
+				Name:            f.Name,
+				SQLType:         strings.ToLower(sqlType), // TODO(dyma): maybe this is not necessary after Column.Eq()
+				VarcharLen:      length,
+				DefaultValue:    exprToLower(f.SQLDefault),
+				IsNullable:      !f.NotNull,
+				IsAutoIncrement: f.AutoIncrement,
+				IsIdentity:      f.Identity,
+			})
+		}
+
+		var unique []Unique
+		for name, group := range t.Unique {
+			// Create a separate unique index for single-column unique constraints
+			//  let each dialect apply the default naming convention.
+			if name == "" {
+				for _, f := range group {
+					unique = append(unique, Unique{Columns: NewColumns(f.Name)})
+				}
+				continue
+			}
+
+			// Set the name if it is a "unique group", in which case the user has provided the name.
+			var columns []string
+			for _, f := range group {
+				columns = append(columns, f.Name)
+			}
+			unique = append(unique, Unique{Name: name, Columns: NewColumns(columns...)})
+		}
+
+		var pk *PrimaryKey
+		if len(t.PKs) > 0 {
+			var columns []string
+			for _, f := range t.PKs {
+				columns = append(columns, f.Name)
+			}
+			pk = &PrimaryKey{Columns: NewColumns(columns...)}
+		}
+
+		// In cases where a table is defined in a non-default schema in the `bun:table` tag,
+		// schema.Table only extracts the name of the schema, but passes the entire tag value to t.Name
+		// for backwads-compatibility. For example, a bun model like this:
+		// 	type Model struct { bun.BaseModel `bun:"table:favourite.books` }
+		// produces
+		// 	schema.Table{ Schema: "favourite", Name: "favourite.books" }
+		tableName := strings.TrimPrefix(t.Name, t.Schema+".")
+		state.Tables.Set(tableName, &BunTable{
+			BaseTable: BaseTable{
+				Schema:            t.Schema,
+				Name:              tableName,
+				Columns:           columns,
+				UniqueConstraints: unique,
+				PrimaryKey:        pk,
+			},
+			Model: t.ZeroIface,
+		})
+
+		for _, rel := range t.Relations {
+			// These relations are nominal and do not need a foreign key to be declared in the current table.
+			// They will be either expressed as N:1 relations in an m2m mapping table, or will be referenced by the other table if it's a 1:N.
+			if rel.Type == schema.ManyToManyRelation ||
+				rel.Type == schema.HasManyRelation {
+				continue
+			}
+
+			var fromCols, toCols []string
+			for _, f := range rel.BasePKs {
+				fromCols = append(fromCols, f.Name)
+			}
+			for _, f := range rel.JoinPKs {
+				toCols = append(toCols, f.Name)
+			}
+
+			target := rel.JoinTable
+			state.ForeignKeys[ForeignKey{
+				From: NewColumnReference(t.Name, fromCols...),
+				To:   NewColumnReference(target.Name, toCols...),
+			}] = ""
+		}
+	}
+	return state, nil
+}
+
+func parseLen(typ string) (string, int, error) {
+	paren := strings.Index(typ, "(")
+	if paren == -1 {
+		return typ, 0, nil
+	}
+	length, err := strconv.Atoi(typ[paren+1 : len(typ)-1])
+	if err != nil {
+		return typ, 0, err
+	}
+	return typ[:paren], length, nil
+}
+
+// exprToLower converts string to lowercase, if it does not contain a string literal 'lit'.
+// Use it to ensure that user-defined default values in the models are always comparable
+// to those returned by the database inspector, regardless of the case convention in individual drivers.
+func exprToLower(s string) string {
+	if strings.HasPrefix(s, "'") && strings.HasSuffix(s, "'") {
+		return s
+	}
+	return strings.ToLower(s)
+}
+
+// BunModelSchema is the schema state derived from bun table models.
+type BunModelSchema struct {
+	BaseDatabase
+
+	Tables *orderedmap.OrderedMap[string, Table]
+}
+
+func (ms BunModelSchema) GetTables() *orderedmap.OrderedMap[string, Table] {
+	return ms.Tables
+}
+
+// BunTable provides additional table metadata that is only accessible from scanning bun models.
+type BunTable struct {
+	BaseTable
+
+	// Model stores the zero interface to the underlying Go struct.
+	Model interface{}
+}
diff --git a/vendor/github.com/uptrace/bun/migrate/sqlschema/migrator.go b/vendor/github.com/uptrace/bun/migrate/sqlschema/migrator.go
new file mode 100644
index 000000000..00500061b
--- /dev/null
+++ b/vendor/github.com/uptrace/bun/migrate/sqlschema/migrator.go
@@ -0,0 +1,49 @@
+package sqlschema
+
+import (
+	"fmt"
+
+	"github.com/uptrace/bun"
+	"github.com/uptrace/bun/schema"
+)
+
+type MigratorDialect interface {
+	schema.Dialect
+	NewMigrator(db *bun.DB, schemaName string) Migrator
+}
+
+type Migrator interface {
+	AppendSQL(b []byte, operation interface{}) ([]byte, error)
+}
+
+// migrator is a dialect-agnostic wrapper for sqlschema.MigratorDialect.
+type migrator struct {
+	Migrator
+}
+
+func NewMigrator(db *bun.DB, schemaName string) (Migrator, error) {
+	md, ok := db.Dialect().(MigratorDialect)
+	if !ok {
+		return nil, fmt.Errorf("%q dialect does not implement sqlschema.Migrator", db.Dialect().Name())
+	}
+	return &migrator{
+		Migrator: md.NewMigrator(db, schemaName),
+	}, nil
+}
+
+// BaseMigrator can be embeded by dialect's Migrator implementations to re-use some of the existing bun queries.
+type BaseMigrator struct {
+	db *bun.DB
+}
+
+func NewBaseMigrator(db *bun.DB) *BaseMigrator {
+	return &BaseMigrator{db: db}
+}
+
+func (m *BaseMigrator) AppendCreateTable(b []byte, model interface{}) ([]byte, error) {
+	return m.db.NewCreateTable().Model(model).AppendQuery(m.db.Formatter(), b)
+}
+
+func (m *BaseMigrator) AppendDropTable(b []byte, schemaName, tableName string) ([]byte, error) {
+	return m.db.NewDropTable().TableExpr("?.?", bun.Ident(schemaName), bun.Ident(tableName)).AppendQuery(m.db.Formatter(), b)
+}
diff --git a/vendor/github.com/uptrace/bun/migrate/sqlschema/table.go b/vendor/github.com/uptrace/bun/migrate/sqlschema/table.go
new file mode 100644
index 000000000..a805ba780
--- /dev/null
+++ b/vendor/github.com/uptrace/bun/migrate/sqlschema/table.go
@@ -0,0 +1,60 @@
+package sqlschema
+
+import (
+	orderedmap "github.com/wk8/go-ordered-map/v2"
+)
+
+type Table interface {
+	GetSchema() string
+	GetName() string
+	GetColumns() *orderedmap.OrderedMap[string, Column]
+	GetPrimaryKey() *PrimaryKey
+	GetUniqueConstraints() []Unique
+}
+
+var _ Table = (*BaseTable)(nil)
+
+// BaseTable is a base table definition.
+//
+// Dialects and only dialects can use it to implement the Table interface.
+// Other packages must use the Table interface.
+type BaseTable struct {
+	Schema string
+	Name   string
+
+	// ColumnDefinitions map each column name to the column definition.
+	Columns *orderedmap.OrderedMap[string, Column]
+
+	// PrimaryKey holds the primary key definition.
+	// A nil value means that no primary key is defined for the table.
+	PrimaryKey *PrimaryKey
+
+	// UniqueConstraints defined on the table.
+	UniqueConstraints []Unique
+}
+
+// PrimaryKey represents a primary key constraint defined on 1 or more columns.
+type PrimaryKey struct {
+	Name    string
+	Columns Columns
+}
+
+func (td *BaseTable) GetSchema() string {
+	return td.Schema
+}
+
+func (td *BaseTable) GetName() string {
+	return td.Name
+}
+
+func (td *BaseTable) GetColumns() *orderedmap.OrderedMap[string, Column] {
+	return td.Columns
+}
+
+func (td *BaseTable) GetPrimaryKey() *PrimaryKey {
+	return td.PrimaryKey
+}
+
+func (td *BaseTable) GetUniqueConstraints() []Unique {
+	return td.UniqueConstraints
+}
diff --git a/vendor/github.com/uptrace/bun/model_table_has_many.go b/vendor/github.com/uptrace/bun/model_table_has_many.go
index 544cdf5d6..cd721a1b2 100644
--- a/vendor/github.com/uptrace/bun/model_table_has_many.go
+++ b/vendor/github.com/uptrace/bun/model_table_has_many.go
@@ -51,7 +51,7 @@ func (m *hasManyModel) ScanRows(ctx context.Context, rows *sql.Rows) (int, error
 	dest := makeDest(m, len(columns))
 
 	var n int
-
+	m.structKey = make([]interface{}, len(m.rel.JoinPKs))
 	for rows.Next() {
 		if m.sliceOfPtr {
 			m.strct = reflect.New(m.table.Type).Elem()
@@ -59,9 +59,8 @@ func (m *hasManyModel) ScanRows(ctx context.Context, rows *sql.Rows) (int, error
 			m.strct.Set(m.table.ZeroValue)
 		}
 		m.structInited = false
-
 		m.scanIndex = 0
-		m.structKey = m.structKey[:0]
+
 		if err := rows.Scan(dest...); err != nil {
 			return 0, err
 		}
@@ -92,9 +91,9 @@ func (m *hasManyModel) Scan(src interface{}) error {
 		return err
 	}
 
-	for _, f := range m.rel.JoinPKs {
-		if f.Name == field.Name {
-			m.structKey = append(m.structKey, indirectFieldValue(field.Value(m.strct)))
+	for i, f := range m.rel.JoinPKs {
+		if f.Name == column {
+			m.structKey[i] = indirectFieldValue(field.Value(m.strct))
 			break
 		}
 	}
diff --git a/vendor/github.com/uptrace/bun/package.json b/vendor/github.com/uptrace/bun/package.json
index 6a8d7082e..15c6fd47b 100644
--- a/vendor/github.com/uptrace/bun/package.json
+++ b/vendor/github.com/uptrace/bun/package.json
@@ -1,6 +1,6 @@
 {
   "name": "gobun",
-  "version": "1.2.5",
+  "version": "1.2.6",
   "main": "index.js",
   "repository": "git@github.com:uptrace/bun.git",
   "author": "Vladimir Mihailenco <vladimir.webdev@gmail.com>",
diff --git a/vendor/github.com/uptrace/bun/query_base.go b/vendor/github.com/uptrace/bun/query_base.go
index 8a26a4c8a..52b0c1e22 100644
--- a/vendor/github.com/uptrace/bun/query_base.go
+++ b/vendor/github.com/uptrace/bun/query_base.go
@@ -6,6 +6,8 @@ import (
 	"database/sql/driver"
 	"errors"
 	"fmt"
+	"strconv"
+	"strings"
 	"time"
 
 	"github.com/uptrace/bun/dialect"
@@ -1352,3 +1354,113 @@ func (ih *idxHintsQuery) bufIndexHint(
 	b = append(b, ")"...)
 	return b, nil
 }
+
+//------------------------------------------------------------------------------
+
+type orderLimitOffsetQuery struct {
+	order []schema.QueryWithArgs
+
+	limit  int32
+	offset int32
+}
+
+func (q *orderLimitOffsetQuery) addOrder(orders ...string) {
+	for _, order := range orders {
+		if order == "" {
+			continue
+		}
+
+		index := strings.IndexByte(order, ' ')
+		if index == -1 {
+			q.order = append(q.order, schema.UnsafeIdent(order))
+			continue
+		}
+
+		field := order[:index]
+		sort := order[index+1:]
+
+		switch strings.ToUpper(sort) {
+		case "ASC", "DESC", "ASC NULLS FIRST", "DESC NULLS FIRST",
+			"ASC NULLS LAST", "DESC NULLS LAST":
+			q.order = append(q.order, schema.SafeQuery("? ?", []interface{}{
+				Ident(field),
+				Safe(sort),
+			}))
+		default:
+			q.order = append(q.order, schema.UnsafeIdent(order))
+		}
+	}
+
+}
+
+func (q *orderLimitOffsetQuery) addOrderExpr(query string, args ...interface{}) {
+	q.order = append(q.order, schema.SafeQuery(query, args))
+}
+
+func (q *orderLimitOffsetQuery) appendOrder(fmter schema.Formatter, b []byte) (_ []byte, err error) {
+	if len(q.order) > 0 {
+		b = append(b, " ORDER BY "...)
+
+		for i, f := range q.order {
+			if i > 0 {
+				b = append(b, ", "...)
+			}
+			b, err = f.AppendQuery(fmter, b)
+			if err != nil {
+				return nil, err
+			}
+		}
+
+		return b, nil
+	}
+
+	// MSSQL: allows Limit() without Order() as per https://stackoverflow.com/a/36156953
+	if q.limit > 0 && fmter.Dialect().Name() == dialect.MSSQL {
+		return append(b, " ORDER BY _temp_sort"...), nil
+	}
+
+	return b, nil
+}
+
+func (q *orderLimitOffsetQuery) setLimit(n int) {
+	q.limit = int32(n)
+}
+
+func (q *orderLimitOffsetQuery) setOffset(n int) {
+	q.offset = int32(n)
+}
+
+func (q *orderLimitOffsetQuery) appendLimitOffset(fmter schema.Formatter, b []byte) (_ []byte, err error) {
+	if fmter.Dialect().Features().Has(feature.OffsetFetch) {
+		if q.limit > 0 && q.offset > 0 {
+			b = append(b, " OFFSET "...)
+			b = strconv.AppendInt(b, int64(q.offset), 10)
+			b = append(b, " ROWS"...)
+
+			b = append(b, " FETCH NEXT "...)
+			b = strconv.AppendInt(b, int64(q.limit), 10)
+			b = append(b, " ROWS ONLY"...)
+		} else if q.limit > 0 {
+			b = append(b, " OFFSET 0 ROWS"...)
+
+			b = append(b, " FETCH NEXT "...)
+			b = strconv.AppendInt(b, int64(q.limit), 10)
+			b = append(b, " ROWS ONLY"...)
+		} else if q.offset > 0 {
+			b = append(b, " OFFSET "...)
+			b = strconv.AppendInt(b, int64(q.offset), 10)
+			b = append(b, " ROWS"...)
+		}
+	} else {
+		if q.limit > 0 {
+			b = append(b, " LIMIT "...)
+			b = strconv.AppendInt(b, int64(q.limit), 10)
+		}
+		if q.offset > 0 {
+			b = append(b, " OFFSET "...)
+			b = strconv.AppendInt(b, int64(q.offset), 10)
+		}
+	}
+
+	return b, nil
+}
diff --git a/vendor/github.com/uptrace/bun/query_column_add.go b/vendor/github.com/uptrace/bun/query_column_add.go
index 32a21338e..50576873c 100644
--- a/vendor/github.com/uptrace/bun/query_column_add.go
+++ b/vendor/github.com/uptrace/bun/query_column_add.go
@@ -42,9 +42,12 @@ func (q *AddColumnQuery) Err(err error) *AddColumnQuery {
 	return q
 }
 
-func (q *AddColumnQuery) Apply(fn func(*AddColumnQuery) *AddColumnQuery) *AddColumnQuery {
-	if fn != nil {
-		return fn(q)
+// Apply calls each function in fns, passing the AddColumnQuery as an argument.
+func (q *AddColumnQuery) Apply(fns ...func(*AddColumnQuery) *AddColumnQuery) *AddColumnQuery {
+	for _, fn := range fns {
+		if fn != nil {
+			q = fn(q)
+		}
 	}
 	return q
 }
diff --git a/vendor/github.com/uptrace/bun/query_column_drop.go b/vendor/github.com/uptrace/bun/query_column_drop.go
index 1439ed9b9..24fc93cfd 100644
--- a/vendor/github.com/uptrace/bun/query_column_drop.go
+++ b/vendor/github.com/uptrace/bun/query_column_drop.go
@@ -40,9 +40,12 @@ func (q *DropColumnQuery) Err(err error) *DropColumnQuery {
 	return q
 }
 
-func (q *DropColumnQuery) Apply(fn func(*DropColumnQuery) *DropColumnQuery) *DropColumnQuery {
-	if fn != nil {
-		return fn(q)
+// Apply calls each function in fns, passing the DropColumnQuery as an argument.
+func (q *DropColumnQuery) Apply(fns ...func(*DropColumnQuery) *DropColumnQuery) *DropColumnQuery {
+	for _, fn := range fns {
+		if fn != nil {
+			q = fn(q)
+		}
 	}
 	return q
 }
diff --git a/vendor/github.com/uptrace/bun/query_delete.go b/vendor/github.com/uptrace/bun/query_delete.go
index 49a750cc8..ccfeb1997 100644
--- a/vendor/github.com/uptrace/bun/query_delete.go
+++ b/vendor/github.com/uptrace/bun/query_delete.go
@@ -3,6 +3,7 @@ package bun
 import (
 	"context"
 	"database/sql"
+	"errors"
 	"time"
 
 	"github.com/uptrace/bun/dialect/feature"
@@ -12,6 +13,7 @@ import (
 
 type DeleteQuery struct {
 	whereBaseQuery
+	orderLimitOffsetQuery
 	returningQuery
 }
 
@@ -44,10 +46,12 @@ func (q *DeleteQuery) Err(err error) *DeleteQuery {
 	return q
 }
 
-// Apply calls the fn passing the DeleteQuery as an argument.
-func (q *DeleteQuery) Apply(fn func(*DeleteQuery) *DeleteQuery) *DeleteQuery {
-	if fn != nil {
-		return fn(q)
+// Apply calls each function in fns, passing the DeleteQuery as an argument.
+func (q *DeleteQuery) Apply(fns ...func(*DeleteQuery) *DeleteQuery) *DeleteQuery {
+	for _, fn := range fns {
+		if fn != nil {
+			q = fn(q)
+		}
 	}
 	return q
 }
@@ -120,17 +124,50 @@ func (q *DeleteQuery) WhereAllWithDeleted() *DeleteQuery {
 	return q
 }
 
+func (q *DeleteQuery) Order(orders ...string) *DeleteQuery {
+	if !q.hasFeature(feature.DeleteOrderLimit) {
+		q.err = errors.New("bun: order is not supported for current dialect")
+		return q
+	}
+	q.addOrder(orders...)
+	return q
+}
+
+func (q *DeleteQuery) OrderExpr(query string, args ...interface{}) *DeleteQuery {
+	if !q.hasFeature(feature.DeleteOrderLimit) {
+		q.err = errors.New("bun: order is not supported for current dialect")
+		return q
+	}
+	q.addOrderExpr(query, args...)
+	return q
+}
+
 func (q *DeleteQuery) ForceDelete() *DeleteQuery {
 	q.flags = q.flags.Set(forceDeleteFlag)
 	return q
 }
 
+// ------------------------------------------------------------------------------
+func (q *DeleteQuery) Limit(n int) *DeleteQuery {
+	if !q.hasFeature(feature.DeleteOrderLimit) {
+		q.err = errors.New("bun: limit is not supported for current dialect")
+		return q
+	}
+	q.setLimit(n)
+	return q
+}
+
 //------------------------------------------------------------------------------
 
 // Returning adds a RETURNING clause to the query.
 //
 // To suppress the auto-generated RETURNING clause, use `Returning("NULL")`.
 func (q *DeleteQuery) Returning(query string, args ...interface{}) *DeleteQuery {
+	if !q.hasFeature(feature.DeleteReturning) {
+		q.err = errors.New("bun: returning is not supported for current dialect")
+		return q
+	}
+
 	q.addReturning(schema.SafeQuery(query, args))
 	return q
 }
@@ -203,7 +240,21 @@ func (q *DeleteQuery) AppendQuery(fmter schema.Formatter, b []byte) (_ []byte, e
 		return nil, err
 	}
 
-	if q.hasFeature(feature.Returning) && q.hasReturning() {
+	if q.hasMultiTables() && (len(q.order) > 0 || q.limit > 0) {
+		return nil, errors.New("bun: can't use ORDER or LIMIT with multiple tables")
+	}
+
+	b, err = q.appendOrder(fmter, b)
+	if err != nil {
+		return nil, err
+	}
+
+	b, err = q.appendLimitOffset(fmter, b)
+	if err != nil {
+		return nil, err
+	}
+
+	if q.hasFeature(feature.DeleteReturning) && q.hasReturning() {
 		b = append(b, " RETURNING "...)
 		b, err = q.appendReturning(fmter, b)
 		if err != nil {
@@ -265,7 +316,7 @@ func (q *DeleteQuery) scanOrExec(
 		return nil, err
 	}
 
-	useScan := hasDest || (q.hasReturning() && q.hasFeature(feature.Returning|feature.Output))
+	useScan := hasDest || (q.hasReturning() && q.hasFeature(feature.DeleteReturning|feature.Output))
 	var model Model
 
 	if useScan {
diff --git a/vendor/github.com/uptrace/bun/query_insert.go b/vendor/github.com/uptrace/bun/query_insert.go
index 6d38a4efe..b6747cd65 100644
--- a/vendor/github.com/uptrace/bun/query_insert.go
+++ b/vendor/github.com/uptrace/bun/query_insert.go
@@ -53,10 +53,12 @@ func (q *InsertQuery) Err(err error) *InsertQuery {
 	return q
 }
 
-// Apply calls the fn passing the SelectQuery as an argument.
-func (q *InsertQuery) Apply(fn func(*InsertQuery) *InsertQuery) *InsertQuery {
-	if fn != nil {
-		return fn(q)
+// Apply calls each function in fns, passing the InsertQuery as an argument.
+func (q *InsertQuery) Apply(fns ...func(*InsertQuery) *InsertQuery) *InsertQuery {
+	for _, fn := range fns {
+		if fn != nil {
+			q = fn(q)
+		}
 	}
 	return q
 }
diff --git a/vendor/github.com/uptrace/bun/query_merge.go b/vendor/github.com/uptrace/bun/query_merge.go
index 626752b8a..3c3f4f7f8 100644
--- a/vendor/github.com/uptrace/bun/query_merge.go
+++ b/vendor/github.com/uptrace/bun/query_merge.go
@@ -50,10 +50,12 @@ func (q *MergeQuery) Err(err error) *MergeQuery {
 	return q
 }
 
-// Apply calls the fn passing the MergeQuery as an argument.
-func (q *MergeQuery) Apply(fn func(*MergeQuery) *MergeQuery) *MergeQuery {
-	if fn != nil {
-		return fn(q)
+// Apply calls each function in fns, passing the MergeQuery as an argument.
+func (q *MergeQuery) Apply(fns ...func(*MergeQuery) *MergeQuery) *MergeQuery {
+	for _, fn := range fns {
+		if fn != nil {
+			q = fn(q)
+		}
 	}
 	return q
 }
diff --git a/vendor/github.com/uptrace/bun/query_raw.go b/vendor/github.com/uptrace/bun/query_raw.go
index fda088a7c..1634d0e5b 100644
--- a/vendor/github.com/uptrace/bun/query_raw.go
+++ b/vendor/github.com/uptrace/bun/query_raw.go
@@ -96,3 +96,12 @@ func (q *RawQuery) AppendQuery(fmter schema.Formatter, b []byte) ([]byte, error)
 func (q *RawQuery) Operation() string {
 	return "SELECT"
 }
+
+func (q *RawQuery) String() string {
+	buf, err := q.AppendQuery(q.db.Formatter(), nil)
+	if err != nil {
+		panic(err)
+	}
+
+	return string(buf)
+}
diff --git a/vendor/github.com/uptrace/bun/query_select.go b/vendor/github.com/uptrace/bun/query_select.go
index 5bb329143..2b0872ae0 100644
--- a/vendor/github.com/uptrace/bun/query_select.go
+++ b/vendor/github.com/uptrace/bun/query_select.go
@@ -6,8 +6,6 @@ import (
 	"database/sql"
 	"errors"
 	"fmt"
-	"strconv"
-	"strings"
 	"sync"
 
 	"github.com/uptrace/bun/dialect"
@@ -25,14 +23,12 @@ type union struct {
 type SelectQuery struct {
 	whereBaseQuery
 	idxHintsQuery
+	orderLimitOffsetQuery
 
 	distinctOn []schema.QueryWithArgs
 	joins      []joinQuery
 	group      []schema.QueryWithArgs
 	having     []schema.QueryWithArgs
-	order      []schema.QueryWithArgs
-	limit      int32
-	offset     int32
 	selFor     schema.QueryWithArgs
 
 	union []union
@@ -66,10 +62,12 @@ func (q *SelectQuery) Err(err error) *SelectQuery {
 	return q
 }
 
-// Apply calls the fn passing the SelectQuery as an argument.
-func (q *SelectQuery) Apply(fn func(*SelectQuery) *SelectQuery) *SelectQuery {
-	if fn != nil {
-		return fn(q)
+// Apply calls each function in fns, passing the SelectQuery as an argument.
+func (q *SelectQuery) Apply(fns ...func(*SelectQuery) *SelectQuery) *SelectQuery {
+	for _, fn := range fns {
+		if fn != nil {
+			q = fn(q)
+		}
 	}
 	return q
 }
@@ -279,46 +277,22 @@ func (q *SelectQuery) Having(having string, args ...interface{}) *SelectQuery {
 }
 
 func (q *SelectQuery) Order(orders ...string) *SelectQuery {
-	for _, order := range orders {
-		if order == "" {
-			continue
-		}
-
-		index := strings.IndexByte(order, ' ')
-		if index == -1 {
-			q.order = append(q.order, schema.UnsafeIdent(order))
-			continue
-		}
-
-		field := order[:index]
-		sort := order[index+1:]
-
-		switch strings.ToUpper(sort) {
-		case "ASC", "DESC", "ASC NULLS FIRST", "DESC NULLS FIRST",
-			"ASC NULLS LAST", "DESC NULLS LAST":
-			q.order = append(q.order, schema.SafeQuery("? ?", []interface{}{
-				Ident(field),
-				Safe(sort),
-			}))
-		default:
-			q.order = append(q.order, schema.UnsafeIdent(order))
-		}
-	}
+	q.addOrder(orders...)
 	return q
 }
 
 func (q *SelectQuery) OrderExpr(query string, args ...interface{}) *SelectQuery {
-	q.order = append(q.order, schema.SafeQuery(query, args))
+	q.addOrderExpr(query, args...)
 	return q
 }
 
 func (q *SelectQuery) Limit(n int) *SelectQuery {
-	q.limit = int32(n)
+	q.setLimit(n)
 	return q
 }
 
 func (q *SelectQuery) Offset(n int) *SelectQuery {
-	q.offset = int32(n)
+	q.setOffset(n)
 	return q
 }
 
@@ -615,35 +589,9 @@ func (q *SelectQuery) appendQuery(
 			return nil, err
 		}
 
-		if fmter.Dialect().Features().Has(feature.OffsetFetch) {
-			if q.limit > 0 && q.offset > 0 {
-				b = append(b, " OFFSET "...)
-				b = strconv.AppendInt(b, int64(q.offset), 10)
-				b = append(b, " ROWS"...)
-
-				b = append(b, " FETCH NEXT "...)
-				b = strconv.AppendInt(b, int64(q.limit), 10)
-				b = append(b, " ROWS ONLY"...)
-			} else if q.limit > 0 {
-				b = append(b, " OFFSET 0 ROWS"...)
-
-				b = append(b, " FETCH NEXT "...)
-				b = strconv.AppendInt(b, int64(q.limit), 10)
-				b = append(b, " ROWS ONLY"...)
-			} else if q.offset > 0 {
-				b = append(b, " OFFSET "...)
-				b = strconv.AppendInt(b, int64(q.offset), 10)
-				b = append(b, " ROWS"...)
-			}
-		} else {
-			if q.limit > 0 {
-				b = append(b, " LIMIT "...)
-				b = strconv.AppendInt(b, int64(q.limit), 10)
-			}
-			if q.offset > 0 {
-				b = append(b, " OFFSET "...)
-				b = strconv.AppendInt(b, int64(q.offset), 10)
-			}
+		b, err = q.appendLimitOffset(fmter, b)
+		if err != nil {
+			return nil, err
 		}
 
 		if !q.selFor.IsZero() {
@@ -782,31 +730,6 @@ func (q *SelectQuery) appendTables(fmter schema.Formatter, b []byte) (_ []byte,
 	return q.appendTablesWithAlias(fmter, b)
 }
 
-func (q *SelectQuery) appendOrder(fmter schema.Formatter, b []byte) (_ []byte, err error) {
-	if len(q.order) > 0 {
-		b = append(b, " ORDER BY "...)
-
-		for i, f := range q.order {
-			if i > 0 {
-				b = append(b, ", "...)
-			}
-			b, err = f.AppendQuery(fmter, b)
-			if err != nil {
-				return nil, err
-			}
-		}
-
-		return b, nil
-	}
-
-	// MSSQL: allows Limit() without Order() as per https://stackoverflow.com/a/36156953
-	if q.limit > 0 && fmter.Dialect().Name() == dialect.MSSQL {
-		return append(b, " ORDER BY _temp_sort"...), nil
-	}
-
-	return b, nil
-}
-
 //------------------------------------------------------------------------------
 
 func (q *SelectQuery) Rows(ctx context.Context) (*sql.Rows, error) {
diff --git a/vendor/github.com/uptrace/bun/query_table_drop.go b/vendor/github.com/uptrace/bun/query_table_drop.go
index e4447a8d2..a92014515 100644
--- a/vendor/github.com/uptrace/bun/query_table_drop.go
+++ b/vendor/github.com/uptrace/bun/query_table_drop.go
@@ -151,3 +151,12 @@ func (q *DropTableQuery) afterDropTableHook(ctx context.Context) error {
 	}
 	return nil
 }
+
+func (q *DropTableQuery) String() string {
+	buf, err := q.AppendQuery(q.db.Formatter(), nil)
+	if err != nil {
+		panic(err)
+	}
+
+	return string(buf)
+}
diff --git a/vendor/github.com/uptrace/bun/query_update.go b/vendor/github.com/uptrace/bun/query_update.go
index e56ba20d1..bb9264084 100644
--- a/vendor/github.com/uptrace/bun/query_update.go
+++ b/vendor/github.com/uptrace/bun/query_update.go
@@ -15,6 +15,7 @@ import (
 
 type UpdateQuery struct {
 	whereBaseQuery
+	orderLimitOffsetQuery
 	returningQuery
 	customValueQuery
 	setQuery
@@ -53,10 +54,12 @@ func (q *UpdateQuery) Err(err error) *UpdateQuery {
 	return q
 }
 
-// Apply calls the fn passing the SelectQuery as an argument.
-func (q *UpdateQuery) Apply(fn func(*UpdateQuery) *UpdateQuery) *UpdateQuery {
-	if fn != nil {
-		return fn(q)
+// Apply calls each function in fns, passing the UpdateQuery as an argument.
+func (q *UpdateQuery) Apply(fns ...func(*UpdateQuery) *UpdateQuery) *UpdateQuery {
+	for _, fn := range fns {
+		if fn != nil {
+			q = fn(q)
+		}
 	}
 	return q
 }
@@ -200,6 +203,34 @@ func (q *UpdateQuery) WhereAllWithDeleted() *UpdateQuery {
 	return q
 }
 
+// ------------------------------------------------------------------------------
+func (q *UpdateQuery) Order(orders ...string) *UpdateQuery {
+	if !q.hasFeature(feature.UpdateOrderLimit) {
+		q.err = errors.New("bun: order is not supported for current dialect")
+		return q
+	}
+	q.addOrder(orders...)
+	return q
+}
+
+func (q *UpdateQuery) OrderExpr(query string, args ...interface{}) *UpdateQuery {
+	if !q.hasFeature(feature.UpdateOrderLimit) {
+		q.err = errors.New("bun: order is not supported for current dialect")
+		return q
+	}
+	q.addOrderExpr(query, args...)
+	return q
+}
+
+func (q *UpdateQuery) Limit(n int) *UpdateQuery {
+	if !q.hasFeature(feature.UpdateOrderLimit) {
+		q.err = errors.New("bun: limit is not supported for current dialect")
+		return q
+	}
+	q.setLimit(n)
+	return q
+}
+
 //------------------------------------------------------------------------------
 
 // Returning adds a RETURNING clause to the query.
@@ -278,6 +309,16 @@ func (q *UpdateQuery) AppendQuery(fmter schema.Formatter, b []byte) (_ []byte, e
 		return nil, err
 	}
 
+	b, err = q.appendOrder(fmter, b)
+	if err != nil {
+		return nil, err
+	}
+
+	b, err = q.appendLimitOffset(fmter, b)
+	if err != nil {
+		return nil, err
+	}
+
 	if q.hasFeature(feature.Returning) && q.hasReturning() {
 		b = append(b, " RETURNING "...)
 		b, err = q.appendReturning(fmter, b)
diff --git a/vendor/github.com/uptrace/bun/schema/dialect.go b/vendor/github.com/uptrace/bun/schema/dialect.go
index 330293444..bb40af62b 100644
--- a/vendor/github.com/uptrace/bun/schema/dialect.go
+++ b/vendor/github.com/uptrace/bun/schema/dialect.go
@@ -39,6 +39,9 @@ type Dialect interface {
 	// is mandatory in queries that modify the schema (CREATE TABLE / ADD COLUMN, etc).
 	// Dialects that do not have such requirement may return 0, which should be interpreted so by the caller.
 	DefaultVarcharLen() int
+
+	// DefaultSchema should returns the name of the default database schema.
+	DefaultSchema() string
 }
 
 // ------------------------------------------------------------------------------
@@ -185,3 +188,7 @@ func (d *nopDialect) DefaultVarcharLen() int {
 func (d *nopDialect) AppendSequence(b []byte, _ *Table, _ *Field) []byte {
 	return b
 }
+
+func (d *nopDialect) DefaultSchema() string {
+	return "nop"
+}
diff --git a/vendor/github.com/uptrace/bun/schema/table.go b/vendor/github.com/uptrace/bun/schema/table.go
index c8e71e38f..82132c4f1 100644
--- a/vendor/github.com/uptrace/bun/schema/table.go
+++ b/vendor/github.com/uptrace/bun/schema/table.go
@@ -45,6 +45,7 @@ type Table struct {
 	TypeName  string
 	ModelName string
 
+	Schema            string
 	Name              string
 	SQLName           Safe
 	SQLNameForSelects Safe
@@ -85,6 +86,7 @@ func (table *Table) init(dialect Dialect, typ reflect.Type, canAddr bool) {
 	table.setName(tableName)
 	table.Alias = table.ModelName
 	table.SQLAlias = table.quoteIdent(table.ModelName)
+	table.Schema = dialect.DefaultSchema()
 
 	table.Fields = make([]*Field, 0, typ.NumField())
 	table.FieldMap = make(map[string]*Field, typ.NumField())
@@ -244,6 +246,31 @@ func (t *Table) processFields(typ reflect.Type, canAddr bool) {
 			subfield.SQLName = t.quoteIdent(subfield.Name)
 		}
 		t.addField(subfield)
+		if v, ok := subfield.Tag.Options["unique"]; ok {
+			t.addUnique(subfield, embfield.prefix, v)
+		}
+	}
+}
+
+func (t *Table) addUnique(field *Field, prefix string, tagOptions []string) {
+	var names []string
+	if len(tagOptions) == 1 {
+		// Split the value by comma, this will allow multiple names to be specified.
+		// We can use this to create multiple named unique constraints where a single column
+		// might be included in multiple constraints.
+		names = strings.Split(tagOptions[0], ",")
+	} else {
+		names = tagOptions
+	}
+
+	for _, uname := range names {
+		if t.Unique == nil {
+			t.Unique = make(map[string][]*Field)
+		}
+		if uname != "" && prefix != "" {
+			uname = prefix + uname
+		}
+		t.Unique[uname] = append(t.Unique[uname], field)
 	}
 }
 
@@ -371,10 +398,18 @@ func (t *Table) processBaseModelField(f reflect.StructField) {
 	}
 
 	if tag.Name != "" {
+		schema, _ := t.schemaFromTagName(tag.Name)
+		t.Schema = schema
+
+		// Eventually, we should only assign the "table" portion as the table name,
+		// which will also require a change in how the table name is appended to queries.
+		// Until that is done, set table name to tag.Name.
 		t.setName(tag.Name)
 	}
 
 	if s, ok := tag.Option("table"); ok {
+		schema, _ := t.schemaFromTagName(s)
+		t.Schema = schema
 		t.setName(s)
 	}
 
@@ -388,6 +423,17 @@ func (t *Table) processBaseModelField(f reflect.StructField) {
 	}
 }
 
+// schemaFromTagName splits the bun.BaseModel tag name into schema and table name
+// in case it is specified in the "schema"."table" format.
+// Assume default schema if one isn't explicitly specified.
+func (t *Table) schemaFromTagName(name string) (string, string) {
+	schema, table := t.dialect.DefaultSchema(), name
+	if schemaTable := strings.Split(name, "."); len(schemaTable) == 2 {
+		schema, table = schemaTable[0], schemaTable[1]
+	}
+	return schema, table
+}
+
 // nolint
 func (t *Table) newField(sf reflect.StructField, tag tagparser.Tag) *Field {
 	sqlName := internal.Underscore(sf.Name)
@@ -439,22 +485,7 @@ func (t *Table) newField(sf reflect.StructField, tag tagparser.Tag) *Field {
 	}
 
 	if v, ok := tag.Options["unique"]; ok {
-		var names []string
-		if len(v) == 1 {
-			// Split the value by comma, this will allow multiple names to be specified.
-			// We can use this to create multiple named unique constraints where a single column
-			// might be included in multiple constraints.
-			names = strings.Split(v[0], ",")
-		} else {
-			names = v
-		}
-
-		for _, uniqueName := range names {
-			if t.Unique == nil {
-				t.Unique = make(map[string][]*Field)
-			}
-			t.Unique[uniqueName] = append(t.Unique[uniqueName], field)
-		}
+		t.addUnique(field, "", v)
 	}
 	if s, ok := tag.Option("default"); ok {
 		field.SQLDefault = s
diff --git a/vendor/github.com/uptrace/bun/schema/tables.go b/vendor/github.com/uptrace/bun/schema/tables.go
index 985093421..58c45cbee 100644
--- a/vendor/github.com/uptrace/bun/schema/tables.go
+++ b/vendor/github.com/uptrace/bun/schema/tables.go
@@ -77,6 +77,7 @@ func (t *Tables) InProgress(typ reflect.Type) *Table {
 	return table
 }
 
+// ByModel gets the table by its Go name.
 func (t *Tables) ByModel(name string) *Table {
 	var found *Table
 	t.tables.Range(func(typ reflect.Type, table *Table) bool {
@@ -89,6 +90,7 @@ func (t *Tables) ByModel(name string) *Table {
 	return found
 }
 
+// ByName gets the table by its SQL name.
 func (t *Tables) ByName(name string) *Table {
 	var found *Table
 	t.tables.Range(func(typ reflect.Type, table *Table) bool {
@@ -100,3 +102,13 @@ func (t *Tables) ByName(name string) *Table {
 	})
 	return found
 }
+
+// All returns all registered tables.
+func (t *Tables) All() []*Table {
+	var found []*Table
+	t.tables.Range(func(typ reflect.Type, table *Table) bool {
+		found = append(found, table)
+		return true
+	})
+	return found
+}
diff --git a/vendor/github.com/uptrace/bun/version.go b/vendor/github.com/uptrace/bun/version.go
index 7f23c12c3..244d63465 100644
--- a/vendor/github.com/uptrace/bun/version.go
+++ b/vendor/github.com/uptrace/bun/version.go
@@ -2,5 +2,5 @@ package bun
 
 // Version is the current release version.
 func Version() string {
-	return "1.2.5"
+	return "1.2.6"
 }
diff --git a/vendor/github.com/wk8/go-ordered-map/v2/.gitignore b/vendor/github.com/wk8/go-ordered-map/v2/.gitignore
new file mode 100644
index 000000000..57872d0f1
--- /dev/null
+++ b/vendor/github.com/wk8/go-ordered-map/v2/.gitignore
@@ -0,0 +1 @@
+/vendor/
diff --git a/vendor/github.com/wk8/go-ordered-map/v2/.golangci.yml b/vendor/github.com/wk8/go-ordered-map/v2/.golangci.yml
new file mode 100644
index 000000000..f305c9db1
--- /dev/null
+++ b/vendor/github.com/wk8/go-ordered-map/v2/.golangci.yml
@@ -0,0 +1,78 @@
+run:
+  tests: false
+
+linters:
+  disable-all: true
+  enable:
+    - asciicheck
+    - bidichk
+    - bodyclose
+    - containedctx
+    - contextcheck
+    - decorder
+    # Disabling depguard as there is no guarded list of imports
+    # - depguard
+    - dogsled
+    - dupl
+    - durationcheck
+    - errcheck
+    - errchkjson
+    - errname
+    - errorlint
+    - exportloopref
+    - forbidigo
+    - funlen
+    # Don't need gci and goimports
+    # - gci
+    - gochecknoglobals
+    - gochecknoinits
+    - gocognit
+    - goconst
+    - gocritic
+    - gocyclo
+    - godox
+    - gofmt
+    - gofumpt
+    - goheader
+    - goimports
+    - mnd
+    - gomoddirectives
+    - gomodguard
+    - goprintffuncname
+    - gosec
+    - gosimple
+    - govet
+    - grouper
+    - importas
+    - ineffassign
+    - lll
+    - maintidx
+    - makezero
+    - misspell
+    - nakedret
+    - nilerr
+    - nilnil
+    - noctx
+    - nolintlint
+    - paralleltest
+    - prealloc
+    - predeclared
+    - promlinter
+    - revive
+    - rowserrcheck
+    - sqlclosecheck
+    - staticcheck
+    - stylecheck
+    - tagliatelle
+    - tenv
+    - testpackage
+    - thelper
+    - tparallel
+    # FIXME: doesn't support 1.23 yet
+    # - typecheck
+    - unconvert
+    - unparam
+    - unused
+    - varnamelen
+    - wastedassign
+    - whitespace
diff --git a/vendor/github.com/wk8/go-ordered-map/v2/CHANGELOG.md b/vendor/github.com/wk8/go-ordered-map/v2/CHANGELOG.md
new file mode 100644
index 000000000..f27126f84
--- /dev/null
+++ b/vendor/github.com/wk8/go-ordered-map/v2/CHANGELOG.md
@@ -0,0 +1,38 @@
+# Changelog
+
+[comment]: # (Changes since last release go here)
+
+## 2.1.8 - Jun 27th 2023
+
+* Added support for YAML serialization/deserialization
+
+## 2.1.7 - Apr 13th 2023
+
+* Renamed test_utils.go to utils_test.go
+
+## 2.1.6 - Feb 15th 2023
+
+* Added `GetAndMoveToBack()` and `GetAndMoveToFront()` methods
+
+## 2.1.5 - Dec 13th 2022
+
+* Added `Value()` method
+
+## 2.1.4 - Dec 12th 2022
+
+* Fixed a bug with UTF-8 special characters in JSON keys
+
+## 2.1.3 - Dec 11th 2022
+
+* Added support for JSON marshalling/unmarshalling of wrapper of primitive types
+
+## 2.1.2 - Dec 10th 2022
+* Allowing to pass options to `New`, to give a capacity hint, or initial data
+* Allowing to deserialize nested ordered maps from JSON without having to explicitly instantiate them
+* Added the `AddPairs` method
+
+## 2.1.1 - Dec 9th 2022
+* Fixing a bug with JSON marshalling
+
+## 2.1.0 - Dec 7th 2022
+* Added support for JSON serialization/deserialization
diff --git a/vendor/github.com/wk8/go-ordered-map/v2/LICENSE b/vendor/github.com/wk8/go-ordered-map/v2/LICENSE
new file mode 100644
index 000000000..8dada3eda
--- /dev/null
+++ b/vendor/github.com/wk8/go-ordered-map/v2/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "{}"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright {yyyy} {name of copyright owner}
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/wk8/go-ordered-map/v2/Makefile b/vendor/github.com/wk8/go-ordered-map/v2/Makefile
new file mode 100644
index 000000000..6e0e18a1b
--- /dev/null
+++ b/vendor/github.com/wk8/go-ordered-map/v2/Makefile
@@ -0,0 +1,32 @@
+.DEFAULT_GOAL := all
+
+.PHONY: all
+all: test_with_fuzz lint
+
+# the TEST_FLAGS env var can be set to eg run only specific tests
+TEST_COMMAND = go test -v -count=1 -race -cover $(TEST_FLAGS)
+
+.PHONY: test
+test:
+	$(TEST_COMMAND)
+
+.PHONY: bench
+bench:
+	go test -bench=.
+
+FUZZ_TIME ?= 10s
+
+# see https://github.com/golang/go/issues/46312
+# and https://stackoverflow.com/a/72673487/4867444
+# if we end up having more fuzz tests
+.PHONY: test_with_fuzz
+test_with_fuzz:
+	$(TEST_COMMAND) -fuzz=FuzzRoundTripJSON -fuzztime=$(FUZZ_TIME)
+	$(TEST_COMMAND) -fuzz=FuzzRoundTripYAML -fuzztime=$(FUZZ_TIME)
+
+.PHONY: fuzz
+fuzz: test_with_fuzz
+
+.PHONY: lint
+lint:
+	golangci-lint run
diff --git a/vendor/github.com/wk8/go-ordered-map/v2/README.md b/vendor/github.com/wk8/go-ordered-map/v2/README.md
new file mode 100644
index 000000000..ebd8a4d37
--- /dev/null
+++ b/vendor/github.com/wk8/go-ordered-map/v2/README.md
@@ -0,0 +1,207 @@
+[![Go Reference](https://pkg.go.dev/badge/github.com/wk8/go-ordered-map/v2.svg)](https://pkg.go.dev/github.com/wk8/go-ordered-map/v2)
+[![Build Status](https://circleci.com/gh/wk8/go-ordered-map.svg?style=svg)](https://app.circleci.com/pipelines/github/wk8/go-ordered-map)
+
+# Golang Ordered Maps
+
+Same as regular maps, but also remembers the order in which keys were inserted, akin to [Python's `collections.OrderedDict`s](https://docs.python.org/3.7/library/collections.html#ordereddict-objects).
+
+It offers the following features:
+* optimal runtime performance (all operations are constant time)
+* optimal memory usage (only one copy of values, no unnecessary memory allocation)
+* allows iterating from newest or oldest keys indifferently, without memory copy, allowing to `break` the iteration, and in time linear to the number of keys iterated over rather than the total length of the ordered map
+* supports any generic types for both keys and values. If you're running go < 1.18, you can use [version 1](https://github.com/wk8/go-ordered-map/tree/v1) that takes and returns generic `interface{}`s instead of using generics
+* idiomatic API, akin to that of [`container/list`](https://golang.org/pkg/container/list)
+* support for JSON and YAML marshalling
+
+## Documentation
+
+[The full documentation is available on pkg.go.dev](https://pkg.go.dev/github.com/wk8/go-ordered-map/v2).
+
+## Installation
+```bash
+go get -u github.com/wk8/go-ordered-map/v2
+```
+
+Or use your favorite golang vendoring tool!
+
+## Supported go versions
+
+Go >= 1.23 is required to use version >= 2.2.0 of this library, as it uses generics and iterators.
+
+if you're running go < 1.23, you can use [version 2.1.8](https://github.com/wk8/go-ordered-map/tree/v2.1.8) instead.
+
+If you're running go < 1.18, you can use [version 1](https://github.com/wk8/go-ordered-map/tree/v1) instead.
+
+## Example / usage
+
+```go
+package main
+
+import (
+	"fmt"
+
+	"github.com/wk8/go-ordered-map/v2"
+)
+
+func main() {
+	om := orderedmap.New[string, string]()
+
+	om.Set("foo", "bar")
+	om.Set("bar", "baz")
+	om.Set("coucou", "toi")
+
+	fmt.Println(om.Get("foo"))          // => "bar", true
+	fmt.Println(om.Get("i dont exist")) // => "", false
+
+	// iterating pairs from oldest to newest:
+	for pair := om.Oldest(); pair != nil; pair = pair.Next() {
+		fmt.Printf("%s => %s\n", pair.Key, pair.Value)
+	} // prints:
+	// foo => bar
+	// bar => baz
+	// coucou => toi
+
+	// iterating over the 2 newest pairs:
+	i := 0
+	for pair := om.Newest(); pair != nil; pair = pair.Prev() {
+		fmt.Printf("%s => %s\n", pair.Key, pair.Value)
+		i++
+		if i >= 2 {
+			break
+		}
+	} // prints:
+	// coucou => toi
+	// bar => baz
+}
+```
+
+An `OrderedMap`'s keys must implement `comparable`, and its values can be anything, for example:
+
+```go
+type myStruct struct {
+	payload string
+}
+
+func main() {
+	om := orderedmap.New[int, *myStruct]()
+
+	om.Set(12, &myStruct{"foo"})
+	om.Set(1, &myStruct{"bar"})
+
+	value, present := om.Get(12)
+	if !present {
+		panic("should be there!")
+	}
+	fmt.Println(value.payload) // => foo
+
+	for pair := om.Oldest(); pair != nil; pair = pair.Next() {
+		fmt.Printf("%d => %s\n", pair.Key, pair.Value.payload)
+	} // prints:
+	// 12 => foo
+	// 1 => bar
+}
+```
+
+Also worth noting that you can provision ordered maps with a capacity hint, as you would do by passing an optional hint to `make(map[K]V, capacity`):
+```go
+om := orderedmap.New[int, *myStruct](28)
+```
+
+You can also pass in some initial data to store in the map:
+```go
+om := orderedmap.New[int, string](orderedmap.WithInitialData[int, string](
+	orderedmap.Pair[int, string]{
+		Key:   12,
+		Value: "foo",
+	},
+	orderedmap.Pair[int, string]{
+		Key:   28,
+		Value: "bar",
+	},
+))
+```
+
+`OrderedMap`s also support JSON serialization/deserialization, and preserves order:
+
+```go
+// serialization
+data, err := json.Marshal(om)
+...
+
+// deserialization
+om := orderedmap.New[string, string]() // or orderedmap.New[int, any](), or any type you expect
+err := json.Unmarshal(data, &om)
+...
+```
+
+Similarly, it also supports YAML serialization/deserialization using the yaml.v3 package, which also preserves order:
+
+```go
+// serialization
+data, err := yaml.Marshal(om)
+...
+
+// deserialization
+om := orderedmap.New[string, string]() // or orderedmap.New[int, any](), or any type you expect
+err := yaml.Unmarshal(data, &om)
+...
+```
+
+## Iterator support (go >= 1.23)
+
+The `FromOldest`, `FromNewest`, `KeysFromOldest`, `KeysFromNewest`, `ValuesFromOldest` and `ValuesFromNewest` methods return iterators over the map's pairs, starting from the oldest or newest pair, respectively.
+
+For example:
+
+```go
+om := orderedmap.New[int, string]()
+om.Set(1, "foo")
+om.Set(2, "bar")
+om.Set(3, "baz")
+
+for k, v := range om.FromOldest() {
+	fmt.Printf("%d => %s\n", k, v)
+}
+
+// prints:
+// 1 => foo
+// 2 => bar
+// 3 => baz
+
+for k := range om.KeysNewest() {
+	fmt.Printf("%d\n", k)
+}
+
+// prints:
+// 3
+// 2
+// 1
+```
+
+`From` is a convenience function that creates a new `OrderedMap` from an iterator over key-value pairs.
+
+```go
+om := orderedmap.New[int, string]()
+om.Set(1, "foo")
+om.Set(2, "bar")
+om.Set(3, "baz")
+
+om2 := orderedmap.From(om.FromOldest())
+
+for k, v := range om2.FromOldest() {
+	fmt.Printf("%d => %s\n", k, v)
+}
+
+// prints:
+// 1 => foo
+// 2 => bar
+// 3 => baz
+```
+
+## Alternatives
+
+There are several other ordered map golang implementations out there, but I believe that at the time of writing none of them offer the same functionality as this library; more specifically:
+* [iancoleman/orderedmap](https://github.com/iancoleman/orderedmap) only accepts `string` keys, its `Delete` operations are linear
+* [cevaris/ordered_map](https://github.com/cevaris/ordered_map) uses a channel for iterations, and leaks goroutines if the iteration is interrupted before fully traversing the map
+* [mantyr/iterator](https://github.com/mantyr/iterator) also uses a channel for iterations, and its `Delete` operations are linear
+* [samdolan/go-ordered-map](https://github.com/samdolan/go-ordered-map) adds unnecessary locking (users should add their own locking instead if they need it), its `Delete` and `Get` operations are linear, iterations trigger a linear memory allocation
diff --git a/vendor/github.com/wk8/go-ordered-map/v2/json.go b/vendor/github.com/wk8/go-ordered-map/v2/json.go
new file mode 100644
index 000000000..53f176a05
--- /dev/null
+++ b/vendor/github.com/wk8/go-ordered-map/v2/json.go
@@ -0,0 +1,182 @@
+package orderedmap
+
+import (
+	"bytes"
+	"encoding"
+	"encoding/json"
+	"fmt"
+	"reflect"
+	"unicode/utf8"
+
+	"github.com/buger/jsonparser"
+	"github.com/mailru/easyjson/jwriter"
+)
+
+var (
+	_ json.Marshaler   = &OrderedMap[int, any]{}
+	_ json.Unmarshaler = &OrderedMap[int, any]{}
+)
+
+// MarshalJSON implements the json.Marshaler interface.
+func (om *OrderedMap[K, V]) MarshalJSON() ([]byte, error) { //nolint:funlen
+	if om == nil || om.list == nil {
+		return []byte("null"), nil
+	}
+
+	writer := jwriter.Writer{}
+	writer.RawByte('{')
+
+	for pair, firstIteration := om.Oldest(), true; pair != nil; pair = pair.Next() {
+		if firstIteration {
+			firstIteration = false
+		} else {
+			writer.RawByte(',')
+		}
+
+		switch key := any(pair.Key).(type) {
+		case string:
+			writer.String(key)
+		case encoding.TextMarshaler:
+			writer.RawByte('"')
+			writer.Raw(key.MarshalText())
+			writer.RawByte('"')
+		case int:
+			writer.IntStr(key)
+		case int8:
+			writer.Int8Str(key)
+		case int16:
+			writer.Int16Str(key)
+		case int32:
+			writer.Int32Str(key)
+		case int64:
+			writer.Int64Str(key)
+		case uint:
+			writer.UintStr(key)
+		case uint8:
+			writer.Uint8Str(key)
+		case uint16:
+			writer.Uint16Str(key)
+		case uint32:
+			writer.Uint32Str(key)
+		case uint64:
+			writer.Uint64Str(key)
+		default:
+
+			// this switch takes care of wrapper types around primitive types, such as
+			// type myType string
+			switch keyValue := reflect.ValueOf(key); keyValue.Type().Kind() {
+			case reflect.String:
+				writer.String(keyValue.String())
+			case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
+				writer.Int64Str(keyValue.Int())
+			case reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64:
+				writer.Uint64Str(keyValue.Uint())
+			default:
+				return nil, fmt.Errorf("unsupported key type: %T", key)
+			}
+		}
+
+		writer.RawByte(':')
+		// the error is checked at the end of the function
+		writer.Raw(json.Marshal(pair.Value))
+	}
+
+	writer.RawByte('}')
+
+	return dumpWriter(&writer)
+}
+
+func dumpWriter(writer *jwriter.Writer) ([]byte, error) {
+	if writer.Error != nil {
+		return nil, writer.Error
+	}
+
+	var buf bytes.Buffer
+	buf.Grow(writer.Size())
+	if _, err := writer.DumpTo(&buf); err != nil {
+		return nil, err
+	}
+
+	return buf.Bytes(), nil
+}
+
+// UnmarshalJSON implements the json.Unmarshaler interface.
+func (om *OrderedMap[K, V]) UnmarshalJSON(data []byte) error {
+	if om.list == nil {
+		om.initialize(0)
+	}
+
+	return jsonparser.ObjectEach(
+		data,
+		func(keyData []byte, valueData []byte, dataType jsonparser.ValueType, offset int) error {
+			if dataType == jsonparser.String {
+				// jsonparser removes the enclosing quotes; we need to restore them to make a valid JSON
+				valueData = data[offset-len(valueData)-2 : offset]
+			}
+
+			var key K
+			var value V
+
+			switch typedKey := any(&key).(type) {
+			case *string:
+				s, err := decodeUTF8(keyData)
+				if err != nil {
+					return err
+				}
+				*typedKey = s
+			case encoding.TextUnmarshaler:
+				if err := typedKey.UnmarshalText(keyData); err != nil {
+					return err
+				}
+			case *int, *int8, *int16, *int32, *int64, *uint, *uint8, *uint16, *uint32, *uint64:
+				if err := json.Unmarshal(keyData, typedKey); err != nil {
+					return err
+				}
+			default:
+				// this switch takes care of wrapper types around primitive types, such as
+				// type myType string
+				switch reflect.TypeOf(key).Kind() {
+				case reflect.String:
+					s, err := decodeUTF8(keyData)
+					if err != nil {
+						return err
+					}
+
+					convertedKeyData := reflect.ValueOf(s).Convert(reflect.TypeOf(key))
+					reflect.ValueOf(&key).Elem().Set(convertedKeyData)
+				case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64,
+					reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64:
+					if err := json.Unmarshal(keyData, &key); err != nil {
+						return err
+					}
+				default:
+					return fmt.Errorf("unsupported key type: %T", key)
+				}
+			}
+
+			if err := json.Unmarshal(valueData, &value); err != nil {
+				return err
+			}
+
+			om.Set(key, value)
+			return nil
+		})
+}
+
+func decodeUTF8(input []byte) (string, error) {
+	remaining, offset := input, 0
+	runes := make([]rune, 0, len(remaining))
+
+	for len(remaining) > 0 {
+		r, size := utf8.DecodeRune(remaining)
+		if r == utf8.RuneError && size <= 1 {
+			return "", fmt.Errorf("not a valid UTF-8 string (at position %d): %s", offset, string(input))
+		}
+
+		runes = append(runes, r)
+		remaining = remaining[size:]
+		offset += size
+	}
+
+	return string(runes), nil
+}
diff --git a/vendor/github.com/wk8/go-ordered-map/v2/orderedmap.go b/vendor/github.com/wk8/go-ordered-map/v2/orderedmap.go
new file mode 100644
index 000000000..45bf8622d
--- /dev/null
+++ b/vendor/github.com/wk8/go-ordered-map/v2/orderedmap.go
@@ -0,0 +1,373 @@
+// Package orderedmap implements an ordered map, i.e. a map that also keeps track of
+// the order in which keys were inserted.
+//
+// All operations are constant-time.
+//
+// Github repo: https://github.com/wk8/go-ordered-map
+package orderedmap
+
+import (
+	"fmt"
+	"iter"
+
+	list "github.com/bahlo/generic-list-go"
+)
+
+type Pair[K comparable, V any] struct {
+	Key   K
+	Value V
+
+	element *list.Element[*Pair[K, V]]
+}
+
+type OrderedMap[K comparable, V any] struct {
+	pairs map[K]*Pair[K, V]
+	list  *list.List[*Pair[K, V]]
+}
+
+type initConfig[K comparable, V any] struct {
+	capacity    int
+	initialData []Pair[K, V]
+}
+
+type InitOption[K comparable, V any] func(config *initConfig[K, V])
+
+// WithCapacity allows giving a capacity hint for the map, akin to the standard make(map[K]V, capacity).
+func WithCapacity[K comparable, V any](capacity int) InitOption[K, V] {
+	return func(c *initConfig[K, V]) {
+		c.capacity = capacity
+	}
+}
+
+// WithInitialData allows passing in initial data for the map.
+func WithInitialData[K comparable, V any](initialData ...Pair[K, V]) InitOption[K, V] {
+	return func(c *initConfig[K, V]) {
+		c.initialData = initialData
+		if c.capacity < len(initialData) {
+			c.capacity = len(initialData)
+		}
+	}
+}
+
+// New creates a new OrderedMap.
+// options can either be one or several InitOption[K, V], or a single integer,
+// which is then interpreted as a capacity hint, à la make(map[K]V, capacity).
+func New[K comparable, V any](options ...any) *OrderedMap[K, V] {
+	orderedMap := &OrderedMap[K, V]{}
+
+	var config initConfig[K, V]
+	for _, untypedOption := range options {
+		switch option := untypedOption.(type) {
+		case int:
+			if len(options) != 1 {
+				invalidOption()
+			}
+			config.capacity = option
+
+		case InitOption[K, V]:
+			option(&config)
+
+		default:
+			invalidOption()
+		}
+	}
+
+	orderedMap.initialize(config.capacity)
+	orderedMap.AddPairs(config.initialData...)
+
+	return orderedMap
+}
+
+const invalidOptionMessage = `when using orderedmap.New[K,V]() with options, either provide one or several InitOption[K, V]; or a single integer which is then interpreted as a capacity hint, à la make(map[K]V, capacity).` //nolint:lll
+
+func invalidOption() { panic(invalidOptionMessage) }
+
+func (om *OrderedMap[K, V]) initialize(capacity int) {
+	om.pairs = make(map[K]*Pair[K, V], capacity)
+	om.list = list.New[*Pair[K, V]]()
+}
+
+// Get looks for the given key, and returns the value associated with it,
+// or V's nil value if not found. The boolean it returns says whether the key is present in the map.
+func (om *OrderedMap[K, V]) Get(key K) (val V, present bool) {
+	if pair, present := om.pairs[key]; present {
+		return pair.Value, true
+	}
+
+	return
+}
+
+// Load is an alias for Get, mostly to present an API similar to `sync.Map`'s.
+func (om *OrderedMap[K, V]) Load(key K) (V, bool) {
+	return om.Get(key)
+}
+
+// Value returns the value associated with the given key or the zero value.
+func (om *OrderedMap[K, V]) Value(key K) (val V) {
+	if pair, present := om.pairs[key]; present {
+		val = pair.Value
+	}
+	return
+}
+
+// GetPair looks for the given key, and returns the pair associated with it,
+// or nil if not found. The Pair struct can then be used to iterate over the ordered map
+// from that point, either forward or backward.
+func (om *OrderedMap[K, V]) GetPair(key K) *Pair[K, V] {
+	return om.pairs[key]
+}
+
+// Set sets the key-value pair, and returns what `Get` would have returned
+// on that key prior to the call to `Set`.
+func (om *OrderedMap[K, V]) Set(key K, value V) (val V, present bool) {
+	if pair, present := om.pairs[key]; present {
+		oldValue := pair.Value
+		pair.Value = value
+		return oldValue, true
+	}
+
+	pair := &Pair[K, V]{
+		Key:   key,
+		Value: value,
+	}
+	pair.element = om.list.PushBack(pair)
+	om.pairs[key] = pair
+
+	return
+}
+
+// AddPairs allows setting multiple pairs at a time. It's equivalent to calling
+// Set on each pair sequentially.
+func (om *OrderedMap[K, V]) AddPairs(pairs ...Pair[K, V]) {
+	for _, pair := range pairs {
+		om.Set(pair.Key, pair.Value)
+	}
+}
+
+// Store is an alias for Set, mostly to present an API similar to `sync.Map`'s.
+func (om *OrderedMap[K, V]) Store(key K, value V) (V, bool) {
+	return om.Set(key, value)
+}
+
+// Delete removes the key-value pair, and returns what `Get` would have returned
+// on that key prior to the call to `Delete`.
+func (om *OrderedMap[K, V]) Delete(key K) (val V, present bool) {
+	if pair, present := om.pairs[key]; present {
+		om.list.Remove(pair.element)
+		delete(om.pairs, key)
+		return pair.Value, true
+	}
+	return
+}
+
+// Len returns the length of the ordered map.
+func (om *OrderedMap[K, V]) Len() int {
+	if om == nil || om.pairs == nil {
+		return 0
+	}
+	return len(om.pairs)
+}
+
+// Oldest returns a pointer to the oldest pair. It's meant to be used to iterate on the ordered map's
+// pairs from the oldest to the newest, e.g.:
+// for pair := orderedMap.Oldest(); pair != nil; pair = pair.Next() { fmt.Printf("%v => %v\n", pair.Key, pair.Value) }
+func (om *OrderedMap[K, V]) Oldest() *Pair[K, V] {
+	if om == nil || om.list == nil {
+		return nil
+	}
+	return listElementToPair(om.list.Front())
+}
+
+// Newest returns a pointer to the newest pair. It's meant to be used to iterate on the ordered map's
+// pairs from the newest to the oldest, e.g.:
+// for pair := orderedMap.Newest(); pair != nil; pair = pair.Prev() { fmt.Printf("%v => %v\n", pair.Key, pair.Value) }
+func (om *OrderedMap[K, V]) Newest() *Pair[K, V] {
+	if om == nil || om.list == nil {
+		return nil
+	}
+	return listElementToPair(om.list.Back())
+}
+
+// Next returns a pointer to the next pair.
+func (p *Pair[K, V]) Next() *Pair[K, V] {
+	return listElementToPair(p.element.Next())
+}
+
+// Prev returns a pointer to the previous pair.
+func (p *Pair[K, V]) Prev() *Pair[K, V] {
+	return listElementToPair(p.element.Prev())
+}
+
+func listElementToPair[K comparable, V any](element *list.Element[*Pair[K, V]]) *Pair[K, V] {
+	if element == nil {
+		return nil
+	}
+	return element.Value
+}
+
+// KeyNotFoundError may be returned by functions in this package when they're called with keys that are not present
+// in the map.
+type KeyNotFoundError[K comparable] struct {
+	MissingKey K
+}
+
+func (e *KeyNotFoundError[K]) Error() string {
+	return fmt.Sprintf("missing key: %v", e.MissingKey)
+}
+
+// MoveAfter moves the value associated with key to its new position after the one associated with markKey.
+// Returns an error iff key or markKey are not present in the map. If an error is returned,
+// it will be a KeyNotFoundError.
+func (om *OrderedMap[K, V]) MoveAfter(key, markKey K) error {
+	elements, err := om.getElements(key, markKey)
+	if err != nil {
+		return err
+	}
+	om.list.MoveAfter(elements[0], elements[1])
+	return nil
+}
+
+// MoveBefore moves the value associated with key to its new position before the one associated with markKey.
+// Returns an error iff key or markKey are not present in the map. If an error is returned,
+// it will be a KeyNotFoundError.
+func (om *OrderedMap[K, V]) MoveBefore(key, markKey K) error {
+	elements, err := om.getElements(key, markKey)
+	if err != nil {
+		return err
+	}
+	om.list.MoveBefore(elements[0], elements[1])
+	return nil
+}
+
+func (om *OrderedMap[K, V]) getElements(keys ...K) ([]*list.Element[*Pair[K, V]], error) {
+	elements := make([]*list.Element[*Pair[K, V]], len(keys))
+	for i, k := range keys {
+		pair, present := om.pairs[k]
+		if !present {
+			return nil, &KeyNotFoundError[K]{k}
+		}
+		elements[i] = pair.element
+	}
+	return elements, nil
+}
+
+// MoveToBack moves the value associated with key to the back of the ordered map,
+// i.e. makes it the newest pair in the map.
+// Returns an error iff key is not present in the map. If an error is returned,
+// it will be a KeyNotFoundError.
+func (om *OrderedMap[K, V]) MoveToBack(key K) error {
+	_, err := om.GetAndMoveToBack(key)
+	return err
+}
+
+// MoveToFront moves the value associated with key to the front of the ordered map,
+// i.e. makes it the oldest pair in the map.
+// Returns an error iff key is not present in the map. If an error is returned,
+// it will be a KeyNotFoundError.
+func (om *OrderedMap[K, V]) MoveToFront(key K) error {
+	_, err := om.GetAndMoveToFront(key)
+	return err
+}
+
+// GetAndMoveToBack combines Get and MoveToBack in the same call. If an error is returned,
+// it will be a KeyNotFoundError.
+func (om *OrderedMap[K, V]) GetAndMoveToBack(key K) (val V, err error) {
+	if pair, present := om.pairs[key]; present {
+		val = pair.Value
+		om.list.MoveToBack(pair.element)
+	} else {
+		err = &KeyNotFoundError[K]{key}
+	}
+
+	return
+}
+
+// GetAndMoveToFront combines Get and MoveToFront in the same call. If an error is returned,
+// it will be a KeyNotFoundError.
+func (om *OrderedMap[K, V]) GetAndMoveToFront(key K) (val V, err error) {
+	if pair, present := om.pairs[key]; present {
+		val = pair.Value
+		om.list.MoveToFront(pair.element)
+	} else {
+		err = &KeyNotFoundError[K]{key}
+	}
+
+	return
+}
+
+// FromOldest returns an iterator over all the key-value pairs in the map, starting from the oldest pair.
+func (om *OrderedMap[K, V]) FromOldest() iter.Seq2[K, V] {
+	return func(yield func(K, V) bool) {
+		for pair := om.Oldest(); pair != nil; pair = pair.Next() {
+			if !yield(pair.Key, pair.Value) {
+				return
+			}
+		}
+	}
+}
+
+// FromNewest returns an iterator over all the key-value pairs in the map, starting from the newest pair.
+func (om *OrderedMap[K, V]) FromNewest() iter.Seq2[K, V] {
+	return func(yield func(K, V) bool) {
+		for pair := om.Newest(); pair != nil; pair = pair.Prev() {
+			if !yield(pair.Key, pair.Value) {
+				return
+			}
+		}
+	}
+}
+
+// KeysFromOldest returns an iterator over all the keys in the map, starting from the oldest pair.
+func (om *OrderedMap[K, V]) KeysFromOldest() iter.Seq[K] {
+	return func(yield func(K) bool) {
+		for pair := om.Oldest(); pair != nil; pair = pair.Next() {
+			if !yield(pair.Key) {
+				return
+			}
+		}
+	}
+}
+
+// KeysFromNewest returns an iterator over all the keys in the map, starting from the newest pair.
+func (om *OrderedMap[K, V]) KeysFromNewest() iter.Seq[K] {
+	return func(yield func(K) bool) {
+		for pair := om.Newest(); pair != nil; pair = pair.Prev() {
+			if !yield(pair.Key) {
+				return
+			}
+		}
+	}
+}
+
+// ValuesFromOldest returns an iterator over all the values in the map, starting from the oldest pair.
+func (om *OrderedMap[K, V]) ValuesFromOldest() iter.Seq[V] {
+	return func(yield func(V) bool) {
+		for pair := om.Oldest(); pair != nil; pair = pair.Next() {
+			if !yield(pair.Value) {
+				return
+			}
+		}
+	}
+}
+
+// ValuesFromNewest returns an iterator over all the values in the map, starting from the newest pair.
+func (om *OrderedMap[K, V]) ValuesFromNewest() iter.Seq[V] {
+	return func(yield func(V) bool) {
+		for pair := om.Newest(); pair != nil; pair = pair.Prev() {
+			if !yield(pair.Value) {
+				return
+			}
+		}
+	}
+}
+
+// From creates a new OrderedMap from an iterator over key-value pairs.
+func From[K comparable, V any](i iter.Seq2[K, V]) *OrderedMap[K, V] {
+	oMap := New[K, V]()
+
+	for k, v := range i {
+		oMap.Set(k, v)
+	}
+
+	return oMap
+}
diff --git a/vendor/github.com/wk8/go-ordered-map/v2/yaml.go b/vendor/github.com/wk8/go-ordered-map/v2/yaml.go
new file mode 100644
index 000000000..602247128
--- /dev/null
+++ b/vendor/github.com/wk8/go-ordered-map/v2/yaml.go
@@ -0,0 +1,71 @@
+package orderedmap
+
+import (
+	"fmt"
+
+	"gopkg.in/yaml.v3"
+)
+
+var (
+	_ yaml.Marshaler   = &OrderedMap[int, any]{}
+	_ yaml.Unmarshaler = &OrderedMap[int, any]{}
+)
+
+// MarshalYAML implements the yaml.Marshaler interface.
+func (om *OrderedMap[K, V]) MarshalYAML() (interface{}, error) {
+	if om == nil {
+		return []byte("null"), nil
+	}
+
+	node := yaml.Node{
+		Kind: yaml.MappingNode,
+	}
+
+	for pair := om.Oldest(); pair != nil; pair = pair.Next() {
+		key, value := pair.Key, pair.Value
+
+		keyNode := &yaml.Node{}
+
+		// serialize key to yaml, then deserialize it back into the node
+		// this is a hack to get the correct tag for the key
+		if err := keyNode.Encode(key); err != nil {
+			return nil, err
+		}
+
+		valueNode := &yaml.Node{}
+		if err := valueNode.Encode(value); err != nil {
+			return nil, err
+		}
+
+		node.Content = append(node.Content, keyNode, valueNode)
+	}
+
+	return &node, nil
+}
+
+// UnmarshalYAML implements the yaml.Unmarshaler interface.
+func (om *OrderedMap[K, V]) UnmarshalYAML(value *yaml.Node) error {
+	if value.Kind != yaml.MappingNode {
+		return fmt.Errorf("pipeline must contain YAML mapping, has %v", value.Kind)
+	}
+
+	if om.list == nil {
+		om.initialize(0)
+	}
+
+	for index := 0; index < len(value.Content); index += 2 {
+		var key K
+		var val V
+
+		if err := value.Content[index].Decode(&key); err != nil {
+			return err
+		}
+		if err := value.Content[index+1].Decode(&val); err != nil {
+			return err
+		}
+
+		om.Set(key, val)
+	}
+
+	return nil
+}
diff --git a/vendor/modules.txt b/vendor/modules.txt
index eb965e0cb..246e90c7d 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -91,6 +91,9 @@ github.com/asaskevich/govalidator
 ## explicit
 github.com/aymerick/douceur/css
 github.com/aymerick/douceur/parser
+# github.com/bahlo/generic-list-go v0.2.0
+## explicit; go 1.18
+github.com/bahlo/generic-list-go
 # github.com/beorn7/perks v1.0.1
 ## explicit; go 1.11
 github.com/beorn7/perks/quantile
@@ -98,6 +101,9 @@ github.com/beorn7/perks/quantile
 ## explicit; go 1.14
 github.com/buckket/go-blurhash
 github.com/buckket/go-blurhash/base83
+# github.com/buger/jsonparser v1.1.1
+## explicit; go 1.13
+github.com/buger/jsonparser
 # github.com/bytedance/sonic v1.11.6
 ## explicit; go 1.16
 github.com/bytedance/sonic
@@ -919,8 +925,8 @@ github.com/ugorji/go/codec
 github.com/ulule/limiter/v3
 github.com/ulule/limiter/v3/drivers/store/common
 github.com/ulule/limiter/v3/drivers/store/memory
-# github.com/uptrace/bun v1.2.5
-## explicit; go 1.22
+# github.com/uptrace/bun v1.2.6
+## explicit; go 1.23
 github.com/uptrace/bun
 github.com/uptrace/bun/dialect
 github.com/uptrace/bun/dialect/feature
@@ -930,15 +936,16 @@ github.com/uptrace/bun/internal
 github.com/uptrace/bun/internal/parser
 github.com/uptrace/bun/internal/tagparser
 github.com/uptrace/bun/migrate
+github.com/uptrace/bun/migrate/sqlschema
 github.com/uptrace/bun/schema
-# github.com/uptrace/bun/dialect/pgdialect v1.2.5
-## explicit; go 1.22
+# github.com/uptrace/bun/dialect/pgdialect v1.2.6
+## explicit; go 1.23
 github.com/uptrace/bun/dialect/pgdialect
-# github.com/uptrace/bun/dialect/sqlitedialect v1.2.5
-## explicit; go 1.22
+# github.com/uptrace/bun/dialect/sqlitedialect v1.2.6
+## explicit; go 1.23
 github.com/uptrace/bun/dialect/sqlitedialect
-# github.com/uptrace/bun/extra/bunotel v1.2.5
-## explicit; go 1.22
+# github.com/uptrace/bun/extra/bunotel v1.2.6
+## explicit; go 1.23
 github.com/uptrace/bun/extra/bunotel
 # github.com/uptrace/opentelemetry-go-extra/otelsql v0.3.2
 ## explicit; go 1.22
@@ -955,6 +962,9 @@ github.com/vmihailenco/tagparser/v2/internal/parser
 # github.com/wagslane/go-password-validator v0.3.0
 ## explicit; go 1.16
 github.com/wagslane/go-password-validator
+# github.com/wk8/go-ordered-map/v2 v2.1.9-0.20240816141633-0a40785b4f41
+## explicit; go 1.23
+github.com/wk8/go-ordered-map/v2
 # github.com/yuin/goldmark v1.7.8
 ## explicit; go 1.19
 github.com/yuin/goldmark

From 5c818debb24218a5f876082482d67fb9238eae10 Mon Sep 17 00:00:00 2001
From: tobi <31960611+tsmethurst@users.noreply.github.com>
Date: Mon, 25 Nov 2024 18:21:19 +0100
Subject: [PATCH 09/26] [chore] Sign the bloody thing, fix the other bloody
 thing (#3572)

---
 .drone.yml      | 2 +-
 .goreleaser.yml | 1 -
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/.drone.yml b/.drone.yml
index 5b954876d..cd56a9603 100644
--- a/.drone.yml
+++ b/.drone.yml
@@ -223,6 +223,6 @@ steps:
 
 ---
 kind: signature
-hmac: 9810bf692fb1029c13b0a1e2f556e2306d16f7d3eec9ca6163a0499c147280c1
+hmac: c79f1c3b16db8da7e3b01b960021a583ec81069aff8afd4425f049dd140f0620
 
 ...
diff --git a/.goreleaser.yml b/.goreleaser.yml
index c1c170c5a..91e6afca9 100644
--- a/.goreleaser.yml
+++ b/.goreleaser.yml
@@ -1,7 +1,6 @@
 # Version 2 of GoReleaser: https://goreleaser.com/errors/version/
 version: 2
 project_name: gotosocial
-version: 2
 
 # https://goreleaser.com/customization/hooks/
 before:

From 6a8af426474acd1ffd5cb3265a2372003977326a Mon Sep 17 00:00:00 2001
From: Vyr Cossont <VyrCossont@users.noreply.github.com>
Date: Tue, 26 Nov 2024 08:23:00 -0800
Subject: [PATCH 10/26] [bugfix] Allow unsetting filter expiration dates
 (#3560)

* Regression tests for #3497 (v1 and v2)
* use Nullable type for v2 form.expires_in

---------

Co-authored-by: tobi <tobi.smethurst@protonmail.com>
---
 .../api/client/filters/v1/filterpost_test.go  |  48 ++++++--
 .../api/client/filters/v1/filterput_test.go   |  75 ++++++++++--
 internal/api/client/filters/v1/validate.go    |  14 +--
 internal/api/client/filters/v2/filterpost.go  |  14 +--
 .../api/client/filters/v2/filterpost_test.go  |  49 ++++++--
 internal/api/client/filters/v2/filterput.go   |  14 +--
 .../api/client/filters/v2/filterput_test.go   |  82 ++++++++++++--
 internal/api/model/filterv1.go                |   2 +-
 internal/api/model/filterv2.go                |   4 +-
 internal/api/model/nullable.go                | 107 ++++++++++++++++++
 internal/api/util/parseform.go                |  36 ++++--
 internal/processing/filters/v1/create.go      |   2 +-
 internal/processing/filters/v1/update.go      |   2 +-
 internal/processing/filters/v2/create.go      |   2 +-
 internal/processing/filters/v2/update.go      |  13 ++-
 15 files changed, 379 insertions(+), 85 deletions(-)
 create mode 100644 internal/api/model/nullable.go

diff --git a/internal/api/client/filters/v1/filterpost_test.go b/internal/api/client/filters/v1/filterpost_test.go
index 2b18abf13..b7aecc573 100644
--- a/internal/api/client/filters/v1/filterpost_test.go
+++ b/internal/api/client/filters/v1/filterpost_test.go
@@ -41,6 +41,7 @@ func (suite *FiltersTestSuite) postFilter(
 	irreversible *bool,
 	wholeWord *bool,
 	expiresIn *int,
+	expiresInStr *string,
 	requestJson *string,
 	expectedHTTPStatus int,
 	expectedBody string,
@@ -75,6 +76,8 @@ func (suite *FiltersTestSuite) postFilter(
 		}
 		if expiresIn != nil {
 			ctx.Request.Form["expires_in"] = []string{strconv.Itoa(*expiresIn)}
+		} else if expiresInStr != nil {
+			ctx.Request.Form["expires_in"] = []string{*expiresInStr}
 		}
 	}
 
@@ -124,7 +127,7 @@ func (suite *FiltersTestSuite) TestPostFilterFull() {
 	irreversible := false
 	wholeWord := true
 	expiresIn := 86400
-	filter, err := suite.postFilter(&phrase, &context, &irreversible, &wholeWord, &expiresIn, nil, http.StatusOK, "")
+	filter, err := suite.postFilter(&phrase, &context, &irreversible, &wholeWord, &expiresIn, nil, nil, http.StatusOK, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -155,7 +158,7 @@ func (suite *FiltersTestSuite) TestPostFilterFullJSON() {
 		"whole_word": true,
 		"expires_in": 86400.1
 	}`
-	filter, err := suite.postFilter(nil, nil, nil, nil, nil, &requestJson, http.StatusOK, "")
+	filter, err := suite.postFilter(nil, nil, nil, nil, nil, nil, &requestJson, http.StatusOK, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -182,7 +185,7 @@ func (suite *FiltersTestSuite) TestPostFilterMinimal() {
 
 	phrase := "GNU/Linux"
 	context := []string{"home"}
-	filter, err := suite.postFilter(&phrase, &context, nil, nil, nil, nil, http.StatusOK, "")
+	filter, err := suite.postFilter(&phrase, &context, nil, nil, nil, nil, nil, http.StatusOK, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -203,7 +206,7 @@ func (suite *FiltersTestSuite) TestPostFilterMinimal() {
 func (suite *FiltersTestSuite) TestPostFilterEmptyPhrase() {
 	phrase := ""
 	context := []string{"home"}
-	_, err := suite.postFilter(&phrase, &context, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.postFilter(&phrase, &context, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -211,7 +214,7 @@ func (suite *FiltersTestSuite) TestPostFilterEmptyPhrase() {
 
 func (suite *FiltersTestSuite) TestPostFilterMissingPhrase() {
 	context := []string{"home"}
-	_, err := suite.postFilter(nil, &context, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.postFilter(nil, &context, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -220,7 +223,7 @@ func (suite *FiltersTestSuite) TestPostFilterMissingPhrase() {
 func (suite *FiltersTestSuite) TestPostFilterEmptyContext() {
 	phrase := "GNU/Linux"
 	context := []string{}
-	_, err := suite.postFilter(&phrase, &context, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.postFilter(&phrase, &context, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -228,7 +231,7 @@ func (suite *FiltersTestSuite) TestPostFilterEmptyContext() {
 
 func (suite *FiltersTestSuite) TestPostFilterMissingContext() {
 	phrase := "GNU/Linux"
-	_, err := suite.postFilter(&phrase, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.postFilter(&phrase, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -237,8 +240,37 @@ func (suite *FiltersTestSuite) TestPostFilterMissingContext() {
 // There should be a filter with this phrase as its title in our test fixtures. Creating another should fail.
 func (suite *FiltersTestSuite) TestPostFilterTitleConflict() {
 	phrase := "fnord"
-	_, err := suite.postFilter(&phrase, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.postFilter(&phrase, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
 }
+
+// postFilterWithExpiration creates a filter with optional expiration.
+func (suite *FiltersTestSuite) postFilterWithExpiration(phrase *string, expiresIn *int, expiresInStr *string, requestJson *string) *apimodel.FilterV1 {
+	context := []string{"home"}
+	filter, err := suite.postFilter(phrase, &context, nil, nil, expiresIn, expiresInStr, requestJson, http.StatusOK, "")
+	if err != nil {
+		suite.FailNow(err.Error())
+	}
+	return filter
+}
+
+// Regression test for https://github.com/superseriousbusiness/gotosocial/issues/3497
+func (suite *FiltersTestSuite) TestPostFilterWithEmptyStringExpiration() {
+	title := "Form Sins"
+	expiresInStr := ""
+	filter := suite.postFilterWithExpiration(&title, nil, &expiresInStr, nil)
+	suite.Nil(filter.ExpiresAt)
+}
+
+// Regression test related to https://github.com/superseriousbusiness/gotosocial/issues/3497
+func (suite *FiltersTestSuite) TestPostFilterWithNullExpirationJSON() {
+	requestJson := `{
+		"phrase": "JSON Sins",
+		"context": ["home"],
+		"expires_in": null
+	}`
+	filter := suite.postFilterWithExpiration(nil, nil, nil, &requestJson)
+	suite.Nil(filter.ExpiresAt)
+}
diff --git a/internal/api/client/filters/v1/filterput_test.go b/internal/api/client/filters/v1/filterput_test.go
index 40b52ee43..626bd52eb 100644
--- a/internal/api/client/filters/v1/filterput_test.go
+++ b/internal/api/client/filters/v1/filterput_test.go
@@ -42,6 +42,7 @@ func (suite *FiltersTestSuite) putFilter(
 	irreversible *bool,
 	wholeWord *bool,
 	expiresIn *int,
+	expiresInStr *string,
 	requestJson *string,
 	expectedHTTPStatus int,
 	expectedBody string,
@@ -76,6 +77,8 @@ func (suite *FiltersTestSuite) putFilter(
 		}
 		if expiresIn != nil {
 			ctx.Request.Form["expires_in"] = []string{strconv.Itoa(*expiresIn)}
+		} else if expiresInStr != nil {
+			ctx.Request.Form["expires_in"] = []string{*expiresInStr}
 		}
 	}
 
@@ -128,7 +131,7 @@ func (suite *FiltersTestSuite) TestPutFilterFull() {
 	irreversible := false
 	wholeWord := true
 	expiresIn := 86400
-	filter, err := suite.putFilter(id, &phrase, &context, &irreversible, &wholeWord, &expiresIn, nil, http.StatusOK, "")
+	filter, err := suite.putFilter(id, &phrase, &context, &irreversible, &wholeWord, &expiresIn, nil, nil, http.StatusOK, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -160,7 +163,7 @@ func (suite *FiltersTestSuite) TestPutFilterFullJSON() {
 		"whole_word": true,
 		"expires_in": 86400.1
 	}`
-	filter, err := suite.putFilter(id, nil, nil, nil, nil, nil, &requestJson, http.StatusOK, "")
+	filter, err := suite.putFilter(id, nil, nil, nil, nil, nil, nil, &requestJson, http.StatusOK, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -188,7 +191,7 @@ func (suite *FiltersTestSuite) TestPutFilterMinimal() {
 	id := suite.testFilterKeywords["local_account_1_filter_1_keyword_1"].ID
 	phrase := "GNU/Linux"
 	context := []string{"home"}
-	filter, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, http.StatusOK, "")
+	filter, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, nil, http.StatusOK, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -210,7 +213,7 @@ func (suite *FiltersTestSuite) TestPutFilterEmptyPhrase() {
 	id := suite.testFilterKeywords["local_account_1_filter_1_keyword_1"].ID
 	phrase := ""
 	context := []string{"home"}
-	_, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -219,7 +222,7 @@ func (suite *FiltersTestSuite) TestPutFilterEmptyPhrase() {
 func (suite *FiltersTestSuite) TestPutFilterMissingPhrase() {
 	id := suite.testFilterKeywords["local_account_1_filter_1_keyword_1"].ID
 	context := []string{"home"}
-	_, err := suite.putFilter(id, nil, &context, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.putFilter(id, nil, &context, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -229,7 +232,7 @@ func (suite *FiltersTestSuite) TestPutFilterEmptyContext() {
 	id := suite.testFilterKeywords["local_account_1_filter_1_keyword_1"].ID
 	phrase := "GNU/Linux"
 	context := []string{}
-	_, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -238,7 +241,7 @@ func (suite *FiltersTestSuite) TestPutFilterEmptyContext() {
 func (suite *FiltersTestSuite) TestPutFilterMissingContext() {
 	id := suite.testFilterKeywords["local_account_1_filter_1_keyword_1"].ID
 	phrase := "GNU/Linux"
-	_, err := suite.putFilter(id, &phrase, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.putFilter(id, &phrase, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -248,7 +251,7 @@ func (suite *FiltersTestSuite) TestPutFilterMissingContext() {
 func (suite *FiltersTestSuite) TestPutFilterTitleConflict() {
 	id := suite.testFilterKeywords["local_account_1_filter_1_keyword_1"].ID
 	phrase := "metasyntactic variables"
-	_, err := suite.putFilter(id, &phrase, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.putFilter(id, &phrase, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -258,7 +261,7 @@ func (suite *FiltersTestSuite) TestPutAnotherAccountsFilter() {
 	id := suite.testFilterKeywords["local_account_2_filter_1_keyword_1"].ID
 	phrase := "GNU/Linux"
 	context := []string{"home"}
-	_, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, http.StatusNotFound, `{"error":"Not Found"}`)
+	_, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, nil, http.StatusNotFound, `{"error":"Not Found"}`)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -268,8 +271,60 @@ func (suite *FiltersTestSuite) TestPutNonexistentFilter() {
 	id := "not_even_a_real_ULID"
 	phrase := "GNU/Linux"
 	context := []string{"home"}
-	_, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, http.StatusNotFound, `{"error":"Not Found"}`)
+	_, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, nil, http.StatusNotFound, `{"error":"Not Found"}`)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
 }
+
+// setFilterExpiration sets filter expiration.
+func (suite *FiltersTestSuite) setFilterExpiration(id string, phrase *string, expiresIn *int, expiresInStr *string, requestJson *string) *apimodel.FilterV1 {
+	context := []string{"home"}
+	filter, err := suite.putFilter(id, phrase, &context, nil, nil, expiresIn, expiresInStr, requestJson, http.StatusOK, "")
+	if err != nil {
+		suite.FailNow(err.Error())
+	}
+	return filter
+}
+
+// Regression test for https://github.com/superseriousbusiness/gotosocial/issues/3497
+func (suite *FiltersTestSuite) TestPutFilterUnsetExpirationDateEmptyString() {
+	filterKeyword := suite.testFilterKeywords["local_account_1_filter_1_keyword_1"]
+	id := filterKeyword.ID
+	phrase := filterKeyword.Keyword
+
+	// Setup: set an expiration date for the filter.
+	expiresIn := 86400
+	filter := suite.setFilterExpiration(id, &phrase, &expiresIn, nil, nil)
+	if !suite.NotNil(filter.ExpiresAt) {
+		suite.FailNow("Test precondition failed")
+	}
+
+	// Unset the filter's expiration date by setting it to an empty string.
+	expiresInStr := ""
+	filter = suite.setFilterExpiration(id, &phrase, nil, &expiresInStr, nil)
+	suite.Nil(filter.ExpiresAt)
+}
+
+// Regression test related to https://github.com/superseriousbusiness/gotosocial/issues/3497
+func (suite *FiltersTestSuite) TestPutFilterUnsetExpirationDateNullJSON() {
+	filterKeyword := suite.testFilterKeywords["local_account_1_filter_1_keyword_1"]
+	id := filterKeyword.ID
+	phrase := filterKeyword.Keyword
+
+	// Setup: set an expiration date for the filter.
+	expiresIn := 86400
+	filter := suite.setFilterExpiration(id, &phrase, &expiresIn, nil, nil)
+	if !suite.NotNil(filter.ExpiresAt) {
+		suite.FailNow("Test precondition failed")
+	}
+
+	// Unset the filter's expiration date by setting it to a null literal.
+	requestJson := `{
+		"phrase": "fnord",
+		"context": ["home"],
+		"expires_in": null
+	}`
+	filter = suite.setFilterExpiration(id, nil, nil, nil, &requestJson)
+	suite.Nil(filter.ExpiresAt)
+}
diff --git a/internal/api/client/filters/v1/validate.go b/internal/api/client/filters/v1/validate.go
index 9e876c8cf..9e31abb89 100644
--- a/internal/api/client/filters/v1/validate.go
+++ b/internal/api/client/filters/v1/validate.go
@@ -46,12 +46,11 @@ func validateNormalizeCreateUpdateFilter(form *apimodel.FilterCreateUpdateReques
 		return errors.New("irreversible aka server-side drop filters are not supported yet")
 	}
 
-	// Normalize filter expiry if necessary.
-	if form.ExpiresInI != nil {
-		// If we parsed this as JSON, expires_in
-		// may be either a float64 or a string.
+	// If `expires_in` was provided
+	// as JSON, then normalize it.
+	if form.ExpiresInI.IsSpecified() {
 		var err error
-		form.ExpiresIn, err = apiutil.ParseDuration(
+		form.ExpiresIn, err = apiutil.ParseNullableDuration(
 			form.ExpiresInI,
 			"expires_in",
 		)
@@ -60,10 +59,5 @@ func validateNormalizeCreateUpdateFilter(form *apimodel.FilterCreateUpdateReques
 		}
 	}
 
-	// Interpret zero as indefinite duration.
-	if form.ExpiresIn != nil && *form.ExpiresIn == 0 {
-		form.ExpiresIn = nil
-	}
-
 	return nil
 }
diff --git a/internal/api/client/filters/v2/filterpost.go b/internal/api/client/filters/v2/filterpost.go
index 632c4402f..ad6e83060 100644
--- a/internal/api/client/filters/v2/filterpost.go
+++ b/internal/api/client/filters/v2/filterpost.go
@@ -225,12 +225,11 @@ func validateNormalizeCreateFilter(form *apimodel.FilterCreateRequestV2) error {
 	// Apply defaults for missing fields.
 	form.FilterAction = util.Ptr(action)
 
-	// Normalize filter expiry if necessary.
-	if form.ExpiresInI != nil {
-		// If we parsed this as JSON, expires_in
-		// may be either a float64 or a string.
+	// If `expires_in` was provided
+	// as JSON, then normalize it.
+	if form.ExpiresInI.IsSpecified() {
 		var err error
-		form.ExpiresIn, err = apiutil.ParseDuration(
+		form.ExpiresIn, err = apiutil.ParseNullableDuration(
 			form.ExpiresInI,
 			"expires_in",
 		)
@@ -239,11 +238,6 @@ func validateNormalizeCreateFilter(form *apimodel.FilterCreateRequestV2) error {
 		}
 	}
 
-	// Interpret zero as indefinite duration.
-	if form.ExpiresIn != nil && *form.ExpiresIn == 0 {
-		form.ExpiresIn = nil
-	}
-
 	// Normalize and validate new keywords and statuses.
 	for i, formKeyword := range form.Keywords {
 		if err := validate.FilterKeyword(formKeyword.Keyword); err != nil {
diff --git a/internal/api/client/filters/v2/filterpost_test.go b/internal/api/client/filters/v2/filterpost_test.go
index 6e378874c..7a79f4665 100644
--- a/internal/api/client/filters/v2/filterpost_test.go
+++ b/internal/api/client/filters/v2/filterpost_test.go
@@ -36,7 +36,7 @@ import (
 	"github.com/superseriousbusiness/gotosocial/testrig"
 )
 
-func (suite *FiltersTestSuite) postFilter(title *string, context *[]string, action *string, expiresIn *int, keywordsAttributesKeyword *[]string, keywordsAttributesWholeWord *[]bool, statusesAttributesStatusID *[]string, requestJson *string, expectedHTTPStatus int, expectedBody string) (*apimodel.FilterV2, error) {
+func (suite *FiltersTestSuite) postFilter(title *string, context *[]string, action *string, expiresIn *int, expiresInStr *string, keywordsAttributesWholeWord *[]bool, statusesAttributesStatusID *[]string, requestJson *string, expectedHTTPStatus int, expectedBody string, keywordsAttributesKeyword *[]string) (*apimodel.FilterV2, error) {
 	// instantiate recorder + test context
 	recorder := httptest.NewRecorder()
 	ctx, _ := testrig.CreateGinTestContext(recorder, nil)
@@ -64,6 +64,8 @@ func (suite *FiltersTestSuite) postFilter(title *string, context *[]string, acti
 		}
 		if expiresIn != nil {
 			ctx.Request.Form["expires_in"] = []string{strconv.Itoa(*expiresIn)}
+		} else if expiresInStr != nil {
+			ctx.Request.Form["expires_in"] = []string{*expiresInStr}
 		}
 		if keywordsAttributesKeyword != nil {
 			ctx.Request.Form["keywords_attributes[][keyword]"] = *keywordsAttributesKeyword
@@ -130,7 +132,7 @@ func (suite *FiltersTestSuite) TestPostFilterFull() {
 	keywordsAttributesWholeWord := []bool{true, false}
 	// Checked in lexical order by status ID, so keep this sorted.
 	statusAttributesStatusID := []string{"01HEN2QRFA8H3C6QPN7RD4KSR6", "01HEWV37MHV8BAC8ANFGVRRM5D"}
-	filter, err := suite.postFilter(&title, &context, &action, &expiresIn, &keywordsAttributesKeyword, &keywordsAttributesWholeWord, &statusAttributesStatusID, nil, http.StatusOK, "")
+	filter, err := suite.postFilter(&title, &context, &action, &expiresIn, nil, &keywordsAttributesWholeWord, &statusAttributesStatusID, nil, http.StatusOK, "", &keywordsAttributesKeyword)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -197,7 +199,7 @@ func (suite *FiltersTestSuite) TestPostFilterFullJSON() {
 			}
 		]
 	}`
-	filter, err := suite.postFilter(nil, nil, nil, nil, nil, nil, nil, &requestJson, http.StatusOK, "")
+	filter, err := suite.postFilter(nil, nil, nil, nil, nil, nil, nil, &requestJson, http.StatusOK, "", nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -245,7 +247,7 @@ func (suite *FiltersTestSuite) TestPostFilterMinimal() {
 
 	title := "GNU/Linux"
 	context := []string{"home"}
-	filter, err := suite.postFilter(&title, &context, nil, nil, nil, nil, nil, nil, http.StatusOK, "")
+	filter, err := suite.postFilter(&title, &context, nil, nil, nil, nil, nil, nil, http.StatusOK, "", nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -267,7 +269,7 @@ func (suite *FiltersTestSuite) TestPostFilterMinimal() {
 func (suite *FiltersTestSuite) TestPostFilterEmptyTitle() {
 	title := ""
 	context := []string{"home"}
-	_, err := suite.postFilter(&title, &context, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.postFilter(&title, &context, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "", nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -275,7 +277,7 @@ func (suite *FiltersTestSuite) TestPostFilterEmptyTitle() {
 
 func (suite *FiltersTestSuite) TestPostFilterMissingTitle() {
 	context := []string{"home"}
-	_, err := suite.postFilter(nil, &context, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.postFilter(nil, &context, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "", nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -284,7 +286,7 @@ func (suite *FiltersTestSuite) TestPostFilterMissingTitle() {
 func (suite *FiltersTestSuite) TestPostFilterEmptyContext() {
 	title := "GNU/Linux"
 	context := []string{}
-	_, err := suite.postFilter(&title, &context, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.postFilter(&title, &context, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "", nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -292,7 +294,7 @@ func (suite *FiltersTestSuite) TestPostFilterEmptyContext() {
 
 func (suite *FiltersTestSuite) TestPostFilterMissingContext() {
 	title := "GNU/Linux"
-	_, err := suite.postFilter(&title, nil, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.postFilter(&title, nil, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "", nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -301,8 +303,37 @@ func (suite *FiltersTestSuite) TestPostFilterMissingContext() {
 // Creating another filter with the same title should fail.
 func (suite *FiltersTestSuite) TestPostFilterTitleConflict() {
 	title := suite.testFilters["local_account_1_filter_1"].Title
-	_, err := suite.postFilter(&title, nil, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "")
+	_, err := suite.postFilter(&title, nil, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, "", nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
 }
+
+// postFilterWithExpiration creates a filter with optional expiration.
+func (suite *FiltersTestSuite) postFilterWithExpiration(title *string, expiresIn *int, expiresInStr *string, requestJson *string) *apimodel.FilterV2 {
+	context := []string{"home"}
+	filter, err := suite.postFilter(title, &context, nil, expiresIn, expiresInStr, nil, nil, requestJson, http.StatusOK, "", nil)
+	if err != nil {
+		suite.FailNow(err.Error())
+	}
+	return filter
+}
+
+// Regression test for https://github.com/superseriousbusiness/gotosocial/issues/3497
+func (suite *FiltersTestSuite) TestPostFilterWithEmptyStringExpiration() {
+	title := "Form Crimes"
+	expiresInStr := ""
+	filter := suite.postFilterWithExpiration(&title, nil, &expiresInStr, nil)
+	suite.Nil(filter.ExpiresAt)
+}
+
+// Regression test related to https://github.com/superseriousbusiness/gotosocial/issues/3497
+func (suite *FiltersTestSuite) TestPostFilterWithNullExpirationJSON() {
+	requestJson := `{
+		"title": "JSON Crimes",
+		"context": ["home"],
+		"expires_in": null
+	}`
+	filter := suite.postFilterWithExpiration(nil, nil, nil, &requestJson)
+	suite.Nil(filter.ExpiresAt)
+}
diff --git a/internal/api/client/filters/v2/filterput.go b/internal/api/client/filters/v2/filterput.go
index cde03360d..9c1b56dd6 100644
--- a/internal/api/client/filters/v2/filterput.go
+++ b/internal/api/client/filters/v2/filterput.go
@@ -269,12 +269,11 @@ func validateNormalizeUpdateFilter(form *apimodel.FilterUpdateRequestV2) error {
 		}
 	}
 
-	// Normalize filter expiry if necessary.
-	if form.ExpiresInI != nil {
-		// If we parsed this as JSON, expires_in
-		// may be either a float64 or a string.
+	// If `expires_in` was provided
+	// as JSON, then normalize it.
+	if form.ExpiresInI.IsSpecified() {
 		var err error
-		form.ExpiresIn, err = apiutil.ParseDuration(
+		form.ExpiresIn, err = apiutil.ParseNullableDuration(
 			form.ExpiresInI,
 			"expires_in",
 		)
@@ -283,11 +282,6 @@ func validateNormalizeUpdateFilter(form *apimodel.FilterUpdateRequestV2) error {
 		}
 	}
 
-	// Interpret zero as indefinite duration.
-	if form.ExpiresIn != nil && *form.ExpiresIn == 0 {
-		form.ExpiresIn = nil
-	}
-
 	// Normalize and validate updates.
 	for i, formKeyword := range form.Keywords {
 		if formKeyword.Keyword != nil {
diff --git a/internal/api/client/filters/v2/filterput_test.go b/internal/api/client/filters/v2/filterput_test.go
index d82d84b20..afa858ba9 100644
--- a/internal/api/client/filters/v2/filterput_test.go
+++ b/internal/api/client/filters/v2/filterput_test.go
@@ -36,7 +36,7 @@ import (
 	"github.com/superseriousbusiness/gotosocial/testrig"
 )
 
-func (suite *FiltersTestSuite) putFilter(filterID string, title *string, context *[]string, action *string, expiresIn *int, keywordsAttributesID *[]string, keywordsAttributesKeyword *[]string, keywordsAttributesWholeWord *[]bool, keywordsAttributesDestroy *[]bool, statusesAttributesID *[]string, statusesAttributesStatusID *[]string, statusesAttributesDestroy *[]bool, requestJson *string, expectedHTTPStatus int, expectedBody string) (*apimodel.FilterV2, error) {
+func (suite *FiltersTestSuite) putFilter(filterID string, title *string, context *[]string, action *string, expiresIn *int, expiresInStr *string, keywordsAttributesKeyword *[]string, keywordsAttributesWholeWord *[]bool, keywordsAttributesDestroy *[]bool, statusesAttributesID *[]string, statusesAttributesStatusID *[]string, statusesAttributesDestroy *[]bool, requestJson *string, expectedHTTPStatus int, expectedBody string, keywordsAttributesID *[]string) (*apimodel.FilterV2, error) {
 	// instantiate recorder + test context
 	recorder := httptest.NewRecorder()
 	ctx, _ := testrig.CreateGinTestContext(recorder, nil)
@@ -64,6 +64,8 @@ func (suite *FiltersTestSuite) putFilter(filterID string, title *string, context
 		}
 		if expiresIn != nil {
 			ctx.Request.Form["expires_in"] = []string{strconv.Itoa(*expiresIn)}
+		} else if expiresInStr != nil {
+			ctx.Request.Form["expires_in"] = []string{*expiresInStr}
 		}
 		if keywordsAttributesID != nil {
 			ctx.Request.Form["keywords_attributes[][id]"] = *keywordsAttributesID
@@ -159,7 +161,7 @@ func (suite *FiltersTestSuite) TestPutFilterFull() {
 	keywordsAttributesWholeWord := []bool{true, false, true}
 	keywordsAttributesDestroy := []bool{false, true}
 	statusesAttributesStatusID := []string{suite.testStatuses["remote_account_1_status_2"].ID}
-	filter, err := suite.putFilter(id, &title, &context, &action, &expiresIn, &keywordsAttributesID, &keywordsAttributesKeyword, &keywordsAttributesWholeWord, &keywordsAttributesDestroy, nil, &statusesAttributesStatusID, nil, nil, http.StatusOK, "")
+	filter, err := suite.putFilter(id, &title, &context, &action, &expiresIn, nil, &keywordsAttributesKeyword, &keywordsAttributesWholeWord, &keywordsAttributesDestroy, nil, &statusesAttributesStatusID, nil, nil, http.StatusOK, "", &keywordsAttributesID)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -231,7 +233,7 @@ func (suite *FiltersTestSuite) TestPutFilterFullJSON() {
 			}
 		]
 	}`
-	filter, err := suite.putFilter(id, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, &requestJson, http.StatusOK, "")
+	filter, err := suite.putFilter(id, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, &requestJson, http.StatusOK, "", nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -281,7 +283,7 @@ func (suite *FiltersTestSuite) TestPutFilterMinimal() {
 	id := suite.testFilters["local_account_1_filter_1"].ID
 	title := "GNU/Linux"
 	context := []string{"home"}
-	filter, err := suite.putFilter(id, &title, &context, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusOK, "")
+	filter, err := suite.putFilter(id, &title, &context, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusOK, "", nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -302,7 +304,7 @@ func (suite *FiltersTestSuite) TestPutFilterEmptyTitle() {
 	id := suite.testFilters["local_account_1_filter_1"].ID
 	title := ""
 	context := []string{"home"}
-	_, err := suite.putFilter(id, &title, &context, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, `{"error":"Unprocessable Entity: filter title must be provided, and must be no more than 200 chars"}`)
+	_, err := suite.putFilter(id, &title, &context, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, `{"error":"Unprocessable Entity: filter title must be provided, and must be no more than 200 chars"}`, nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -312,7 +314,7 @@ func (suite *FiltersTestSuite) TestPutFilterEmptyContext() {
 	id := suite.testFilters["local_account_1_filter_1"].ID
 	title := "GNU/Linux"
 	context := []string{}
-	_, err := suite.putFilter(id, &title, &context, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, `{"error":"Unprocessable Entity: at least one filter context is required"}`)
+	_, err := suite.putFilter(id, &title, &context, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusUnprocessableEntity, `{"error":"Unprocessable Entity: at least one filter context is required"}`, nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -322,7 +324,7 @@ func (suite *FiltersTestSuite) TestPutFilterEmptyContext() {
 func (suite *FiltersTestSuite) TestPutFilterTitleConflict() {
 	id := suite.testFilters["local_account_1_filter_1"].ID
 	title := suite.testFilters["local_account_1_filter_2"].Title
-	_, err := suite.putFilter(id, &title, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusConflict, `{"error":"Conflict: you already have a filter with this title"}`)
+	_, err := suite.putFilter(id, &title, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusConflict, `{"error":"Conflict: you already have a filter with this title"}`, nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -332,7 +334,7 @@ func (suite *FiltersTestSuite) TestPutAnotherAccountsFilter() {
 	id := suite.testFilters["local_account_2_filter_1"].ID
 	title := "GNU/Linux"
 	context := []string{"home"}
-	_, err := suite.putFilter(id, &title, &context, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusNotFound, `{"error":"Not Found"}`)
+	_, err := suite.putFilter(id, &title, &context, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusNotFound, `{"error":"Not Found"}`, nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
@@ -342,8 +344,70 @@ func (suite *FiltersTestSuite) TestPutNonexistentFilter() {
 	id := "not_even_a_real_ULID"
 	phrase := "GNU/Linux"
 	context := []string{"home"}
-	_, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusNotFound, `{"error":"Not Found"}`)
+	_, err := suite.putFilter(id, &phrase, &context, nil, nil, nil, nil, nil, nil, nil, nil, nil, nil, http.StatusNotFound, `{"error":"Not Found"}`, nil)
 	if err != nil {
 		suite.FailNow(err.Error())
 	}
 }
+
+// setFilterExpiration sets filter expiration.
+func (suite *FiltersTestSuite) setFilterExpiration(id string, expiresIn *int, expiresInStr *string, requestJson *string) *apimodel.FilterV2 {
+	filter, err := suite.putFilter(id, nil, nil, nil, expiresIn, expiresInStr, nil, nil, nil, nil, nil, nil, requestJson, http.StatusOK, "", nil)
+	if err != nil {
+		suite.FailNow(err.Error())
+	}
+	return filter
+}
+
+// Regression test for https://github.com/superseriousbusiness/gotosocial/issues/3497
+func (suite *FiltersTestSuite) TestPutFilterUnsetExpirationDateEmptyString() {
+	id := suite.testFilters["local_account_1_filter_2"].ID
+
+	// Setup: set an expiration date for the filter.
+	expiresIn := 86400
+	filter := suite.setFilterExpiration(id, &expiresIn, nil, nil)
+	if !suite.NotNil(filter.ExpiresAt) {
+		suite.FailNow("Test precondition failed")
+	}
+
+	// Unset the filter's expiration date by setting it to an empty string.
+	expiresInStr := ""
+	filter = suite.setFilterExpiration(id, nil, &expiresInStr, nil)
+	suite.Nil(filter.ExpiresAt)
+}
+
+// Regression test related to https://github.com/superseriousbusiness/gotosocial/issues/3497
+func (suite *FiltersTestSuite) TestPutFilterUnsetExpirationDateNullJSON() {
+	id := suite.testFilters["local_account_1_filter_3"].ID
+
+	// Setup: set an expiration date for the filter.
+	expiresIn := 86400
+	filter := suite.setFilterExpiration(id, &expiresIn, nil, nil)
+	if !suite.NotNil(filter.ExpiresAt) {
+		suite.FailNow("Test precondition failed")
+	}
+
+	// Unset the filter's expiration date by setting it to a null literal.
+	requestJson := `{
+		"expires_in": null
+	}`
+	filter = suite.setFilterExpiration(id, nil, nil, &requestJson)
+	suite.Nil(filter.ExpiresAt)
+}
+
+// Regression test related to https://github.com/superseriousbusiness/gotosocial/issues/3497
+func (suite *FiltersTestSuite) TestPutFilterUnalteredExpirationDateJSON() {
+	id := suite.testFilters["local_account_1_filter_4"].ID
+
+	// Setup: set an expiration date for the filter.
+	expiresIn := 86400
+	filter := suite.setFilterExpiration(id, &expiresIn, nil, nil)
+	if !suite.NotNil(filter.ExpiresAt) {
+		suite.FailNow("Test precondition failed")
+	}
+
+	// Update nothing. There should still be an expiration date.
+	requestJson := `{}`
+	filter = suite.setFilterExpiration(id, nil, nil, &requestJson)
+	suite.NotNil(filter.ExpiresAt)
+}
diff --git a/internal/api/model/filterv1.go b/internal/api/model/filterv1.go
index 1c3b5fb8e..0b092627e 100644
--- a/internal/api/model/filterv1.go
+++ b/internal/api/model/filterv1.go
@@ -95,5 +95,5 @@ type FilterCreateUpdateRequestV1 struct {
 	// Number of seconds from now that the filter should expire. If omitted, filter never expires.
 	//
 	// Example: 86400
-	ExpiresInI interface{} `json:"expires_in"`
+	ExpiresInI Nullable[any] `json:"expires_in"`
 }
diff --git a/internal/api/model/filterv2.go b/internal/api/model/filterv2.go
index 242c569dc..26b1b22b3 100644
--- a/internal/api/model/filterv2.go
+++ b/internal/api/model/filterv2.go
@@ -134,7 +134,7 @@ type FilterCreateRequestV2 struct {
 	// Number of seconds from now that the filter should expire. If omitted, filter never expires.
 	//
 	// Example: 86400
-	ExpiresInI interface{} `json:"expires_in"`
+	ExpiresInI Nullable[any] `json:"expires_in"`
 
 	// Keywords to be added to the newly created filter.
 	Keywords []FilterKeywordCreateUpdateRequest `form:"-" json:"keywords_attributes" xml:"keywords_attributes"`
@@ -199,7 +199,7 @@ type FilterUpdateRequestV2 struct {
 	// Number of seconds from now that the filter should expire. If omitted, filter never expires.
 	//
 	// Example: 86400
-	ExpiresInI interface{} `json:"expires_in"`
+	ExpiresInI Nullable[any] `json:"expires_in"`
 
 	// Keywords to be added to the filter, modified, or removed.
 	Keywords []FilterKeywordCreateUpdateDeleteRequest `form:"-" json:"keywords_attributes" xml:"keywords_attributes"`
diff --git a/internal/api/model/nullable.go b/internal/api/model/nullable.go
new file mode 100644
index 000000000..4dd02f854
--- /dev/null
+++ b/internal/api/model/nullable.go
@@ -0,0 +1,107 @@
+// GoToSocial
+// Copyright (C) GoToSocial Authors admin@gotosocial.org
+// SPDX-License-Identifier: AGPL-3.0-or-later
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package model
+
+import (
+	"bytes"
+	"encoding/json"
+	"errors"
+)
+
+// Nullable is a generic type, which implements a field that can be one of three states:
+//
+// - field is not set in the request
+// - field is explicitly set to `null` in the request
+// - field is explicitly set to a valid value in the request
+//
+// Nullable is intended to be used with JSON unmarshalling.
+//
+// Adapted from https://github.com/oapi-codegen/nullable/blob/main/nullable.go
+type Nullable[T any] struct {
+	state nullableState
+	value T
+}
+
+type nullableState uint8
+
+const (
+	nullableStateUnspecified nullableState = 0
+	nullableStateNull        nullableState = 1
+	nullableStateSet         nullableState = 2
+)
+
+// Get retrieves the underlying value, if present,
+// and returns an error if the value was not present.
+func (t Nullable[T]) Get() (T, error) {
+	var empty T
+	if t.IsNull() {
+		return empty, errors.New("value is null")
+	}
+
+	if !t.IsSpecified() {
+		return empty, errors.New("value is not specified")
+	}
+
+	return t.value, nil
+}
+
+// IsNull indicates whether the field
+// was sent, and had a value of `null`
+func (t Nullable[T]) IsNull() bool {
+	return t.state == nullableStateNull
+}
+
+// IsSpecified indicates whether the field
+// was sent either as a value or as `null`.
+func (t Nullable[T]) IsSpecified() bool {
+	return t.state != nullableStateUnspecified
+}
+
+// If field is unspecified,
+// UnmarshalJSON won't be called.
+func (t *Nullable[T]) UnmarshalJSON(data []byte) error {
+	// If field is specified as `null`.
+	if bytes.Equal(data, []byte("null")) {
+		t.setNull()
+		return nil
+	}
+
+	// Otherwise, we have an
+	// actual value, so parse it.
+	var v T
+	if err := json.Unmarshal(data, &v); err != nil {
+		return err
+	}
+
+	t.set(v)
+	return nil
+}
+
+// setNull indicates that the field
+// was sent, and had a value of `null`
+func (t *Nullable[T]) setNull() {
+	*t = Nullable[T]{state: nullableStateNull}
+}
+
+// set the underlying value to given value.
+func (t *Nullable[T]) set(value T) {
+	*t = Nullable[T]{
+		state: nullableStateSet,
+		value: value,
+	}
+}
diff --git a/internal/api/util/parseform.go b/internal/api/util/parseform.go
index 19e24189f..3eab065f2 100644
--- a/internal/api/util/parseform.go
+++ b/internal/api/util/parseform.go
@@ -20,12 +20,13 @@ package util
 import (
 	"fmt"
 	"strconv"
+
+	apimodel "github.com/superseriousbusiness/gotosocial/internal/api/model"
+	"github.com/superseriousbusiness/gotosocial/internal/util"
 )
 
-// ParseDuration parses the given raw interface belonging to
+// ParseDuration parses the given raw interface belonging
 // the given fieldName as an integer duration.
-//
-// Will return nil, nil if rawI is the zero value of its type.
 func ParseDuration(rawI any, fieldName string) (*int, error) {
 	var (
 		asInteger int
@@ -60,11 +61,28 @@ func ParseDuration(rawI any, fieldName string) (*int, error) {
 		return nil, err
 	}
 
-	// Someone submitted 0,
-	// don't point to this.
-	if asInteger == 0 {
-		return nil, nil
-	}
-
 	return &asInteger, nil
 }
+
+// ParseNullableDuration is like ParseDuration, but
+// for JSON values that may have been sent as `null`.
+//
+// IsSpecified should be checked and "true" on the
+// given nullable before calling this function.
+func ParseNullableDuration(
+	nullable apimodel.Nullable[any],
+	fieldName string,
+) (*int, error) {
+	if nullable.IsNull() {
+		// Was specified as `null`,
+		// return pointer to zero value.
+		return util.Ptr(0), nil
+	}
+
+	rawI, err := nullable.Get()
+	if err != nil {
+		return nil, err
+	}
+
+	return ParseDuration(rawI, fieldName)
+}
diff --git a/internal/processing/filters/v1/create.go b/internal/processing/filters/v1/create.go
index 18367dfce..86019d2a6 100644
--- a/internal/processing/filters/v1/create.go
+++ b/internal/processing/filters/v1/create.go
@@ -43,7 +43,7 @@ func (p *Processor) Create(ctx context.Context, account *gtsmodel.Account, form
 	if *form.Irreversible {
 		filter.Action = gtsmodel.FilterActionHide
 	}
-	if form.ExpiresIn != nil {
+	if form.ExpiresIn != nil && *form.ExpiresIn != 0 {
 		filter.ExpiresAt = time.Now().Add(time.Second * time.Duration(*form.ExpiresIn))
 	}
 	for _, context := range form.Context {
diff --git a/internal/processing/filters/v1/update.go b/internal/processing/filters/v1/update.go
index 81340b4be..15c5de365 100644
--- a/internal/processing/filters/v1/update.go
+++ b/internal/processing/filters/v1/update.go
@@ -67,7 +67,7 @@ func (p *Processor) Update(
 		action = gtsmodel.FilterActionHide
 	}
 	expiresAt := time.Time{}
-	if form.ExpiresIn != nil {
+	if form.ExpiresIn != nil && *form.ExpiresIn != 0 {
 		expiresAt = time.Now().Add(time.Second * time.Duration(*form.ExpiresIn))
 	}
 	contextHome := false
diff --git a/internal/processing/filters/v2/create.go b/internal/processing/filters/v2/create.go
index 7095a643c..60dd46f43 100644
--- a/internal/processing/filters/v2/create.go
+++ b/internal/processing/filters/v2/create.go
@@ -41,7 +41,7 @@ func (p *Processor) Create(ctx context.Context, account *gtsmodel.Account, form
 		Title:     form.Title,
 		Action:    typeutils.APIFilterActionToFilterAction(*form.FilterAction),
 	}
-	if form.ExpiresIn != nil {
+	if form.ExpiresIn != nil && *form.ExpiresIn != 0 {
 		filter.ExpiresAt = time.Now().Add(time.Second * time.Duration(*form.ExpiresIn))
 	}
 	for _, context := range form.Context {
diff --git a/internal/processing/filters/v2/update.go b/internal/processing/filters/v2/update.go
index 0d443d58e..d5b5cce01 100644
--- a/internal/processing/filters/v2/update.go
+++ b/internal/processing/filters/v2/update.go
@@ -21,8 +21,6 @@ import (
 	"context"
 	"errors"
 	"fmt"
-	"time"
-
 	apimodel "github.com/superseriousbusiness/gotosocial/internal/api/model"
 	"github.com/superseriousbusiness/gotosocial/internal/db"
 	"github.com/superseriousbusiness/gotosocial/internal/gtserror"
@@ -30,6 +28,7 @@ import (
 	"github.com/superseriousbusiness/gotosocial/internal/id"
 	"github.com/superseriousbusiness/gotosocial/internal/typeutils"
 	"github.com/superseriousbusiness/gotosocial/internal/util"
+	"time"
 )
 
 // Update an existing filter for the given account, using the provided parameters.
@@ -68,10 +67,16 @@ func (p *Processor) Update(
 		filterColumns = append(filterColumns, "action")
 		filter.Action = typeutils.APIFilterActionToFilterAction(*form.FilterAction)
 	}
-	// TODO: (Vyr) is it possible to unset a filter expiration with this API?
 	if form.ExpiresIn != nil {
+		expiresIn := *form.ExpiresIn
 		filterColumns = append(filterColumns, "expires_at")
-		filter.ExpiresAt = time.Now().Add(time.Second * time.Duration(*form.ExpiresIn))
+		if expiresIn == 0 {
+			// Unset the expiration date.
+			filter.ExpiresAt = time.Time{}
+		} else {
+			// Update the expiration date.
+			filter.ExpiresAt = time.Now().Add(time.Second * time.Duration(expiresIn))
+		}
 	}
 	if form.Context != nil {
 		filterColumns = append(filterColumns,

From 61f8f1e0e3236993f5522215f1900d35e49680c0 Mon Sep 17 00:00:00 2001
From: kim <89579420+NyaaaWhatsUpDoc@users.noreply.github.com>
Date: Tue, 26 Nov 2024 16:25:48 +0000
Subject: [PATCH 11/26] pull in ncruces/go-sqlite3 v0.20.3 with
 tetratelabs/wazero v1.8.2 (#3574)

---
 go.mod                                        |   4 +-
 go.sum                                        |   8 +-
 .../github.com/ncruces/go-sqlite3/README.md   |  15 ++-
 .../ncruces/go-sqlite3/embed/README.md        |   2 +-
 .../ncruces/go-sqlite3/embed/sqlite3.wasm     | Bin 1401377 -> 1401582 bytes
 .../github.com/ncruces/go-sqlite3/go.work.sum |   1 +
 .../ncruces/go-sqlite3/vfs/README.md          |   1 -
 .../github.com/ncruces/go-sqlite3/vfs/cksm.go |   8 ++
 .../ncruces/go-sqlite3/vfs/const.go           |   1 +
 .../github.com/ncruces/go-sqlite3/vfs/file.go |   2 +-
 .../ncruces/go-sqlite3/vfs/os_bsd.go          |  25 +++--
 .../ncruces/go-sqlite3/vfs/os_dotlk.go        |   3 +-
 .../ncruces/go-sqlite3/vfs/os_windows.go      |   9 +-
 .../ncruces/go-sqlite3/vfs/shm_bsd.go         | 100 +++++-------------
 .../ncruces/go-sqlite3/vfs/shm_copy.go        |   7 +-
 .../ncruces/go-sqlite3/vfs/shm_dotlk.go       |  99 +++++------------
 .../ncruces/go-sqlite3/vfs/shm_memlk.go       |  55 ++++++++++
 .../ncruces/go-sqlite3/vfs/shm_windows.go     |  22 ++--
 .../github.com/tetratelabs/wazero/README.md   |  13 ++-
 .../tetratelabs/wazero/config_supported.go    |   9 +-
 .../tetratelabs/wazero/config_unsupported.go  |   2 +-
 .../tetratelabs/wazero/experimental/memory.go |   2 +-
 .../wazevo/backend/isa/amd64/machine.go       |   2 +-
 .../backend/isa/arm64/machine_relocation.go   |  15 ++-
 .../internal/engine/wazevo/backend/machine.go |   2 +
 .../wazero/internal/engine/wazevo/engine.go   |   2 +-
 .../wazero/internal/platform/cpuid.go         |   5 +
 .../wazero/internal/platform/cpuid_amd64.go   |   9 +-
 .../wazero/internal/platform/cpuid_amd64.s    |   4 +-
 .../wazero/internal/platform/cpuid_arm64.go   |  71 +++++++++++++
 .../wazero/internal/platform/cpuid_arm64.s    |  21 ++++
 .../internal/platform/cpuid_unsupported.go    |   2 +-
 .../wazero/internal/platform/mmap_other.go    |   2 +-
 .../wazero/internal/platform/mmap_unix.go     |  17 +--
 .../internal/platform/mmap_unsupported.go     |   2 +-
 .../wazero/internal/platform/mprotect_bsd.go  |  22 ++++
 .../internal/platform/mprotect_syscall.go     |  10 ++
 .../internal/platform/mprotect_unsupported.go |   9 ++
 .../wazero/internal/platform/platform.go      |   9 +-
 .../internal/platform/platform_arm64.go       |   4 +-
 vendor/modules.txt                            |   4 +-
 41 files changed, 374 insertions(+), 226 deletions(-)
 create mode 100644 vendor/github.com/ncruces/go-sqlite3/vfs/shm_memlk.go
 create mode 100644 vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_arm64.go
 create mode 100644 vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_arm64.s
 create mode 100644 vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_bsd.go
 create mode 100644 vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_syscall.go
 create mode 100644 vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_unsupported.go

diff --git a/go.mod b/go.mod
index d8e34f7d1..6f1ec2b26 100644
--- a/go.mod
+++ b/go.mod
@@ -62,7 +62,7 @@ require (
 	github.com/miekg/dns v1.1.62
 	github.com/minio/minio-go/v7 v7.0.80
 	github.com/mitchellh/mapstructure v1.5.0
-	github.com/ncruces/go-sqlite3 v0.20.2
+	github.com/ncruces/go-sqlite3 v0.20.3
 	github.com/oklog/ulid v1.3.1
 	github.com/prometheus/client_golang v1.20.5
 	github.com/spf13/cobra v1.8.1
@@ -73,7 +73,7 @@ require (
 	github.com/superseriousbusiness/oauth2/v4 v4.3.2-SSB.0.20230227143000-f4900831d6c8
 	github.com/tdewolff/minify/v2 v2.21.2
 	github.com/technologize/otel-go-contrib v1.1.1
-	github.com/tetratelabs/wazero v1.8.1
+	github.com/tetratelabs/wazero v1.8.2
 	github.com/tomnomnom/linkheader v0.0.0-20180905144013-02ca5825eb80
 	github.com/ulule/limiter/v3 v3.11.2
 	github.com/uptrace/bun v1.2.6
diff --git a/go.sum b/go.sum
index ce53cf54b..d190203a1 100644
--- a/go.sum
+++ b/go.sum
@@ -434,8 +434,8 @@ github.com/moul/http2curl v1.0.0 h1:dRMWoAtb+ePxMlLkrCbAqh4TlPHXvoGUSQ323/9Zahs=
 github.com/moul/http2curl v1.0.0/go.mod h1:8UbvGypXm98wA/IqH45anm5Y2Z6ep6O31QGOAZ3H0fQ=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
-github.com/ncruces/go-sqlite3 v0.20.2 h1:cMLIwrLZQuCWVCEOowSqlIlpzgbag3jnYVW4NM5u01M=
-github.com/ncruces/go-sqlite3 v0.20.2/go.mod h1:yL4ZNWGsr1/8pcLfpPW1RT1WFdvyeHonrgIwwi4rvkg=
+github.com/ncruces/go-sqlite3 v0.20.3 h1:+4G4uEqOeusF0yRuQVUl9fuoEebUolwQSnBUjYBLYIw=
+github.com/ncruces/go-sqlite3 v0.20.3/go.mod h1:ojLIAB243gtz68Eo283Ps+k9PyR3dvzS+9/RgId4+AA=
 github.com/ncruces/go-strftime v0.1.9 h1:bY0MQC28UADQmHmaF5dgpLmImcShSi2kHU9XLdhx/f4=
 github.com/ncruces/go-strftime v0.1.9/go.mod h1:Fwc5htZGVVkseilnfgOVb9mKy6w1naJmn9CehxcKcls=
 github.com/ncruces/julianday v1.0.0 h1:fH0OKwa7NWvniGQtxdJRxAgkBMolni2BjDHaWTxqt7M=
@@ -553,8 +553,8 @@ github.com/tdewolff/test v1.0.11-0.20240106005702-7de5f7df4739 h1:IkjBCtQOOjIn03
 github.com/tdewolff/test v1.0.11-0.20240106005702-7de5f7df4739/go.mod h1:XPuWBzvdUzhCuxWO1ojpXsyzsA5bFoS3tO/Q3kFuTG8=
 github.com/technologize/otel-go-contrib v1.1.1 h1:wZH9aSPNWZWIkEh3vfaKfMb15AJ80jJ1aVj/4GZdqIw=
 github.com/technologize/otel-go-contrib v1.1.1/go.mod h1:dCN/wj2WyUO8aFZFdIN+6tfJHImjTML/8r2YVYAy3So=
-github.com/tetratelabs/wazero v1.8.1 h1:NrcgVbWfkWvVc4UtT4LRLDf91PsOzDzefMdwhLfA550=
-github.com/tetratelabs/wazero v1.8.1/go.mod h1:yAI0XTsMBhREkM/YDAK/zNou3GoiAce1P6+rp/wQhjs=
+github.com/tetratelabs/wazero v1.8.2 h1:yIgLR/b2bN31bjxwXHD8a3d+BogigR952csSDdLYEv4=
+github.com/tetratelabs/wazero v1.8.2/go.mod h1:yAI0XTsMBhREkM/YDAK/zNou3GoiAce1P6+rp/wQhjs=
 github.com/tidwall/btree v0.0.0-20191029221954-400434d76274 h1:G6Z6HvJuPjG6XfNGi/feOATzeJrfgTNJY+rGrHbA04E=
 github.com/tidwall/btree v0.0.0-20191029221954-400434d76274/go.mod h1:huei1BkDWJ3/sLXmO+bsCNELL+Bp2Kks9OLyQFkzvA8=
 github.com/tidwall/buntdb v1.1.2 h1:noCrqQXL9EKMtcdwJcmuVKSEjqu1ua99RHHgbLTEHRo=
diff --git a/vendor/github.com/ncruces/go-sqlite3/README.md b/vendor/github.com/ncruces/go-sqlite3/README.md
index 935b9f254..f5394ab22 100644
--- a/vendor/github.com/ncruces/go-sqlite3/README.md
+++ b/vendor/github.com/ncruces/go-sqlite3/README.md
@@ -77,7 +77,7 @@ It also benefits greatly from [SQLite's](https://sqlite.org/testing.html) and
 Every commit is [tested](https://github.com/ncruces/go-sqlite3/wiki/Test-matrix) on
 Linux (amd64/arm64/386/riscv64/ppc64le/s390x), macOS (amd64/arm64),
 Windows (amd64), FreeBSD (amd64), OpenBSD (amd64), NetBSD (amd64),
-illumos (amd64), and Solaris (amd64).
+DragonFly BSD (amd64), illumos (amd64), and Solaris (amd64).
 
 The Go VFS is tested by running SQLite's
 [mptest](https://github.com/sqlite/sqlite/blob/master/mptest/mptest.c).
@@ -90,9 +90,20 @@ Perfomance of the [`database/sql`](https://pkg.go.dev/database/sql) driver is
 The Wasm and VFS layers are also tested by running SQLite's
 [speedtest1](https://github.com/sqlite/sqlite/blob/master/test/speedtest1.c).
 
+### FAQ, issues, new features
+
+For questions, please see [Discussions](https://github.com/ncruces/go-sqlite3/discussions/categories/q-a).
+
+Also, post there if you used this driver for something interesting
+([_"Show and tell"_](https://github.com/ncruces/go-sqlite3/discussions/categories/show-and-tell)),
+have an [idea](https://github.com/ncruces/go-sqlite3/discussions/categories/ideas)…
+
+The [Issue](https://github.com/ncruces/go-sqlite3/issues) tracker is for bugs we want fixed,
+and features we're working on, planning to work on, or asking for help with.
+
 ### Alternatives
 
 - [`modernc.org/sqlite`](https://pkg.go.dev/modernc.org/sqlite)
 - [`crawshaw.io/sqlite`](https://pkg.go.dev/crawshaw.io/sqlite)
 - [`github.com/mattn/go-sqlite3`](https://pkg.go.dev/github.com/mattn/go-sqlite3)
-- [`github.com/zombiezen/go-sqlite`](https://pkg.go.dev/github.com/zombiezen/go-sqlite)
\ No newline at end of file
+- [`github.com/zombiezen/go-sqlite`](https://pkg.go.dev/github.com/zombiezen/go-sqlite)
diff --git a/vendor/github.com/ncruces/go-sqlite3/embed/README.md b/vendor/github.com/ncruces/go-sqlite3/embed/README.md
index b7b25c461..7a7a52a49 100644
--- a/vendor/github.com/ncruces/go-sqlite3/embed/README.md
+++ b/vendor/github.com/ncruces/go-sqlite3/embed/README.md
@@ -1,6 +1,6 @@
 # Embeddable Wasm build of SQLite
 
-This folder includes an embeddable Wasm build of SQLite 3.47.0 for use with
+This folder includes an embeddable Wasm build of SQLite 3.47.1 for use with
 [`github.com/ncruces/go-sqlite3`](https://pkg.go.dev/github.com/ncruces/go-sqlite3).
 
 The following optional features are compiled in:
diff --git a/vendor/github.com/ncruces/go-sqlite3/embed/sqlite3.wasm b/vendor/github.com/ncruces/go-sqlite3/embed/sqlite3.wasm
index 173ad0e086d572c55752c13b2ca54cb100d6f863..2e86b6f5d233e1771cb68f15dc8deec9bc7c47c2 100644
GIT binary patch
delta 4372
zcma)9dwf*Iy+6O-%$z-&b2i!RBMEts*#&fY<-uc<=!Lt3@)A_q3S6yLd3x{W))Gj4
zAecpvU{MUjGN2Z)gqJ*mpDhelga|>)OCC~75wIxKi;56HKt$TlECKc2_I~=;IcMhg
zn(ut)H{bJW^UyE14PD!}5dSzU*}rgA7<MGji@`w_K^kWAi(0E~2HKp7L?V%(RUY7G
za?J4A1E4v1aiM4rJCha7X%-w#-o9%cz{TX{-O_=b$vKCTh@ZYJC$DDt$x%n{ONX7w
zO`jK7IP0_Ik#ltbYm$$AbsvS-liR<p1vruX(Kj=K_(HS#&<km$utNP+z}`Dyg;FoT
zlwvreDmH_k;>=6xuC1_|!cKMNU6@PYn5y3ivjMKE4!hw!Km1;u{|giXysrWu!*Lh<
zUVVKMCJ=o3ZS}}0xY!Z?M~%(KjtnlVx_q2O;fVBvFbTg^Z-;OOfm%6YJ}XcUcfex=
zPO5<&@%0Sy>|Q488Zb-xD=-(I-z$qN@NS&FS0yUYQwclNtOh(y;1l`Oay$zgWYr2R
zg41%*3VZ;rs;et78*?*Aj5`r5;cOs{aZ^nHmPRqcO|eZDufiEc7{eH++%?`~Xgebe
z5sZc1`YpY$$KY<B9>J1K!w`uCR>^&<Fjx+$NJbO~bKs1dVwVy3?kBn2jNo7o*gQ?p
z%CMW0fjU6MFhZ_WY#CmSBfZzMT=(M{@`crS)|1ZNoJFxtPo&FPYw)KqUwyU)5#e2R
zYAwFv!C8%J<|eH1lDb`PIi&*I$eZ?H8=SLCi9MJ`AgKoLM|U6jV1QKh!WfBhqRC_m
zQq`BHK6uzAj5|DN>lr6ZJcjL<HaD-6jB!^KZ+Doy6d>EX5t}p4is1kVh=;9P;Q%<G
ztsn2N7wH!C=Q?;il&(R<8jQ)$gQQIj;pwZmxvCFLpA^2i4^9u=#M8uKj7QMmc&7(2
z#*wFq1F4a_X^h|0XA0co0f%Vh4z?N&@*vlaYcSp&jA6QH<Tv+5BW1=-;faSmtNP${
z@BLxyOJl+ap+jwsZh=vx0v(WZv&hT7|BHbX*(7LRU$ntpYFIYu@(@nhE2lk1=73b$
zkCOrh@2j4Zi8mcqs(v#`w+z^+o_L8&pm0c?T0nRvY*FcJNd|+@RoitW*MbA8;w`d^
z!F*+ICH(>RtGk-XKp(7C^FAQ8J~*rRNrE=aSMAP|-32gTwPey?A<S2k0(8VMn6Hk;
z>Ag9yPL@xl%VDcLHkH<6-5c`JX>=I;TJ4@jNBZHgDw#(MEm*3CETWNgcuhUAhJM1Z
zZnpZ_@94=wtlc079-yz`!VR)wDs8L$f27MY;0^WWaXLCJ{lZ!r0tanwc%Kj#WY^QQ
z4z9{gr|B}-q{g11j{#gzM_Xt+fO>`JXbr$R_4Ija5xAgcUZg!3>`_fu=&Jw=)yS*#
zHipyQk;@1>15(bTtQr<64`V@qRjQrIPE&YE`EB+90VS)_*(=a2(=*s@uwDH)gAD^*
z|2z4kKd^Rcx0gNJ9-7qfo@`WS*rMKih}}VO&IMUIkLJnnXjTfZ$a_Y!hheeWIGSBX
z{OYit%U1^;W_uAEj>wG<v9_`~&K`tD)xMI=vS5!&PGDmJPO02qvJU_j$(Bc1Ke(#O
zA7fV#r~FApC$j$pIH(pr$!Y*D$->F(3P_p%6gvXHm6xAl+hL<@u3-|ks{0dc3&H|b
zIF<EBNXmzwVMWliZ0<A6#Mv!s-b~gDph<o39D5X?N!~e&Rg>q=QaPw2=BbZnvCRzD
ztA#JJdjR*Ht>5u=p$yDrd2m3L%w;76j;j&#S#AK{Qj=D*Ljdop;f?Gb7i^HL*0U;X
zeqZvbtWfq=Y&tI9F9&tNLU}^5L-4w4+Q1GGvUM|)`*O`JncT=4VZR#n7W)lAi-OH;
zHo=B78t81batj*=@F$ty%*Men`Fu0$4kzT>&1?{~NY6Ib3--%F+t^T?aa8AME1R~l
znJ`}seup`LtB=Z`7nr%S`d#)RtX4z*z@7uxAdhTkx5AsU%?|cF>{82iFq=ZNOuol%
z#l&fK<~>FM6Mt0~_OLc?SgyQ(W`Cj3q*{)!p#+ww{>RvIfOpiHkJ)I1dNuR}+v9@6
zs>3Pv5a6s6s`g8kg>X<UIK$Q>oK-{5v4JjVlnXDjTC)C-B|n-*+o(R@um!pBvOE?v
z`{5#Wt<u}F%+9b%{vyj90*$gM%WQ-#a$L6gEZM85_REoh95WC0$&ws12^-b%9P=~4
z<R>Y(<fpl2A#9MYJaZ&$Qt>=<2H@Fs^6d>QSEd)358#ybI!|vhV|^-GmTWFCC7hA>
zw>1aBIk~*8ISRg!PN8`(T$N)B%^{drCpQ$DWjJk}YAH0^11ynQA@e7&QpQ8(RCq&u
z88Z73cv1E2V6GnzS8BhIruss<27Q3j+p3C3tPgFOGtp`fAbU-;y2Mhwp6Wgat-YQ`
zkcU}oucx}#)7D-O*V`V`*Ujw?voR*;OtdP&C9h7jN`T1XC#}(x<T{{UebV|hVDo>e
z^2yeHteeh&tr_6^89-+Mok2I?>lp}VQax=|{wsdudw$57>_63dCe^v!t@%*rBlSau
z2ORhH1i*=EnQC1kKj`r(OG`qd6>x6cYzDVf`V6Zs?H>faW_ly4!HL>B$12Kim13{X
zu|m!b9cFNMZC0aIo7L!6S&eD`F)I6*2^lr*3{g@UX6+4bM9>InP@nPHU2^Dmdt-`3
z6R+y)0j%MsymG?Iliq;imlu7u52#G@+qpnx2ftlk!?d_?Y)&~7PFxt?)h3N`rcri@
zM1od|L}HS@AQ{hyqQw~}QKVWq2#80~;I`O1hjHeu;&ud$?`rq~Kk$F^LqLc+E?d+<
zh<-;DlcOezX>&^$w}Qh{Ys?8#ar&cgH`i1}F^4m5XjPS}JD)T0B1AEuM<ZxN(W@s!
zJ#Z=#30{?#@(|uQcYC+6-0Sg7PDS0Kr<;r_xg=m`J)oTf!nlLRQgxZO2EZG^$PdOK
zg85-Hf`%{#dr%l5m#{*V#Dtb^l$%<0h#K!DQ%fL-;O!bn!DX*bt^%KzGY;1ZZ@yNs
z{P&=pWm4gdhp7B%&~5`v{xWDsoe<Sxyd>V<;IuXwv{f?b?8=0XW#VS%C9q{)#JK}(
zIX2>q$aJ`ildxGCwglDs#*qgj&eASHZgF=%EuCE4tPD}^a8qD)JY<j<52mov5-Fo!
zJQS3#b#!82%g;MHMPSR^PENa+Pm4H#)gebOFJy6V1OwdHkH++y6Tv{pvbisU`JsR?
zLT+J%Ois9`7`hBdRWZ4f!yzCSbaILcG%vWzyOwE5my)}F{h$Lpz-@W5lN0XXZzYqP
z`vt9zhy5ZD*TgiqUpVnTMwxz-C7qpHGW?qKE{yRM%(i@@vr_=Jl${*`e);FlPN6G6
zV?2uo<lj0wdHFu>j$%HyH9f~^b!kL#9QSD!c_r`S2(K@KCE<Wp-~p}0{j#cy6NG>)
z>FP{u<L~b=Y#U>Gv5|jf1%A1*tFybEFM>V7K96CiFw5#{4A)x_6j&WLR)-3(hTHP)
zVy8XWvZ=`F0zrAI$oWY|a6sNaGN~?hR;Jq#{5JuWVXC=p%dRC(5pj4>{;b5A>JMJq
zBtxId%1{<}aYvpnamE!m8ayvgJsj@vOnr16jRfV6oKoueGktnDEbi5`(2)A%l2WJ8
z^6^aXYz&#QxSP}FMjRbL$MO9j4t8_?8-nr|-JFwPt9!dU6Jj9c?g>sa{6@~Hc6!6&
z+I`iI+E?v4?joPgbJdUgimQW@JaHgr=eg>Sp37AaKINGmf%Ua5OFgwMOVevxmS)tp
zEcL3ErI{apQ~bUKwr+U5GECbWq9(*R6*+NHqp6{fPM?}GVsNS-7N-&y`#QJ?(LY*5
z7A^K=-9-e8cQuT@9^fvq-OvoC+|;W<!N-SC%hS|=m!oJh^a!N>Sqy!t4c13kH~-cs
zvUagAW>K9#hf}#{u`k>%<sINC{`Pp4NZ|Mo3J6)P*ArBE2&Xd8;0pnj(FR}Jf|PxZ
zwqH<FB@#DsS^_weRSmuzAo5oYzPvKZ-FkO)xrY9a86QGhpF1L)c!;FVG{nQEX6Ut>
zm+8(!<>3ZjP8X`VOoTDOW2F8T4Ne59j)#eWTMWvHfG8RQ?2xXHFYy&RL`Nf0)Y0Ui
zCBDMU?~O2F+(lz^m-qtN+V_TG1ic!le=-;Nf97(&H;0@k-%=k1pelQr@5Cl3Ro{;B
zkMDhFY1eK&d1<#>O3H5OQO-wJ^c-DUI;Ns$d9+9OkrmO3Q9a5=l#l6I-m`3M_p*xa
vBP+&4E6PerMwX8)?Gdf$URK(@JlZ{4F``>^OwY2i+Kml<wXq>E=B>X2k&1Eg

delta 4376
zcma)9dw5humcQpz)$QB4x06nHrxWrZ)ooxq5<(u>JcsGRNkCzItcb65F%ZG+tbT^a
z;J|3d2_bP10fQ7GuK{8}Cj>S~>8=o!pz>xJhjH8iRPftDJ|6NC1$4jah_H`uXa2fX
zb?W@;)H%O%>fBS?@BMApy&Ed>v1x9{i2UD$VN1t(F*>7HUxNx#TR~$SBgn%{7`J=S
z))Oa;9>aFf=B#7#eG5jy#tynt6u`EQ%B~a(c68jm`wf6&9j?97fo&ZtKIuUCsN<eP
z(^Fwv$F3837G6Hy@#VSs0Izh+yzn5!<sZnti&%cg#cw779O(GR%S{>N$~Gor+elD-
z?}c+EWYJD0w@fG5Ds4Dy`Z+98UGw1CesD-tc7mVcrLWaP+n|lYo67wmEF!R1t=t6*
z08Xf~J+RjgtqMMae1LaU=yN#cf>vdI2~!B3en-tb311h&AJmjgEM)MXYFRG+io#Br
z9l{Qnr}l=hiQxH<<#&qZtLeS)Fd+vQu;xcD=cp-#xG)Vb?vw68Sc>27lS2pLo#eZH
zO!nJ{Jyh!;JQs(}>XkKkn!tWJXDyzE)$*BjSPXxbZR_x1IHBy<FcY&=NsK!YEaB`n
z8snyzeU(Nr!cFlna_H}{=?*P4LVz)hamrnjJqCve#v*7`bPta~1dZ<DUm)yGf*4U8
z&E1@FQ|vb4-UB522N;>(hPeRpr)@aihHD#ms@&LyXFX|JCyMj6AWd#qj}O6Y<+LLr
zY*J|(aj6F{uUBnbG2z9lyJYb`EGOUZa?53FFjLLkhi4I%sV5Ggd$@@SZLypZAk!it
zBr#5|(~4+XnVMFnttU>HXj-MnUKwNuSn_lR$w@VB?iTd%uqjA9lqz|U^Z+Uc2T9N2
zh%t^lMSO(u2pV_N81Fs&Ss3F1huS<ve4Je7ILbqKZ=NF7W4s)Uu^wV`<bO8|4Ts7l
zL6V)xY>on>NCj$6BR8Y?Gl$7{gXEPPvf#S8c%!*sb5p&LNs1o9Q~TuG)5(i4OWpYt
z$z#x|9)Fs6Q$ea{=8&>9P-^26GKIqXs@Dp_(_y`;+(6P8e5}U4L9#7)SJiGIyBRd7
zVcW<EfURnF7rD&`%hdjZq|pb5)&0i_+R&gLI#2fGk%pzVT)!2wRfUf}fzY5f1!&b+
zXi&i#`al+}l26vtwYcFe`RqqDB!|qRwRrVSxqcQM3%^#ZfsXg%4k^z}V!5heF+~fS
zRntlu(FSi^PmeOZI$tf?M33j=d8IL4!{^_Wwe_^88ubU-ng*|`bH`|PO6t)KGz8jp
zhWD4^sC@J^oewAE#nZGEURTS{(CGk2Rq!mm37}35K1UM(tJJ@qrxt;uYTMVeKZCc`
zr7QHe0MDx>-_ctcezjd5A?ysylKUx}3UgHjV;KN1tA|W>nnI%*WwVC~tdZ+d*;3dj
zE7RDmuvz^kjg19Ztv>UzwgPBV^KM}i`e6G-c{t8`Dqj`rL-6|x`pP--!D?0t&&lVj
z*(8{+&R4T<5k6O^C$W<V3*@0Vdj^)Of2d(ESn#$wF@;S8_(c8vG<FbRt}L9+D&d5B
zayq+$c<P{fVg`E*V7vO`OqKxnLf-c@y8^T1m}l4_m?z5;YzM59R}xIZ2DPw`y@xPI
z-B-^>Agq)t8dx#3weD?TCVqED?VrPb0??*X=dxb_w8@4S*i`)HtLAZ+b5-U%*2!SC
z`r|@224Jf!TEvFHyXvt;tc2jd|4EmqT($XScGVBBsZDL{6M#)>UOOA(f);sfGpogo
zznAydvwZmr#b(2Nc~!A*arpsRlxJou|68n+zy|sIx7i2Ksb1N_mH`}AgF4v)0t?ix
z_gE7^mmJf@o`k(}dlxH*1M-_LHVO{QitX$t&?)P;vwQKvA#F%cd1*VF1GCkv_n8B*
zL@xM%U4$j7=|lEBK#R=S$%epMdG}5>7v54wb~2m7MtNc{8-gcKsmMM?0Z)FRiubb~
zZg@$J{1f|>LYpc)%<d)dqDp+m)&g{>$Wc~}P^ad8!S=aehkE!Vdj#<EG1YmB1rfHZ
zgJ;-ggd=M1Id+?iEd9iiuVtFK^1`?5pJ25bcbUDF4NbB~(5!^H@)7-cS+)kvyI`rj
z6g1nRU9QbEpCelol~tEnmK>dB=HOP9beXKrG8e--mD|Jo5^&{Fx%)kqEyFoxF0{y>
z=9uH*b+szTYyvnU`{bEV;i)%dRnW|qoq1*fx$s63GAOU)nGz1kg+0wt@TvT?r#S)s
zB7c@|J^&}=@_h3yJh@4p$u|e!SDREJHwyq>ly`*8dtk9#6*BALRn<FeRuXttJ>JXQ
zJQ<ER7A!VZ!D82_gLpMh)jnbUhm9DMx6iP81Cg~etfIn@L1LU<uf|kYW6;%@*m~lG
zsjkK@TOOKW)lkdk>GJO4luS8crWFJ#XUw#!Q)zZG?KvbXruuxQ^%CI4$J8&MwjN|R
z)K1Xg_(KN)8XPn@wK+;wZ`J(ut-5N<RrOYben8|??N(2UHg~HBW?7fW4eH5WCHbiQ
zw_YV#rR$rl`6<`*L*P~w%~o;l|5X0pjSkqHHMX={jV<kN)zY4F|Afpg6Vehl8KR^n
zObZNd=*QW{gbeuYq8P&%iE$P|8a74UJG{2S1DN2ZsH@|(G${!PE1tydYZ&6JF~WnK
z2`6qx&<HbG=eM(RlcJ#`x}Wsiuvd%Hg)!P=a3(kT?dAm454>Y@#;I`P!tl14G}awE
zm#C|wHKMNWSED@0DNl={#VIFIq@40p0r4mr+!p&^WSn|yxjwkt>g$YPKQcmhdOB##
zW7q;5mz@mwBms_Tb4wUQz~M<JWQCbHedKCqqBe?IoN`0=FiA6WITZ^biUGYEK_iM@
zEfCGXS<){#Ne$tRbGP?BmVFJ+<V+6Bu=DZ+XuW{u5X%;zuj!3oq<b#wGVGw6k(e-a
z?;=-Z*g--Cm-FvR%NyzCR2!@<>FPG&$75`6ahHJj5YT=U-gt;5=V6zoX>QnzpfU1?
zW|zvmpdGbrPDM$)z-Sy7wAHwvvpXGj%c6+01RVK6#JL?D=__=q(rxbIBy84%EkSj2
zV#`^D&Z|X!ZgF>|2ejC%2~loyQ{dEiG9Ud(-$c;hX_fJiUyi-miGd^K%}y~m^8K5g
zn_>YP<3!-pkgabUvbZ;b0UoHNF+Fl37zkN54@59Glp&0eTNoje6Yl8;MI)0|6!vjA
zWXRk5IK_FospKy22Bx{_)(rFM4;|?N?#P$=IN@HtAGqS?K0&9(!#)v+Yu*{$C!F|j
zV}KsXKlgD4_x0&4aAAy_`mf<f?2wsEKaHNs%?Q#vv{c?&<OuM|h9W25l|f@X$TQ^Y
zMNW<x;O;2q%Fl}&(K`^ql5mD@aWj(Eb@SgX0`ZWkZ%=eToFQ-P>&)oq8{si*8)N$N
zk-t$1eDd*PXU|Q62=)&LG`+P;gME$rbcFl@r-qHTP#z|@BhyQq0&wK7`#DA6m+k$W
zd(!+PbN;U_(GutNR40N%1=NJ8rn)0fmpH}5=6=aboqB(uJB9{loYaJZ+{JCVxzu@5
zPW!hMZ)v*DR$IG)a$7V)6b%RT&8!NlgYMT3wYXRFM*G|^CzUz*mY=747huSgUzIsM
z@@yR?FSmJm6di7J|BaxstIYXl2*}cM=QudB>V7kz`t^6l#bB14H`VEa-^el3oMAA(
zv3Z)Knx}b=xyVP0UCmEl;A+X!o;Z*ri(Snp&Sk4m!m}VkR<Cp=U&qEht)9j`t*MQB
zTGJZ$w0hN^*7OfA_xsQSTbD~-6D9?QNQ5XSA}cNunny%<<HHjJh{1{eSe(eN)xKUX
zmJBYFXIA@yw=%)veGQ|+1KcHc7@F=xH|h>Y!6%23oqKY@%Tc^z=oMYIHEF0YM(esL
z$E@+iETRw1;zTZ8;|l|koojp{Ao8;{zR=JlKo&>w{qjVusJn)Xq7G_3(2ajx{NpK>
zE=O`$i!Up2%}g5ODcqhMvb7a1fg_UYZXGafwV{7pCWp}0xvC3)h;fIT0^(s)v$*?r
zh-w(p9Yz!@615?;Ip`u~3PW!(^kX&BV`S^JGB^`iWNJLj1PnGPXF~HvfE{9-$dfI;
z{4}NyU{UNoz>;TLe7T7m7O60FZYIH~&{(t^D~Wc4s#iPpZ`&I9D_aY1fX(`U_o^eW
z`X~TV$69?~Y=siFbE1Fpu%DOoEi2`v(ZS^<gUiZzNqN<v0VU;+mJOKDzkmPo0Tapx
zl}F2~OU74C99UL8zW<}+Ck*O;OZmX6l8I#l`<IqZ7<fx{byevt(TM}gqUF)X=UV*g
Kxt74ATmB1l>0LVj

diff --git a/vendor/github.com/ncruces/go-sqlite3/go.work.sum b/vendor/github.com/ncruces/go-sqlite3/go.work.sum
index 52265b555..c3936965c 100644
--- a/vendor/github.com/ncruces/go-sqlite3/go.work.sum
+++ b/vendor/github.com/ncruces/go-sqlite3/go.work.sum
@@ -9,5 +9,6 @@ golang.org/x/term v0.22.0/go.mod h1:F3qCibpT5AMpCRfhfT53vVJwhLtIVHhB9XDjfFvnMI4=
 golang.org/x/term v0.23.0/go.mod h1:DgV24QBUrK6jhZXl+20l6UWznPlwAHm1Q1mGHtydmSk=
 golang.org/x/term v0.24.0/go.mod h1:lOBK/LVxemqiMij05LGJ0tzNr8xlmwBRJ81PX6wVLH8=
 golang.org/x/term v0.25.0/go.mod h1:RPyXicDX+6vLxogjjRxjgD2TKtmAO6NZBsBRfrOLu7M=
+golang.org/x/term v0.26.0/go.mod h1:Si5m1o57C5nBNQo5z1iq+XDijt21BDBDp2bK0QI8e3E=
 golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/README.md b/vendor/github.com/ncruces/go-sqlite3/vfs/README.md
index cf0e3c30f..08777972e 100644
--- a/vendor/github.com/ncruces/go-sqlite3/vfs/README.md
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/README.md
@@ -30,7 +30,6 @@ like SQLite.
 
 You can also opt into a cross-platform locking implementation
 with the `sqlite3_dotlk` build tag.
-The only requirement is an atomic `os.Mkdir`.
 
 Otherwise, file locking is not supported, and you must use
 [`nolock=1`](https://sqlite.org/uri.html#urinolock)
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/cksm.go b/vendor/github.com/ncruces/go-sqlite3/vfs/cksm.go
index 900fa0952..42d7468f5 100644
--- a/vendor/github.com/ncruces/go-sqlite3/vfs/cksm.go
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/cksm.go
@@ -101,6 +101,14 @@ func (c cksmFile) Pragma(name string, value string) (string, error) {
 	return "", _NOTFOUND
 }
 
+func (c cksmFile) DeviceCharacteristics() DeviceCharacteristic {
+	res := c.File.DeviceCharacteristics()
+	if c.verifyCksm {
+		res &^= IOCAP_SUBPAGE_READ
+	}
+	return res
+}
+
 func (c cksmFile) fileControl(ctx context.Context, mod api.Module, op _FcntlOpcode, pArg uint32) _ErrorCode {
 	switch op {
 	case _FCNTL_CKPT_START:
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/const.go b/vendor/github.com/ncruces/go-sqlite3/vfs/const.go
index 0a8fee621..896cdaca4 100644
--- a/vendor/github.com/ncruces/go-sqlite3/vfs/const.go
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/const.go
@@ -177,6 +177,7 @@ const (
 	IOCAP_POWERSAFE_OVERWRITE   DeviceCharacteristic = 0x00001000
 	IOCAP_IMMUTABLE             DeviceCharacteristic = 0x00002000
 	IOCAP_BATCH_ATOMIC          DeviceCharacteristic = 0x00004000
+	IOCAP_SUBPAGE_READ          DeviceCharacteristic = 0x00008000
 )
 
 // https://sqlite.org/c3ref/c_fcntl_begin_atomic_write.html
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/file.go b/vendor/github.com/ncruces/go-sqlite3/vfs/file.go
index ba70aa14f..b5d285375 100644
--- a/vendor/github.com/ncruces/go-sqlite3/vfs/file.go
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/file.go
@@ -187,7 +187,7 @@ func (f *vfsFile) SectorSize() int {
 }
 
 func (f *vfsFile) DeviceCharacteristics() DeviceCharacteristic {
-	var res DeviceCharacteristic
+	res := IOCAP_SUBPAGE_READ
 	if osBatchAtomic(f.File) {
 		res |= IOCAP_BATCH_ATOMIC
 	}
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/os_bsd.go b/vendor/github.com/ncruces/go-sqlite3/vfs/os_bsd.go
index 56713e359..cc5da7cab 100644
--- a/vendor/github.com/ncruces/go-sqlite3/vfs/os_bsd.go
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/os_bsd.go
@@ -15,9 +15,15 @@ func osGetSharedLock(file *os.File) _ErrorCode {
 func osGetReservedLock(file *os.File) _ErrorCode {
 	rc := osLock(file, unix.LOCK_EX|unix.LOCK_NB, _IOERR_LOCK)
 	if rc == _BUSY {
-		// The documentation states the lock is upgraded by releasing the previous lock,
-		// then acquiring the new lock.
-		// This is a race, so return BUSY_SNAPSHOT to ensure the transaction is aborted.
+		// The documentation states that a lock is upgraded by
+		// releasing the previous lock, then acquiring the new lock.
+		// Going over the source code of various BSDs, though,
+		// with LOCK_NB, the lock is not released,
+		// and EAGAIN is returned holding the shared lock.
+		// Still, if we're already in a transaction, we want to abort it,
+		// so return BUSY_SNAPSHOT here. If there's no transaction active,
+		// SQLite will change this back to SQLITE_BUSY,
+		// and invoke the busy handler if appropriate.
 		return _BUSY_SNAPSHOT
 	}
 	return rc
@@ -33,9 +39,11 @@ func osGetExclusiveLock(file *os.File, state *LockLevel) _ErrorCode {
 func osDowngradeLock(file *os.File, _ LockLevel) _ErrorCode {
 	rc := osLock(file, unix.LOCK_SH|unix.LOCK_NB, _IOERR_RDLOCK)
 	if rc == _BUSY {
-		// The documentation states the lock is upgraded by releasing the previous lock,
-		// then acquiring the new lock.
-		// This is a race, so return IOERR_RDLOCK to ensure the transaction is aborted.
+		// The documentation states that a lock is downgraded by
+		// releasing the previous lock then acquiring the new lock.
+		// Going over the source code of various BSDs, though,
+		// with LOCK_SH|LOCK_NB this should never happen.
+		// Return IOERR_RDLOCK, as BUSY would cause an assert to fail.
 		return _IOERR_RDLOCK
 	}
 	return _OK
@@ -50,7 +58,10 @@ func osReleaseLock(file *os.File, _ LockLevel) _ErrorCode {
 }
 
 func osCheckReservedLock(file *os.File) (bool, _ErrorCode) {
-	// Test the RESERVED lock.
+	// Test the RESERVED lock with fcntl(F_GETLK).
+	// This only works on systems where fcntl and flock are compatible.
+	// However, SQLite only calls this while holding a shared lock,
+	// so the difference is immaterial.
 	lock, rc := osTestLock(file, _RESERVED_BYTE, 1)
 	return lock == unix.F_WRLCK, rc
 }
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/os_dotlk.go b/vendor/github.com/ncruces/go-sqlite3/vfs/os_dotlk.go
index 1c1a49c11..b00a1865b 100644
--- a/vendor/github.com/ncruces/go-sqlite3/vfs/os_dotlk.go
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/os_dotlk.go
@@ -28,7 +28,8 @@ func osGetSharedLock(file *os.File) _ErrorCode {
 	name := file.Name()
 	locker := vfsDotLocks[name]
 	if locker == nil {
-		err := os.Mkdir(name+".lock", 0777)
+		f, err := os.OpenFile(name+".lock", os.O_RDWR|os.O_CREATE|os.O_EXCL, 0666)
+		f.Close()
 		if errors.Is(err, fs.ErrExist) {
 			return _BUSY // Another process has the lock.
 		}
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/os_windows.go b/vendor/github.com/ncruces/go-sqlite3/vfs/os_windows.go
index b901f98aa..0b6e5d342 100644
--- a/vendor/github.com/ncruces/go-sqlite3/vfs/os_windows.go
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/os_windows.go
@@ -50,14 +50,17 @@ func osGetExclusiveLock(file *os.File, state *LockLevel) _ErrorCode {
 
 	if rc != _OK {
 		// Reacquire the SHARED lock.
-		osReadLock(file, _SHARED_FIRST, _SHARED_SIZE, 0)
+		if rc := osReadLock(file, _SHARED_FIRST, _SHARED_SIZE, 0); rc != _OK {
+			// notest // this should never happen
+			return _IOERR_RDLOCK
+		}
 	}
 	return rc
 }
 
 func osDowngradeLock(file *os.File, state LockLevel) _ErrorCode {
 	if state >= LOCK_EXCLUSIVE {
-		// Release the EXCLUSIVE lock.
+		// Release the EXCLUSIVE lock while holding the PENDING lock.
 		osUnlock(file, _SHARED_FIRST, _SHARED_SIZE)
 
 		// Reacquire the SHARED lock.
@@ -78,7 +81,7 @@ func osDowngradeLock(file *os.File, state LockLevel) _ErrorCode {
 }
 
 func osReleaseLock(file *os.File, state LockLevel) _ErrorCode {
-	// Release all locks.
+	// Release all locks, PENDING must be last.
 	if state >= LOCK_RESERVED {
 		osUnlock(file, _RESERVED_BYTE, 1)
 	}
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/shm_bsd.go b/vendor/github.com/ncruces/go-sqlite3/vfs/shm_bsd.go
index d4e046369..07cabf7b5 100644
--- a/vendor/github.com/ncruces/go-sqlite3/vfs/shm_bsd.go
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/shm_bsd.go
@@ -14,52 +14,52 @@ import (
 	"github.com/ncruces/go-sqlite3/internal/util"
 )
 
-type vfsShmFile struct {
+type vfsShmParent struct {
 	*os.File
 	info os.FileInfo
 
-	refs int // +checklocks:vfsShmFilesMtx
+	refs int // +checklocks:vfsShmListMtx
 
 	lock [_SHM_NLOCK]int16 // +checklocks:Mutex
 	sync.Mutex
 }
 
 var (
-	// +checklocks:vfsShmFilesMtx
-	vfsShmFiles    []*vfsShmFile
-	vfsShmFilesMtx sync.Mutex
+	// +checklocks:vfsShmListMtx
+	vfsShmList    []*vfsShmParent
+	vfsShmListMtx sync.Mutex
 )
 
 type vfsShm struct {
-	*vfsShmFile
+	*vfsShmParent
 	path    string
 	lock    [_SHM_NLOCK]bool
 	regions []*util.MappedRegion
 }
 
 func (s *vfsShm) Close() error {
-	if s.vfsShmFile == nil {
+	if s.vfsShmParent == nil {
 		return nil
 	}
 
-	vfsShmFilesMtx.Lock()
-	defer vfsShmFilesMtx.Unlock()
+	vfsShmListMtx.Lock()
+	defer vfsShmListMtx.Unlock()
 
 	// Unlock everything.
 	s.shmLock(0, _SHM_NLOCK, _SHM_UNLOCK)
 
 	// Decrease reference count.
-	if s.vfsShmFile.refs > 0 {
-		s.vfsShmFile.refs--
-		s.vfsShmFile = nil
+	if s.vfsShmParent.refs > 0 {
+		s.vfsShmParent.refs--
+		s.vfsShmParent = nil
 		return nil
 	}
 
 	err := s.File.Close()
-	for i, g := range vfsShmFiles {
-		if g == s.vfsShmFile {
-			vfsShmFiles[i] = nil
-			s.vfsShmFile = nil
+	for i, g := range vfsShmList {
+		if g == s.vfsShmParent {
+			vfsShmList[i] = nil
+			s.vfsShmParent = nil
 			return err
 		}
 	}
@@ -67,7 +67,7 @@ func (s *vfsShm) Close() error {
 }
 
 func (s *vfsShm) shmOpen() _ErrorCode {
-	if s.vfsShmFile != nil {
+	if s.vfsShmParent != nil {
 		return _OK
 	}
 
@@ -85,13 +85,13 @@ func (s *vfsShm) shmOpen() _ErrorCode {
 		return _IOERR_FSTAT
 	}
 
-	vfsShmFilesMtx.Lock()
-	defer vfsShmFilesMtx.Unlock()
+	vfsShmListMtx.Lock()
+	defer vfsShmListMtx.Unlock()
 
 	// Find a shared file, increase the reference count.
-	for _, g := range vfsShmFiles {
+	for _, g := range vfsShmList {
 		if g != nil && os.SameFile(fi, g.info) {
-			s.vfsShmFile = g
+			s.vfsShmParent = g
 			g.refs++
 			return _OK
 		}
@@ -107,18 +107,18 @@ func (s *vfsShm) shmOpen() _ErrorCode {
 	}
 
 	// Add the new shared file.
-	s.vfsShmFile = &vfsShmFile{
+	s.vfsShmParent = &vfsShmParent{
 		File: f,
 		info: fi,
 	}
 	f = nil // Don't close the file.
-	for i, g := range vfsShmFiles {
+	for i, g := range vfsShmList {
 		if g == nil {
-			vfsShmFiles[i] = s.vfsShmFile
+			vfsShmList[i] = s.vfsShmParent
 			return _OK
 		}
 	}
-	vfsShmFiles = append(vfsShmFiles, s.vfsShmFile)
+	vfsShmList = append(vfsShmList, s.vfsShmParent)
 	return _OK
 }
 
@@ -157,57 +157,11 @@ func (s *vfsShm) shmMap(ctx context.Context, mod api.Module, id, size int32, ext
 func (s *vfsShm) shmLock(offset, n int32, flags _ShmFlag) _ErrorCode {
 	s.Lock()
 	defer s.Unlock()
-
-	switch {
-	case flags&_SHM_UNLOCK != 0:
-		for i := offset; i < offset+n; i++ {
-			if s.lock[i] {
-				if s.vfsShmFile.lock[i] == 0 {
-					panic(util.AssertErr())
-				}
-				if s.vfsShmFile.lock[i] <= 0 {
-					s.vfsShmFile.lock[i] = 0
-				} else {
-					s.vfsShmFile.lock[i]--
-				}
-				s.lock[i] = false
-			}
-		}
-	case flags&_SHM_SHARED != 0:
-		for i := offset; i < offset+n; i++ {
-			if s.lock[i] {
-				panic(util.AssertErr())
-			}
-			if s.vfsShmFile.lock[i]+1 <= 0 {
-				return _BUSY
-			}
-		}
-		for i := offset; i < offset+n; i++ {
-			s.vfsShmFile.lock[i]++
-			s.lock[i] = true
-		}
-	case flags&_SHM_EXCLUSIVE != 0:
-		for i := offset; i < offset+n; i++ {
-			if s.lock[i] {
-				panic(util.AssertErr())
-			}
-			if s.vfsShmFile.lock[i] != 0 {
-				return _BUSY
-			}
-		}
-		for i := offset; i < offset+n; i++ {
-			s.vfsShmFile.lock[i] = -1
-			s.lock[i] = true
-		}
-	default:
-		panic(util.AssertErr())
-	}
-
-	return _OK
+	return s.shmMemLock(offset, n, flags)
 }
 
 func (s *vfsShm) shmUnmap(delete bool) {
-	if s.vfsShmFile == nil {
+	if s.vfsShmParent == nil {
 		return
 	}
 
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/shm_copy.go b/vendor/github.com/ncruces/go-sqlite3/vfs/shm_copy.go
index 7a250523e..e6007aa1c 100644
--- a/vendor/github.com/ncruces/go-sqlite3/vfs/shm_copy.go
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/shm_copy.go
@@ -31,7 +31,10 @@ const (
 //
 // https://sqlite.org/walformat.html#the_wal_index_file_format
 
-func (s *vfsShm) shmAcquire() {
+func (s *vfsShm) shmAcquire(ptr *_ErrorCode) {
+	if ptr != nil && *ptr != _OK {
+		return
+	}
 	if len(s.ptrs) == 0 || shmUnmodified(s.shadow[0][:], s.shared[0][:]) {
 		return
 	}
@@ -69,7 +72,7 @@ func (s *vfsShm) shmRelease() {
 
 func (s *vfsShm) shmBarrier() {
 	s.Lock()
-	s.shmAcquire()
+	s.shmAcquire(nil)
 	s.shmRelease()
 	s.Unlock()
 }
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/shm_dotlk.go b/vendor/github.com/ncruces/go-sqlite3/vfs/shm_dotlk.go
index 36e00a1cd..4c7f47dec 100644
--- a/vendor/github.com/ncruces/go-sqlite3/vfs/shm_dotlk.go
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/shm_dotlk.go
@@ -13,22 +13,22 @@ import (
 	"github.com/tetratelabs/wazero/api"
 )
 
-type vfsShmBuffer struct {
+type vfsShmParent struct {
 	shared [][_WALINDEX_PGSZ]byte
-	refs   int // +checklocks:vfsShmBuffersMtx
+	refs   int // +checklocks:vfsShmListMtx
 
 	lock [_SHM_NLOCK]int16 // +checklocks:Mutex
 	sync.Mutex
 }
 
 var (
-	// +checklocks:vfsShmBuffersMtx
-	vfsShmBuffers    = map[string]*vfsShmBuffer{}
-	vfsShmBuffersMtx sync.Mutex
+	// +checklocks:vfsShmListMtx
+	vfsShmList    = map[string]*vfsShmParent{}
+	vfsShmListMtx sync.Mutex
 )
 
 type vfsShm struct {
-	*vfsShmBuffer
+	*vfsShmParent
 	mod    api.Module
 	alloc  api.Function
 	free   api.Function
@@ -40,20 +40,20 @@ type vfsShm struct {
 }
 
 func (s *vfsShm) Close() error {
-	if s.vfsShmBuffer == nil {
+	if s.vfsShmParent == nil {
 		return nil
 	}
 
-	vfsShmBuffersMtx.Lock()
-	defer vfsShmBuffersMtx.Unlock()
+	vfsShmListMtx.Lock()
+	defer vfsShmListMtx.Unlock()
 
 	// Unlock everything.
 	s.shmLock(0, _SHM_NLOCK, _SHM_UNLOCK)
 
 	// Decrease reference count.
-	if s.vfsShmBuffer.refs > 0 {
-		s.vfsShmBuffer.refs--
-		s.vfsShmBuffer = nil
+	if s.vfsShmParent.refs > 0 {
+		s.vfsShmParent.refs--
+		s.vfsShmParent = nil
 		return nil
 	}
 
@@ -61,22 +61,22 @@ func (s *vfsShm) Close() error {
 	if err != nil && !errors.Is(err, fs.ErrNotExist) {
 		return _IOERR_UNLOCK
 	}
-	delete(vfsShmBuffers, s.path)
-	s.vfsShmBuffer = nil
+	delete(vfsShmList, s.path)
+	s.vfsShmParent = nil
 	return nil
 }
 
 func (s *vfsShm) shmOpen() _ErrorCode {
-	if s.vfsShmBuffer != nil {
+	if s.vfsShmParent != nil {
 		return _OK
 	}
 
-	vfsShmBuffersMtx.Lock()
-	defer vfsShmBuffersMtx.Unlock()
+	vfsShmListMtx.Lock()
+	defer vfsShmListMtx.Unlock()
 
 	// Find a shared buffer, increase the reference count.
-	if g, ok := vfsShmBuffers[s.path]; ok {
-		s.vfsShmBuffer = g
+	if g, ok := vfsShmList[s.path]; ok {
+		s.vfsShmParent = g
 		g.refs++
 		return _OK
 	}
@@ -92,8 +92,8 @@ func (s *vfsShm) shmOpen() _ErrorCode {
 	}
 
 	// Add the new shared buffer.
-	s.vfsShmBuffer = &vfsShmBuffer{}
-	vfsShmBuffers[s.path] = s.vfsShmBuffer
+	s.vfsShmParent = &vfsShmParent{}
+	vfsShmList[s.path] = s.vfsShmParent
 	return _OK
 }
 
@@ -112,7 +112,7 @@ func (s *vfsShm) shmMap(ctx context.Context, mod api.Module, id, size int32, ext
 
 	s.Lock()
 	defer s.Unlock()
-	defer s.shmAcquire()
+	defer s.shmAcquire(nil)
 
 	// Extend shared memory.
 	if int(id) >= len(s.shared) {
@@ -125,7 +125,6 @@ func (s *vfsShm) shmMap(ctx context.Context, mod api.Module, id, size int32, ext
 	// Allocate shadow memory.
 	if int(id) >= len(s.shadow) {
 		s.shadow = append(s.shadow, make([][_WALINDEX_PGSZ]byte, int(id)-len(s.shadow)+1)...)
-		s.shadow[0][4] = 1 // force invalidation
 	}
 
 	// Allocate local memory.
@@ -141,70 +140,26 @@ func (s *vfsShm) shmMap(ctx context.Context, mod api.Module, id, size int32, ext
 		s.ptrs = append(s.ptrs, uint32(s.stack[0]))
 	}
 
+	s.shadow[0][4] = 1
 	return s.ptrs[id], _OK
 }
 
-func (s *vfsShm) shmLock(offset, n int32, flags _ShmFlag) _ErrorCode {
+func (s *vfsShm) shmLock(offset, n int32, flags _ShmFlag) (rc _ErrorCode) {
 	s.Lock()
 	defer s.Unlock()
 
 	switch {
 	case flags&_SHM_LOCK != 0:
-		defer s.shmAcquire()
+		defer s.shmAcquire(&rc)
 	case flags&_SHM_EXCLUSIVE != 0:
 		s.shmRelease()
 	}
 
-	switch {
-	case flags&_SHM_UNLOCK != 0:
-		for i := offset; i < offset+n; i++ {
-			if s.lock[i] {
-				if s.vfsShmBuffer.lock[i] == 0 {
-					panic(util.AssertErr())
-				}
-				if s.vfsShmBuffer.lock[i] <= 0 {
-					s.vfsShmBuffer.lock[i] = 0
-				} else {
-					s.vfsShmBuffer.lock[i]--
-				}
-				s.lock[i] = false
-			}
-		}
-	case flags&_SHM_SHARED != 0:
-		for i := offset; i < offset+n; i++ {
-			if s.lock[i] {
-				panic(util.AssertErr())
-			}
-			if s.vfsShmBuffer.lock[i]+1 <= 0 {
-				return _BUSY
-			}
-		}
-		for i := offset; i < offset+n; i++ {
-			s.vfsShmBuffer.lock[i]++
-			s.lock[i] = true
-		}
-	case flags&_SHM_EXCLUSIVE != 0:
-		for i := offset; i < offset+n; i++ {
-			if s.lock[i] {
-				panic(util.AssertErr())
-			}
-			if s.vfsShmBuffer.lock[i] != 0 {
-				return _BUSY
-			}
-		}
-		for i := offset; i < offset+n; i++ {
-			s.vfsShmBuffer.lock[i] = -1
-			s.lock[i] = true
-		}
-	default:
-		panic(util.AssertErr())
-	}
-
-	return _OK
+	return s.shmMemLock(offset, n, flags)
 }
 
 func (s *vfsShm) shmUnmap(delete bool) {
-	if s.vfsShmBuffer == nil {
+	if s.vfsShmParent == nil {
 		return
 	}
 	defer s.Close()
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/shm_memlk.go b/vendor/github.com/ncruces/go-sqlite3/vfs/shm_memlk.go
new file mode 100644
index 000000000..dc7b91350
--- /dev/null
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/shm_memlk.go
@@ -0,0 +1,55 @@
+//go:build ((freebsd || openbsd || netbsd || dragonfly || illumos) && (386 || arm || amd64 || arm64 || riscv64 || ppc64le) && !sqlite3_nosys) || sqlite3_flock || sqlite3_dotlk
+
+package vfs
+
+import "github.com/ncruces/go-sqlite3/internal/util"
+
+// +checklocks:s.Mutex
+func (s *vfsShm) shmMemLock(offset, n int32, flags _ShmFlag) _ErrorCode {
+	switch {
+	case flags&_SHM_UNLOCK != 0:
+		for i := offset; i < offset+n; i++ {
+			if s.lock[i] {
+				if s.vfsShmParent.lock[i] == 0 {
+					panic(util.AssertErr())
+				}
+				if s.vfsShmParent.lock[i] <= 0 {
+					s.vfsShmParent.lock[i] = 0
+				} else {
+					s.vfsShmParent.lock[i]--
+				}
+				s.lock[i] = false
+			}
+		}
+	case flags&_SHM_SHARED != 0:
+		for i := offset; i < offset+n; i++ {
+			if s.lock[i] {
+				panic(util.AssertErr())
+			}
+			if s.vfsShmParent.lock[i]+1 <= 0 {
+				return _BUSY
+			}
+		}
+		for i := offset; i < offset+n; i++ {
+			s.vfsShmParent.lock[i]++
+			s.lock[i] = true
+		}
+	case flags&_SHM_EXCLUSIVE != 0:
+		for i := offset; i < offset+n; i++ {
+			if s.lock[i] {
+				panic(util.AssertErr())
+			}
+			if s.vfsShmParent.lock[i] != 0 {
+				return _BUSY
+			}
+		}
+		for i := offset; i < offset+n; i++ {
+			s.vfsShmParent.lock[i] = -1
+			s.lock[i] = true
+		}
+	default:
+		panic(util.AssertErr())
+	}
+
+	return _OK
+}
diff --git a/vendor/github.com/ncruces/go-sqlite3/vfs/shm_windows.go b/vendor/github.com/ncruces/go-sqlite3/vfs/shm_windows.go
index 218d8e2c7..374d491ac 100644
--- a/vendor/github.com/ncruces/go-sqlite3/vfs/shm_windows.go
+++ b/vendor/github.com/ncruces/go-sqlite3/vfs/shm_windows.go
@@ -64,7 +64,7 @@ func (s *vfsShm) shmOpen() _ErrorCode {
 	return osReadLock(s.File, _SHM_DMS, 1, time.Millisecond)
 }
 
-func (s *vfsShm) shmMap(ctx context.Context, mod api.Module, id, size int32, extend bool) (uint32, _ErrorCode) {
+func (s *vfsShm) shmMap(ctx context.Context, mod api.Module, id, size int32, extend bool) (_ uint32, rc _ErrorCode) {
 	// Ensure size is a multiple of the OS page size.
 	if size != _WALINDEX_PGSZ || (windows.Getpagesize()-1)&_WALINDEX_PGSZ != 0 {
 		return 0, _IOERR_SHMMAP
@@ -78,7 +78,7 @@ func (s *vfsShm) shmMap(ctx context.Context, mod api.Module, id, size int32, ext
 		return 0, rc
 	}
 
-	defer s.shmAcquire()
+	defer s.shmAcquire(&rc)
 
 	// Check if file is big enough.
 	o, err := s.Seek(0, io.SeekEnd)
@@ -107,7 +107,6 @@ func (s *vfsShm) shmMap(ctx context.Context, mod api.Module, id, size int32, ext
 	// Allocate shadow memory.
 	if int(id) >= len(s.shadow) {
 		s.shadow = append(s.shadow, make([][_WALINDEX_PGSZ]byte, int(id)-len(s.shadow)+1)...)
-		s.shadow[0][4] = 1 // force invalidation
 	}
 
 	// Allocate local memory.
@@ -123,22 +122,23 @@ func (s *vfsShm) shmMap(ctx context.Context, mod api.Module, id, size int32, ext
 		s.ptrs = append(s.ptrs, uint32(s.stack[0]))
 	}
 
+	s.shadow[0][4] = 1
 	return s.ptrs[id], _OK
 }
 
-func (s *vfsShm) shmLock(offset, n int32, flags _ShmFlag) _ErrorCode {
-	switch {
-	case flags&_SHM_LOCK != 0:
-		defer s.shmAcquire()
-	case flags&_SHM_EXCLUSIVE != 0:
-		s.shmRelease()
-	}
-
+func (s *vfsShm) shmLock(offset, n int32, flags _ShmFlag) (rc _ErrorCode) {
 	var timeout time.Duration
 	if s.blocking {
 		timeout = time.Millisecond
 	}
 
+	switch {
+	case flags&_SHM_LOCK != 0:
+		defer s.shmAcquire(&rc)
+	case flags&_SHM_EXCLUSIVE != 0:
+		s.shmRelease()
+	}
+
 	switch {
 	case flags&_SHM_UNLOCK != 0:
 		return osUnlock(s.File, _SHM_BASE+uint32(offset), uint32(n))
diff --git a/vendor/github.com/tetratelabs/wazero/README.md b/vendor/github.com/tetratelabs/wazero/README.md
index f020be99a..e49fcb8a8 100644
--- a/vendor/github.com/tetratelabs/wazero/README.md
+++ b/vendor/github.com/tetratelabs/wazero/README.md
@@ -96,14 +96,21 @@ systems are ones we test, but that doesn't necessarily mean other operating
 system versions won't work.
 
 We currently test Linux (Ubuntu and scratch), MacOS and Windows as packaged by
-[GitHub Actions][11], as well compilation of 32-bit Linux and 64-bit FreeBSD.
+[GitHub Actions][11], as well as nested VMs running on Linux for FreeBSD, NetBSD,
+OpenBSD, DragonFly BSD, illumos and Solaris.
+
+We also test cross compilation for many `GOOS` and `GOARCH` combinations.
 
 * Interpreter
   * Linux is tested on amd64 (native) as well arm64 and riscv64 via emulation.
-  * MacOS and Windows are only tested on amd64.
+  * Windows, FreeBSD, NetBSD, OpenBSD, DragonFly BSD, illumos and Solaris are
+    tested only on amd64.
+  * macOS is tested only on arm64.
 * Compiler
   * Linux is tested on amd64 (native) as well arm64 via emulation.
-  * MacOS and Windows are only tested on amd64.
+  * Windows, FreeBSD, NetBSD, DragonFly BSD, illumos and Solaris are
+    tested only on amd64.
+  * macOS is tested only on arm64.
 
 wazero has no dependencies and doesn't require CGO. This means it can also be
 embedded in an application that doesn't use an operating system. This is a main
diff --git a/vendor/github.com/tetratelabs/wazero/config_supported.go b/vendor/github.com/tetratelabs/wazero/config_supported.go
index eb31ab935..214c2bb8c 100644
--- a/vendor/github.com/tetratelabs/wazero/config_supported.go
+++ b/vendor/github.com/tetratelabs/wazero/config_supported.go
@@ -5,10 +5,15 @@
 //
 // Meanwhile, users who know their runtime.GOOS can operate with the compiler
 // may choose to use NewRuntimeConfigCompiler explicitly.
-//go:build (amd64 || arm64) && (darwin || linux || freebsd || windows)
+//go:build (amd64 || arm64) && (linux || darwin || freebsd || netbsd || dragonfly || solaris || windows)
 
 package wazero
 
+import "github.com/tetratelabs/wazero/internal/platform"
+
 func newRuntimeConfig() RuntimeConfig {
-	return NewRuntimeConfigCompiler()
+	if platform.CompilerSupported() {
+		return NewRuntimeConfigCompiler()
+	}
+	return NewRuntimeConfigInterpreter()
 }
diff --git a/vendor/github.com/tetratelabs/wazero/config_unsupported.go b/vendor/github.com/tetratelabs/wazero/config_unsupported.go
index 3e5a53cda..be56a4bc2 100644
--- a/vendor/github.com/tetratelabs/wazero/config_unsupported.go
+++ b/vendor/github.com/tetratelabs/wazero/config_unsupported.go
@@ -1,5 +1,5 @@
 // This is the opposite constraint of config_supported.go
-//go:build !(amd64 || arm64) || !(darwin || linux || freebsd || windows)
+//go:build !(amd64 || arm64) || !(linux || darwin || freebsd || netbsd || dragonfly || solaris || windows)
 
 package wazero
 
diff --git a/vendor/github.com/tetratelabs/wazero/experimental/memory.go b/vendor/github.com/tetratelabs/wazero/experimental/memory.go
index 26540648b..8bf3aa35f 100644
--- a/vendor/github.com/tetratelabs/wazero/experimental/memory.go
+++ b/vendor/github.com/tetratelabs/wazero/experimental/memory.go
@@ -43,7 +43,7 @@ type LinearMemory interface {
 }
 
 // WithMemoryAllocator registers the given MemoryAllocator into the given
-// context.Context.
+// context.Context. The context must be passed when initializing a module.
 func WithMemoryAllocator(ctx context.Context, allocator MemoryAllocator) context.Context {
 	if allocator != nil {
 		return context.WithValue(ctx, expctxkeys.MemoryAllocatorKey{}, allocator)
diff --git a/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/isa/amd64/machine.go b/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/isa/amd64/machine.go
index aeeb6b645..7c27c92af 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/isa/amd64/machine.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/isa/amd64/machine.go
@@ -2196,7 +2196,7 @@ func (m *machine) Encode(ctx context.Context) (err error) {
 }
 
 // ResolveRelocations implements backend.Machine.
-func (m *machine) ResolveRelocations(refToBinaryOffset []int, binary []byte, relocations []backend.RelocationInfo, _ []int) {
+func (m *machine) ResolveRelocations(refToBinaryOffset []int, _ int, binary []byte, relocations []backend.RelocationInfo, _ []int) {
 	for _, r := range relocations {
 		offset := r.Offset
 		calleeFnOffset := refToBinaryOffset[r.FuncRef]
diff --git a/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/isa/arm64/machine_relocation.go b/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/isa/arm64/machine_relocation.go
index 83902d927..932fe842b 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/isa/arm64/machine_relocation.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/isa/arm64/machine_relocation.go
@@ -21,7 +21,7 @@ const (
 
 	// trampolineIslandInterval is the range of the trampoline island.
 	// Half of the range is used for the trampoline island, and the other half is used for the function.
-	trampolineIslandInterval = maxUnconditionalBranchOffset / 2
+	trampolineIslandInterval = (maxUnconditionalBranchOffset - 1) / 2
 
 	// maxNumFunctions explicitly specifies the maximum number of functions that can be allowed in a single executable.
 	maxNumFunctions = trampolineIslandInterval >> 6
@@ -42,12 +42,13 @@ func (m *machine) CallTrampolineIslandInfo(numFunctions int) (interval, size int
 // ResolveRelocations implements backend.Machine ResolveRelocations.
 func (m *machine) ResolveRelocations(
 	refToBinaryOffset []int,
+	importedFns int,
 	executable []byte,
 	relocations []backend.RelocationInfo,
 	callTrampolineIslandOffsets []int,
 ) {
 	for _, islandOffset := range callTrampolineIslandOffsets {
-		encodeCallTrampolineIsland(refToBinaryOffset, islandOffset, executable)
+		encodeCallTrampolineIsland(refToBinaryOffset, importedFns, islandOffset, executable)
 	}
 
 	for _, r := range relocations {
@@ -71,11 +72,15 @@ func (m *machine) ResolveRelocations(
 // encodeCallTrampolineIsland encodes a trampoline island for the given functions.
 // Each island consists of a trampoline instruction sequence for each function.
 // Each trampoline instruction sequence consists of 4 instructions + 32-bit immediate.
-func encodeCallTrampolineIsland(refToBinaryOffset []int, islandOffset int, executable []byte) {
-	for i := 0; i < len(refToBinaryOffset); i++ {
+func encodeCallTrampolineIsland(refToBinaryOffset []int, importedFns int, islandOffset int, executable []byte) {
+	// We skip the imported functions: they don't need trampolines
+	// and are not accounted for.
+	binaryOffsets := refToBinaryOffset[importedFns:]
+
+	for i := 0; i < len(binaryOffsets); i++ {
 		trampolineOffset := islandOffset + trampolineCallSize*i
 
-		fnOffset := refToBinaryOffset[i]
+		fnOffset := binaryOffsets[i]
 		diff := fnOffset - (trampolineOffset + 16)
 		if diff > math.MaxInt32 || diff < math.MinInt32 {
 			// This case even amd64 can't handle. 4GB is too big.
diff --git a/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/machine.go b/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/machine.go
index 9044a9e4b..3a29e7cd6 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/machine.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/backend/machine.go
@@ -77,11 +77,13 @@ type (
 
 		// ResolveRelocations resolves the relocations after emitting machine code.
 		//  * refToBinaryOffset: the map from the function reference (ssa.FuncRef) to the executable offset.
+		//  * importedFns: the max index of the imported functions at the beginning of refToBinaryOffset
 		//  * executable: the binary to resolve the relocations.
 		//  * relocations: the relocations to resolve.
 		//  * callTrampolineIslandOffsets: the offsets of the trampoline islands in the executable.
 		ResolveRelocations(
 			refToBinaryOffset []int,
+			importedFns int,
 			executable []byte,
 			relocations []RelocationInfo,
 			callTrampolineIslandOffsets []int,
diff --git a/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/engine.go b/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/engine.go
index f02b905fc..a6df3e7e7 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/engine.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/engine/wazevo/engine.go
@@ -314,7 +314,7 @@ func (e *engine) compileModule(ctx context.Context, module *wasm.Module, listene
 
 	// Resolve relocations for local function calls.
 	if len(rels) > 0 {
-		machine.ResolveRelocations(refToBinaryOffset, executable, rels, callTrampolineIslandOffsets)
+		machine.ResolveRelocations(refToBinaryOffset, importedFns, executable, rels, callTrampolineIslandOffsets)
 	}
 
 	if runtime.GOARCH == "arm64" {
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid.go b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid.go
index 0dc6ec19c..0220d56fd 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid.go
@@ -28,3 +28,8 @@ const (
 	CpuExtraFeatureAmd64ABM CpuFeature = 1 << 5
 	// Note: when adding new features, ensure that the feature is included in CpuFeatureFlags.Raw.
 )
+
+const (
+	// CpuFeatureArm64Atomic is the flag to query CpuFeatureFlags.Has for Large System Extensions capabilities on arm64
+	CpuFeatureArm64Atomic CpuFeature = 1 << 21
+)
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_amd64.go b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_amd64.go
index fbdb53936..a0c7734a0 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_amd64.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_amd64.go
@@ -1,4 +1,4 @@
-//go:build amd64 && !tinygo
+//go:build gc
 
 package platform
 
@@ -12,7 +12,7 @@ type cpuFeatureFlags struct {
 }
 
 // cpuid exposes the CPUID instruction to the Go layer (https://www.amd.com/system/files/TechDocs/25481.pdf)
-// implemented in impl_amd64.s
+// implemented in cpuid_amd64.s
 func cpuid(arg1, arg2 uint32) (eax, ebx, ecx, edx uint32)
 
 // cpuidAsBitmap combines the result of invoking cpuid to uint64 bitmap.
@@ -60,8 +60,9 @@ func (f *cpuFeatureFlags) HasExtra(cpuFeature CpuFeature) bool {
 
 // Raw implements the same method on the CpuFeatureFlags interface.
 func (f *cpuFeatureFlags) Raw() uint64 {
-	// Below, we only set the first 4 bits for the features we care about,
-	// instead of setting all the unnecessary bits obtained from the CPUID instruction.
+	// Below, we only set bits for the features we care about,
+	// instead of setting all the unnecessary bits obtained from the
+	// CPUID instruction.
 	var ret uint64
 	if f.Has(CpuFeatureAmd64SSE3) {
 		ret = 1 << 0
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_amd64.s b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_amd64.s
index 8d483f3a6..4950ee629 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_amd64.s
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_amd64.s
@@ -1,6 +1,9 @@
+//go:build gc
+
 #include "textflag.h"
 
 // lifted from github.com/intel-go/cpuid and src/internal/cpu/cpu_x86.s
+
 // func cpuid(arg1, arg2 uint32) (eax, ebx, ecx, edx uint32)
 TEXT ·cpuid(SB), NOSPLIT, $0-24
 	MOVL arg1+0(FP), AX
@@ -11,4 +14,3 @@ TEXT ·cpuid(SB), NOSPLIT, $0-24
 	MOVL CX, ecx+16(FP)
 	MOVL DX, edx+20(FP)
 	RET
-
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_arm64.go b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_arm64.go
new file mode 100644
index 000000000..5430353fd
--- /dev/null
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_arm64.go
@@ -0,0 +1,71 @@
+//go:build gc
+
+package platform
+
+import "runtime"
+
+// CpuFeatures exposes the capabilities for this CPU, queried via the Has, HasExtra methods.
+var CpuFeatures = loadCpuFeatureFlags()
+
+// cpuFeatureFlags implements CpuFeatureFlags interface.
+type cpuFeatureFlags struct {
+	isar0 uint64
+	isar1 uint64
+}
+
+// implemented in cpuid_arm64.s
+func getisar0() uint64
+
+// implemented in cpuid_arm64.s
+func getisar1() uint64
+
+func loadCpuFeatureFlags() CpuFeatureFlags {
+	switch runtime.GOOS {
+	case "darwin", "windows":
+		// These OSes do not allow userland to read the instruction set attribute registers,
+		// but basically require atomic instructions:
+		// - "darwin" is the desktop version (mobile version is "ios"),
+		//   and the M1 is a ARMv8.4.
+		// - "windows" requires them from Windows 11, see page 12
+		//   https://download.microsoft.com/download/7/8/8/788bf5ab-0751-4928-a22c-dffdc23c27f2/Minimum%20Hardware%20Requirements%20for%20Windows%2011.pdf
+		return &cpuFeatureFlags{
+			isar0: uint64(CpuFeatureArm64Atomic),
+			isar1: 0,
+		}
+	case "linux", "freebsd":
+		// These OSes allow userland to read the instruction set attribute registers,
+		// which is otherwise restricted to EL0:
+		// https://kernel.org/doc/Documentation/arm64/cpu-feature-registers.txt
+		// See these for contents of the registers:
+		// https://developer.arm.com/documentation/ddi0601/latest/AArch64-Registers/ID-AA64ISAR0-EL1--AArch64-Instruction-Set-Attribute-Register-0
+		// https://developer.arm.com/documentation/ddi0601/latest/AArch64-Registers/ID-AA64ISAR1-EL1--AArch64-Instruction-Set-Attribute-Register-1
+		return &cpuFeatureFlags{
+			isar0: getisar0(),
+			isar1: getisar1(),
+		}
+	default:
+		return &cpuFeatureFlags{}
+	}
+}
+
+// Has implements the same method on the CpuFeatureFlags interface.
+func (f *cpuFeatureFlags) Has(cpuFeature CpuFeature) bool {
+	return (f.isar0 & uint64(cpuFeature)) != 0
+}
+
+// HasExtra implements the same method on the CpuFeatureFlags interface.
+func (f *cpuFeatureFlags) HasExtra(cpuFeature CpuFeature) bool {
+	return (f.isar1 & uint64(cpuFeature)) != 0
+}
+
+// Raw implements the same method on the CpuFeatureFlags interface.
+func (f *cpuFeatureFlags) Raw() uint64 {
+	// Below, we only set bits for the features we care about,
+	// instead of setting all the unnecessary bits obtained from the
+	// instruction set attribute registers.
+	var ret uint64
+	if f.Has(CpuFeatureArm64Atomic) {
+		ret = 1 << 0
+	}
+	return ret
+}
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_arm64.s b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_arm64.s
new file mode 100644
index 000000000..98305ad47
--- /dev/null
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_arm64.s
@@ -0,0 +1,21 @@
+//go:build gc
+
+#include "textflag.h"
+
+// lifted from github.com/golang/sys and cpu/cpu_arm64.s
+
+// func getisar0() uint64
+TEXT ·getisar0(SB), NOSPLIT, $0-8
+	// get Instruction Set Attributes 0 into x0
+	// mrs x0, ID_AA64ISAR0_EL1 = d5380600
+	WORD $0xd5380600
+	MOVD R0, ret+0(FP)
+	RET
+
+// func getisar1() uint64
+TEXT ·getisar1(SB), NOSPLIT, $0-8
+	// get Instruction Set Attributes 1 into x0
+	// mrs x0, ID_AA64ISAR1_EL1 = d5380620
+	WORD $0xd5380620
+	MOVD R0, ret+0(FP)
+	RET
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_unsupported.go b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_unsupported.go
index 291bcea65..50a178f52 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_unsupported.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/cpuid_unsupported.go
@@ -1,4 +1,4 @@
-//go:build !amd64 || tinygo
+//go:build !(amd64 || arm64) || !gc
 
 package platform
 
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_other.go b/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_other.go
index ed5c40a4d..9f0610f27 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_other.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_other.go
@@ -1,5 +1,5 @@
 // Separated from linux which has support for huge pages.
-//go:build darwin || freebsd
+//go:build darwin || freebsd || netbsd || dragonfly || solaris
 
 package platform
 
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_unix.go b/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_unix.go
index b0519003b..8d0baa712 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_unix.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_unix.go
@@ -1,10 +1,9 @@
-//go:build (darwin || linux || freebsd) && !tinygo
+//go:build (linux || darwin || freebsd || netbsd || dragonfly || solaris) && !tinygo
 
 package platform
 
 import (
 	"syscall"
-	"unsafe"
 )
 
 const (
@@ -31,17 +30,3 @@ func mmapCodeSegmentARM64(size int) ([]byte, error) {
 	// The region must be RW: RW for writing native codes.
 	return mmapCodeSegment(size, mmapProtARM64)
 }
-
-// MprotectRX is like syscall.Mprotect with RX permission, defined locally so that freebsd compiles.
-func MprotectRX(b []byte) (err error) {
-	var _p0 unsafe.Pointer
-	if len(b) > 0 {
-		_p0 = unsafe.Pointer(&b[0])
-	}
-	const prot = syscall.PROT_READ | syscall.PROT_EXEC
-	_, _, e1 := syscall.Syscall(syscall.SYS_MPROTECT, uintptr(_p0), uintptr(len(b)), uintptr(prot))
-	if e1 != 0 {
-		err = syscall.Errno(e1)
-	}
-	return
-}
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_unsupported.go b/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_unsupported.go
index 079aa643f..f3fa0911a 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_unsupported.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/mmap_unsupported.go
@@ -1,4 +1,4 @@
-//go:build !(darwin || linux || freebsd || windows) || tinygo
+//go:build !(linux || darwin || freebsd || netbsd || dragonfly || solaris || windows) || tinygo
 
 package platform
 
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_bsd.go b/vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_bsd.go
new file mode 100644
index 000000000..f8f40cabe
--- /dev/null
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_bsd.go
@@ -0,0 +1,22 @@
+//go:build (freebsd || netbsd || dragonfly) && !tinygo
+
+package platform
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+// MprotectRX is like syscall.Mprotect with RX permission, defined locally so that BSD compiles.
+func MprotectRX(b []byte) (err error) {
+	var _p0 unsafe.Pointer
+	if len(b) > 0 {
+		_p0 = unsafe.Pointer(&b[0])
+	}
+	const prot = syscall.PROT_READ | syscall.PROT_EXEC
+	_, _, e1 := syscall.Syscall(syscall.SYS_MPROTECT, uintptr(_p0), uintptr(len(b)), uintptr(prot))
+	if e1 != 0 {
+		err = syscall.Errno(e1)
+	}
+	return
+}
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_syscall.go b/vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_syscall.go
new file mode 100644
index 000000000..6fe96d6f6
--- /dev/null
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_syscall.go
@@ -0,0 +1,10 @@
+//go:build (linux || darwin) && !tinygo
+
+package platform
+
+import "syscall"
+
+// MprotectRX is like syscall.Mprotect with RX permission.
+func MprotectRX(b []byte) (err error) {
+	return syscall.Mprotect(b, syscall.PROT_READ|syscall.PROT_EXEC)
+}
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_unsupported.go b/vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_unsupported.go
new file mode 100644
index 000000000..84719ab08
--- /dev/null
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/mprotect_unsupported.go
@@ -0,0 +1,9 @@
+//go:build solaris && !tinygo
+
+package platform
+
+import "syscall"
+
+func MprotectRX(b []byte) error {
+	return syscall.ENOTSUP
+}
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/platform.go b/vendor/github.com/tetratelabs/wazero/internal/platform/platform.go
index a27556240..b9af094c1 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/platform/platform.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/platform.go
@@ -11,15 +11,16 @@ import (
 // archRequirementsVerified is set by platform-specific init to true if the platform is supported
 var archRequirementsVerified bool
 
-// CompilerSupported is exported for tests and includes constraints here and also the assembler.
+// CompilerSupported includes constraints here and also the assembler.
 func CompilerSupported() bool {
 	switch runtime.GOOS {
-	case "darwin", "windows", "linux", "freebsd":
+	case "linux", "darwin", "freebsd", "netbsd", "dragonfly", "windows":
+		return archRequirementsVerified
+	case "solaris", "illumos":
+		return runtime.GOARCH == "amd64" && archRequirementsVerified
 	default:
 		return false
 	}
-
-	return archRequirementsVerified
 }
 
 // MmapCodeSegment copies the code into the executable region and returns the byte slice of the region.
diff --git a/vendor/github.com/tetratelabs/wazero/internal/platform/platform_arm64.go b/vendor/github.com/tetratelabs/wazero/internal/platform/platform_arm64.go
index caac58a3d..a8df707c7 100644
--- a/vendor/github.com/tetratelabs/wazero/internal/platform/platform_arm64.go
+++ b/vendor/github.com/tetratelabs/wazero/internal/platform/platform_arm64.go
@@ -2,6 +2,6 @@ package platform
 
 // init verifies that the current CPU supports the required ARM64 features
 func init() {
-	// No further checks currently needed.
-	archRequirementsVerified = true
+	// Ensure atomic instructions are supported.
+	archRequirementsVerified = CpuFeatures.Has(CpuFeatureArm64Atomic)
 }
diff --git a/vendor/modules.txt b/vendor/modules.txt
index 246e90c7d..07598062b 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -520,7 +520,7 @@ github.com/modern-go/reflect2
 # github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822
 ## explicit
 github.com/munnerz/goautoneg
-# github.com/ncruces/go-sqlite3 v0.20.2
+# github.com/ncruces/go-sqlite3 v0.20.3
 ## explicit; go 1.21
 github.com/ncruces/go-sqlite3
 github.com/ncruces/go-sqlite3/driver
@@ -852,7 +852,7 @@ github.com/tdewolff/parse/v2/strconv
 # github.com/technologize/otel-go-contrib v1.1.1
 ## explicit; go 1.17
 github.com/technologize/otel-go-contrib/otelginmetrics
-# github.com/tetratelabs/wazero v1.8.1
+# github.com/tetratelabs/wazero v1.8.2
 ## explicit; go 1.21
 github.com/tetratelabs/wazero
 github.com/tetratelabs/wazero/api

From 65917f5bb98f1c0a0ce7285c284d25ea843c02c7 Mon Sep 17 00:00:00 2001
From: tobi <31960611+tsmethurst@users.noreply.github.com>
Date: Wed, 27 Nov 2024 18:22:45 +0100
Subject: [PATCH 12/26] [bugfix] Log + ignore unknown notification types
 (#3577)

* [bugfix] Log + ignore unknown notification types

* pass context to ParseNotificationTypes
---
 .../client/notifications/notificationsget.go  | 47 +++++++++++++------
 .../notifications/notificationsget_test.go    | 39 +++++++++++++++
 internal/api/util/parsequery.go               | 47 -------------------
 internal/gtsmodel/notification.go             | 36 +++++++++++++-
 4 files changed, 106 insertions(+), 63 deletions(-)

diff --git a/internal/api/client/notifications/notificationsget.go b/internal/api/client/notifications/notificationsget.go
index 841768c63..7caadbe7d 100644
--- a/internal/api/client/notifications/notificationsget.go
+++ b/internal/api/client/notifications/notificationsget.go
@@ -18,11 +18,14 @@
 package notifications
 
 import (
+	"context"
 	"net/http"
 
 	"github.com/gin-gonic/gin"
 	apiutil "github.com/superseriousbusiness/gotosocial/internal/api/util"
 	"github.com/superseriousbusiness/gotosocial/internal/gtserror"
+	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
+	"github.com/superseriousbusiness/gotosocial/internal/log"
 	"github.com/superseriousbusiness/gotosocial/internal/oauth"
 	"github.com/superseriousbusiness/gotosocial/internal/paging"
 )
@@ -151,18 +154,6 @@ func (m *Module) NotificationsGETHandler(c *gin.Context) {
 		return
 	}
 
-	types, errWithCode := apiutil.ParseNotificationTypes(c.QueryArray(TypesKey))
-	if errWithCode != nil {
-		apiutil.ErrorHandler(c, errWithCode, m.processor.InstanceGetV1)
-		return
-	}
-
-	exclTypes, errWithCode := apiutil.ParseNotificationTypes(c.QueryArray(ExcludeTypesKey))
-	if errWithCode != nil {
-		apiutil.ErrorHandler(c, errWithCode, m.processor.InstanceGetV1)
-		return
-	}
-
 	page, errWithCode := paging.ParseIDPage(c,
 		1,  // min limit
 		80, // max limit
@@ -173,12 +164,13 @@ func (m *Module) NotificationsGETHandler(c *gin.Context) {
 		return
 	}
 
+	ctx := c.Request.Context()
 	resp, errWithCode := m.processor.Timeline().NotificationsGet(
-		c.Request.Context(),
+		ctx,
 		authed,
 		page,
-		types,
-		exclTypes,
+		ParseNotificationTypes(ctx, c.QueryArray(TypesKey)),        // Include types.
+		ParseNotificationTypes(ctx, c.QueryArray(ExcludeTypesKey)), // Exclude types.
 	)
 	if errWithCode != nil {
 		apiutil.ErrorHandler(c, errWithCode, m.processor.InstanceGetV1)
@@ -191,3 +183,28 @@ func (m *Module) NotificationsGETHandler(c *gin.Context) {
 
 	apiutil.JSON(c, http.StatusOK, resp.Items)
 }
+
+// ParseNotificationTypes converts the given slice of string values
+// to gtsmodel notification types, logging + skipping unknown types.
+func ParseNotificationTypes(
+	ctx context.Context,
+	values []string,
+) []gtsmodel.NotificationType {
+	if len(values) == 0 {
+		return nil
+	}
+
+	ntypes := make([]gtsmodel.NotificationType, 0, len(values))
+	for _, value := range values {
+		ntype := gtsmodel.NewNotificationType(value)
+		if ntype == gtsmodel.NotificationUnknown {
+			// Type we don't know about (yet), log and ignore it.
+			log.Debugf(ctx, "ignoring unknown type %s", value)
+			continue
+		}
+
+		ntypes = append(ntypes, ntype)
+	}
+
+	return ntypes
+}
diff --git a/internal/api/client/notifications/notificationsget_test.go b/internal/api/client/notifications/notificationsget_test.go
index 97d0e854b..5a6f83959 100644
--- a/internal/api/client/notifications/notificationsget_test.go
+++ b/internal/api/client/notifications/notificationsget_test.go
@@ -248,6 +248,45 @@ func (suite *NotificationsTestSuite) TestGetNotificationsIncludeOneType() {
 	}
 }
 
+// Test including an unknown notification type, it should be ignored.
+func (suite *NotificationsTestSuite) TestGetNotificationsIncludeUnknownType() {
+	testAccount := suite.testAccounts["local_account_1"]
+	testToken := suite.testTokens["local_account_1"]
+	testUser := suite.testUsers["local_account_1"]
+
+	suite.addMoreNotifications(testAccount)
+
+	maxID := ""
+	minID := ""
+	limit := 10
+	types := []string{"favourite", "something.weird"}
+	excludeTypes := []string(nil)
+	expectedHTTPStatus := http.StatusOK
+	expectedBody := ""
+
+	notifications, _, err := suite.getNotifications(
+		testAccount,
+		testToken,
+		testUser,
+		maxID,
+		minID,
+		limit,
+		types,
+		excludeTypes,
+		expectedHTTPStatus,
+		expectedBody,
+	)
+	if err != nil {
+		suite.FailNow(err.Error())
+	}
+
+	// This should only include the fav notification.
+	suite.Len(notifications, 1)
+	for _, notification := range notifications {
+		suite.Equal("favourite", notification.Type)
+	}
+}
+
 func TestBookmarkTestSuite(t *testing.T) {
 	suite.Run(t, new(NotificationsTestSuite))
 }
diff --git a/internal/api/util/parsequery.go b/internal/api/util/parsequery.go
index 9929524c5..9f4c02aed 100644
--- a/internal/api/util/parsequery.go
+++ b/internal/api/util/parsequery.go
@@ -18,13 +18,11 @@
 package util
 
 import (
-	"errors"
 	"fmt"
 	"strconv"
 	"strings"
 
 	"github.com/superseriousbusiness/gotosocial/internal/gtserror"
-	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
 )
 
 const (
@@ -218,51 +216,6 @@ func ParseInteractionReblogs(value string, defaultValue bool) (bool, gtserror.Wi
 	return parseBool(value, defaultValue, InteractionReblogsKey)
 }
 
-func ParseNotificationType(value string) (gtsmodel.NotificationType, gtserror.WithCode) {
-	switch strings.ToLower(value) {
-	case "follow":
-		return gtsmodel.NotificationFollow, nil
-	case "follow_request":
-		return gtsmodel.NotificationFollowRequest, nil
-	case "mention":
-		return gtsmodel.NotificationMention, nil
-	case "reblog":
-		return gtsmodel.NotificationReblog, nil
-	case "favourite":
-		return gtsmodel.NotificationFave, nil
-	case "poll":
-		return gtsmodel.NotificationPoll, nil
-	case "status":
-		return gtsmodel.NotificationStatus, nil
-	case "admin.sign_up":
-		return gtsmodel.NotificationSignup, nil
-	case "pending.favourite":
-		return gtsmodel.NotificationPendingFave, nil
-	case "pending.reply":
-		return gtsmodel.NotificationPendingReply, nil
-	case "pending.reblog":
-		return gtsmodel.NotificationPendingReblog, nil
-	default:
-		text := fmt.Sprintf("unrecognized notification type %s", value)
-		return 0, gtserror.NewErrorBadRequest(errors.New(text), text)
-	}
-}
-
-func ParseNotificationTypes(values []string) ([]gtsmodel.NotificationType, gtserror.WithCode) {
-	if len(values) == 0 {
-		return nil, nil
-	}
-	ntypes := make([]gtsmodel.NotificationType, len(values))
-	for i, value := range values {
-		ntype, errWithCode := ParseNotificationType(value)
-		if errWithCode != nil {
-			return nil, errWithCode
-		}
-		ntypes[i] = ntype
-	}
-	return ntypes, nil
-}
-
 /*
 	Parse functions for *REQUIRED* parameters.
 */
diff --git a/internal/gtsmodel/notification.go b/internal/gtsmodel/notification.go
index 49f1fe2bb..47bf7daa5 100644
--- a/internal/gtsmodel/notification.go
+++ b/internal/gtsmodel/notification.go
@@ -17,7 +17,10 @@
 
 package gtsmodel
 
-import "time"
+import (
+	"strings"
+	"time"
+)
 
 // Notification models an alert/notification sent to an account about something like a reblog, like, new follow request, etc.
 type Notification struct {
@@ -40,6 +43,7 @@ type NotificationType enumType
 
 const (
 	// Notification Types
+	NotificationUnknown       NotificationType = 0  // NotificationUnknown -- unknown notification type, error if this occurs
 	NotificationFollow        NotificationType = 1  // NotificationFollow -- someone followed you
 	NotificationFollowRequest NotificationType = 2  // NotificationFollowRequest -- someone requested to follow you
 	NotificationMention       NotificationType = 3  // NotificationMention -- someone mentioned you in their status
@@ -82,3 +86,33 @@ func (t NotificationType) String() string {
 		panic("invalid notification type")
 	}
 }
+
+// NewNotificationType returns a notification type from the given value.
+func NewNotificationType(in string) NotificationType {
+	switch strings.ToLower(in) {
+	case "follow":
+		return NotificationFollow
+	case "follow_request":
+		return NotificationFollowRequest
+	case "mention":
+		return NotificationMention
+	case "reblog":
+		return NotificationReblog
+	case "favourite":
+		return NotificationFave
+	case "poll":
+		return NotificationPoll
+	case "status":
+		return NotificationStatus
+	case "admin.sign_up":
+		return NotificationSignup
+	case "pending.favourite":
+		return NotificationPendingFave
+	case "pending.reply":
+		return NotificationPendingReply
+	case "pending.reblog":
+		return NotificationPendingReblog
+	default:
+		return NotificationUnknown
+	}
+}

From 312cb8b9c7e13802613fef33124a4570427e75a7 Mon Sep 17 00:00:00 2001
From: kim <89579420+NyaaaWhatsUpDoc@users.noreply.github.com>
Date: Thu, 28 Nov 2024 11:54:22 +0000
Subject: [PATCH 13/26] [chore] rename New___(string) int signature functions
 to Parse___(string) int (#3580)

* rename New___(string) int {} signature functions to Parse___(string) int {}

* remove test output
---
 .../api/client/admin/domainpermissiondraftsget.go  | 14 +++++---------
 .../api/client/notifications/notificationsget.go   | 12 ++++++------
 .../20230828101322_admin_action_locking.go         |  2 +-
 internal/gtsmodel/adminaction.go                   |  9 +++++----
 internal/gtsmodel/domainpermission.go              |  9 ++++++---
 internal/gtsmodel/notification.go                  |  4 ++--
 internal/processing/admin/accountaction.go         |  2 +-
 7 files changed, 26 insertions(+), 26 deletions(-)

diff --git a/internal/api/client/admin/domainpermissiondraftsget.go b/internal/api/client/admin/domainpermissiondraftsget.go
index dd3315857..d63179afc 100644
--- a/internal/api/client/admin/domainpermissiondraftsget.go
+++ b/internal/api/client/admin/domainpermissiondraftsget.go
@@ -147,16 +147,12 @@ func (m *Module) DomainPermissionDraftsGETHandler(c *gin.Context) {
 		return
 	}
 
-	permType := c.Query(apiutil.DomainPermissionPermTypeKey)
-	switch permType {
-	case "", "block", "allow":
-		// No problem.
-
-	default:
-		// Invalid.
+	permTypeStr := c.Query(apiutil.DomainPermissionPermTypeKey)
+	permType := gtsmodel.ParseDomainPermissionType(permTypeStr)
+	if permType == gtsmodel.DomainPermissionUnknown {
 		text := fmt.Sprintf(
 			"permission_type %s not recognized, valid values are empty string, block, or allow",
-			permType,
+			permTypeStr,
 		)
 		errWithCode := gtserror.NewErrorBadRequest(errors.New(text), text)
 		apiutil.ErrorHandler(c, errWithCode, m.processor.InstanceGetV1)
@@ -173,7 +169,7 @@ func (m *Module) DomainPermissionDraftsGETHandler(c *gin.Context) {
 		c.Request.Context(),
 		c.Query(apiutil.DomainPermissionSubscriptionIDKey),
 		c.Query(apiutil.DomainPermissionDomainKey),
-		gtsmodel.NewDomainPermissionType(permType),
+		permType,
 		page,
 	)
 	if errWithCode != nil {
diff --git a/internal/api/client/notifications/notificationsget.go b/internal/api/client/notifications/notificationsget.go
index 7caadbe7d..b530c515d 100644
--- a/internal/api/client/notifications/notificationsget.go
+++ b/internal/api/client/notifications/notificationsget.go
@@ -169,8 +169,8 @@ func (m *Module) NotificationsGETHandler(c *gin.Context) {
 		ctx,
 		authed,
 		page,
-		ParseNotificationTypes(ctx, c.QueryArray(TypesKey)),        // Include types.
-		ParseNotificationTypes(ctx, c.QueryArray(ExcludeTypesKey)), // Exclude types.
+		parseNotificationTypes(ctx, c.QueryArray(TypesKey)),        // Include types.
+		parseNotificationTypes(ctx, c.QueryArray(ExcludeTypesKey)), // Exclude types.
 	)
 	if errWithCode != nil {
 		apiutil.ErrorHandler(c, errWithCode, m.processor.InstanceGetV1)
@@ -184,9 +184,9 @@ func (m *Module) NotificationsGETHandler(c *gin.Context) {
 	apiutil.JSON(c, http.StatusOK, resp.Items)
 }
 
-// ParseNotificationTypes converts the given slice of string values
+// parseNotificationTypes converts the given slice of string values
 // to gtsmodel notification types, logging + skipping unknown types.
-func ParseNotificationTypes(
+func parseNotificationTypes(
 	ctx context.Context,
 	values []string,
 ) []gtsmodel.NotificationType {
@@ -196,10 +196,10 @@ func ParseNotificationTypes(
 
 	ntypes := make([]gtsmodel.NotificationType, 0, len(values))
 	for _, value := range values {
-		ntype := gtsmodel.NewNotificationType(value)
+		ntype := gtsmodel.ParseNotificationType(value)
 		if ntype == gtsmodel.NotificationUnknown {
 			// Type we don't know about (yet), log and ignore it.
-			log.Debugf(ctx, "ignoring unknown type %s", value)
+			log.Warnf(ctx, "ignoring unknown type %s", value)
 			continue
 		}
 
diff --git a/internal/db/bundb/migrations/20230828101322_admin_action_locking.go b/internal/db/bundb/migrations/20230828101322_admin_action_locking.go
index b72976cc9..29c29a747 100644
--- a/internal/db/bundb/migrations/20230828101322_admin_action_locking.go
+++ b/internal/db/bundb/migrations/20230828101322_admin_action_locking.go
@@ -77,7 +77,7 @@ func init() {
 					UpdatedAt:      oldAction.UpdatedAt,
 					TargetCategory: gtsmodel.AdminActionCategoryAccount,
 					TargetID:       oldAction.TargetAccountID,
-					Type:           gtsmodel.NewAdminActionType(string(oldAction.Type)),
+					Type:           gtsmodel.ParseAdminActionType(string(oldAction.Type)),
 					AccountID:      oldAction.AccountID,
 					Text:           oldAction.Text,
 					SendEmail:      util.Ptr(oldAction.SendEmail),
diff --git a/internal/gtsmodel/adminaction.go b/internal/gtsmodel/adminaction.go
index e8b82e495..5ca8244a0 100644
--- a/internal/gtsmodel/adminaction.go
+++ b/internal/gtsmodel/adminaction.go
@@ -19,6 +19,7 @@ package gtsmodel
 
 import (
 	"path"
+	"strings"
 	"time"
 )
 
@@ -46,8 +47,8 @@ func (c AdminActionCategory) String() string {
 	}
 }
 
-func NewAdminActionCategory(in string) AdminActionCategory {
-	switch in {
+func ParseAdminActionCategory(in string) AdminActionCategory {
+	switch strings.ToLower(in) {
 	case "account":
 		return AdminActionCategoryAccount
 	case "domain":
@@ -96,8 +97,8 @@ func (t AdminActionType) String() string {
 	}
 }
 
-func NewAdminActionType(in string) AdminActionType {
-	switch in {
+func ParseAdminActionType(in string) AdminActionType {
+	switch strings.ToLower(in) {
 	case "disable":
 		return AdminActionDisable
 	case "reenable":
diff --git a/internal/gtsmodel/domainpermission.go b/internal/gtsmodel/domainpermission.go
index 3d1ee873f..f1db4de59 100644
--- a/internal/gtsmodel/domainpermission.go
+++ b/internal/gtsmodel/domainpermission.go
@@ -17,7 +17,10 @@
 
 package gtsmodel
 
-import "time"
+import (
+	"strings"
+	"time"
+)
 
 // DomainPermission models a domain permission
 // entry -- block / allow / draft / exclude.
@@ -62,8 +65,8 @@ func (p DomainPermissionType) String() string {
 	}
 }
 
-func NewDomainPermissionType(in string) DomainPermissionType {
-	switch in {
+func ParseDomainPermissionType(in string) DomainPermissionType {
+	switch strings.ToLower(in) {
 	case "block":
 		return DomainPermissionBlock
 	case "allow":
diff --git a/internal/gtsmodel/notification.go b/internal/gtsmodel/notification.go
index 47bf7daa5..1ef805081 100644
--- a/internal/gtsmodel/notification.go
+++ b/internal/gtsmodel/notification.go
@@ -87,8 +87,8 @@ func (t NotificationType) String() string {
 	}
 }
 
-// NewNotificationType returns a notification type from the given value.
-func NewNotificationType(in string) NotificationType {
+// ParseNotificationType returns a notification type from the given value.
+func ParseNotificationType(in string) NotificationType {
 	switch strings.ToLower(in) {
 	case "follow":
 		return NotificationFollow
diff --git a/internal/processing/admin/accountaction.go b/internal/processing/admin/accountaction.go
index 7fd1047c4..59d4b420e 100644
--- a/internal/processing/admin/accountaction.go
+++ b/internal/processing/admin/accountaction.go
@@ -40,7 +40,7 @@ func (p *Processor) AccountAction(
 		return "", gtserror.NewErrorInternalError(err)
 	}
 
-	switch gtsmodel.NewAdminActionType(request.Type) {
+	switch gtsmodel.ParseAdminActionType(request.Type) {
 	case gtsmodel.AdminActionSuspend:
 		return p.accountActionSuspend(ctx, adminAcct, targetAcct, request.Text)
 

From 3cc50491c23dca58ad01e5f07e9a0008b4fee937 Mon Sep 17 00:00:00 2001
From: kim <89579420+NyaaaWhatsUpDoc@users.noreply.github.com>
Date: Thu, 28 Nov 2024 15:14:49 +0000
Subject: [PATCH 14/26] pulls in the latest exif-terminator version with bugfix
 and performance optimizations (#3583)

---
 go.mod                                        |  2 +-
 go.sum                                        |  4 +-
 .../exif-terminator/jpeg.go                   | 16 ++--
 .../exif-terminator/webp.go                   | 94 ++++++++++---------
 vendor/modules.txt                            |  2 +-
 5 files changed, 63 insertions(+), 55 deletions(-)

diff --git a/go.mod b/go.mod
index 6f1ec2b26..19fecf914 100644
--- a/go.mod
+++ b/go.mod
@@ -41,7 +41,7 @@ require (
 	codeberg.org/gruf/go-sched v1.2.4
 	codeberg.org/gruf/go-storage v0.2.0
 	codeberg.org/gruf/go-structr v0.8.11
-	codeberg.org/superseriousbusiness/exif-terminator v0.9.0
+	codeberg.org/superseriousbusiness/exif-terminator v0.9.1
 	github.com/DmitriyVTitov/size v1.5.0
 	github.com/KimMachineGun/automemlimit v0.6.1
 	github.com/buckket/go-blurhash v1.1.0
diff --git a/go.sum b/go.sum
index d190203a1..34fe33d84 100644
--- a/go.sum
+++ b/go.sum
@@ -72,8 +72,8 @@ codeberg.org/gruf/go-storage v0.2.0 h1:mKj3Lx6AavEkuXXtxqPhdq+akW9YwrnP16yQBF7K5
 codeberg.org/gruf/go-storage v0.2.0/go.mod h1:o3GzMDE5QNUaRnm/daUzFqvuAaC4utlgXDXYO79sWKU=
 codeberg.org/gruf/go-structr v0.8.11 h1:I3cQCHpK3fQSXWaaUfksAJRN4+efULiuF11Oi/m8c+o=
 codeberg.org/gruf/go-structr v0.8.11/go.mod h1:zkoXVrAnKosh8VFAsbP/Hhs8FmLBjbVVy5w/Ngm8ApM=
-codeberg.org/superseriousbusiness/exif-terminator v0.9.0 h1:/EfyGI6HIrbkhFwgXGSjZ9o1kr/+k8v4mKdfXTH02Go=
-codeberg.org/superseriousbusiness/exif-terminator v0.9.0/go.mod h1:gCWKduudUWFzsnixoMzu0FYVdxHWG+AbXnZ50DqxsUE=
+codeberg.org/superseriousbusiness/exif-terminator v0.9.1 h1:8Pss29AVuvljHAYLnZUyoqJp/8IN1cD3Jz30bJbxme8=
+codeberg.org/superseriousbusiness/exif-terminator v0.9.1/go.mod h1:gCWKduudUWFzsnixoMzu0FYVdxHWG+AbXnZ50DqxsUE=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
diff --git a/vendor/codeberg.org/superseriousbusiness/exif-terminator/jpeg.go b/vendor/codeberg.org/superseriousbusiness/exif-terminator/jpeg.go
index 3c8b7035f..01ca313ca 100644
--- a/vendor/codeberg.org/superseriousbusiness/exif-terminator/jpeg.go
+++ b/vendor/codeberg.org/superseriousbusiness/exif-terminator/jpeg.go
@@ -109,17 +109,17 @@ func (v *jpegVisitor) writeSegment(s *jpegstructure.Segment) error {
 
 		sizeLen, found := markerLen[s.MarkerId]
 		if !found || sizeLen == 2 {
-			sizeLen = 2
-			l := uint16(len(s.Data) + sizeLen)
-
-			if err := binary.Write(w, binary.BigEndian, &l); err != nil {
+			l := uint16(len(s.Data) + 2)
+			b := make([]byte, 2)
+			binary.BigEndian.PutUint16(b, l)
+			if _, err := w.Write(b); err != nil {
 				return err
 			}
-
 		} else if sizeLen == 4 {
-			l := uint32(len(s.Data) + sizeLen)
-
-			if err := binary.Write(w, binary.BigEndian, &l); err != nil {
+			l := uint32(len(s.Data) + 4)
+			b := make([]byte, 4)
+			binary.BigEndian.PutUint32(b, l)
+			if _, err := w.Write(b); err != nil {
 				return err
 			}
 		} else if sizeLen != 0 {
diff --git a/vendor/codeberg.org/superseriousbusiness/exif-terminator/webp.go b/vendor/codeberg.org/superseriousbusiness/exif-terminator/webp.go
index 392c4871d..b050f38fc 100644
--- a/vendor/codeberg.org/superseriousbusiness/exif-terminator/webp.go
+++ b/vendor/codeberg.org/superseriousbusiness/exif-terminator/webp.go
@@ -25,17 +25,16 @@ import (
 )
 
 const (
-	riffHeaderSize = 4 * 3
+	riffHeader = "RIFF"
+	webpHeader = "WEBP"
+	exifFourcc = "EXIF"
+	xmpFourcc  = "XMP "
 )
 
 var (
-	riffHeader = [4]byte{'R', 'I', 'F', 'F'}
-	webpHeader = [4]byte{'W', 'E', 'B', 'P'}
-	exifFourcc = [4]byte{'E', 'X', 'I', 'F'}
-	xmpFourcc  = [4]byte{'X', 'M', 'P', ' '}
-
 	errNoRiffHeader = errors.New("no RIFF header")
 	errNoWebpHeader = errors.New("not a WEBP file")
+	errInvalidChunk = errors.New("invalid chunk")
 )
 
 type webpVisitor struct {
@@ -43,59 +42,68 @@ type webpVisitor struct {
 	doneHeader bool
 }
 
-func fourCC(b []byte) [4]byte {
-	return [4]byte{b[0], b[1], b[2], b[3]}
-}
-
 func (v *webpVisitor) split(data []byte, atEOF bool) (advance int, token []byte, err error) {
 	// parse/write the header first
 	if !v.doneHeader {
-		if len(data) < riffHeaderSize {
-			// need the full header
+
+		// const rifHeaderSize = 12
+		if len(data) < 12 {
+			if atEOF {
+				err = errNoRiffHeader
+			}
 			return
 		}
-		if fourCC(data) != riffHeader {
+
+		if string(data[:4]) != riffHeader {
 			err = errNoRiffHeader
 			return
 		}
-		if fourCC(data[8:]) != webpHeader {
+
+		if string(data[8:12]) != webpHeader {
 			err = errNoWebpHeader
 			return
 		}
-		if _, err = v.writer.Write(data[:riffHeaderSize]); err != nil {
+
+		if _, err = v.writer.Write(data[:12]); err != nil {
 			return
 		}
-		advance += riffHeaderSize
-		data = data[riffHeaderSize:]
+
+		advance += 12
+		data = data[12:]
 		v.doneHeader = true
 	}
 
-	// need enough for fourcc and size
-	if len(data) < 8 {
-		return
-	}
-	size := int64(binary.LittleEndian.Uint32(data[4:]))
-	if (size & 1) != 0 {
-		// odd chunk size - extra padding byte
-		size++
-	}
-	// wait until there is enough
-	if int64(len(data)-8) < size {
-		return
-	}
-
-	fourcc := fourCC(data)
-	rawChunkData := data[8 : 8+size]
-	if fourcc == exifFourcc || fourcc == xmpFourcc {
-		// replace exif/xmp with blank
-		rawChunkData = make([]byte, size)
-	}
-
-	if _, err = v.writer.Write(data[:8]); err == nil {
-		if _, err = v.writer.Write(rawChunkData); err == nil {
-			advance += 8 + int(size)
+	for {
+		// need enough for
+		// fourcc and size
+		if len(data) < 8 {
+			return
 		}
-	}
 
-	return
+		size := int64(binary.LittleEndian.Uint32(data[4:]))
+
+		if (size & 1) != 0 {
+			// odd chunk size:
+			// extra padding byte
+			size++
+		}
+
+		// wait until there is enough
+		if int64(len(data)) < 8+size {
+			return
+		}
+
+		// replace exif/xmp with blank
+		switch string(data[:4]) {
+		case exifFourcc, xmpFourcc:
+			clear(data[8 : 8+size])
+		}
+
+		if _, err = v.writer.Write(data[:8+size]); err != nil {
+			return
+		}
+
+		advance += 8 + int(size)
+		data = data[8+size:]
+	}
 }
diff --git a/vendor/modules.txt b/vendor/modules.txt
index 07598062b..4c57a75de 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -66,7 +66,7 @@ codeberg.org/gruf/go-storage/s3
 # codeberg.org/gruf/go-structr v0.8.11
 ## explicit; go 1.21
 codeberg.org/gruf/go-structr
-# codeberg.org/superseriousbusiness/exif-terminator v0.9.0
+# codeberg.org/superseriousbusiness/exif-terminator v0.9.1
 ## explicit; go 1.21
 codeberg.org/superseriousbusiness/exif-terminator
 # github.com/DmitriyVTitov/size v1.5.0

From d9f67efae512673c826b27daeae404a6051d9817 Mon Sep 17 00:00:00 2001
From: kim <89579420+NyaaaWhatsUpDoc@users.noreply.github.com>
Date: Thu, 28 Nov 2024 15:37:37 +0000
Subject: [PATCH 15/26] send out poll votes as separate create activities given
 that no other AP servers support multiple objects in a single activity
 (#3582)

---
 internal/processing/workers/federate.go | 17 ++++---
 internal/typeutils/internaltoas.go      | 42 +++++++++-------
 internal/typeutils/internaltoas_test.go | 64 +++++++++++++++----------
 3 files changed, 75 insertions(+), 48 deletions(-)

diff --git a/internal/processing/workers/federate.go b/internal/processing/workers/federate.go
index a0fd6bf69..8c08c42b7 100644
--- a/internal/processing/workers/federate.go
+++ b/internal/processing/workers/federate.go
@@ -217,18 +217,23 @@ func (f *federate) CreatePollVote(ctx context.Context, poll *gtsmodel.Poll, vote
 		return err
 	}
 
-	// Convert vote to AS Create with vote choices as Objects.
-	create, err := f.converter.PollVoteToASCreate(ctx, vote)
+	// Convert vote to AS Creates with vote choices as Objects.
+	creates, err := f.converter.PollVoteToASCreates(ctx, vote)
 	if err != nil {
 		return gtserror.Newf("error converting to notes: %w", err)
 	}
 
-	// Send the Create via the Actor's outbox.
-	if _, err := f.FederatingActor().Send(ctx, outboxIRI, create); err != nil {
-		return gtserror.Newf("error sending Create activity via outbox %s: %w", outboxIRI, err)
+	var errs gtserror.MultiError
+
+	// Send each create activity.
+	actor := f.FederatingActor()
+	for _, create := range creates {
+		if _, err := actor.Send(ctx, outboxIRI, create); err != nil {
+			errs.Appendf("error sending Create activity via outbox %s: %w", outboxIRI, err)
+		}
 	}
 
-	return nil
+	return errs.Combine()
 }
 
 func (f *federate) DeleteStatus(ctx context.Context, status *gtsmodel.Status) error {
diff --git a/internal/typeutils/internaltoas.go b/internal/typeutils/internaltoas.go
index ed8bc1d8d..a81e5d2c0 100644
--- a/internal/typeutils/internaltoas.go
+++ b/internal/typeutils/internaltoas.go
@@ -1701,10 +1701,14 @@ func (c *Converter) ReportToASFlag(ctx context.Context, r *gtsmodel.Report) (voc
 // PollVoteToASCreate converts a vote on a poll into a Create
 // activity, suitable for federation, with each choice in the
 // vote appended as a Note to the Create's Object field.
-func (c *Converter) PollVoteToASCreate(
+//
+// TODO: as soon as other AP server implementations support
+// the use of multiple objects in a single create, update this
+// to return just the one create event again.
+func (c *Converter) PollVoteToASCreates(
 	ctx context.Context,
 	vote *gtsmodel.PollVote,
-) (vocab.ActivityStreamsCreate, error) {
+) ([]vocab.ActivityStreamsCreate, error) {
 	if len(vote.Choices) == 0 {
 		panic("no vote.Choices")
 	}
@@ -1743,22 +1747,25 @@ func (c *Converter) PollVoteToASCreate(
 		return nil, gtserror.Newf("invalid account uri: %w", err)
 	}
 
-	// Allocate Create activity and address 'To' poll author.
-	create := streams.NewActivityStreamsCreate()
-	ap.AppendTo(create, pollAuthorIRI)
+	// Parse each choice to a Note and add it to the list of Creates.
+	creates := make([]vocab.ActivityStreamsCreate, len(vote.Choices))
+	for i, choice := range vote.Choices {
 
-	// Create ID formatted as: {$voterIRI}/activity#vote/{$statusIRI}.
-	id := author.URI + "/activity#vote/" + poll.Status.URI
-	ap.MustSet(ap.SetJSONLDIdStr, ap.WithJSONLDId(create), id)
+		// Allocate Create activity and address 'To' poll author.
+		create := streams.NewActivityStreamsCreate()
+		ap.AppendTo(create, pollAuthorIRI)
 
-	// Set Create actor appropriately.
-	ap.AppendActorIRIs(create, authorIRI)
+		// Create ID formatted as: {$voterIRI}/activity#vote{$index}/{$statusIRI}.
+		createID := fmt.Sprintf("%s/activity#vote%d/%s", author.URI, i, poll.Status.URI)
+		ap.MustSet(ap.SetJSONLDIdStr, ap.WithJSONLDId(create), createID)
 
-	// Set publish time for activity.
-	ap.SetPublished(create, vote.CreatedAt)
+		// Set Create actor appropriately.
+		ap.AppendActorIRIs(create, authorIRI)
 
-	// Parse each choice to a Note and add it to the Create.
-	for _, choice := range vote.Choices {
+		// Set publish time for activity.
+		ap.SetPublished(create, vote.CreatedAt)
+
+		// Allocate new note to hold the vote.
 		note := streams.NewActivityStreamsNote()
 
 		// For AP IRI generate from author URI + poll ID + vote choice.
@@ -1775,11 +1782,14 @@ func (c *Converter) PollVoteToASCreate(
 		ap.AppendInReplyTo(note, statusIRI)
 		ap.AppendTo(note, pollAuthorIRI)
 
-		// Append this note as Create Object.
+		// Append this note to the Create Object.
 		appendStatusableToActivity(create, note, false)
+
+		// Set create in slice.
+		creates[i] = create
 	}
 
-	return create, nil
+	return creates, nil
 }
 
 // populateValuesForProp appends the given PolicyValues
diff --git a/internal/typeutils/internaltoas_test.go b/internal/typeutils/internaltoas_test.go
index a97eee2b8..c847cfc93 100644
--- a/internal/typeutils/internaltoas_test.go
+++ b/internal/typeutils/internaltoas_test.go
@@ -1104,43 +1104,55 @@ func (suite *InternalToASTestSuite) TestPinnedStatusesToASOneItem() {
 func (suite *InternalToASTestSuite) TestPollVoteToASCreate() {
 	vote := suite.testPollVotes["remote_account_1_status_2_poll_vote_local_account_1"]
 
-	create, err := suite.typeconverter.PollVoteToASCreate(context.Background(), vote)
-	if err != nil {
-		suite.FailNow(err.Error())
-	}
+	creates, err := suite.typeconverter.PollVoteToASCreates(context.Background(), vote)
+	suite.NoError(err)
+	suite.Len(creates, 2)
 
-	createI, err := ap.Serialize(create)
+	createI0, err := ap.Serialize(creates[0])
 	suite.NoError(err)
 
-	bytes, err := json.MarshalIndent(createI, "", "  ")
+	createI1, err := ap.Serialize(creates[1])
+	suite.NoError(err)
+
+	bytes0, err := json.MarshalIndent(createI0, "", "  ")
+	suite.NoError(err)
+
+	bytes1, err := json.MarshalIndent(createI1, "", "  ")
 	suite.NoError(err)
 
 	suite.Equal(`{
   "@context": "https://www.w3.org/ns/activitystreams",
   "actor": "http://localhost:8080/users/the_mighty_zork",
-  "id": "http://localhost:8080/users/the_mighty_zork/activity#vote/http://fossbros-anonymous.io/users/foss_satan/statuses/01HEN2QRFA8H3C6QPN7RD4KSR6",
-  "object": [
-    {
-      "attributedTo": "http://localhost:8080/users/the_mighty_zork",
-      "id": "http://localhost:8080/users/the_mighty_zork#01HEN2R65468ZG657C4ZPHJ4EX/votes/1",
-      "inReplyTo": "http://fossbros-anonymous.io/users/foss_satan/statuses/01HEN2QRFA8H3C6QPN7RD4KSR6",
-      "name": "tissues",
-      "to": "http://fossbros-anonymous.io/users/foss_satan",
-      "type": "Note"
-    },
-    {
-      "attributedTo": "http://localhost:8080/users/the_mighty_zork",
-      "id": "http://localhost:8080/users/the_mighty_zork#01HEN2R65468ZG657C4ZPHJ4EX/votes/2",
-      "inReplyTo": "http://fossbros-anonymous.io/users/foss_satan/statuses/01HEN2QRFA8H3C6QPN7RD4KSR6",
-      "name": "financial times",
-      "to": "http://fossbros-anonymous.io/users/foss_satan",
-      "type": "Note"
-    }
-  ],
+  "id": "http://localhost:8080/users/the_mighty_zork/activity#vote0/http://fossbros-anonymous.io/users/foss_satan/statuses/01HEN2QRFA8H3C6QPN7RD4KSR6",
+  "object": {
+    "attributedTo": "http://localhost:8080/users/the_mighty_zork",
+    "id": "http://localhost:8080/users/the_mighty_zork#01HEN2R65468ZG657C4ZPHJ4EX/votes/1",
+    "inReplyTo": "http://fossbros-anonymous.io/users/foss_satan/statuses/01HEN2QRFA8H3C6QPN7RD4KSR6",
+    "name": "tissues",
+    "to": "http://fossbros-anonymous.io/users/foss_satan",
+    "type": "Note"
+  },
   "published": "2021-09-11T11:45:37+02:00",
   "to": "http://fossbros-anonymous.io/users/foss_satan",
   "type": "Create"
-}`, string(bytes))
+}`, string(bytes0))
+
+	suite.Equal(`{
+  "@context": "https://www.w3.org/ns/activitystreams",
+  "actor": "http://localhost:8080/users/the_mighty_zork",
+  "id": "http://localhost:8080/users/the_mighty_zork/activity#vote1/http://fossbros-anonymous.io/users/foss_satan/statuses/01HEN2QRFA8H3C6QPN7RD4KSR6",
+  "object": {
+    "attributedTo": "http://localhost:8080/users/the_mighty_zork",
+    "id": "http://localhost:8080/users/the_mighty_zork#01HEN2R65468ZG657C4ZPHJ4EX/votes/2",
+    "inReplyTo": "http://fossbros-anonymous.io/users/foss_satan/statuses/01HEN2QRFA8H3C6QPN7RD4KSR6",
+    "name": "financial times",
+    "to": "http://fossbros-anonymous.io/users/foss_satan",
+    "type": "Note"
+  },
+  "published": "2021-09-11T11:45:37+02:00",
+  "to": "http://fossbros-anonymous.io/users/foss_satan",
+  "type": "Create"
+}`, string(bytes1))
 }
 
 func (suite *InternalToASTestSuite) TestInteractionReqToASAcceptAnnounce() {

From c9d36f7e452654bed04d50c6a468831a4136e6b3 Mon Sep 17 00:00:00 2001
From: kim <89579420+NyaaaWhatsUpDoc@users.noreply.github.com>
Date: Fri, 29 Nov 2024 15:03:10 +0000
Subject: [PATCH 16/26] [performance] use new instance of bun.DB *after*
 migrations to reduce number of in-memory model schema (#3578)

* use new instance of bun.DB *after* migrations to reduce number of model schema in-memory

* update sqlite address comment
---
 internal/db/bundb/bundb.go | 122 +++++++++++++++++++------------------
 1 file changed, 63 insertions(+), 59 deletions(-)

diff --git a/internal/db/bundb/bundb.go b/internal/db/bundb/bundb.go
index 8756e086b..70132fe58 100644
--- a/internal/db/bundb/bundb.go
+++ b/internal/db/bundb/bundb.go
@@ -49,6 +49,7 @@ import (
 	"github.com/uptrace/bun/dialect/pgdialect"
 	"github.com/uptrace/bun/dialect/sqlitedialect"
 	"github.com/uptrace/bun/migrate"
+	"github.com/uptrace/bun/schema"
 )
 
 // DBService satisfies the DB interface
@@ -131,18 +132,18 @@ func doMigration(ctx context.Context, db *bun.DB) error {
 // NewBunDBService returns a bunDB derived from the provided config, which implements the go-fed DB interface.
 // Under the hood, it uses https://github.com/uptrace/bun to create and maintain a database connection.
 func NewBunDBService(ctx context.Context, state *state.State) (db.DB, error) {
-	var db *bun.DB
+	var sqldb *sql.DB
+	var dialect func() schema.Dialect
 	var err error
-	t := strings.ToLower(config.GetDbType())
 
-	switch t {
+	switch t := strings.ToLower(config.GetDbType()); t {
 	case "postgres":
-		db, err = pgConn(ctx)
+		sqldb, dialect, err = pgConn(ctx)
 		if err != nil {
 			return nil, err
 		}
 	case "sqlite":
-		db, err = sqliteConn(ctx)
+		sqldb, dialect, err = sqliteConn(ctx)
 		if err != nil {
 			return nil, err
 		}
@@ -150,34 +151,20 @@ func NewBunDBService(ctx context.Context, state *state.State) (db.DB, error) {
 		return nil, fmt.Errorf("database type %s not supported for bundb", t)
 	}
 
-	// Add database query hooks.
-	db.AddQueryHook(queryHook{})
-	if config.GetTracingEnabled() {
-		db.AddQueryHook(tracing.InstrumentBun())
-	}
-	if config.GetMetricsEnabled() {
-		db.AddQueryHook(metrics.InstrumentBun())
-	}
-
-	// table registration is needed for many-to-many, see:
-	// https://bun.uptrace.dev/orm/many-to-many-relation/
-	for _, t := range []interface{}{
-		&gtsmodel.AccountToEmoji{},
-		&gtsmodel.ConversationToStatus{},
-		&gtsmodel.StatusToEmoji{},
-		&gtsmodel.StatusToTag{},
-		&gtsmodel.ThreadToStatus{},
-	} {
-		db.RegisterModel(t)
-	}
-
-	// perform any pending database migrations: this includes
-	// the very first 'migration' on startup which just creates
-	// necessary tables
-	if err := doMigration(ctx, db); err != nil {
+	// perform any pending database migrations: this includes the first
+	// 'migration' on startup which just creates necessary db tables.
+	//
+	// Note this uses its own instance of bun.DB as bun will automatically
+	// store in-memory reflect type schema of any Go models passed to it,
+	// and we still maintain lots of old model versions in the migrations.
+	if err := doMigration(ctx, bunDB(sqldb, dialect)); err != nil {
 		return nil, fmt.Errorf("db migration error: %s", err)
 	}
 
+	// Wrap sql.DB as bun.DB type,
+	// adding any connection hooks.
+	db := bunDB(sqldb, dialect)
+
 	ps := &DBService{
 		Account: &accountDB{
 			db:    db,
@@ -319,17 +306,47 @@ func NewBunDBService(ctx context.Context, state *state.State) (db.DB, error) {
 	return ps, nil
 }
 
-func pgConn(ctx context.Context) (*bun.DB, error) {
+// bunDB returns a new bun.DB for given sql.DB connection pool and dialect
+// function. This can be used to apply any necessary opts / hooks as we
+// initialize a bun.DB object both before and after performing migrations.
+func bunDB(sqldb *sql.DB, dialect func() schema.Dialect) *bun.DB {
+	db := bun.NewDB(sqldb, dialect())
+
+	// Add our SQL connection hooks.
+	db.AddQueryHook(queryHook{})
+	if config.GetTracingEnabled() {
+		db.AddQueryHook(tracing.InstrumentBun())
+	}
+	if config.GetMetricsEnabled() {
+		db.AddQueryHook(metrics.InstrumentBun())
+	}
+
+	// table registration is needed for many-to-many, see:
+	// https://bun.uptrace.dev/orm/many-to-many-relation/
+	for _, t := range []interface{}{
+		&gtsmodel.AccountToEmoji{},
+		&gtsmodel.ConversationToStatus{},
+		&gtsmodel.StatusToEmoji{},
+		&gtsmodel.StatusToTag{},
+		&gtsmodel.ThreadToStatus{},
+	} {
+		db.RegisterModel(t)
+	}
+
+	return db
+}
+
+func pgConn(ctx context.Context) (*sql.DB, func() schema.Dialect, error) {
 	opts, err := deriveBunDBPGOptions() //nolint:contextcheck
 	if err != nil {
-		return nil, fmt.Errorf("could not create bundb postgres options: %w", err)
+		return nil, nil, fmt.Errorf("could not create bundb postgres options: %w", err)
 	}
 
 	cfg := stdlib.RegisterConnConfig(opts)
 
 	sqldb, err := sql.Open("pgx-gts", cfg)
 	if err != nil {
-		return nil, fmt.Errorf("could not open postgres db: %w", err)
+		return nil, nil, fmt.Errorf("could not open postgres db: %w", err)
 	}
 
 	// Tune db connections for postgres, see:
@@ -339,22 +356,20 @@ func pgConn(ctx context.Context) (*bun.DB, error) {
 	sqldb.SetMaxIdleConns(2)                  // assume default 2; if max idle is less than max open, it will be automatically adjusted
 	sqldb.SetConnMaxLifetime(5 * time.Minute) // fine to kill old connections
 
-	db := bun.NewDB(sqldb, pgdialect.New())
-
 	// ping to check the db is there and listening
-	if err := db.PingContext(ctx); err != nil {
-		return nil, fmt.Errorf("postgres ping: %w", err)
+	if err := sqldb.PingContext(ctx); err != nil {
+		return nil, nil, fmt.Errorf("postgres ping: %w", err)
 	}
 
 	log.Info(ctx, "connected to POSTGRES database")
-	return db, nil
+	return sqldb, func() schema.Dialect { return pgdialect.New() }, nil
 }
 
-func sqliteConn(ctx context.Context) (*bun.DB, error) {
+func sqliteConn(ctx context.Context) (*sql.DB, func() schema.Dialect, error) {
 	// validate db address has actually been set
 	address := config.GetDbAddress()
 	if address == "" {
-		return nil, fmt.Errorf("'%s' was not set when attempting to start sqlite", config.DbAddressFlag())
+		return nil, nil, fmt.Errorf("'%s' was not set when attempting to start sqlite", config.DbAddressFlag())
 	}
 
 	// Build SQLite connection address with prefs.
@@ -363,7 +378,7 @@ func sqliteConn(ctx context.Context) (*bun.DB, error) {
 	// Open new DB instance
 	sqldb, err := sql.Open("sqlite-gts", address)
 	if err != nil {
-		return nil, fmt.Errorf("could not open sqlite db with address %s: %w", address, err)
+		return nil, nil, fmt.Errorf("could not open sqlite db with address %s: %w", address, err)
 	}
 
 	// Tune db connections for sqlite, see:
@@ -379,16 +394,14 @@ func sqliteConn(ctx context.Context) (*bun.DB, error) {
 		sqldb.SetConnMaxLifetime(5 * time.Minute)
 	}
 
-	db := bun.NewDB(sqldb, sqlitedialect.New())
-
 	// ping to check the db is there and listening
-	if err := db.PingContext(ctx); err != nil {
-		return nil, fmt.Errorf("sqlite ping: %w", err)
+	if err := sqldb.PingContext(ctx); err != nil {
+		return nil, nil, fmt.Errorf("sqlite ping: %w", err)
 	}
 
 	log.Infof(ctx, "connected to SQLITE database with address %s", address)
 
-	return db, nil
+	return sqldb, func() schema.Dialect { return sqlitedialect.New() }, nil
 }
 
 /*
@@ -517,15 +530,12 @@ func buildSQLiteAddress(addr string) (string, bool) {
 	//
 	// - SQLite by itself supports setting a subset of its configuration options
 	//   via URI query arguments in the connection. Namely `mode` and `cache`.
-	//   This is the same situation for the directly transpiled C->Go code in
-	//   modernc.org/sqlite, i.e. modernc.org/sqlite/lib, NOT the Go SQL driver.
+	//   This is the same situation for our supported SQLite implementations.
 	//
-	// - `modernc.org/sqlite` has a "shim" around it to allow the directly
-	//   transpiled C code to be usable with a more native Go API. This is in
-	//   the form of a `database/sql/driver.Driver{}` implementation that calls
-	//   through to the transpiled C code.
+	// - Both implementations have a "shim" around them in the form of a
+	//   `database/sql/driver.Driver{}` implementation.
 	//
-	// - The SQLite shim we interface with adds support for setting ANY of the
+	// - The SQLite shims we interface with add support for setting ANY of the
 	//   configuration options via query arguments, through using a special `_pragma`
 	//   query key that specifies SQLite PRAGMAs to set upon opening each connection.
 	//   As such you will see below that most config is set with the `_pragma` key.
@@ -551,12 +561,6 @@ func buildSQLiteAddress(addr string) (string, bool) {
 	//   reached. And for whatever reason (:shrug:) SQLite is very particular about
 	//   setting this BEFORE the `journal_mode` is set, otherwise you can end up
 	//   running into more of these `SQLITE_BUSY` return codes than you might expect.
-	//
-	// - One final thing (I promise!): `SQLITE_BUSY` is only handled by the internal
-	//   `busy_timeout` handler in the case that a data race occurs contending for
-	//  table locks. THERE ARE STILL OTHER SITUATIONS IN WHICH THIS MAY BE RETURNED!
-	//  As such, we use our wrapping DB{} and Tx{} types (in "db.go") which make use
-	//  of our own retry-busy handler.
 
 	// Drop anything fancy from DB address
 	addr = strings.Split(addr, "?")[0]       // drop any provided query strings

From 936b269b056a3b65556f6de655a8610328a76e61 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 2 Dec 2024 10:44:43 +0100
Subject: [PATCH 17/26] [chore]: Bump github.com/minio/minio-go/v7 from 7.0.80
 to 7.0.81 (#3590)

Bumps [github.com/minio/minio-go/v7](https://github.com/minio/minio-go) from 7.0.80 to 7.0.81.
- [Release notes](https://github.com/minio/minio-go/releases)
- [Commits](https://github.com/minio/minio-go/compare/v7.0.80...v7.0.81)

---
updated-dependencies:
- dependency-name: github.com/minio/minio-go/v7
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod                                        |    2 +-
 go.sum                                        |    4 +-
 .../minio/minio-go/v7/api-prompt-object.go    |   78 +
 .../minio/minio-go/v7/api-prompt-options.go   |   84 +
 .../minio-go/v7/api-put-object-fan-out.go     |    5 +-
 vendor/github.com/minio/minio-go/v7/api.go    |    2 +-
 .../minio/minio-go/v7/functional_tests.go     | 1907 ++++-------------
 .../v7/pkg/credentials/sts_web_identity.go    |    7 +-
 .../minio/minio-go/v7/post-policy.go          |   71 +-
 .../minio/minio-go/v7/retry-continous.go      |   10 +-
 vendor/github.com/minio/minio-go/v7/retry.go  |   10 +-
 vendor/modules.txt                            |    2 +-
 12 files changed, 603 insertions(+), 1579 deletions(-)
 create mode 100644 vendor/github.com/minio/minio-go/v7/api-prompt-object.go
 create mode 100644 vendor/github.com/minio/minio-go/v7/api-prompt-options.go

diff --git a/go.mod b/go.mod
index 19fecf914..ed2811b19 100644
--- a/go.mod
+++ b/go.mod
@@ -60,7 +60,7 @@ require (
 	github.com/k3a/html2text v1.2.1
 	github.com/microcosm-cc/bluemonday v1.0.27
 	github.com/miekg/dns v1.1.62
-	github.com/minio/minio-go/v7 v7.0.80
+	github.com/minio/minio-go/v7 v7.0.81
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/ncruces/go-sqlite3 v0.20.3
 	github.com/oklog/ulid v1.3.1
diff --git a/go.sum b/go.sum
index 34fe33d84..4e33f2d61 100644
--- a/go.sum
+++ b/go.sum
@@ -413,8 +413,8 @@ github.com/miekg/dns v1.1.62 h1:cN8OuEF1/x5Rq6Np+h1epln8OiyPWV+lROx9LxcGgIQ=
 github.com/miekg/dns v1.1.62/go.mod h1:mvDlcItzm+br7MToIKqkglaGhlFMHJ9DTNNWONWXbNQ=
 github.com/minio/md5-simd v1.1.2 h1:Gdi1DZK69+ZVMoNHRXJyNcxrMA4dSxoYHZSQbirFg34=
 github.com/minio/md5-simd v1.1.2/go.mod h1:MzdKDxYpY2BT9XQFocsiZf/NKVtR7nkE4RoEpN+20RM=
-github.com/minio/minio-go/v7 v7.0.80 h1:2mdUHXEykRdY/BigLt3Iuu1otL0JTogT0Nmltg0wujk=
-github.com/minio/minio-go/v7 v7.0.80/go.mod h1:84gmIilaX4zcvAWWzJ5Z1WI5axN+hAbM5w25xf8xvC0=
+github.com/minio/minio-go/v7 v7.0.81 h1:SzhMN0TQ6T/xSBu6Nvw3M5M8voM+Ht8RH3hE8S7zxaA=
+github.com/minio/minio-go/v7 v7.0.81/go.mod h1:84gmIilaX4zcvAWWzJ5Z1WI5axN+hAbM5w25xf8xvC0=
 github.com/mitchellh/copystructure v1.0.0/go.mod h1:SNtv71yrdKgLRyLFxmLdkAbkKEFWgYaq1OVrnRcwhnw=
 github.com/mitchellh/copystructure v1.2.0 h1:vpKXTN4ewci03Vljg/q9QvCGUDttBOGBIa15WveJJGw=
 github.com/mitchellh/copystructure v1.2.0/go.mod h1:qLl+cE2AmVv+CoeAwDPye/v+N2HKCj9FbZEVFJRxO9s=
diff --git a/vendor/github.com/minio/minio-go/v7/api-prompt-object.go b/vendor/github.com/minio/minio-go/v7/api-prompt-object.go
new file mode 100644
index 000000000..dac062a75
--- /dev/null
+++ b/vendor/github.com/minio/minio-go/v7/api-prompt-object.go
@@ -0,0 +1,78 @@
+/*
+ * MinIO Go Library for Amazon S3 Compatible Cloud Storage
+ * Copyright 2015-2024 MinIO, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package minio
+
+import (
+	"bytes"
+	"context"
+	"io"
+	"net/http"
+
+	"github.com/goccy/go-json"
+	"github.com/minio/minio-go/v7/pkg/s3utils"
+)
+
+// PromptObject performs language model inference with the prompt and referenced object as context.
+// Inference is performed using a Lambda handler that can process the prompt and object.
+// Currently, this functionality is limited to certain MinIO servers.
+func (c *Client) PromptObject(ctx context.Context, bucketName, objectName, prompt string, opts PromptObjectOptions) (io.ReadCloser, error) {
+	// Input validation.
+	if err := s3utils.CheckValidBucketName(bucketName); err != nil {
+		return nil, ErrorResponse{
+			StatusCode: http.StatusBadRequest,
+			Code:       "InvalidBucketName",
+			Message:    err.Error(),
+		}
+	}
+	if err := s3utils.CheckValidObjectName(objectName); err != nil {
+		return nil, ErrorResponse{
+			StatusCode: http.StatusBadRequest,
+			Code:       "XMinioInvalidObjectName",
+			Message:    err.Error(),
+		}
+	}
+
+	opts.AddLambdaArnToReqParams(opts.LambdaArn)
+	opts.SetHeader("Content-Type", "application/json")
+	opts.AddPromptArg("prompt", prompt)
+	promptReqBytes, err := json.Marshal(opts.PromptArgs)
+	if err != nil {
+		return nil, err
+	}
+
+	// Execute POST on bucket/object.
+	resp, err := c.executeMethod(ctx, http.MethodPost, requestMetadata{
+		bucketName:       bucketName,
+		objectName:       objectName,
+		queryValues:      opts.toQueryValues(),
+		customHeader:     opts.Header(),
+		contentSHA256Hex: sum256Hex(promptReqBytes),
+		contentBody:      bytes.NewReader(promptReqBytes),
+		contentLength:    int64(len(promptReqBytes)),
+	})
+	if err != nil {
+		return nil, err
+	}
+
+	if resp.StatusCode != http.StatusOK {
+		defer closeResponse(resp)
+		return nil, httpRespToErrorResponse(resp, bucketName, objectName)
+	}
+
+	return resp.Body, nil
+}
diff --git a/vendor/github.com/minio/minio-go/v7/api-prompt-options.go b/vendor/github.com/minio/minio-go/v7/api-prompt-options.go
new file mode 100644
index 000000000..4493a75d4
--- /dev/null
+++ b/vendor/github.com/minio/minio-go/v7/api-prompt-options.go
@@ -0,0 +1,84 @@
+/*
+ * MinIO Go Library for Amazon S3 Compatible Cloud Storage
+ * Copyright 2015-2024 MinIO, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package minio
+
+import (
+	"net/http"
+	"net/url"
+)
+
+// PromptObjectOptions provides options to PromptObject call.
+// LambdaArn is the ARN of the Prompt Lambda to be invoked.
+// PromptArgs is a map of key-value pairs to be passed to the inference action on the Prompt Lambda.
+// "prompt" is a reserved key and should not be used as a key in PromptArgs.
+type PromptObjectOptions struct {
+	LambdaArn  string
+	PromptArgs map[string]any
+	headers    map[string]string
+	reqParams  url.Values
+}
+
+// Header returns the http.Header representation of the POST options.
+func (o PromptObjectOptions) Header() http.Header {
+	headers := make(http.Header, len(o.headers))
+	for k, v := range o.headers {
+		headers.Set(k, v)
+	}
+	return headers
+}
+
+// AddPromptArg Add a key value pair to the prompt arguments where the key is a string and
+// the value is a JSON serializable.
+func (o *PromptObjectOptions) AddPromptArg(key string, value any) {
+	if o.PromptArgs == nil {
+		o.PromptArgs = make(map[string]any)
+	}
+	o.PromptArgs[key] = value
+}
+
+// AddLambdaArnToReqParams adds the lambdaArn to the request query string parameters.
+func (o *PromptObjectOptions) AddLambdaArnToReqParams(lambdaArn string) {
+	if o.reqParams == nil {
+		o.reqParams = make(url.Values)
+	}
+	o.reqParams.Add("lambdaArn", lambdaArn)
+}
+
+// SetHeader adds a key value pair to the options. The
+// key-value pair will be part of the HTTP POST request
+// headers.
+func (o *PromptObjectOptions) SetHeader(key, value string) {
+	if o.headers == nil {
+		o.headers = make(map[string]string)
+	}
+	o.headers[http.CanonicalHeaderKey(key)] = value
+}
+
+// toQueryValues - Convert the reqParams in Options to query string parameters.
+func (o *PromptObjectOptions) toQueryValues() url.Values {
+	urlValues := make(url.Values)
+	if o.reqParams != nil {
+		for key, values := range o.reqParams {
+			for _, value := range values {
+				urlValues.Add(key, value)
+			}
+		}
+	}
+
+	return urlValues
+}
diff --git a/vendor/github.com/minio/minio-go/v7/api-put-object-fan-out.go b/vendor/github.com/minio/minio-go/v7/api-put-object-fan-out.go
index 0ae9142e1..3023b949c 100644
--- a/vendor/github.com/minio/minio-go/v7/api-put-object-fan-out.go
+++ b/vendor/github.com/minio/minio-go/v7/api-put-object-fan-out.go
@@ -85,7 +85,10 @@ func (c *Client) PutObjectFanOut(ctx context.Context, bucket string, fanOutData
 	policy.SetEncryption(fanOutReq.SSE)
 
 	// Set checksum headers if any.
-	policy.SetChecksum(fanOutReq.Checksum)
+	err := policy.SetChecksum(fanOutReq.Checksum)
+	if err != nil {
+		return nil, err
+	}
 
 	url, formData, err := c.PresignedPostPolicy(ctx, policy)
 	if err != nil {
diff --git a/vendor/github.com/minio/minio-go/v7/api.go b/vendor/github.com/minio/minio-go/v7/api.go
index 380ec4fde..88e8d4347 100644
--- a/vendor/github.com/minio/minio-go/v7/api.go
+++ b/vendor/github.com/minio/minio-go/v7/api.go
@@ -133,7 +133,7 @@ type Options struct {
 // Global constants.
 const (
 	libraryName    = "minio-go"
-	libraryVersion = "v7.0.80"
+	libraryVersion = "v7.0.81"
 )
 
 // User Agent should always following the below style.
diff --git a/vendor/github.com/minio/minio-go/v7/functional_tests.go b/vendor/github.com/minio/minio-go/v7/functional_tests.go
index c0180b36b..43383d134 100644
--- a/vendor/github.com/minio/minio-go/v7/functional_tests.go
+++ b/vendor/github.com/minio/minio-go/v7/functional_tests.go
@@ -160,7 +160,7 @@ func logError(testName, function string, args map[string]interface{}, startTime
 	} else {
 		logFailure(testName, function, args, startTime, alert, message, err)
 		if !isRunOnFail() {
-			panic(err)
+			panic(fmt.Sprintf("Test failed with message: %s, err: %v", message, err))
 		}
 	}
 }
@@ -393,6 +393,42 @@ func getFuncNameLoc(caller int) string {
 	return strings.TrimPrefix(runtime.FuncForPC(pc).Name(), "main.")
 }
 
+type ClientConfig struct {
+	// MinIO client configuration
+	TraceOn         bool // Turn on tracing of HTTP requests and responses to stderr
+	CredsV2         bool // Use V2 credentials if true, otherwise use v4
+	TrailingHeaders bool // Send trailing headers in requests
+}
+
+func NewClient(config ClientConfig) (*minio.Client, error) {
+	// Instantiate new MinIO client
+	var creds *credentials.Credentials
+	if config.CredsV2 {
+		creds = credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), "")
+	} else {
+		creds = credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), "")
+	}
+	opts := &minio.Options{
+		Creds:           creds,
+		Transport:       createHTTPTransport(),
+		Secure:          mustParseBool(os.Getenv(enableHTTPS)),
+		TrailingHeaders: config.TrailingHeaders,
+	}
+	client, err := minio.New(os.Getenv(serverEndpoint), opts)
+	if err != nil {
+		return nil, err
+	}
+
+	if config.TraceOn {
+		client.TraceOn(os.Stderr)
+	}
+
+	// Set user agent.
+	client.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+
+	return client, nil
+}
+
 // Tests bucket re-create errors.
 func testMakeBucketError() {
 	region := "eu-central-1"
@@ -407,27 +443,12 @@ func testMakeBucketError() {
 		"region":     region,
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-			Transport: createHTTPTransport(),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -462,20 +483,12 @@ func testMetadataSizeLimit() {
 		"objectName":        "",
 		"opts.UserMetadata": "",
 	}
-	rand.Seed(startTime.Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-			Transport: createHTTPTransport(),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client creation failed", err)
 		return
 	}
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
 
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -531,27 +544,12 @@ func testMakeBucketRegions() {
 		"region":     region,
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -598,27 +596,12 @@ func testPutObjectReadAt() {
 		"opts":       "objectContentType",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -697,27 +680,12 @@ func testListObjectVersions() {
 		"recursive":  "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -817,27 +785,12 @@ func testStatObjectWithVersioning() {
 	function := "StatObject"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -935,27 +888,12 @@ func testGetObjectWithVersioning() {
 	function := "GetObject()"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -1075,27 +1013,12 @@ func testPutObjectWithVersioning() {
 	function := "GetObject()"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -1223,28 +1146,12 @@ func testListMultipartUpload() {
 	function := "GetObject()"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object.
-	opts := &minio.Options{
-		Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-		Transport: createHTTPTransport(),
-		Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-	}
-	c, err := minio.New(os.Getenv(serverEndpoint), opts)
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
-	core, err := minio.NewCore(os.Getenv(serverEndpoint), opts)
-	if err != nil {
-		logError(testName, function, args, startTime, "", "MinIO core client object creation failed", err)
-		return
-	}
-
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+	core := minio.Core{Client: c}
 
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
@@ -1347,27 +1254,12 @@ func testCopyObjectWithVersioning() {
 	function := "CopyObject()"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -1485,27 +1377,12 @@ func testConcurrentCopyObjectWithVersioning() {
 	function := "CopyObject()"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -1646,27 +1523,12 @@ func testComposeObjectWithVersioning() {
 	function := "ComposeObject()"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -1787,27 +1649,12 @@ func testRemoveObjectWithVersioning() {
 	function := "DeleteObject()"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -1900,27 +1747,12 @@ func testRemoveObjectsWithVersioning() {
 	function := "DeleteObjects()"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -1996,27 +1828,12 @@ func testObjectTaggingWithVersioning() {
 	function := "{Get,Set,Remove}ObjectTagging()"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -2164,27 +1981,12 @@ func testPutObjectWithChecksums() {
 		return
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -2230,7 +2032,7 @@ func testPutObjectWithChecksums() {
 		h := test.cs.Hasher()
 		h.Reset()
 
-		// Test with Wrong CRC.
+		// Test with a bad CRC - we haven't called h.Write(b), so this is a checksum of empty data
 		meta[test.cs.Key()] = base64.StdEncoding.EncodeToString(h.Sum(nil))
 		args["metadata"] = meta
 		args["range"] = "false"
@@ -2350,28 +2152,12 @@ func testPutObjectWithTrailingChecksums() {
 		return
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:           credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport:       createHTTPTransport(),
-			Secure:          mustParseBool(os.Getenv(enableHTTPS)),
-			TrailingHeaders: true,
-		})
+	c, err := NewClient(ClientConfig{TrailingHeaders: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -2541,28 +2327,12 @@ func testPutMultipartObjectWithChecksums(trailing bool) {
 		return
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:           credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport:       createHTTPTransport(),
-			Secure:          mustParseBool(os.Getenv(enableHTTPS)),
-			TrailingHeaders: trailing,
-		})
+	c, err := NewClient(ClientConfig{TrailingHeaders: trailing})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -2620,7 +2390,7 @@ func testPutMultipartObjectWithChecksums(trailing bool) {
 		cmpChecksum := func(got, want string) {
 			if want != got {
 				logError(testName, function, args, startTime, "", "checksum mismatch", fmt.Errorf("want %s, got %s", want, got))
-				//fmt.Printf("want %s, got %s\n", want, got)
+				// fmt.Printf("want %s, got %s\n", want, got)
 				return
 			}
 		}
@@ -2741,25 +2511,12 @@ func testTrailingChecksums() {
 		return
 	}
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:           credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport:       createHTTPTransport(),
-			Secure:          mustParseBool(os.Getenv(enableHTTPS)),
-			TrailingHeaders: true,
-		})
+	c, err := NewClient(ClientConfig{TrailingHeaders: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -2881,7 +2638,6 @@ func testTrailingChecksums() {
 		test.ChecksumCRC32C = hashMultiPart(b, int(test.PO.PartSize), test.hasher)
 
 		// Set correct CRC.
-		// c.TraceOn(os.Stderr)
 		resp, err := c.PutObject(context.Background(), bucketName, objectName, bytes.NewReader(b), int64(bufSize), test.PO)
 		if err != nil {
 			logError(testName, function, args, startTime, "", "PutObject failed", err)
@@ -2933,6 +2689,8 @@ func testTrailingChecksums() {
 
 		delete(args, "metadata")
 	}
+
+	logSuccess(testName, function, args, startTime)
 }
 
 // Test PutObject with custom checksums.
@@ -2952,25 +2710,12 @@ func testPutObjectWithAutomaticChecksums() {
 		return
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:           credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport:       createHTTPTransport(),
-			Secure:          mustParseBool(os.Getenv(enableHTTPS)),
-			TrailingHeaders: true,
-		})
+	c, err := NewClient(ClientConfig{TrailingHeaders: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -2997,8 +2742,6 @@ func testPutObjectWithAutomaticChecksums() {
 		{header: "x-amz-checksum-crc32c", hasher: crc32.New(crc32.MakeTable(crc32.Castagnoli))},
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
 	// defer c.TraceOff()
 
 	for i, test := range tests {
@@ -3108,20 +2851,12 @@ func testGetObjectAttributes() {
 		return
 	}
 
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			TrailingHeaders: true,
-			Creds:           credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport:       createHTTPTransport(),
-			Secure:          mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{TrailingHeaders: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
 	err = c.MakeBucket(
@@ -3315,19 +3050,12 @@ func testGetObjectAttributesSSECEncryption() {
 		return
 	}
 
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			TrailingHeaders: true,
-			Creds:           credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Secure:          mustParseBool(os.Getenv(enableHTTPS)),
-			Transport:       createHTTPTransport(),
-		})
+	c, err := NewClient(ClientConfig{TrailingHeaders: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
 	err = c.MakeBucket(
@@ -3401,19 +3129,12 @@ func testGetObjectAttributesErrorCases() {
 		return
 	}
 
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			TrailingHeaders: true,
-			Creds:           credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport:       createHTTPTransport(),
-			Secure:          mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{TrailingHeaders: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
 	unknownBucket := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-bucket-")
 	unknownObject := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-object-")
 
@@ -3657,27 +3378,12 @@ func testPutObjectWithMetadata() {
 		return
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -3764,27 +3470,12 @@ func testPutObjectWithContentLanguage() {
 		"opts":       "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -3834,27 +3525,12 @@ func testPutObjectStreaming() {
 		"opts":       "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -3906,27 +3582,12 @@ func testGetObjectSeekEnd() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -4029,27 +3690,12 @@ func testGetObjectClosedTwice() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -4120,26 +3766,13 @@ func testRemoveObjectsContext() {
 		"bucketName": "",
 	}
 
-	// Seed random based on current tie.
-	rand.Seed(time.Now().Unix())
-
 	// Instantiate new minio client.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-	// Enable tracing, write to stdout.
-	// c.TraceOn(os.Stderr)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -4217,27 +3850,12 @@ func testRemoveMultipleObjects() {
 		"bucketName": "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
-	// Enable tracing, write to stdout.
-	// c.TraceOn(os.Stderr)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -4301,27 +3919,12 @@ func testRemoveMultipleObjectsWithResult() {
 		"bucketName": "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
-	// Enable tracing, write to stdout.
-	// c.TraceOn(os.Stderr)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -4437,27 +4040,12 @@ func testFPutObjectMultipart() {
 		"opts":       "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -4543,27 +4131,12 @@ func testFPutObject() {
 		"opts":       "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	location := "us-east-1"
@@ -4713,27 +4286,13 @@ func testFPutObjectContext() {
 		"fileName":   "",
 		"opts":       "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -4814,27 +4373,13 @@ func testFPutObjectContextV2() {
 		"objectName": "",
 		"opts":       "minio.PutObjectOptions{ContentType:objectContentType}",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -4919,24 +4464,12 @@ func testPutObjectContext() {
 		"opts":       "",
 	}
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Make a new bucket.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -4989,27 +4522,12 @@ func testGetObjectS3Zip() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{"x-minio-extract": true}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -5173,27 +4691,12 @@ func testGetObjectReadSeekFunctional() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -5343,27 +4846,12 @@ func testGetObjectReadAtFunctional() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -5521,27 +5009,12 @@ func testGetObjectReadAtWhenEOFWasReached() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -5641,27 +5114,12 @@ func testPresignedPostPolicy() {
 		"policy": "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 
@@ -5689,50 +5147,22 @@ func testPresignedPostPolicy() {
 		return
 	}
 
-	// Save the data
-	_, err = c.PutObject(context.Background(), bucketName, objectName, bytes.NewReader(buf), int64(len(buf)), minio.PutObjectOptions{ContentType: "binary/octet-stream"})
-	if err != nil {
-		logError(testName, function, args, startTime, "", "PutObject failed", err)
-		return
-	}
-
 	policy := minio.NewPostPolicy()
-
-	if err := policy.SetBucket(""); err == nil {
-		logError(testName, function, args, startTime, "", "SetBucket did not fail for invalid conditions", err)
-		return
-	}
-	if err := policy.SetKey(""); err == nil {
-		logError(testName, function, args, startTime, "", "SetKey did not fail for invalid conditions", err)
-		return
-	}
-	if err := policy.SetExpires(time.Date(1, time.January, 1, 0, 0, 0, 0, time.UTC)); err == nil {
-		logError(testName, function, args, startTime, "", "SetExpires did not fail for invalid conditions", err)
-		return
-	}
-	if err := policy.SetContentType(""); err == nil {
-		logError(testName, function, args, startTime, "", "SetContentType did not fail for invalid conditions", err)
-		return
-	}
-	if err := policy.SetContentLengthRange(1024*1024, 1024); err == nil {
-		logError(testName, function, args, startTime, "", "SetContentLengthRange did not fail for invalid conditions", err)
-		return
-	}
-	if err := policy.SetUserMetadata("", ""); err == nil {
-		logError(testName, function, args, startTime, "", "SetUserMetadata did not fail for invalid conditions", err)
-		return
-	}
-
 	policy.SetBucket(bucketName)
 	policy.SetKey(objectName)
 	policy.SetExpires(time.Now().UTC().AddDate(0, 0, 10)) // expires in 10 days
 	policy.SetContentType("binary/octet-stream")
 	policy.SetContentLengthRange(10, 1024*1024)
 	policy.SetUserMetadata(metadataKey, metadataValue)
+	policy.SetContentEncoding("gzip")
 
 	// Add CRC32C
 	checksum := minio.ChecksumCRC32C.ChecksumBytes(buf)
-	policy.SetChecksum(checksum)
+	err = policy.SetChecksum(checksum)
+	if err != nil {
+		logError(testName, function, args, startTime, "", "SetChecksum failed", err)
+		return
+	}
 
 	args["policy"] = policy.String()
 
@@ -5828,7 +5258,7 @@ func testPresignedPostPolicy() {
 	expectedLocation := scheme + os.Getenv(serverEndpoint) + "/" + bucketName + "/" + objectName
 	expectedLocationBucketDNS := scheme + bucketName + "." + os.Getenv(serverEndpoint) + "/" + objectName
 
-	if !strings.Contains(expectedLocation, "s3.amazonaws.com/") {
+	if !strings.Contains(expectedLocation, ".amazonaws.com/") {
 		// Test when not against AWS S3.
 		if val, ok := res.Header["Location"]; ok {
 			if val[0] != expectedLocation && val[0] != expectedLocationBucketDNS {
@@ -5840,9 +5270,194 @@ func testPresignedPostPolicy() {
 			return
 		}
 	}
-	want := checksum.Encoded()
-	if got := res.Header.Get("X-Amz-Checksum-Crc32c"); got != want {
-		logError(testName, function, args, startTime, "", fmt.Sprintf("Want checksum %q, got %q", want, got), nil)
+	wantChecksumCrc32c := checksum.Encoded()
+	if got := res.Header.Get("X-Amz-Checksum-Crc32c"); got != wantChecksumCrc32c {
+		logError(testName, function, args, startTime, "", fmt.Sprintf("Want checksum %q, got %q", wantChecksumCrc32c, got), nil)
+		return
+	}
+
+	// Ensure that when we subsequently GetObject, the checksum is returned
+	gopts := minio.GetObjectOptions{Checksum: true}
+	r, err := c.GetObject(context.Background(), bucketName, objectName, gopts)
+	if err != nil {
+		logError(testName, function, args, startTime, "", "GetObject failed", err)
+		return
+	}
+	st, err := r.Stat()
+	if err != nil {
+		logError(testName, function, args, startTime, "", "Stat failed", err)
+		return
+	}
+	if st.ChecksumCRC32C != wantChecksumCrc32c {
+		logError(testName, function, args, startTime, "", fmt.Sprintf("Want checksum %s, got %s", wantChecksumCrc32c, st.ChecksumCRC32C), nil)
+		return
+	}
+
+	logSuccess(testName, function, args, startTime)
+}
+
+// testPresignedPostPolicyWrongFile tests that when we have a policy with a checksum, we cannot POST the wrong file
+func testPresignedPostPolicyWrongFile() {
+	// initialize logging params
+	startTime := time.Now()
+	testName := getFuncName()
+	function := "PresignedPostPolicy(policy)"
+	args := map[string]interface{}{
+		"policy": "",
+	}
+
+	c, err := NewClient(ClientConfig{})
+	if err != nil {
+		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
+		return
+	}
+
+	// Generate a new random bucket name.
+	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
+
+	// Make a new bucket in 'us-east-1' (source bucket).
+	err = c.MakeBucket(context.Background(), bucketName, minio.MakeBucketOptions{Region: "us-east-1"})
+	if err != nil {
+		logError(testName, function, args, startTime, "", "MakeBucket failed", err)
+		return
+	}
+
+	defer cleanupBucket(bucketName, c)
+
+	// Generate 33K of data.
+	reader := getDataReader("datafile-33-kB")
+	defer reader.Close()
+
+	objectName := randString(60, rand.NewSource(time.Now().UnixNano()), "")
+	// Azure requires the key to not start with a number
+	metadataKey := randString(60, rand.NewSource(time.Now().UnixNano()), "user")
+	metadataValue := randString(60, rand.NewSource(time.Now().UnixNano()), "")
+
+	buf, err := io.ReadAll(reader)
+	if err != nil {
+		logError(testName, function, args, startTime, "", "ReadAll failed", err)
+		return
+	}
+
+	policy := minio.NewPostPolicy()
+	policy.SetBucket(bucketName)
+	policy.SetKey(objectName)
+	policy.SetExpires(time.Now().UTC().AddDate(0, 0, 10)) // expires in 10 days
+	policy.SetContentType("binary/octet-stream")
+	policy.SetContentLengthRange(10, 1024*1024)
+	policy.SetUserMetadata(metadataKey, metadataValue)
+
+	// Add CRC32C of the 33kB file that the policy will explicitly allow.
+	checksum := minio.ChecksumCRC32C.ChecksumBytes(buf)
+	err = policy.SetChecksum(checksum)
+	if err != nil {
+		logError(testName, function, args, startTime, "", "SetChecksum failed", err)
+		return
+	}
+
+	args["policy"] = policy.String()
+
+	presignedPostPolicyURL, formData, err := c.PresignedPostPolicy(context.Background(), policy)
+	if err != nil {
+		logError(testName, function, args, startTime, "", "PresignedPostPolicy failed", err)
+		return
+	}
+
+	// At this stage, we have a policy that allows us to upload datafile-33-kB.
+	// Test that uploading datafile-10-kB, with a different checksum, fails as expected
+	filePath := getMintDataDirFilePath("datafile-10-kB")
+	if filePath == "" {
+		// Make a temp file with 10 KB data.
+		file, err := os.CreateTemp(os.TempDir(), "PresignedPostPolicyTest")
+		if err != nil {
+			logError(testName, function, args, startTime, "", "TempFile creation failed", err)
+			return
+		}
+		if _, err = io.Copy(file, getDataReader("datafile-10-kB")); err != nil {
+			logError(testName, function, args, startTime, "", "Copy failed", err)
+			return
+		}
+		if err = file.Close(); err != nil {
+			logError(testName, function, args, startTime, "", "File Close failed", err)
+			return
+		}
+		filePath = file.Name()
+	}
+	fileReader := getDataReader("datafile-10-kB")
+	defer fileReader.Close()
+	buf10k, err := io.ReadAll(fileReader)
+	if err != nil {
+		logError(testName, function, args, startTime, "", "ReadAll failed", err)
+		return
+	}
+	otherChecksum := minio.ChecksumCRC32C.ChecksumBytes(buf10k)
+
+	var formBuf bytes.Buffer
+	writer := multipart.NewWriter(&formBuf)
+	for k, v := range formData {
+		if k == "x-amz-checksum-crc32c" {
+			v = otherChecksum.Encoded()
+		}
+		writer.WriteField(k, v)
+	}
+
+	// Add file to post request
+	f, err := os.Open(filePath)
+	defer f.Close()
+	if err != nil {
+		logError(testName, function, args, startTime, "", "File open failed", err)
+		return
+	}
+	w, err := writer.CreateFormFile("file", filePath)
+	if err != nil {
+		logError(testName, function, args, startTime, "", "CreateFormFile failed", err)
+		return
+	}
+	_, err = io.Copy(w, f)
+	if err != nil {
+		logError(testName, function, args, startTime, "", "Copy failed", err)
+		return
+	}
+	writer.Close()
+
+	httpClient := &http.Client{
+		Timeout:   30 * time.Second,
+		Transport: createHTTPTransport(),
+	}
+	args["url"] = presignedPostPolicyURL.String()
+
+	req, err := http.NewRequest(http.MethodPost, presignedPostPolicyURL.String(), bytes.NewReader(formBuf.Bytes()))
+	if err != nil {
+		logError(testName, function, args, startTime, "", "HTTP request failed", err)
+		return
+	}
+
+	req.Header.Set("Content-Type", writer.FormDataContentType())
+
+	// Make the POST request with the form data.
+	res, err := httpClient.Do(req)
+	if err != nil {
+		logError(testName, function, args, startTime, "", "HTTP request failed", err)
+		return
+	}
+	defer res.Body.Close()
+	if res.StatusCode != http.StatusForbidden {
+		logError(testName, function, args, startTime, "", "HTTP request unexpected status", errors.New(res.Status))
+		return
+	}
+
+	// Read the response body, ensure it has checksum failure message
+	resBody, err := io.ReadAll(res.Body)
+	if err != nil {
+		logError(testName, function, args, startTime, "", "ReadAll failed", err)
+		return
+	}
+
+	// Normalize the response body, because S3 uses quotes around the policy condition components
+	// in the error message, MinIO does not.
+	resBodyStr := strings.ReplaceAll(string(resBody), `"`, "")
+	if !strings.Contains(resBodyStr, "Policy Condition failed: [eq, $x-amz-checksum-crc32c, aHnJMw==]") {
+		logError(testName, function, args, startTime, "", "Unexpected response body", errors.New(resBodyStr))
 		return
 	}
 
@@ -5857,27 +5472,12 @@ func testCopyObject() {
 	function := "CopyObject(dst, src)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 
@@ -6052,27 +5652,12 @@ func testSSECEncryptedGetObjectReadSeekFunctional() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -6235,27 +5820,12 @@ func testSSES3EncryptedGetObjectReadSeekFunctional() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -6416,27 +5986,12 @@ func testSSECEncryptedGetObjectReadAtFunctional() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -6600,27 +6155,12 @@ func testSSES3EncryptedGetObjectReadAtFunctional() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -6785,27 +6325,13 @@ func testSSECEncryptionPutGet() {
 		"objectName": "",
 		"sse":        "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -6895,27 +6421,13 @@ func testSSECEncryptionFPut() {
 		"contentType": "",
 		"sse":         "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -7018,27 +6530,13 @@ func testSSES3EncryptionPutGet() {
 		"objectName": "",
 		"sse":        "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -7126,27 +6624,13 @@ func testSSES3EncryptionFPut() {
 		"contentType": "",
 		"sse":         "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -7255,26 +6739,12 @@ func testBucketNotification() {
 		return
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable to debug
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	bucketName := os.Getenv("NOTIFY_BUCKET")
 	args["bucketName"] = bucketName
 
@@ -7350,26 +6820,12 @@ func testFunctional() {
 	functionAll := ""
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, nil, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable to debug
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 
@@ -8029,24 +7485,12 @@ func testGetObjectModified() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Make a new bucket.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -8125,24 +7569,12 @@ func testPutObjectUploadSeekedObject() {
 		"contentType":  "binary/octet-stream",
 	}
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Make a new bucket.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -8245,27 +7677,12 @@ func testMakeBucketErrorV2() {
 		"region":     "eu-west-1",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	region := "eu-west-1"
@@ -8305,27 +7722,12 @@ func testGetObjectClosedTwiceV2() {
 		"region":     "eu-west-1",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -8396,27 +7798,12 @@ func testFPutObjectV2() {
 		"opts":       "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -8557,27 +7944,12 @@ func testMakeBucketRegionsV2() {
 		"region":     "eu-west-1",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -8620,27 +7992,12 @@ func testGetObjectReadSeekFunctionalV2() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -8775,27 +8132,12 @@ func testGetObjectReadAtFunctionalV2() {
 	function := "GetObject(bucketName, objectName)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -8937,27 +8279,12 @@ func testCopyObjectV2() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 
@@ -9156,13 +8483,7 @@ func testComposeObjectErrorCasesV2() {
 	function := "ComposeObject(destination, sourceList)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9254,13 +8575,7 @@ func testCompose10KSourcesV2() {
 	function := "ComposeObject(destination, sourceList)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9276,13 +8591,7 @@ func testEncryptedEmptyObject() {
 	function := "PutObject(bucketName, objectName, reader, objectSize, opts)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
@@ -9430,7 +8739,7 @@ func testEncryptedCopyObjectWrapper(c *minio.Client, bucketName string, sseSrc,
 		dstEncryption = sseDst
 	}
 	// 3. get copied object and check if content is equal
-	coreClient := minio.Core{c}
+	coreClient := minio.Core{Client: c}
 	reader, _, _, err := coreClient.GetObject(context.Background(), bucketName, "dstObject", minio.GetObjectOptions{ServerSideEncryption: dstEncryption})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "GetObject failed", err)
@@ -9537,13 +8846,7 @@ func testUnencryptedToSSECCopyObject() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9552,7 +8855,6 @@ func testUnencryptedToSSECCopyObject() {
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 
 	sseDst := encrypt.DefaultPBKDF([]byte("correct horse battery staple"), []byte(bucketName+"dstObject"))
-	// c.TraceOn(os.Stderr)
 	testEncryptedCopyObjectWrapper(c, bucketName, nil, sseDst)
 }
 
@@ -9564,13 +8866,7 @@ func testUnencryptedToSSES3CopyObject() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9580,7 +8876,6 @@ func testUnencryptedToSSES3CopyObject() {
 
 	var sseSrc encrypt.ServerSide
 	sseDst := encrypt.NewSSE()
-	// c.TraceOn(os.Stderr)
 	testEncryptedCopyObjectWrapper(c, bucketName, sseSrc, sseDst)
 }
 
@@ -9592,13 +8887,7 @@ func testUnencryptedToUnencryptedCopyObject() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9607,7 +8896,6 @@ func testUnencryptedToUnencryptedCopyObject() {
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 
 	var sseSrc, sseDst encrypt.ServerSide
-	// c.TraceOn(os.Stderr)
 	testEncryptedCopyObjectWrapper(c, bucketName, sseSrc, sseDst)
 }
 
@@ -9619,13 +8907,7 @@ func testEncryptedSSECToSSECCopyObject() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9635,7 +8917,6 @@ func testEncryptedSSECToSSECCopyObject() {
 
 	sseSrc := encrypt.DefaultPBKDF([]byte("correct horse battery staple"), []byte(bucketName+"srcObject"))
 	sseDst := encrypt.DefaultPBKDF([]byte("correct horse battery staple"), []byte(bucketName+"dstObject"))
-	// c.TraceOn(os.Stderr)
 	testEncryptedCopyObjectWrapper(c, bucketName, sseSrc, sseDst)
 }
 
@@ -9647,13 +8928,7 @@ func testEncryptedSSECToSSES3CopyObject() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9663,7 +8938,6 @@ func testEncryptedSSECToSSES3CopyObject() {
 
 	sseSrc := encrypt.DefaultPBKDF([]byte("correct horse battery staple"), []byte(bucketName+"srcObject"))
 	sseDst := encrypt.NewSSE()
-	// c.TraceOn(os.Stderr)
 	testEncryptedCopyObjectWrapper(c, bucketName, sseSrc, sseDst)
 }
 
@@ -9675,13 +8949,7 @@ func testEncryptedSSECToUnencryptedCopyObject() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9691,7 +8959,6 @@ func testEncryptedSSECToUnencryptedCopyObject() {
 
 	sseSrc := encrypt.DefaultPBKDF([]byte("correct horse battery staple"), []byte(bucketName+"srcObject"))
 	var sseDst encrypt.ServerSide
-	// c.TraceOn(os.Stderr)
 	testEncryptedCopyObjectWrapper(c, bucketName, sseSrc, sseDst)
 }
 
@@ -9703,13 +8970,7 @@ func testEncryptedSSES3ToSSECCopyObject() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9719,7 +8980,6 @@ func testEncryptedSSES3ToSSECCopyObject() {
 
 	sseSrc := encrypt.NewSSE()
 	sseDst := encrypt.DefaultPBKDF([]byte("correct horse battery staple"), []byte(bucketName+"dstObject"))
-	// c.TraceOn(os.Stderr)
 	testEncryptedCopyObjectWrapper(c, bucketName, sseSrc, sseDst)
 }
 
@@ -9731,13 +8991,7 @@ func testEncryptedSSES3ToSSES3CopyObject() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9747,7 +9001,6 @@ func testEncryptedSSES3ToSSES3CopyObject() {
 
 	sseSrc := encrypt.NewSSE()
 	sseDst := encrypt.NewSSE()
-	// c.TraceOn(os.Stderr)
 	testEncryptedCopyObjectWrapper(c, bucketName, sseSrc, sseDst)
 }
 
@@ -9759,13 +9012,7 @@ func testEncryptedSSES3ToUnencryptedCopyObject() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9775,7 +9022,6 @@ func testEncryptedSSES3ToUnencryptedCopyObject() {
 
 	sseSrc := encrypt.NewSSE()
 	var sseDst encrypt.ServerSide
-	// c.TraceOn(os.Stderr)
 	testEncryptedCopyObjectWrapper(c, bucketName, sseSrc, sseDst)
 }
 
@@ -9787,13 +9033,7 @@ func testEncryptedCopyObjectV2() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9803,7 +9043,6 @@ func testEncryptedCopyObjectV2() {
 
 	sseSrc := encrypt.DefaultPBKDF([]byte("correct horse battery staple"), []byte(bucketName+"srcObject"))
 	sseDst := encrypt.DefaultPBKDF([]byte("correct horse battery staple"), []byte(bucketName+"dstObject"))
-	// c.TraceOn(os.Stderr)
 	testEncryptedCopyObjectWrapper(c, bucketName, sseSrc, sseDst)
 }
 
@@ -9814,13 +9053,7 @@ func testDecryptedCopyObject() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
@@ -9874,26 +9107,14 @@ func testSSECMultipartEncryptedToSSECCopyObjectPart() {
 	function := "CopyObjectPart(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	client, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	client, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
 	}
 
 	// Instantiate new core client object.
-	c := minio.Core{client}
-
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+	c := minio.Core{Client: client}
 
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test")
@@ -10072,26 +9293,14 @@ func testSSECEncryptedToSSECCopyObjectPart() {
 	function := "CopyObjectPart(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	client, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	client, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
 	}
 
 	// Instantiate new core client object.
-	c := minio.Core{client}
-
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+	c := minio.Core{Client: client}
 
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test")
@@ -10250,26 +9459,14 @@ func testSSECEncryptedToUnencryptedCopyPart() {
 	function := "CopyObjectPart(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	client, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	client, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
 	}
 
 	// Instantiate new core client object.
-	c := minio.Core{client}
-
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+	c := minio.Core{Client: client}
 
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test")
@@ -10427,26 +9624,14 @@ func testSSECEncryptedToSSES3CopyObjectPart() {
 	function := "CopyObjectPart(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	client, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	client, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
 	}
 
 	// Instantiate new core client object.
-	c := minio.Core{client}
-
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+	c := minio.Core{Client: client}
 
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test")
@@ -10607,26 +9792,14 @@ func testUnencryptedToSSECCopyObjectPart() {
 	function := "CopyObjectPart(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	client, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	client, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
 	}
 
 	// Instantiate new core client object.
-	c := minio.Core{client}
-
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+	c := minio.Core{Client: client}
 
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test")
@@ -10782,26 +9955,14 @@ func testUnencryptedToUnencryptedCopyPart() {
 	function := "CopyObjectPart(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	client, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	client, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
 	}
 
 	// Instantiate new core client object.
-	c := minio.Core{client}
-
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+	c := minio.Core{Client: client}
 
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test")
@@ -10953,26 +10114,14 @@ func testUnencryptedToSSES3CopyObjectPart() {
 	function := "CopyObjectPart(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	client, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	client, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
 	}
 
 	// Instantiate new core client object.
-	c := minio.Core{client}
-
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+	c := minio.Core{Client: client}
 
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test")
@@ -11126,26 +10275,14 @@ func testSSES3EncryptedToSSECCopyObjectPart() {
 	function := "CopyObjectPart(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	client, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	client, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
 	}
 
 	// Instantiate new core client object.
-	c := minio.Core{client}
-
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+	c := minio.Core{Client: client}
 
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test")
@@ -11302,26 +10439,14 @@ func testSSES3EncryptedToUnencryptedCopyPart() {
 	function := "CopyObjectPart(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	client, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	client, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
 	}
 
 	// Instantiate new core client object.
-	c := minio.Core{client}
-
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+	c := minio.Core{Client: client}
 
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test")
@@ -11474,26 +10599,14 @@ func testSSES3EncryptedToSSES3CopyObjectPart() {
 	function := "CopyObjectPart(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	client, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	client, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
 	}
 
 	// Instantiate new core client object.
-	c := minio.Core{client}
-
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
+	c := minio.Core{Client: client}
 
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test")
@@ -11648,19 +10761,12 @@ func testUserMetadataCopying() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// c.TraceOn(os.Stderr)
 	testUserMetadataCopyingWrapper(c)
 }
 
@@ -11825,19 +10931,12 @@ func testUserMetadataCopyingV2() {
 	function := "CopyObject(destination, source)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client v2 object creation failed", err)
 		return
 	}
 
-	// c.TraceOn(os.Stderr)
 	testUserMetadataCopyingWrapper(c)
 }
 
@@ -11848,13 +10947,7 @@ func testStorageClassMetadataPutObject() {
 	args := map[string]interface{}{}
 	testName := getFuncName()
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
@@ -11936,13 +11029,7 @@ func testStorageClassInvalidMetadataPutObject() {
 	args := map[string]interface{}{}
 	testName := getFuncName()
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
@@ -11979,13 +11066,7 @@ func testStorageClassMetadataCopyObject() {
 	args := map[string]interface{}{}
 	testName := getFuncName()
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-			Transport: createHTTPTransport(),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO v4 client object creation failed", err)
 		return
@@ -12106,27 +11187,12 @@ func testPutObjectNoLengthV2() {
 		"opts":       "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
-		logError(testName, function, args, startTime, "", "MinIO client v2 object creation failed", err)
+		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -12182,27 +11248,12 @@ func testPutObjectsUnknownV2() {
 		"opts":       "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
-		logError(testName, function, args, startTime, "", "MinIO client v2 object creation failed", err)
+		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -12273,27 +11324,12 @@ func testPutObject0ByteV2() {
 		"opts":       "",
 	}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
-		logError(testName, function, args, startTime, "", "MinIO client v2 object creation failed", err)
+		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -12338,13 +11374,7 @@ func testComposeObjectErrorCases() {
 	function := "ComposeObject(destination, sourceList)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
@@ -12361,13 +11391,7 @@ func testCompose10KSources() {
 	function := "ComposeObject(destination, sourceList)"
 	args := map[string]interface{}{}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
@@ -12385,26 +11409,12 @@ func testFunctionalV2() {
 	functionAll := ""
 	args := map[string]interface{}{}
 
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
-
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-			Transport: createHTTPTransport(),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client v2 object creation failed", err)
 		return
 	}
 
-	// Enable to debug
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	location := "us-east-1"
@@ -12838,27 +11848,13 @@ func testGetObjectContext() {
 		"bucketName": "",
 		"objectName": "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client v4 object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -12941,27 +11937,13 @@ func testFGetObjectContext() {
 		"objectName": "",
 		"fileName":   "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client v4 object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -13033,24 +12015,12 @@ func testGetObjectRanges() {
 	defer cancel()
 
 	rng := rand.NewSource(time.Now().UnixNano())
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client v4 object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rng, "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -13140,27 +12110,13 @@ func testGetObjectACLContext() {
 		"bucketName": "",
 		"objectName": "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client v4 object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -13318,24 +12274,12 @@ func testPutObjectContextV2() {
 		"size":       "",
 		"opts":       "",
 	}
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
-		logError(testName, function, args, startTime, "", "MinIO client v2 object creation failed", err)
+		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Make a new bucket.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -13390,27 +12334,13 @@ func testGetObjectContextV2() {
 		"bucketName": "",
 		"objectName": "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
-		logError(testName, function, args, startTime, "", "MinIO client v2 object creation failed", err)
+		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -13491,27 +12421,13 @@ func testFGetObjectContextV2() {
 		"objectName": "",
 		"fileName":   "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV2(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{CredsV2: true})
 	if err != nil {
-		logError(testName, function, args, startTime, "", "MinIO client v2 object creation failed", err)
+		logError(testName, function, args, startTime, "", "MinIO v2 client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -13580,27 +12496,13 @@ func testListObjects() {
 		"objectPrefix": "",
 		"recursive":    "true",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client v4 object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -13684,24 +12586,12 @@ func testCors() {
 		"cors":       "",
 	}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Create or reuse a bucket that will get cors settings applied to it and deleted when done
 	bucketName := os.Getenv("MINIO_GO_TEST_BUCKET_CORS")
 	if bucketName == "" {
@@ -14420,24 +13310,12 @@ func testCorsSetGetDelete() {
 		"cors":       "",
 	}
 
-	// Instantiate new minio client object
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -14519,27 +13397,13 @@ func testRemoveObjects() {
 		"objectPrefix": "",
 		"recursive":    "true",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client v4 object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -14653,27 +13517,13 @@ func testGetBucketTagging() {
 	args := map[string]interface{}{
 		"bucketName": "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client v4 object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -14709,27 +13559,13 @@ func testSetBucketTagging() {
 		"bucketName": "",
 		"tags":       "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client v4 object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -14795,27 +13631,13 @@ func testRemoveBucketTagging() {
 	args := map[string]interface{}{
 		"bucketName": "",
 	}
-	// Seed random based on current time.
-	rand.Seed(time.Now().Unix())
 
-	// Instantiate new minio client object.
-	c, err := minio.New(os.Getenv(serverEndpoint),
-		&minio.Options{
-			Creds:     credentials.NewStaticV4(os.Getenv(accessKey), os.Getenv(secretKey), ""),
-			Transport: createHTTPTransport(),
-			Secure:    mustParseBool(os.Getenv(enableHTTPS)),
-		})
+	c, err := NewClient(ClientConfig{})
 	if err != nil {
 		logError(testName, function, args, startTime, "", "MinIO client v4 object creation failed", err)
 		return
 	}
 
-	// Enable tracing, write to stderr.
-	// c.TraceOn(os.Stderr)
-
-	// Set user agent.
-	c.SetAppInfo("MinIO-go-FunctionalTest", appVersion)
-
 	// Generate a new random bucket name.
 	bucketName := randString(60, rand.NewSource(time.Now().UnixNano()), "minio-go-test-")
 	args["bucketName"] = bucketName
@@ -14961,6 +13783,7 @@ func main() {
 		testGetObjectReadAtFunctional()
 		testGetObjectReadAtWhenEOFWasReached()
 		testPresignedPostPolicy()
+		testPresignedPostPolicyWrongFile()
 		testCopyObject()
 		testComposeObjectErrorCases()
 		testCompose10KSources()
diff --git a/vendor/github.com/minio/minio-go/v7/pkg/credentials/sts_web_identity.go b/vendor/github.com/minio/minio-go/v7/pkg/credentials/sts_web_identity.go
index f1c76c78e..787f0a38d 100644
--- a/vendor/github.com/minio/minio-go/v7/pkg/credentials/sts_web_identity.go
+++ b/vendor/github.com/minio/minio-go/v7/pkg/credentials/sts_web_identity.go
@@ -58,9 +58,10 @@ type WebIdentityResult struct {
 
 // WebIdentityToken - web identity token with expiry.
 type WebIdentityToken struct {
-	Token       string
-	AccessToken string
-	Expiry      int
+	Token        string
+	AccessToken  string
+	RefreshToken string
+	Expiry       int
 }
 
 // A STSWebIdentity retrieves credentials from MinIO service, and keeps track if
diff --git a/vendor/github.com/minio/minio-go/v7/post-policy.go b/vendor/github.com/minio/minio-go/v7/post-policy.go
index 19687e027..26bf441b5 100644
--- a/vendor/github.com/minio/minio-go/v7/post-policy.go
+++ b/vendor/github.com/minio/minio-go/v7/post-policy.go
@@ -85,7 +85,7 @@ func (p *PostPolicy) SetExpires(t time.Time) error {
 
 // SetKey - Sets an object name for the policy based upload.
 func (p *PostPolicy) SetKey(key string) error {
-	if strings.TrimSpace(key) == "" || key == "" {
+	if strings.TrimSpace(key) == "" {
 		return errInvalidArgument("Object name is empty.")
 	}
 	policyCond := policyCondition{
@@ -118,7 +118,7 @@ func (p *PostPolicy) SetKeyStartsWith(keyStartsWith string) error {
 
 // SetBucket - Sets bucket at which objects will be uploaded to.
 func (p *PostPolicy) SetBucket(bucketName string) error {
-	if strings.TrimSpace(bucketName) == "" || bucketName == "" {
+	if strings.TrimSpace(bucketName) == "" {
 		return errInvalidArgument("Bucket name is empty.")
 	}
 	policyCond := policyCondition{
@@ -135,7 +135,7 @@ func (p *PostPolicy) SetBucket(bucketName string) error {
 
 // SetCondition - Sets condition for credentials, date and algorithm
 func (p *PostPolicy) SetCondition(matchType, condition, value string) error {
-	if strings.TrimSpace(value) == "" || value == "" {
+	if strings.TrimSpace(value) == "" {
 		return errInvalidArgument("No value specified for condition")
 	}
 
@@ -156,7 +156,7 @@ func (p *PostPolicy) SetCondition(matchType, condition, value string) error {
 
 // SetTagging - Sets tagging for the object for this policy based upload.
 func (p *PostPolicy) SetTagging(tagging string) error {
-	if strings.TrimSpace(tagging) == "" || tagging == "" {
+	if strings.TrimSpace(tagging) == "" {
 		return errInvalidArgument("No tagging specified.")
 	}
 	_, err := tags.ParseObjectXML(strings.NewReader(tagging))
@@ -178,7 +178,7 @@ func (p *PostPolicy) SetTagging(tagging string) error {
 // SetContentType - Sets content-type of the object for this policy
 // based upload.
 func (p *PostPolicy) SetContentType(contentType string) error {
-	if strings.TrimSpace(contentType) == "" || contentType == "" {
+	if strings.TrimSpace(contentType) == "" {
 		return errInvalidArgument("No content type specified.")
 	}
 	policyCond := policyCondition{
@@ -211,7 +211,7 @@ func (p *PostPolicy) SetContentTypeStartsWith(contentTypeStartsWith string) erro
 
 // SetContentDisposition - Sets content-disposition of the object for this policy
 func (p *PostPolicy) SetContentDisposition(contentDisposition string) error {
-	if strings.TrimSpace(contentDisposition) == "" || contentDisposition == "" {
+	if strings.TrimSpace(contentDisposition) == "" {
 		return errInvalidArgument("No content disposition specified.")
 	}
 	policyCond := policyCondition{
@@ -226,27 +226,44 @@ func (p *PostPolicy) SetContentDisposition(contentDisposition string) error {
 	return nil
 }
 
+// SetContentEncoding - Sets content-encoding of the object for this policy
+func (p *PostPolicy) SetContentEncoding(contentEncoding string) error {
+	if strings.TrimSpace(contentEncoding) == "" {
+		return errInvalidArgument("No content encoding specified.")
+	}
+	policyCond := policyCondition{
+		matchType: "eq",
+		condition: "$Content-Encoding",
+		value:     contentEncoding,
+	}
+	if err := p.addNewPolicy(policyCond); err != nil {
+		return err
+	}
+	p.formData["Content-Encoding"] = contentEncoding
+	return nil
+}
+
 // SetContentLengthRange - Set new min and max content length
 // condition for all incoming uploads.
-func (p *PostPolicy) SetContentLengthRange(min, max int64) error {
-	if min > max {
+func (p *PostPolicy) SetContentLengthRange(minLen, maxLen int64) error {
+	if minLen > maxLen {
 		return errInvalidArgument("Minimum limit is larger than maximum limit.")
 	}
-	if min < 0 {
+	if minLen < 0 {
 		return errInvalidArgument("Minimum limit cannot be negative.")
 	}
-	if max <= 0 {
+	if maxLen <= 0 {
 		return errInvalidArgument("Maximum limit cannot be non-positive.")
 	}
-	p.contentLengthRange.min = min
-	p.contentLengthRange.max = max
+	p.contentLengthRange.min = minLen
+	p.contentLengthRange.max = maxLen
 	return nil
 }
 
 // SetSuccessActionRedirect - Sets the redirect success url of the object for this policy
 // based upload.
 func (p *PostPolicy) SetSuccessActionRedirect(redirect string) error {
-	if strings.TrimSpace(redirect) == "" || redirect == "" {
+	if strings.TrimSpace(redirect) == "" {
 		return errInvalidArgument("Redirect is empty")
 	}
 	policyCond := policyCondition{
@@ -264,7 +281,7 @@ func (p *PostPolicy) SetSuccessActionRedirect(redirect string) error {
 // SetSuccessStatusAction - Sets the status success code of the object for this policy
 // based upload.
 func (p *PostPolicy) SetSuccessStatusAction(status string) error {
-	if strings.TrimSpace(status) == "" || status == "" {
+	if strings.TrimSpace(status) == "" {
 		return errInvalidArgument("Status is empty")
 	}
 	policyCond := policyCondition{
@@ -282,10 +299,10 @@ func (p *PostPolicy) SetSuccessStatusAction(status string) error {
 // SetUserMetadata - Set user metadata as a key/value couple.
 // Can be retrieved through a HEAD request or an event.
 func (p *PostPolicy) SetUserMetadata(key, value string) error {
-	if strings.TrimSpace(key) == "" || key == "" {
+	if strings.TrimSpace(key) == "" {
 		return errInvalidArgument("Key is empty")
 	}
-	if strings.TrimSpace(value) == "" || value == "" {
+	if strings.TrimSpace(value) == "" {
 		return errInvalidArgument("Value is empty")
 	}
 	headerName := fmt.Sprintf("x-amz-meta-%s", key)
@@ -304,7 +321,7 @@ func (p *PostPolicy) SetUserMetadata(key, value string) error {
 // SetUserMetadataStartsWith - Set how an user metadata should starts with.
 // Can be retrieved through a HEAD request or an event.
 func (p *PostPolicy) SetUserMetadataStartsWith(key, value string) error {
-	if strings.TrimSpace(key) == "" || key == "" {
+	if strings.TrimSpace(key) == "" {
 		return errInvalidArgument("Key is empty")
 	}
 	headerName := fmt.Sprintf("x-amz-meta-%s", key)
@@ -321,11 +338,29 @@ func (p *PostPolicy) SetUserMetadataStartsWith(key, value string) error {
 }
 
 // SetChecksum sets the checksum of the request.
-func (p *PostPolicy) SetChecksum(c Checksum) {
+func (p *PostPolicy) SetChecksum(c Checksum) error {
 	if c.IsSet() {
 		p.formData[amzChecksumAlgo] = c.Type.String()
 		p.formData[c.Type.Key()] = c.Encoded()
+
+		policyCond := policyCondition{
+			matchType: "eq",
+			condition: fmt.Sprintf("$%s", amzChecksumAlgo),
+			value:     c.Type.String(),
+		}
+		if err := p.addNewPolicy(policyCond); err != nil {
+			return err
+		}
+		policyCond = policyCondition{
+			matchType: "eq",
+			condition: fmt.Sprintf("$%s", c.Type.Key()),
+			value:     c.Encoded(),
+		}
+		if err := p.addNewPolicy(policyCond); err != nil {
+			return err
+		}
 	}
+	return nil
 }
 
 // SetEncryption - sets encryption headers for POST API
diff --git a/vendor/github.com/minio/minio-go/v7/retry-continous.go b/vendor/github.com/minio/minio-go/v7/retry-continous.go
index bfeea95f3..81fcf16f1 100644
--- a/vendor/github.com/minio/minio-go/v7/retry-continous.go
+++ b/vendor/github.com/minio/minio-go/v7/retry-continous.go
@@ -20,7 +20,7 @@ package minio
 import "time"
 
 // newRetryTimerContinous creates a timer with exponentially increasing delays forever.
-func (c *Client) newRetryTimerContinous(unit, cap time.Duration, jitter float64, doneCh chan struct{}) <-chan int {
+func (c *Client) newRetryTimerContinous(baseSleep, maxSleep time.Duration, jitter float64, doneCh chan struct{}) <-chan int {
 	attemptCh := make(chan int)
 
 	// normalize jitter to the range [0, 1.0]
@@ -39,10 +39,10 @@ func (c *Client) newRetryTimerContinous(unit, cap time.Duration, jitter float64,
 		if attempt > maxAttempt {
 			attempt = maxAttempt
 		}
-		// sleep = random_between(0, min(cap, base * 2 ** attempt))
-		sleep := unit * time.Duration(1<<uint(attempt))
-		if sleep > cap {
-			sleep = cap
+		// sleep = random_between(0, min(maxSleep, base * 2 ** attempt))
+		sleep := baseSleep * time.Duration(1<<uint(attempt))
+		if sleep > maxSleep {
+			sleep = maxSleep
 		}
 		if jitter != NoJitter {
 			sleep -= time.Duration(c.random.Float64() * float64(sleep) * jitter)
diff --git a/vendor/github.com/minio/minio-go/v7/retry.go b/vendor/github.com/minio/minio-go/v7/retry.go
index d15eb5901..4cc45920c 100644
--- a/vendor/github.com/minio/minio-go/v7/retry.go
+++ b/vendor/github.com/minio/minio-go/v7/retry.go
@@ -45,7 +45,7 @@ var DefaultRetryCap = time.Second
 
 // newRetryTimer creates a timer with exponentially increasing
 // delays until the maximum retry attempts are reached.
-func (c *Client) newRetryTimer(ctx context.Context, maxRetry int, unit, cap time.Duration, jitter float64) <-chan int {
+func (c *Client) newRetryTimer(ctx context.Context, maxRetry int, baseSleep, maxSleep time.Duration, jitter float64) <-chan int {
 	attemptCh := make(chan int)
 
 	// computes the exponential backoff duration according to
@@ -59,10 +59,10 @@ func (c *Client) newRetryTimer(ctx context.Context, maxRetry int, unit, cap time
 			jitter = MaxJitter
 		}
 
-		// sleep = random_between(0, min(cap, base * 2 ** attempt))
-		sleep := unit * time.Duration(1<<uint(attempt))
-		if sleep > cap {
-			sleep = cap
+		// sleep = random_between(0, min(maxSleep, base * 2 ** attempt))
+		sleep := baseSleep * time.Duration(1<<uint(attempt))
+		if sleep > maxSleep {
+			sleep = maxSleep
 		}
 		if jitter != NoJitter {
 			sleep -= time.Duration(c.random.Float64() * float64(sleep) * jitter)
diff --git a/vendor/modules.txt b/vendor/modules.txt
index 4c57a75de..c5f13d968 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -488,7 +488,7 @@ github.com/miekg/dns
 # github.com/minio/md5-simd v1.1.2
 ## explicit; go 1.14
 github.com/minio/md5-simd
-# github.com/minio/minio-go/v7 v7.0.80
+# github.com/minio/minio-go/v7 v7.0.81
 ## explicit; go 1.22
 github.com/minio/minio-go/v7
 github.com/minio/minio-go/v7/pkg/cors

From dbef5ee03b61d630b46696cfd04c08fcd5b702ce Mon Sep 17 00:00:00 2001
From: Phil Hagelberg <phil@hagelb.org>
Date: Mon, 2 Dec 2024 01:47:05 -0800
Subject: [PATCH 18/26] [chore] Replace Semaphore recommendation with Pinafore.
 (#3586)

Neither Semaphore nor Pinafore are under active development, but
Semaphore has archived its repository while Pinafore still gets
occasional minor maintenance.

Enafore has newer features, but it has accessibility bugs affecting
screen readers that prevent it from being recommended at this time.
---
 CONTRIBUTING.md                                | 10 +++++-----
 README.md                                      |  2 +-
 docs/faq.md                                    |  2 +-
 .../getting_started/reverse_proxy/websocket.md |  2 +-
 docs/locales/zh/faq.md                         |  2 +-
 .../getting_started/reverse_proxy/websocket.md |  2 +-
 docs/locales/zh/repo/CONTRIBUTING.md           | 10 +++++-----
 docs/locales/zh/repo/README.md                 |  2 +-
 web/template/index_apps.tmpl                   | 18 +++++++++---------
 9 files changed, 25 insertions(+), 25 deletions(-)

diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
index 6b52d6b59..4fa148f37 100644
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -24,7 +24,7 @@ These contribution guidelines were adapted from / inspired by those of Gitea (ht
     - [Finding your way around the code](#finding-your-way-around-the-code)
   - [Style / Linting / Formatting](#style--linting--formatting)
   - [Testing](#testing)
-    - [Standalone Testrig with Semaphore](#standalone-testrig-with-semaphore)
+    - [Standalone Testrig with Pinafore](#standalone-testrig-with-pinafore)
     - [Running automated tests](#running-automated-tests)
       - [SQLite](#sqlite)
       - [Postgres](#postgres)
@@ -401,9 +401,9 @@ GoToSocial provides a [testrig](https://github.com/superseriousbusiness/gotosoci
 
 One thing that *isn't* mocked is the Database interface because it's just easier to use an in-memory SQLite database than to mock everything out.
 
-#### Standalone Testrig with Semaphore
+#### Standalone Testrig with Pinafore
 
-You can launch a testrig as a standalone server running at localhost, which you can connect to using something like [Semaphore](https://github.com/NickColley/semaphore/).
+You can launch a testrig as a standalone server running at localhost, which you can connect to using something like [Pinafore](https://github.com/nolanlawson/pinafore/).
 
 To do this, first build the gotosocial binary with `DEBUG=1 ./scripts/build.sh`.
 
@@ -413,14 +413,14 @@ Then, launch the testrig with the `DEBUG` environment variable set by invoking t
 DEBUG=1 ./gotosocial testrig start
 ```
 
-To run Semaphore locally in dev mode, first clone the [Semaphore](https://github.com/NickColley/semaphore/) repository, and then run the following commands in the cloned directory:
+To run Pinafore locally in dev mode, first clone the [Pinafore](https://github.com/nolanlawson/pinafore/) repository, and then run the following commands in the cloned directory:
 
 ```bash
 yarn # install dependencies
 yarn run dev
 ```
 
-The Semaphore instance will start running on `localhost:4002`.
+The Pinafore instance will start running on `localhost:4002`.
 
 To connect to the testrig, navigate to `http://localhost:4002` and enter your instance name as `localhost:8080`.
 
diff --git a/README.md b/README.md
index c37af7533..3f9f357e2 100644
--- a/README.md
+++ b/README.md
@@ -113,7 +113,7 @@ The Mastodon API has become the de facto standard for client communication with
 Though most apps that implement the Mastodon API should work, GoToSocial is tested and works reliably with beautiful apps like:
 
 * [Tusky](https://tusky.app/) for Android
-* [Semaphore](https://semaphore.social/) in the browser
+* [Pinafore](https://pinafore.social/) in the browser
 * [Feditext](https://github.com/feditext/feditext) (beta) on iOS, iPadOS and macOS
 
 If you've used Mastodon with a third-party app before, you'll find using GoToSocial a breeze.
diff --git a/docs/faq.md b/docs/faq.md
index 521c97531..72fed557d 100644
--- a/docs/faq.md
+++ b/docs/faq.md
@@ -2,7 +2,7 @@
 
 ## Where's the user interface?
 
-GoToSocial is just a bare server for the most part and is designed to be used thru external applications. [Semaphore](https://semaphore.social/) in the browser, [Tusky](https://tusky.app/) for Android and [Feditext](https://github.com/feditext/feditext) for iOS, iPadOS and macOS are the best-supported. Anything that supports the Mastodon API should work, other than the features GoToSocial doesn't yet have. Permalinks and profile pages are served directly through GoToSocial as well as the settings panel, but most interaction goes through the apps.
+GoToSocial is just a bare server for the most part and is designed to be used thru external applications. [Pinafore](https://pinafore.social/) in the browser, [Tusky](https://tusky.app/) for Android and [Feditext](https://github.com/feditext/feditext) for iOS, iPadOS and macOS are the best-supported. Anything that supports the Mastodon API should work, other than the features GoToSocial doesn't yet have. Permalinks and profile pages are served directly through GoToSocial as well as the settings panel, but most interaction goes through the apps.
 
 ## Why aren't my posts showing up on my profile page?
 
diff --git a/docs/getting_started/reverse_proxy/websocket.md b/docs/getting_started/reverse_proxy/websocket.md
index ec7c107a9..68d28bc5c 100644
--- a/docs/getting_started/reverse_proxy/websocket.md
+++ b/docs/getting_started/reverse_proxy/websocket.md
@@ -1,6 +1,6 @@
 # WebSocket
 
-GoToSocial uses the secure [WebSocket protocol](https://en.wikipedia.org/wiki/WebSocket) (aka `wss`) to allow for streaming updates of statuses and notifications via client apps like Semaphore.
+GoToSocial uses the secure [WebSocket protocol](https://en.wikipedia.org/wiki/WebSocket) (aka `wss`) to allow for streaming updates of statuses and notifications via client apps like Pinafore.
 
 In order to use this functionality, you need to ensure that whatever proxy you've configured GoToSocial to run behind allows WebSocket connections through.
 
diff --git a/docs/locales/zh/faq.md b/docs/locales/zh/faq.md
index 8383d7462..a49272202 100644
--- a/docs/locales/zh/faq.md
+++ b/docs/locales/zh/faq.md
@@ -2,7 +2,7 @@
 
 ## 用户界面在哪？
 
-GoToSocial 的大部分内容只是一个裸服务端，用于通过第三方应用程序进行使用。可通过 [Semaphore](https://semaphore.social/) 在浏览器使用，可通过 [Tusky](https://tusky.app/) 在 Android 使用，可通过 [Feditext](https://github.com/feditext/feditext) 在 iOS、iPadOS 和 macOS 使用。这些应用程序兼容性最好。任何由 Mastodon API 提供的实例功能都应该可以工作，除非它们是 GoToSocial 尚不具备的功能。永久链接和个账户页是通过 GoToSocial 直接提供的，设置面板也是如此，但大多数交互都是通过应用程序完成的。
+GoToSocial 的大部分内容只是一个裸服务端，用于通过第三方应用程序进行使用。可通过 [Pinafore](https://pinafore.social/) 在浏览器使用，可通过 [Tusky](https://tusky.app/) 在 Android 使用，可通过 [Feditext](https://github.com/feditext/feditext) 在 iOS、iPadOS 和 macOS 使用。这些应用程序兼容性最好。任何由 Mastodon API 提供的实例功能都应该可以工作，除非它们是 GoToSocial 尚不具备的功能。永久链接和个账户页是通过 GoToSocial 直接提供的，设置面板也是如此，但大多数交互都是通过应用程序完成的。
 
 ## 为什么我的贴文没有显示在我的账户页面上？
 
diff --git a/docs/locales/zh/getting_started/reverse_proxy/websocket.md b/docs/locales/zh/getting_started/reverse_proxy/websocket.md
index e1391ec45..f265edf37 100644
--- a/docs/locales/zh/getting_started/reverse_proxy/websocket.md
+++ b/docs/locales/zh/getting_started/reverse_proxy/websocket.md
@@ -1,6 +1,6 @@
 # WebSocket
 
-GoToSocial 使用安全的 [WebSocket 协议](https://en.wikipedia.org/wiki/WebSocket)（即 `wss`）来通过客户端应用程序（如 Semaphore）实现贴文和通知的实时更新。
+GoToSocial 使用安全的 [WebSocket 协议](https://en.wikipedia.org/wiki/WebSocket)（即 `wss`）来通过客户端应用程序（如 Pinafore）实现贴文和通知的实时更新。
 
 为了使用此功能，你需要确保配置 GoToSocial 所在的代理允许 WebSocket 连接通过。
 
diff --git a/docs/locales/zh/repo/CONTRIBUTING.md b/docs/locales/zh/repo/CONTRIBUTING.md
index 4d05b180e..4da713ad3 100644
--- a/docs/locales/zh/repo/CONTRIBUTING.md
+++ b/docs/locales/zh/repo/CONTRIBUTING.md
@@ -24,7 +24,7 @@
     - [浏览代码结构](#浏览代码结构)
   - [风格/代码检查/格式化](#风格代码检查格式化)
   - [测试](#测试)
-    - [独立测试环境与 Semaphore](#独立测试环境与-semaphore)
+    - [独立测试环境与 Pinafore](#独立测试环境与-pinafore)
     - [运行自动化测试](#运行自动化测试)
       - [SQLite](#sqlite)
       - [Postgres](#postgres)
@@ -400,9 +400,9 @@ GoToSocial 提供了一个 [testrig](https://github.com/superseriousbusiness/got
 
 没有模拟的一个东西是数据库接口，因为使用内存中的 SQLite 数据库比模拟所有东西要简单得多。
 
-#### 独立测试环境与 Semaphore
+#### 独立测试环境与 Pinafore
 
-你可以启动一个在本地主机运行的独立测试服务器 testrig，可以通过 [Semaphore](https://github.com/NickColley/semaphore/) 连接。
+你可以启动一个在本地主机运行的独立测试服务器 testrig，可以通过 [Pinafore](https://github.com/NickColley/pinafore/) 连接。
 
 要做到这一点，首先用 `DEBUG=1 ./scripts/build.sh` 构建 gotosocial 二进制文件。
 
@@ -412,14 +412,14 @@ GoToSocial 提供了一个 [testrig](https://github.com/superseriousbusiness/got
 DEBUG=1 ./gotosocial testrig start
 ```
 
-要在本地开发模式下运行 Semaphore，首先克隆 [Semaphore](https://github.com/NickColley/semaphore/) 存储库，然后在克隆的目录中运行以下命令：
+要在本地开发模式下运行 Pinafore，首先克隆 [Pinafore](https://github.com/nolanlawson/pinafore/) 存储库，然后在克隆的目录中运行以下命令：
 
 ```bash
 yarn # 安装依赖
 yarn run dev
 ```
 
-Semaphore 实例将在 `localhost:4002` 上启动。
+Pinafore 实例将在 `localhost:4002` 上启动。
 
 要连接到 testrig，导航至 `http://localhost:4002`，并将在实例域名栏输入 `localhost:8080`。
 
diff --git a/docs/locales/zh/repo/README.md b/docs/locales/zh/repo/README.md
index 82761a4b5..24b5591fc 100644
--- a/docs/locales/zh/repo/README.md
+++ b/docs/locales/zh/repo/README.md
@@ -113,7 +113,7 @@ Mastodon API 已成为客户端与联邦宇宙服务端通信的事实标准，
 大多数实现 Mastodon API 的应用程序都应该可以使用 GoToSocial，但以下这些优秀的应用程序已经过测试，可与 GoToSocial 可靠地配合使用：
 
 * [Tusky](https://tusky.app/) 适用于 Android
-* [Semaphore](https://semaphore.social/) 适用于浏览器
+* [Pinafore](https://pinafore.social/) 适用于浏览器
 * [Feditext](https://github.com/feditext/feditext) (beta) 适用于 iOS, iPadOS 和 macOS
 
 如果你之前通过第三方应用来使用 Mastodon，使用 GoToSocial 将是轻而易举的。
diff --git a/web/template/index_apps.tmpl b/web/template/index_apps.tmpl
index 19a474692..480a12f0b 100644
--- a/web/template/index_apps.tmpl
+++ b/web/template/index_apps.tmpl
@@ -29,27 +29,27 @@
         <ul class="applist nodot" role="group">
             <li class="applist-entry">
                 <div class="applist-text">
-                    <p><strong>Semaphore</strong> is a web client designed for speed and simplicity.</p>
+                    <p><strong>Pinafore</strong> is a web client designed for speed and simplicity.</p>
                     <a
-                        href="https://semaphore.social/"
+                        href="https://pinafore.social/"
                         rel="nofollow noreferrer noopener"
                         target="_blank"
                     >
-                        Use Semaphore
+                        Use Pinafore
                     </a>
                 </div>
                 <svg
                     role="img"
-                    aria-labelledby="semaphore-title semaphore-desc"
+                    aria-labelledby="pinafore-title pinafore-desc"
                     class="applist-logo redraw"
                     xmlns="http://www.w3.org/2000/svg"
-                    viewBox="0 0 146 120"
+                    viewBox="0 0 10000 10000"
                     width="100"
                     height="100"
                 >
-                    <title id="semaphore-title">The Semaphore logo</title>
-                    <desc id="semaphore-desc">A waving flag</desc>
-                    <path d="M68.13 0C53.94 0 42.81 20 13.9 27.1l-2.23-5.29a6.5 6.5 0 0 0-5.17-10.4 6.5 6.5 0 0 0-.81 12.95L46.2 120l5.99-2.5-14.42-33.33c22.8-6.86 32.51-22.16 49.83-20.58 9.9.9 4.87 19.56 8.11 17.93 16.22-8.15 32.44-11.41 50.29-11.41-7.96-9.78-17.38-20.55-22.71-31.74L120.8 32c-2.32-7.33-2.56-14.75.87-22.22-9.74-3.26-21.1 0-32.45 4.9C82.2 9.77 79.5 0 68.13 0zM15.26 30.42c8.95 6.63 13.63 13.86 16.07 20.94l1.62 6.32c1.24 6.58 1.07 12.8 1.27 18.03z"></path>
+                    <title id="pinafore-title">The Pinafore logo</title>
+                    <desc id="pinafore-desc">A sailboat</desc>
+                    <path d="M9212 5993H5987V823c1053 667 2747 2177 3225 5170zM3100 2690A12240 12240 0 01939 6035h2161zm676 7210h2448a3067 3067 0 003067-3067H5052V627a527 527 0 00-1052 0v6206H709a3067 3067 0 003067 3067z"></path>
                 </svg>
             </li>
             <li class="applist-entry">
@@ -115,4 +115,4 @@
         </ul>
     </div>
 </section>
-{{- end }}
\ No newline at end of file
+{{- end }}

From 44b7bc71b660a250ae7800d2655a88085cec6860 Mon Sep 17 00:00:00 2001
From: CDN <cardinal@codeword.info>
Date: Mon, 2 Dec 2024 17:48:53 +0800
Subject: [PATCH 19/26] [docs/zh] Update zh docs: synced to
 da4db81bcf1a66d0de559015e061e602d8f2fcb8 (#3589)

---
 docs/locales/zh/api/swagger.yaml         | 415 ++++++++++++++++++++++-
 docs/locales/zh/configuration/storage.md |   4 +
 docs/locales/zh/user_guide/posts.md      |   3 +
 3 files changed, 420 insertions(+), 2 deletions(-)

diff --git a/docs/locales/zh/api/swagger.yaml b/docs/locales/zh/api/swagger.yaml
index 7751c47e3..070a9448c 100644
--- a/docs/locales/zh/api/swagger.yaml
+++ b/docs/locales/zh/api/swagger.yaml
@@ -4980,7 +4980,7 @@ paths:
                 - description: 此表情的代码，将被实例居民用于选定对应表情。此代码在实例上必须是唯一的。
                   in: formData
                   name: shortcode
-                  pattern: \w{2,30}
+                  pattern: \w{1,30}
                   required: true
                   type: string
                 - description: 此表情的 png 或 gif 图像。动画 png 也可以！为了确保与其他 fedi 实现的兼容性，默认情况下表情大小限制为 50kb。
@@ -5130,7 +5130,7 @@ paths:
                 - description: 用于表情的代码，将被实例居民用于选定表情。此代码在实例上必须是唯一的。仅适用于 `copy` 操作类型。
                   in: formData
                   name: shortcode
-                  pattern: \w{2,30}
+                  pattern: \w{1,30}
                   type: string
                 - description: 此表情的新 png 或 gif 图像。动画 png 也可以！为了确保与其他 fedi 实现的兼容性，默认情况下表情大小限制为 50kb。仅适用于 **本站** 表情。
                   in: formData
@@ -5639,6 +5639,417 @@ paths:
             summary: 吊销实例密钥
             tags:
                 - admin
+    /api/v1/admin/domain_permission_drafts:
+        get:
+            description: |-
+                该端点将返回按时间倒序排序（最新优先），并带有连续 ID 的域名权限草案（ID 值越大，草稿越新）。可以通过返回的 Link 标头解析下一页与上一页查询。
+                
+                示例:
+                ```
+                <https://example.org/api/v1/admin/domain_permission_drafts?limit=20&max_id=01FC0SKA48HNSVR6YKZCQGS2V8>; rel="next", <https://example.org/api/v1/admin/domain_permission_drafts?limit=20&min_id=01FC0SKW5JK2Q4EVAV2B462YY0>; rel="prev"
+                ````
+            operationId: domainPermissionDraftsGet
+            parameters:
+                - description: 仅显示给定订阅 ID 创建的草案。
+                  in: query
+                  name: subscription_id
+                  type: string
+                - description: 仅显示针对特定域名的草案。
+                  in: query
+                  name: domain
+                  type: string
+                - description: 筛选“屏蔽”与“放行”类型的草案。
+                  in: query
+                  name: permission_type
+                  type: string
+                - description: 仅返回早于给定 max ID 的条目（用于向下分页）。具有对应 ID 的条目不会包含在响应中。
+                  in: query
+                  name: max_id
+                  type: string
+                - description: 仅返回晚于给定 since ID 的条目（用于向上分页）。具有对应 ID 的条目不会包含在响应中。
+                  in: query
+                  name: since_id
+                  type: string
+                - description: 仅返回相邻且晚于给定 min ID 的条目（用于向上分页）。具有对应 ID 的条目不会包含在响应中。
+                  in: query
+                  name: min_id
+                  type: string
+                - default: 20
+                  description: 要返回的条目数量。
+                  in: query
+                  maximum: 100
+                  minimum: 1
+                  name: limit
+                  type: integer
+            produces:
+                - application/json
+            responses:
+                "200":
+                    description: 域名权限草案。
+                    headers:
+                        Link:
+                            description: 下一查询与上一查询的链接。
+                            type: string
+                    schema:
+                        items:
+                            $ref: '#/definitions/domainPermission'
+                        type: array
+                "400":
+                    description: bad request 无效请求
+                "401":
+                    description: unauthorized 未授权
+                "403":
+                    description: forbidden 禁止
+                "404":
+                    description: not found 未找到
+                "406":
+                    description: not acceptable 不可接受
+                "500":
+                    description: internal server error 服务器内部错误
+            security:
+                - OAuth2 Bearer:
+                    - admin
+            summary: 查看域名权限草案。
+            tags:
+                - admin
+        post:
+            consumes:
+                - multipart/form-data
+                - application/json
+            operationId: domainPermissionDraftCreate
+            parameters:
+                - description: 该草案要针对的域名。
+                  in: formData
+                  name: domain
+                  type: string
+                - description: 草案类型为“放行”或“屏蔽”。
+                  in: formData
+                  name: permission_type
+                  type: string
+                - description: 对外公开展示时混淆具体域名。例如：`example.org` 将变为类似 `ex***e.org` 的字符串。
+                  in: formData
+                  name: obfuscate
+                  type: boolean
+                - description: 对此域名权限的公开评注。若您选择分享此权限设定，此评注将与权限条目一起显示。
+                  in: formData
+                  name: public_comment
+                  type: string
+                - description: 对此域名权限的私人评注。仅显示给其他管理员，因此这是一个可用于记录为什么某个域名最终被添加此权限设定的有用的内部手段。
+                  in: formData
+                  name: private_comment
+                  type: string
+            produces:
+                - application/json
+            responses:
+                "200":
+                    description: 新创建的域名权限草案。
+                    schema:
+                        $ref: '#/definitions/domainPermission'
+                "400":
+                    description: bad request 无效请求
+                "401":
+                    description: unauthorized 未授权
+                "403":
+                    description: forbidden 禁止访问
+                "406":
+                    description: not acceptable 不可接受
+                "409":
+                    description: conflict 冲突
+                "500":
+                    description: internal server error 服务器内部错误
+            security:
+                - OAuth2 Bearer:
+                    - admin
+            summary: 使用给定参数创建一条域名权限草案。
+            tags:
+                - admin
+    /api/v1/admin/domain_permission_drafts/{id}:
+        get:
+            operationId: domainPermissionDraftGet
+            parameters:
+                - description: 域名权限草案的 ID。
+                  in: path
+                  name: id
+                  required: true
+                  type: string
+            produces:
+                - application/json
+            responses:
+                "200":
+                    description: 域名权限草案。
+                    schema:
+                        $ref: '#/definitions/domainPermission'
+                "401":
+                    description: unauthorized 未授权
+                "403":
+                    description: forbidden 禁止访问
+                "404":
+                    description: not found 未找到
+                "406":
+                    description: not acceptable 不可接受
+                "500":
+                    description: internal server error 服务器内部错误
+            security:
+                - OAuth2 Bearer:
+                    - admin
+            summary: 获取具有给定 ID 的域名权限草案。
+            tags:
+                - admin
+    /api/v1/admin/domain_permission_drafts/{id}/accept:
+        post:
+            consumes:
+                - multipart/form-data
+                - application/json
+            operationId: domainPermissionDraftAccept
+            parameters:
+                - description: 域名权限草案的 ID。
+                  in: path
+                  name: id
+                  required: true
+                  type: string
+                - default: false
+                  description: 若已经存在一条具有相同域名与权限设定类型的草案，使用新草案的字段覆盖现有权限设定。
+                  in: formData
+                  name: overwrite
+                  type: boolean
+            produces:
+                - application/json
+            responses:
+                "200":
+                    description: 新创建的域名权限草案。
+                    schema:
+                        $ref: '#/definitions/domainPermission'
+                "400":
+                    description: bad request 无效请求
+                "401":
+                    description: unauthorized 未授权
+                "403":
+                    description: forbidden 禁止访问
+                "406":
+                    description: not acceptable 不可接受
+                "409":
+                    description: conflict 冲突
+                "500":
+                    description: internal server error 服务器内部错误
+            security:
+                - OAuth2 Bearer:
+                    - admin
+            summary: 接受一条域名权限草案，将其转换为会得到强制执行的域名权限。
+            tags:
+                - admin
+    /api/v1/admin/domain_permission_drafts/{id}/remove:
+        post:
+            consumes:
+                - multipart/form-data
+                - application/json
+            operationId: domainPermissionDraftRemove
+            parameters:
+                - description: 域名权限草案的 ID。
+                  in: path
+                  name: id
+                  required: true
+                  type: string
+                - default: false
+                  description: 删除此域名权限草案时，为目标域名创建一个域名排除条目，以确保之后不会为此域名创建草案。
+                  in: formData
+                  name: exclude_target
+                  type: boolean
+            produces:
+                - application/json
+            responses:
+                "200":
+                    description: 被移除的域名权限草案。
+                    schema:
+                        $ref: '#/definitions/domainPermission'
+                "400":
+                    description: bad request 无效请求
+                "401":
+                    description: unauthorized 未授权
+                "403":
+                    description: forbidden 禁止访问
+                "406":
+                    description: not acceptable 不可接受
+                "409":
+                    description: conflict 冲突
+                "500":
+                    description: internal server error 服务器内部错误
+            security:
+                - OAuth2 Bearer:
+                    - admin
+            summary: 移除一条域名权限草案，可选择忽略所有之后的针对给定域名的草案。
+            tags:
+                - admin
+    /api/v1/admin/domain_permission_excludes:
+        get:
+            description: |-
+                返回按时间倒序排序（新创建的条目优先），并带有连续 ID 的域名权限排除条目（ID 值越大，排除条目越新）。可以通过返回的 Link 标头解析下一页与上一页查询。
+                示例：
+                ```
+                <https://example.org/api/v1/admin/domain_permission_excludes?limit=20&max_id=01FC0SKA48HNSVR6YKZCQGS2V8>; rel="next", <https://example.org/api/v1/admin/domain_permission_excludes?limit=20&min_id=01FC0SKW5JK2Q4EVAV2B462YY0>; rel="prev"
+                ```
+            operationId: domainPermissionExcludesGet
+            parameters:
+                - description: 仅返回针对给定域名的排除条目。
+                  in: query
+                  name: domain
+                  type: string
+                - description: 仅返回比给定 max ID 新的条目（用于向下分页）。具有对应 ID 的条目不会包含在响应中。
+                  in: query
+                  name: max_id
+                  type: string
+                - description: 仅返回比给定 since ID 新的条目（用于向上分页）。具有对应 ID 的条目不会包含在响应中。
+                  in: query
+                  name: since_id
+                  type: string
+                - description: 仅返回比给定 min ID 相邻且更新的条目（用于向上分页）。具有对应 ID 的条目不会包含在响应中。
+                  in: query
+                  name: min_id
+                  type: string
+                - default: 20
+                  description: 要返回的条目数量。
+                  in: query
+                  maximum: 100
+                  minimum: 1
+                  name: limit
+                  type: integer
+            produces:
+                - application/json
+            responses:
+                "200":
+                    description: 域名权限排除条目。
+                    headers:
+                        Link:
+                            description: 下一查询与上一查询的链接。
+                            type: string
+                    schema:
+                        items:
+                            $ref: '#/definitions/domainPermission'
+                        type: array
+                "400":
+                    description: bad request 无效请求
+                "401":
+                    description: unauthorized 未授权
+                "403":
+                    description: forbidden 禁止访问
+                "404":
+                    description: not found 未找到
+                "406":
+                    description: not acceptable 不可接受
+                "500":
+                    description: internal server error 服务器内部错误
+            security:
+                - OAuth2 Bearer:
+                    - admin
+            summary: 查看域名权限排除条目。
+            tags:
+                - admin
+        post:
+            consumes:
+                - multipart/form-data
+                - application/json
+            description: |-
+                被排除的域名（及其子域名）在导入或订阅域名权限列表时不会被自动屏蔽或放行。
+                您仍然可以为被排除的域名手动创建域名屏蔽条目或域名放行条目，被排除之后，与该域名关联的任何的已有或新创建的域名屏蔽条目或域名放行条目都将被继续执行。
+            operationId: domainPermissionExcludeCreate
+            parameters:
+                - description: 要创建权限排除的域名。
+                  in: formData
+                  name: domain
+                  type: string
+                - description: 对该域名排除条目的私密评论。
+                  in: formData
+                  name: private_comment
+                  type: string
+            produces:
+                - application/json
+            responses:
+                "200":
+                    description: 新创建的域名排除条目。
+                    schema:
+                        $ref: '#/definitions/domainPermission'
+                "400":
+                    description: bad request 无效请求
+                "401":
+                    description: unauthorized 未授权
+                "403":
+                    description: forbidden 禁止访问
+                "406":
+                    description: not acceptable 不可接受
+                "409":
+                    description: conflict 冲突
+                "500":
+                    description: internal server error 服务器内部错误
+            security:
+                - OAuth2 Bearer:
+                    - admin
+            summary: 使用给定参数创建一个域名权限排除条目。
+            tags:
+                - admin
+    /api/v1/admin/domain_permission_excludes/{id}:
+        delete:
+            operationId: domainPermissionExcludeDelete
+            parameters:
+                - description: 该域名权限排除条目的 ID。
+                  in: path
+                  name: id
+                  required: true
+                  type: string
+            produces:
+                - application/json
+            responses:
+                "200":
+                    description: 被移除的域名权限排除条目。
+                    schema:
+                        $ref: '#/definitions/domainPermission'
+                "400":
+                    description: bad request 无效请求
+                "401":
+                    description: unauthorized 未授权
+                "403":
+                    description: forbidden 禁止访问
+                "406":
+                    description: not acceptable 不可接受
+                "409":
+                    description: conflict 冲突
+                "500":
+                    description: internal server error 服务器内部错误
+            security:
+                - OAuth2 Bearer:
+                    - admin
+            summary: 移除一个域名权限排除条目。
+            tags:
+                - admin
+        get:
+            operationId: domainPermissionExcludeGet
+            parameters:
+                - description: 域名权限排除条目的 ID。
+                  in: path
+                  name: id
+                  required: true
+                  type: string
+            produces:
+                - application/json
+            responses:
+                "200":
+                    description: 域名权限排除条目。
+                    schema:
+                        $ref: '#/definitions/domainPermission'
+                "401":
+                    description: unauthorized 未授权
+                "403":
+                    description: forbidden 禁止访问
+                "404":
+                    description: not found 未找到
+                "406":
+                    description: not acceptable 不可接受
+                "500":
+                    description: internal server error 服务器内部错误
+            security:
+                - OAuth2 Bearer:
+                    - admin
+            summary: 获取具有给定 ID 的域名权限排除。
+            tags:
+                - admin
     /api/v1/admin/email/test:
         post:
             consumes:
diff --git a/docs/locales/zh/configuration/storage.md b/docs/locales/zh/configuration/storage.md
index 24bb40d45..c2f1c467f 100644
--- a/docs/locales/zh/configuration/storage.md
+++ b/docs/locales/zh/configuration/storage.md
@@ -1,5 +1,9 @@
 # 存储
 
+When configuring an object storage backend, the `storage-s3-endpoint` **must not** include the bucket name. That's what `s3-bucket-name` is for. Using subfolders in a bucket isn't currently supported.
+
+配置对象存储后端时，`storage-s3-endpoint` **不得** 包含存储桶名称。`s3-bucket-name`负责配置存储桶名称。目前不支持使用特定存储桶的子目录作为存储后端。
+
 ## 设置
 
 ```yaml
diff --git a/docs/locales/zh/user_guide/posts.md b/docs/locales/zh/user_guide/posts.md
index 8c41dcd77..911eb2beb 100644
--- a/docs/locales/zh/user_guide/posts.md
+++ b/docs/locales/zh/user_guide/posts.md
@@ -36,6 +36,9 @@ GoToSocial 为贴文提供 Mastodon 风格的隐私设置。从最私密到最
 
 ### 互关可见
 
+!!! warning
+    目前暂时无法将帖文可见性设为“互关可见”。
+
 `互关可见` 的贴文只会显示给贴文作者和与作者*互相关注*的人。换句话说，只有在满足两个条件时，其他人才能看到：
 
 1. 其他账户关注贴文作者。

From dce85a2b7a73814bb936d1b3143e46a7a99cb4ed Mon Sep 17 00:00:00 2001
From: CDN <cardinal@codeword.info>
Date: Mon, 2 Dec 2024 17:50:32 +0800
Subject: [PATCH 20/26] [feature/themes] Add auto-switching themes for
 blurple/brutalist/solarized (#3588)

---
 web/assets/themes/blurple-auto.css   | 10 ++++++++++
 web/assets/themes/brutalist-auto.css | 10 ++++++++++
 web/assets/themes/solarized-auto.css | 10 ++++++++++
 3 files changed, 30 insertions(+)
 create mode 100644 web/assets/themes/blurple-auto.css
 create mode 100644 web/assets/themes/brutalist-auto.css
 create mode 100644 web/assets/themes/solarized-auto.css

diff --git a/web/assets/themes/blurple-auto.css b/web/assets/themes/blurple-auto.css
new file mode 100644
index 000000000..817a07248
--- /dev/null
+++ b/web/assets/themes/blurple-auto.css
@@ -0,0 +1,10 @@
+/*
+  theme-title: Blurple (auto)
+  theme-description: Official blurple theme that adapts to system preferences
+*/
+
+/* Default to dark theme */
+@import url("blurple-dark.css");
+
+@import url("blurple-light.css") screen and (prefers-color-scheme: light);
+@import url("blurple-dark.css") screen and (prefers-color-scheme: dark);
diff --git a/web/assets/themes/brutalist-auto.css b/web/assets/themes/brutalist-auto.css
new file mode 100644
index 000000000..080360c87
--- /dev/null
+++ b/web/assets/themes/brutalist-auto.css
@@ -0,0 +1,10 @@
+/*
+  theme-title: Brutalist (auto)
+  theme-description: Official (Pseudo-)monochrome brutality theme that adapts to system preferences
+*/
+
+/* Default to brutalist theme */
+@import url("brutalist.css");
+
+@import url("brutalist.css") screen and (prefers-color-scheme: light);
+@import url("brutalist-dark.css") screen and (prefers-color-scheme: dark);
diff --git a/web/assets/themes/solarized-auto.css b/web/assets/themes/solarized-auto.css
new file mode 100644
index 000000000..8324ef5f7
--- /dev/null
+++ b/web/assets/themes/solarized-auto.css
@@ -0,0 +1,10 @@
+/*
+  theme-title: Solarized (auto)
+  theme-description: Solarized theme that adapts to system preferences
+*/
+
+/* Default to dark theme */
+@import url("solarized-dark.css");
+
+@import url("solarized-light.css") screen and (prefers-color-scheme: light);
+@import url("solarized-dark.css") screen and (prefers-color-scheme: dark);

From 9609c4550d0cf6010ab88357fb5636e42ad22ba7 Mon Sep 17 00:00:00 2001
From: Victor Dyotte <vdyotte@gmail.com>
Date: Mon, 2 Dec 2024 06:24:48 -0500
Subject: [PATCH 21/26] [feature] Add global instance CSS customization setting
 (#3352)

Allow instance admins to add custom CSS that will affect
every page of their instance.

This is done with a new CustomCSS instance setting that
works pretty much exactly like the Users CustomCSS property.
This custom CSS is then requested for every page load.
User styles/themes take precedence over this CSS.

Co-authored-by: tobi <tobi.smethurst@protonmail.com>
---
 docs/admin/settings.md                        |   8 ++++
 docs/api/swagger.yaml                         |   8 ++++
 .../public/admin-settings-instance.png        | Bin 205194 -> 234878 bytes
 internal/api/client/instance/instancepatch.go |   1 +
 internal/api/model/instance.go                |   2 +
 internal/api/model/instancev1.go              |   2 +
 internal/api/model/instancev2.go              |   2 +
 .../20240924222938_add_instance_custom_css.go |  44 ++++++++++++++++++
 internal/gtsmodel/instance.go                 |   1 +
 internal/processing/instance.go               |  11 +++++
 internal/typeutils/internaltofrontend.go      |   2 +
 internal/validate/formvalidation.go           |  10 ++++
 internal/web/about.go                         |   2 +-
 internal/web/confirmemail.go                  |   5 +-
 internal/web/customcss.go                     |  19 ++++++++
 internal/web/domain-blocklist.go              |   2 +-
 internal/web/index.go                         |   2 +-
 internal/web/profile.go                       |   3 +-
 internal/web/settings-panel.go                |   1 +
 internal/web/signup.go                        |   7 +--
 internal/web/tag.go                           |   2 +-
 internal/web/thread.go                        |   3 +-
 internal/web/web.go                           |  30 ++++++------
 web/source/settings/lib/types/instance.ts     |   1 +
 .../views/admin/instance/settings.tsx         |  17 ++++++-
 25 files changed, 158 insertions(+), 27 deletions(-)
 create mode 100644 internal/db/bundb/migrations/20240924222938_add_instance_custom_css.go

diff --git a/docs/admin/settings.md b/docs/admin/settings.md
index 0efb5bf45..170d07e6a 100644
--- a/docs/admin/settings.md
+++ b/docs/admin/settings.md
@@ -167,3 +167,11 @@ Links to the set contact account and/or email address will appear on the footer
 The selected **contact user** must be an active (not suspended) admin and/or moderator on the instance.
 
 If you're on a single-user instance and you give admin privileges to your main account, you can just fill in your own username here; you don't need to make a separate admin account just for this.
+
+### Instance Custom CSS
+
+custom CSS allows you to further customize the way your instance looks when visited through a browser.
+
+This custom CSS will be applied to all pages of your instance. Users themes and CSS still take precedence over this customization.
+
+See the [Custom CSS](./custom_css.md) page for some tips on writing custom CSS for your instance.
diff --git a/docs/api/swagger.yaml b/docs/api/swagger.yaml
index 5c0c2ae3d..a3a79e2fb 100644
--- a/docs/api/swagger.yaml
+++ b/docs/api/swagger.yaml
@@ -1570,6 +1570,10 @@ definitions:
                 $ref: '#/definitions/instanceV1Configuration'
             contact_account:
                 $ref: '#/definitions/account'
+            custom_css:
+                description: Custom CSS for the instance.
+                type: string
+                x-go-name: CustomCSS
             debug:
                 description: Whether or not instance is running in DEBUG mode. Omitted if false.
                 type: boolean
@@ -1750,6 +1754,10 @@ definitions:
                 $ref: '#/definitions/instanceV2Configuration'
             contact:
                 $ref: '#/definitions/instanceV2Contact'
+            custom_css:
+                description: Instance Custom Css
+                type: string
+                x-go-name: CustomCSS
             debug:
                 description: Whether or not instance is running in DEBUG mode. Omitted if false.
                 type: boolean
diff --git a/docs/overrides/public/admin-settings-instance.png b/docs/overrides/public/admin-settings-instance.png
index 181a35a7c2166b1a0fd4ee4f215082380922f664..1203e8a416a8c5017c4d95571243e73aac58aa4b 100644
GIT binary patch
literal 234878
zcmbTdRa9Kh6Zm;?g1ZF`5Ht|nB?Ll%;O;WG+u#~B0R{qtTY%se90m>UF2QAjyF2X3
zH^2Yx!|v0*-P2udRn^sX&#BKB6(w103<?YY0I=mgN~-|?G7|ux#-k$w0FX9@NC^M{
zlADyA20A+W;=1x00MG(*((g3977ms@{fK%<ffIq6=DFiZ-w0lGJX%R~L)at{vc>_e
z)<Nr|{qLVqzwvrLf5b<Y&JQ;t)I+Chy>?|uwrdt?m*9ATAcYx<?7uoDE8#5AAkd(l
z(!k?Hy-PuijZPPeCxuQoZE5Z63H<xM;EYg3llrft$iZ|v_-}tGo~=F^nD#%}&;^nY
zRR6~1)Q9~)qNk)&k#O(eZI(@Ry2EADP?aGvP&NC!j4DCTkSJ8ERDcYNH8D-CqSct>
z?~KA6x=HLLZi<RA0~)?hNu&^As66qQv4-<!JX_gNJP2F}LMk+2TUUE0m}MmHlbO?M
zjQw|91p?HSB1S21VrF&*nnaXYxp|8lN{1#jN13&qD6hFs9Yy!w?)BbP@_6~&W)%Lq
z&BcLibN!Lr(d#}J_1rZ!D%XnrpNwoJk9FOh+p=$4(ff`#q#QdfwzhUuq;Sgrj@)`4
z%{WR5HhIM&HCLhK7pTb!_PwU~tEIW0|GL&7n&^hjdZ&*)nE$B~M!8L{VA6{7Pf;q1
zu%+RcpC|ovUE!WFdq=yQBQ8|?QpF5%`HVdSeX$O)tMN%`lPk;b{!{0U#9nnSB(;Wy
zg3H$4w>{KtLvXZjZme(4sk^8uUEt|)SpajPS@xgmA4%&1!e-7nTW7z$hwwy`@m<{}
z8`&Kj{j<@9@$_I3XzL)t=i*>_C9|DZ%;zdg=sxG_2<4w;pM}c52zPeUSLWzKwmw8t
zyd<HXUul*6w~zLGKGnWB)2_wl#d1$YPwM~tBF9eEE*Davy8QoYz501}apu^J!_^A}
z;dPRMq7m?b59lsSh{=Y{KNUq{|2dGbzFjVazkFyNos|p(Rm<8ALcoh-)P*uwM}Od8
zI@z(7k@+WhH@B}-H=s)oftP97soCDGbjjk<Na&iDk$A04e7Bj*3(3nox)TrBuE-SO
zZ{hyfn1RI7ymGpGoX-Dvy6G=gclen5Kc5X7Dpw4!z?U-D-4d**AFXwG{<XItEYAWu
zkp5uVa57%>bJRoC9z(QZI;|83;&Vkoa9F%WXKQWzEEAzDf4KbbLWFXtHp@`G8P$H<
zYu-x)%^Du&pPjXtVU@LwU>}NzS4R#$o)qfl_!_FBo0N_iJ7nNC^J_q+S?iHUg{mjN
zJbJ7%4(Y#{3_~hBrYHP7J|h62P&|1Sx=?;gcV?o`dij5t6D?#3Q}J@~LVrxVdy-l~
zT)9C$<>A|cs`0{(Ep)~?U=y>eJ5Or8)s;%rfA-L7_ED8RA1OB1-D2MKf&lo81C}+q
z_WbE1j)XF*L<o}c7Flr01Tsj3iaev-3heqj$n|}x>h&S@=F#4(ueo`Oi&sX@$KrmS
z*z|YT(dcI$YFus>0fSHN0lKvtCdI8)FTjW3p{{FXYO<rzxlPI&_<pwCr@{!T&Y<ME
zHUTaD^SSe>cBUzsmi@c79LJU>28+4l)nQ{7DS?v;v?H>qhMHy*4yF0adu>cD%2G=}
z5=&tC9^NB}aPWdg$=^&fb;&*Ba!lEnK{3mJ4!dgI$hPX0|7x}b`;E6})uWp6%YVM=
zux~3(W!3#sbj%GptIuwcZ(%{4s5!&;x~9jnK_Q-j2NjF#tvveJxnk+hGy)-WT~t8o
z`=pLP10z`4puN;BEwbXeJa(C9dOXFi^7>%O^P#KN=T<^sKg7Qd3(!!l5l`{7YWxZS
zjo~<L_lHVN7UP}vXfu6Fr$({;)B%VHfXdBv%lfx#Bp4N#ieS5s5CAMB$6VZ2+_;w?
zH}2GKGYoU@#2ebDS{25CK9`Q>{Yc+!k6Cekw<p!186lQ`H`XwNKUO%cnv>FIgEBvH
zW+t@>1%)xcz=sDEJsD1{McL;9AOoY{$|oL3AaHcLvi#<SKbjgn&v*Bi!egNHYsxX!
z5}xjr`-5Q}ftBk!o36IS_WF3$F|L||h+_1&^Im?3)rz`5rcMUn&6voeIHE;X*VIW%
zR8iUo#b?wm_iwn4pnEXf*qW{5JDZ*g?rYPA)rGNyyzt)>NCwY(h5<*Kdeb$s%Dxj%
z`9pBGrhb<O<w)0DskKW&5DE2inCZVqVejL@+daYZ6`CNmoTB1V1*M^37WV4-L&Pym
z#K0^5M#v{fO<v?yAeg=JE5<(iiQg1PDL;;=eIJSVsrA(AWZ<qq@iCDy>kZ1Cs|t&a
zFYZnS1K>JS;5|0FsMQtpkXZZxJ|de-s(+p2s@-<m?v!vSc`b+EE=Ep|7w4+oayqCz
z;6dALZ#tA6rAaV4G?pNBdwbTm`FVBK&*cf9ts`5uF|r3&`b-19e=L>r5%pgz7LKm}
zDx4;TqnpH%FPhK9QxltCkora|jJ60W-%AE0Y$m-A!|cU{#wDcA+vZQs%Q@A|ugeqR
zi9QqVg@7twPKtD{Dpry(gE3|Z0pJ}T5OjxpgMl104>=N5=>mY1-H%dVc`YR|RU-`i
z8R$lE09x(M?YW<10<W}bgmxOg%>3CV*DWJOc&C!_T-QGnam}Pp705n3(opj;3-4Wy
zbvj|te^E=tu1;=xg7+@jLU+x(bfkWJ=QN}9Rq!^|X*l~(cNMfmlj}3w6ooN=Gf}g(
z8N5qLW>UA9qe~Ub_V}47XKLkfXT8mFNeJ>u!<HBUuq-LI`Lt!ZwIKX5gaiY*dXE(Z
zHxC7+bC`hn>S6@s&SXY4-hyN_)z#%XZ?XU70`KYy_?tk~a08Uimwk_)k}Se#$?WU|
z4p)-Zb$+NZGv~+bu62L=HSrL%9SGxbG>v8<{>(7si$f&_&6q4m9QrZ^uCcrX!_j#P
z*?o6MPw6ADC_J9yA1w3yEUR?L0lYe`KE9QHw#4noU54E<uzLBPJ7(X%H?Rn9qd4vI
z!RBNuZ4<&1Mhn%@aGbAcuOI!P#=6;SAH%~B15fW;`*@wd=X3uyS#b5EN{miAi9BC}
z4!uvQfJW3OV_VQVy(8o<9GUe6P{YLj?5J;<C}Y`D6V;}R*(6x0Vh%{pv>Mm;x}=vV
z#5(8X%@X|Y`DL{o!C+G*qFP+Y0=*#wMZfs0qNQ8sANZL;4smR#`T(7uL9RNA0C1DW
zfy`(Dq1()TE-~w9NY)?mNM+>W8G-MihzKUMJmf*>qJ1tI^e`1RVwTi-%Dzj;*V_3?
zKL}cBX*mdx6l{-lE{uuj38Jg9!r>X;dP8u{Fu!32odzwPJEaFMLs8y!6)2rJDt?Oi
z&m+d$7432%2cJ75mFPTt-=n^tT5Bu*f!gO%aCc|;B7#wFLr}>wn&1_WWz_<fu%gb-
z!sLjkQB?y2sIB5<{-$QnX5tLrYuR!asUR+sXcpv^k)E}~^}VBw9}`7_@-lKIJgEvp
zrDst?wtIVt7{Pe2cnZ{5<EMBo^c1~5#`Rd{l`E0kd@=ZGw>aPn`%v5%XOmr?`3fn&
zjGL)J_-%i2vE0Dw>YMhe#pqG_(Y&z>*?XYBP7W>M(m&T-aQR>U__VJ_2sZz-g?4|>
zH-qB@Yjv?9qzk1KO|mZ$U?cuKOqSp6nCz7mwNEv}$NRBx1`iQ(=>7svDhNS`efDf{
zFSmNIWKXZzP=gs+z$&CNIlZ*zT`?Ze@l9bP@--Q#?zNk%-e?ZIIG5oCWgkHF*_m0W
zXJ&q&XJC!l8AqG-Dy}BE?W}t5^q%Pw(`B8VI2G;L;G#!us+LAPeQ##E*Y9G#FpFoz
zd##{xltU%4-hZGk`w{*)T`lloXW{%%hKhP!(_o4N<rCEYiY+7Q-$g-)t5BWThAEdi
zcz28LRz$#ku6HPRoa*M&<9XB6hKVugcp6MRH%#-Tev##c>Kx`qy%Vr?rlC<5C>`Mt
zIGB+Bo)b=u1jw_Dxl!grE^rrqQYw%z?rPklVgZ8k#27h0e>`L#qS-25LhN0emydRj
zJPe=PMqFq0ofoIS9QrRz1X523^@-t$`TS^3Kbqc#&TRULtxLvJ0g}YjqORY)OymN-
z)XgZHanBg4-H&F{FWk5MO%Qh$lD@fA_blr3%)LV&7-mDiIuGmhf@{<Z(0Mec#DD8?
z$$(e#tGe^=yoOK|&DnmsOxh}52e1>UAeS2a&FI+YG}!7df4KNAPZ4&%06uc_%;>j>
z88AU88-3uTJ~d(6g75I;2U%S)Fho%91c*<qk9lIp=aCE7kFi^;(40mqKPuHOyu5l3
zs;(-l;$Xlgn*(2%gP%Wce%9u}(5LbGFN*~umwypP4rVJYV=XN^bN8%Ul##_~q|bX#
zhdz%Irpd>L@eVNIMhb?1z&!$u+c<bMt9e^qV#viSqr8d6mw%ZXH8m8&)5|PYH={{E
zYT3{%ydTkbsn_5go5z*U%g4qv-j|+1j88YMY8~!Dz8F%e(|(=cjq;&tlOJNe=q))G
zu^P&0G{Rh4>sg5ZHx<#V1ZyIGVINBMzBM{>be{ES5JHiO>GCtH(T(W6!aBJut0=Bn
zkgn;mtof45EF`~RQ^zVm+Dhvj&yX<Hg(c{ZYmk*^8P%FwGHYK&ASDRF5UtcWu}zdp
zqGRuFmo+c!h8No=#&0*tgA`r7!`d5?M;s;CRNfUmsvdtN%{L%yuRbxL>thKO?78&2
zQLJ7|yg<Yf{Tn0P%WV~>f04nx+rBrJ!77vrCqBkYvm}zk1uJGXjJ0$(b&M=XWjH<O
zOaili5DIC|fVI+@1xm9I`w=Isp*eKoqe^<J(9sI`FES98R~AVkMU9(+J^yL+j4oxq
zZDQy02p%~FG%3@mYTg?H>Tt!3dTed|&h@Hu7iYTa1VcW>yt$wGGhX4-1a3QuaZ7YC
z+FnPb@4>S23J<Tees-P1sqE?@TVD)5o)kLY)L;t^qDhsm+ZkqFv-HRKZZf1^K}eFO
zmYxHD*!a)*L0zYha&L+R^u4n3plWT!&H`=^WA;^4$^-kej2#2tiDim+Zxow$MaPH}
zHS#TpTq%i>aZ>2Z;nRMR1NP+u9J6+O9H{T#$&u$l^9*z?66ej<z1xb(QK^gIYS+h)
zOCp&|VQvky-FPn_`wh-|6l`wi9M|4G7PdT2l+!Jd3-Fvnys!PMS65b+n_s&q<%Cqy
zh&6he|BQ_?dS_p-SN-{58ZL`-u<R??y!Bb#Mw@`^f<o+7ry-ys8%;)ae*YB6%5@-#
zPUkMaucd?Vw%5%-$yC*=&?F0PK8q&<)zUx&=xF6Wv7loZnUc!9TT92iBL`9T5lRIC
z-xyShrnsYW^P~hJZ#`H;mQ=6vM$HEXS=I#yU0Og*&|!1k__Q>aP-n!dg+tr?G&nOT
z8gAV>Zvf)H^=eEn=ZC0ubRdCEqzSE^@i~5f-MPQ?x}mCG>zNjH^Yy$<le#ec5Ph_c
zak;xV$C&gOh1x0oQs}nHs=ys=yWm4Uje0E^;%kyDPS2!#cR$kCF6OaYmBH=Re<LoQ
z0d2mI6}vst^(4H`nlmP?K!KlPzf34i&sMbL;NX=P6BX=a0Ga0O8oL+ZOQ9RSD32B<
z!-K$WZ56{9Eiw@w>^(&CyDb~EDN2Rp$&q@^>(t6Mm?_hLXUR{RM8m_rp5=bdz$zcb
zn-+@S_EvALYpi7*U+r=v&C#`Rk)mz?DMiGXuV%`hUOlDUUrjX4qE_k|FH^+=U#gm_
z_>ixL{&~caDHNcSRiCW2t@}_;BJ)k{GaVZ23P1OF@p0YL<QHaf)128F9jU|3p1QE<
zWXe-!hIgMMZc;o*f3{rL_XjqUaO7MZIZvSnzRs;N(=1bx+@U{71sV8yk)~N_u$T@U
zGvLwO{Q?pEFexX~yrEpXQASYsJKbt|QX8{=xoKZ7Qn)d0!gE!;Cp)2f^D$j1R=C6C
zAc8boWSah?-Jp;wFXpx3dvrQ?nAQg>2$v`w0~@Er?=duhc{7@C27GBLUrbM+QmTP%
z(VISVu_oA7U%<LMPOVFz@YPjjf_nZ<IDwjxE`0xRK{PQ#&9?q`^bA;ZY@ph2V<&j<
zs~O^tir(KMSHh6(^lkgMy@C*RRwAwR7_MG70~?vm0>k_8o-3{$DmnU;<=`jmNRER2
zlwjReM;HkygIwKwbJCcER`LDTuPj91=h+D6iXn8VAQ&L!K7cvr<nWKTf2qD7M>rw^
zg67=>0-l~?@1x2xdV9J!f7l&ART&khPw7{+ef7ekm{)f@s>wg#H%sC49F0)m)BPe+
zvv5C58;ZA=qSxGs5ybWS#6Z_VQ#Wy<t0$E}%}CRNR3={v0g#N8QsE^cbSl|Gh=w<w
zO-iZOmTK5SNZAIzvXj)%GP7Hz_t?%A5i8#7s>*+Q9W}zinmD*Oc$T(@k*|gwn)0cx
zw}cz_7?^MrA^!OG1G*}@)YOl!YB_IHNA4k%FRABn;n){WzfxSbC+Zd}d*a}qi>^bP
zvR9}_xfZ{L;kMQ(MpE;*3<s^?2UJj)6|;X5A!_&8?1d+eyeIng#&)N10?8*F%}2-%
z8E=GdQ$}c4F5>$5w+nNj)~kh%V1Z?EIBFmc5Ck)RZnu~d88zEntsJ}MmqP}=>pkx@
z23LtShoRnj3-3ZRtc%}p_6yc~p2GqOqLd7OGQmv8IQ)Jz0BT#4R@wR%U&*+h!s)mS
zLzciT<uK;+e#j-;EMro}ZLhOZ4pJY4oM?*i_nczk53|-Pc22R|@h69L&w`gPjlZtV
z`%h!%p<ZF&Uhp!f<`=Zk9`3Bf?DI2{WLvcb33@k{QcBpndOR#3$&jGZ&T5n7Ym($M
z+KZQpZ4(Gxgja>!yT3T|&<ZZEsD8_4^E@l@ypp`wNF={Y#dCT^o&ZBf1|rQmrX+Bk
zmrPghe`V4ff5SGNTlSl~Fs&d0f-tkLCaP@!fYyT3_i5gui2$7oH}J9(ER5J;3tw$J
z9+Iv~+>R-FL|gJYZ$vN*S>kgwl<UoLC`~F?#!0yyiR!{e{xO`dEZ$z?La~LI9enkq
zLLZ7JoPVhr0b=HqbJa2mPEIc!{<ATO;ltVi1aIqfX=y4F3ju(+uI(@>Q#9A>p-?>4
z_yZ68X^h?!_94gxR=T2jG(Mo~_|O*;46pp*($+IU*jMER0gX&b5q(y%DdVW*_VI0;
zKYZ0oy+hHbGXv@7G#X;9uk%!1Aj0qTiA^OC@$vC2>^&}9BcJsB<m{f!ac+ET?pq9k
zmhHI16`s@ai$yN$w%i>9OdSJETkkwcvb{j>AHPSe_^@kvKUKEA-a4AgrrKC4!!HD%
zVjjausoj=;28w$<Ms)A-aNJJ??U*JY-mg+@PoyZ(HKKUXi0A3AQcJXPd-@wqVIfV(
zDhA%|4&bB8r(KS>N2LcgDl2Y`y3+#y_|W${Di(sHDo{58y9vKO$37Nu|6PD`9N4^_
zq0q^GX*pljjCy%EG34v7x-JA#&5ccay5LEmzfcrY74h~w+Fcg%=|Az0TFGqZ8pH96
z^<D9?gq}BzlAKcB|4H{0c@;m~^!xk+@3)4Qy9elaFVDuts{f6HYAdWl{QF$S?E&cn
zmd3-PWh0){j^6BD5fa693M(@QmwxB4mcESz<Jfr&3wbEsUO&v5HSHJrH;eh686GBh
zD1)3w`pi_Haq+BRbr%)i6O=WW;MEYfWS5J%+$4F1Caa>qKNVdlDG@4@fLwf<CaHNe
zmn@M~+SdrYPO=0lPrB*gs)aur3FNG}#Jn^bFO>8`DsDNjTxYJ{pBs;{-g-t*0)R9j
z&m{@)dM24PX_{r}QS=fKfi^?GebMQl?K(Y=AILox0LzC$03e}+8<%phgi$#5`*^>J
zfW=5#yN4FH3iS2y*9I?H?4vz7gdkl^$dMw?AkeX=7K5EUxKB9ulqqK7^LCopB5Rnv
ztXievWJL_g9g1hMwsT)_;Onk>MozjB#zE+aW-_d&sbbE+5g@LFfe1*i9&YL19p9K(
zmFJBY_knT6#26>nywFm0w2k!MV;xoKq2Q}G*pDRvfMEN6wl%s?icV^q)pgaY3A_bQ
z6HW;}RWyj7my+qqzTKIAw202(X;*Q5)-n`1lK(EN=^R$34?8&a_qJkkA#9+l$xb6E
zW&%D{j0pYY;aV+wu_N|VIWCK}#mq`fH~xMpJ|UjV;g~<nQ|H-Qf)T+)&E~8E4q5VL
zY5jz1w?1*WSb~&$AJ(h_n1FTB2q>o*T)pe%!ZBg}=LM0Cw@>N90-==Ax_0tx<+cL2
z+eQhp+2C%>KvX;_bTDl)F<3D7vrkn1_a7R?8hQ@=iE1xmOoP~mMv}FK78K%_dzRUF
ztF7KS!V;qNb<C9!X@{z%=&X6=qk8lV4D4&>HCPj4V;hVL3ql8@S%?NB9sMWOA^p|U
zEM@6>c?r_@#bNq|#HX~7p+IEGcnc?7Ph4$MS+2M%@fq~YkT)zAzYJLlS3h)Rw*-uu
zgS%E!49K$upJNUt12-p2lKK;U+XMD%Mo_c>i+;t*HX$)J8KB5bLj&;SeUG@Yv6*B2
zF+)lJd>745ffD2&X18s<3hVYkH4(ero?{AoQpUE96t<16c-m;LiU0Vc<<ht%nbnGM
zlb@px|8rsc`Bkk6P7q8+7R_Z~*9!Yy*Km^4DWF!kt6TDf`tpxRjqgizV8Z=yC3VqT
z2N|Gq?Hm!KqC?{;tjxOpRViD_0F+#z@6V?)3T@d<w>qZ%mQe(P$Z`EnJNp*d%mLc=
z<F@VPWXF@uNLKr$l*slr1;<lEtNir#=QmfEBCtJlyxbR&=~wOtjh{naCOy}CXe-tH
z4#9ot=|;nZ2n=UDoGUmz>Cz$s?5n(+Bc27}7@^lR-tUL^5`0|+I3HZ~8&a3^9-#oB
zc4xdgyt;Uhiu>5M_H+NY_Pt;(PSZojB&XJvfpo2l&9)+ym}N>Vh&yzK@$qa{wscA{
z+FGht{9!}P-$0r3&IdmmArw!Fs-Kv7dBn}YM=2}4CgELS0>eDlVFwu@qiTF=9zhd(
zO|KB%pt(?yy7_8wULFXQO;fLQrkCvI9<~c!I9#j`tXmthPzbzteIjl4ICAy$ygGHQ
zUt}zu**e(6p9=KKZv2+Df>6y)AWt<^Yo00>Z%)c6mn0*H*h`TlJX9@(cXzqd>q6<6
z9wkiDtY{XhUCdFzm%vv4I^f9|LkRdW+#WEmxAxKQr=`<E2D@;0-1OSPAF_A~HrAJp
zaQXtV^FOu0rW}Ysjb;JON7gpz=EE@5|Kg)#4Hn=Vpl8_?nYfpE@#ev`zehhnKYg8S
zele=SLB7n5mx+}rga7~<*H&7WDBCMs2MTBcMf5fW+w3_+nyj2k;MHw-D-GIRrNxR%
zErq$J=wo~8^@nfb5r85E>Cic$z#oV6cB_G#Q6stq;kO1-bx)6uJ`az$#_eLgd8eNV
zNQtKUYUp+!Zjx>~d&54}XB;k4trMw6$RcNnynn!eMV^yP*SWMpHGaAbq`4C!0b1FY
zV`KZ=qkh_zOI83~==hAYt{c_3PGL)K32at_=HS?umvM$`nQq`y{#M>AB>ADz5zEpU
zTT({dcngzgE<BlUDy(t@V{X)rs5DO6Os&0URUXF^t+_2NFqkkedzsx_1xXYiL%%}h
z6ckFXcuAt0M2=KCgZRT#fmOa(YE6UnU8!o5;QrS^g|sAfRrwJuI~QGV9cNmTR-EZ?
z{XKG;TQ*Pr1^34R0+kyNRmcf!{7l2y>FQTB7(&3Guh8lEg8iLgdtN;N82})Y;VyT<
zm!|?BVz1U;;DI}WY+`#AD@K<Zyq9SL4+qPdLh%dNsQK)tPXd-Z5nBx|ZBb-Do?{>D
zJ<OOS)j|){UrNjMmgtdRPy%=mI68oo-%tq(WHCvaCe(e?=H1;hro1mG%7qnZx_gqe
zu!D7X{@}>v=J+5mMzzB2z5z}DaCxRmh$tzTTqLL5dUSCbg^5E(&g}mvN-0M7RosoF
zJY}jgVJGu~==(^-E~(p!s95I9F?~zhqhgK$i`3K^_TjqQfkw0cZi#l!<_9Y5mve|i
z{R8_Hv%AthuR+mx-=P{BGlJy2qe^;m@iMB_QSr-MjC4G}n&2z+7BxC%B2nODJXZXl
z{e9oXLmqaLDEWLupm`YwFrpr%K2p+3U$(4Ulo>d6mVYtk_POJQ=$M-Zo)^d=v#J0B
zXSQQER6-vZ<vbwTi9JQ#(-{^?m}Bx<5rwTrwZ3w7D>H-3I5yRLEvN5#$HO_Jxth$*
zf8Dyd4Lz&Vp#eYB_R_ZYL4Rs$YEpJjas^gc+s{{Cf{<#V0NzURdB;F34jGSWm%us6
z;hWY-RVG#0PrjQ?#p??S_rWH0GlelW<RWf4_^QR4*zLl@_S|(##JOsv95>yHx-Q$V
z$)_3~ZdU3w>5!b#xZrn=M~DcW-q@L3E})Ir;_B*RrfuK&(lbnN{B6Zz`{5@m5_SLc
zX5H3eBh<O6E%S=*|J+;Ctw|LPc-u?#InLN%QtZ`q-xPg&qck15=$NL)3{j%ijSp<7
zdiXqp_Cz|*zJBh_Tj#Ra_#7@Dmr(K+TEQnt3N2eX;Jd~NYrb=D7detFQr33O`Pcn7
zT6Jo_D13X|3^WxL6&*4YjF<+wKTsES;n_8`{v6>gy)ROw&b$*8NKCT)a9$rCHR?LL
zM;}P^F+z)2yFT}zvkoE`@4l{itF~FCnJrrPOTzLdr3!>9>s$N+L8><MgT#$vusQ1g
zsRj7>ZuWUL*<c5K+UdYhAk2npzMnWk+wWY#&o#JeMaftEW^;%hYx|+cq}n~_y4%v}
z(;X9QdBNrvWXrk*3K(<p!Odx(*ybB^IUNO8P7Y70l97cc_@W%S+lsG!5F5((EJK*r
z<n*ibnO;h5Gabdw$*}aZQE|!yHtvevh=b1U7+r_iaCIpt>x|8I4E&a4<=fCB7HudV
z%%?(fdi^7rfPT5R3}ena1aFxhKr&c|k%f_7prdcf(rL+ZZz)awN$6}m{b^}hGHJev
zRa;eFMpZO5wNG_0?Ggj9_wdzJjEPD>V0hu&iv*@kN((vnq{;{!y?2;LNv~OKPM8Dc
zp@Alco@le2xUEMJAs)1QOyo%JGHudjW5&9|XOoOer0++R_&a0++>2GKZ93rb9j~D8
zYA=%KSS(pMD=pUKfk;+f?i7hQk1MZqO%kH%8gwKCS|1sQvtT5?<hLJQ>ya`wPgsi_
z(z(u@!o4Q}+1WbU6TpOpnK>EcCj_Y2mFc2gC1-8Rk!1u9wezpyjq7P?(T9kj(C)>J
ziu2}hZM~wPp-Fao{A~R2*Yi|FV2Ja7##OlD#)gMH!Tf?RFX9=vdZ8F}V$I)ww8+z)
zDB2MJX-N}kEb0ZShyS)0es3&O!@JoE#-KwcOW7N-LVlb4Zj;paoW9ck>HIj*aR~<A
zUo8!|yGYcfe-AFlvVwN4E)hIWNY5z*2)ewy+}c|;ZXMm-ppkQ@d++FLcBHMK^;l<P
z_fT-jM(TgF6#Wii<Sf-@{1CID!n^+10@9$zfaSB9eRHec$_(IbpVIU?rHY)rQZKFq
za(De6LFXiuPgZshTN26sw|i9nViod7?6&W_S<KdgoMQ_Z<<%7LlIlb-DM1=i%yTCs
zJn41odqNXvVLl?_%NoU6YJITs@IHmh*KTkbkK~kKRZ^on_W-lrQ$p<fk1pbQ$8CHI
zb?b<@$I~_)(1^khYzQ4$)s;CE=&IMLK6Aj>)~Z<U*$%g}WU?E{_*(PI=|rcpv5)iM
z_>PGHF<7*_bWD++o@%U{T?S>7I|%B(W>Sm=NQOqrdB)&q@COov*=+~BZ}#PX6dC7z
zloEXYiPz@|MYq-Lny=*>8CAJf$~2^GaJ8-5kZ&zlQ<9f||5}2S*LJ~qHC$jAkI%-h
zb|c!&rRrY>(?y)J4*;kgE*Vt?^(C-+^`Jm0HSR(U0w8^)P2lt<^c&K5uIzhx3$O@;
zeu#TaRlU{X`5O@=&)Mg!kbXQ)7hbQGEJrSSblb3fQS`fZBQ`crZlJW*6}56a1wX-R
z?Ai1;sd9T8|2=C(Yr_nbh$xb8qbE#FdJcS7>a<K8*A&oGdHhD6jrXg()#}Ob3H2;J
zL60>N<*_KvrtU{h5lV}8tH3PRgO%-P+x5ZME>x$TOk-e$NAF)z&8}q}Vvc?%PoArr
zmSazJNTmM84jJN&&nYhm`#kJ!mg$b@seN!}D|AV-HEdgJ-{Tu5e~DdQ(5+w@{xmko
zS;|jnsN()iivtA7g)vRN6vt3|r_|Q{${SI7Vzb`c7>BLwHLB;_63zDTvi;x)NBkYC
zD<Dnfwn(q;?u#jtJRS^^y>x9m$d112zSPIKS3ZHG<AHZ#ILBx-b!}_eGL{VL5UY-#
zA4CAaZDTM|_I~MQIeq9k_0<j9axW9(wpLWj;M&m~3-5T?n9<$v3SqCC|44CfLtnqX
zZ*&WBihV<hj8eWDZ`mwJ?ewZ0Hx&WsuH|b#qPp<PU}K!lAM-!<=VxURDxH*qqI#}=
zAN_SyG8kyI=v_tx0Dm@?L|>k(;sYGc8>PlqY-Ld1qobM9Y+nn_V65TzY<<?A8y7&D
z^n8seTbY@QB}3G`Z)@!CU@h_Xk%wxbHqX67hf_YN@xp&CWX!3box8N<Gm@dE6=Sx+
z!GDpU&)FguQc(QmBBRB~kUl|eipmWWBP=e_I3o_azzI`motJvq(A+xQk;f8*02r+a
z94qn8PM1J2bR7k&^AH$2f^4Q)U2k)6T&T`2?r|F*Z!eZ5Uh_SwYpH5M6KmbN>hC4|
z?k`hQYubeaz91FOW(O_!pVO>(ev2tSZq#1QWaaSrvob@z)%%i7{+tJ=&*}H&MImRq
z@SFXKe4)7ubb}fHk7bxbvuBxp(;ZJRka25+_4{HhfN9Fcd?~%kza?Opxn(w_+z$Ja
z{ILVn5Sjr)RE!)H@mVT!em~=%ec&`wl!%Vn9=Q^LKjH+s)ZHg}oNs)@XIpM_91A^p
z=LiMx@@tGEd4S(;2*8gF#lVA?r_LE{jMBTL0*Ai@0pN8aQ`zFN_v3fTBi8_4dzN;8
zSpR)$^SzHCE2ZtSU#%5id=!6x=-9~xVM1PpkQDUDl<R$G+Oq$|s=O3RUA;{~===}?
zN#M=Ci$a%isYl>rea*(ah?yvg6!LbQ5t3Beb<S;5saT_<x@o0L03rhI=U+_y0HCI*
z9>L9DE+K5I#Yu%gt8qv|c7WQk#|h`n>`AM&U%#tRj>S|X0CJsQe04`Ksehna+(X5R
zv0tYt``@1~miFttpk5g*nS2YeX6YMWU&~EmR$@dX71q$!h<I#02Xkwa^A4oZDwa)@
zY?QP~2{QFkXfr{)8n^2hju3-x{qIA)nBKlF_*p4(3FyeXcI=C?<x`5r&^=bm{)8?Z
z^!cK!BA3?YR-}^s*>R<$G1dx8|87#^1L}7y*wJV+QxEv?&vAajpt>h#`t!h9_{T8V
z6%0HYB7lwV1~1|9<S>kLW^IZWjD0rg`SZg{yp-m7y!MxAMcIb=Lo7`IOp)s-N45a_
z%gLHu&2{C2{fhFJ4_nqPcXC7e0xh)zlP4X8;@ps?z=fX`EAk31XS3N7sn1s7C_qpn
zR-m<q<imc=Q~%r2&$1&~ZgV@<#&xX)?4GL|0xS1+Plfs<5`lKvGsj0Y8MkT03b8EL
ztDaLG94ofIGFqMCjF^E7Y0JOA?$9$W`5ynt5kt)UUcu|T8tc@0t}WhpmEn4Qf!|91
z+27y>_CWu#?fxYFrjrCMp}Oo##>0dERKy1#*5RIk(?Vga4&R<pueB_fsvK$zJGq4{
z2~ti2Si^4|K++u_ZY3e;paX4BFsbDDq+oD9)3RBYxAJ5%D#^*{y<3^d84Nw2IuL0u
zr@lU#!}Tfi_ql55I~>-~N241>Ma%~P>EaoTD~h}qoFPV2f6g9<NbJzM-H$0Y4s+E{
zrR!6p^SyWbt{iUN;OiUeq=3%lij&cOk^5a^qvNkE)G+%Bj-fHpD$c1+;JewjRi&P5
zp)%zxPxt%2FW|(m-7o1{6-!=fWW>`>TAmjB_h`UuM*Fr{Hi5w2U5-BteC0M%>SbA6
z&O9gx^Mu1fdvU54;A}>|50Xnesv#g)_?@qy4e~3!{b&o6R3@Cm#kS3ioGLMwQ@e9+
z)T={$a*7@JQJL!Lnjn%Kn#V)yuE~=P-x<5^zJ%AAbLBTs_|+jb#h=YwO}qguV?(2q
zMAw53NV!d6`1TfDV#L2s@UVbRO!!`q<(HPeDimzyDG%<N&>7f@H6kojq9R^o>@XaP
zvINN)-F*xF%qG}oRVN#GvuY<KpiKVqCHY!ztu|=^^-`_hd~k;>JiPvlCkRif=sm4r
zUhWt;TdUOW^s4w;ETAGnr)<{9kbc=9qv2p>?36OWB5RupJSdA5y-Pr0Uax}?q_*(2
zBhMyYI?3Yif8;f_{EDZbZn2=7W);H#hmueE2Pz7(wap_-(w+hhJfP8GuUkP>4u<da
z;Nf{h=oy$^vUA(td3{Io?0(d_EYlgcO|q<hwNV>O@I&dE{Xul?e!%JACnCDxu@9Vo
zB=`-QdQ^UgOROl@uah}=gFn<7sckBnvn}h;+x+yiF)sAv38`RNh-*+k;o<a8;j9Mt
zhUim>rgHe)pG=)*a|@}|R~x+%)MTC8e<BOIjRWVi*lw}2`K;pax2&AJ1G6{Fia;|7
z>vfFt=}8=miRzWdK5(RKY=UG_=eY(Z#_vYz;<u+TDo+Vm%kQ^0`7)d+4*u7zj1eUU
zOf9#YMWJX%j~tm-K4t@$8|e-H0U9{4$8?&4d~uP@M<fpbe0@*q$DO#^wsU_up!qcj
zp<y_U!f)g8-pIh19SJ?t%CFv}UU_h^r<72>L+EWNwP7{?yp(~g*tuC{?npDlLVN#i
z>Gq<`NGN;hw7bNNJoH^<neUL@`h{$Aa(}n?16pa;*P=I{o~;I|4Vy0SDg?ycpH+6X
zWh1^!1zELa`WlYhg-JLJ6itQWw8K|iMi-4?$E}7R3ZlLD=5WoF{T^?t=@X}WI9sef
z&ZIdBK=(wEDgs^BkuLV{SLQ9vt`@$!x{bF+wKXsL!_U=M790?ArY>T|+sC}Gx1BhD
zs}Kk5pL2fFtnfMe(!<1_e8tj8lKKgpJl*ED9jRa&JFY1u+S__M&}!%f#7zczKlJbk
zs(-<gqSE@%J3!*pZstY>0MRc*vlESfvy2-TYO2d?%3F9Re#?WZ!Cd-&Ex_(lj_|n?
z4s)enH1*5H7D%6joBjD)@U;BeaUnGhnwGD|x_0p@2w4)^Z4%gigr9S18O1C|TDAG;
zefq7nd4{QM7#iug20guVaPq5uk`@c9*7{RMf{7G|dH(f=jFSl?pZj+LY5R$57kxr?
zz>dhqWzkU^FIW1$(Crq-mLg~S)#H^gs`J6`7g1xCl>+TPvR*zr_X2HEl^`I3=Yk8#
zct=zGcy??KIsimKqVPk+cjoEi7L$Eu!7`oaa#2RNetF*zI@S|v6;`!<ug`LsFfG6h
zM(Zf|5**)(xBG3n%Iv7`S;d!eplJ+0Q{G@nvJSJk9BmFD{Z6A9cepVWK(l(&wq4FR
zPXJJg`~B$L-EKH;%J1t{##yX$;jwh*dOH1cp3Rts0C+e#conh=v^`(+hQH4+7`OS2
z>v@3=*Ct+EE5mWS*tvez|5==d&{4%pR}%O>g3h^fd9Ilu;GsXlPTm3#%<yVifhSv8
zD(cl+xg^bwjrGJ=doPdDgR$0ba+V<>GteZma;%SFITzKgy@rcy>URH9l_U!U;HMRb
z@6(IBEm`G2p0gKUco>JX&;L|kJWKWmkGG>8Z!X52kN&WQ=i6U};Yk(cHFEpv2)&gO
zgp?MSvXvH5P8VJm1wYE-?yWZXLfMBx@q)KK7#YeJTNZT;3$<98^C5b00Q-I~tE%~k
zyg~5wCohOP3-PUt1>5sV7Bnqiob3+)ph~jL6lrReD#mXXZ0eK;7)rx8^WVH-{}z1b
zfw5H+uRa0*(&bY@J!Xl&R0kCti#vi^bBEF86XSu)FIb*cG>Zu;b2ndYV;M3;#e(7{
zahUkZ9!xKZi7(9pCQrYHEBL6%G~x47C`KWqL48h~rzE<QCgW|#t?Q73U_QQ+@wo)#
zjU7tw*bk*)pw<MfLYqk8Ahp3iJa97cSHklBi_M&sr#M>4jqtdhR#{vL48M=D%nsmA
z2*^?pS4&mvmsfttri1y9+HQKqTdvv3$#5J(!?_(5!6qvw^-V;rCMzrM(2IkuPbn_X
z;bQeUV}X}j{vcnk%)kUXUri$|oA>7L4DXk&PHI2GuV~thT3BR`{EvrXqfhLjGGTa9
z$x-|6%g~950N7N3pkO7P0Pg|X@Q(~ao6Emk!8qTJ{3tlC_t|Qb6hemA3^y^;1dsG1
zR55N6&!dE4yi+M9n!oLlu^?78rBhx1HLB!e@(IeI>-ZHTGLKpI{286@Z%KK|usmA{
zB%}Z1(4bYvG;2P6h9Ib<`<rR*oHZHfg4^|DTI<i=8Qo8{QPBia0Gabsa6ram92L;m
zp@aZ#VvFVm@ceIfcBejE#-KaTl_Ep5MJ5OUAa}y%SB8<>UZ+H9X?a4<Ei1p4lW?MA
z2N_c7?KIzQ_}qjUZfbFT#r$WaUW%8(XV#R44FZ`cVaDHai4R`^=<n!OdggDf7>t?S
zeTYlTZQ4+xb@Uw&%Z+4%cie@G_+~TeI^Uff3EU=q3Gs11bD3rJDw#h0c}-b(K}q#m
zF9h-y1g^Q)F$Bk;xB0vY9^7a*&eY`%=%t#X$qu~Fh`wPwmoQFK2?!?Moc15CsZ`eF
z2z0-~Wx2#kdVK23bX)a3Jsf<{UCn%`)O`3*)Ro6!=#=8WJgp1PpHCI?X4HKB(%P^2
zD(1@5US+i8y7CKW?~Eooo%<VDE?XHu2BPfK)SROfOoL_`Ti49HVMetqEpwk^pd;v7
z%I8ZZZHDwIy)N7iz47(LIJ<Opn<&zR=5<im#vlQBv@sxaxp+Ipt=!48i;T}Lx!ldm
z6&lRwK_HCHgShwc79mQds-=_@!<!tHh$aPJ<)b2EnZj}(^7=}g$i-n(#tPN7NKBXN
zbGyP3J53AJ>K~jJw_ndASdU+Lwx=Azt`|91GP70n>=?iCwEMA906{b9d#Uo3a0Cjp
zX2?dfm3#XPQ(I4Z=^$HbVFOcG#zj}(VQehLZUcNwt&)o{w_6w;TlGZ`z0;m?)n@Uh
z-3uE|eZ%rpWWoIxM11~g85wmd`i5*sr2;b{E8itr*SIHo#Q2^w=`7eJp3Pj;0yJBT
zUf%9q;~JPnq!t%wy+*Y{3cKswGx4!vqP8ui!jIDlFuyF6eY)wD@Hl&~JnDD-#(VaC
z`&Nc0dTu23Z(0AFE@Es=;LjeY-LKtyG9qLHu}vcNO9*MG@T<<<7UAoYJ->yRPZi=-
z4|&H|WG)3rbfFb;+Jbw|-GGPcr=d|z^v?_fxeThE405i+AVDdVI(Zg3HCG=c`41IF
zr7mt<jZK0=yLA+GYIw-<k?ccS&8=-KW@W`}l_eE#XH)jxAWPzTC93WAA6dKHb*grE
z=~in0t)yvxRrgNvlaRZV1U<(mLD!9OT$&31`<}4<<7zUVxxky>cFV@zcAKjPmsQzD
z_ZN}GL4wy`4_PUnZs7SMY~(<Yl8to{9W!b6r&866<Co?0)pJ!-KZIF@qeIH-{d{!|
zC)bCW(5|oVg+!e0wP~&cw|BFjeWnc(9~PHn=VAl4Gx^{-e#hFJoFk%cZIYtjoTr6L
z0u9DJiy`-s9F{7anzu=yFz%1311w4D_gK+tRHA;itl^k3hucP1W9i0EU}<DvEyI13
z=u`5-D(FkG{cO<F5u3IMYr1Mf<2yrIH#xQQ#HHbkcFzIdDBtn`Ztl<s%5(-ffI_B5
zQ~k5T_jZ*uLtE2fOTsVd30YDO?=RoxCnR9(DP97AG@NR~c66XJ36ONgInjn%C8v=C
zs=g@Ax@TvlJyFMEQai3+cAx#8)fHnMRZZVzarl(0eIGV5R@aJ4%xJWOhl`Q(HBxa%
zp&OP~I8P&t*m?>kA=^ybmg{Y99hg_^H1?L4QdULC7X!VYNE8&?Sm+z#@T6FBLJ2nd
zH%z!e9c1}XxL~5%dZXmZ22r04S!0tRp%fX=`brh8bfMl4F6JcaI+RoxAivD>94xoG
zH(j=3o`B#nl6Di4_Iu9(g8znxm_#$-$saYe`#FKBSvDriU)Bky1OPfbtY?mG@{R-U
z5;stW2nW4a#RWzp)oU+Pv__wOdscScsL317H|uU+t~S{X^$F*jmo)GMb@5#JRUk*r
zuXKjJ*Q&d`XH?%>J?$Nu4YP~YW=2F^_IYM@Ty3%FI{;J~+y>4r#+(Ad6^9Xg5%SWl
z#-V{T5)zs0>`4Z>8@Xc2)Wx&NJ&Nf(qY>|Z<zF?JEO$!0ZV7x|RQ`4>P%vX7CA%Wl
z>~t8eJ-gK}X%I1-My{8YlJU*hbS@$$bz1S$qqre5ps!>}-DEMj403&9K~`9qu)l5=
zzdcgA#^(IwZI^sGE|EU8+In8sx7U7u?^XN*m&&j2eMpbku>)Hof_s<o!+PDjCgbJH
z4o;zQn_k%{%e(G&(ak!C%RRcWr;}N5Pn6~8gE$hCG#<=W2YfdwG3og<vGVx0=&#4{
zwg^7`R3FWP+*UvOLyNT!i~J|}I9MKpJ?1t}mMXY`22sn(gOtT>4LJ%{xO^c7VM!)g
zSoi;=-43t?Ohm_;nuP^6zZrkq#hLn5xvIl|+#1`Cesg-Cs82X4ugL985&J#Tae@P7
zzu^ZzUoEx4%`EPy+tIV-p<8Xm+D>?w(^yU5+bNf9vBSdctO!|}l#9-YYdp{$B%h`=
z?QADvqWoa8r;RExT_S*K4?fp+Q+s|LHD@moZ>Y;j_->nua$Zb65oT#MDnxB1atr5)
zCAS)d-40wI&DE3~ynk-F?9Ww{f#5e@cIOsmmoyz`$?+Jc9Sx@|C_C!?RN^o={}u60
zd0EVJ-htKE`|gMs)5x&wPH->&UO)NmbCs2X<*L|W4{i(J)miN$o6+5>a&rk8pi^Rt
z{pjSq$IsbHJ3~@<_<XsE!gg)}#7!o*J!|&Y@MJxDWe6P>7E%wFaB%R?%Jpax0Hur9
zyP!&~6$w!9bFcTVpn}Zox}uW=%v!w|3%L54>#DA4`sD@iz2Zl|^#%spAwa7|l$aJR
z!<bxu%Kjf+WIIn>F*jlGzD``Odf_191I`d9hY&O)SBpj8Xgm;dvNqX?+AA&R!M`Jm
z6Yb!0Fpt~*$A=1=Nc^#IMFi9tcN9SJGpYk~SR=05>9)|R@?%xqUXV8S1Tt>(VU~VH
z?EXf6{2{@*Q1NR{n?7Zlwr5Wqqk(7AE}#DpO4wk9d@E#%4+^L4o|%^`)__8_ohdyl
z?04P5NRoNg-=TjqA6V>Cq(j$AKSac=;z%vGKIU}0emblF?gpM=OUZ{#>TntnddHNB
z`|fu>I~aZ>_R-ePq@B~&)X;bK=Kb%CFnK*f@LS#2q*YuRT^dNBc!onIK?5ya#*>Fc
zy|d|!DJ~!j?k6UemITUN{uIyQSvzt7CZ5|Fd^xYBZ)C9ef55<JzVdm^`ilBHvos;p
zN2prqvXP!@kBh-#7$u}IfnlJ>#M#Y-gt55z<d$4s;p<`%(m(PkhotWH9y8l;`%N!I
z&0loPPzihz#W3I+RM`OffHKN8_s#D?N8j@wBu6)G@RxR|{S)Q1#Cy>`sY_C58a+^5
zrdo{X*D9kL>c$jmAG<pF!T%quh+bF3rz$HWr@Hk8!UvK>uZl7YifwpTYO}y|ePEd`
z@Ra$Nu*{VCf5=8OfZ<@tAR~JU)@S4r&DEPCg(nq)#IT!TAqJsVdN@i)Ib7EL2Ms;B
z>5+qh4oJHeIF1}wDssdT_r-~u3wH)vtlxQW`)cOBp6@l$KOFBlcc^6U+fO$)4?S0B
z9c^6Wz|56hv-&9qOh`1OKW?qy3r^o*JVRm<5fhC>y;uMyN7+BTt*F(&F|p%oeD2ry
z+^Ya$08nUmJf{91YpXXYUPJglEj~leWvH}sI#H#HV%Dxn|1L|_cbki&o3zmEi=Ly^
zdCd8DM&Z9=9;)`oM|7cjFWTGxj@}a-B?W)XW!~sO$+3%L{z?$w{kNih+SGtHeaW`Y
zWG#5SPKHRPbY}8@wie#(6xr4*CsEx%$tr}3G_MIr6@{2Y4^*4?>HbHzf<;L+E8lmz
zVEyk9bw7>%|3Jh4pM3GG%*?*Chlj&)z^hP>qzRq*6+`R!wBKfZG_Q}&9go}oLl{b6
zMMZgCIA;G)Pbn&zil6_sf?oF~TKIph4w!lWH;da@^nV<zo`W@=k}kA@WJ7HIQu#P~
z?FGPdd~ZM6LRDARdjHq-IYXgtROmU7P_N7V)l_<jL@BKAaysGah~V!U94|jmq37U)
z`dlBbrqU0mC1x=psCpi+Vs`yqY-b^Ytqf0!3hi=_bTO6w)2GGii|!LrL@5nbB%l3;
zzByiw>Wx=N4?E>wR@gl^-8c^~n!#Id-oFw>RyUoz+Kfs*=BPygRI*=g2YAVnl`p;Z
z96j#*bMN?aeni&cjaZY_$VN82X1FlPj>Z4(Q-*MWvwLK6l3sLJ@e6(J^4}>2jC`UA
z;({LCC&65XU5KKY)6-h&X^FLV%hllfsIn2C4U5J5d4HPh9p3e;#lGH9!TdLVCx<Z~
z!mO@;(MMeElan9p7ZCor8~j`ws#u!jAYc9s0f=<`9knX{JDu$gzDX+3tPFG5=x_|?
zz_9cF(AjGoXcV}_EO4o^zU;fCIEQ;QKi{W|VhK{6{Sxvrz__ij0|)46z9#cM|6$6t
zF0Rzl3KN8%T-6QDQE}8YT>D1iNuk$;o}YBT`h`vh0NUEu{9;e#Phg0|gWh+$CX`ER
z@41UCM~%_nH;>g_C5`(q;TIJKzX}ZJXM0JGCP3k`J4K^wFS*P*gG@r=^I8T61VrmA
zeOE?9Zb^XLSW2$f3o)#hNBALqxG~PEr%?61Rw>XOn)cyxqJ<d%e2sg-*?!t_;*1;e
zwGgUqo#8L#i?e%d*my0OMGi>LTkM_V#^PMNPcnPS3%zqV!P*n19c}QsZZmLGSH7S$
z);<>B{gv+PWsCC4(!sciN!g?QXx+-`aDTf*{RL%yi`xDM;jFI-uNX<T1`7h7%*omp
ze}Au-6%n&Pq3_lm^-yGm@<-_#Wet8Dnmi2Hq5|I!{NQX(D-y3J7j^U2C=D;prbr#{
znFf+@X!QS2EkJ+JdE3#KCS}Os7W@YZ^Cog#g4M_C;1J;%%B9RN-fz+ALKjpuHD#h2
zK-0l^w&O>tXqV(JbLC=7MHw}xeKT?>T4TTFWOlr@D@=xt*cIL<gcpTSh-Q{tRT@=U
zYQsiq+=3D$`JRI7Lu2GV%#wle%A3<~f5R*SyJ;$2j))FQXyq$S*8lW|61*rHYb>Ou
z+3gDvvg^{O@rQYhjM`gBSDIM8muzGOgQUJ7(<UXx#eIi8+G$tZfiAO~UF*J0JP9iu
z!d06+&%fw-us-b)QLTU4ysOR_&d4D2_57jHe~H4U^bJ;q-Ck)_=W|$)N7BCY))VEJ
zvS|3mH!%1&8Q6JxZFiLT;2G4DEuy3&+KHIq-P!E*8^=jh?N`v9vftIj`U<7#)kgOv
z+tZRidtqlqnaIzFF+#rRMy!CFCb=BepQJ~3M_tM!9I?u#zr?zhFU0XH!cKi%%Smq`
zf5VLSQd2IDfoT}t9&M4by*(2oNCTRp!w>@f=G<uZpo43nVc=9)t{+`!{3{vb>0tw&
zPyR~s;l<Yf#oAj%<+TJ`qYDVZU4y%8a3{FCySoH;3j~)C+}+(>g1fs0ch?X72Yc^x
z{&DZPkN0W4tT9%v?yjz`S#wtL*lR%#g6<>lwGwrg=7PTLbiF<f3S;_Lgp6foO&%9!
zGfeXZwvd*LG1^Ha|M1u8d_A~mDp&!_J}ugOMo6AjKf+lrLvy<g`b30P?sMTM3pJ`k
zAdtIRZxHPX@^Dc2ZiRu)RARFDqp2&5(E{g$MY-ppij4J*zQMrubm$U{Cini{r9i>`
zI7eno=ju;U*MT&^a}953ANi0wH@+$jR$|6LWcNK(&|gxstLx$Iq6HP`J|>SIL^<FO
z^s<7feu9whdZsKP0Hl)WF4zu1C=;pY9laPlhz3gmA0XPFVhG|nW`(S!w?BCPI<B0=
z;@|)?+g7#17?rvxoFP=5N&bE~01#oMOO*T;UZcLdy|>~o#d4A><O$v^zZP)}SfdXj
zW!T7+l1Kpm;Y|%7FK$gT5G+ikU%~=Ja+MQ!{+|R@Hr9=dy`1meX3IWFsq)*Q1A>3$
z-<M79NxR;gEB@9y@E@Sh6!~2+{Mne$f|M_jHXjsjW+9+S!sF4}l^{ilfR!S<%msc3
z5gA~<K(tc>L!u!_SQ6&x)Dr?r`b2;X{_~K!Gy#9bvy?d&Js2%R?T1tRV=xzhe2iRd
z-}Uwf4^X(cvVUjq1nGuXzCLr>udB>^Q`y#~<7jFh(?`od7i`zRR?^AZCimMIe&`np
zh=NMy;{hP&hmwbx0F^jUyf`(e=lk8i==&Bzy^Lu=p&1`(Duc4Vhn-_`w9aMDn8tiO
zH^b<7p}aqp3XK%tKR=(k%R(qVhr<Q{#OXrA84i?#TMI!So}K8!vEhT=MV(=dHFy&$
ziVXB~+Vj(&Dp<1N`9lMOtlS8YK(&T^*Fe?0CG-+Dpb(`d4E%jRU3YOu7smxI-P|r1
zxJLWeb%~IPnzbEh?I5LMF{!7F3dE=tiUE3hg>Vc;#QycbAY@|VbA}|Rb<i6$3=A2u
z1kTFED<3b?@W#f(*u;kE2EL|HJq|swNS+}KU@EindekGVImveNhs<Q^v9VDn9J{v4
zPNVHX%_?l7aI?vJ@JTIBScryFYS|T+rCVG?QH0=iaS~UKe?(QVE{2`%n52{fx&+5c
zg}+d)jQo>-ZjcZdf<i-6pv4>xz+Vj-?0R(9PXADk<unm&pbJBHKw1ngRIFhGxzcS8
zk5hjF_uiw|Cz-(&+Pm4u>1jAtsnIqE_)XW*@fNcI7)W5Cy?kwi{(H1no**$KAgIY<
zwJQh#XeVcsK}?zEo7Dk=Z9%Lx6;JdMis%5jgCnXUU?9WmcIl{8Gay05;#Akl%NgYG
z-C<V&5b?b@+zR1><;!_Qg}E@D4B_W!^M?dhax_DgMT>>6$jx{GV>7G5Okhe)Hnqhe
zYm#3Gn)vqKW4$x_{A_HYxhFunw#pF<umHP=0ejj1dUmOt%9$<n3Uc!1dMnJHt9EF4
zl0{i*<2Ez1pJu%&5^r`9zyF5Hm*<`LN6=9kp~#r6tFVrf7&Ye|t=_3@!44i^?#tTj
ze6~>(y#U)Wvzc*j#_dJ0z_)VPlDV37TXN3o{Ke;1^=q@(ixBIxKlV&7={1a?Xk8j=
zgNI+h%8?qy-h4?GVGOuI1VK>I7cioof&S)zxF0eeZ={%GCinX8IwpTpmOa>Q7dMVK
z+{z{}t>dK<0fqX8wh(ekeZyt<%VarMmlkPZ6<7=~7Fd}K-V6}Z4A(jSAOd1#uV6)K
zq~+EYBt-hDW%S^${s?mOivw(tdtdrh4V`z-;n>sPJW1y<Hgf}!4oB}-yuEMANKR~c
zHBnv)Y0(73UGxIU;T?p~#6cU}cbq*VJqcZn)au#ndNSr7LWMOL1!eBu7>2#S@2)-r
z{wmbJif|FW=oDt4J-jy7E9PjZzgSU|2EFN8B&pHsegO=WNps6&Hkr)$BWduC&BUEv
zSAw)M`AB_gGlnAaa|e9HAd}whhB}&0R1#{GM08cg9-RrdwBLBN@ft5I$_W7f-Hi3-
zj;o|N;R+dDp2*jH;r=xE=`BETH`XwA<QFE%O6%+(?rL3-8I`G;TFun*wdhtLGdUey
z(I!9{e86KhpSVRQIvf0BjJKk$1Ew9`=Vj|GNqg*UyL)ei^@y!-I4+M;2MQpXNz-PB
zY#Tq{9cqBX=Vx(t7d<{YLeNcuCJs_)IA%WnUSlAFz80=DAx-khKc`#60r$7*q=?mh
z$*7x8t73;d!gy*}6NrU)fmK&$HrqUC$`AT%tu_G;0vJdi8fq`i@-)8g#n#m4aSA_K
zZ2dXEd?U|Zca4kd$9TkPCs>^J$>a!$@pRdhQ%KWgkHY8nelI3)6L)4}@VDZApAJ{E
z&*pfz9=h;-{{@zr8{txwG@PG0E(((Kbx&lo7l&NPC^UestNET`vHiF~&r2`sTwC6Z
z8{&p1WqSvDAYIc}!G7K8C|jID6LW@jMpioRiNCD#dT*z~>vFY&+LF#dSMq##AlD~H
z`m)A0H#sad#7qUJOrXQ>-S!I-AnI@8pc{$#!db0dM&#xd26Grs&K0)B!LT;eZ!a5!
zEM!kg!&E$c(%zMbqP8seV+X%^AE#G;dS!e#m~y9r`XAGh^w5VQZrZL_pBo$7$h9=;
zoiQHC>z1*gOgDrWtQ^5I-#U(gesyYZe>uK;9MsxNd}Sg!O(2vTd5n5@SO&aO>A4%6
z_xBHvgHfju13O<0(~*Ron|$5v$LU|Ci#~+!IqHe=x6LbOcT0=JqbiflNYa5Vq{3Xn
z;0W3m#eU<4S@kGXtqDnzv;a{#x2jh``E1~pH?zhyBtT5Y{_WL?Js1x<2S))NaxTK{
zqe{Wl>ejdjzWjT$vP!{Ea!HkTD+`?2*-ht40dp%a-wnyVkN6QAK{|#y3*S(5Nn7&s
zcDMC7+j+$Nfx*<jO8hCmo|DRS?Q#k_QIOV@>7U@K9}aol#fH)V8F(s^!5oe}pUP{p
zsDJOLlzC6OL_Vy7OgHtU-n}u~VW&T<@&Cr6uaxa}`r<03=QS~wI|Dr#YQdjK*T=$)
z5q4F6^JfV*Ax}4{o%R|TN5|ToNuYGReFI&y2+nq-Ui!cTg1=|$y<oEl6cQ^m6GlMO
z>$kLoz47jtSpFja2I-sUE_sMPHLe2~$+O9e8v$4%aXm_}3*xDFmO()N?jb38I+3^@
zEm2B;>pT+M;M`td2~}$WWfeI9to>FC;|7NMp~pp`zCBR9Ft?20*9P+oL+3PwUR^~m
z_qxut!lgNxOdpaWWGH?_daC!W)*8e?Z!B*JA5UbV!wR)o9JMN*s{f+JAgljd4$Jp{
z!_`v#|1F1gjP<|eu%7;JIjsNpt5d7NC@!xhXG@v9$At1JwN9S);u7MEe*Aljy`kKd
z(D>8yyPJs@i$cp>k#B6xXI+)G$GKbl;Ltgqfr?N<hqm1{htFQChG!|k6N7%}r04e?
ze%Zs)owsTp>{<1bx4$-`MsW+u8E#y^36%!S8GnAvk=ByKqx1HvR3uTSSfd(ATrkc#
z`8FT!Wf}S0x6fjx6~Tn}?Qj$7BSQA1Me*mDPdCw_<F(a$Drg$11F<sSAnx+NCLI2b
zDGa8>Jz<2%bv?(oiD1Z3Sun<7lqPR$qoq|{m|AwHo>bAPD1C;;Rz@l~_}u1ZaeFV~
z2c5&c&FcIaS*VyjzBpDnMiEi3Qb#G*-J1mT!u2y4V0!6hKCck!TVThNs+8i5b-vEm
z5$?_x{#$<EuO0opwe#ZCG>`My!C5A+TQfr%Y5i{#zR8)1sAX;bgDaU{%z{8%_+tGO
z!^|#Ir|=-65%XbfWx<<|$OXp)X?=>I!CYa6EPrR0$TtAM#vQ%i(Me;)gr@Q_bpCUv
zd*r}HC&(rlQU)0%?p|+gZf0jh7d_n8&c@gIcUcU5bF*ZSNn2fAxrUlHim|z#nVjK$
zn7?l<ch!7?7_2Z-D8ZS1?-r%x2P6QXeVh6obAL8Y2Pu-Nc5UD{QXzp4XRtx(ZiRK!
z`18m^3;<Tv&jJg~9u7qKs-4~q0^$;=*-XTriOcWLIUXi>J%4{fdpwmkj{y9?^Wj6u
zx!gMKpr(9%)0jD8fu%2LVR+0n+u_w}K-Y#A)Gn6cj&*-2pV63|NcfIt+uDABx;u%*
zB<3M@^m=y1u@gC8n2S`LI!UPHj^-U`YhfkXwl8>nFK)vx<O1Sfx|-|IHFq&MVD)X`
zbc`Bv$&ahT#WE=kG7c*mi7=R6>6nz@!LnA!M_*qly38~Oxx2~)l^2f1=Yjro(3z-{
z%+#AM!VTu6c{TZ}$t^^7DiHW_pKX6h2?v;RE6X5ckjQCPJcB;pa80VDTe>VlkRG>=
zZ0>%q%}vn0p#WD7WPetB8ny-f^aR3BRwnCKc`)x2;mf8>HYMM^q`xt1AC)#Z;dHIA
zn@aZ0J71<^t`v|RQA~Cki--LzsUc&(*e<Mp>`7|g$Rwy6sDp~kP#wIg{PWFQxr6;i
zY#@aXRPc?T#r$iLK)6>vc(#m|_r?qU;0qrMTHGBFS-lfZk*VI>ltoqLQKR~f;j2n>
zo;^^RCZ2S@?~2H)td@k9=-_Cr7l3H>3>}ZT-gWk7$5>W24I1%N=RgvAzhF8Rgzo6K
zz$(gdItzb~Tz8fqy>dR~pskMC{*#mDX@GFOn_H%??06mZqwu^};1)K@+nqiT0M3p%
zcllgS^<yfr4y6kKATrCEQFfq26$!RpXL9S!hu?WTJtO`}W(_P}mN2GU80MK@H85?*
zf0_T{XK5TF*~MDP-sfh-l=F4|r?(?)OqsD(y6YQhX}%{-2WI9gf>S;N6!9)9W=WVy
z3f+;b49vM+iuXhHt7ROt&FQzm{aAeI87Bl)rTLNhFXnM}WX19E+5M5-op~nI)^H5~
z5WmXP*pjx*{+fH>!E^sQ<@bxmXwecOr`b0y@ToN+{q60W6tnI6K*eS|(K!baBV{dH
zhVV|_+@?AU%f8d35AuV=^N%Dd9zblWJmzw3zxc+(V0vI@y@tPHhomz9H_ma7!Rla9
zTgdI--_3Mvqz)+B#SH^mH0MVkcFV8Bt8GMvi*zNwN9*n}g)(dQar`QwW4l*ROSF6*
zR8%ybG*k)<3KQ1{Yp@!{^vB3CZTX;L?kw?f9mu1Y^eTJ#YpK@>n~s80U2D(3F0aSY
zdg(Zs(dgnOb}}3X$sX6LReE4`Ddr`I;2O)39n12bdCI_eC;2wt<fj5aKODh@x4rZW
zVb_W5OZt;sSutnyMgDOm6u4j-Ysz2L8hVFkO#CymP4h(cs@oY|^LiEk(e7{Um-9&X
zW~j>AIduhUYR2Rcfa&Za?e0Z>Zv+}Ec-_LR&r^)@OKYKmZiBAg&E5TW9TbI`?*4PL
zDCKzysVdC)>iF#!X0eCow;7p{_3=1g^zk2kYpc49iz!}Sio*^;wZEE|t(A=H<?DzT
zx%oLdrTW2&;dWzr>R4u7#H`ac;CQ_#q}{S;y`&Kc!3<c=6S4O-JfN@h67C+>1Cc#<
zz6W6l9iEA{IJ;Fx%L#aC633lH5Spz)Lu4T)g2VbBvQ!>W7Fem!_-tkTK!@BM*cukJ
zml7(l@$u%9NsKF3OJK91+Uvki8BWpi2q3w(&<l_-u~*eK0)f<{rQss#e<IbAY*XuL
zO@O3pw~cH!DozjSDl2efz?oniY^?MgK{4s|HWj?$_Xg4<q?xj#3+)GSYH8XbjbDT9
z<>f~f$|5jgpKEW@ZE!t!d2lkuX?&3>Xld9j!cAfgrJ^A=%U`TDF%li_DwWhqY1^}0
z-*Puv@*2ny;tO0XXhWY^xW0ZPWmGD7$#5qhsQ0jk+eqU*BfHaZ6loXJEFI=e!l2z-
zZDVejgB;JHBH}Lird&E4!4N9_bxzG8VG0ixx=ayA<!9;bD&!Hl!XU>&0kkFM?_T5i
zYgE~%qcIKY&5aDOY~8jcO$xJgeqwrt1xzv13~mO>2Gf1&=(ZuTvY`<Y0H|kbP7?8;
z0L|e4tk+0$V|?9ZZcrwKI=ChlD6Ni^Zo-&BwcR+IyGeqVr<urYJo)Ct@!I3!AsN<4
zMY1FJspbZK20#xnqcT##orBetbd;RqOUPOHs{9j_gowU}aVRwlTa}gMv?h```5IQW
z=jk=Q456nSLh;fg-3EIj4Ie(%LpxZ|)7WU&Iunl`Elrg5`7cMK^T<dW+Ne7#$_zm9
zhU(>EDK!B1L@GskV`QXK;220k&PV}9mmy1Q)wU7?0N6^qEs;Y<0$fo9IqzRjPXwVm
z8mKCx;F1o`*nINLmp`w>_nLeMp%=@1`WC2@%7&E&M{Qu)`6WSxc}$yJTC&trUZaGD
zj^<s{cn++8OJOnw+uTXD-;|>{OtA<;HDG_Z8QEy=#D7Zxi0}J3IZQjGn$RU)Ha48k
zs{>*^%#=)ZMc2BK!N+QXr)G?V!OH(_K2snPfQbLJ+S>M=3y7yqqNXm$Vl9x6Y%F~7
z<)M~Q{)W}bg`fl#fKd=GN6SdWyh~=;oC6M{duwwrPHWuoa~Z?!Ni*X!HiN2@?yt4k
z;ih&Uv8uX}=1i{(89kxGfH@@xi~`D)p^OqcmKT1VGH+-8=kuSrI$uf(1{z!@1%T?6
zA7fVG275z_`Bbz*2&#oj6R=ieGUOz<Xsr@7v^-=X_QsR@6lF9FUoC5e$WfL;iG>jX
zk<<zXzp!y>#cxoZTnIBbRZsv?|Ci(I&>x5MbiGADH+G!EakyWWX^t$(&3VQ|Smex{
zUcXIaZFTz;cLECMt&=jLRm+B+^SyuVcZ}rZG{mR=<KdDmCLO(!DUl@1ymK5Airfad
z@$p^7FVmo0#EWF@w}RiF!lE1`xfr1nIHPrSR$OYT>x`%{o6YL4U{y2ojs?I)>HM{5
zRUOF}Si7}ZM?Vwal6+iSH}ud&1GYVT8egx&F$tJ)RD*UNeDgXdAVd7ze<fR!;ob0`
zK!7lK4wucfNctp>XV^W=IC|8aViHSTl|j*}afMWQFDo1|d3zY*WS*)C-$NZ8a5|^H
zb@JE^#yA!bkagh5pQs6I&B587sKu#2iC&akY4mBxO4kIp8h}X^sCRV`p4-mf;um$&
zW;nh@Zul)|>`WwBpw%IbjW!|FSWhqRbaX~@sQ2qg7c(a$og`OvLIdc(M$AVfXp~AQ
zSgtS<Bpqb2r@q|nTK20r*^S1?sB&K=xR#xH8X(L^Wqh?FwD(K)Rzh7G&$&xCs~{vh
zeJRMU-_H!h(mQC-w|C+4vN4+oNLZFXNJLi4BeHQWsg3E=%)LWoCCgBtk(P3#(C}JG
zgndme&-;o$CpI&0e@n%ET9iy0Q|~DRHEzA$A@w7{ujCe&`M9B*&5-F>@K7I8T!T1h
zLrX+I*%G<=n(J$Z(9>>~k{wz76yL8nA8K0WMG3%v675Exr=rzVBDHd6H4Hy!4_8Jc
zdLo}m_tiTsc3c$`wKJ-shU6ezsiX0D+$txlrK0xn+@nPa35XvGS3jansr|l{v{_bY
zvj+LAh`}&mTn!U7AkPaFjXwBiR3)o~#`KQ`QG&g_)0u4lo)-!xw1TsX{$oSCN>M8n
zV<kz=->0V#ZMTwj&sFZJh6|mr>0f?~C%ZGDUB-~~ZIa2U${y@l`F6{dT0z@*fkUc9
zboQOsHnO75<0&P#;ol~~llJ2~6stxi3(wj=VYnEalcP!`K!z7#sQU`XG(KSRmo#(h
zAkEKU#q+P>J`C2<`A81}ZAsJ@PF5Wodfrd@DOPzE-9P44X@2|>^p}k-#1*m2px0p~
zhbaj{Pa-pe?%>vF)u2`;;8X9R!4O}CN?~T^YBH|(1Q)#O+fQ(-cq3J~7h^zz=f*@9
zdZ+kjGvn||2SiDO1iToamg=3BTP7v~H|ks*SW#A?)3v#SShvB;=;=Sh+1LC6W7>m?
za&>$zYPD@Zsy*LJb4%U*Ycz<l5}GFCj5LR_hETTe%Ro)j?iBG!_SP1Sgtdva#+d`@
z+}c*#WhkOhp$r2y1MdqUh5mP~rgs+QOwgb3c&4RbYAn)xeXK$oOKu>c2NhF7a;t)t
z%%a@fm=P_fZ?2-rtw=2Ol7-w8FfA3bGhXHlm4;x#+&_EPyv#&YogT7`wWkdb979W1
z8#f<kR8<w$1x%O6_?Z+e>;{r0K1~qtDwV6&vYqL`^xquXoE+KFpfZ7b)#M?NGtR`~
zD0?tul{eNWJHRwlBRh%aa=(!q&oW}gf98BRWMD^gAk%AHhtm9RJvufUmrpf^N~>H~
zdu*(VLK!aW<>?B85kBs|Agk;7aA2M_JWA7bHer7>(~>YH(^F@AwoySEr>ExN(oB%~
ztxc1|-qOsre+$OlwG+HkjaIpRVP1RnP7P}1c^N5utZl*>?(!>J-PZ<$ddp?SF-RbT
zjxFG1cKvrW-2^*;Z0i^_P?MHno5|Yn2$Cw+afokM5a$WQ4+78!J43u~M$odX9-#r?
zQkIOw#}dWWndtW72WdI7kUiXpu}oZvapp^pnVC&SR$^Rciy!%_Y4Ye42EX?J)g)Ea
zk}4pA*2&gy7`|99yYV@J0^~j-%Hr4LM-ju_KYw9#x3l)S;u6^bUX&R$m{>%q*7gf=
zdeA<a|Eba|?E%-V)<okc_p`5>>wMd5aPe)|<kRgVNqxd}u@rrCJ^8AQ1jxGldjE+|
zF3X>~P6oSx=164i$O#7===;@9`gDjKBbUW`LiyQLY&ejRa9zRx%wKkh)1iAe11W8C
zr}|jPW9}+4e;8B#`gfY!Rj9}2m8`k^)P_F3FZ;eFf2PNgj$xFjd07P<fE=bR_r0mf
z%p#-nui{%xl!p?y!bhy9d)gXxUyD2|*22BxdL3&Fi)rP(<0SfPb3NsRb=qFb{I?gA
z)pHH^d?qpfS@-AG#mnp%3Wd_!?P@p>xv`A(s0^1+Y3|hAz;J++6eU2^m06wUdcs^g
z9daL8BZ1;~I}M7%=p9^|>vDq6c%_*9>!ezmpND~=-g~DY-J7-Tfp~SeJ;nl-N2lxQ
zr|WonB8uOjYwwbipsPbrMsPOc5*sH1tbmJNAH{zMh=S`aepa^-J#~%&fFLYseyLkV
zvi3~R!4A0bd^k_6`}nZ+;iRjGIaPa{?-Nkv)-Q#`=JN@_Mq=^Gjg%d9aYA`=%K;Be
zWpyS%7P5zAWbE?fd#h1vF%^J^uCqU^CHW-y>>=|W>G#?zj-<boTJ#fNjs2<vqh_zV
zw6TzZ^!UlAT6o!5SivV}osx~vF6(MFT!(7_AG#yz_iqCAHvDI9WFdsA*WW$}8IZS|
zZa&MQG+l5yK_pRXITfROZa(V+Gl_wxy7Cl7^NoIe<2Km<mBsrPy&3zBJ5y3%tUR?T
zSiH+)awF|o<|j$ehTX?GgtOsd!<X#`>{-m_kmrYt!bwF^Ff^`*NT|3Of4zlqX?;nK
zw?4ylIZAjwm`-I>7n{3#uFbmqT}c^vLWDJ#9B+&AlkyUt^p^1h?}5&FN7Gs$8*1?L
z>(mhZvX?qm-S^s7;DQfls<N)>c_1g8^!GiJ*+=|w5+MU7Xo~hD9~U(B4yB~xe7>6N
zbeH6>=-@Ch9?U>41l^JGeNX3KMvKC0PbXr~l)$H?$`2;PoBh1{+&37$m4~D0wSJXY
zRM#gJjl#klI9Q;5YGZaiwQNXIj&Ww&(d$3lPxzSpI2(Th<k>spTS<WqboWV;K6rEc
z+(m6CSsg|^S8=_|QlbGuk=&}1a^8<1pR~qwNu>_0X2DgL=hLKuK;3V$?vP%EzKX1l
zzvr(^Pbx7`^$tvv)VRtCFaMnD+$SJL{mb1bRpk@GkI#P|jCkUQ;R5_oAEPzCo{jw7
zGh|%dG7MdBu~=v0qOW$gUooF+-s^f!j!bc4J;3+@A-BWq^f^^GWz&2Zgo*|hgP4Ma
zz56{z9?T%?KZeR(IYBO>oZzULnW}jSOXIjOUvjm^&M1CZLSazIPYe|Qv?Muw`X%qb
zJ19PD(eJU>Glo#)_qX+IV!9oQec;8aIL%kKT?F=>yZ_Egj@4W*j+#i`^sj@)61J+v
zvhMwXKFolq40;H`Hu)77<5y(ugGwiMye=G9r%`tf9REi6FRy$1y;%0^oj!XPx@7{#
zTYsQ{>>!4U&(UXF<4pXo`wTj)enPmksaHoF2eZ@T<Hc5}UtKP^PKr9rD}S!HI@^eW
z>ni^b7vScg7gxGCX^i?mHcq%_C^vkK`9$F{?I5-YzSF+Z%E@?YHd$rmJ{cqBg`^+M
z&dg3kgVSr=z3)T+B5vhw^$!Zd*ZbATzduN654<^dZpI(RpemNyjr<`H;(w}Vqh(=(
z!CSTHFsL7E^l&y1aF?fL{cZ98(RlVcUby!PT3j4U;e8!_6{X*Qtu-oUVPK5>XC0@k
z-ET<CsXBkYt)vp#3S>?XDoZE_(MRz$y9$3Y9uDkj<p*!X>)nC-Bow_g!Q<RLmtuQo
zxS1(uJ}N{$K%V@*vsB_&hz$T#C*KGoZ)H|^jfU?{NP(bDKLrzq%Mi<*)J#1LUyl>}
znD{@!X&6}>)o(u#0e|(`WoSIM2DpbAbGXH<SXBSwPnUd8y~%D6h!s&D!+#9_TRKO3
z&f~ux2>KnqzT(=t$NlRk>Zfc>=+%V`8I)Da`#?%jXKLfF%DuF+$E6knr-Kg|08A(K
zWxN{hm-fmR{kA^G<5j|R1OSd~O=G>4&NR!tKVY$&EzbJ0Jozas_?bG3WR@ZO<LQw|
z@6D=D`9)$FcYm2zX}dSm!>M~L5B?oSM=A%7i-KB**~GEMV2=OJwC(kaovOae5u5$-
zQJKD;>H^3;_|W#ox0P<*+N9-+CFBUrABZwK2H#c+Om!PGDU*U)shogsYPtSmMkojh
zi^YLo<3cU<cB&XQpO25&!=uolsk;9oK;@|4isd01j>_fqq*Ch7CZ4si?&)?Y9yq9#
z^O8P&6VY9H_H2=nZPAjT8mgp9Y556lq6Ct@tw8=MGhABv$_YAXdy>+ghpejA_=j+Y
zEL1#}mQFR!*(%^8CEgGgrn_E#Y--iWzdr#{A-#G}Fcyap-)wq-SqMTwV$mltFsLKs
z9oqBoNZun;`yH=pRs78SA75+IJ<bO|UV^OLCq+|=2z^ePS>mcic2(Rav)L+Te^EI0
zCvTJ7j`_Wrop&9r(EHbrY4NkSyK5e4^%p7oRj)mV*p0p(^6W6pu>tx;X$OCdf9;{_
zP*x1z#-S!2axj&LCA21ALQ8(!&GvNv%d8ZCI=|yq>K8MG-;NI#<Z&FCz9}sy0AO=o
zLVi(3DMKi58^@1`8r?`me?0JJ%?;1>?@&EmR16g2INX@Z5aHOpIo8A#bYq|lO%>D3
z<u@+{!))DyHl+0Qd=WArKMvm4Hga;lO4n!HC~g3-=q%`H_~qfs0@gtyAYa-a3X#+F
zUrP;7SvFC8`xokf@>Wisyyl#Ui2uH3JvSPz^zU9FRss8f>_7fY;q`w>Z7N+K0Odba
z#CgX5<-gtiU;f+wpRY#DPJI!Ce)Y>H<4Y{hS_sm9YhyM%pp1wysYA%9@}#eGDbn1O
zv76{S(`wz8F}o8rT??+#;9H9t;ksWQY}<}vba9s)Me2IZuN!{V$E<8s62Ym@@A);n
z$#`rhjgj@{xqmVJ833eCSG~rX`RUs$WSvDzw#*-F1l}aH4xaW|J>Q!cy|ij!c+C79
zSRcAPQWSa$mDL#!?QpJEd*-pO-_uM*pmSiC76Xu<#F1sSOq?ql%WY+xf7T%V-mRKd
z*l&8Y7}e)Va%RcHX*Joy?z*ymUup8LR_=eGu{}Sv>*uJs{oasky>h@dA$U0zmQfxB
zGw7ygz4QyByU+g6OV_3}KFr~m<>4kw7yL|ACz!VW=8V(zPtTw8HFen>u=&jdv3R71
zcZ?j=kVyQ^g_nw!XcVF1%nxeGlexuCOy!G7uMa+OXxvDz*T{J6l8g8)&Xw3+z8eha
zzO!9iX*^ahWj^X2sZxKhzm3R<4NkrHP>oj&0n4zVQhgkjMp!rOyTiWJW27vUvc3HA
zgaD7MFt7%<DgT89R2L}8&2)DzK&A5d+eHjo8izf<bdfd+eUsOvBQ#X|_T>DBUo?u)
zy8~wrEb;B6;c_jph?w#6d%S5CqwgCL)BEL2){J(vPg6!$#*{+3`@zz^z$6(B4AAd(
z#%g4;x$riD$(tvXnuY0fGM6J9yLNx!!&;IN3QlA4bOBWu$o%^Ehx|iPYOCAfW|MMg
zQ(Z<vOPFFJKB24QMP>xG)b(}{;LrZxcd#CytNqBS2`#9aOyFhuFd!WJ6<jCH>@@`8
zcx`T03<zI)Y%_m2<9cYe>g!vo$7V5hWW>dxs;aSmh=f#fykE6UBj7?ve=r3dmXM7e
zKX{yzrEoXlbLQ%|iP<F<e%4ewJ=^hmYfUZmEj*IdY_Px@g18IB-Evd{$@tbWl#MSD
z+xpnLAGbH-KEE$z?S3_x35|}z3wqklukO`u(vwg{0}O0ZZwZ!ISf|!E29)}W;gm_L
z@YXz7+ovSL()^mA;wl&7x8DjqXc;k42Ryoy$_7AJk(!j9dhPUTH!`kY1~cP6dwx%F
z{HZ`!x^#$xPL|W1>~^viXp~X2d)wa(mieb=U>u^E<KifjI((>Z_7^dq79_VeoTaRT
z+RK@6*G03k&OOPrL%NqYXPuulBb-<!zK7-J!t29L6aY{}(?25|&h%{dZ>*%t$9qU3
zO<b%xku=5wK+|12zLVDIgg4(oWdG2Exa&2>`m@9JB+|Gwm1ETMQW8E>XDTgyKXko^
z!Npc!ThnDD7R&LET_`N1b8Z4voATn&av!+FjR$-V4+&bNUJ#@Cg-jz1KDU{{Gm$zj
zSaCk&7l(%lJZ@(`UAUDc?FVVk_MMf+hS9Ct`Xn5~5M-fuhJWtGI6G55=UCt@0pE=C
zxrEyM8R8C<Aqn4I_4^U<_}=q2*yF!tCZ$MgFSW4Rk-|NnWG{7vH6`a#0l73|W9rod
zIwgsKAw7=U*;HRoHr3GR{4!??`x)Q3a4zU}5Vv3#5(bPMKJ)SJWkXIUyxJ3D6lK+;
z1;&{MJYF;nsVjAMBb7ZqpOPY=L;d@t<eQ#Z79-cMd_OI4w5EZma!vpc(f*yGU21MB
zIynI2vJB<lc)@&-MlCxosGR&edEDvVa>K2#3(oH<d{)(qRmKORgEO9)fkICAPG$lm
zV==&SNR24Jy_WwlRwcA&wt%W8&WVS{^Il0fMkD*`te%VF|9wr%#rmk%BEN-8)GXTd
z?JQ){%?y+AkyewS(`j|Q&}mgW7#<hj^C4+>>LK_s)t~wKl<+wVj?2IHoYzpoKWu+G
z3@$hzFg5;Na%+W4V-^TrE7!pULg^@_KmSqlrZlI0(v#c!ec2vD2eL|zp%xAOW}p9)
z{anwiJa@bOJMZUlSoCXW?!T9G>sp8)ja;4PT@6e)19W${W7O@T((vo+`ow6tsMhua
zQ{zXI<&t(v`@(TtB<(3)qN&uJCGVE-ih`km<GLJl4^^)M#UEm5omxwSDZL}LXlV6n
zdT$wnbhiy!Ee6u@$C4}26&ug_Zg~I;Y@{SC`5E_N-10@MQ)n#{=_*l;3$(>7>+z*8
z08CMe3|f0OI>6p?6wTmx7UKy)&y#-mEre)P7}yw}yR!-GDBUVh*#;73G6&+7!MVU!
zCzqP+01JZi7n?m(>PxzgHQBmwjk^SwEX#wl<k>`P_m{;Pd&Z$m*7><usKu(bbSD7{
zeK_7KX4<YV+g6w}GcjH}(Utc>Mxj1UhJ1J}21A?;R-nf3)W&<~_L?~Mz(CpJP~!r8
z+UrB@WaB`w;F{wCk`s^T{W+GS(OE{3?DzSOiU_t_d;R-*6P9<qhTZRKnr*2iIzz3e
z5EOp`LpYcre0n-3yEuPU=2dvnY4Ne;Pj_c_9yIo=wxUcdar0bKHIlK^#jEhey|hDQ
z(QhUVS+h8S(h(DN;H1w$s>&P!Q=n+wdsTh)0S2n6V5u?k?tQ(bP73w+L*LXji4?cg
zCRefIp#l$<!NB1!HkL~hXNFPycE;1bFJ9sGV#Fj&`+7_553$EB;VkwnX3n7sxJ}P7
z5vgH;nRW+opI9M-=8Ln&b`{I!=m2O@)esHE-;Ki0UTI1;f9|rnHr(lBBy?WzogGTU
z1?1wpk?TAbR^YhW2jaSPmqud`zMxw8@|Gq06Cd3Mv&H12Al1zW)m%K!%kO~8z6u4B
z7fniz2FeT)z2_cwHR(r6O%6*LTT?q0Hm}%F!QIX4TE_b<8uDc{D|o*afx6ayqt5zY
zm31DUEH(JG2~Qv7n=bFSa$JvexVc~44K8zi@u-hUBMkvJe%Z1Y5cqApE3wv2PJSeR
ztelh(JJ{&p=Im;cJv23yB^rcW%JI)xlga#cJuL2sN%Zg*SP%0DEK-mvJ0PBdat}8U
zPc}^!bktUOAeYJOL&~qMziQ}6xG`4H0$vj|IOKQ}*_W^d{fPqo&`KWKy))n(4>s}&
zE1I8*9l#F%O^68wnBpQEOajab(f9*0mQVn%wUGZdPn*W9+t<xUZ`c8HqV7m=rb}Kg
z*>oX5kc=IC3X@^Nh(_*-wL5!^%m^p6{dT#9d0<d|f`ST0F?ds&wcdW%xXwP^N5hB=
z*-xM_Kc<YWA1iqV5Cd{$;M;^9WPX|%A?hY8kNpTmg@!~20P2<+AGfybBl<I*+Xkqf
zef<|>`~2hO=gau&;h~xe^41{Tt}GezHucOT!P2bAZ`026%W#q6zpAJq2gb@M?RJl$
z{aN{>v^=0l5O{pZwWS504<|_bd7@FZh|m=jWB`e)Jneq;B*w2h4)BmIj?ne_kV5>B
z7zbhFJU64^wlVb>;$<a6jALRL;G0D9h>$@IHvHa>OaN0OJaYKS;kKYKXf={LMBUeq
zDvz!<TNYL6uENKoGq3A)`h8}&OI|-(s%i)$Heo~qh!q(F{<#cYd|YAY{)Sc-Uk>wm
z<!vaq3Z#Goy*oaeRXZ}iRp$N$=4o!`_2(SB3kw&1d`Wt?yWg(Xd7{1uWc&E%g-WZo
z=IDVAa8PqU<<@H76p+u*RG4a!VJZRWgT(o5!Ubny3`yFAXpz)88WIo+-c5<?Yc%!;
zj#;4ELMm7wGtE-gnY`aLAXKr61stHJr>2LCzUAfvfR70`UUt5GR9qM4EtkoXgD}t8
z7FTkAUhA07(H*A-*iW8XB=(#PgTmh1cG^}B(H`C$NY;S`)!H02ny63B^(E9X;Cx_A
z7|BY2NI^MH+xH+Len`Rm{(||C?=}wK6g5XPut%&;C4C(6SKzal>W!--g2dG;!$$;g
z>y*D{%8`^5e9U!%G9z+?1+0H9;^_=awNg$?dl44ov`PNHnzLMuCZ+F-B$JEKd!g$D
z{gbTa+r+QXSAiF2-p*4K<U~LL{paj3iqO05Kh{BDU7k}@G}_vEcT#Qad*+EmuuxRe
zVVo9bOt7Kp(Q*so`;ujNQ+Vr`eYb4*jJPQgi{tZo+=C-jyD4anhK*Qo+H4;c7B;If
zV!2lBYplK|*WIGI`L{)gT%}SCrXt4}hLpCv#t=8;0-^pN`E*pJ75<+}Pn@&qxP6)I
zMOeUwjO5R_@Ds||?KvzR#h;}Hw>@uhm-U2DgaGV=%)C}TE#JyxH1g&sFIP7csuA-!
zH!pEjn}*Z7`HA}^HCevcl+hnNwimmC!nv`iJe(3#L@R6QxinDBrK(!sI#Nc4V!{qC
zkPQ0%*)%I952u>1KAbj&eba$S+i(qXd;)m*G#=;U`6LZm5ii>|Duqfkn&2XSe!cMt
zNm*w$Gy);{R(#lSy${~cm-*&pnSsIZ7CT1k&VBirZdioFhG0}V5)u%KGzpwZc*M6^
z!4GQ4LhpE~3~2-1OfvZQg^v^8!0y4t^lu-pCkWZ~7>ETO=;->;0c`ls;DXv*OV>cN
zP)^Cz@_cGeH@2VSV1TsSxhMwqqqA-sX(%@rbsD6BcN>zGSwH08P+hHCo4t`=Ka#~;
z#Ii-kJs-X^Q?I6=w6P;p`!T%B+x08&Bi?(%V&@Fqg68y_W0?8&6{*2i8g(}t8|6tT
zDqGBz1y0NZBYvcNljhLj;eD!_IS^WH;Yv{wl(M^6b$EJO4}pP2?7G&6h_>!R`s{fv
zh}PuydL;u9ni`$D1WMsW4%E`4Nl1K;D?#|=U#%r-S)ye>6d5|i0&ct5YHjR<xLGHD
z03eDw!zena9^~Q9peo;f!ak6LSm8-l=!VAo;pKYC?x6^VEv`<92x+s>ulqc?(M}j!
z$js~$MY5O}WnRUKrqC}+c>>dKJC~O=8CM*$y~<&A+EZ1+fX(x6V9q?Kk?MU@)zI~l
zVfZOLQA1+H)%-N$)WYDV?&gv!06OQL^&?~b$|Cdfc|3!!90mz!{)U$5X9qfw_sX;K
zi>MwBB}aR`?dRg^*XrzOgA|QyQDpX@1BNAJ=G~zGwjk=XRwTtP=xD!9??sZZ_hrJk
zyPX&LLVCvx@GpD@cY(13x|4mc9@jGo8`#~BI==hJ2gYtQ#cz*XM;IOrQ@*#aJ<V3$
z%TkuF&2bb7j)zv*R=96jQ}petb+C+^kyDn1RZNwh{D?ZcW4*gv3@fwaiyMo0m=+^g
z^J!WR$yqq#*IIpCPd9>)H?p;^>}WpC8~m9N@`5JXvjflGH#@o+;>Gn+z+<@7UQb6~
zv!m_&Xb?-KX^y)z)PH-lY?S`oE-*Lv>DF?v3BM~n?r_#~nx~O?hr-3Z`RRC8G!Y&p
zjX$-u<b`9Tb#bvv2Hq$?sgu!*oy+Cez&+_pPBb5u-8q<`B095)KBs3#v(+L%-RXO3
z_1<lF&wgfBY0b9|;34L9b-fKV^sQVx<JQg8!S{vi%y{inB7TW?BK3nRer+LWz--yK
zu|SyAwVY+=Yp*^KDe4d8Yu|h|^EpW8g@mp+EeFA@3WQH6sHbrbmc8d{(ra4Esl|qy
zpY8Vn)X~v0=3oG}x*s8NKPF%FU@-*o?PjnKK6H-XC)48<&Y_9j;R?gd20t|Us|dT<
zvfsTI0|zIfhy)wwiTOlZ`+u?$FQOJ9fMK4ttC)xwI2EyQijnjn=Mv(rzpVmQlnIC9
zylFq(9gW<4KzCav!n#-_<Ubb|d|LLW&icFy2(YK5W-l_@(hNTl6+E!}faVE{E+~?a
z!vf3dFyv!#T#wbRo$7qUUKSel<;C`BZi7C{`U**H-JI=npZ4zS>ovLepF5!(eO(z@
z?*EgXIG``!MtQP~zkJ$eXesuK)pqs}k^@vmZ#O(|+m#+Vrsjx;!)9-y?6@`9FR<zP
zRV~!P+kAvcK$&SjW7C0EQeH*z*=-{cb%f4&tnVJv<y@2ar@G&(S?_W&T}m{YRk-p6
z-kare^x=WpAChn=?JljB3oDyw9VmF)U#6mZ&9V7D)6>hREM2y(*xK1B&7U|Pu*?ab
z?XDUnY;7BKwPUSE2X54Hz!V10-i}A_#O(&L4ukG185+TD_XBU#x6#>5yMMi2n%Ok2
z%q^^s&L)z|w)njyVQBZLegd$Y)acK?H2$49Bf~TJiTq@r_y5Sz1W$mM@{F|iu4S41
zbR@7z?btSA=0Did4?|_mYIOZZxwV6T)5)6>__4U}LHYTE^LB%sh(X9t93(TiJP#sN
zkFrom)+FUIkPQkQJD%{^%M(Ib&K4(JACTL-#|M<-3I5Fe=HqT;9Y$>-1-EzC)s5-7
z(<~(I1eTYCCB?R+`4jnR(p~$B+k&O5lcg(pWdQGDj5uiOWM&u+4wh;6v1x`j0uC0I
zY4-!YdW2f6HlhoJl7BZ@`8$w!S}~@N)B5*6T-a|&0L|sQtu}lXm%Ws}0E{eHwI+2*
zE!O%9%7ebsTbdjN5QObg`aAvc^5&V{mMbp5$Ln9P5&E@l&TGzad(L<5v<0or16D9I
zi?XQ^Z8o?*zn;4S+2a2@cX5kxu%`HXWAnn+$K-F);&(c5Aq1h51)*tY<f+Hx4=q|T
zarI}#K9sn6FNELjd=n?xp9t0kUO?ReS?0Hw=!YzogdKVDq1dnz-=s$1+PFt1B3a3K
z=}zy*r77LsS*@QYQGU3RJ~ek3MN`);=xSe{RMkW0VEy^0IjNNdtN66Df-t$B06m~}
zy6QDT$s!iCazh0)-fm@CPjJg+oct*QBr@8#OAVZijUuv(GUy?w=>YO;!pp75nswo|
zF$u|)z#A{$_3x~WrvdVK&-WLTDcso&RT)4$<gj8=W2H{oto3Ya$sbgPyPFI!;0dY>
zs;jGP>MY}^j`H4W%hJ{=evgcwv&9fJfGgVUPAqg6ybt()pBzNUK>A>2zsEYxrG9RI
zeHcJ9qr*W;<-h19{-cHm3xqP9yp)Q1(eGEB*i9+`fX&A+|0mlq2@T*?F<bj)nfm#S
zu7KQ}x^wm}k0N}Ln9`VB#B(!Uaqh=UYubCu4yxo9U{86|SkW+(4$%;O**8t@f@3vD
z2i~03<(&&a@$d1fo4539txr3q%jJF3l=-nW8o~c|5=IuX-$;w(Ze|}3nS3#k()WYW
zZDe4ejahE6*pQpJ6~O$g&f7Qgh^mVZAH#?Y&1J-MF$Jb<-Z&rP<Hel;iQJgRR3bV2
zRszQ!WDN%NTok08E`L3Gl?%blSX^r3bf}FX;QNAU4}?ZHe`Fxyxjeqo8>;qmEiZEe
z0GhbExWwDZUyv7wPSE)=st!RH<KJ!kD&CP(9C)x~cbe`I*XjYC^$AZ9o=d$mt8Ta2
zVTjT1)@@&fH#3mFycb+;Pu#ZUZ{Hmx0Ep<Ly4{DQlp!8e19(-xD9mQ6trb_U@f%_)
z*GC9f8&Vh#ydU%Gij+RfYjq7<t={`kR#GM`Aa5P^$Y%^|^SO<3C)xU)3%GCyhrRyO
zN?8bcK86F;MS<N1vnq93?~%1$Vc`7PW+FzNl^)ABW4fpO`qO1n%DiFd2Kz<Ps8WYm
zVp^=40t%LbQ5d#K!L^hFxHb(vxlm2$X9e+>ua>uY({Y<=)mHD3xosf}e(xv4B705_
zh_QOQ?5;wOj}L=>x1)zKER|=P53l>9DJ$Ij@c%&L#46_YCJ3}j-%ZZ5A245Cx4%^e
zBOAZnu_^Ow__Pdp9M+l&^SP^L3Qb^AEc&QH(N2c?B407lFcf4vs(+%TO$ba8-7^SI
z)JRsoo~aG{B9h{`^)NZ`aL(ro!tmWJI1#XAEPuN!sG;<IGjXqaQ(h3|iPF2fxgA*Z
zyPhNc2erTT+m@|JFQX0RZn(M$^YKD>HrRgT@*AKMr8ld1%FpPp8}w^{EHC{^vC*M#
zv{7qZZ3)7R>z1>%MMvsILr93DiROCijTx*RhXBX300Ltn5v#1=KLNnX+VgYLtE1u>
z_Fu}J<KG{uvk$8=ZQo)mk1Pm#$OWh*4?wg7kIB4?p&Xrk<<Y4n_O{FD3wyH#w9<YX
zPCQU}TG8puGZe>7wu|V1%->?jj%LNJ7-c8ZNZ~Sv^)qR^L6f@fL^5(oS+D4~Z0)Og
zRJBB8bDo#Fh0;|N7)uW+<(SI6)l@V5u!QZv$$y&WA$#r|n-A+roo?I6K_IigPh9b&
zC$0;ff><FLoBUPjmm(o<C}|7Fumzq&Bopg-ceeUf311wk^pF4%HIvJXuTG(57+FeK
zMPfRS_d8kkrGTK9+fI@;9v0%e>nyhBl6>3&FI7%jbQ(v`aJsyThvY*veM%kmz-8+f
z;eV}wF9a6e>Uuv$iYMlI=dzt5SlmzM`R`(gl-Blo=X<rG@N>NhqAbCSG8y|hiYKmz
z2WbA}D&lk1CvPdD4?(D4eBJ`!Kfm?!E>%itX2+^&adrnrGtm@|f#Kb`SC|}(DUm{N
zxn+B#lCWQhWbnUk&pGdmcW5rvT;g3gPBlc#MI#n8xe2s5t?ke`O{nx&XWRw~O^H#w
zXXCP#8M#b6Acx16E?52WsreU*k=BdrapfOnARLxH`!u!-LA9uutsI$kZUjP}Y#(Dc
zT7E?=bIQS>j7O)%jCS?Z6;Yl$?R(wLc-1<;n7R4Jw3{}8mo)*8qune*-VV_9v8cOg
z<m3`t7Dw0H9_6#rG4DnK8n5k6ZRY|!q~L8B&%yX|Qg96ChfY!HxTGqO>MJU9k0A6s
z%%<1SHaQxOvgG0<Vf!zo;yukJE-!YgW5fQ14Gt+2w<g9>jyy1b*Ta`T&%{S<3z<@e
zVE(Em=<{oIg*L4dy39OO?>&FUp`4t-X`wjY4V-4xeRYtgN3I<mrBteB5dG#!=KQa4
zy3A^gK;|KiR=%{;@w>abQVon~hF?fHWbg@j4w|?!)jOYVAE5iog7M;;Z+^JQPReUK
z$-jq-3qlj$+N;Wc5GLjk$gP+?{sajgT~&3hykyUCJ3_g(KX$afG<$&npxYf3O&)c<
zbH48L*rS*pFKV%9*0Y39yMRx7vBp_*!6qdLTUGgbdraF2nh#fih}JGs5Z_li<Ei=L
z$Ebh#AWgWM{fjy(TRpy1-$xW#3VWt7w&dxBmhhu_M%RY~C?{BC+4ajp|JR!#w^f3<
zMrXFkmb1f$U{^%f*r}2BM;=PI3w{*Riq~i!^4n8>*VAm*067w+)Vsr{n)S9xN^05}
zCLAjZJ{I=z5E<<Gj+77#dF^E9i<h?y@$<c;L9lw!owq#kcC=%2Mgvn2HOJeFos&k1
z@?MTIFHxG&)&Fn-4(@x!?(Mb?_6<mxFex|rT0L%RIQwZUM`Y7Djs@&&vJ~vCE5EW_
zzhqW;*&iH(`J=ku;c++^;QEQPRO%(B;kkIO2A?ckFs9AV4+mYpyk0&FN=<t6y&W9x
z-!#fnzq)R)O(GQ{+3rc{YV&*820cLGcEPmN8|+Vzkph?L+|lm_&If{C$}X<A1?$>7
z!s;?A^jVF}t@nR_{JwoLlHP1)^o?`zu@}@9&_<Je+c|+^w`=)T3I_aLVkKm^G>JiW
zqg7VGGVfdGuQ#;zE!xY9y2o-Vo{VvZV&Yw4b-9}6wUaH1aP@r%VUwL;<QyX8EtD?~
z!N?m6?`(JKok(kuKmLL0(Z%AavdIoMfhwi=i=fl*Yz1za&OglQSrKjHY-UN*gf6nn
z#e20;IcBe!idzVpjrSk)S#piDFKJ@QkF6z<m?K^`2}Eo5XpXme)thM3(c;&HveN}x
zaUA|(8^g-h8M4FueYh5;k@>l)GMo-r{mXAGptDb^*ZioE8X!TqA<HC#$Gx+D>mr^T
zQRYmiV3sqhMrTJW(B-wBRYDUW9<oI$pl{gaeg0If1m2D0d2v$kDocR3ayM&CZG5y{
zKJIZ2CQ?4N9F^v7_Z+b6ou?f0P}DA<pYhe!xPpb>%4nP8DWVF>q0(NviSL{Frte%l
zq&{qCdK<ISI2^${==Rs+S(ncj(gN~(y(k^&g5%$}8T$52Acw-8lF2TfjLBM>60na<
z93gjCRKe}bc@~mX9a@=do<h$)p*M3?#Qt?Op|9*h%Cj3jXr9$N;9hC{TD<L6my`1K
zIM$ZdtwhwfgCg?vdncXC$KsnVdY!-gS#!cwx0{%{s?dGGfypljuAkkk+NRf95x7|7
z($0k!VWcHt<kZE>n%4LJ_5FOxe)JkX@lPNH!n29%w0K0!0WuK%+@|l%GQoe<*LmlM
zi5!-Po1xhUuAqj0z>tNX?CXA0y9xXF_DU)L;>rJfg;nIld@cx`6CA7vB~(nTxva@z
zBj;)-+68G$!ny@O0)p^32@BAX@7=LE-+lJ3&zjIb0lB2gp|7dadEEH#+cJs>6_UO;
z#J%8B?{7AD=h*mwptE!1aLgtG?#l5P5=Xqv!WE&qw%=E$wOWCv!A)Mb<E5~&n1T;+
zSII#!!@gn~=9_2ZFF;Uc*SKNco-q2z=jD8Z)o9t!M87DqYoC5I&I$mUwG%OQ$xVBA
zI!4w14<+vy97wPQ{!W~YZ9Cc6wzJV@W82Bb_6EDLZQHhO+qRv&+P(Mws~*0*s`)Z~
zrhB^2nKRv|`&WnenTy`gb~Xa`4fO1I=q@n>Mku)vmuZUbaEekOQ<4ejqd?PuEW>51
zy3Z&YtqW)ujdeXgOUEJyamBkQBkh0w4o~dvrthtzqi(MSFkU-NsB=FidhEZ`#dq9O
zk3IynYEWLLw?C*+zyj0J=3^&LhJ8-s#EHLGYu#`6zk>qPzw6|OD7(Y0it@AuR;D9{
zd3-*kMN2@4J{0?80YKppliKl@a^k_^ej-$IeI~uqd%8f!>a!p`a7878R`>j_=hJ<S
zM-D9<+;;kv=f1zOQzAhu!<d?pA56UA;MaSV#iBAcNQgYh<0dBJ(Y}|BW)H6GcQj$>
z>_wr@4`L+Yqj*I$pem2Vbt`CMqr>B~WBv8<e529H9hM%j#@({Dc6DUPF-VGGI-E#{
zi_j(2wUL!DUITp>tr=>K{Mv%$_}hi#&(lXZFBSk8cAt;K7LGkRugW&7eyR&tz3Ged
zXhQm;ys+CBqFe^4g0tl9>8SDA!QXJ?`tIT%jShEsQ089D(%+GbG54@+D^~tA;oJxZ
zZE}0O$QO``7!M8odf@Kb%ACjgHsYn7s$O~+d5U9Zc;g>XtF9`~SL7XnIXJr+JPd<a
zndD(J=8mPT@c1;8goms=y_`!&6@~1lAP9yPQ=vWVi1)C6g9ue;kIq!--QpNYI8ZWL
znp2mhAaO0`3FB)Ae}_6m7{oWbEVj%JQ)9S$5tN8nJi{9yOVO~Qv!hxJ{EaQp9{v)B
z-|h67WL8&JXQH}60W5;^XZvC5l!jwgCub-C$oge~Y&L@yAEbvI_)V@!IQt7ki$&^e
zoB}O)V4J;WYWygg!U7e2>$z+kwo9Z<n}=27WR_c|YziAW{lhA(R<y5)@l9c^fNzoX
zzW9h7Rh}Rv+KnJ_sTT;P^xnK%m#>_xR~oGt1zyl7<}5^|vq_UdHT5p%-7DB7KOd(U
z^-}>r_Bk^WdFzgV&;9eHQA9wp)$Zr%K`&ycWmD>8g0wN4Q8Fpoji7q7XxaDdvR6Ga
z6=h>v;Vr3Com;cPoJiD{NLQDuo_j-Sf{gdu$MwY7xp};%hgmUJ7~^=P$~WjZ1uCHV
zZ21|dZs?n+-Mh&-7kB9lm*MVHL8S`B-}C_g(qq6&Vc@2M^lH@C2}DJYg96dUeWIqo
z`B|ZR4OD5|S6^F-1CY2zL28!YNi)V&7FzG|RD04$smdMwvZ+#iS#biGEJ$uW*X@a~
zWoKuHJzA0~RO%X56a`srzrTGUHwdEIg8_xCmqv6pK!$f?gI~-}hw^?{cfEb(X{>l9
zEf*}#ZIh_b!Mn3C6|ekp5_U|P`03hkV<;N-$CDKB&3>95mX(n||7o^i+fz3kidlPm
zKsZu%tiYB|5g?rp#WOuC30IVOnncVdP9>Ud=kWQ+foSt^%xZs<$0Y;t=U8A<S)g_n
zR$evyzEq`Hhzx@-RypTKQOLnX0>o-A4a8SbB`x1sZY1HN?rrF=zZ66aW*Oe!6%KhE
zR|F$*Y$Rjfj*fUKh*<MTg0k?1MYQ1}3CZU;!Pb*7&`D7_%#UrqcLW};GxvQ*$4r0l
z>=H~?Q-jI+K|?BvjGH{<9>`uxFaM{;Y<eY8+5?S}GE3e)t&h9jZ2QOVI*#;AQ!^sv
z!If?BWuNgLI(lM}Y+sKmA4^bQ5@&mQa5*<=dCXYOh&H5Xti$CN!z&54ysat%P$f><
zzkhv_CMxZTa=MiFTUN}D?%nHrb1xGjmvwvRK!AQP^*yq^6(N+y5)Amr;OPeMoq~r6
zK|yh@Y_W84Sv*-;FVDocY;3i3saVP(lFo&uf|hiVWpcWF{=ib8?bAkcn!LPr`<2Y|
z*k^1q;UUj8&zK9CrGT&}27FjMF-bA#l=K-_R$gqM6&-2Gv1uwgFVo0O#KcJ9g9{-k
zN8ULhfh*?!d>Bt}wXDqGcJEE#ZoGu#m8Vl+#LKpWXHbHf0RZ2KR?o4{{je{$x8R5V
z-{&FgR}gTvlCB?jpxg*M1IpoeTy~^#?Pg7-K3Z_1;Z1bXgIw6$?e09Q@O-sBmS!$?
znvztpxthOQ>FE}VL>|n|dOgONbtQ8|uA6l_9{Fz;#Xh1M`Jd3eA{LXjb{>e+fC0^q
zlWQj}b)Rp|WwkCkXhdL|rn_~cha%**BP5d}2{|n~@aJF``Ah@!<w5uNMnc;HWl3*P
zgA7hueD=%2xv(xdHE1EW2CB0{*IQTPWQwufB6v3$0~Gm(mUsA?PLBDy8Ls&dUB|=J
zV+;b1=8rp<s&y2U%sMx}$?V@5p6_)Se;)kW*>ypUBPl%a^5C9ndJ-9|`Ss$7Q3XN5
z2g6@aOj0VosH^!?N0c(}KvMm{$(^0;t2;_+KR_=nm+({55qqkPswgVDUHYwXK5*X;
zlb*8Tg2$obWiH&5OCwtu{<O!V@Qo!?m-nHme{T8fbaQF<7YL0Czx>!#s*9&(q#9Rx
zAtX^{Qbi~sB;~N-hgDWmzBZT2hj5<AW1<6M4QhrlIqwUH?d`8P0B|U<#;v<<s<!D@
z%bof&e%Y>jFp;1cOIhneip6t*_B$Njnq^;`cTgNJDTUtUPNz-V3@8wrn&j_ZfAkSs
z3_@t0$Msvj(stQ>K$oLS=40>5f4{jG(lNbdEUj`}9<H^;{e78eU4=xApuuN&<c;`!
zB`j%OK4dR>vhtGeQ>EnODpyk;Ck&_KxpG)C8u{GA@sxi2#_zMv;0Hqloput3o?h^W
zk_XOp6))xWa=@%TWL1d*MaiO}u&okuYP1REFI_d4Ckt*cK%L|9%r1r9b+5+6@!|d+
zbtjiU8Z?1-qkZRbXZk&u!E92=M0{PqX{zuwP301Q@By#WMcGsd!~df6(@}ui@}+ps
zUjFOXyi!EGjfs`0;JCnIrby=sUYr7O;68SDby6+tl-I%7WjR*lRz>@Da6UhRr@<=O
z@yHh;pzwiJ5B-pWm(vjyY-<fF^?=#~@nYHT+gAr<8Reu8l0A)(pkH`@JqNM5*+bch
z0NVeFf|G0hCFgMRv>5~VMOmQiB=kGdfD3-Pqgs9FO)5AeR#6IE2uT3vxvLz|v)A9i
zlqKi?=!YVtyyb@WCxXT|I=Qe2tevUl_i#b>CxZ5;BE;4gLju3fBsb%=uSq1^Gxrqt
zi(xKVcHctcSl$hfgdL6|^CyDNiHR->AcEczkcmxKx7xH5EcF|B(b7uG#PPCRO~?fy
zJ0gPiC!)ds{r5E=wX9$GS213GIMGA<6NP*N%#{Iu#eZ)YLPh`n4E|l7>SQPXEr;G2
zCHed9{YRvW@vohKRi0`j=l)mTmnfz(K@PoRsb42py${x?;>7>=nVrr*(<;g%d6fY~
zA(f&6I|k_9OUU3tNPRx|x$}`tYRbQ3I}rSdI#Am4klOR2N+uxwHK^?S_lNYKwy%x<
zjqm?Y9~Uq+dSQ;SmsM)nkzu)T+!S@(zgzgh_zaA4!5`=>&u+#90#)4Zi(AA{J4q!K
z#W#xckmp=W0yf^A@ZBZSJk*8HH=3(0q13>bnexn9p6N#-!Z{aq%44`H<bMa;mLHRg
z5K(M82m<C&XMLhi*#je${bL**8wWaym7IBNp&ymfE91a|<|mHqRZGQrMj3bGOuy+&
zRk)v6rj@bMLcoJ{?Gn4*=xk*jHh|)?=2~;ze<AZe*8=qe;<%Wat42B!Dk<)3>7w=|
zc*N9Nv-xB<i%Sb`7)~{%#=Fy>=g5+O8iDpF+EDqe2sK%K+E(wdaw?(ASL-tINf6vQ
z#$X<3A8t8kzLq2Vc<u2D-`wGSu~PaQ{Rm-762@4gECFrkNS^Rpa--S##P1LH`5-u)
zPp!;K*V=KI*yCEOUz3=UUq)kk!9Y>4fF_?)Ih4zp6asAv!VrX4lLifsN}B)J1bPQQ
zo~<&#c-3osL!GTR;qmnO^rUwYR5ut8$eQrMc0Ip3(e=33#lB!Ry<D+j&&;G@KB>N)
z{;hlJ{-D|R8FRV2HTXz>sXMivjOZ&WYnsN%*2=%>{iNHCjJ)lq$^8Wcpo(=5NW^b*
zW!Q@T4Bt(qY^d2kndp1SaN6%aQQ5)K#{AsAWt_6LR22b_Q@)*+alvbM9c5q~x*Yf&
z-pS7H6)VwU7(9#{@pk^oIrVuFzncoRSiy2|^{m_(0^e$l2oo6s&CR<Mlv5JPjp6EH
zXDDahj<bkech?oz8c86~@%dN{kGjfzC6igqf1=iv;Y}YdUh#3d64133+&Foj^btx|
z2paF3&#*gF9o?)hRTd&z!FPDZ?Q*K0^?B~VW8zdn?CQWrn;N<4dUMdbl?CNPs5LcS
zKRou;+tT|06xioH5WPAlm)#&6vaWvfp4!fC$R|Hgw&gG$9me(ci@eb0uWHH+#)_Xy
zGrrYb#D9ME)|33X^=?V&JZ57$dhgmvBRHA;URO?8`3e>Ii?_vNf2iQg__v`u;{Q0#
zXWhv0sbE36iJSw18n5GefPduVrUJ#L29F{sXN!?aVK7U@f!Bm6A^>FJy;N#O|J*%F
z;A%yOB=9PHYcR9c*Xq=s%zWdrq_$lQG7)kZB=nTq-2sIFCJo;r@I^Qq8|aoX@@uSl
z^dDN%d!zyuphiJ}D4lSA%Z4R08+;w7Hlo{NaIl}&X<@OpXMEVnw2fvg<{wS<wJ0r<
zoyx!bYL2UIJ`E=CWS|xaT=OxOxk7i8G6(6?avSw0ee0A(8o({9TBuS%T5Gt_U1itW
zJ&0a6HtJ_dZ=2^e;NGprK}<iQuoGDvNvoC!IzRY1US_u0SZ3G?;Df#qwz{jUoHgxI
zXX0e`*Vixw_)|7(06;=-SGY%^dhnS#4_8xH-f_|LsB=mYBwbT_u-_${+iQUz-e!6z
z2QS@>iw%$c`5%jgxm_6L8n?mtR~2{4w`#YS6F9%cu4ERMvhD!NbSa3`j<1V|+d4~(
zrXv2*dfP|Js!6(8zj+>Ql!+4UPF0;J_}cVWN*u+l&b12J(;0|S760QwAG0*%CxQdx
zJgnci`MNp*C5+Cok4>}IEjrkT_A)-VbJ4}5bl3(l?g&kmT%nWfz*AdO{v{WheWO7P
zaUb2W&$TKryCwO@iH$uaUl1bN6nop679qZ`G~8?qd=k=z<+L26eA=a>3ad;3X-XeB
zbvs677+X?53W^t(?E*9}VVgCefi7ofWqN$pQ|X1%g`YFU5K1yW5$ngx-ny2ylndpI
zbb}sKO9ekIKlb7qVVHm}Z2*WelKPRPxM!MIc>3ZvvN0x6a6W+WGfZI0XFBr>EAT5Y
z=ny-7mDRiG@%~=l0s#7Ed6yVn7D*uhLDw9i_OC2B?l6&sk^(<0FjON;2df|s=mjFv
zr=^gZU(ZnKfU8tELS<EFyPX^nAsE0lq0gnW&diK*wN>JKpaA^wd6b*`SWG9$4*&`I
z1C&cEMYmPh2hj%1$9lZE@#n?_ZXgyBGlGTA3Tsp2>GP(p+RAd(EQ59n239GAE5`K`
z0ssuLY!t)rS$bGXaync%OR|Gq(VlIOk36B0{>LsIrt!>o5ZFmrLeApsU|r5O%heH@
zyAk7O%?RV%tUoQMvI9vME2LfrY@B%NO8P<cYG!M?rkWh*CQP$4p@J~t2WUpd#z1N3
zFujjN@fsm@+=~(4cV$cj7?0&M502&?9Sn}W2cJ7kZH>InAbHbc<41o!yF>fdJlwG^
z{@O&OdJ9APy{oYpkb1{RRO~1YlK{C6tDG`l{OXPrOT$bhta!ts6qQ^o{6ew~RS7X_
z{5CA%=jVrbsl6;vF5cHtJ^S%z5fmsDZ|4r0*@DV1?1qSzk5Pc<Fh!`sTi1Sq=tj(y
zE}UdsChopQPa*&lRG%-k6cKQ{DymCCkKSg$vQ)(s$qVl|jx`goIP8E3(B%HDPRJL?
zJ$5Lb@E9htYVu%iL`f!6`rpY}`s7rv1~qnWy?y=OCa@T^;f<YVigTJnx>z!Un{<VH
zo#6*{crq7VH!(w(JVck%ZAHFRNA$b=z#1d7`Lb9JBk=O`ss|bON_{@)6PxvI+z?GN
z&=cGj#Fu)6!L<~f{^yh1R+P;+FCJaLCqim3hu&9RP=Lq_jF^U==B;c#nUe&JAOTHk
z1e``g$`8&W^o|;U1d<GX-<2P45k{IP_0_^AYRmQJh{rC3PftcfeC47u)}tzbYqjy1
z+aIqEnc0JG^1Ty#A)=;bDf=Q5nzyg~bZQ|AX@J~+uXcc2Q#KYmrsM|*>GVY?2IN46
zWAhulA4|D)AG+AAIi2UfwWsa&K$QlCLF2N!FZJOE6y!gpFEw2I+FI<>QGWaH%F2hv
zR415sYj6KIkLkO+>Dxn<{}GSRDM5VS%Ljg`2Y>hHB{(2Ra%orFGMh;8I{K-|jip*P
zDnuGza`aTof~h6RFnhNk&0GhxwB8v{iX^+JJDDYW-1*5`I*S%!Vi>N1tUf%>;TJ?v
z`!ZlSfY8+J*qWcj7#P`-iAR03q`-&Y34MQRIo7?-KrI_{N5)R>5*#ZaE&s$}Z{57N
z8;rpQXyc`mtvZdBK0S3PybX+!?Yo$Z@kAkC&;*B-LKwC>e@||di#8~9(YaxalG%%I
zH@b~IY%%Zm_j6&x0eWsb>F=<YcpG~gc4ukHU!7sd+Y_GAJ2OoSs18mZ)KwqV7fwG`
z+lo&c9mF43an!G0{_AhvtnsX%;?G8p{(Lbus|fU$r}}r>(;RV2<%=<3s~*FMv}>q}
z%Z(k_DdJier^d;w)B5tt3lj@BzY=ZxI!9DItLi5!*4wJ79_|XfIC^ypO!g1Z?cm{L
zP6DMO|4i(<f6hIvBkODYjf!8pD==h#C^U^!m^%c|{1MCvDnGfcA<fA92vwg?!5nPR
zp}HdA$*qNe09Kx+pnu!R@<`Gv^(B5uW`;acoo0v=zsFsqDMvIqQXV|MS5_QCSJN{q
zQhniBoZr2V{^suLO0hWHO_Y14zB~J8<YCP0Hn+lR#gl7&YJUC?O(D&X<m^J#^CnHJ
zbB$9%_@e)504=^jH~6N1nwoT`piIYG54G_z$?!PGqJrJMA1381Gjpv=`DRo9WO@6Y
zfm|h4^RCKwF$08#4z(_EJTIn9fBB2{!Ms6As&Q{@b}~WSlC0ZIKAGEPkG9K=;#Q92
zH#;_7Sx8}6N<`D*$%W8r!lVsB(*hIWSa-TL`T{=H5bc$)_jA*L8I>BEy{GM{hgwYQ
z_>{~m8TtdwIs5E)XKi;yBtqRGOAfO$hG#?=EUC5GJ?6vS=f;Qk<<G96`_j1934!r_
z6-zEFdx?eK_(777^>=T#s}Fpa)rt(>=KReakHDMY;D_K(Ca+WWZo)$XN@>Q;yp&c<
z^r~&OUkyW-efe|i0V=eUo8A}Z#GBdsQ`_~r!SLVY%oIQ^`=;#ZauI{}ZqHI9lcty9
zL@F-SW%sVNJI+<hmc`!fZazYJ!!x4OOB03WHbg#{7yTS~ev<U+w2j17mEpi!8>(M%
z(xihNq?fqbY}o1>_V0!?<<W9YZXXKCx|w4d@|$YF{Wt39Egowho;Q!aMv22i)j8vL
z?fs-+=g6i)_$~uuU#lY)_;j9Dx2Gd&($CGs`M;<_?`ng`$r&Eoe#^Lda5raFQ`NOH
ziQj$pgQ>Yu1wkiH1*zGzr*gS7;*`(kSb+s3!K4pzlauQC=W1fav%|5;DOc~~MpBQW
zk=Q0zo%wHretX5?*h;x^yvj62{i%?CzHiMbX|A2^jZD5Yu9q_+3%4)j8yspVO~zw!
zdyNxCf4CUUJ-cmDA;(s^hXELrfKMG(lgs-%pH^?$iPrje!OPg%g2+z1I(EqnSNnma
zp6N~mf|jbvKxk_F9a7Io9YX-vBi5vxR2+Y??)!ZBQ?DM)|GN13yD^-B&Sp&)RwZc+
zzxM4;Fq>U~Y47qq6ais%s%}r6V%Bu}Xa^ZJ=stOVSb9ulpInTe_q=exm)vb7WtZZy
zhGRQ-=S>yaMMZv<Aj|i$#K7GZWS`H`#0OV|U&W|DSWAc1OLvZ=wvhNg>Q_XMN^Mm&
zP9JI7uOY?N9LY3EZ9S48(5SilDapTFxScAfez)miEPc_oaC_;!(B`@$Ffd%KqHOB-
zFO<F1^n43N<kvCx!jGGsk}Yk~pqUkp{n%*U84DnT!2Tifzu@wR!JHq<r8S<903CaA
z6s?Nre+8o0@t96SN;x?tEv)}1CiWQGnEr(LwoqIRpBgQNFB&hr(-0b&!Q)YKw|QO9
zS2hf#FfX_hgzA#UU+ZHd6T4WdLF!%qz|xq`>u_?n;3rphqcdJ@#jSsvX*!v~%iDb_
z!ch@rK3d!w`BrbM@3DG$23lKkuj%u0R?M;rwP^I-%0j%0AQPF+<8d?j+ledQX|Ho6
zQfhShbs}ShshC)OFpVgL<~H4n5()gey=Nq^aFSWM<%_ObIxZ>!!#hW9=hHnU0k?zW
zGy|l7^H&(`1|8SCy=dzDuhmi`k7q13`PBF>`$f7L7bsQVP9wD%tgKLBCnzmYf3LsN
z>+n5edTb0L=D}H)re58L;h)J4aePB}dtCRseT&cyH~yv>adbLdc`}9!eyuCkfeP*a
z#Qmc>abaQwwFDB7og;)*N&oZ4p%~m%s-8~By9EG(;_xXgr|++~aeVnwp*D2mQ6y(8
z?T(N@l=ryJ?FUD0Y;J~hG5zD8qvcQLeV<VGR&2Al5_^Qa-N_2=4*k(T<Pw=NVzmNb
z6>a2d{8txxGnd-1%0#u9EgT%r*P9&RLY}cS4xI@8L?Jg!VK%vPDGTqBVLY_U{0nri
zJ%8wi;e+pN4h)Fr4m#ml-VUR28TPS&>vPQq!l~x!&~oI&1auQhF}@ovpAYK7=d0hj
zDaWLOP84SXJRnDV4i2W7-u<N;IhKbBP8LfVNmwV-F?UN{mXz{qvT?iel;A*Iw#@6s
zx=+QWl_41*W@A70zUwh55U;nDG=IL*DDl-+f(2xV*)YI1gWK-3-vb#H#hc8@Xw~EV
z#V;c6ZF}L1Cc#$#SfcOcs64X(Y35M<#)W0MQYF*4aIbwvD+~XumVr*_{W|x%lt~Qh
zi=`tLpIcNgf$-JrS*!qvSuWx?jqO;OWH+a?jS4?aCm9w)FBLnRo!QsJ2pyQwd=Ou4
zkGqR}Yq!V-xhI)*>$NCnf`aN-ii+k(iq@e#Zx#-Ev|s_aS-v6mN3%VXJlR{mpBf8>
z7OJT=#>`f%Cd<Dta^_@CRWm%Yne5Ha^!@Au5I&-(JYNJ8BjJS&mR&NN>vY-T?A*5N
z469j7H9FaFUzYpc>z_gzdaLN~@x!Rp-RIVGgX#C(;0Tu6&1D_<louR2YhNQFjm!Yx
zu1w%NF#rs8<&Pdk<DagcmeyvzX7Hv@yDvAjAhql+)_2&$DNOY5sIecpzQz2XyZ|gs
z9u6)ZEFe@c4&O6^*EoGP1e)Ju^P;A*jW<8=Q<|1SxJvxz4kIfvc@9(6ZZN^z*=60~
zj#kQ?*$gvOVvup|PuH4pCqwz`40s0{ddtvr+u`eu8#(AVabNtxmDs|XKDHnNR$G#*
z$twLT3Am3?HDlmrTrB1bZC@$q7Yr&|h^S9K0#OhBnb|U*FC_Ew^+BTh!*QC~OKt66
z#p%_JV~9d3BmVBK{a{N_PQ{i1hXgH;DOeJQU0g6c$VxMB6+y>q6mp<&W);yeSFxZl
zHqt+w7DaJANE_-e4T2^H_eF0mUS<xOp#7oW6&5`>N!J!uSCdxutv)%t-DU6^!C?Pv
z95M8Y5(Sj(4zJl$P68L9Cro^_N(@789^3)~(r9k4(RemB_4|tdUgEXh@!qmcTxe|f
zj+p80rcUMMZgC;soyYQGcEVI?Hs$B_t^tr>m<wrw#+V%WW-tf%<Irg?R-2%?sjJf%
zTBfd)2lFJGo0i`Uv)NtO?2-aqVYHOwjaakE-{}B7=X&u@R!0+RSQeHWxH3Ael*d%V
zQ4Pk&Z~pWNV11?Yb`J)WF1QFi{r1T<R<N<Ev*W+Rj}8?lL!A)KQ0PB8h}RiE?Apew
z_@T4Ly5r(Y6T>?QlzV5@JwL>p56aV1jh&PI6x(dd`5&FRO2s3eVMSlG*v1VU!b;~a
z`D$O}Eeu(*RlsN~GQw30zr@<3V(Jd-0Y{O_k{IF#o!^o<nj-i?$9~fCwa7WBm@Pp|
zxBeJuRtxirR9Es)H8pgzk#143ve{qh<GJZMzF`@6I;%Ew`%Lltg&iJ*k;27x^pP6e
zx;#Q&s9WM|Ja02lQoR8QZKzSIkGr~PF3{p^o$4fmAU?EVGowTyJ3xnZZ0rl`k65<(
znH>cNfQJXm?w^8$FX5pcW(JL8QkhiVj`w%jomKx-|4iYfos<rVKT@rnE}AS$QPIS-
zf{*fAXaxiQWJ>f~;x0Pdmkzf^YrdgxZh;FS0fISyH%>t$b)!7omQQjOr9%-M79t<e
zu-xbD^a90kmsYVAedFaL=(SEYp|uPPPul8u3!Xk20!xy8WNk;LJ2-0%?(wChSSp^5
zo6}c4S%h<Il)Id8+MJCUJOa4kE$s*(i$~?DU^G8w8q3+B>ZtioKOZI3h)45ULhTgG
zFx2GmAz9gsnT~xbHC#ERL2`nW*vFrSs|^#mRecb@cPNKM7G|JtVX|Zu6i(GfQ-0d%
zF^v}MgE_z)#RYp`YXBjg9j2C!`hBr?24gj6ZC0ZS96IHY89S$qF_jgXx!N^eWl%EM
z4~J{k#QFLN6K%JL3*TfN&0^xjgXl~@_>28IwA))24pF{KU(_m5&|kzftxDJilAGjH
z#^E3KF*nxlkQ5NH)gL+SCQd}S#=&<9AEh%jI<DQ59tOgT6+gZ?FaldWN4~<qNYKk!
zcXJ4x0pF|P!;59I__;|X;V#`?GFE}M2J5pCZQ+NlrAZz8F6V+XhSqqL{*-r}aNfK|
z{q3BDTCA(v{AYxiW!b8%27AFrY7Lk7n*m>SvB|i&;Gm9L`;!6WIEHE|F}-BL=y;7#
zY{z=qv!LnPa?_cDLUz@|)-!A?H>VTf(#b^$?)OLnuXZ@3*iYBZnez^8+F$|)Oho5K
z8;-o*@}XL({C9k~Ug&kGiPX6se;RLZi``2XX8stm9pRo#77i`hLyt%;-pclJq4WoV
zWnRwAg3Ua64pV-r9>j4CkFTjFtM?im`g-9Md>ZLrJg?j?5df{Y6pcPtEcIpesx9Sa
zV@hcMC(xlb1b?Cu0{l}CI*k!u3Kmx0-;jc!*}kA!aY&i6hJB?xHlr=(0U9d7c}sUY
zHzsIC{9i&wjKN8&vjt<4#S8_l`~(rbXo$BK9ZM&~1qU~p(K0F_#N!jM$mk<MjCM{e
zhC#!kokF{J2g30=s{E)2e4iSe3w{JD4L%D!lEz~ldvMqvf{j)ydO5(%N+A*+X?SxA
zyeNtWB^25cVVFBG=K~=q(9ipK6nf92U0Hhu5mQ}Lz9Zv9rj8KQw=lGBO}673p^pI>
zyz*X_j9AP_p;TQnIWV#%(<YD^OU+)J`KE!N?t%y^;v3DWB|R%;Q&+02z?9viZF`hq
z!IhL`84g&EE2z$JHeoSRU*(07Y`m7}m+(-fiw$Uc8W!iWw9tI12#@^kt_m)*`vW(T
z)mD3!OiGy%2DH)Xb__z0*b^60R(V)Q#W}W3P8_7g<<Y>w8V4sfL0{Mao2UFzMisKP
zru%Q<$fFI;)`oWlQ~vI|g-%X;Gv<vA<pPi2pQrn(C=R;U(a;NEGvB-f{6Mm-@Xooq
z?90x3Bmf+*MxETj4{jSHQ&T=1-<pQnZ2re}5MS~@6u3A)HBl31BydFtN!`B(h6ts%
z_A(lgb>gMCosodx>(1PO^%+y|YBLTG`!Qd!U7}7Tg6*2q*XIC_XcF)Hgn(ct%L|M0
zNg-nmWn-TYNnyz>hAbq#f}*YS1Gany6cV7Xp=5TTWNeo;_;$iVe!n1soEVX0?>;4@
z4YvgrRvR~|w(8+Iz?T&g;8c-)2|v1xElf|6iRarNTn(f(yv*o@Y$)E<>oIKS|Ks)w
z@y*%bCRj5Ini$Zdu{*Kv*ORj8s2G*XUC;x@(9n<QAr^}2jp=`Iq4!|kAcKxc!pP8*
zkj6`5GnRGr8=zF$Y>+%TiK^PduD)mw%v)}L-MK5EQ#C**tb|ISzw3=5DXusLl_CEQ
z=c^{{1wuZD`5g$WD`It4lp%uw_{gR(zej1tnAQ$hk0XI*JqhbPhhAIkF*`|#p-W){
z82!7a#0?6Wk$~XYT3xxra+@9JoM}6cG(Bhl2;k+diY|mCN>23eU^X&48Brix?pC0U
z_sYK91mEM~e9zi^-Dq!%QpnOPbVDF!f6e8f2|*=}g70cBF!*<1okQet`#Kl8Op%&m
z7!%P*mqJ+9n5d>Wv8o<G+ur%Gs7<_o=6d^ku9|j@L2ag~-p@2Z7bcBPO%4BjOOYKi
z%ZghreP%v+d{119+l7H$)p+)zQ3$?o{|7qri}~5uhZ6+R?`tkQKIYn`s^uak0rd{t
zJiWJVoPPUce~{`5zYk@mu~x1Zg@DdA7)6>mEHL305@df*IKaJ)gHJuPMXgz%QbnNo
zV5vwuQfED7DcSvzaGu_^yFV=QZ69RHJ{dFs3mfYX)leZwl;08nqNhQj%*dP^1|lMD
zq}HN>w%8>I0BZEn?fm4R1&lBH{!+Ev39=I5J~*8Zau0(syEq}w(5zTd+0n!hzR3oG
zFqY`{<d6ucE=C9bGMA?HJ(m$NXV7B8;9<fvln%pR{EI;MBA|qjbP>glZJuh>(3b<@
zudUa$=^$ujH()n&Qy*S1^aQO)Ns&Q;a+OdJD%7tI^ne7_-WTh0S#{{6B}<?5c1$#s
z<lKEFbZfQUonKFmkiN>bvXLzmctFEYg?Fp?18o{Adb$+YOyz2Ix%Mz<18sDBW9k0t
zvxL8Vz7F0q5o4whBt0GO(swoN<3~<HFkp0LBPiTgs@3D{Zrpb&ge;$+@@%xOg#bGu
zIsXf6REEM(Hf_oB71EafVBts01>qZ++`xg)02EhjY_zPQk&!WZk>Gh%IS%}r^-PmZ
zJ$$E1*ms>kz5dc)-ynUpZwqzto}tx(GR9BamQnN8Li=leUe}>lALsn?W$C<p;t7Nl
z{T)8C&Kw!xgF-$ixXf;=JNXNq7OWA0&aw(9)#VRWo*9mghJYjLg*?|(vqMJVth3cj
z4P{Knz*o95p$H_|+B!L3b=HxY^%q*-M&(}hK9eIfXl<}KB+FZ(xNmJJkpn4ELWyA&
z9F!P9Gt9!%bh%-li$^<7UbwSI%bj#{ITB{+Ypi1zPZ}N>GVmpW-YF&Z!Uq@f#CNZE
zA4^(U421>o9+5vat=cR{hlg%-N$yTM&5Y<|y~V{l{@ALoL+f+1Fw=yBbWt<tnrk%K
zpSM;%<$}plzkhH{bC5?C8xGr_^BFpq<8=fC*A`=lKr|*5#9r!rvEit$&ek4u<5@K~
z?=vA@e*avD|0dVu+}C)0mPywxQMSIwMOv6d&dkQK9b}D<9II}^O|O#YP2=P=7BI+V
z&AqBp3qlL)gOr1tBvMFTXkN{-TCuyQu0lQ3&=9J;?1fwPrYwwcZar#;U2|U9!5Z&j
zysed)$BN#tg<Frsqbnd}eW9`%p?d8Pn$X`asei)B-OTCW**mvSIA(7nP`5Z~61PD6
zZZ|i7R%sW|wg!_O>uEdaNT8UiTl<;Pu5A>SL0~p=mo&AnMf>xF+eccYfRU6=zMHMw
zq!%>p^UU1dt=yItme=bbc@P@0RQKTQLrPXj3jtPNd8dB1gA0r3WT!eyJQf$5<HO10
zT@j~my9&vS<&vN?TC@|JFt}a=5>p~`&12a?YSN+tjPfx=$DaK|r1YL7W3-D6>V+x9
zfEZj2#eLTs5=`ypXs?;wMr6%;m40cNh)<;F3VwY2u6B|kEt%>)%w_P&OTMnl&bho>
z=-W=H+RWl#CWYvqozX)~FSl(JnF%26WVPGy1h@*7qmeN1Qp=|s?TZxGu@3tn(pGOe
zW2<q1E_IGag0@!@2_aILQI?$;*m}Fe2K?(thAAx0h4S5@2(AXl=Rk04F-=v@McdVx
z@<YPTu>?zBh?1VYD9vtaR)8L6xzTaC`?UKDgqoGHtz}PqJItM1+||T~%Uz+;V&C&?
z;Vj@wp8eP>v*PvbC4Bw$VqlL7!a3t!OSCv~k?v`?xWr22W#>Ww4CPiCPN9x$-?$`<
z-t}rQqEvo%->P)w-Xax!ZMjYFHFt8!Hd+c1;aiT-*?J!P<?Nt%VBye@Ks$NE&v(b0
zKPHuJF#624R_Z<ncHg5@gd7#`0?R2$Msz~#=@Z!Br3AmZGflR&#O89fGBVwbM6d<-
zpzSCAk!!DZ9&T`m+^N}zgPntrLgs%}p%tjmbig`%IajN@h_iJJ5|vTJky@$skWgXR
zBz(!{Iw@IVX=NZU5}K?YjPtW0JTmU7G37tJ<eQ{6!7AY7Sa`fT(e{4E0t90{o$h<+
z3NHrpsPD$ktms6)J=8+EWE?PM-d}V9S%(Wlns9feU0aSb^M5TUXmg>XoDStr)bT}5
zuD*mDwola;PIGLDIUj__b90W(<+k&*b)zTqfG|ldv)sGRcx(We?-bZXgu|{+X>{`B
zqi|il8%OL=fs;b&^HKV@>n8W|k2F#Gx!s#fNn+%Anc>ym@sf7q6U^*ldt#ic%bXTw
zyi%no%MQdo(1_h$%Dv@^fKKwapTHQ&%i-Np68~Me{2DtYg7$xk)UUCzNg|*)@cVx2
zRWC?=J3xwAk6udV*8D7{;f3p=1j6VBf_a%2!z8lbv(g9q)u%NpZckcD78zVoS<U1i
z;lHCB7${IqhuE>qo`(q(&i>e7FA{eTDxe^#j;{V)T+JVo-wEC3?D|?A)pl8qr;A_y
zLSM-tgtVFO@85>VFL&@4kMsZ6BO>S>U6TJGJAY5si*Sr|{?19m`{K#U>4BehHh#K}
zyyvQ^#5Z2DzLe1ZMAA`z@f`mrTCA)yogn3?7aj#EGGR~@f1(gu%zrRVh<uMSrpXU7
z2l7u5DRAK)#J?hhzoMs=jw^*s9|YnqtTOPafdqRd;TPJn9;A3gOw?l%Hep>mG)3|k
z7qHciW4&EcE=Uw_Byb_mfPYvH2;d7a24z}jwSviHilAGXrF473Xe`^O_a8kLI!2&$
z%y#V(K7Z_lKf(Y27BPzJ->RrXI4a;mZ&gS@AOIrntNZyDP09p$v<scP=7wfMCQUc4
z_X{b2SU0<YWed*k1F>F*sX}tdZ}a&Py)E;IvbSqS^)KF|9QK#rxds#VWg^nD?`<X1
zaeZgGcXm*A`KgIJ*ZVt>R7ufS?S~X84sjo3TA{)``)(6fu>p)@K$Z6%kZ0AUKUJ66
zl?zXfr0P__kC;pKU34P>JdK_XIZE!Yc4#F22EX3CSYSH}TQ*^MVtRQ{X#NItMl?i1
ze{`k%x`8YACbR)xJoqemc$Ew-F%WU+;~jV^YkyLJUCa$vX%dzx&~G|laX#>k8U0aZ
zD0{QWMfvb3GYi~6dqNkApd}}|D}V?(2j(w(6ha6GDVRYqH5hH2J87UOiD{?+jpT1o
z&#oN-R@==GplBxZLW|_jkAN146u<=AKF>S<?#rlRX)Xhz2Y0uMk6$_IYj@09e!0NY
zTLMmCUBWH#`KK#acDV>l8WfR8Y3z$XQAuCoZ|<lm!>+LpmC4FY8FuT1;);`%ODKXv
zuSwkja3N1ZM#x_{DY@76To!bsiWXUpEKuts;%LGP!WMdTDqk(nH;2P~ARz_szeSf)
z7Yb$@5QAT?BMxGb3Tgx)J9LL3!a;@!g$l_Aq|l!~PI-02J7;J8`NsJ)&?XSO+ls5E
z9Q|epm)HAu)Y6{OMFG3)7RzB7a#nN3Q~<yTU$5A%3O-cYQUxybc7%jdTkln>Buyui
zpRJDOzMe$iJ{Yd7A)amAr^ULEerjIEbsb}_{{?OUEe@{Oo$^8uTEEMJ4(qr(rv+^Q
z3v6a8Yd}qkv=|3QIZ8Qf7M)WDgiBiQr&OCC0G4%0_Rxjyy7zk9Jps==_vc@K{E7lB
zUq-hG5YCu0kK@FGyR{L5GvpMN-z>k)Ih~%z)7_8o=e2Nj-op`!ksHUBu$xVGf7so=
zT0^UVta>c;d&yS7Up9UX^1hVJP+G)x7;Lz$JNP<FT4AGm|5}bVE-`7rad-8Mt%C=Q
zna$s{%^eEyOFZCR%P1*(i}{$xiG8-K7VJ$}@_kmcl-vp<p=YHYo{z<zm<x`x&5Ge&
z)-gDJ#i>S~VdT`UsIcv>Mz?UIrByW-n445|Hwgpc*T^NHi2($tW2KNlq|lrtG-2pE
zxC9!uW|}y%?nziXEo8J3nF(>PTW!M2dk4?Q(Srm!9O0*SMdhThS`ujgrx6;CldQ9r
z%4M$B@bswrhe0kB)^wL)7o(|(V${fvtgoKj=eMykE>My(KF0P2aq&s&%0liI(h*_L
zefqSCik69Wv3R;1&pP_`8xAJrYH@E?J;z};It4HrEVqK3z0({{7E9JwPjvU^CU9C0
zSyvLzD3l?#=#YX$2aNW~VdKchc6V3>d$*7vGi=PdlgJX#)l_7P7Jcq$<8iz<)va4t
zjG%Wd)D@Q1GpuHe11%l!aL~js#5`Uj!%_1q2#1)KyD-FLm;$4NG#ZJ)F^k@o8=;Ke
zX;Ha#yq6IrB)etM{zM%eBjMahbsn!Ax1r+Umj+)M6t3aM!(3Bx)<7X-tde|eCqH)i
zuh9{?0AK15kF&=uSXpR&X0L?stLHuap|1IL9o#y-MENQh;adi0Yk@KqCyY2;r>W-Z
zZa+T@;HuMsRMh#blK9<c<HCjiaqxwNGQ<`E6o{I(8k>q~qg8_C(Iyg7L>nOY6B_m_
zGTK8Aj7sQMuo(iWJdDeAIgB>!DjHj&3ll2VN5jDZxl${NMsJNq&l|22Qh!p!*rVB`
z-Fc<+!t#`Hd#>pxTmQ#a7st4KF(PB|k|%7BjdFF@XpFF4iA>?|7@a(C4dc0@J-<#y
zZOpl?i;sd_^;kgfbi%i6NUy%_S?}7CaGA7Dom)#YeH@LmF0_RLhurA2|0!e|JX5VM
zxwqmq@DgD9@!*B`wDdURC$^sc+!CWo=tO(<urrW$qtts77DnO>|Cr(q#JR1z&;PVH
zI5F*$J83etlTJtu`~m^EBUn>@*j^5QZ6t)`^Zt20sT{xuFWqr>hqofX>VDJWqaZny
z+o~F2l`=K<3lwPh|3c4DT$XW=>KZfMhVysXbloXw?@qp5#sD$O4n4_Pt1>AkAi#{v
zF~8|xaw=i~!Rsbxy_Ykhs-k)BXwl$=uVHTb7;gBg`^2N-Rv>kT70_@mkIIqRanH!P
zw0Rgw&X?YliB5(h8ZQDwsg0>JOP0sUz%V0=wRghV3}-`U&k%nS!qL#gZL9(SpwyCq
z1Su1jLXtla7yQEMfVq$l$*qL(7L%>AIq^{@aJ5uY(?4sytZ38y<uC7A8Y7{mez)vq
zCxpsxKsKs!lX=v5p~JF!67G0N51%Ic0Y`w>XuIXRUY$7|V{G>f>X&t=8K8oG3P}U(
zaAZ^uzjRky-y%?tYrb<^?yYFk+5fzm2MhfeTYSV}b=cVvlae1GkTC`rt<R2%VEC)e
z<+Tt7y{6idVO0+Y;MSC`wTc2h*D&Wy24a?*7yI4^+&b1?SDWMH!$)W|$rBzLw5*-Q
z5x{^jZzof^yFlw;L*}ECb<?rbY88T2L)og7eP)aIk%{JDj&GXr6Cvg4r*j3j<Zue?
zUaA#@J?&Nc6G7ndT|LvK6^xy}2|<tpUAFhU&xN+5AWZ~xICgo=?-a6@RU{d+g30cS
z)vCdSt|g!ivs>k_g=#?rFJ5v#A=TK<IP^cfRRfSaKkmPC&;=TA7`+_uLsl1ZFvyI`
zOJ+Sg6<Tj{`kuF14!?weW;?7#!-_BJ1?c8~1S0ie{sIAZt>8JNX^L!rr0M<$0f7sr
zV**UDej&v<+j(XW_f^Wjx+fyS5VM8H+q0z#pPzGukJW=DkA<UY<w3gE>JM?`ebao?
z99<EhkvmTFCdw^=_9rUQAdjpX>2Uk_=o80>qXuh~>s<$cvsd^<zTkR>3SFOPb&knq
z_(PrhOwE_nm+hN}SbB`3gaWh!EuDrJBVI5-es6;A6N>~ItMy1P2?pp<`j)Dbp|Y6n
zL#vDc{0Y{i;G^a0uMPL9dvnWBwH853Ro&K_!uD1r2v=V>eaK7mD3ur!_&kY4?M2p%
zWI(dNhbyyWJ7qDi)9fx^?ts7oSfgJH$LYC_%zHj4&KKQXm%n#^vHE|2X0q%3)pfP{
zg}N<{bc`ynSF}6V_yC{~6hwCHRC(Fcj9;SPT4zS%?R@R8_(>sq_Q31Yf5ms&++Dlb
zyGQh9-bYpGKifI6j#>Z;K*LHc@YtEn9VHwdZYF>LM5qk6qq)JhJ{oX<FWd^^nKs?&
z*iyewP${q_)dxFrz4Nvb{{kh9q>CjC4Yo$hT0S9<dR(0^7FefZX=X5N;(#3#G!wP!
z^y4aUCHwLhAuS9O7ADmkEsT@%7CYnOhIF^ftT|mkiF^9jw`g6TG=j)R)7Vayl9Nn?
znw+PCh6QmeF*ys9>=%h*>c6g5X8-yOVblJ~hDO|Va@aT#Y*fso$1QL(vbik=2N*v(
zG(zr7KL1+ee>FTgiYApf{s><`qojU!9Bh{FiIsN8OIkbA(!fR~&_;o0d|qzWkS?0^
z5um0WAEt)n%g_mQ@cTtT>O!D7PrG@jC0L>OPM~dZD&6&v^mFgBy*Hg-&F8Jb(i4o}
zW&M_`-osgD{C*#GaqYG1hrN@WGx5Ro9g^?=ooe&+lC!>(%@loA<awmSTAPs?qwz|T
zgF_f+d8p6~2TgDYH924aV_1hDFP|=}=7PXme92gQ%8KG0b1vC6R=_&KeCC$?F80bd
zg5kbcu8w12LCTQsp`vvIJKDV-sEV}rS$5}2!9&LB2Uktf!O)_T_hXbh-nybc4kWYu
z$B+Yy&Tu}2FQAClm0It}1km3H-sIxC-E%*5VI7Xndtwmm^(5;CpX>i(%%Z{jc`w&2
zpa@^*v)1PR5qtV1UvVl>zn$xb-`mI_jUfNlAV5BXt9(C6&%<oa>Aicgeu}}MUT-JX
zslnFzEtMm$f*2Gqx*C0pr8Hq*e5EWbcYV<%k4H3AzHEK&i%_&F^YNkaC;AAWsjUns
zVRD`R^)f&U-eo|Zk<!Lt_nI*wZyGM3Y$+2w;VZbuZ#CTn)z0xt)e&DsJmrR#_f4dB
z7(4Krjx!OkfcACN^FIDq$~4*i5pShaHbA3c;DwjHAN{w&kN(iUYph0lgY&%gTuOXT
zIUdpS^;*4C1Xiz^h{E}mx=OLl&8WBTYL${f9*WB^isop6$-~8NBa4GXV2N@fkWN--
zD&uRugC=&rg392uy<rK<aF|J~mX7pMUEop@c3ccr2f#XtX{aKWm@E|TvY2`$$^`hR
z8J^xI!dola;|ygT71Zn|TQ&x)3e;Iv`#cb1b7=jI+EX~#d0)#a8Wj(Ax6mM?BxymV
zqU*jPB<J*y(4rkH0jvO^l%#t_;qXG@6@@0bfft!?+nz$yfr!NjyZZy(*0kiDXp~l|
zLL)yP)`11BM%ZsCWDv7P&1!wC;BoN9huGLOzKTlJa450V`d(eBZOKplE?<;F;)}vP
zSOv|@w9qv!gL8>3gqn<u4mt#(>@#Uq61V2)Y3hc2)!IeGWPi!B@zCT;b}HqWC)xHD
zXWZ#e3CdbC9cA6NKOzU|36mV$+^0*2a4r<k{zc&NSWXHE<=)N*NBrZ|9*HSy??S{3
z)}#h?6MX41Hem`2<=%FiC<Gsul<}%p1n7%~I~#mpb^Mx*bTHCG@#aMo4wLlk#jeq`
zr*qW>0T1c!I&i@6!^804dJhb%Wn+7p=UTVBkK0N9Hd`p|s4Fs(o%N+Z_E<IdTcWeR
z+Nr8me@5d<qE?>-*ca%$5~%+)w|FhgdnMere6rh~yqu>^zc+|m0HdgvXS%M3R}_yC
zhKFNX)k;*y^<(lnc*uCa3*9`H>{2=No-4oQDPw<hp9r_2q5Ll|fUzvjQuV1yVxW~r
zHiVwkpFBN1BLy4-03c^)7M;oA@Dp3s=(8`zyMw>m#EW$GB*2D{^;Bg9{RJ`&jqOl3
z|11q5tIsa(>uXS~EL~5NK7L^D2FjP=+kc>d7HUxadHv&N@}A;Bu&Y3!ItZj|yo}36
z{O%s@z=meQU_F8Ks(wMGC-almAldzoB^L?cYeKOxf3!b)lbcheI%|7dyF;4l)TT5x
zIn0ByvVt>fm#rTN=PO<8f90h#pyI?N0A>8W(Hq{`Q`t0tDC9FoI*i+uO$$%DRU5gm
zAhq_(YHzQIp>B8yISsx*7qf#stLV0_CA|7bh25-0%B#adx_1#ckTv!kv^M$V-#xNp
z@a;JC7upaOpg@_C$+7JE8U34Yxp;6OUG60<12EF6G`E&pTB(=tbZX~#;jKPuZ!2OJ
zk*{3Yp0;ndq+|NysV%?qR`fNMorhy{acKU}jmI!r5ai&EJL_?=F3aHOBPWg^@(H1w
ztnD;mvjqt~zcLu`&dgb-_p>*X*DX@SX*KPrx!%fx!UN^u`)jtXIyV!A3R{&9si~Yo
z9V7t!Za?9yCVD^BqVa!9bkqbl@ICQV=2KLJ&*+gv{Gm~xHmU#(qW6mm$TBbg7Q+y`
zcX|yD8jY+=^s@3S3T+q$q6DoU27``+5D2-rx4^NeC1;eepGaF8SZbraIEm%bhf>8E
zvU8*Y`s46(o?XZ%RCOKmOCjREsln{@V%mE1w}<n+(O`Q6R93Z2)$(}b!7nOu6j60_
zR;7{Kwu$L!TmaB4kx{WhQreu?{X~EV4&1DXoEwsN&Zl!rR!#}*?{u6UR@0zY^+k|O
zBFpiuUQ+=Sl}8^DMxU=W!tkp(*>1td&KV8+a6fwEMvKyK!y_0T8u1yoFcCG8CBJ8E
z@VXzZ&HB%@pY~UzL&90<Rt90qD@EZPyFBkb4;I@_?udBGL{gNeuGFfXB=in8nK_6|
z=>9?ZWWB<CubN%VF}|En&5(`d7inp9Y@A*^XoqWY-a9I9dPLk=VLcTnGIik46yX!k
zh{fCWvG`oR64shdO!P>~u%6|A=i#WdHXTwqFl}pUaPiT&4V>jso;7T)<eG;UM7?`m
za`NsM{JqW%k2h735&K0m<Kb*0IoC9xmNnnhmj9>gCI)>1sI1)ByV9a^d^HNW5Yne&
zJf;(oUq_VtJGoTy+>P0U!!}RR>3pDt?SSuhl4@unh+Kq`p=P_#%#jNeETq_5E;_HY
z#Dt2yd5e`f`YR!f)drzV^8jsZyjSeX$5sMXyXmC;&V%z7g0K52JRHZoR#l<2#009R
z?8am3)U7>#XkH+~^UaUNe#{QgrCn&r<c#z3$m7iWLi|mJV$JEU`2PYtVVFj(x7HBS
zhN>_tnaOEO#YI-tFnA-RO#xpi#4l2rbFHP(XD`!-8bDVJQK#f~n4B!9;%d(x04Tg2
zO?7lF)T)-zt$6R)L8`IgF`E0T?_CJI84*tCP6wbS&N##CRMYyrK1+Vttlpo}uOEJd
zz1E(R9THb@FHsQ}tAAof2t>mv5d4A$S~51$4A%?j`ArEDG0*LOLC#?`*(!B(jJu!k
z{R+9u8`#pqZ~2GvD{X2=!Wh{oAjmO|cZC_s$Im>xeSg***%qeAg2M(HL@k%d&mE<C
zX0zT`${HF*aeWn9xSS@AYEj3uy;_^SbrQOnC_@LOjLRM{IFSf>A+y3I#CIKe@_*6v
z6-;roZL^C72<{Gx2Y0u{-Q9x)hv2Tk-Q6L$ySo#d#U;4A`>8zd`F_Am&0N!cb>CfG
zH4jLGfrSaFHMI?FkP=wCOuP6>;UB@{7eBnAot>2nGPa7kiHpn#(=)5jx4Er2bICQ$
z1sPQEoxTB-WPGS3x4>!6h6a-cig?}B+gB7XEhaHj{V2%|?B1fCyyS;#0v#T{hg;91
z^~#r|@8(hCS)D6}UjdyuP&o7#f4=hixa;eojg;FhL8zvz-5yjuPSU8NNZFj4=7(AW
zbZAm1nuhSdd~>SdJeRv=G>r5;OvJ+D%5A*kT3V3xtK^HDr~z9()r!wwXQ{W;Z<cGN
zh)!E3>S7ykHyYV<7TOz3g3}ojw!ijtb`E^IU1Up%txDeYy7>F-96eK?0p!vBxS2a3
zS`ThG5wkOJV2Ot?i$@1dw{5+N>#smax{-L5HCxQNEkr%Pfp1X+=)O=`al7^<Nw97e
z>ONAG4RYu_;LVQ*s_=h`_{IN=!)TdKdLsfMDMRL}p<SyUx}p$i?9MMXt}@5g(irKJ
zG@c~z*UWlPwqQFy)Lra-Pw@mJrpHvbC*@`JvE_BV7ZrmL(4nU7b35RXovWVU)1o2~
z{0gZQ@Y&s_EljF45}sMlrY=oBI&VbQea>@WbX)owBVdWkd-Wq92qv?<_b$*W<inr5
z9_Q3gh%f*Ef5vZlouN}__9mkv5tUDI6OqN2k#mrgWAlrITy3dc@FZA=JrS)9o~sW4
z{paJ>yqN;DuD>ycMRpW8Q+{V8g-gq9jNBA0&KW-AD?BEqyHrS-?UqR_l=2>qZtu%P
zhb9~(6M6jZ6Gd(1D;N^h8+405ggWZ%XK$XOt)oB2NT7th8QK|<8HXA<X>GpIE|`#}
z<I_Qq_f{qt1Sed;gygsJ2T0lU@18;dqwu2A>vfa;&a+a(1(q>YEN}tqGYPwPa-j!*
z`O3J(4IC+8{2~0>uAl&$D6E1vbrKWRNZ!s>MbJsosvUJbYpafiJz)w8d+(l=A(?g=
zp&E`xhJuZ5cmk7R{s53(1JxdqRGaVQOAB&H%=+0AHU8P3;Qs#7Z+07kFGi^d2DFp>
zPuz5JWNc_l&LFuWR>g{?)=+H*b7(+JwCwPRjQ#JY;cH)>gEv)q=<na{%M^|>9jBM7
zCCsNfl8Z9;OX!exWQlD)-;K$j04z*j<ph>ouAGgZC1*xUrE?XUX$}wUdXi+IK+bY<
z`4*>Hg8KR-#1X!?@nfbTdfe$sdJWN;d)vnt!uSCH*z>2s^4T&sa@VU%T?L^eWB*j?
zW#5r31>5WkVjpW7$?^4ZL>0RYPt5FC2m?VBl&8Ik^oZYqRxTInu#hd)n<RO!b4Uwa
z6fGcO6CLHa#6)>00MKDqF#DX1adPWCQ4FdxY?{q+Wv0dHSA#N2QSoFuJDVK;ZBG~1
zoCU!Bga4PIt*9X>Dzxw$c`|pu%=Oikf?*9_RpmV@0GJ<{2?a=NYfmQj=im{3eb_8r
zHrSn`o5$CG{>!!+7Ojt;@|-O#Bv`(E&5BZbIc2Zm>CbsSbpY?ind<Q%e2dUdVnBqy
zel#OF_53A8EL)dtdp*OAcuGj9@ckKuaH@z9Z}abHXyo7?%tiLBy?wf5bxT*(E9u2s
zf%0W;jC5C<@7v@(34i*_^$DkoW{*13hy)k+gTet8lTWk4?aE7lF_vD|^3_g9td+{;
zhv5Cir5W+@0wLT^=5GWZ8;^3k;<g9xXt7{3b_qDt?@<sv+SI9ifG-jUFJFd#zY}P2
zW$s4WZ7JuI9f^?ZvHmTWD$57xtT>)#Smo>w49K|~gdMX^yrsyg^irN5F>z|$n@|@&
zO=|FQH4B5-BIvdEt`{~2B0|rqv`6ZTxDSZv^<~Uc*zo3p<i;He^79%!X}oq<W29R|
zey<vQX<FZQ3=`WJNkSf1oWVdjB_9{cCd3$XUsxIr#X1Eyv>XB^z>VFai<9B;3ERy=
zE-dx5+R*XR$nh373>(=pQ?l9w+-WR|1(<T?4jvVB+x<u8W6sh`u!*Uep&pQeFrWq^
zeJe*+?|wEJC`fugZ1mq&7bjN2;w2x6;v8}5nVCF9Ufa^g->J>kBgKl-3x5fEYClLM
za}F~B?HA+J5$G8W+V*kMwWEZd9i@X+q)`{j%_@C}(XY#1y=|ylbk-}^jDB})v98qB
z!K_QfG%x&WwNe0=MV+Fh{|1Yc2u4m_&gY?jbi)NcDVG1?s8n+(DR%3!u`wbu^*f@=
zVw{>DPfiqPg9|K0gabg8GbOmPPntlf<_)TinZidwkgCo7>SIP6GEPs^IlaEe3t?RA
zflz|cCnWhMwF03DXB34H0jBpK*2sFn=2kE8$v{ztiK8`%u)O=gUMqE!H1a8kj?j|e
z5C^+7j0vBu#*v>ByFI7<K9qyP1_0)`Xy(^|U`&(o)x1B>2!q%W@fyWoph9#A<Rp)D
z#IV#y9vnxh@_>#|iAG><PnN4@SClZAkKiZ3-+pF4FZKO;Va-p_upv>mA=T#+{y;;d
z@|$s5(ZXc(+@@(}ALLL;Ka>QiYLfPw5|=#*1VA!xddRV?^ACI@YdB<9aG;-7Lz0qV
z821zga&Cswfe2fjH!(<g<s>EOBDdwrqs2h~3*#9(JKNdnY|qpebIWnBwjz--U_e}K
zlFBi4YSiA*>8Y}Yz=vC-SGp<?FE`YG0Ox0Ir<BGIGto9V2@OsPxSibcb$v*Pw4Jx8
zg|~7>EMZh3e#Dt6?w;g2vGO@9KppDQ3zq>bdb=HTL_yS~?fo4zdlf^6*KiA}ebT+}
z8L6@rD$p8jVm1vdEP6-_Y{0GGi!1DRL`o=kC`SLP-aZv8L*RGskxe}c`fl`P7LOMH
z@4LbmiXAvq1}4)@{_v)HvOf-{PN=LEOq}b6Non845FieZLp(7jn$rJ{R|Pg6tZG^r
zRd`a)BA|cm9A3P`KaSf=bhJ}lXXNqPRuSzEE6AcBd7GXqk}IQu>biLp=p)JgR--(s
zHmXvoDC~M1&C)DI4@g)0K=Dev`ds0=yy7meh|YB?vDs2@F_mRZ@VZ2T`eITGF)s@V
z4VO<z5rmEoOzM^N2Z_K1#0AC8c)_Fgvj2*%bGYQRt7p&#pXios+`hAPR3y`n)ibQs
zxAjQ&TDktX$mWZD=ycMdApE^Nj&tGRAu8iZICSzjWmWY3IxzLK^>1_~DVy(4uvyE8
zMEBtmlilh1Hc^y_BgI#R8cm2JZlUQgG3V~rdCA<T0$%ZW?QH>Ut-7%A6$3XJGtp30
zHBL-8XjnPT3giF~koykUyRza{Toig*h)u@o-_-<-hISZG*{P9G*l`?<y_8%aaOR9W
zxu?8gjL4=(KTSP`2r;v>-dHMqxQ4%7sIMW7tJ;C-0+HR=R7Rzy0`V~x!?~NmJiXO}
z<I|BR$VxZyfOnP9em_)s`7DSBfQ5}%PhR`fG$gssW|x-m&nmM_pXT&_<w3zNLK(I7
zVAMWlE7@w(J<ZX=uRg@<8hK9gi05swcCYc#b1I<?h;OqUpz>KgsuM6|Vr)tz;wK+Q
zaamyas6GMYp4|#$a)N0SJv|=(=o6eTph-*?w|%<X_C94szP$XDg$*@1lqlP5?h?*n
zw@Y%nZegG^beIqkmp>>>TjR2wrG6NTIX5uaI5BouiplmK58KwZKWj`}X7QTIt0V`{
zsQ^(4-{HWdsBke<XXEvUW|!${*wv9be=cUxP|B?!&}fiT*D(IB2L_!M^2x>=Sj#CS
zz=h#L0a@v1<jHf0P=frCzhF4+D{DWkayt3)T$GFy78Y+15t@Ok?bmfeL6{X^t31pe
zu@CrO`3=`rFzfAKrt4Eao1a#Cv`Vs$5>9_@3F_-C@?C~#(?a^6kg$K<e92oSTr~fQ
z4*(Fvv2ZsSkLlgyY%(cA0{#+AY-P#%jCgwPjdvCpZQ^9OC2;);FwwX?wy*TNG~eRT
zk5^4%5|*mbB5|F(;4=fQE%j(NRcquzTIszVc$IAUUC8&$Y(059{hD)HUrCiq)Of%3
z+amf&B;+&^YELh4QNpz``SE%kk&RS*aye@s=k}WUslP%tD}v{+2_`o=<-9B}jpp@~
z=k;kUv@&qO2mpU<XA=%BKW)Df#CE*3uMOalRF%&VYWuuu(`}};Bx<InSRP|cXEY42
z<L)A@HEa0Y4u`V&xvgZk{Ptn?Q&q>^NPm8RmB8+P5)W@W%#7_8I6XkH@8o?r=ttjJ
zvp;ETaO60#$u$fB0WE@+h#&+0mi8?onVVmv<4Q@zJTyV0xp8ld;<o%LlyYor-P{XG
zd|pPx$Q}sCU>`)pyDraHn2hkz1%ruWIseWMJyshc`iCWGP7-B1UF&z1U^ej;`5pKZ
z5OsV$*32Cm%*&-VJi>SRd74a<b-<yIi(_=XycG*l7r~w#9!9t=Q&@g<crT0D>kU7t
zTUw97UJeH;tFWyHv%MHT-a5kqxP3~51o+QMek0_r@Y=@)3rf~puavwX?~F(9w2*Yy
zT=$b?`GU`d?vzwlLSPg(Z-)y`evK}cWCSa&WAGjB@RS(vFs#uXM`P(~__V9oyGU#<
z42ER6Jf9Kf{wi?!P0-`LV`y*Jz{^j_#}lFcF-HDqE!67%z_XN_Rg8Q8n{MkV1@P_e
ze8P|9t$`%lZNle}i~i#^TTzY6*5|!%3!LM(U3U0+SILeOd$!WFo#{qK2q<;9-Xd{+
zJBqkvYI7-;tyz5n)5Y?09e>CogF|J3sD!6~XN(GC?g*hFg<JAUEoMjsK3@}Q&vDEd
z#svHaY%^byqE^$j`+Q`O0e@5WWv8!yo1q^{W^XQ2kA<;LNylsd3HsDE;yeoT3YKhY
zI7>R&lKMdR6BYx&^mv|18SeL~yc|8pSqP%g&@$fN`d<%6K?Z<;NBGV5Tk8j|X!$g#
za50cJV=RkH?Br}(TkvBL0O&ymsB>r(venp}HAx5>OIlPmk7mi76lyv101yz>*)Zq?
z6%KlXIO1_XEm56dfqqbd(h|tZfW4hX?It)JB)P+?EE1OP{S&{R^z1JwDjYOqpD?Lf
zC<u7;0Bol`4Lq{~PKDPxZ49E#E;LD%#<ReqhZ3sxlRMCaS?FkhAYf15z)f0Ri`E{0
z+~sSdCwLAD&Y>X#{vLr!kpn<8Rl-0(TDEfLE^{Fj%URMMfX_A8s5XCihGUq5Z}emt
zmH0Z0g`xwG42@I<9pk}S@-IXuIVv1<V72If*GH3*^(yE5eQK0S9HxYZJS%dL7emB5
z{NW>ycZh95pU>6aaaCI)d7ijDU9CNYYobH1rmz278<vf}x6am|WMYX56%JYwLc|3Q
zI?(PbB(Ok{RdKR1@(3G}lnm8n&QtD=Dix7ILsNg8A(AEB2{~NuZlFX!MS`rr$8|)C
zs(@m}3)b{c3}K|WC<oXqKcjvQm74GL1Bjy!{P&ci{zprssBrCcVnN*Gg`E2P^7ziI
z+2kJI2G3ng>kCdj<z2KrU31FYdAQ)uHM~$SW0$~H{3`9(WI#au-pcvG?!(N?6xIp>
z&*30XA_V|s`d|PJ%A%iOMbeKAHkpmfAEAdVk=?+(hXT0Di+JE<AB@gx7>9y@sBkgR
z|9dNVG|~qriIHbA`3$pHfd@-C>PeqQw$V2D6!>+q9f`^^D!oI+X;%+O|ERcp3W&sb
z7SI<lS2+v-VH#xJexv|5>lZOGY%T1c2w^SEJMj>#-_d1QS;u0M$jCstg%pfIrTNYM
zGaTB=sCcYD+>8#_>*;^#YILH&%Lrn*1?@8!;XuwnjF&93LZP`A#kWC)9=no2x)-78
z?8WRFFhN5GfPOxqmWu*Woh5CAhNA9ta+DxnkEV=5DOkSvo1T2P@()uWkv$!I6PU>r
zm4lFuCM`2)NrXUIQf(#fM=BEc=aym}r)8y~5#l{pgV41Bk^!OY;>#eo0>+Mhn&iQH
zvd&-tz`+TSAk!mMgqxpG!B#Zu014>0fC93_-Bog<cQ$F6iIWv2RpMxN7An%^f=Ki(
zUR26(04@;VyBcTP_i;}(k}|6mZkWjxy5xJ1>D?Fq0VL$!Zp!5_)E_r%)`9-VB|_r=
zaS2)1DC+J@WakgjBsaYl+KasJh;TOWeRDTO2IPC2g+*s%cRw7)#!R)9u}V~xiN2bM
zWsy6~6=K@`y*KN0B&b;*KBen}`&C4-2Ybo=M2j{E<ByI?P5xya8a(NVS-<{KDTyXK
zE$W6(i~Jq^J8O81ztawtrIA(nHki+Sh035Qn=BegQ_Ag+8U{s%CY_M9QV3j7Be5#q
zFAk3)m66sK5d)+hBz)*%En~S1>V9$UJ6R+DzT3Y9=w)*}P(Hl=8$W!tI*pIrjg8_6
zwY~Wd$K<j9Bqi@P;2Sy7Va<|U&KZ2`qrqf30M8N)l;jnw5|TxR6(wO$1#l3Bwc|CL
z*f)-_BGbtmfdc^GAt>?Y9kqW5BBsgd1T7_NcP!o{xO7${(nFbInGN~g<w^nS<d<5J
z>wXoEF7z!3JJb`4t86LL`+bw05Cy{z_SO4mnp%y~#~e(Eih*Hx-nA|OxW23$>biVO
z8M@f2lZ<g#Nkkxi5AY_ac>WxT3oJe$Y?nUfjU|>u`EX7ASuorPl|c9^vk9`$deRx_
z*WC5^79L!iD!A<~y&f5a$-9?}Xi>2QM}@=bf*?Y$t?tDX_>V!zu>UdWBAAGpeGY^E
z>gwfN>Z*hDASJAcsdirIUSRx5P-IcyY_BP^2|qqGuw-KU!4pe7hFS)+j@l$|LIx=d
zs|pMJo{%)JI8FdE`Egrr>@@P#pgt#%0|2Oxko%INavd8+4<$#0I{>O)FfUT$PBFU|
z9)d`bE>@^RW!HRavfXm0DgQB%?erI42@!QRl`=M+5=CHhwR>GlAayB~Eff|#h0Q@W
zCAskrf2<HWHoWC*T)uUdF31$M^6N`G?=Su`w=)YmXbK7-UqeV-uZAtEAJVlx1~rd&
zZjxG8{2P&~pR5Ortu*$380P#Rh7ll>;;3Hm*$0f5UG2CafN0F&ci(6gM($3N<IPbM
zrDFkuVM-dNHCy{Xzm@UqNJk2JOa(zf1%$~VMd30_kCTvLA?|K_8g#F$wq<DA{FWmB
z*|73G+4Sy5edmYD7K_Rz$oVyM=nEO73RzD1WI;=K{+I?8+;<Y>(IQf686OD(IzeVG
zZ}^0$1e=m5477O4i3p~+<NK1#VxyCc;t_9Fc`mZgsymXjD+}r-au*aSi>B7A+Ixvk
zZx$7&JM^XuP%58*%D(vNIRiUNakquT*=8!!KO_%?{D))$BgwBwu9BW!mBU(V*`vGH
z3UWJjaY@>LdG9q+xPl7g;qXbxkr`tLPMxUMAgMZ>&UB%eL&S<k0AW1qHoc~8pA^KE
z`%RQ;9ho97fUp3Yl$A`ggF<Q~!01fI(3iv=>J!t`yMz2b1ygDU=m=4PZAp52|Bw5~
zq7fwr)We61<_7>kTLW`w`{o6&m!0dge#&a0qsUoZ_abI6^2c^OeUkWCx$y#7290mI
z=&Q6ey~%ilNW-4R{*8sXhKTDw9p3)`5?Fh_Qr9h!sM`P2=6Zo2O^fncOX-4R!R00U
zuR@8G0Bbq`qBr-z)r&BTYa(iDVL<*OeK{HJFi#xd-}e4T=*!m;uIV7BTIV^ka39J7
zsLR(`;{-Xf9ZcH<SUC~Hl#k<iOiR#;@Sti3In{osaNN0a$-`fg)M4^@WXE^abs~l!
z*dlJ;jG-@7he1`h{K!bQ!45`}pN*r>7CyiKITY@!u+2TlfV?#jG(dnzC!Y<QBaD<v
zwMF$&nCe<fYKmYd!-<LeJug^U#Rf-Ir+sPPK?^%Hg)v4UBEXdC%Dokp42a$$6{$im
zRj2eO8H;{+?UpF+#U~)+B`R8PnMZMLp>(2rl;%U;{$_d{Mz5XA70(hKHi}x%&ci~0
z`307W=OKfw`HGlg(pygF>Us(Hk}=__FX=q=Y~(^Smv8}DY2YAw@-vu|BJ`*8ztP5v
z{pT+9YbSeWH}h0ubZ@KVM9D-<O$Uqaa;n)bpod^25Ghv}|0d;JIB=WUUAH<elXT5`
zQqc_hwNz}8iBbvIhb#z3Mt8wdl2J4!V@=R1DYjv!$*o&0ij<+l0IjYzAzY*~y8K~x
zY%GK>5Ov^Ui^6jY*mX(+_xw=$6mPj1#H1WyEqGddWd0piQ3>t-$4nRzXJ)|}ya-&v
z-Pi}+GygC#Z00eSlgXpWqM$usAgEo^VN^qQY?iXYYTv*g^Ym2-l?gN0VVm?Gzd)fY
z4Key*4s$XB&d3|NKLD2d+=rnmSkj3?eeObWC1K~H7n5U=@*}!y3M>-MPM4se%bP-|
zf4}n2_6Z-N{U_20ad3c_j=~kjIUW!hm=qojjd`v=Mmn|DfZUxvOpXjlb_1)2T+)vc
zu*c0R8}Gcp9BwS^aRh&pM^hBc5>JxbP7M`ybN~`+rR4rg{bF0Cfv^p+e4{D#H86!N
z|M%D9ub&cLjIr3)>I`=hWaD2~lL;kXz92wD_C2EK^Zv8ez0Jk2e4>C!lr~j2kZF<R
z-dp@hS_2KX7!@g*gJZi|>WGm8FDHfMj`1#zh`%ZRc#u;%*Dtw37ak@u04x3Y11%IX
z*=Tuo$*0!_gw6hu|DsC1ywFg<oPn`qc@2~f9Htx?_gprn@MHI%;gux+p9(+}=<fJr
z&6f7XuR1%UvL2*)!?Og30dO6R(QjY$2FI#NlD|=c5lgx(eQrc$jQ=b)SXmp3(GU}h
zHAY?~lr?~w`8~1Id7EtJa}etjP(zDJidZ%dw!I`1n|6=5^-kMTM+$>G$XSk&7lPvm
z|Jfo_)MO_Z$iDay-&(`JVP@RlN}<*&oUzDub)@jP<!N!{b#UWJ(GU0Txy{m7#4Fr8
zYhcJAO%T!0;84%MxQdxNC}aV+n=L!sXsXmP4gsUMR8&8fps67D#0EW7P=>k)X`<Qu
zrHjP(g;giz4OK;9#;qojg(>FbDsnHsM;<oor0o3wbZ9LZ2tez;@VEcs*>Z@yGwFr@
z=b2;3<JbSM3n0n#zX^%>nFlqQb)usI^NLEzryGeN5d)m!FvpJ7<RjU{#N#Q40i*14
z1C3;Td3FwwGptCa_4EO%@p^VG^Z5YQfkwIc`rM?JCD4_>v@J?M4}?FxYy>^pVS9C`
z2<hZr@ld#vv@#}zdORUxDw%WwJw%?R!+bsWVVMtqnC_qb<k0L=CU<x<SX9N;CD(Vx
z$y!IfwEaPWx-OlpGn8{U6e$`+@o)!}$<V)`gLUHsBE8l4oH7s))w||DWD|P8#Y61#
z8MlKaB!$F=@5AQ2k`|nBkCnwFptGD}=Z}Au!xarRj*q{LpRAUz7Pk+7XZ|r%z%tNC
z|6L3^4E<*)nb*ct7NY%SXJz-Zz}y@p74-mf!U}K(E5vfb?kKOE6{@_#ezmQmyr|%Z
zqUblmS?BqBxBvj&s8l&UUp8`&?xfu9zUhlo!#vv@RJke#11lm109Vvl%2V!wYfA5y
zCYS(}kciPVQV$2o*p@1}g#iWNP2(mL3yLwG(c#$OtKTV1wAJG6DEZI55dF{p3y0X4
zmbL$I>=1Bm0EC&VJDL4;{{9sd1qc{DcYNxMxw#paUvtGt1ut-jvnN6UOjP*e!pFwG
z`ytcYDAfvfc5t>j%4+wX<1X`=zl9YL^Q^E8>}9bHBX1tZ^Jh6RN+*ytY?!IjE#la(
zbx~uo0hEp95^w_taRC4bT<G?xOylkG7u4iMpucKz{e0&;g5wvghw-tgzy9rZ06<)L
zj&s>1uF1U~6<w7#QV@{k?EDwFsTrAPv?Cxa`;YJO;$r6v0b~GZ#^=9N0-=#j^6Y$>
z7pBb|nr_BNkW@;a_lnBptmz<kfM|TUg{H?oj_i2k#Hn+lsdj?diWwhZRa!m{cU%rK
z2?A(*^*htGX3K!Z$l|hWH<YHl{Ir;YMM@d@RdxqdPw&W`WWjy&Ja=Ewe8x$yq`tE6
zd?wIf`dc$xTKYB3iM9giyxdN!v%1yK_aO*P9Ok*LSUjYf%}(ZhIE|p2Lg6|I>y<xj
zbZjT-@MKxOF87hr_hTU4Ys(C->)$HbK>FVX18$*-f-D9OB-uII4w<ihBx1XEWMP3h
za{W3A3K)-WOXw2LQf8YY!kr>Yf*Wn^R-acvKo;i?wa5X@iU_xqr7R8;5eW$ix%o4-
zODI(0q*2JjEIkDmH|_mb!|GD2u=cESSqL(|zF)k|!Mi!w05LT)X?4@7=XN6Xt@CnX
z<s?4ax0$=U#<XIS9}qw8_Bc9(mFxD8LWUZ$U^A6AvD4%ZxoP)8|2KC5o~&di$`aM%
zyQyxTSSIZ*t9|oF1*az836|rSHag8JgPSKp5&+=Gr0?B)ED1m5xsu-`VRHa<;3ZCT
z^1A3O($wx;-g8y!d)RZKskX9d^Y@h#^R0LH`55$;iF396R!X^~u<`yFdWEP|ohEA;
z7K)lRZ5<5X>-QQuTH0)dP<@&5_ox%sgDrZV)`>E^HG`X*&`2xM_N9GLhdUN(L6s@*
z(`i6B@n5lKe-URMOz9L&8=BAQj$6%|wX-B;$5&=Ifa5@Q#hN!of{{Z{1o1QKdqBUK
zPwhcQn`BmVM;gM|f1f8|pp-YsflJ_Xi7v#Q_cIvP4)J$3vvoqrzQ$6}3iY#yyoBSg
zO)cg2j{32qo06X~G;V%(sXQNhK`1LA$i7D+>fPh|V%@4P2r033ve2b9b1@UqjR_K8
zLAO~}g*{hZ%5VqbEtrStug&C{VE~4yY-FC&>m{L&<{ygD<+KidqaSfegbF1l=F%&=
zxlC-rj^7fnYW8FS*<8UG0<G~o`>qh{3LHQBy>6F29_NQ7*mo}2vY?=>(nlx9cJ?%Y
zd60z29UaMVJgjFMEK2_(h>eu$@LJ=G${f6EAMfJ{o`65$I0E;$>pv$DGW)ZiG)k^+
zf(eQVg}ln`Kg|2~J~nAea!0$<doBi5F*-OHJkO{jk^5F#C34w0pftIr50#K8P`z_W
zAqV|!+9~ZEkfBF+6h+U7J=SN|yS~^~EPe3V8>oKUacJW{6zffcex>DaLP>=|BXd+h
z7XNy3(2>jVKFc#tIn>u?MxE+LHATCUs-&D0@)GjtTh|XM9Utc;BRy)@161n}rRXpP
z9#XI*=}&>zDrgD1)7a_^dsFSiMCB4x6$c^sBa#kk$I0B|%qstd2*4x9b}^UQf{7f@
z`;uS0Zq?E~-X|;{^M>86Jk2!%%2qnuZY$wj)4YOL&yq;jG1>vUib4vxpS>r4icWg(
zoO0gw9+m~DH+Z?e0)YDp9T&|6)7k4w_G;DdcUyiR^;amdrk@_eM7PdzLWg50OnT3S
znM>2Hw@ayV<28Qw83?({dd#;c){NY~V#>lOHR=r>eG`73d&y1m%a{E^LiZIIjzsRC
zf$ERHns!%6^q)+Jvaq4@-LABSUZ2fMqK<b<Ui2#j{qF7k{OncZ0HExTUYs8IO^5k*
z8ZHA4Yny<j<=c%w&5ygI3TuMkOfjGZJQ*q|#JJrQdm-TWlOdWv6fea(cEaYnGunxA
zs_K3gMmz<J7=_Ie!)$#Z1IsXOB5J&UnA231yBNmcq-RNa5?H)juk+z9k$T9v;<k+F
z`X{{@^vBpz1wmoRME*~Ou`f6ea=3}O4GmzP!z}Jl1@$xe9BBX6wci((a6LER;z&wK
z-Y@cGay$uPro(UL=L{m(BNG3iE`mH>J|_E(6E++M$Gh{WxWha*?fTlQ2^x^b@_r}1
z?a@-n$s}33$~(;R_A>J69Q=CP^Le3YjqmeIq3b3d_Qq*t=fLSeuI;%F;Z1kb{mjkG
zWoQWdr~MYh_^?~<({%CIip!Ojb>E4BZH7bs#>%t#P~YR9-Ol8K9xIpKaPerBb-ioG
z`w@&jZ|MY1ns2X6Jq8*O9vDn7$3)YJ*M=S&2y2J{z@o|GB{5O=-}{owH@Cuyqo~|X
z=Lzz<9Ve0}PETlTJ>bzW5Q6lH@)t|dlfA=P$PW5|zB1T!FP<`TWC+CCmM6awzkv8J
zo0Cp)kw*y4K$JI0*mLyCvO{rTmG97oMFk$NpQ~xwZ3-0m`EG4KXH<`rENvUo>9Q^3
z?O89{ujti}>^nN@Di3Z^YHPrM!$%$}Fd|bSVr&_y;3h0KLT`z4DgKE~l})UW9L!J_
z$k%{}ONck9j~^Bm<R4c|2C4|gg!>n$j?Pn-|FZXc4sjA(HUIZxb^)hP%efnByVmES
z%ZKA5000zJY=7Wu!q5C#bcV87e$eZvkRi}~(O|xa8+;zMpY3`qE}mRtc)R9Tvk3S;
zbmO8k{kh3OyPuU_=(zbghUKT9$^N+{;52W0ooXGKo9?(eKrXT0U^Wz;jCHRJxu~SA
zyeS5#>c`?A(f0tCzHn8)PHt&h0RVKVsoVzdkLp4^*V%l6C=h@=>m}<Jp(`0YSbr>Q
z@^@+>4hNC^yYqi8Uzn}gHY*?ZdMixjb(+*4W_k1tG2981qN3bFRKc6RCNCCo0tcHZ
z6WLQyy-XAx)M^G%aPrgC^zh+ah+Uu}w9Gn*`2@lrO1INW_VP_n$|5s{IyNjTOqw1)
zn$e&^J|X!>pQx**V^e#9^U}j5{>ejH2r{%>ihzNiU5y}2FccATs?pIHXD|^03V@IJ
zkH{eJ-3kK_I!DJDp|==h?%eFozj1?p79HUm!lEplAw&5mfm=$NE7+HdtqsSlEA?Ln
zeOd&2>e!@-;6);Z3{X8x7o&(TJ9QvDO8yY5KObWdAbztsbo?rb{K!tP-6|~m$7cHG
z_u3>T7~-J)anoQcXGC~Qbp!M(E5^syXhPgX;+Y`DyNi(p)q<eMK+k7o%mj8kw+0$e
zE0e-dvllL0F>XD&d&>&Q=Y<Yb3j?6)SqxRI7N>2xJ|aOSQT=4w@t-{YDi*X{ok~v1
zvoN<axmBf092rEZZ4|{K4GGYncfDNKX!Ba~&o7J&iE5M^h>0U33#Gj*EoEBKUnz0x
zu0EZCH-tswAsRoqjHoynXfA|83wK%zud~}PNI2g@i>IH6k_LdXxWG$`OKQm%>#W{?
zlFmB4$yt=BgJID*0wbYhwNciV`gr0czW{*o|1xptKsyN>2`y<4w#)Z5CKHtG*S{)-
zRgckFv4(ZD*lZ8Cjq$&odaPb<E7Q9S{G@qpA7&C1iC?B5{rLC_mkxuALx75Q`QKG#
z(FO@lPCUlZKKe=wUB}MGL|^xwvg?c7=ZYc}{(SX;AYtbyMuhIH%V(*k2LRkF0>tB*
zKr>WffWN5>iSwJurMSvTG|Ec2s1T%syYXQ=*q;W})+vN*oYgChuIco2$R%_xio<CG
z+k08|dR>DvO{9fX_#w#Q;~HN|kaXQ}9*)5)$51*UZAPzlrYcTgeKCMu*Iq@v{u+^j
zCK(&Kpr~|;nRs}J=tTF2%|a1|=l!w$5x#SO6Xf@$fdXc3Ia4^X&S#+59<&{gAl)^!
z<o_0EwF;5S<{z)mkKU}nqn$eH={vVK{@ltJhDePhSK8690Ao7AkAjObZMMi1+J+bV
z_oJ4f&R?pbBBWO@s@`9ZEY91cnpCxVCW!qWLMp}myv{y^Y^xBhxbI#LKe(GQ5_jaI
zg|A9pRkLvD<8ng!hN*HYCF#5GVFDEjSf|1tn%nVi;J7)Iw4IpI001=VHQ9ulPi-e2
z8gQN0$fCS;Doq3wntNxUtuYs1hY*cO;jvlXdfmV<_d^s(zo99BY@&nKN_0D{fR~ps
zz-)p*JLUA`biz6VQ(PvycNi=??rQ7SzAh#fE*HB1FO|^W*5tafq>xHY-Vtg!m^*ql
z&;dE<Ur=-cr1}24oE>scOaU)8!Or)e(m(mmQkFx#tNOm*K{>sY!ksLflH|14yjL;!
zeQu+C*8Og%lX%H!%hk;FJ7Dr-#IbQdZ&2A3{_Ef5G~hN%5|hiWq}|>J0D!i_;)BuE
zn%J(R98^Q;=tz8@hH9+f0llY)PYKkASx~KnR+&(?y3GY2bK%rc&b}S}DT*=q)C!Zx
zRoZQn&`QEU)H9T*)(sDG@E#Qqnia$uFTF0Ov)nAyS5L34vCGhfVTqgNL?u1@^QyyT
z!c<!!B~Hc_7Fx>G1A{cMvQ&4mW_<j7-_e79LPSj3IC@)4-d0ptSW%ygcLoqP8a}~V
zQCc2pRXnf__?wkj`K<}O&(~s8>qCDHU)1<C`~=Nyl3;n1xk#VQ@8fDN`vZb3zK;Tm
z0;@{RBS0)m%1pnSo7r~w+^@s85h_5_&-pTX+MXTdx@6n`dzWI*Yc<K;QtHR<W(oEp
zF;cy3y7wspm!f*qzM{e7mF6pkyLTSp8#<9sBt0rzJBI!oWt@m^kG4($8X&$*{85|&
zJ>o*MM8M>IU2(!wk&n@9a>P*WD(0c67^bFMH^cAP=h48izto7FYPxMZKUcxZP+PgS
zvNQfZ)7x7aq~6&ztpB!FK_xZj*0f_wX|wmdl*MAVcT@+(s>7)6eBJZeHt5#(j$+7V
zJy)un_(T8p>X*={!Q-2gVJPyDEjnC`83m9AFEuH!s}De9kj@#P4;-(j=W8N=)*uVe
zrP-*X#7Ab6R**s-=2>b=tF~;%ZlFhCAub!Dput8;#kP+(#RG)-lj397*dnem@bRW`
zqLGq9F0co=uaBYCTy;6EQQ19Gv_!6v=@eTk_RcgWML99jS&7=Zn5{5sD?cPJ#dmtM
zN^uGgrwAhPMadcgU8-`ipmwQHlmo)T%;eKprH&IC+K0EUF1ZZbtwVY$>J^LrZ2HU-
zU7Y!LL50@6o+}T1FwSm1O3~MYfZVw4-!eOY^bH8TBE6lX;6QJF4&j~exe!7x9w-XZ
zbno1Z$M#enye@OJ-_-OxMSHAGS9?Ag3Km-JcH(^8*?XV8JUlF>yq#B@&)L5ZMc!WY
zeLp@y$?blGcpuB9lGwQE{}fPme@u20@=@69Ft>lYZpMZu>Ab5lG$d+&I86P#QPec6
z{eGO`5vzB*$EVx=G6xfALK2QPz{&fvva*M->Olrx-L!i}k(;m0y%e2`1_gzMRBI-u
z$|NM&1RG_v&mT{n3N4>s4;93p+$4NA>8c!jr%0f<EL-028!a_efP)AjS6)y35~dlw
zgZWhw9RoyFXTh!2QzDbF-x>jAm1h&6qvmT#Ehz0P4!M~lO0kr3P!{voQrDQPQ2gAZ
zbneu1CBR6;HI9@~50VmNg$mDas_99}hMgZ)z$*`Ia=DJU8%t!RmLtCE4~d3-51kS?
zX=Tx;;syYEwcd9&P%1Be<J2$;dRn;>ZYs6D>lJWb%qq8y{)?vlMMI-`pBk2H&oJye
zOpewKg}RCfp0~6&QF1*l+v{}|yAG}2rKZJ!N1K>fNW4Xdets&y-*+l0+sf9|hifM2
z<WuE;=>#b{f~YO6wP*D>7lqr23^4s7bs1Bs$;tUvpiynMU`*nF{+#VZVVG~sMl3cm
zHQkTOVBgri#c&WSK3#pmiX3;dwZ<l{=fB@$+aRvd51=hRo|k;&yKb#xnfzY4Vcy;h
za`-mql}oSJP&m9F$4xD*VO2q!;`<JtNCB*+p7A>>g%}u?lB=({<6O|Fd3mUi;<i9Q
znPQ0LV&30lqmbUoa$`0&)&lk-I7kz7o>0^s^s>ZJ+Js%hYN)UeQQ6q9@WB@6I*zC=
zMJKp*I~-P|w`{SHE4_}r_dGrFLNV_qb$oc<TY$A5Ycelhi&6mo_xz82LI#Vu!Pr6$
z117S1<mS0PCqel>P7Q3GDvduzR-f&A?l#Bq5eT2D4IBp4OYUx|itUm+-!s=Xm;0c8
znNRWfoLu$i@TB{S*Q|9p%)&BtwUx?2^+stwzTIc!o7H?Cd|*NOIp2FEzNF`Fy-uWZ
zmgp7pzfmi0d0Bngdg*7n^r%Ug81TEf>tYj_$nEyAI|xqAVJ+^RCXm(edFyYut=wh$
zoK43-U@KBuY4>0fxLq9QMFt!ld%b0`DG<&J^+^867_g$<s^2SIGRSTji1AKfl{9p}
z|IH?O&_=djA?UMDe%kNFL=)lrJPKB<Vg~@So>iy2pZ@HIJdXX$kT=Whe*X*R!a0k$
zpro1MdWx#3=JydX6slQy+b59i)YRh;_|7S*MYCdZsOLU)HygZS2d8eQ{cwC*<J-(5
z1<2b|X#G3aP=a)teI6n;kTZ9g;&(H}hak%iko-t$n93D!G3~L*wPDx5ta<w@^!Zj#
z_E`{0+*P_XY;Nc6{n%LH=l!y5z+u1c`S{7|+qs0EjsMN}yyX)v$8*v{_4VcMMBcFb
z=8R6Z{EzE}@^Kt?BqD&G`Kd8-TFAxwQ;#GPe4*3vcYteCSEU%jf8p?dH($iL@Kwls
zE@Y!d9Mv!Z>tc7`ugfC1TK{VonElr}d8j@^AAS7uIlyomdzah{4OKXDKXNl<wjl)v
z4;_e|M(EMm;U>ERAqIk$a$R&spa$TF7)1sxWHgMX<)5zCpPgqprH=6Z7?(y))r}NC
z7ckQ%=J{w<QWdSOQ%Eoc02Llcp?guorCi#68YY|D-sZBX5h;)<P^=}}GE6{1LPJ9j
z%s6@76Y)C+=3A#20m#sPn;k@Dxc4W(IEBNZqNZEor&x~Gub08m0g+uLhf>zi!azU1
z6GSXi!Z0w~zU}qV>g-o&UM?rKF*@JC<L#Cp`Z{dz{yIsWGW0qwg|8OI7%B35@gRbj
z$Yw5Mg0j-7`>q}~x@0~V6%JLTC2A&K)ngvpH_!Ou((Qa`zq!6mhY#K|4;>S?a@7oN
zRbR<N1AM<oODsWlI*tabgR6->f-$B)JPgg}CqH#aY6SW{720<+8$wa8$+gx*vqytK
zE_-H=(RUtcQ)b#@v>C1|HL#O`m2&DW6w=a{Y}=igc{jt7*zBmNiX;v<*M)PFGdbll
z0v(!{vkf(uIAI$P%UsbE_kxGbx{ODcATrshT<6&u2{DzzMD2?|nV*-dv%X>Avt^Cy
z0~B1hVWuxQtry-Fb{+_+7!Tb0#e9qe=fc4H`p_H)QDyr3Ncj1Zw=*{`#R=mdK4Z=2
zak}g`3l(2*o-eyktIj(gd3s*<pMA`}E+wU824r=Ts!G&&Jt6_h4lR2;|DMDPQq;>~
z=;6V<vuSa&l&f*So4XyL&^eOgc8C}SMsY5N-3#o-bO;!zx1{Y{a-39V+828Hy{g!H
zJ(ljjc!n5yY@L@J(n+l|x7Lj0S>hlO@*D}d2|P(_>!HfLPq)3><!+T(W2?RkNdD>G
z#_qaVVzNUs9E0q8j3=MXe2XiH>bZDqupDbSbyI^G6Z$@^=<9&4dwoUC*TJ~?ul~e9
zIMZknze<Z0Am#ANvu`WLE<ewXr0!D0c|fjEU$BbJWg-_T9{DBqr-zRYdw&|Hq9~U<
zc>8SLZ#0AQ7E7E%UR4<je7u)s!p}v-j~oo(ojL`HK_ZWK+LbV{aYG!g@4FTb?sx$o
z2)Lu1CZ<U1sLO^5@K)M*JYdZDTKM$s5>FA+iQ>Uy3&;QwpiP_J1AbkQXsN8R8?(>)
z9x3fj2DrjiyKWrov~WaGnncL#%5SlX?OUty$H~l7*=8Tc$Zwx(ZGi)YtYt+JgBF{Q
z)o%bb-|M&C<l$kgjzH|<Z1+<`U%@_IW;>hdmPpw{p=;gqMI5`F^0dsY&d*0fcFN+_
z+9NRay_*~ThKhZG`PqH!Itw|S_1jbbXXTc~Cxqnh%d3L%{mbs=pH3d)mg>|W<%I**
z-nV;5e(%LJpPjG7?LYl@#vE(>wl!mYl@2nmPeW@+4qZ_2G`=xtSwe~}b-yoQ7^+t;
zD^&&PI3Evux*6DiriK4XvQL?tNiV_TjUyv4=>FV(l+pTZ@O7FV5=}JWmdNp%{U(H~
zYuNLe(<0-X!f_iTSwq0~cBTsJ`>^gtGlg4rDP0nM1;qR9^!YS%OE(~(@citvr0|n+
zi!tl|SD7|C)8|#d)`z($v^R$R+dKm`=9Hk*pU;o_V$Iwf*1)FyjjgTst*^4kcgG~9
zOm)3159<h$PjML<0-qft2PwFlox(6G4p2iJXr5mXC)VyKtw|U*bkyq_%FY#`WiGCE
zB<(z0)w!)-<a>I29d$mU<|R6x#nv86e-HT!D0Ex=V1l{ZaU*uW0!P<HNei`IrX07C
zGj+P}^b0XH|0Ww3G`pQ}<A2*kuGoTkeE$f9khv&T7BJjYA?r?r3A`j7(Gy8i*H@W0
zdBJKCdb#t<`5Ynf<rU9-97XE!=umqLz<_IK3qt&UIo{?9g|gOZx9tTIBdb2HJ1|8g
z6WdEUzJ7M{x(6H2YO(L!m+U_heLwkPLVt`dJd7whJ#m>C4<^Tlx304=@HH%%nB;*K
zBU3V?A)g$1qy(VG!-aoin;bxe8=Jy^{4(d{cxy5%MUQ^5(!oqlH^LsZ$G@w9J8`n+
z7gqVL&O&UdF~=uDjbqd3=a#jZ8&o)7pi1*v-w!zS;ffzb>}i5_bEsHlmK)`^R7$4j
zH}d#(QP+u~<p9t&*pSJZLJd|Cp8&LI(m&XZej^asvsnrOP;y^O_)V!iw5xdAkP*R)
z>~9y_QRs0@Nrz)=nZVx-0##L%ZUc^PT2;G?D~T=z-$s@MpMQYccQO?AQ<UE8r@J>y
z5;WS4<zZlfwi`IPse_~C+I7aE@czgxd<G(e<$4VkqDXG9kd_z4<Ft_gvzE1hw3Qlr
ze5koapPR85IPLtZT<>ND#p+HqX45bd2)U-8i?KCb2kjNpM8^#PEl=U@nqa3XaEl=$
zR4u39!^ODHFXN7$7aI?g8}>9FQ>kibvE|z**_y703~N7b(nz?OWW%_jsDvs$BuJ0H
zls$fD4<y-~VpVU|Md2V?T>jBe5R&Z2<8$@5cs%;8+B$a1+Q>#1Cc&q@OhbC@uI{3I
z0X!>phV+)^KFGq8OePH&_?e9o!)oa4UV)z$hA@4rH~S-*frL>R`%XA1PN2)$c=0g|
zr9TE-Gp<!yx<e2%^Vk1+frK4|PTj}`H`nAspHK1R0!RU%S|JNP<K=coMgUsguhVa6
z!U&pSw%yisxE{OF&pTyAfWhZ0mc)71`bMor&D;;hmJwEYDXEy&*FdR+A{JEz+RaV_
z7w%Ui!jw@ci1{5nV)GyETkKUu2r%gTo~nib|1Li}*N`<*f-GGBY(qisGqqT*Uehwe
z&-^jw+J$u8;`p2ulezE)S{b*ec~;K{Mpk)pmzEfyX%wAllZyEDnPUMX+cC4xKe2`^
z&h}oSqvo<#B;hg}MX+A9K-KN}E`5GC&l;+LpV&RdSEeLV@s?TBf)4<iMF~FMkmRry
z8y2ftF-mU6V~cF{&NKDgMM*<Bu1`ufcH%}PUsSHwu>aUpQXPQ+jLygd{H06^vv<so
z%IabCeH1(IZW@Y_j*r!AgF9gk9$I%Khht|52nxr(9v@wM-~!rT<g#X|@1r8-ZeGFr
zuB4FZNcRpS5cXDxj#80Z0yWdW0N)Oyc_^9ozsV|N?(uy*F6VA6>GPO7$G%;g8}MB;
z-fHw*mk9YOon5=*0_@A}EnfTZ!Kr6f%O&%4=n;d|m{wmgo@VzQT~BtmA3P|at?a@l
zenrbe1MF(3X|T%5iWdzW>Jia2DN((9cn<zmbGh4rkb`k!6d@pn8{RYXXXKgqv*Ep}
zh{M2Y>yUi9hzxF3Jx!p=`xj(U&^$ZCgb1Hdrpovknd4M8<73$M2t=GEu9#`d0yAQv
z-=%lU8d3Oh6bGM5LP99|B-hT$NpX5S@lj%Gox>7wYPr8Y%5JP?^8a-KG}S|+a^L{P
z`CQYqzqjCkIw|Qn$%)`XY6rVCUW&Uvg2Aw)-v%jdY%Qo5A&SII;(kHTkI3T{G_nxL
z5eT`2nM_(C-O1nLXijD&@|m7pt9AyX>vVKKdxpaJA5-f&oer67%rqYFY93ZsL=_Xc
zfx*;!uFhuF4w~yPyT_KO8`oe25(Wl@@<PV$>pS17_3OqhJL`@>hjDm!T_dMCe+2t3
zR}Ese@zl<b3obtVN{GXC?+@k<31)F}e1QMNX)-_#@EzIQNtG%hh@5b)_NJ@D&Lh8&
zQ>{)a3Qp<fSpW_R8erFw39)>;8~-y1@QwR(`}CvP`*M|<gU;~%JtOujb++e}hq*k>
zD8A3NdI@8PmkGNB;13C05qqVrM_aa(@AdCzv~dW~4QwY|FL}I$xu5_hatH%t`ZJ_&
zkPhVc4|X9)5I3%sfy-tv3>X@+Z+4Oe$A}UYE{4{IfNvBlWVzf377{%#io%F))`%o5
z>(+uj0ns23b35NUqj-qBC1cB0***1az=Z+ZJ`Vy84x7406`!qgrq<n&k+_8q^{NCG
z(h|Z?r#F`v4*Kn5VWcmJ+d(Yel)8HjBdi5Byy<5xMR9hPzgdP3z12~M{&~4-0#q0P
zs}{5N;lXOzy2z=QF|4*f>N@cYozzRaxt{}gUvpVVbL-Z(4JM7#ZjKoi;NRx6-M@j&
z`?W;zl<rrZZC}9#AwVluuqz8r?eqMU>5qP^&E#U-nbozeNd^@}?VnCUEYP((p^AiX
zH%h=A_)_5ZBk(sJCr9sg<bbf7?<GBa-|EdQg1t|h^K-jEF`YI+)Y94dij@Bp8e8$B
z8XzfaYy`!L>hMRh&GNETuVW0KiIqZUYIuSMx2KXu#RXfuK3_SvKmXp|Jgf(5(%Bfb
zqLjVs$=OP6-5lgyOtwHnuaSMCcb6o}STdl9_?P6tt7%1@`)sD4$IXBWLLAH-RHu!X
zLlR)V_)q%E^e_LI%0B8WcK%ww)8TsR$*i=hyw%$v)nRwEZ;gem2`w(MI=Ni!mXjLU
zAbf702UHR$9_u&Dk^3b7{>;To)L<7F$i7WD!+(6eDVk^>3->S4nQ%4viZi6f>YP-U
zOdSM=RybR`bgGC{9~eYl@XTK|C@13-o0Jb1KU6S_H-a=d^(So5S?qfhX@3G%MYH|Z
z%JPC~1{ILDJ|Tw~m%sM2whzi>03@c*^@4eq#ohSW@6zE-Ox@xhq4*n#q3#iymxc%3
z8WNdZjh*NF1PoN<Xraum(;ub@WF439!%sB7FrlqSPOy@<P5VkG=@u7rSJ>#7UB{V6
z#*^{2C=qZjcrQbPyAb^E?hTpB_W*!SE6sEX0lni9L#NOdt!X^o&R$D&ieK-ObGCfZ
zyP>6B)7_tK+Srjk?|<)^QZA5{KmB<x<~r<&ws3Ko>zOAhjxth$UIWQGWUZgm^eji8
zTh=)(Vk@@7AhajvIXHc<pQ|yL&Q1xu?nyqK9H2K?xl}YXbzdLoCWb$3L>3*m-pmG{
zv0RGrN5`e-4+MS=9Aqqnky#(6=GtcY?8CXudVD@kvzbsdSZGm8m1<Tz72@<{c(0AM
z71nq^<(jLVh0AnTX34qi?`qnW2Nm$Rt#ik7sU?9W7Agh1DDv9xt!3TaM__Z$@crxz
zKhq{i-XDKcN!6R$dTgiEEM6+M=<MK)yx$yK3LVNNppGp+A5)(;Heb#PaW(QgPN&v%
z`OWF$U}EKXZ3#`yv{lj~(ll;waHWQ**foQIsDo(T$N`|AgSC7Ku@7G)p9_sPtcVn#
zKtaf?gcg)Ak}?V~WUK?s1+!B1hOjQ}=NbA~3!Ha&kj#kU1*#$U#6q4@YHYY<fYF4z
z)RGUEfk`+1j|H~r?yJ??n$G*T3Hy)JXU&hh!L6G2XIrMOkLHQvMsj!dd0xwtqivsh
zk!@VolqAA2($#cO1L#D_QHgB*&%+Zl*Ac4&-x>XVP*`dDTfOi}D?K0jS?@q4vr`rW
zuj~J#<(;A{3%YjU9XlN-9ox2zj-7OD8#{K#>=+%VlO5Z(ZQHhSM!)ZO&iF6>n{#pQ
z));fvT2(bsv#OqFRcYxYI^(*mWi*I@BSvSjj>7@E$2woUqND+TD-4>O7dMknvH73&
zzZO%%4%&D2LM@j3Z<e$C_3-7ST`FJiiKZsk+Nq353LFO(6QCn2Jx)fJQj^(54!di}
z5TeZ#w_c8^vS?HnD1Pc}`RxvbteqkG?<})~+!m!?bzE&2v#}TyJXc6%d-wxAr^(rE
zQo3%N+#8EV;q*Ti(A@>^M=i=^Gk%);iRk0nEZ1Jw6`EBLJ>88ee!hn-VO<n2@tgq9
zHvRT5L7mbgt+|5-U+qusQ<Hicx{87An=k3smPZM3*w}vn<}Vo%e?|)?Gdm?hc%1uU
zF^TwJrn@vHVe1*H1U$Z649eFwicw88imm5*U+^*>uU01}9E2VYYj2AOVg_e1uikHF
zxSGCStQT~|E;M$2`agYr_|v(~4+;nUkiSWI%5Fc}`6es=87fR{8C7|XMvVd+YmMxZ
zD%_SQo?)!N<<bPczFroD4g(<le$0`k0<T3FL7c}3I1fhI&cu+In4D~AA~tz*#9ba*
zr6Gs&HsE5g#~q40b>B^536*$Mh@@YdU)1xPh$*rft<7Bh1V<&Cv8-xeKl;4!*e&lT
zhog77d_SP$N~J?qkH;a;@63?8Qd3_)j4(bmY77h35mCh*lTk?J5^wJPS*J)w$SFzA
zCK>RplAVqeAbzD-DWm7s(-R~x`TAj^iI{XM=(!D=Di`uXI`=S;uo*+(+PKp{FuF)!
zM1hU9TRlUg_W8$98#Y|qXPdMBVEvv6(0&^FvG0oq!IqVNVwGYhVO(P=$HssF_{}0t
z$zqP9O^#+9O~Gf|Z}(wdAaqGxJ!N5XRrTGR9Cz%N7JCBUf41H!bYO22j&!W{UC=?n
zt*G)Wd^lold9b7MMBvVg8^2Tl)+Aa7i`i<DCUJ__DOhpf2Yb<<2v64j!*Wa+1sa|X
z&O^9I5yW`ZKzr?(G^{8qwCf;S17!exRKdnl^+5uw@W!rvh@S3zJV>INs9L`Ogfsyh
z&{R3$urels8>ZgSa-%n8GSnmogM$PYp+fQeH$+&&BNjwQDXBNInAU++coxyNB@elr
z*)=}1Ssrg%nKA2A8M@Lk>odF{k_~3SZx%`x#E^`2`zmtjiP+fZF0@8LaDXG}WQ2>o
z6LP;^<T}-mP`Q6q9>i<&`ej-X$c?v&er(Ul;BIg1vi0j*OpH8onDvm8R;E-z&3N>E
zj;<5j-~B4K!SEk!R_DV#5U&r~UmLOV1DFd)J82_e|B!lV4CK3<*;%h0OZ+33$qJ_0
zSWc5Dx}`~pJD2HMGi6d<_8QvS8Ywp?k`=LRQc<0eH}ybrxLg+V=t*TM3+pnQxce+Y
z=-=?>>yC36(H!%O^H4M$xx{^7k}KF(esx!+_5ZHyevtmBFhwJl5uSr+prqpSvAi0l
zUV{ioC|Ad9i$6L#ygyk;lvEL)v&O@vdzx2YT+~?LWM>Z%jsF3Z2Wk`dP1XvVMnG>Q
zorCqFU_^MTtsFg=f;_zsOz%f0#z*B6G1ccL(u$}O#db#sqeIAMPKFd;&WMOS_AZ{H
z+*8E!mBsH{H-5n&HSh1bM7=&li06-d{<?vPFwVGiZ2>9ZbJ)*s3vd9<k{b>d9)R-k
zMM~_}I7OIM<}xM5WM<iDL8U(gQxh(qj?AB3>gJqlXCeHmN=qRPotPWK^>qSk+cmut
z56fL8O`ZKz6m?bU5chtCrdDNi(OP(Xy^rgMXqh+rEtS3)bleSs@W_nqpuhtSh5n0Z
zw6~q}XlBwq=D^F(Br%jRTRYr152umdc__rFTq4kCH4dkiRjJB6-}Gz&{KYfp#<fEX
z#T7#Z^>S;WqRY>*b0DE$gsH}xQPr&zHcg$~aAW37ojLQWse_po4am>28f)`!(-!81
z*|o`r$NzA>AKo#Mim|k`oo6RN(NmBj-sVDNLyM74fTR&E<XMfpvy>AXyuJ0>e;Os*
z4Xu>Q*H%?!F4yWQG9<^Hlb%KDo96(iWhzJ{WRBl@2>4a49XWY+*r(3XjG%#OV{tLi
zm3|k`q(R<Pf{OPtWF@{Jz)N&&HxzGzhbV7)`Uwlp+xwH^?(;LuQ_2fVFSg}##fH)6
z@yC=XF^W&z|4ayMJc-=x;u)os9DkmJjiNZIbdeH66<s{MBzm0t_a%9BL<j)N%$YM(
zyFR2L>)7}`OK9ehyj?UODF6_D4ohe6M7S_+ItjrFEv+bV*PNDwGGmzp&{Y799e@K!
z;i1LCsT(k8f9L-^hlm(vmdk<##7h%aEge18i7Ok36Dx@OTzP6|x=bQP4Y7$OjO;^F
z)A>v(uo{n_gghd+p`ub<^Bu&0&zJb~4`|y8^&g-unQ$K4>W~SiRc3>I)(pJ3>H7Rc
z?L+yL2dQz|5Az@R#!mLm$m0BxMOIL=0yooS;>2_f(p-ZsG`k#mXn5!cdD?FGvV-y~
z@tUDlrKO`hT=H`Y#L_ac8e#P-S$ztMToYJ#()(`0XP%8oEHrC@%>!dx5Va{2vW8cv
zsKdMMIbYpZ@rxEdmiIi}{Y$~Z#N4ktMeYy&1Z^oqC!Ri4s2t^x;612@NlkF7)-u3q
zDpWAl@{P0UXi}3Ka76~A@NjDBgre^=;gn;D0F-WpEd{I!(NOP1d<q&ia%ocVv07W6
z9v&{lzN3dr#<F4u%j@QiP@~n1U*Ys)-~ef3yU5>*cc#N=F10!+s}H}>2;dUe)-tG2
zf3Sv}dOjd0shwA|MfmbSgXot6x5!9%Ai;ZTAQHt2rg&x(pF7DqmH$y%2AQ-z@Mpq%
zw5YtC$xx}0J3(nnDTd}ktPQ5$ZWp~tnM3mo)l$;u3bj+Rv^Gl`w?;PbOIN4oF|Oa#
z)E9tR+$<411hIAleEu#^5Z}L_eA{xDa?>a(I>~eyOgmNT+xbC`cK6niQPd~+`T^#;
zKWh2bEgqpKy3#|Zq0&sK#)Ufch>%T6>SPagH|(~R2oW>_*!FxVf)LREXK92TB0)yN
z0(_@_BotW4us@>i^HnPS#Lz$9&M^amsc$R`T3pgsO;Elo6aQ_Ld;HsKX&cTwh@q~K
zRKMDEO-wr3vUcG0aq*Pne=xBl29w3R*Pq|pS(?wu&gs+Uy1;kkkAoO8HcD63xubcM
z<8qj$+~=dONRInvf7jTO<Ey2j?KX#`nZxg^U0bT2O0PES-^(Kf30dn_5r_ejk%Ay0
zBb9bF{tsQ_=|2Qp$L5oxXks*g3TSni1QkY$qme;HGABl^Hs+G^Q5I)6Q&r5DTcD4O
zE(??JhLB+W^>~iS+UDO+D{mh1Dg1IYm6MdX(V_<1_2Wp#iVf}bK5}y2K}&mXZMrP-
z2%(}1VFfib_b2U8plsF-1e+2S1R$848+-D_JSWpb>pIo|Q)!<`1WA-uerwr(V}-Oz
z>>r!Oi@Mba)fmKQfu481@9p-pZ7Khhboa-+ITXlr<EM^CT9MgOf^{;@=4N0meU8iF
zzl;6tJ12#jv?AKbr878aG5aRjl)@k6r%#>~(vgG4;V9Q{3{l?vmpq^;cKNz8U4+Nr
zKSy%yG`1X-dMNZ;#?HnO7)g(nu&7{Z{miELyWTYarL~~^r|fQqqYkxFreb3xzER3S
z|Bfe^{3b8jwyDY|MHv!irtGUnEwE8gd@Ja}f6jjSgWT&fb43Ak_maA`tfyh0fkn)0
zdSVrbZa&d`TT2w&w{xWLXR?s-(4#cm_>3uWVle--N@TzZynS}$cD~+GFJVL`HAG|>
zv$hS#^_pINFO*nT(@f9aKt~OL{cdv?Y0H!UL&Yq(Pb8@Z?H}AMx9oos<6jT&OJ6E|
zDw5se)(JhjipUsx2iOy3^ET_XZw<zXEdys~y@Bjar%Ebf6_13kUn^}_&(x#$VB1rC
zY<xPke>NfDNag{v-crJm#LEM*RD_Ym7EkSSInLSHdLoJfm^HIeKduCXMFWJ1L+<sP
zuFfahudd=Y<T*(KbA!cwJBdDg+(7MDe04@ozK3=|pnF@N(_T_Ufg~c&AHUA(W;Nxc
z@apMGJzn?d2)9;U{GktvnK7Q07cFe(vQq1LYnDoru>Nd44&0apYlnKv?W$=@Qu<h`
zgg&#<8s=o834y;!X1BP%HjFXU^8F3d@`tzQLihNHumJ!FQQ|pR93XKpiuE_<Q(@SK
zbjrm=`%rH<cv`+JszsXu?;eUjeEbn?hnM>5Iwl;DmOx&P!Uw&I3|*}0jgk@Dnqmp3
z=V=lCAuxd1_=#%<!(wZn37^~XEKfEHc(<v96E}I;!sH$Pd+6^zuFc#eCwyjTthzqy
zMhF0iJCkaWEtV=8HI{8j!x10!^es>A=J02iU$}RVNH#=)o}l_bu8EHSI4nspiX;JS
zo{ge;CLnu(Ikyn#+KWSxpX0L=uHqPUHXX-fhwoUPKK+Yb_jyXqCQ)yGyUHj=%8ILo
zkZ0;HNhNAPqsckP8#AWWgk0L08y{$aD(bUz_KeB3ze|a{QkWLQ2_i=qjTqcYZq%X?
zP-OR#Eb$%>t!b5uH~Y$E2K1)wPNuUsR^3)I!%j!O!Dl6_==d-H>lVOpJ`kn#(HcX&
z{zukmG6w>RC;+xlP3Bb^djqeV&!5p`B7{+p0mra`+cfo@D0dI4bLROr3VWJ3_}Zt=
zN}qJHMFmO9iCGkYvrLa1wbFxw5(`jf(TTZxrgf}B{OK>zzVh?Hb@c<HPa*~jhxt$|
z?H3p<eob4F9TayUrYLOQBluCZD6F0hk6TvcQE{6lN?T9{i%C-PM^dk9C7VvfVs~*b
zj_#|EgQbW^whM3aDQ(mSCF;{IHj>Tz(lh1r<LzxyFc~9AMb(bw&pDtQ)liMZI_vIP
zrmz*Db}A`P%0I<N&{$ggzB+0=VgzLvyvH4D5sWY&@y9t?6c44l8-gTQsV%_npM5TZ
z2bhNq_dDV)bOf=2P{5;ElQnp6f1#}9;E)QZzz!MkhP-CW;u}S$M{|zs%)Z&E({2jP
z_N|%rp1N3ZTmlF4jOxW;l`#ga6Yx2yAP)6?vQ$EfA7uPW@Af707tv*UKs1Bi68wNV
zt!TF>X_N(8Wx8T<p%{;PndP)9aK$q?QCO1s$Lb0Q64wg#7PX;qFcEEiqhLLIiWo^8
zlVI%PiR0xr9uj=vD3xo1!yczh@{xsP^STkg8zozSWue<Qhv=DV-(M($X$!l>mG#SZ
zXef?h_|Yo8aNG6VkABceXuTZP^EcALj`)h)3T`r-vN1KS>niFhKa~fx1x*h%cM2%i
zpPuWQkYKH=jF4uYI?igOEGVxlk~(p?KI6N_PmlZ=s&ek)h&<N>z6o_~-*io6%`oN0
z*mqREmAAN9xXyqBe&-sw(|h=c(tiVxTTY*c9mSkDGGv=udvAO$2d!+VY5Gwv8QuSy
z+7#eNvk`*T^M1ZUCUKo$X>8(To}do3^n{13B)=vO1{8`Hxa<9JrmP~?_SfKwn>zsi
zwk5#~=(cuK)6B5bklI-O=J1`d4tfhypU#HeOk=}TE6HmYDQe_0+bIgA_mtNlLfh&q
zRmQW?!l*yWIJ^~=auZoQlkeRy_}JqKCvLGU1%5`L^-NdB<0-pGlLwvT@%4qx%UZi)
zUlSp@yrF@z%^9f<gD>t6J8}K%afUjbroG}QYlHF?&wvptu6%4%m2P8tOoN8S+v&X2
zJIsd9lm{X!iuJeZFig?o3^H-^eNgSNPHukcrg=O@a{`>jcamUbCA`0VLf0fWKE00C
zTwp^G04qP!7OtaL$#1>rGU+R(O)HtWF~tidr&#O7Q)5RD$>of_8SBULfi1eVeV4A>
zx@vjBD3g3=jLl+1v@Wg0OA)}yIi2u9fEo!yb8)K=wTU${K-=X<SgC3pBv3@A*3Z$n
zshTWo>|{Z<MNBjkIZ~(USTjo3%k`zyCWDLxGOYL<TLE;Cq(Aoah*V{>a=}yH*5a^^
zPb1TAEP*5Nc&|<Jy3kG!F&G8#FN-yjvRsDEhDY>pn1I{ZRno!ohl8M}SYn$TzJx7c
z$?~$&O?Ny3YsO#*ryVPVMPb#87mS<M$dwr^+4GCBaI2c#XU-%ebQ}Fs+bATJF+k+9
z$f<KQOTed6#dMTjoI-dIk{Tnv+xZ)j@*ApQw64gXkTzy;_lMqqqGG;>NNo7W!YmeY
zM1^xy-}?6IbZh1-A|co1?#-H=Pudl0dZ7-7xxn4(h^MJbSNj1?U`=G}QH6g?_QkvL
zgJ;(#*QTp4)h}U6p%zEh>C-;C&Mh4U5!h1})A?&c77}Y~#xX&+V?&vef{1bMFGjJU
zXz6IA8D?3n!5tHh2QHDdvqzX$jPm853Cw=RTg$@Ur{9F|>AxNG8vn=%4*yO3D?@v%
zPUY$92ZNI%s>xMng=SCd)FTEhKo~r9-RtVPI*37bDW@I`P~4{A?OJR9)l{Y!tf0@m
zQ0>2Rx@Qi(s^26u-DLS;uM>y*t4$mlmQmGeai`-=QN4vf6=&1?{a9p!?7qF=RdlsS
zY|-!Oo<^(j-SR-fpDUBZemOjEX&~ggM`{V_)%=Z^l*<JCwekl@o&X1X@D8;O`yPhE
z;z)CBYS~8-BPgRab8rNKWFs^NZ&`rzCn!Imru5l%wi3dV^N{f?v}01g0NNe-4#LK2
zvBvJL_9eT3@?JK4-X-?5egC5k8GBWL%jMEz>2Ye&yczfN0t%_^<FW@6PjDr<3b15!
z@7wfB@X1K#F+Sa|(4%c$H7d{7{PD9h#IuskXn47%!&q!SvV?u_I`Dj&X6_!QYx#FY
zeQ|dT6J7D!@A$qpci08gk)J7^yjEW&q;wGS>&I>O$Jmv-yY~J*)B!$5XHs}<000io
zu2eLB1`hULqsG#8HbE#c*oN#fEFenPb6$ZLG=lv5D%*g5dVGR&o`(HdnFMSD5q?3E
zBUZZV4Wur9H>O(B#)AuKahhp^!)ue<<C!?oWF}`X0%9%&m|Q^*=H+N>-=*uaUQl;L
zKC!hLZQ#*!tG*my0+Iw<iVOhgCm;Ybk#nPAOg&FB1*sOzv*}?jSt7!Lfk&&PTfQeJ
z)IC;Qfs+I~%0E`LvO{-k*EnDTj(MMs5nptiZPiz!Z%KT;C5UM0El=O{)?PyYfSw%9
z2nEwr7)##8?y(BaR8Ck;UbAyTBHUwtiEW*aC!~?CP^0+n{?)OMuH>!t-_xkWnRCAn
zPFG#NeV~etp^YewC9}`iNFC#Dx08y{Lp<TNUEgL#u00dN_I)qLdn=(+z+cw4sjAHH
zo)<Clc^T;&8k1w^b{hYyteTlT)`+Qbh|Lo!J^-263lH7T#7H9NMy;I1SFC9M1K?vS
zm!#xExz$TtZ}h2q-CdGM%cgL?>DpfsaV}*1jHG&gAVkPmD10waG=WcK!{1<`s)6)8
z^zhx=`)@2)Dm!p!muic@BW&;dGb?P2f~9?JTY1g_Y5jig5a0WtMZl)?ZOhH1Y4@TG
zIf=G*WApit!<Pq%_C|L(S1Zx$XTnqErkOde*iTpT2HEn;chy169O=#5Itkb=`}go0
zuCS-V$=<)dcuz9{gnfh2+5GwUYgs(0?*Kef<MZRSpeP0WEvIpKk*u(2B3@vE)5_|d
z8-T?6IC=#_ZAE&`J(+txZzEK`gJin<KsTws5MDPYF7FAcNiM3C$IaucQd<H$o!h#<
zobTSIi|;3WGI`Yo$vR7e>Sjtq7#(%<xx&?V^ss#p{)Sh-Ob}YAu7Lq_u#!!ywlWO1
z``a1OCed$)Zwle}dw_sd8K!-WHf~>2(WDEX&{Lw(!6Ph2L5;Q9Fu2g~MCTs9<*V+A
z^=|_={%f{2M&K23I9^*X>vc~tXWuD*Iwxv$K2=R2tF!Cb&C2`Oyy+x<aD#WBhhcBj
z8$PI?#|2DZVUXbiTo+d{Mgv%S^|U0?QF^H<@-<2roZj1i@SS}L<L%>l)SEIt4Aj5?
zsNow{$lE4HZp2YML@0{Y@R_dhHJdbYkIp5rAvc+SsT5JGrC_cU4l_z9W5@`wnK|kH
z(!fyUi}3!@wo8iZui@F#>4fUC8j<_SK>`C2i;_AUsSLy7dNrdwvgRcMemE}2gvVJf
zb$%IyFc}q#a3N5i+UPiRT0u3A2-pS(=z6i|?K1zdV+0s;rORC&-Rp{XDZ}XwHZr`i
zo&%J02YRpCoE)#N6Jf@1ePT-YU>=d#v$Q{CWoi%s6axq3&pS@>f&()H&siUS2YI`#
zUM?py3xD{TqDm8Y+vH<n;fX^Q20{j$r;d?%i>re;IR!@(obvN+auirfqY)Sxi%sem
zwbhgs`Zc+Sk|`_J{5PQiN@_BsyHxJs9KTh_f*<jx)rYrQJ-4J0AgD)~*dtu*zc0^c
zAxY!UO6fG)JzOSYK?9&d3KhD%L5OEA{7;r48@9DF@JgTsQ+AH{j@j{p=g(v3&p<FG
zUs49TtzLi(!Y!+>dqV!-7^zx(fRb9_C5{loVC#X7dpbgtrN>e_3jst+W+a^_H!<(z
z`LfsFOmJb5h=s1bEC{~PyQ4ddnz?O3k|NbIe?fhE2w`QT8sjuB!PW?GuM%+YxQKHu
zR>D~>hxIH5FaQQ-N}bLTGC_uivtH?dc`fgErIODgCxEb8V?DuIA}uulBY73vqyx(4
zrGX^aFQkm4J2E`~nEU#3D<%8ky$ne3x!uX*a=896ev7Yj`bC)ic9nVa^|D{GL!z0G
z=W_|_5~^{`d+GvpabGqE)%mjtI`!OEU0p5fMsSD``X8N;94=Ii`^zsDUHxw?!1Id(
ze5=6y;2ip&Kg#`$dm(UKoxpw?kgwO#gB_7`aoCs1To_yB$v7RXUNo2^<h$oeAv1B8
z`60C^YymvzF_F&Y{7fHAmZJD0ZI?8-hAthu?55iGNo5~DFG)JVwqe=E#+E}p<&@S%
zK6&M*4adUjIAz;_ZId>>MpU11qt3Wn-H3g8!-9s+y40eE&bVaT#$l3K2#cc>eT?~7
zg+c#smZD*CyzWsp+cSegPBLXHKlR}r9EfZbK8nkyitCp6fXa@7gY`_-d<`3M3wwnY
z-cBithXI(<f&$T8eyTUF2VD{{mKm^ma=NKE{8cUOpFQBcz4b_OdqHHRkly<G=}i+M
z=~3`yxchQZQ$@+_PsRE*85hK`;9!ne*h$sl%hagC8#ID4j3WZ^21TbR*nJQ)67I0h
zm>5Z1>H>vkP!d4JF+Hq0B=LqHfcbdko^n#Ip;Lw!-3-my{ogh~S2-ND{dpp|#q&%R
z*w~1f-sGDWd;{m3m%5bWo2GU4Ja^mQ%a&9ObfstU2lYR*>Kp$q>!4ZJX^UVC(9uEF
zVIC|DSj-#O2FPH*0kHAEQ>@;(oC(p(8i|;x3Pq>VSL4BjM?PxG)WZL5MJO4WDA^}9
zA<M|>j9!VnE9-cvc?}{7)?VVkT_VA@d+U<2o${$aPPEYXyw8GAXDD-<%NQqnds1&u
zHjq_Mttl{hk)OCY%=e;z*1Xhib=9mzq)HBKip5`G$XGMCebs_Xw6>{;z8Tb(`qSiW
z`4&TjDyOp6iUSK)47=bAZ<f@&bkXL#*)7JTdAPdRS)TQYhP{}+A|JdbFy_&RIZo_-
z!>$?}&?f(jWe`Ks%y9ctYI7f3)z>~ogV|v|Q>AHSLmiQtq7^{Fw9@$^Bv<R4pQ2|E
z>B)8g6N@4$Y#j7<vGDaup10v8ezTfJ^NnKBAgj*ZVx#3glwn4^0xNLkA{Hwtke%;7
z%aR?pS4ttL$+2}xLz}h~H(N}+0hfGhJZ;}HsbRzXX(JczjHTJ&>G_(tLwlP?e;%da
zP25IVzhRn*GJ0ysHNwcV4L$}F%*>?f41W^)Z9sfBA#0+aF`=*N?%N%ED5^3UcpV=u
zhI~Q>cUJ_NNUbc!`vNK0n%Sj^OX}P;*1oM?XTD?iHc6iYF8^p6@V0xh0Nc8wOIu+C
z)Da0b%$Rz$Mwf#Y!-Kbl`Xux%U!zRq_JVeRyyPS-GL^pit+Ir}dbjjGOC^fu+--Xy
zA297Yba@CLiejx-fenPE1p|Z=dt`G?M?yGE`Clwt>HE2U$yX7j_}SGOH-&ZTzUI1&
z2;6l}sRM);fS0MVL`hg%Z%agX?-mT3u9~YsT-N3SciX|2B1*|X!-FsfCiz=IQB+bX
z{_B3Sx=?onO}^1df}c+ZRAb1^{sO^%Q{^Aj#~a@b@US}HkCU=r_lP<y+AmJ<_Skiw
zkZ2UaDzw@RZ*9VG->0if6I3je;`%KwJp_sPsvXkUgqrFHP@$HrE}Mi9SFTeXAdVQ@
zf#Mea79%6_vRJ;Zq_5c)SevZ1vdm??T^1*QzVw|INBLpCtvyet`h64dT^gQ*wm3=O
z*y?=SjAXxRk2qCGB=q#TobSo{#p805-a#kywhzK^H>HZzsozV_pt@RH+*`puioK9)
z?6{MdUIz_|myX!HDYQe&Or}0<KHg~As!Q61uqq<u=y@g=#WoFyv81dne(Ld^NO#^j
znsb4f1n=RPXtIl>aE%Op<oZb2G=FQcCC#n||G9_K-{g&{9^fdBM+~y7x%$Mwp`b-7
zkf{Uawq~2i14&Gxo5|8?LGZbqyWW^iI}sZ}@+W*vf0w+vuKE@FijXhk4Y}P{&vjVL
z6+mMI?8196Z%A8c%4%TjcLm+#(#DnRSvJUrZyI!Zi;{DLte|~J<-NP^jN)L)GM?vb
zks#=G=P_8{%{)E6C(WPa*y7QhcG@sgP7N;-De*JPB+8#Px-*rcREf8YYH`P?co`KD
z7_=$~8CF0CUV1}?k%LOyr41NTSkXi&UUErx?TRUaIZF=R0>>hn)YeSNbnekP<d1|D
z)8l2E=Y7;U`#lX`VD&v(;Jw4FT;%vk60Yx0`K|adjO7jkXYRD(g<HU8g?QOqkS+y>
z5Hu7_EZIC|rTu)*c|(I6G%a{8;oEEH{1R9I4b+yGIhxU6B9$}JoC!orpBY1G&RxC+
zXwFm0mNr38CG-23{+ILkY*(kp+UJYVflJm=`?HeI>aMrOKCLhyAgb+S!oSGj*?b0F
zLS}!ujVR}<2WI~hrgQvvAY`oHNt8Qf2B**MYJyx;=h}XYzwcKR^3?j<>L%`!3o<ZO
z=j+2S+U9L3%CDG4z`NeDtNi7WsHTk2*Bn?QTCot*)tP3sl)5$kvb(dC?MOkf{v|vg
z-=x2x?IN*dDw^YYCFpk!Vlw#b!C`*xv^eT`ya@o;XgL~_7?XXjtjqQ|U0IS<-0ECL
zM}zGk^!rLrS}^$73xn^Rdk!P?x0f#Fx7ax)h1cDW_V>RT1@de$dA@A;SUBdS$I(CU
z&sD#C^YQ5Y*p5eNvA_JY*H^~rbNf1b+CE2BrU;*Lg_SVy)ZRMRt9vMe$fJa}3k#46
zpUoG+nIHy?6L^GcQ?A$wF{#8gYvMa16tKET2k)&Ub9v2EZI08#XoxvDJGowA%|6Rr
z#~vw}qBI24&Tf9m(42+Kh<VHqIR7?xE{`H(BxJw3P>?W_88urN;4#2d7Vv_`nQO|L
zcsQZaPEQfKekBxmpNr+d*<nadTKMgEll1^n!3!o+7=gpBD5`Wc_E5ut3CVU(VgV#S
zIbkxJIMqa4p_Ot{VRPqs))%$wUM{h4CNa^w_?K9bnTYZ*bGo!MQZi;Rtv7N}%za4E
z+~NZDA}qB;;_KX9uN0uwovbS%0M<<Ve?r~m&Pk4~oe`=Wvk)z;w2)5LSQK1XCpN&M
z5F%rze^a8x!y}BXR6kF?CT7Po_cP_WK&lmD=vBJkP%wdLB3riSCp%EHEJDJp^5&f-
zu<!rOoYt~x{`w|M@EvnB@MQ@j?R!*Yw61aL&xsZKCp%J+tX(lHtI{{cBxU&a>DvZU
z39+<E^#$Zs3gUYh*W?1^xy7z2?w7o-(WAB4)iPOH|BZ9?-QP!CgdUr3lb+XK_CKpD
zLt9u=7+$xQtB8DW4#^y%m;^F^H$Hb_0!_NZBgy?=dv^&ap#e0Yaa5bFw!KG@Ek<5a
z_Y8rn!R<YV&x0+SQEC7=5uX{7!Cl--lV8_Y6g@nE*!AMX!)%gG$Qy!GJvoL2R8rpD
z+<f9dbkh51pmODV*?IK3@8EIyx#XUrzoU*8WAe0C<&#JcCTuM|AI_oZI_`0}L(w*l
zNc@uNw*9>H`h>JM*@~wWKG=Cy(dF-?3m%ZP?@HnJG3H_p)M?tsKVh@j#94k_XCpdi
zWdZyUOzAOB`2ud%6A|gCD}V)9dJSPSX5PJuIQR-1m{@c#q@-XpE#RucdJaebNP0#H
zRxZ}5Z$mce%=)`bp-s;(r4({aJ6LS8m0G`_={3#|8*Yls#w^NR8RDYTpj6<hom4*c
zdK66?jgpU)i>dV}kTVJe3Lo6+P?JiO_FOW60c^uk*N+f~u>c6W&rK;3aJ4Nc%P#eh
zI6zaJ_$szzJnlU}u_}9!p}3b=y&_Djp~<IKqxYD^d75-gw5o3rYRUKtjFlsFwa8b3
zmX?z8GU=)WtHAqekDMED8Fh7}lPwF=xKnnrX6q<A8Pz9)W6qCIE%F0X^ALH|dJ&_U
zj9aoW7re!O0-lkR!L>K}40FCD?L(Abyx#~>oFXC%Oj%c?bwLUwM^j6zUBmi)Fhi)-
zUQeTiP!hJfIhVR4Mo$4~+VOuJF4pR(YH|dWd_x|TwVfzAj#}aNK+&c{wPooBVf{TH
z?=&`~gvJ~eaep5(c-&S!obP?o$wS@oSc?i=&0Vw)4m!)2e0hM+$iG1St<JKvWef`H
zO1-(<d5^Z9cycqO2jn>=9d%oOOBR1o$y}6fPl~~C3Ix|uKouR7ys@@T;c)r3d+^su
z&PY7s3Xs<y-nZ6aK?CO1)M?&;c++3t49?0rPAi3E^uVbI_o?WrmAAe~GR;RERFZjc
z&5p3-xu4pW?-wHgKtN{W{mIjlSJ~iv(v|1Q==<XX(-5QYu73{t&G@dj#_J>>NseNr
zcljXw5b|Fc)wZYb-2`jzZ^tr|zDh!47-hWGR52aQxeh2JrQiU=1#b;IJ1soKf5+B}
ze)o?X@#$wvi8oxatw7_{zOAe}FiXky=f0?(t#Mz!j{}R>-?J){9$uK!rMI*aZhx~M
zW7}NS)Y5W)ZBBX9yZog9dA1Q(pZ2{?RfD|UmJ$)a{Cvsus8Y!nBv52NJAGFW2=SM7
z8mv<x0m65jRlLUiSBmqSD1eZ7Z3)bQv4q}?^I!XOg%KX9Gd7Ks7wHPADESZW<^&02
ztQ=&Q=&f-UfN?7_e3;<7#rHgprHjsRhxQ(7ljv|>CEdz>_1PJsbkn_hu<gxF*I{L$
z1x%R!QdsRtbuNuf3w-`OfFEh9jq)GNz<LF)1W0*L8Oc4F>Lhncsf>*ZZ}D5BEx)4i
zgc>U(JQknsfSNf((z+!K0tQF`&)4u_*6wl7+!YbU@Zo5CB1{t~IvxL*CnBZrd>!5A
zqZ+QR%0(StzpJ*_Ua-wB*=D<%q+^I2m%ZJ%jB!GKq@y{0G2Pwp!^`vhSVZ+oh3>F+
z{MVYBn!=w_n?v6Hpgz1fYpUpGmz@W3R;(<ZTHh$=x#L$l+R-wUR`C?GBhNuqIy0V@
z$xh#w%=KD2dm{5gHX#QT%4l5XlcLXdwM6g3;p{t;A_-1lv0Amw1@zo?-Y?2c3}O{o
z3H{rmi7*#NB5d75=TjNuro>|~^vb)X65(341CWEBOZ`BXmu6zw_Vw$7>-lky>QQk?
z3q9RQw^N#6d4$eV0yx`Q3qjdIAekg$I_tEeWBOQa!r~Q=^1c<Wi|NG*rhxDM_8$jA
z<B|23iN<nSEV-JD@`MRfXK>Nu)3#A%m>E}m_EyE_<>%By<&yjT&!hx8*_aH3S%pkX
zYxWj8n~hSFZylVHo41F9@6bYE<K{QtnT}cU?0)Aip_0NJ^Jv?!FZt`S$W|zmus{n0
z(gFb1<&{=9RS{dqRM;En$+uN7Ia;dJm6LCdH;FmzQiN}7?k~SUx<smXde*XoW2$Wf
zDybw8%^vH8Q`g#*T6PbG1?GwA&LVz(!8q?o{n=*s1dx`M94yHqRV0_$voi7=f^{Mn
zXb{AO3P7UC9l{E|C37WgeI;n?Y!q;0>;rA)hDr+!>LN#6h`K-LI$M~mPi0|~JEY#s
zD{zc3j`$?_CV*?YH(k9Qir0Hkei9f&a;RgF%5PeN7X?Osd2ylq$GiJd>!Reok05Y3
zHJ1{}3nSHOu^9<B>;oV3{?fJ_eiADB&r3F)z0=O0@ABw6Sz2pd9&IIkdK~HATxOSc
z_3E_po1LsH?y{ANded57u5(XPzE8A+;{`fwalK~LgVDe6Sdm|CwO&h(LO#YLDJ*a|
zf9hP$#2CC3rQdYjJ$O$HX)+0J65qTt82Hr>xc7xrTrmY6&Vndl1a+KqFDnY}_lwl2
zI_eUyvnZosXt`c~iB&*Jxnr<<R@Aeelu<~_8@v@Vffz$d>to7hGq^jPUXnBQkOY-9
zd|gix3gq#}tz+p8eD-&jgb|+nH?9?XoxJ*X=N@>{Sdl+6ordpXab78c@^xLMw6zTf
z(txfm8gu?6^_(tKPwC#Ln`?~f%sgM+O+@&BV5PF=R%IBtjK|po(C#ffE)y&@<N%QW
zsY+Ur=oNUPpA`3X{c;zIr<j9EIiAC{eeF&2fHacXV=xuCpn8H0@#~}8xRKSIC4=UO
z=-8ku4krlQ)0{QK$G=v`YYh$h5rO?ur?aLTYFkF<wIBT1@diD|XZa@AFaLBJ5AROr
z{`y!(6imV9S`*AeGSxA#ClJ3uyFB`al5GwOIuiI600{|&as-vAcpoAHV;zPALHyfn
zE=Jw@tP#uu`yIN7d6&tVhcmhV*`7CSK*IAHPCjFY@ExE=(hd))Jjp|eor#5BrTLK6
z6XFU!FrteLAPzR^@3?k9>nB9oMG8R`Rm0u(D5UQL8duQW5i6Zq?OK`>hdJQFn`vW~
zBn3|_<WXu3S6h33$8SKxgf01lAZwJX8E;$WxOoZ#Ks?&Fs(Svt{G+05)pEeWoXO5r
zjyla*jynxJPpG~OA6Tpw<a2xH8CPY~j7yB|G-P2T8Kp_XhQ_=*l4?(im+kegdXrAH
z>Erpi>AfZWI7r~r)boKv*NF2S@H@cB<TYYpZBCXZQ8lh`?!`nhgvsFK60AEUmT>8h
zsjo}zN~e@sd<1prpLMe)9^v`31%Lv;aIwBnQ4qcLyvtqQ;zU+|(`QAnxhrVdVjH+x
zA$1M_=spk62uN?%x?o9GjEqS1%A173*skn!qA|MNA5Y$vs9XHOGZ&?Snl7z!+yw?#
z@`}O=2mYOGD%-11SQzn$^?+e!PDlGStUlH|dP^<2eS-`|`b`1K<4P32|0#q|V5?H@
za#I5_TzjgRwD9wsw@Y!sr2IE`#J4l>VCGbUVsPR0ny@DE>oqTZ4qdWfWy5Z6OjMw-
zSt0ud&?}1W4aH@Zry<9i82;Hc{uZlWfWPxnBcNBfY?qwY#{kzp0m{%;75KBhb=kla
z3*?<apNm)z9*@&hL%S{jhP7z9hGhIBlby7gvZ{IAGSO3PNU$#q@{hvh*cbZK?v6>=
z`fu159y1QC2rJQ6M51`%$j8h9bI;(<<;oc^f-Yq2dEoLf3$RXmI`UrZ1e4zIK9OmH
z7%xZLXW26NX=~+W4v$Hw@hQ70P74f>){EqKKLOR-1OuOZto%)oN6W?hW)y=8fKmD8
zx-dZ`@Oc@ve>ZV7{(7nUS!<YPHCJcjoZ;P=zi)9co6aTZICgUIJyJIz^ODUBp`+SH
z_7%ck@A=gCk?HARrD3LHaNN((T+U1*yYWp=ajWI)<Z5aSk6f}J;7>q;`vu^jsr!m#
z(m0$|^s!fdIiibAE#p=6+rJ^16sxM5QUPqAf0J!g^xX?-8v97O905W<w4BU%Zro||
zw-&B6z!oBCy{vaM@$(BDrHYzQDNeM{*2Kf=F<fS=wOI!d%_iUCE90OLU&e~`Xm@s3
zzUHy77heOa^XcESi&+ilr3Iq?c+oxwQzNqT8vztToE|tlu6q5|oZ{{c=P9z5w|UzV
z<1VUBSz@mo31*-Hg~YPaqnCei?$nl~H_Gc$tym1BIkatqJXcLTz#s`w3{z+|AHiPM
z?OT{*M$k}!nS+36RvA17`QuJJ?LcnRLl?TAxuI3RpNYnLWwWfG_}e)ccmB){>-5r@
zG$=g1;FBDnb+z)B&(nC3;>_zagJxhOmXNM6k3okerj@k(tuNboqDu~nFYZwpHg=(4
z5LDlokJYwozem+QRr0&GV*Nt?=LOdDJx=%}0Q{*tpT5S})(g#gtk&thNq=7tiwzyC
zr>MOgLH>OQrU~M%_Y1P8B)J8?EpLk_#VCFK>Zi*ud?<h;;q!IOeGkHCOS28Ln#HBT
zZU5R>ttkLtF8I3H9%6=YxbbniYnfF>x_2F?*!6tSd1~HuV0n|lwI%o7^`hv@uS}zL
zch1nM3`3p1#sARU?)b@2<=ZfA@Y@<;ieRJlIQyy*duZcpXBQ;siB0%`#P5o}wf?wh
zDj;R}d7JftHR0t0JV@Tu(f$})BU(`KbDjBh116)jI@v_%?cfUs1;|ZaGw@t~**5t$
z;k`HM*wC?m-ucD&eB6d%QzuRH@6@9BPKfY%2vlc#)ai5HGk#k3A{8*5OdJf@=dQ=2
z4YCMUzk|d9!1R;Mi8Z`dsP~{91h5eQwp#l5iOa&*&MI8-GYcMS7a0K(8PQsBsTX~a
z_nD@_t<WCMvDn}XFMuZ4QT%MGnACzGq3)ZD2#Y8vP;_0Gu^eFr3Y<jPOi4GI7RZ1#
zPW5UDe>ZM$)`Au5$bU_{4VepHr$J*jB6I1)Bb1CQ8{jBDk0w%nrE<UqpNXP`Q_P*e
zD;+D3PQe@0kSQ97;y6q{@OMk?yQ#XzZYMSXGIyQEPXl8?${|W)g$F#j_Vw?|)J}^Y
zj&nVeit_BDx^$O7mJqT=VvU8Fq)sY0iEB)JzrJskB(Ls%MNYY=RoZ2(klTFoL&$d~
zTZb4P9qH-v0UZO!cbE4$o%1e%2Djid_NTQ2m)V@O*5l!vmmM5yAROF=4#x+QnCu3V
zIVDG0*N|SrRc^}biw?Uu3r#5-Ru`#s`5F}965jncaU4SBMQP2k$EcIIa+<PoR?X=X
z9)t%pSBT~#%kns~7Fh36j7$|?9`a_o3mi;$+PNuX#5FA=aYEejs1%j6(T%P!`wUKi
zCK!q#1`Y)6k_7gHnbXw0F!#0xF=POQA+hYZy>XFB3%eMNG{`J{UKdObOhgQFW&?Vc
z4=&XK9R?y_6*VG(VS!|X^2@SeUd&+$y+u;lY^{DE;aD(FgnP!+b!L9>(EiO#eZmhN
z@b2eRtNulcB6^Hlz4-tJ2rl={t3bE~{m%039J$aetN4{t>1TY}X_)1B5@s9SLZ6Ij
zZY%MDd3{3hTHrhc5t7ha-D`oL?A;LiY61(UL55&6CidXt7(QBZP_i<hIh>#9_38Ak
zge%x@pMj%xF~ydc=-jUZa%VzD&c0O17SwG20m;EEIdM>5G!3-JE@saZOkxvv>|x0y
z34#<yX&^en1`j%hW9B9V2rCEBbW^*mlr-Ry(^W7S9kLd-hNq8}G~nu@p&&!X7XvSk
zLs;MivpTyiMubAZ6p4i=EVLGcG((ekBmmSY^8+fsbVOjS)~!a_phHk|bb<-WP()!H
zbTq5NFcYH>C^T&fk%Omm5J)cJ>)V9TLnxuuJc#z#qI$J3<UdLT6`$j9KU{2ArAatC
z?m0o_+@^<@TPJmfp^7FDg~2GjWx`6{n}6s^Y9MbD0#S$|Jup!lgguDycc8Y_0o@qb
z)Qs+Iur8~CquuLlYOvjK-DTmq(2n0Ip2}Y}iLN~?&MAVGpaI)ehvlp*KT%zaIRm_^
zpaPtb93)&6t#MF%!hfNN9=qr1#ZgMZet6ES=dKjSf;n*a`b?5;&!Lv}7QW`Ow>NF_
z3Kmmpldb7Sss=`xeA~i)pu4{Thb?_gk&sM3zwd{Se%V*#KSHo3&Ul?|iTgV`pfz8i
zFpQH2=oSW%A`VL@`dP>uCd(f147>2>rM6+hk_1m*jS<nD8giTw;?-7G$j-o9UTV63
z`zWoD4OH^pseI$A8&kDYta~<Ft{3}Y5PP=~YnVS&%f#Ro4S1pVzMRY4MGy4ArCygu
z3U(CKihq6gjiuZqRCQFY1r|&QoVhWJ!al=6!j9D1JS{=$SKH)PMnJqtkp!c>?!A&p
z5WteCZ5{9YUH{bnGOgR%28;oORMWJbXy!@S;DcRY;F10ap8hsZy|B!`2z<_*-Bxn9
zpxup#$AAVW;f;5pp`WYdGe#V)w%Qm%-L<L|fh7t4?EVJ^{Q&c{NHgOM+0r3!oVRRN
za5y=$h@Ih9$6wZ)KhR5Bw=fdA#lyq%Ihp~c2C{AkSgDH-xHO>Qv%MB(e7F!~$L~Vo
zkX?8fLMI2JucLPn2TxxSCi{Ei9yfItLy+8usbhODV=|5$=a}9rPV;!3jl*f{RR4ej
zlP+SEp>}aEx{VMHw}^f{ScHY#f<_UAeQ4CahGYk)y6)fo+u}B%)h4*HYmwwR72ka-
z`L|x@bsm`FR~OKi0~b7fMU?zd;@_|T+(q~75`^;lt1L<Y=eO-2%C(}I8+QG@<Dxn@
zwY4DiNXcz#2#}~AyplWpP7L=tonQ0P(RI<`M-B=xAez~+%M@HnJR25YnL17Hx7m`e
zqa|B;D=TQ!m+>ZhWpWRR3%Kb7+`MUIgc60#6M~KAMG^If2iCv<mN71))!he6(Rr|F
zc=?J8EgJ;ne!oLWjIjlhAqKDx;tXR@n_L3HH^_Q7N*sf)gB|f5g}ISU;S=OyYLzaO
zl6e+h5{iDR{Ap*v+w}1#>Vf`;Y{dPKSt8~a-Zpl^5)*vFc(?MPuaDpmG)72hHN&^z
zRa%0eQh#7TRE6X3@yMKpW~288EK^$~^T6!Ms}(z!TAS94Qp^w2w)HL?Nbu8TLJZ>l
zA8@T*-}G!Fqo^zjAP>qQ0Ye!4_iAfB>_2el;Kw65is(N@(POlKUHJC|+rW5k6oS$!
zX-+B82t@rSpXdCCy!<C4nQ#67=>40P|Fo$<C_w&?I9TbdxA_04YO{x_8yY(5q@t6|
zt28t$*y%z3)5?R^#sC^pK>zoR_hm-k=>C5i|6hFP|GDZ8SGJH(_1BRe+|con&IFN0
zTT}c^9}>|3dMr(jeGPpj7=Rfv;_fXxv9|>lvt}iEAN+_4lx2|#0Az4)<i*o+08F+W
zXYb4^lPwC77NWrcJ4899Up9umZeej5gp-F@9$dRp2ebbh3oyz`$1$oiOOUg#I^r#-
ztN8Ky*&aEg?oD5n#H=3db_U53#7^BPF!h+E`X;Tp8`~N=sRb$=W*v$-&hz8eUsw}X
zOTyF`6UqVl=*eXXQpC&8{?fsxVFd__GJRy64Ug&_N|@Pwu#o=Orm=cijmVPCPAvRa
zeq^wT`EX!{n;pi#U%Sv7o`xJ{V%}Y1&!T%{PAWgVGI`^x6nnJyUP<~|DiVO_x%%wV
zUn=Y+-_UX7M^icln0&qUSC!A?Q)d3!9<>^e!jux?=6RDZdo%BV`fu9%OTTjoDqKV4
zy1g9HA4SqH!SMl1EN-*tYBS4Ztz=s5q~QtxW)iXf*_x)r=wYwEtBU7UMN)T}e`HGx
z!cT8%{Hlh~w!F!oqo&;U{B6oZ|KotuIU@_jLaG!S{q9kyyK_nO(5*j=>Lar&C<TJn
z+eRKb=6%&2KcgQm6C()#9-lMPuTo+Qcf7ngqYsd%hww-K31;7k>kA%1%DWd33wSaF
zpmjc)4X@Ff^~;IadAoY1roI5M&_aRd&pdohc^UvwaRwSB2T$x3(kc{7DQdn=+sMNw
z3pUCnp})F6(uVusrM(|mz{P>9ABKU-C9k!a&+o$;1$?TO&(49y9%ujxE=Y$%l%pZ;
z^$+-v7670`Kgxr-#iz_hH`O}2x=2Lu->B+B*DS2~ML?(iGuOHt3@}_BOY8rqed{;^
zIbaVa1Wh#Az!^hvJC_>I8T0#az%?Z<5^YrGT6y;yTptq9Y~Q|F;jUMB0s&&)1c-#Z
zX!%0Y6Kqo6KS~V%kPnui1rX3U+tH~MYo}eVnLA788Ts&oxzyPFnb1iPJracTfDoGg
zL*p`%Q#it@>``7t+iW)SUv~+vl$jTymDM{6%t7h9p*2!rr=fApx@(jMp!lN()X++O
zz;PhUfZbd78f4;_sG|W$K1*BoTk_yez1zyJE*Kx@Jh*Oqg)CsmrxuxDf8EQy4Gkay
z0`@?I&YARAj3zGwmGm-_{SEB=*Vu4i%)G_AO%Yx)Xw+T^y<%F8CR#|r16G6)#L*4(
zR{u>KpX-&Auu$gl?sz-#IO;(mM1}cyx0r=C9|{HN!eXNA0EMX{Vx%FkG>ResJ2F2k
zb{?2vd9A%iGig_2&uViRW<gk;85RYyD$UrO9t9#mn1E8@5rWbQ{naWAK*c&OQCzvi
zqq)3YD~DzR0K-)P44`{BlB*$g|E#DJw8^HGRn26h3~zeSB$}{5)Lu>s`X8rUQqSN?
zrSXo!5EOrq<LcQuUDdysLljQlOOAGazxU8T+w8q#<GTT`Mn8!3QI;Xt9iZX;Eq_Zg
zM&a_;_08&SZYYz2cE>@iKNb=&oXbrT1OV-TfT#{vq^^g7u)X!jy0VP5wJIY<hT$6W
zkB=bu3*uOfU&b0LxX=uXtV1v_a+vgt=kxhVsQ>Y&*TgpKIu<jGk(Z8nGBRSJjbuq9
z*AK$RvuIaVnK`Bz2Vilgao{ksQL)f++21Mn(_iRcjyD56r2u~;HExh*QsIaS^c|;-
z<9br(Y9%Y68o_fmF8M+FPb9(D2<GP5U(bdz{wr{<4hSg>&zY%3B0B)!6!xMB&bUjV
zG&WsjQvz!7I7E5}9|i@p5;v2HV&O-Wi`o@Xqk~gIs70Km<atNghk9Bbly!oL%V|}8
zK}8@vv$_)q$=@gaKkLjytM#|DWZWe`IzRy*0&bHbx6R)dzVorjVw}GjD_RRWxo=Zz
zM9U0W%BOKNP^I=)`M6ew7S05U4h@|;hjZGZ%_La^ZLJaRKvhLp%Or-i<kMw}_&nbR
z7rrQy1!DDPH_ta?>Ey}{PLv>Zu4gXg?N0$<oCGQ|F{$L8m%9j{@vit`M$Mu$5f7J2
zA#UGRy)y1e+h7ue4TBXq@G{9G0sdc?oId!s|5|HBgw1m!A<6SDE9x?`EO{Fk|2y2+
zsqs&zA@cnEPTqbf5bnRLZr);uGR%MDz8GjUANb!9TkHKJ@k}3t>zQ}mjy!FBJsG%D
zp89!P|Eo@OrquuNV3P#<AuRkJ>hg0-TC78)R@LQHH5&=JPl8x;#~){<?P7V@3Prf!
zU}q8U6I(L!CDqLCnBJYeW)U-wJwN8}vX~p8U7St)w=4@0+nx!-HV6e@=Nl-wrUou;
zbza9jeLi#t{O0_q%r_fqy5!STO7paIQR%^i6c%lgewu9gShVt8YkdA!PptJdA_ptA
z^;#?1eeyJf79*j;`G!5jaa_Mv&gJ;@+^miXnKi7C^2p3wQdFIH&eo~vg?)n?@c36R
zfd8u{E)Y2^&fh%6V!;8|dy2kSA47Mld=aP5=}!u)cc+6Yid+==Q3L{SDJ6a0K=?UU
z8}-i?lQoTs72lpwes8{*4$sH^JOPuw`~2NvnlZkdjC$X@$vI3$0AO+&xGrBuiL4Nf
zaJQ$IGTIwG4{@exFU{q=apmnWGY)$cA4ljX)NvQ>eVNY6EJ*ynh<B@?xR&mHcw@nW
zdvFNBAwY14B)A243vR)N-~@L91P=^ugF6iF?rwv-yYsJe&ilLmF2Ab2*{iy1_mY0P
zpVhrCeJ^42)G^-s5%&mcRNxn<7n`MGlEOD4H*G|{cZ?QoUQg+l&!^8rM_K6zVMS|O
zH<U@G{3>}sVJGs+`FxjZCm#^{_x>R~1y~cfUhto*o8ttsqeys6Z>DitHff*K*-Rb3
z4whZp)cq~HV5uDZGV(A7y#<+BwCda)tY*sGu5dY9CjGvc8EdVm1K^vKn(lW{5uk1;
zljl{nO<NKVVUoJ_C!>XVnqCkb36v}w<eYzu|HVe>rN-rU&36^MH%wm&BVxIxED#>M
zts83S?xSH5<@pxnPRfPc$uz0eTkv^zrd&yfn23LSL6hPj=kkc)Nx~FQQV>y{?pR14
zPRu_<_+c>KlvX`s#Y^mal6VdTlLfXh@+UOiL!s4TmYlaY3^Dn8^&&}ODjVfGUhkOi
z$&HBc6DlAky=&|yG}qxUF(fy}2bK3+%QyI?z~h2#7b9rs{*uVHid*cz`Jmvn*7VD}
z_2={P@fWA(UtW5*9QAL(?ovwRaKD{PH9ovwzS)4(_e8APTw=wX63tGOpS7PvF4nzN
z{1dKn9fb(g(-|_ms#A9HT~~pJ<NS(9bhs$`=Fev4&A}h1Qfglx&F7G$`ZM{_PsrcR
z8V?3c-HNn4N%Z^03cDgEa~&q#wh35H2e}=H82z+e9hD~nCa{_g*DGV0;D`U#J|=l<
zgW3w&yge3g^O6sdJ)L9mPSfG!D-(8!)YNv>2FLZL;XbF27nt6xf_-G`LoicBOvM^x
z37or*H+fo`=qxsU4VeBuKhe_qqm(Y+E<oG1nA?xG&EH7OrBP<2XVSJ0YkTsZ4AdZB
zr+o6Zlu{UPf80?NsI_#~)|UzO*-CeV&xtO6YIbtgNJ)rD=cLhi-_Bw+B>Hq7*o933
zbM7B+|I^YlKmH3_qA<PdA8V8`a?gB4^T<GX<0}e}JLh^;$dKU|SAPuImT5#2+fOu0
z3&v_{gJRE=8%__RV;+?GUp}k>jT=7?f-Z}s>O63#^mxsc0XU=H0C3Cw0FGN><xaLx
z$~VwiJg*2$b&Et=B9)cgIo<H`BreMA?V8xHo9Cp0VCQ1{XAjc4qvGK<W!pa_09<1o
zpWu?<IRVW1s?ah6sHS**fW5BRd<UR$BjwG$zE~<t&YgwHr4V#)2^5X^<|7!T-6-gm
zd{dCaO`7JNzw6D$bV<n-9x_kuHT}PE`EQBMP1KJJS<yUvKg8Z%BuAj#wP8QXj7zBR
z2Rs&_C#FngY@tLx<nsPz`Ye`~!X5IeP~^#Df7ip68xRv3rGf|S4D<O+E+47Y4ZAvx
zRJD9zC4r6>b8<4Rpvq`lrA+?$!Mfg=-O2ZnTX>EDb#ITYEiMhzyCo8@@mEA&-qU5H
zF?qDonxSTny!89)#R#ENKO7*tes0=RE#QLR-7uikD!h@nWhd%zXJ%+_w=~Ke`47+o
zisk;;)^pwCXH=L#a&=wrpr2*!3AZpx`L{Whb40+8=qG&5U6LE@L8NGYl$d(4@I{sK
zWfyuXA|eou3`ETe6MwGK(o5=}(owOuTex^9A9vu7*JJMn4`8d5+TS2%&omAx*=eNl
zVp-QOkO0_<IjWC5CF6rtvanHAr=9TnRRhoB&H=x(hk0sV(T4}AS05wgAD2-a|A6-6
zzZHI<$h}7lxoK?R!|wN;L166%A2Hx}*llsSI&Wsp#FtrXG1vM$To$;lYM;t)r&W@n
z+860=d9qN$dn1h*1_u;AKdAvu&W)V2lXTCaU@-W$c5Sx+4lq&-$yvZlUfIFq;Y$Zc
z`<>bVJE)>w{-M2evCPr0XXWv_o{{N3Qws5qQZ}K6yNofb>2+(Hn{_;ozyDd|L;r0l
zbYEj0hn~CMBKj>ToeJxW09tlF2CPUxmd&dV97e`D-o~Q_hdHIz%W8zL?q9VbAXI>d
zEj(wtCyx_>%H+1g8^cu!0uTS>V`c+K^e1`#7cu}S+#WU+qX4Rd;X{l7a2@#8U-{K5
zgyhl*!T_9|&t2dA0i(B-DSbi)YCh7#X8iT^)ptQGo`()&tb)fzz-LO*kRktn3T$`(
zA;;5YKY~v-%|}l99+BMS$@mIwLZyM^>!V`I8+9%K;5WU^@E@q}Mt$hOYB~E2I|x|#
znvWWJAn@ag*k`FaBBp<0DkB|MdZabDKkSdjOhkc~2@e?c>fo8yP4!KY2RvBGwD-5Y
zq=N*0TM_yTT$3!6KR~3C$Q)$6UunFShb=NDj-<Il-ZmIZpdh#Z-5)3@c?%>jSejsC
z>h*`}p0Gx->`1;Pc$}peSgfXZ7(6~_TJb|RytCOmk=IoQ5AcFiag4t8wgx2qjS4>n
z%?-H)np23zX6UQ!W1G@m2>~B_)NHJ+HsAi64)}*~*D}Aa82iKTeE{QXWOD71qI}U?
zJI10j)Ov)0Jz8Ddvc+L$lZF{!HMiW$GY|mKym2EH$=y985eeg*8n8nSXQ(*vhLsaf
zZMPbDWXDiC+dL898Z5OM>gwp|TA`AD+HCDujm-UfEqd(MCsp%lTWggSHT?_jyl3z7
zDj++t_{UXh(23WpwRsG7syKZJjf6sm_{PGflOK*>>k<t-(DbsSrOD<BZuwwxs!UjR
zg67@-q$ZRfgH@0v3RjFH2QlRow0(MuHXlJpGK_V+g=%s{vuqw576&E!Igg-2?2SHV
zOjWbhlpIf9urr+4@jkgO?q2%|x#ZQmjK!$!MvG`$gWB~Ujh=kcFTuP9Y-#R8SFzq3
zv`^erGl_o%o85JTpCD*xHMWO+kZ#h`mMo=6#iBu()r;qPQqGpmp@b*bQ`U3Oy*iFC
zl{bpTtOEkE>T)aFuXC`=g3-S``G!gTz=Rpgfb0s?_&7hFploOx<aJrLH{lKKMcn^F
zqiZ9__ILI5vN(#qqUayhJf(0wuk8*wsR9>+0s~J<Q(uC!@=l1j;%Sy1bbOg-+WTH^
zJBfu=oRZqkjt0H-a<Qlbv7LrSMPOSXvR|Rt5^ZpBf9nXT1F@S}{=bqtKQNgCv71cF
zw&-qQb-AT-|D0H#?e$9QFkPRzLnvCDKbFNr{O=UI#Z>ER**pB&h7>=;|5UUjA_4&%
z_U0kJr-9N4m4D3A6&0B)rbn0uNSY#vOB7(vO$U>z3h&IlDmJext#7-ZL8jWH1H#Or
zuU_5)igGdk5v<c;^>BgQ%`{MAw8DH-DU0zWE!L{<VW2^l^_Xp3q|A0fU8zAMU2QLW
z>uaEPz2ZTZ@ZDG#I&Ug_TJhhPt|2+hRQ?Iks@=P#lb2l!{Ta70LxUfz7QOUvs<3;j
z`KC03h12HX#{XFFm6TILHm3RTNKu??Z)-V=w_{CN$I*3QA??HH&zjT72L(l{KtQi<
z#(&nFQqZL$9IpMO^pQza|8}{A@tnD>zZGPRd``(@{Cl?UB-JeRKNTp)X2?UbZZ1`8
zC;hc+n7ANl5?vDRN*$7KR-X@&4ndRxUPgylr@}mC0eh=#SDrh&2o6ezoIdMuwVrX&
zlnd1-ZDX+H%u>0KJ<sK<<&A_TObTHqqr;0BaQe*D8Y2g4YVFqeEf!rMR{CwnfpAFt
ztO&p7>YNRsJ|#Ba<z^23H`N#)Z@0I|pJC275wH5Sn`;wWrpTa@=L^{F&2<-d=YKA2
z3WSZ2X>_v-2w*cYGZ6rQ0=SLMz$?c3QR?++FLK&=^2q|Gvr%s}>Km;M2ZWmM!9*hY
z?>6Ih+c*!JR_^-!Uv)Pez?T=J)^8*_S17$IKXTqfu)u;E@G6q_;MWZz;b+R9-?bCb
z0pRXzU8%(l;@ca3YrtAOD#H)uG`zm?J!R2x8GG#08@6I8IOsr!c{+Bd#1IMlWT&DZ
zjGG!sxYm+~q*DFMzg$p{1rOHT6ACo~j6z%O7ybLb$|4g!|CNN3KFe(z-q)$H9kmfP
z>j&t^{siCXbDy4^gDGKJ=zy3D!Qt!uqMJ4v@Sc9Ra5HHP?A*1nBARF^CGxS}VI*8C
z<JBP?5%}#SWca+P=}h?!y3<2W2mrW~yk1?Bx4vG3Cu~3ghfL&Rv0QjW`pGl7;G3l}
zd)<28o?$?d90r@M{~zB2mFthWFk`w~4aMf>(jvQ+Xgm3~-z2?WOa^~L1B$ylyk~-t
zvAz$TY+9ZdsS+I6hoNSyYL;+v(`lZ+mq5oPAKZr0fe6H;_h55vJXWt(18D&+px1S$
zHXnp0_Z;^7tA`n@8*{mCYfL+Vz2=vMJO@#b>8msbsPsRYxp%QxQkp~861O#FD11Lk
zfrpxQ^+Z~&_r>DU_T;!2@MWcRd*zinEf-Bhs0Pn+eNJC2se8Ce8L%|Z27`faY$G6k
z;)v^A`a7Gb;jzqJ03QH!boHH!Iu2^Kc6WF1M|_M<R>q!BJ1nX|UYD!Tp*SY||K*su
z3%Ii}^OG;5PZyl;)IdQ)>`Ym(WYXSS)bccGO(q3{TI!z3xWK|ZhUcpyrZ?KB<s`QQ
zhTvx7Ip;KHM!zB3#6L&sN^LcD4I&aoRYjlQtikzl-H|pMBLb*ss5IXyzr3;LOzjZu
zZ}Xx20Vn>e+xF8;UKblF<^TaBGfYvtHg~gMFvH^|7Hd^yN2q~iS7&r50{bCn^BQlp
zk<H`swc0J|T!qXV@O!QH^l8*vmR!bLURgoMcVL`Mr1^sOMOF?SzlcaS3!nK!gQ@{h
z30_6wPs32-$><|B>U(M(l=0Tfr#rC|kekb`Imp~X^44IyZD+Ulcj@L91`p#9<%;y9
zrf}ugG#CAC3tx_lae|dLrd4*Ng~gc1$%p;L!ll=;&f*weH#BU-2}=XJ@|^b%gJCU6
zWk;fpyqov5v&eOJRW=jVnt~3b(N9+0r8aJx5f~UkWdc_*hU~ZcToxJyOUw>~71TUJ
z-{yvf#1p(|tDAO2sw`Ir1Dx4MQ2;Th>%rcz5dR+|#1H4<TIYdv`e|q<!B%j9-zls#
zr<RjOXaYs~*oBd{3qGXJ^IWh*5o@7wvTCM>?u9~6dIC-yn?1l(#IhP}IoHxf{r#u{
zXFSf}kgPhXr|00^#f)yAwGd-@OqzSJkN{B-9H8ahyW+L2YD!zDY-OBAC;p3r0~!Na
zjS~nbC=S$B^BHJ^Xd5)Hy^92;PkL3z9E?UG4f<*}q5A)<ZNV%FTZTS#M1T*SC^D8F
z&z6VC8uuo9MZc13H5e@xRh)LsAnn#2k+ztf?3}W?Ww<97Ay$@3{Z86gR-)gK^F^-#
z(Q20cw&N#Y#Y27z=AJ3|_*47`8+vAAwfA8Q1=zbq<L2-Mx?ltY9hFqhs-(HCmRRit
zu`0?k;ari6wrEa7nP_BS=UH-Hnw~ZztDx>9y$Ku3R2fO`)7>Cl45LBuFC;C4sZBp*
zrjM+YQbT_kwx}2P#ycGBj|Kg{5Umus-<tXw<tIZw$Ho)X$J5NJj|l*^PaOvLY0;k%
z)EOIe)ZNfND#he&d+jdLRov-K>#E@+icfbfwFIjp+4fd~Z=&b#S1saSeNJ!r?50mC
zeUoq3Bi+os_y=?X2^P+={9peh8Ky@TA#0rCM5na))Wu7u-JjhNMff&qcyNU(h*nvq
zI`x(eIJdpF`+v)o($g08-mKJV!e~O)ZCyS&yHB3crSCs|=Cd1x1vy#u$;ho%^KNrq
z95o0+iC(;@qU6hILVE+`;mIE(t8XnkdwK@xE#lbq)vP%H)+_MZVp&l4U}^yVK{uC-
z#TZi!@tywDt_$0ukN=c&aePSaMQ6bT$FCRXrlIH+To9T4wq;mN3SAZyPcj?w_qu;G
zheud8?iBSH3W}8$1G``D!|30N#4j(_;D-_G9|Ubpg@ntUmQKzRrqgp<5x&QzmK1mK
z>0hmBuqDh)&FtdN&U9N5aOLFQ<od$VI0wq@+10fBjOtDP7+GgE`I!o*g6{lYvp%<b
zJHakMVZ@Ww*?OHmGvOc?opD#`4}%;#kC#e2as6nz0_$h3Se>Uc<-v4mVRR#&iv18_
zS&&ag;t&8Rm$6N?@nED8U60SYKA1?!!M$sQUP^1+uBDBy%~w%bz7`wmGav%Pu5QFP
zSphNVL__N51#zRu%&rYPRoJODf464KO1t$Co8Z+aQ@W>!)Z`UNHQOC4PR=u&{mPX;
zbA`KT&zIdTIm*{&5kE2YT|VNkKCUX1GS)P!GPgH|P}m9n^7y0F52xEVVDmm!bRaF#
z^$N7^ub2LV>0HkpcX$bkNoI3si!}JBQxG{J1Dz#fILiHfIV0ybgYneM&c$KOH#sRC
z?7r3{oAQptXpNdIF&tl!YuO6DC^*ab4ALjWKHLQImBmj4PR00tGn*d7(ysJQheR_<
zY<DM%Q>2Zi%~oUtp<LzdfM0{c8|dwUg}sG%wXEIjb4^?QE|L0ON6|-eOd%2LsT{t2
zp0P3;&7wv>MxVc)W;WJd;s^&zm!`AHo?=Tnp!DTjD?eqUakFJvtW_{Q`dO-Qn#ik+
zUdcP)T-SG^7%aK^vJf`#2GCi)UNS%7?Q~0LWOonS{_Wt+M6j$<YR6tr(K2Ft><+I1
z_GW)RieB~-o(7@yqjjA$wNAk<zPe<DzjedzZW~}ebTx`RJeU9c%&6$Qc;b?$bXA!K
zvx7E1v1<^zet$lqJ%lU~ol^_mJ;sdr80rhngzfq~TrDfjc&U1A#MiMm2mNJjuC|)3
zP#AkrTzX#ES}A8sK@^`3cLI@d!|L|R`*bB;$=pIZoS%@HC@G+Jz-*y3TeBlAonQ<O
zw;MUvRF1;;?h%)_fEr#%?5Pz6Wi-YBZ@(-6Sb{%1*Y5AmiVn{?uJqku{#|%)YCkzu
z>_+<gT8#JA6ct%?$}gg8ywTvacH%v`%xbk%-?a_rh3VMngz>Ja)>_()*2ZT1!_`(*
zHqG!Y**d=qYG1{B4jCl%fJDb;QM5hNbhiu09SbYWv-$K4>F4c54Vh`4vMZXxLr|_R
zsx<*_ZN|2!<zJ!gU3hW;aN4(sujaNt{E9F(WjrnqTR)KU9JArrc#uaY-umYC0u5pO
z@<$yxsRJFp0rpu>uH^g%8Sn8b2IH#a%W}jNL@~$XocTMtScDEHzTq;VD<jdcU_%Sn
z1jKte=TONJ!_2sbWN&7vbZhUTK^}wEH8I)7MV=MuR;cZMMC9yhSZQ9c;B(KmwtF~r
zQc+{Kp|r&Nv${qIuMk68p=6qxY;t?{?faXH=sjls`R1I*&@h8zO3|i_aI2UPIii(`
z<l##ma+3Ty*U38vqY0u#{G0?#Awl)kAB=4lmW`_^L^gXTaCA*Z-@m&%sq;3!Ym@wP
z#1H8J{C+CX3kKQ8yk24<!1^4=rN+>rH=o5_ui+4spUh7MMHf>VY@iuVm85)qIlig3
z4i%X9{8*%;=&-Xhu{VVCq3J9x7mFv3)Q92}tS^cJt)Il1IqhC6=YGo!!hDztFC>am
z4|P`>k-erUBAWHG@ovYMRU$?NMs7UZ{9j@utKM!MY$*18t)}9>bm3;WGS8r3;K!tO
zE{aIMv62s>x5E!A*zMC~;sX>~X`GZazNThWR#8;Uw>UTrv_|AXr+=UUX)l@cd}EUe
ze~3!0n{BYfvCEesI{Zlrf_MA<Gjp(1_m1xhy8d_UVxuj`rP)(#da8p2!P%i#y0`6+
zh#(X=BS{ZwgGtp=9Xo~wFgP1uXDKQDMmqc(NC>r&eoS%pPpNr`S{9Tmj>{$7%WP|4
z*$WR(aOePjXb9@ll$)undG_&AMQ9_>+^~s>ooRA=bs&6nYq8-B8)yrXbgtg8@ii|n
z-^X9L2w74!ai6tYx-@vJV`@H=Pmb5h%*r^F$@uLn#qgkO4XO*o!_I^&f?_qEh>)Z<
z=%U|~DY|96=BcWrHOXi5mn_>9QDB}ylgW<*Ycp}UstW5V%<LE0X!&s_v>8TUdV?68
zns-K{o(T)l;0#$G{Brey8WJKd$|RIyy*-^l{|zcct#VFlv&H4Tr-t{Yc1W6VJ>q`a
zrGtfR$^|PUO3c9?CtBe5xfwE;z9lO7HdCV(LTosTjgx>{JVhO0*#7R=AAEv+v~13?
zbd9w|noF|2nQone;o)uo_|stJTg1e7f8cE<6U)Z?>G+5-YE#UU{=vONzXig=IJ>>-
z?Xh26S+X{41HoEEwn~!3@9Amkl-j?gG}d+FK=R|mkNTLy;rLEE>i^yXSpRw0*xD#m
zuC1K?l;htFkwSC6ysnz||1F0W9TC=pE_z-&UEkz{^>gGn4HdoYgtecUhlvZV49te(
zR^vD^^z9qp=!*oJ81eV@<P^_Wj^kN*dAKw0JP?|;tOxlmtyyd%2Zwb^XQBK+lnj7g
zup2R{>4^sTaeRrDOylFBZo5J}KfO5U75Eg?n3^Q|Rvf#VE7azAc-!5>tGTD;3PH9#
zYpPKK(YlqvsKI$i1DA^fJ`p!HJNJTzvT&PGCgBtnGL00p{W{0#Ax4Jj;n>TUmcz!>
z(h)_{LNR^6SmjQg%(3@thYEP_O6cTt={&vtxTm&2(q9_(8{Ru1lM%U+KxwU_#xCNb
z`>au!rWBWr^Su6)v%7aDWe83To=u-6XOQTLd2})n=Fo>!WW7iIDJQer;CtBgMA0^C
zckj`A*7_)ES%TIo`e7}7@!4v@=Mn?-Pee0%gnYYR7vxIi=WSZ~AzOiOc0YV4c4S4m
zWx3WOYTPXvVgaX!LQL4rgd6mdY5Qvb{Omfhs%(0Sw2m{{Z&%4L%y8wNCSgKiF6Q7Q
zNY=V6>cn;5r{<Ti5#*uQelCeic+WiZEw&bMk^u0NtNOHUSlP&Ey+`vYCo{MA0RS2p
z^i@}L+TUQvq2mA_IrewU9x?T1^0mL)@7*8uGuRz}88$CM8^kNs<Z92_D^8pK20IuO
z7TZzy?8Vh_7L{nG-IdiSl#*Po6g6@6_9J(eOLVC`fy(}b`v?7p6m2pMIfVD}df!0g
z`gGBfSi6eC!*;Az-SBgNOv-XDh}C`3@T-7#`eEVBwZ#=wbmG{r@UN-60x14>qJh}(
zX40Lbl4FL|0VH3e_(fC^komVMUtf$(Fa!9_5qR&>!FEPQkebgQ0}iKnimFJ=A&pWI
z#m|LaU4!DZ-3<0Vm+y7Xk3#1&%cjXCMx#wd>NSrdmYxG7%mAy`%ovXuY{KHrI(u%%
zyo1GpUQ^@z)I<{uvkv%vS^E-9^xGQS)iK9$oxY>CY%F~v>*WS`eUsT(BzGQGTU{(C
zPlw-K$JZRZc-C+8j1ewp=-~kM4AkK@i!3#~lsk){um-PpSCMd{?8(*_bx-|;61|%9
zC3O$&?;vS{J$o5P;nE_^*QaJMAA_MAEW8`r;iMTMCuIxa@|M;a`rG-)BU+p43{hQw
z?NZ$83C<a@qIk94eFu4goNoj~7HtmO_Oy79<0<sp9)(dg1!H%P(=C*yiroiqlhL%s
zTix;i<`<Q9_F-a|_U)<MIdSY)rq@P;kn;(*fTh-bX>7!EStCjDV3n;8Tm9(FBA?M~
zrf0zMuAE#PAsqnKmQ0}0Q^BuK3=(u!)?GkY3o)A9QnVKyGQHjpxl5C@*bx;1BXk?m
zuPFwmUD8LU<~dAFPBK}X@BnA!mb#@bt+NF+h7K(NRDlS@?G-uDZ4-+DUA~5IF*Mo$
z&|P_pP0TsXNr?DW@BD^mPLYaHl*}9sA-mY7aqdFBWiVT)aj^U8cenrERy!8*{Jfzo
z#B~#m*wnysXQ86G=DzgdI&L+Zy~wJs_`Lf%0<`@e-;7itHMCpWKw!C}8YfvzNMfcR
zUznLc=NA&2I*)|8@~)Z63k3~R%@w2L_Z?#zrr2F(FcBHDY#$wipc2QHIZ-wD9CFi*
zbO5y>p`#d~Gi*B`0n?}M-p%=4+}5CVse`M9p-gZv2?M9awG~}Ln+&52R}<8Qm(M0b
zNwg=KQBmIQe9xq#R;{O}^`nq#(Ha93P!;&FZXY=c0HO382tR$!4wQaPk~a!{JQ(=K
z_79pBXB<+Y`2VyLLXWL=z84i_L!O_G(B@ZE?1EK0g4X0pz9`xq>moY+ni&XhUsk2b
zhePc2JC9~7KYSB@Vr*`ip<R!4ly28(Vk1+{SoZSpgnV1v2#!EUKY?|?sWuDNV5e!H
zvFeSaVpdfZEq6~7?zxy$<{)7B$v^#V0=bLikbgv3;&XFg=HcGfu65a;35fS;$xKGl
z)BCY2fSJ5UvDHB&hs1^;1Vys$3W&e}iVI|eYQHE0N${B?BLY}FyTah&Y<1-itH+;d
zP?g>nl8vRd6_*580pBMkM`4Dx=CYT0H1xa_Y?DRvsXS%C`Et`z0~AgEb4|bEhEWuL
zkcXZr1ABM;%s{y1F3-*mZdsU&u<yWpjm<r$Xn{xzUH%8Mq7a4C^_}HKnoFVhKS%<$
zj2~H9MKqrG<YP0-J!5!G!WhSj8!!E+J4@D<hc8wGD@vVjK_;q<WBDyM<z+59Rvj}r
zB5LA|TD8_T)@B3iVL$6uX|fdQ%jeKRHfp-w5M+I=*)ECdjB5QSA;kPdcv9cPI(<4l
zV0;Mt;YW*yu5#=b?XN(IoKLRno|#R&?nTXBk3^x?4{4Rm0y4TA6QH~DaC5PEBS4A!
zFFXK9v`%+ZF~3J3|Hs2%(nBhg4MX%s1<RZDz$(%C$Sd-QZ`D(rn5AZ(ksyle(xl(!
z`1@5-o|kYoU2eJaV`q1kkOGxb1(9^8p6R*m>u#0u=E{>w<G7(ShZT9g-p=G^Rhvm%
zh`uy3=|=q*uvcGg*L0>m;U~!S_aHNK^$ZHrNZH3ne@!rf-6BWigVoE-v35S~P@AcG
zJ+GP5n}?C)t^)OgTrS65c54p6$n@f5FP?U#iPe^03%>YjBSf@&Rn`d3PeEGLIS}Sx
z4nZQ*P|XY#NYD5*(#*of->9jWjFGzRb@JF$fw4|xlF^qls7ZuwEia&Jrw#ap<sLtl
zfiynl@ox3)q%X$l`omc-Ho%uv+m)YF?BIs0SWcdP0Q2R2&*~*Nl=k1~$RO)u6rptO
z<Cn?-r59`NlWeNSJSkpN;++jVN~deMoH`ktBZ}L_GFtpBX2I4HT+GS+^cD#J9q9c>
z4qW+*>)0}1nZ%d#W^%z|s&Br)*Mb!KD4#~RRXig@4<^vVxXwxp7Tsu!aXDP?-bA2P
zVn%(WyFVYg7O;jmTxZ1_YF}z`tv2rBN)@5F+z)PDGOh!DQAHE7j?5}9$;&8!A38-s
zA<QxN^bdaXJi8GS(Q-<6S~NwDPi>EfX~%QTrPNP^jM6LRDMmmHnzCp-v-!G8x`4VN
zig}Ox$#cq)3T2~oZGC;JuupWR%+{%Y+!N#=P>KjAcHiLLEKkhI#gjccD@1ovRhM#`
zF0~W`v9URr{2<(BV{Q1bh@D-jTt->*&NQj@eu)fe-wnHaiGgunrWPDuiRn+Z+B`ah
z)w<7s{pw8(SuMS)@7K1?o?&#oF7lynvyH7Kx1Zaxb+Wcw5^YLHLIK2g&2nYiJg6b7
zNFQr$XDCc~Jx7IqtLBNJ`u~K+8X${fI~br?31gSTIaQoY5>9p!-1oeNE#%)y7d?o}
zH&JI9%)}@*F7Q`Kz5Z=eoYm8}iqC*0yu_&Of0f`RIXS|Puewy}Ac^ZjJZG2mAV(C(
z?tVojAHuTa{2r=IBM~W)=E#0N-WvBX8e}qk+t%v)s!*`@N)cZt_%z2$j_ObKf;0IK
zAX2@Eu61@sK+xHF41mas!R93gfdoWxYzO)(CpK|x#D7~<M5HS=;(6-tJP3+E70Sjd
zA<4gE|M|#v{8yX*>v$#bkMN&nsrS!L_@DgqCQS?G|KwEfi1uCoCr6xUkS-7SuRm32
z@0WiS`FF@Cw*RL0|IaTj2cx^IPd}YJcf4dTLy<v$BV#MoTXzI+ldpUX9Ta=7TcD%8
z%;#x}eE+9m`2gg=^-Op4<#`vCjSO+Tpg`2&ND6t1`AYD&OhJ#Y7jI{@1keI?|7J?~
zchvON-RM8dAc{XlG-s1&)W|J?6v+?)Kzg~v`!_Z!x$X@K$3ePydh@X5VvfEpY4Mef
z>|%b4@3WxbhCNIV6M8*`?R=GA9sYmT^W7qda;?yIR0`K-XGQ}msJTfno?qshPi}+|
z{j}Y$3=i4fGicE>A^}=NuY3zyW1BQqyB+#>?<~0rldfS>t4-%P@5#?re%;Uqd%LT?
z=I2QK&r1%anxAHWMc(?pxExPFD;;q(L2NL8`UF>g08q&nkKaLBez@43!lDrM`Dr|4
z!K}D5buCo#<yM^Bg$R_+W-U??^Q?QjCCF(9tFAp$==;AwSamATrDH#7e(IiimRs7R
z%n<aZ+o)X3i=r=|3}hJ0_Wms+(VgC=1RHiqZs5P0>~$kQ#NjksvQf4<E|o)O*JDQ^
zo`>a4vI+IEO=-TmUksLdx|L-JUM)$L_T)Wk)n-&|+|nl5ue5k>K2?emf$FmX;I7Pj
z$E)piIm+`^f{h$@(Q}uWXof7Ac=`l-UByE9Jcc=JC2+d+j8~0d2>=GS>bzsDCr4ao
z)e2H<utvAj-V}XEFK+@3pg3Mb-luULmx}Rx{n8~Bb8?!zCJhHGg%yaB^HDm9e!3b>
znDX_0b)+AvFDw82KU<bBK$4An&QHc?Qyt9aEdKgZ8kza}-V*s3hcUew){RW%U#b5j
zWV@0TG>|3le$1?`qWJuVH(vjqOP->r;V+j*J5Zk9CTt7<K#H60O`luKOj6zJoo2Iy
z<*8L#QV|^BIK<!P@NTFL`dCk(5>%6r2H|N*MjEv5ulMy@_+)mPzYQzcXY~*E;XAA!
znWb!dy_9qnj+0urd9{{Yiwa0fvQI)4e&hYL|8%{$g#$UEBh#-7ZCk&sOo4oOxoh{k
zt`gc3G=1g`Km*y{xu_E|yPjF&^y3e}>a>mj7t`lWE#U^pblkk2ASrO%C+Apj)D$<y
zhA8EU(S<_~n$C?cPdS>3`A$BH^{J~e1;U%V9mALXEX>Ht4kE7JYf9p?zIbT_K-vD(
zi*KC8wrkofq)Hp`v&r++x=rKhrE`A_MAF@i0)RQWsd?L{$TI9^%XKBqEn=XPqT94D
zfO3Sm;WeJt{aUM&2vrr!tJT`@13F+FYdv<8wpiy_aN3J+u{-FRtWIQRVYUwk++iw^
zQQe<S$Yr^+h`HRAqL=5Op#B%78?3iXJFg$_wHv>_1=@?_*pG$q!EScP2hK{|c^DqH
zEM66^JsG(rLrc-3Oy6beRd==+4lGZdpO7(sjG?2-tjoQ}RoOXCBf0TLu3duzsAQC#
z-F|vKf3@HKg&1uZA!e`BKawkp1yQ{jNn0SHv0wF^9Wb7>UzXlLtVP?JW%stil5ifB
z<lHeQFskg%ZHk-<0i%!FiTFOUqkpY+CX6pq|DV<2fO7MafUx`H05{5->+0>Igt%7c
zT^6v!?&?y#>%9e2t6u=dyNc6VqsI^f|LpN&*obI92a>kzU5lmmaSNtT^{?mDALM$x
zhUAY&T(d69Q1B^CjW(=1&?G_*U)`MDkq%cRF+q)=GcH;7_XiaX;}pgchFH_G?$3Ui
z6cI|5XzqDz-=c8(=y)|0yhOb&rU$^bWUp2aBhPJK^~XBFCj{R){)d-O5iO|+&f3}+
zEfE8MRtgoQ9-t^Ve)^BMnl;G7oGjUvYCJQ8#n;nVrlQ1`rr(8i9y)mf9<}I>46jxa
zva7y|R2@Ap6u%${%1W>?sxuMf%je;usSyZLd`%ei`<t7OQpMyIPT+(@n38f1yfvew
zE^5TzkKcaxmK{X%TbZR;KvCsXv#7eN&%#Ilr#VC)V$3B9hQ4T?Omm2SAvu8Z{@*-_
zT8iD`5dgC(Z!sH{o>~a@7fl@+qKVO#$Gg{e_l2W#uE{QB(~`K=cCb8TlCdTNwUd2E
zTJyID)}VU_cX=14)cM-@k*pkkf+q6dhW<Wz*l4<beXn}*_a5_*ATy_6*JCPS-y#>{
zK<ml82q?#ebO{b%qsA0m^)cyNra2tIuuJ7z?a>-H-e1waer~X=lY|GdoaxQ9KYaGe
zWhl;EO(*ofi^&;zMvnF_aFfH*#ZxBOHv8~p1q#~#_LB#X&-F6Nn{_^L#aZ+3usfH{
z#~%i6WWUwx`C;-lU;2)pAC}f4eR0=@D6<kx<(5YES}FuZZ8vuh%ZYd%zC<qhbey=8
zHwKSKQI@sj7t`{6pYZJ|p9-+tp1Gdl35tIdVE+XoxjYW$U}Jcku2Q<~<#G@ZNT5E1
zGkksU$(uvt8dFkwZ#!wXoQp&5ebg;4<8hTB35^NfNqWAb4ZHP2jek>jQ?qf14h}Y)
zZ##6cm1$A>J?F#t6XB=9=B$tK@Q3^Ms&d8LIMvXf`UdM=$Ye^QSWVG80(Qs8`nS5h
zvD)?G`iMBYY-Z|0OAEsh7L<;QSO>;mIKre}o3rf&Pj|~#NylqdcMZB$!Mt@ySo6!(
zOG@UR3XjGsA(BwHqiNIeK<!i4I<ek)?=-dpPv6${DPwZoPc|#g8-u6jce&&bmtGX;
zz+$K;PH-j%<;^80QADXwllRj-l;Zm7msv!7oGc=FuhQvEw$+e%8LrP#k>MB#Z-vbv
zK-s48To7~0&>!ieC(%TPs1kfCd=rs(dX477N#xWh!KItz7mW~7S7%*wW(gh;r4(r}
z|Lje8;Df-xMXxDG4eKnGdDfWs;o!#*mOwyBi%y*!376q(*)`vE;}1=uvV9)7>GDjx
z<t*J@sq)2<wWTRzRPWCoq8~EHus!(RyZhsd#)+L2yB;TF<`t4o&1U<(q5S^3gGFav
zqlxZm86J_ZNN24NmQ$<#yYe5`VFfoq_?InG^2esPAOp&<*IZ4$*$!S_yjg8G#-c_N
z|EEQw@~Q*=LUMwpb=icFo`q#*3(8@Afx?*QFz=KOX7h?Ek(8&C-9x)>`GKjkHVPx4
zq@milxA|#7HDvS^l#0kWNgLw>CG}%%xZ8Gl{-cyXs>L-MTs{!pa{gFicoPVbjY)Oh
zI5fkQ6G>@%+?b=1i)pB_*^g;5TrJg%bH%FjYFt^r<bc#G{)Rm|E;fhss9nmSueyH1
zGjX;5wpX-$S=T##%YB4+4(_`?U06zqm|s35ZF^*vpsR8`w^<)rjhYdL;u;TcXwG$S
zd$?IUNQ%n}^Y#(9b+#Y=k`br^nProvQ{bqB4?lAcSgqk4U}=L$7DwI{ou;>>Uh}LT
z^fbI&8oX|P9ucVh8OFmHJg2))+WXnWA2^ioO?&jTT%e7M{5k*+9M4*OC*=x^IDNU9
zVRvivCM@%6OOXVt=qvUaFs!|KOR+;QAwRlJ*?Pw{`jDPy7<F|<#@Re_4|bU24%gs!
zFxcPT1OFW8EERSw4zVaVb0Od7ZD@n_q;q_42>8irU|cR)uDtj0%tl!JqsAbCD|zUM
zC{OiN<-rXbAAiBrK$U0>BM~oKb3^3;Pw(H~c0&?%E!d5bhq{S+uy1xhdrKf~!>tc;
zK}w1sKIK+e?RNU2M!4R==zyJ@$Rp%zG+(=mNBEJ)?jE_%k1EvKQGpH~aXy*+lA%Q_
zI>Ia{1$8~4uH7SA6`WEXQgi#UfIvG|6YGQzKT(tCFyM6F_->v$9bTUW@vA$?Yp*9q
zDq!<F%b&6O^D&`@yTgyCGE-mcoVg5i8kx#Q`lcRqRsDoMyfpjLtZkq}L>F}$9itJ;
zgy|JX7dpD);^<-gAeDlm<=)KUC*(+y321FWdf@C9y=b$O%jte0%^ScnB0qpW@?dp&
z<*UC-RcA@y8Kf^pPe$2fO{bptlauA#4h86&NKU`^JM!kom^QpG?7e40jgPfmgkJYv
zPICKtM7y0_HnZ<*GDNZ<_55tI4c<SO3^k`*YFrOds}1B8OHA`<0RR{3O8RX7irE_d
zt*nfX_GI)vN2)xp@T^*IQ1InC#>$Sqb!uQv!<I$1+1Gl`up>-;$)vx^mEM=al42E&
zU0*imlYKNQwC!$a-uGf{)_&&?C-cr=#xXs5zz2Df*@>m#@}VfG`&Nu_eKiIEc!ksj
zgxpvjAKF@&edsP;&J9VzJQ2Or3LeTYzrtC*-``w$$m05NgHaU@dl;yvPB0bIb<23(
z{;Q~=>~dO9(55$JW;wKzlOKILHLOxH7WGyH9|D=AC~5VeDn}J9eRlvbJ`%AB$BoiN
zh%oag*bRQ^y%Tm$N+0d$w_XcZP<<+DZfi@f*1S~Ie&=@ZApdT;cPO=BBm#@S%6Tk`
zhzKdGG!27zwmzy2l3p8xTFNLL*6ialHgE=?-@J2o<7uHaHfs>QL!(TTE8N=ZFjOh+
zjxj?kj!yOCfbVFf!|Z&_%j@>)rHl6)_x8e!W~!Ib0^t|fKCNJr?3H^=`N^X*tVNF&
zR<z^^_8K2RgtI<Br<4+T^Wk`JV+=FzW38G#Q0CotuG$N_tlox9Nxq7tl=c9w^|p=2
zL`NBO;@+;$n(HEXeJ)rvc>57?C*TKXw}ySc0lbG#4kqDdMKPl%i#`XH@CZQM!wm^%
zg=r=<AS#bh)9??D=i^mIS3Q?&`)zu~350sIM#SfIa+{u$`1^wQM3c7N`-ZdL;4vSl
zp|Om&EDH{8d$|9yNl^3T5&L%nY$GLvL@7PYfeDhe$)HdU1;KDH9i9ZeW_vtrsxR$Z
ztBrRR(qs7GHeBB6mLk5w1j<{GWkR29Y?x<#EbU{>rCSxQ>SFfr9klOd-n*@^Y)B;l
za?3qf5WHN-@eaBA=>u=YkN;FOplEh7sJNdmGKIRQ1-^Vdo<otrAY%S-e6kX0Z2ETz
zbhSb%Ng+mO5TQALIKHy*Xki(`U&?Cz*F0z@EX3{am^bO^UmV1VJr}DYetF1;zvl6Y
ziaBm%txvhR2cMjxm(KWKOfn3x$TEWDmSVxO>R@)!gaLRvnA=P7{)hrjZ{$RKrR8Kc
zY`R^n&z1SbE0@J4R~hqoRhN%yd<-8hKKBzJGLnuH092ImF-w^nZ3n48;7c$1JXFO9
z=u)*ObKf3utY|}WfI)U;Y5cnvO)!?rM#V)*H)48Th{G)^*i*Mmzgbw;bjIc;+fm^@
zlXXyfF5K=&XsJd)0E&fBwRbfz*qF{@6{sD6gPx0Na3fSpA$Dc*R-Jgynlr5GMC9=h
z4)<4wnB!gDON#~DHUpu3m}?OiKL7~bt`BLp9<qK;<|Zbttd&YL<_dr>Y14LOs4Q`p
zT)NF@llacWX-yJNTX%iPVTUvL>f)@m&6|(b{4C5D8Ws^YrS_D3L)QAes5`L0!V+_?
zGw)guT@QM|TGI0sVO*%ywE7q27?bq<h6@jRd#Dif+H$?U7~R>~l@K%fm+<Ok1rM8^
zD_i}iS?M*dwQ6=Dc(O(m8#P(Gyc#N*@!T<UP*uKKrRUr;h&2f=`Y`kh`d800Y@^{y
zo9odMz^*6uIu#-%|GmaGG@voQtsFm(=(6QWh_AgW8FYS42p&)gdqP;T3N)LD9e6vR
zly`o~{yrbRB|7V8KBhQ=NJ{yb_LZhrLgo8mN2@tVDN!lwzyRAP*NW?7A@f+g7MJt&
z?{9uL?EguKc*Ey}V~+7Pk+$;s2hRRXts2%~*;uoK`6pf^J8@YP!m$C!Oy)xCXlEWQ
zgPqbUTMwD_Uc$C>iVJ^kx^iLM9lXw-bj)~Vxx*-q0%znZ{xu`c%t_Xzp{^Lx+u1G?
zAxdtfMBC1?lDm0_Rjbpq%A8L%RYzHVM1xcPW_VrJ_Sr-6nZ`1(eGz`2B(<yd;)u^G
zgU5R`@dqnF1tk;~e1mdb)x0c}RoddYWL&L>bm6{~UF+EQf@1%?Erwja9`CWL<2!e~
za$fpAlofNKaaTOA{wH;8Sn^lDTz$fq1<CdaqJl5_qCRW$0eT4IbvHbpfV8xf5dhe8
z=DgJYvCYS~q^ig4$&A*X9G}t!4<uSx3}zMOjZX~3p^cQy1MBY5dM`7U>~Nj)mPQPf
zwU7`-h!<hdJ9eqpOpgeg;iz}nS)5is*Aq1esxv1dbnowVCqhS53oBhQh?oH*&K%05
zNGFcVOXtj-Z?LKmkI>hA&G|!MWmBK)4fyh`f_MEJyNl3A9&7Y(c${0gCV1Vij63^{
z<i7PfpSsmI79P9Q^@D@J&o;Z~&;^1MTH06+^QFIFc8g2@{L+`^HiWU3ptgnmVH$(+
zvxyOT99<W;!=yHYq5PF#_7@WgKS@~FGy7L^8CE+fsxq5QDaE~W1Zt(KswvfY^hE2z
z5yP8WBd!;Nwx^#v=x&0))eByZhjA+0>wTWhheqJ1KwPa_<C1qrHcJ^fj{;6v3|oC)
zNKgM5{eo>>8)7)^@#jue?m<AKie8Ae=4V(#Akm2l6DbE>g})S*<#48gT9cXHPCrK$
zX_eHxbd|7-N2?iS6HJqb{3Tr*13%kd<u|tJv464>wwuY$040(?)(c{T-21*AM+_7#
z+ll9sf5p1Sg^%~XhnCmD*l~~*wW@4G)A}kLSISG!*jSeOKdb#XfXsNB)YLr_m4X-5
zz7tM&Mqx%2{WQzB`+MXb$~xL#*o?`)A-%Vk4lWf<GhMx{zMe{rKuR=Ep-&nU!5*^{
zzFfK&E@?dZWsuFaAp5pA_p<F3U-yE6MlQe#DsK49H(<Cnm0xuA)Dt&ps*>0WcM&M(
z$rfC&WlpE5^%Ah%gqaTg@f&^YH|VC1Qt|yE;CBdvf(5aRN8)L1<|t&0R)Se{IC$0;
zM4nP1)k<pO|MwQ4Z=;RYWX4+{LI|Pxj;L$-sU^s^_gUF;YPJg&;JjI>`5TMUSi$yl
z^NahtMx`4zZBNc1N77oSYX<f*{c3Ye&&{b~`MZ(E=EDLqNn5RAe{u5_!Y3g}RG2d)
z5mPFDs-tXfPXtr%V?J27&D`QAs@?v94Rr+Xte)`Qh*YGNIa+XFfME$=Tz)~x1Ixmh
zaYVbZcMJPTBy$8I>$eqc(busMCddi6?4__JMYY^VJjA#0Wr%adf8|oZDM|^`x8=df
zDvf+$M$eUfU-#{vy%a5rXTxC{rT^6Z3tpnPNO$S#?nm4(0wT>Z*nR(+pxH>3cy!Hl
zcx(0k6u6vd3Cpk*)Qn|#K(r<wLjTcE&i)iuD4O9U+BzTF%_^$XmYbBIemHv~m~Bd;
zaMVGbq~pChSGE9E{qP{@R+sr>AbkaTqM@%0mZN@yki^Wh4G+L(p__X_28oABwwP1l
z-86s^cj_c2^K2nEu^(<qC}WoNXX^G6jT~m-jIX7}aG3{^G}4QX)7VOICYO>v`i<M>
zY>5Joi-()jWADCl>qozcUzgGG&L8AtF@5}0^Mjp9PRTF?fOYP*x#@?=4vorx0i_qW
zXeAiLRZmtCS5!FH?E?F**yUZ2BUb>J-J<)t+p_-|2k~5^GrYg8RVS6xdho7QeAWx9
zK}+~>cWhX@V|gF-vz_jC)NpLlc)VvdM*YV5_cxkKlwZROV`KPmY^{`DTyi0BaRKaK
zV{ROV+|b_E@TKY~*YU<Xc^$j;O%C}A9X2#M{$0`MLrJc&p?5Gl{J15`=SvSc{83O<
z{$&;JgbXpc){@&?M-|AlvuqDNT(ec;NRb(^wxtG<HJJn~U8DQHdh@er2f%4RJ}i#=
z)y7&ViN<mP2g~#-z?s*J>^AY_OfNb!rG87g1;F6*^WI*uejQVY$c_HNNoHk14vKt-
zf>S}l8_<Oo1ym(h&*8plLON?sy+`wRNa&+}SzORULjR3-^YQvQ-={{JB^zMk;s0Hv
zCIP3>U)(xOV3WgUI52M9kKuXeB6|s7#{YQUz$56z#(7tMYR{U9NCW4G3;a+yN~h^2
zNKL-r>wO|ay3<vrsl*m{m#BD}opq>RW(6;+KNPa_IC=H4?rmH6qdUB|`e=T(LS$g(
z)ntS(3FC8SQXB=|8#Lo{O}1f_v#ivr$C&ccX6y;p;y>I$FFBu|SblFT)-ul**kL(P
zB4>OUH}tQd7NOC&w6!BBi9*9vR5A6NuIOKmHBgjhA#CCEi%}1|J)w;jvt?RWMq2p7
zl1vq=6$l`%zLb$6%0F$#V?{&)y`5X35`Y+pTP>#QE+BSy)pzjiTi^rk8$V7rP+TUT
znRey&Dil|{6WCg9dio&&rO2lt;uRFQvf{qZtSgoyS<y#A`7yDgN~HRU#nNO{U+LZ6
zj_&Dh*g~W(5v?5YTO|ood<60lF+$L~Mj4#sSFO*pT9mx947iEgi6X2|JmX%KpNF^c
z&4?<DzMu~sywi|6UUF>N-pH7>Lk1zWS3N@ARvF6#*8I`ge0bSAGMGjgm8Udb5JXZ1
znfj-Tht@EWyUMF<7d%6mPbE}PX3l;RW)}_?<*vXtBcUWml3Lhr?{SF9=&0pQl>`r|
z;Mo8CXU!<<PZYYXOGs#wY`<}M0$JGZs}t-)TC@^+zA>s+5KrWP!$WMUzk{RP5ZxrW
z{pV`QI)K}X_f^OJ)>f<ym8;j)h4b9q!mHi}ruRF+XNYi{D3Qmva>A$^@WTeED#McD
zjR>kPP>DSn^)T9{Xz)0Y%vvx@6ns-vUmsonD0fQ%wvLVq;i)CfpI>Z)1#xBM84&$S
zo;<Iv%dvggVj_M_T*GG56w`RJTjK4eTI2maFrox&&!OHNG<Z1hfNNOELlW)`bFfw^
zlP4CA#$W;fz-Iw77MO2YanW&r#G%2}%y2o_k8sP%Fq8yx;1C^s(4LViPy6j&5D&Km
z3Si*%hj0izTsGc(ob)4LZq}2B-1VlVva_<`hP<~~wAe<~g0XzE-!161+MUsgT@e?r
zW^W3E8Znt2SLD%MLLwFbDykZCSxjB4a52QR%X4NAe&KVd49KI4qO()pexjrw#3p!s
zpP?{$YrV6%nRQ*6?I#l*Ui>4Td<Y#)PO>91E8pVEDq@HBL(Jhy=g7A+FIf(B6ySG%
z?v)0#q~QWBSWRIDA&kxh4M5djym2bJ<4@9EC(<cZOQMKYA5<rnk5y(U<gu^S(C;Qd
z!v>g{S=b=7Rk-|1e%mYyo&J-;j@ksj35H~2a_30b+zG^RPk+VJzqQ^qqxHy;ymP-d
z-Od@JURe3cHwiS{b>u;3%KzjKc|O!!`SRn?W5NzdKDNi1?i$HeS|^|d_~C}ij$x>Q
z;tJK@eeF`^Aa3|0)-Gw(4w#V^sUOH1|LD%!m6M4rd2oku>-`JNth@)2Ut7@YpRhhK
z(>-ewK-NtNv^Ds(6Ol4;u3@@B)K9^GFEGo~vp((&=Y!=_OGvkeU4K;MWtPmrvFPgO
zkTEC75)LzjY2SOW38|{$07eOV_fJXhc=u8`G;$`4*S_U{Lxm@K!_X3|tyuc4lDLBU
z=$6E$oYBA%XTU_!yKSvXb%>(tE5_*w^))Gv>s~+*(abvlh*cXzC@kyH0Ta{Usj6ZE
z2!8T;`6z?*q0=iYMryL$Zx}hb<CT@Ko`7T(rfK5A4>6VU>9Orhd8tT6VOv3Fa@utV
zqcgPxjD2v<yKm1oDv)9nDO%ncW;!1UI(v~?%?LvVFapI=@Nq}1rbhD?x>F><Ufxed
zaDWZB03fz;@fR*yYuMK(QwM^~79QSj^sGm=yyU^>JU<-xJ}=xmuA|Py$)><1_m@mW
z$&+GU6BkN~TYBr-N+Qi~QIYyrFSY32k}2e=ro{xLG8LPTZ$77_%HXK+an4RF3s>mm
znRmS1{;MbAdy8H^%m6;7<zV)Nv)_-hGMcegxE7vREM_|{oiG8u)36RPzxO$>ZK(Cg
zLQ{kOO|F>nM9+8OMNk;5U9mW|VEQ?-n$9&|Dk1hq|J3bKV4T?W{}Fc=QFUw$1EvcI
z9xPaJcMTfc-QC^YodYDeC&Aq%xVt4d2X{ZXyF0z^{eJ20)uSGC4{O(+RMp;-T2Ivr
zn6F!mZd}(&<;-6SyV+!r9CPRzTO2NZY}#4mS)BPX2E8!;Cmq`Os?JTPfSw{8R%>K@
zD*L-QoXp8-5kd_!O?!>%EMBZ`__yf7z2c&MIZm6(vzaihb6vNBGwa!A=RAK0<EH7~
zq2=w`N%I_(tQc<SmKw60cn740$aV7UBIwodr)=))zYfLt9(hs`Tm65_<(A;V21O%9
zA3gmso6gUV(h;_Fc=D*-C!=&dUZD9A&YFPt+|n|T1wK<EXZPbHgVwbtFP#nJDyAvH
z`=ZQj@Z8K=@GTkc&i4G}Br0OgWoj5MrsW$5&M%3x>*pjh>yS<apySKs!M$&yA$gDn
z>EgReg%VapW~Y^wr89xL%s?ePvXh0`O80R;Seh<2NztKnTyJluAaP+_xj8ZxgPJd*
zw5ai*h6hp$BR*rpjr?}&)=VbMRd{{&x-Nt|#w^%wM2UpX$jKTsHg|Mld6H@twh5<>
zBm7{$m(&@~yo&0VShkCN)LKqvI?<LBu<lJMf-GA7rC#z80SFpX@}VCL3K@I8wILUd
zIG?SQn!MgwP!U+H7#f1cxirv&(<YZN6-5Q_QBx29OmlMMhB8Gar(nnbT98%e;etil
z)9;0LCP;EcN-i?&(`C;;Pf24@3p9A0Z!$5p0)&xn$6crCllBU8!7|a2NhZ1WyeLQ3
zYV*!J>8;%NwPin^6Fu4m9V%NR_9q*?kTE}Kr~S(8g$|ms?gJ8wI#JMq7;vuhn##bI
z0-&;9VI9u{$Z#^U^v+a!2JYIAz6F+W#>^~AgqpXhVIjq}7LvP`5A@xli^b2gE+VF^
z#W`=U!kIV^#1tiH&Q<tmCNpH)PmQk4pWM*<n^Ez($_ij%wQ+D$hBvlKrG_PA<kRmD
ztb2F)?oMXpV^|Z2iPU1!Vx;0-@pA1~?mx0^Bdk5U-*1yvC`Ck-`{R68!&LkD*}BA0
zjBn){W0L&27}V~4bu6nNT<&$+s-nk%uh}wJwrQ%NYedH<#fRjq;#q}?u;oE&M)X0X
zgSug;R-*f^@>#+A4$%_HDF=1fA}`J}o@}pg{rS|gx!(GHv$|4<m6SO}(s;DBj^%68
zZx^hfF?q##V}e?XiGDp^0$QxgmBd@Ji4~%j4Nd0*>26d@R8X@0Vc8c~Z{8xfp2C;o
zOz`uByB_b~vFj`+E{}<Ejqi)o^RlTm#|a1S!D{iXV82MLR-IN^^Uc)|xQeJ)X%2kz
zeI<djmw=!lt68l;RBqFBv3eewWCOGbCt+q2$yxv9`#=Q~3<Wg=_EzqR^@Q!C1h<l_
z>=D0kR4MpQ5_5>%)LxZu*p`b;hzFe&ngMw5_A|q8=iCsQLwjT|G$WR?MrY8g7h|t^
zu?2oD?x0W4N$B0-5Z&ZL*Sb?ED}Jo8G~eUOCJsdL#tV<l&UEyb5JggL3X9+=*RsOu
zO{WLn`WyvufhOK%J*0ZM9G-Rf=hPKhCt>DEEi*s!5(1!vnT`L{;Oq(Lf5QB^Iyq>)
zv^pzK)P$YxmDbfqspGUwa=^$csP`*Irrq^P1fsN@!GreTuVzFM{FOu1(8z7qaCsZQ
zOv-R)3WTORZf`bsn2-~^KFrK^RjA2j*~U;V=%cDENc~+WTG5T$E4yEnBNm;DzZ0FX
z2nI0o-BJ_76*5dPF*-k)P+rck6I{kuahsc??fvew(|BlSH|4VT&tskD&r*$b@sT4~
zLeXh;{EkaWqF?vYC)e>ilu33%*;I+HdM<<ory*IUGrcVX&*ibx+kDAkqy>jMVywOG
zdgxZ$F9Wq)vduR>^9$=q`ApgbGK@<_I%@jmx-%_E8HVgbDib0kkY5%aSXzi%KWJ_#
z@fg(Uc29*3La&i%jyF)Wf+9U!ow^{dU;cXY>aRxvgrIX-8VKU4?%u&MBk_2cMFg_&
z9V^xc+Pv3dd?j2)Z#tYG>sw|J|Ig}n<8Vh|T0Md;v1`#z!U?I4=Zu}ZRGJ<t*y%eK
z8Q?|u?k%v`aj~)Se3{md4+F;M=*RoQeOLMHI+L~K+aTrgXDk-HK-7Vg!NjeaD3Xl_
zx~-mLct=QBsAJJwU3y$uDkUs}Qp+8alcp<u0Y}L>IvLcTE+;^v1mj7FUc`d~TT(Sl
zFcnt2s=HR*w;cVu4DA>CmLv<o-rk44nV(=XaQ$e=75>z^-?@9C)6bBzIO^3u>SDlA
zU!Qvzy?b)K*yM$YU==XSxA<}Lcbmj=b5VGMtA3OqQE<`M7mUBxS!#vgFHrCRfV||z
zGIlp%XTpyXQ=3WL5<%YP+vB9?Ee@0@C?Ml@!;l_kdXEVDm`_^8=YC^MubO{+Au2PY
z=_<)QQ@7dO$~-t*!-8$xVV$G^db#U7oTMR%T<q$nhY%qe_y+;&f$Q11PP@OCc<7^q
zhdNqs!q8_<IDm^?P$d+qhMtNp0~V<8A$%<SvqrD)Z?-?c{!@oO4rE*|e7pq~Vtl<F
zzg}W)+1O(-dUHQ<G|e6XI1Xf|MOg%;t#bE{{_Gh%TO2k&GYiTls3j|o-&v~5_z(3z
zW9x1h`@6c&Y{Ki{hj9)~_r`&mH=XmL0ASy6@oGPb=Ft{TMLQ|$hvs*?@-`rS$ly3Y
z05_|E!&EcN_cT5Uk{Q9BJeYNSupBZ`gk+X)=o;y#u$UbSPf|GiXS&@&&8jzeOpg0Q
z3ehJW_iX;(jdXvhn(qnY)Xl`E53^ES@z9@Q)0QE5e_!D%6xu+XjC5MXW~_FzSVd9>
zd@Y_!@fPQ315q_X3oq_${Egy+HNHBMeM<^<To5|Hk<yI;C&)_x8NFJS6`sS?%=2KN
zej}f*0p~C6N9RE;JG6E0%*sg^1-#v~pD9jMb3O~*n{(~StEHUyD9o!zrg}5|NPteW
z<Gzepe?hwn3O+JbMBx9GB3>64T)bD@DEKq~@UUI#=tOjSSf^k+W_usxarlbXJpOto
zo29l9F`)L8ER0MYa9_fpxX0lrGg(!@UEw!KcRKmEe{gyzqw#IK#Sn9$lGrlC$G<-x
zB(p>Gt*<;O@uqNjVptnq1ier1LtdDCm@Q+=&V2T3eB$3d3Q2CvZrIDm?r>!g4wm;Y
zt2{sdDII9E==iV@d}$=La-Y380cB;d7(kxp&J(c^#{aL@>j)a_tT8ccQ3rHk@Qxnd
zgDg_IiM$>a2ETg?$e!8jquZ+EU?=RBM=V7AOZ_5_4zOV#qy8m@h60jmzaW$Qod{b+
zKmYlxfL82ZbWMt|MfLCTf2f)_`_M;*@1%y9S#ow3*PFsW!KnXeiw?w!shugr0NVos
z#LWNlhRpE)o{_<lTJnF$K+0?Y5WagG(4qnn_kmBv+y5es_jvW~0N>!|_o07o#D6SI
z?Elve(dne<;DZSI3v)CY<JpkkB{J9k!&ce~c5nB)hxFCLOaRE*-vrrw{k1*^!tR*$
zY!*SdKv5dz_)hNF4%?oheV)~|BmXAECkzYyJP#vvb3XldWobEN&{ocM1~cC=XEBhz
ztffh8A=_Yun4R-fTJHl&#@99_0w+Jj!Q3Ia==c`*jp}Q}qrgN|5pbH&M6*ECM)}6-
z@}1Ol7lS9L@Y&>LnP53(tSWG4S1xnrrhus&PG<@MAoz68nCiuv<gfu{>1ee1eBYsj
zR?KZbn9_%s{<yCtl7c(7oYgnm$n*;?E}O?g8ceOKi{1QQP8FVTyt<20at4WX_1&K{
z7(>{CME$cMyv=UDNNEOwLZJaxhx>J!P7RuQA|Lw?K*gA%)t`zc5K7d`38AD(#d*BD
zSTp>x*_F~vqFpi(IH1viexz+%iedl0kq)Wb)dlifp2yB~cVlbq?}TA#IfbK#xt4-=
zS3;N07kzXO)AwR;yus1=DT>K{tT}A$SZxmzMK0CPZ$79Oy5s8{Up?2kQ<C0WLPPDt
zD;}p^7c#S42JoA0oFla?VqRW*hvWAhviAdC%O~Ev3(b#l&oaW3T&c<v8FYf$Tr)7g
zdY*;!jKUBkhtfTkvUYYE#0|`7@2}Z~QLf>>PrppZ<cJ=-6?eEBP(=j7|07kmV*g0U
z<lQF#z>mf?>Cus2V&_7WDS>ix^T$0SHAK<9_~_~|&G2z@?Odogb6Q#E%QhE(eL$2L
z-4jM$f(q|1*RL#D2AtG=C3apkySqupo?*u$g1mQZbd!TbFIV*`JV8CxAUV1yP@0&s
zro*z2+b6q;%CKZ_j~Ln3D5zl7Vv{3+Grb@Uy2KdKsy<~cM~cXVdLDw#<Hgsn24bSt
z{ITxqosQD0`C_@kZodQcx_`CFqQ67`V|4pgVk{^{3WPFPOJmD<ibi9)n)dGnn%!bF
zXf7@?+Z4T>)SG*#_xL5#a`64k&Yhln>Blr}C+~*Jz$bHVzPwjIpGgKwpp#*%GhggD
z0HD|7=nLp9mHEw6RLtb+HG!`wJ5DX}bg<S&VC%IOq}L|<lX3UY5@;n}3QMEY0BpzQ
z-;#6r7T*n5GB<4?JRL-qK#gjD>_EYaRU)C!*R_99dDFH>cbUl>7wDvZUp%fVn?w-!
ze$oZ9GL;?qJD6&+7>J&nE0f|y^YL_kwm-9gY1H5UX#s^MLAfZ+GEw1J#VpMI!po~B
zIf$Hz+<WjmoET@$8=UNV*6qJL+ceM5;dGwn(^E*I!+Ko(0q#LDYq0ZOF`kqLvzYX4
z{4k4eLO{hB*wAjqfBmy4$fVB%n@cAf-|lyEFGRvCuhVHAQ67Z)^wx&}ysn*72V!pV
zzTWRnJCG3LC}nfjMwigqZr?QKopzUg?T>D<<vi<^dDZ=z_W5etk$5d&&}V8NXN4vp
zuq3;HOM2Dy2zk?RMtxm!XX!ookYdG8?|LpRe*Cm6l7T3*$&vHw)umIfP3OuTRwge6
z^^^xA-HK7DLn<dSA<XNp5!brj%!zot>)y7ksX@QIyqxs3-Sj!P1v_I`079@lH5gVs
z=J(0f9DD~>Y6P_DQtYsiKnkq}hB%%3V+4??=w7iLBEIXiFD?@mkKr>*>E$j&zsqf;
z9NS^}tcEmMS`GzYw^dHlb2IFUUkM!z4H~~4jkkvn_-5%eW<wKp<CYCJr!b6JZ1H#y
z3wR3Kk>L8-VW=g(Z0s~Slx!uoxLeLDjWII`(i46$F(%-a)4e^Rr?ltWk1txs70PHY
z=U4jKFo?TisYCd9>3Dp&?N3E`(;vAG3@lcXFbf!*m+LT*CFj)kmM9U;&TAm`4|^${
z3W7m_8ufBBnjcbr{QR_4d5`Z)<lnw0(AMn!g>$cey~CYP;<B2Ug9>4*QFKdDt)wqY
z=m`vIm5eT?D2_9Du-T-MQ?$~00u>2JvZO=m4~FLF2;6icEA4{N)bdMraa+buU1T1z
zle(`1Q%{}GqCNJnwKWY?pMsUzQ8IWg)`zo>??)b)1*qjSp3<0K6JpUCfuX|PhB<H>
z?fAKNGZRefT{@e?A=25eQ21XAV||+~&DNI1An#X42b2%rAUjErk9p@OkhUWk#D&`1
z2*m4!Hl)4EwoI*S#i6#rd?%~N;+*x@*E`1GG^c7Wn!x&L)5oo>T3s_$Yi*bJY!dnC
z$AE>{2KoutSsWaT6~D{$v@V|%wATPyF(=b=YDKV_;ltd<BIg%yTfm09f73u+?@pQ-
zt^zo<c2iSfX<{$T{w;m*-Gy!Wb!nnmV=<TB6wvX^>b9&3T)uQD=h{aGh0ABuxnevY
zMqTq5^BKS8W2{E&%{$61AXjFBpe3l-Bq{jn?xfa7iYm$HnT39he%CC91%&xi-jGvP
z@SKR2{AD%KwW#3ut1lS@1EoH<-Iox>W1HSHQwSOvJ4p!H3v2YH56*?@<)Pa@F+S{3
zoZrmwb+u-NRzkyfa95^b?Is7>E$<aLrFg3AFW-ZWl;+5rnau_QE-Tm4A2ZH|Stk|6
zk^^49Iozy|8A*+d>Bgns9WGdgwF-qKDs#?id;k)!b0_wT*1p!dof^hQD!t#+jO$Yd
z^7<)#f=Pd`{pa5=`UWsP6Qj0u1mWJKKhV(-9sAeT=+4emX_YfoX;m|~(5+p(?pyps
zLmmb+>)GyK(aEH_2uO=S>(}qMV#A~Q8GNpmXIZyGO@h2iW2J&K%e!~|$7UG`5T@0y
z>i*7qZ$OglFR=CDK+>$D-Fr!_0UVQ~NqXS<P1W_IjmuF~+t_{_-&!1FWw`L}8qDW!
z4i1W|Yi9eO>NvQvXymhNw6ni@1WI2PKzVjzFwpd`ch-0r6fZXfbYBMJj$@2H9NPL$
z23zGfIV|($#KkH@0m_oGdUIBT*}g~j8!E(BOX=%retSfy8kib+5kX0DR_v8LpNyC8
zblYqb6>j=F?O-JISBgPam8A|NvZbO@k_UWcd!@k^YaY92M!pN1Y5-t9P$<<sVH7|u
ztNEA=*VzowTS<logg-atlTv&+**&cveD~Engz0vY?cP<gTF@pTV1Hh1FB6wzjBmw_
zi>n-iCXJC*NlhSpdl~r&vU+tb^BH9{@ayXm3Lju5sOxVoa{_nQ6eDP`R~_AMG6{+x
z0YL{|VcCI-73XDvoCdl9M9Hm<Jd}{OM@D&Zz?A$Y$5yHS>UM5=wZb2kjNV02)6(*i
z><<(W^?o*z3|e4A1jGmEk2wra4IpvYpUd+q+hPvP@qNtuzxkzoAf;Ed-0f=BQaX=r
ze;FZ(c1LkzM;91o^qUZId3e&t0RVJKx|DJRi>Kbnbx#?qeMi2We5jzBiwpkVP9c=z
z^EdNAZHf3@9cEBC=QpbiE<!&#G5{Utmo#H@{O9$%qmdPIosAp<R075)mno7;sSo^Z
zE~m>x?;Jc(z+^hE%PC(WS;u0XuhQ_xg_Im{noRrMO51cGC9#)7XI`rv)BN>CRIvap
z)zVU^#D~(qCl#YxX>g1sg1zbWMozD{vk9Wm=m`jS@PS7&W0z-BefaY@6{CLl#PFRO
zFn!`5I%yRth4_@p$nbRxJvA*|B<%s?1sBFA&{^>_Pd~RyqDrehtisbxMUvZT3FJLa
z8CqCdx?$RMLVkhXLqhV+ri<j{!!t9egGc0<``yP#93W-mhnPd!s*2jzi@_In19|Yt
zXRQfh04YDEu49we)6kg~XoAv(;D%(2xxN1AzB?EjKu;*!cX!t9_QaWB*|j|^#|p>Z
zt>2w2fQAN4T--b1kdOUl3%A%2=;ULWJ^&95jo@=+7eySc3d)##QU-Q8SfIfpbWOXm
z(=+KNFgwBFDg80<At@>EyW{ntOG%M5iT-W_G4zGa{X+!r(`Z;M)jLU&>p=V1Co3&E
zUdq;o#r^X2m)1w~Tta}9T;d?WS`>u)T7Eb^^sF@9-fXuWz)voXD2&JLa5@~tf5&K`
z0+2`kV!fIUV|p|$Wwv6UOs80>v?6KFFCpO0@};5zHuE+^sh^V@%2cH!51xO|v+PfM
zNZK<Z^8i6xy3Kkm7MhqKqGm0rY<&)gk;KD#+^QuI)vp!X<#G0KTn_F$_th7@N$I-v
zqT>C);UFz?-x`mBL>qS8ie(?ck<yv(YtNQkljUbuIJ-qfDeUAf|7`(^&E>jC9Ur37
z$<<>Mr^r-_;_;<T;-qB`5pM)}5ljD)2#vWAJRcuju60)4&<lyFd%WIroQw93oau7p
zpYZ3iOqKw&-|DRl=%*ICZ#+VH$=I5twFm!f^|~>_VgbF0M0pKsK`12?*>A@uhu!1Z
zi<1lKaK?Nstu>HG_`)Q?0@CRX?mUU&v$JIE>}ne~trYwtgzntB3|@t&3~oAmD>NEZ
z0A1&#5rw^&WjTOJbJG8$%-~rQ%^5>ESAb=Cb*^8Y=#n}YiDb^?%Jm8%Ww3mjxOh}x
zl_`}L5;Q$H5p^*1!Sw9FSorsLj-X;Aaffa1jo_FqqE6Co_WRR(!UROE?j-a05IgLl
zKQYXYl7)lzaYYa|{{!l+J?Xkosl9(1+Yty-^g)sMPCe5psMMWq_}Y(1%(k`tvuee1
zwj<oMGGypiql}5WIlYC^M0P=Ewe6?xqF_%Y6;DsHDcpm=ehmXT?y8D^*4o}$LdG|2
z5Wlcq^VIE7*$z5TxwdUq#;-!QdDUVuRvCjD$4De6g;eL3n3$~`4?Wo@<o`0?;<NJP
z59G?HH{1nH4ze(ei>K75%@f+V(a@-Qgap<!P@<8eAV)oO2QC45XzKgzsBN0<%x5oX
zXtYrlGp*74T#$vfm_myyOc=v%W<e>THjlTPB1FDBdA)X8^P#JDpZCd!{`?<eYJ&kw
z#o}ogmrou+_(1k*C(&=7ZnvI|J$Pu6k#0twELJ>jt@zGIr3I|KBQdN`hwuxt6GTsi
z7h~Bz(d2L+&z`rB*0<SSs)%2&Ps(GW_7&7UUS0KMsiv<)Ksq)b;6&4R*&NT4Tr9w}
zQH6&fcevS|$g4l#k?$yx_y9nC{pV~K!xwACW9Z666aY35Lim3~fra=cBakg}Y0xKu
zoWOix#E&7l(!Ub<sz1r(r8<9rCWe)T268`12!17c+*lpP+16sj=M0p7xS^O@zRKqi
z1t~}LCvhM{nj~@rvk3T>=2&;!wC%fo7$mAU8ptD~gklZ)G)?R-?JmbfPH)5PND&%w
zaW~yhetS(hBTmEh-|zb~6aQ-mJM&G(B)~)>LF)$gi4-HH{gg^I@`k`j^5*82wz#Hd
zb&*JtoS9&%m}RykP1L1TKC(i%B9HL{bkrw&1f4J<&1^fPDp*>LY+@-tBMWm9_3!8p
zBjK*PZMApH8uRaI-_h=4&(<UdDde8XNZ~8jV1hpJHXP5CRC);zsFB5wZ5`lEF72w8
zT`=|)@^_JNntQjyg})eHW;D85iM~y;`Kp%Gr_FQHf${`tDR;|cus%iN#{hZnAxAO1
zv@mA9N=o0bjH+cPaKPv?i$BLocyoxkE86E?XKX$K%AzTPGgfg&v$;)V!*WO+`}J0k
zUFk1Sz(^s4ggY#3bd~&6$V=T1SM3+3&-r8+6Ph<@f1G4$eJ+zp(f{yz<*B#J=L29}
zFWF1|y4V;gM?|33^p)yjU_CZ)RZas6XkKdz@76s%V?T6<Q~R|S6YC>j6?<}EGnP^k
zzW#c>0AU%_B$gf`@BPHlImQ%Y{evAKEY~#KlP8|c&!$VleLXoBSc&T%H;JlmZ)SBm
zJK$rEPL6fbOKIz@d0w7Xp;6@SWV;Nxd{_$Bo##|9hKDS6I$Gu4mWI~DH@R|9<sV2%
zaXY*)h{^)i&zCggaS`b=pi>5HWzmIz`n{Nw108Tk`KVm%U1yEk+ORPl_$nOny7<QC
z%sdZm`XppBT#Cz~GhrmLnhpRax~>y-w%fUX+sQ`H{3Uts44g;<Fkk@t^H5x`xkZ6H
z%{4r=XRdO)k3N?y6X&b$2O5f(%#ZfPUx!gZbVSdn7=r@*O_zB}DEH$+ig?X8R(I1p
zQVpQhhO%QVP14`$1J>l@FCF_9k1MhoA_L(QGjow9Ds_gp8NP?zz7#M3?MNIN7;fXh
zV@lX%Ht&}#mazk6Az8h<UUJ?~LFqp1?mqKEQ^W&2d}k=xV_`geJmnFr;X#ri4a*K*
zAG*RBMj9zhdR`+r!w-e78_1!V_cj6F*^X<BdkIS(x>1R~;$+Y<LxT+&xI9D4$W$X^
zX#LSxcyM%?De{NLr~%;}I+nMm)BZ=X+hx=Ywt#hf&~Sr67dFat<pZ@MbwaQ(Ev?t-
z=9M>AM7g$R<qjK99;_$`Np_n&YH&Zvk}g3SZ@FhOcUAS<PpD|=zE7fss%ert-DYF`
zSKZYj=1XirNKdwxzB>dtx{dB;UGvK}$L}|Td?m8~?u`_&+$|@<#XEy8pN87^VG6!?
z`H^ILx<M1Y09Te~(f%>{x}0^iM;FuMFt{&&ldH;tvYZ+^31&fF8dy5uLe~vM*xfi;
zt`w~$J>ify&aPbqhULD_!ImZDJ;kGK8&Q}Vg_s*b&^Lv|%PB;oCthXD_m^G1COa53
zK>%1W*|`e_uausjYx6ri{W3sH^8}-wJxu*n)6C`-<7RSrIy+fjVoyFn<2-CVxu<}i
z_xNSFR%iUw!E`@2R#KfamG3=-3FQXAvPvVxJ)ZIPk|w9Ymtx^<6>?OsAhv+l=A(f7
zcnZN)%BkJ5ZjgXrXAHC+I``E(oH|(R`1%UM2;(*BHw3O&XI#L@6)PJ0eqA@2zRSYY
zmyK4)m?P=7F%$A`usR)S43sK^0v59qn#ap9pZ25D*aPomezUueRTcOp`_epDWC(z!
zNZ!7WN6*K(y%wT(P}esz*-^E2IL<$~%p^PTk)%_PBw;RFUMw3)>4cpa@!Omf^4OsY
z$c_w+J?|KXHJx-`ZVU**IiXghegSP(r%0@`-=Ad7<+@uF7A=_mA(=V-8~4WMx7=ZL
zPLHp&*3eLns9{nJsYxI!Ok$&Xc{;;n!P<-S_~`D_mgfMHEXez+UxoS`K(}#U)HAhn
zO3ul=F?7{^8+1Z458x)Y{M?wuS`}#nYh~nNZyhpSrh>ULZI=GYoAY)jlAMB#K89CX
zQ(K!F+$a-VCp)RBkiPi4fWlM=R4Gr8fu}O^9hz<`9XA1+K(EJzC1tN<@fM#Oy`wW=
zao<K<HH?;9X%qurbNvKA3~IwwZo)@i(_0+1q^VLwQ}wY4jFr+IV0~pqLiltYkenB6
zrhpG{;G^_!I@6DpbHvZ4K9EzOo%0r<Ez^Fhk6wGOr(PLqO2#t^CoZ5eB3Fn}f`?~O
zDwuX(ymM46vQi+A{1|CQn9fn5!nLzl=;B60Pe(2*&mm*-^OKpMo%C}qVx3UxlhIt)
z>*M^qtQ>b$p=aCO`xaB9X9ik4pMhG{G}#5l$WXnCfagPhCoV+1$UMsRdWRq8Th*!D
zm65;&&8=Re!`!IG<}+>X4Jci*7svoV4p96}J85Zwj;n9>TXJ@&DzIB~jgR*@8%6-(
zLQV|eEv7yDFCkAWuCxG~t8}*%nM6fJiJ%qvUYzp`3m>$!%2w+dZug6qyo{$WSML{2
z_I#1z1=|zv>W=PW#wD#6j3=PmJbPmE5_8#5+fxY|5O%Tdeg)sJ;bH~_X$KcO1lnYF
zHl5ES>wF9{DqXHzBS9gUwd{<T1~At2`Rd(`Rr|OG6$9h1JvU#H-VQ0@qk2)7x~-4L
z_@MzPj0V5xTLpZbDU9Dazd!Zw9Umh{WJhNCwX3+n>6K(Y?>0gQH605T8I5f?s0Fqs
z4gewIvM2b&#Jm+tk#iGRfbgZjQQ<go?VXRvWotASkoyo7uBS<K%>o^i>t3FWySLcS
znA!0BEfsi>I^?wNF8-#a@YL(~N!HrRiax%@?a(DC6$p92o)9tDTVAS}VK(Zz<dsB0
z$GJIr+xHFKj~I5?xZ4U{A;J0tT-?W!aaolpo^7&k>ub7fJuVc#`F~YK0p3J-G!>Lk
z?e<2x9z|at<uS?(39HFw@M*tOe426H;a|b&B)DWd@3ZmQDV=#rZ`i>qHVYRq$gl36
zE3FgTMsCFZ=Hqod+c^#{sn#?0xwNrY!~plKuJ`j_AN{r>c@6SXc{r>TybZu>bx-My
z=8K2fX78tuva+5kMa7LekCT48p279CCvLC~m^xfh@gdBhhLLQ}gSpd>o4jg~#Pr*p
zt#7(6VZuDj2}~&Ca6jWW)n2<f781h1D6>piayyp$yQRurj~vy)nYnUvWWcw*HwE}u
z_=FnrkStsN9nC4S)Owx9dP(;<w)IznFugYtQu9#|;QMlUb|j?bvX-vc4wWX05*5!C
zb|@4)c@azt?yA7iPXA5FXU_7S^BvD`oPD(GLiDk%$}0-a5IH$?3t$UhSJQRNr}(5=
z-_Ljr_o_F~h!8hy4wP2x%#zRGygtK~^<t-Yq<;Q+#~9gnzkGVb3ECeU<@04I`{A_E
z05LwV%MI4>T3kLAQy{6#syQ8#vH~RwmkvTVbwS0$;lYd!K3XQXKh9CEw&E|l9WC}3
z{O(>a#8g`t7hA@sBP%IH!1GdEJ8L@{%qgC+BBqhPIbA^|niIbA-ab`_6Fv((lYb~i
z6nY;O3glyz5PcZny461j5=)^tpuamE(bHSmpJ{M6J8hh4eb-uc5ac;?m)8N4DeGWj
z*jOf~+8)d`%twcxe^yKJEP!9I66uOVk*9pSH>Ah?csB8~a|uiR2|o^tk_OjR?;d}?
zY(qhi!iONM_?da8jjz{HKmM52^yzzy5DVOX4O55TM_VSw_8YsyVT4x(|MJpcu5<pn
z6a^V=rCK}Rxi}(0f1{YNHsZ9ec7JBO3@sb@8Loa#jGxl1`#(-hK~FLw1))Rtcv^2*
zq`p7dSTE&iU|rr=%$K5~WG&u9a{$26LC}w1qY)f5dS!~JsAF_I{Bt}@t>UEU{=T7<
z`4#qIWBY+`C}Gq`je#OIuvmC_K7EF?4<{DMO@wvN!{`9;cWAxy&2IQf0162h=_&uo
zj$QxkV-u4bg^HvV<Lp_Rm(vdeu*z^xbkaW@NK!G9b`)mE(8?96Fnkx4%TW25Wq{E1
zH$G?dM+Yu<wvs{T(Lu7WlwwvlZekuO031c|abrHmLqI(z2etJJ+5NcwmV#6cyQdbv
zk=9?^PNs`x0<I_n_F5!~Gu_ZQ0AX>cE(^@X)X^Kpd>X82Y|AL+TT>(?>*lv@KOOw5
z2>nDXU$0}h9PKf!DkZk_la+l|ubq~;N)DaofGix6s>YAvCxOm~EQbYfUij_Cr5IXF
z;}K{b$Jc37DdNN)mb)j5*<w!(Hry4D!ekk=yP^3FAthQyAy^P}`t6A-9Ya=A_48o{
zDP$QD+k@Uyuz$9ttw5^u+4U(nF<26fxT~fFPwOZ4v7hf;q}-+}Ae;QeRSg=fifv0r
z_$r=#&pdE`K%ZlmS0{TtUAVqj(_y_+Y8Y(k$+lVMmhhq|^j?FW9&)`BpQ?mcv$<&9
zL{4+}*ebTNbG@%|m#Tezw?#r@J4VQAXF%ig(y9@iaOIY5Z&3F6YhB=d<mo7iw#1{&
zQ~>vj`iBTgBQqg?d0aa)!J;9hSpQbP(_sJ>K)<{$;9J{^A*pkxNV>OQ_*==sFpP<X
zF{t@ooW^E4v~>&Zp?DH47ycH8O(FLb%)wADoIn2b;679(<ni8?&8dxbV-Ps{y7Sk^
zDnW3ZTTLgxP-37GqFFnrbii$M3&e3yT|8}~{Cow6p<>uv{LBd$#uKQx&z#%yJzDJx
zvO5kGxG(n3DOanm)MF;*t#Ep`5g5IplW=tH%aDtg?gwe?mn`KpH8siH=(f2~HO@4?
zYt8?&2gP}d^)Jbk=`1#ePpv)<#xHsL<50=Pd%L?n6VI{qdN`OUe-QE}JD;sT*qixr
z4_Q=)%UQo|?%&Bqp1(`_Kw{W-Mj%0y8{lX1s_Q%5LVP`sM&TpVwGfvz$(UxV+)<OC
z9W&VtySsOG%QT(mAVt*G($juI#hl=3e-Z={n+1gNZuOfH0*u_)rF25Q2>*HO`JDD_
zcaOIZ7AiI7*7v^^KJSsp3h*6j(DksAdc7_Pf5A|>%aB4%P<(v(+*~s=p`=dz`qt9f
zV674U$Q?~0;H+EG(b{{t*i%ar1!<V{pvmTCXSLQnAA7Ui&~5yDwcX>1LRhH~qR%yk
zo9=A*G8^!wutamsD=3Y*c)M@FKYO(o-+Lz>=p9qfzi0S$nqjZGs3bp8HtoPbRafM&
zF|vus<KZtf3yxZqE{DXgxHzH~iWrSd1Bgt?jND386G`CK$xtcJ+I$y%z^5_@Xr*`V
zrcKeUItsjO?$nD+Aw?KtCYZVa)l;=p^S*dV;n!Sav2{kY(scW9Y>xs^mCl&-^?ecJ
zZAF&o!u5P_+Lz2sOsuBc<vKp!euc5}FwncZ)=`iB=I6wyS$)iQ95rjVSp>u66o=Qr
zSJyI~sFGvgmCT^oWZ<o*Vp4q2-Sg*9tL_Z$E#w0Lozn_w&qq+%1I?3s&aMr(Q8Xe7
zq(aX_s>zZ(e``#FD6ykSzFcQTLOdTMTPr$+sz4W<O72tdB-5KKP(3GG)3#$&f`U)=
zf$y5<yr~T(Uf)Z6Ihg}aln`L{?mT_TB3*&Fa(E(F%4T{pDGBdez6LI>u!m53sDr=I
zUp}XQo(3#b!hc47p<?!aPeaNFtMiR)gck)mp8xQ%Tsemi{^e$28|-*IF<R#Akv07R
zAT2vt%+1}1hnGOF)&5%=jH<YFQM0P&nm;Nx2PAeFJyM3V@TZj4!@RA3a&~MsD9^i2
zmS1|yu<UEuj{NwOdR?gH<?UzX*%}R#VU1;Tu5-^($!<5UVqd6fzLWhZENwJzjC>5O
zg{a9PAqrFM#iM+81vCPgIuWfH_r0#VrZKf3rihW;M7f<_bmH@ULATV)h}W%q;kA+F
zRuA+|&c)cC2dj(~&KTv)fLFPbZsNnq&70koB70MXf_IW(J1Cwc#<07|*s3USjl1X&
zpJ|_&$UMu(VTK3;YO?R~X+PF}xmfT$DezKGAzN=HnUm@dl*<u)2MErXr_ol0{rD;B
zR110*02ndz5RnVpXp}j{2|uCB1yoou^J4vYj?biyVBB4rG8)BSGuYef`PMg$VRN*4
zQLfiK_q-|0uEp?Vqu+{>>K^#+b<*Xa`+2QRi+?t{YOc-0z+<Qtp|OgDw3JjW1pSG4
zk+>JP>055@!K^+VMU4}uwLCJfJ7k6>$0FhlQt;8?NC!XN=PqORTR`op<(AN=KXpfU
z*=vKWT%`1LauxISHmgqRRt1IZ_a4sxi6~@+`^A+x0e7d~q)BP18;vQRq+@?TX{-e+
zXspfR4`^Tix4-5By!AFON(Lw9jDK)?BfqZu`OK8g>HFaKQ<f+riV-7X!Hc%ne9jCc
z&&Li~`10ajOVo0_w)+D$8EkM?T6)!&N=R9rg}HEcz}h^;{(U3$4_ya^@eYCRdsT=7
z!(C;)fDa9$*dMM2*Q+|k+a)iWQ$53X+Im#>Vjhdfuz}*8(vO*bs8`eCXYnevt6?mM
z1BfUQ0U0Vob+&hAG~f=cO%kh$xUZehj`t{X&E|-4g1+S(mnVFnI=3sM87GS`%LQ>r
zY?Vz-;s|6}tgSXaoKI+(Y&BtI@$@4~(LO%LV^bM;4?&+nUz)%@Mgg`HDa8+2t9AEF
zLN^Si@&USWZ)lw~cWm5SGxRQ+{u{%MgDid9e0(<$<*e?7KSRh!8h}2K>ut&Tk+#%y
z_Kzn~qs2Mx-_jjZ6<hb7$3_BBRe010Dl_%&>Q>~hVRosBCEoQ!oRSYh4<6GbxMlwF
z;KFQ3P2PB&j9zuzoSNkz|Lr4an5?t&w!GRv`cL#2rd5eN0mNzkX}DNlBfxgH9PDQS
zd5Dp~$`>t27GfqavlyDfDwgWx?{XeYGY?ygnpI4&LMgQ<mKt`0z^xexc`ZaM2?k8;
ztQv62@Hh^H3=@Q<UGE%XDBX>%`mp6r;|gP&>w+92(M8*gr-{#vuD##ync<#D@_p;w
zyt}jBor@_K-uvL*F(K_|2%t14&WxAq8-ALzC7!VrWel%?{ul+c`incvyudG+3UU7w
zanPP2sS0mCSCeAf?Qag$%6ogmU$*{J!8mv?If~^4f@qOl6OD5IDJ%UGV(yl0M*H-i
zG;+vf%Ky}q)jR*Ea;(AfKW(15{|ztS{{KGJ^tkR<ZSCPbGmWUU*5hL<q#fbkOCp)1
zJL<{!{9k2E++GaL|4N`7{crNp_kWU?WrqJGFaNF1l;KJe{lA=g&~CyLx9oR#vz7dE
zA2{vQcym%Dm*JbHW)Yar`0UW;|F*9fhULI_aUU&Z#cBK=Y_Y?kx8Y`^R-Hb(Ky!<>
z!JXOlzQba`RHmsrQn<FYEw%S<{NRyf-mds`y_&6pT47sFtx>ShCby5%u%Yg!XtWm`
zSLRn=bF3s3;JB~c9{3oV)^ymoxw9^F+X|uWyjqKAJE}XH4lQzc07y8u;ZZc01Y$L;
z`p%-^OT5*SkA$Ws-cJPx^H{D~gj&f$-coFS{Ut~8VLtN!J2JFXq3}P1XjJDls~i%s
zQaO86!$g{3m|iI*M((ouE(}0vLY`J1P<|DCTxJqrYp$JtMwg@>k)HTeUY6P*o0*mU
zlS1>Ig6YL)HLM=B>V)>i>4O&}jaeWM|7ZT+(VH87yz5G&YnFq6xlO)v>X5h4w_&L;
z1hN}44SVUtvV@FsDx#kw006H2Rzk|f+BZ=2v*azSL=^y<3fkHEwnen}gj|*WR;^V;
zavpDXv+BrB=7z!>1t=ZMj+EAy<7n{MkY5Vb^}XvYw8}nIjS=9hU_cr_zGL&=hS-X`
zW}j%^?5tq#MYlt``D7p0+Y$2u$^Kd6ke`g?9N94*ZrFy>Oq4x!b{iJyXYKF5`#|ny
z-0Nx(av-@fqdbp;oKZ&Y$~AfFvp1?CN1YX>AExdV^U2gOh{njgG&*5>>5bL@q~|WX
zNmM~`6kIM9zaE2w35=A2M|uScG|!k$Sc{e9tlYB68J?C}U&GJ4H4<4qY82d7+}86g
zUX-@MvnT?p&d(`R?SBD)gK*_8Veg~OspapIPgEVP{yRN$rPEq0_SXZigQ&;Tlj{-m
z(l?zhPZ#|g`o+`cFmu?B(s=Fnc=u+_)Ny;zZL~s6%o|6WYxk`%+{`4Krai?0U9*V7
zL@vf7N?JTHO^)|1oECv5ki+fvwsgv@^!l5&(~fPhZFYLYi7pouFf!B$DMS>=SSAoL
z{9Dd2=;S<5b=}78vU~c1=D0{(z|0V@z_iR|I)e#YW5<QhAE3PtcW3GUW4~Cuv#sWQ
zvOWgQR{akz0Q4wZj!B{sO$~$RgNBum+CV2gX+8YVK;~XF2xsoApu=!d#nz}z`J3L|
zM`=TDM=i|~>~48$-2}NYJ`V?CYt?b4R3CE9Ym+z}g)k+;rJ`?HWC;Y<H<?OD@X@VJ
zOj0p;vsGPL7))a^K5pALhjyEfADcHbd%?#BIYKKmkx+nUXKgz-8k>Ke=gZv!5|C?q
zqw8lK<389j2E`OOpXcWv_35kUXRcDSUSChm;*R{2)crsres`ANzhVWYg(0;o4>B<6
zd~-X)>#%G5Z;6S1auRs$_r&wf3LtnsIf`TsfvvoW>}?jd9-9LiflXKH1Km#}L!I~W
z1-={}Z2RR`zk*2&_#f}Dv0wqffzSEav)WH?{P>n+sX&H^J^7{}xcuWk!&U2ucGPD`
zmCvnz6K|L_JE#1b8c=k3ESw_n0ow8ay}P(df(E}A7O!hW;Go&?X&*XaMlIP;%{>6}
z>Ryt^v@B1|m)}{=qm+&Db~E}16D<L|h;Jb8x|HPkb;Gn@t5Ayn_4(p=c+MIV|4LH<
z4XWL-Wo7kfl(+X$dcMDghe8O~-NEa2DX{{fopa%DvU~ryOrNAY(?Cyd3?>`f^G$?T
zr=C(6vKykGs}~m>n%vwp;|4-h8ueYx3L-;qHMxKL=s*O#ZvJBGiM8eBvAjq6?uVzJ
zsjN9o^k*xt`KqnT6prt6SnW6Ur(!I$W)PJv9rm13x0C%ZC)+xge3?6G;+`$OuzT%R
zeuM^uS8nxrSssUr3NjRjL&w(!;?lcXE>0^FE_bU=DTOw6Sf0ICEOj6+KG&6uVLx|q
zA)z%#H(Bf3x4Q-1+4MVejzX?mArcaF>~9F_fb!ok%mo%FrY;Zj>pb<5uI-jcp~@Xb
zJ#T6e1DQH($I>s>oDTicD+}SxMA0eE3iet2c6+;a99MeXuOkLc#a?^aKH*|>;u^H%
z#<0SAZ>)Z;oO}->Z+t%aA&hYLU`}Rm)55eyfqg#9nE?Uq)-u;ApPht*n&$U;B2gXp
zobDE({j)cPaMeU#&XY`mn``9HYx8+fL1jxG(=|N=R!xTJDw<4Tu_U$LvQM*P@kk8<
z$(C$6rv|;duY&2kUDkuhbSg4#LT%ey?XfzIg}BeRkq+VH$hRkfpTC+(J8(TDVU<`u
z_Y+vP73vFg-8!d_EEa7~PT2*1F{s_KHkWq}Da#5k|B{p_7i6)};)2o|@*A=k`pheh
zn7hAqCcLE>CKKtnw$0v|@};R>EzD40Cm|K=sblv&>c1_(5xdXUs88!9vLelqceiw!
zmtl=(ncB!4g`H91PkiFFLHQfDd^Sk6vF1wM#@HiBO05sN`VYJ0SXvTZ^Ooeal`nLV
zBh_Ym+?$1i)4W^`%yIrT4_EASd}jA>wvf}>>o4IS22On=GPPbTCk83Mxhf$}FB_q5
z;_Lx!>4sD5GyYwyMaW{kNY8DpE0bh0AC)ap2zY2IWf#J3Z_fpOelq6sZgYmLp@7Lq
zXDd4e#r1AeXZQO<dkGYAuk4zM1bx@>znPB5rNDmBZt4uwWnU*hnO)~33mrg#SIBH1
z(B`ySsYerY$o-h1WYn2kwDUH_6i7)QbL8=vt1=jyiNOa_Y)0PWMqGQ95^!QA<wYE=
zq5H<_fAve_seJDo?NuLaEu&_KCUp=9CrN~mcP^7aNUX^^3GT!Jv#jR^1h-vHy48*_
z$`~IVG@%^Vh?;&KKSTZDOf9PFS-W3mNV2|#SqK0T0agc(`+ZMUPg*lY6~3S_POI+q
zr{mu=p&v-8F;39lW=k@**9vMs0?LG%i4)0U{rBDfXVfyXCQ(|{s`H2>s=k$3F*>^C
z=YR?*zj$diowO&*0Hkc1IwhC3=TDv$J=!P^a~9$>GeZ;%sH<Q~K*fcP;eM>s*Vkxu
zSF4ayXSppO1xCK2;sMqKjpRuJ2TEA|B4bM&sZRV8mB|jQPMS_X#%C0uA&KF9r~^Ai
zO*TLC%4}%KQQ)}+TVSo_aF&4%3IPp;g=49?FzN2~Pnn6spOFr)bC*dyPGNcR$>_35
zvEyB#)!J>-4tyX#|C$Nk@%(Ui$aklDKKZxmuPg&?@gVxq@sUJ-*JwG!jJq@21UIv#
zIAjc2AmXD^;pv^c8#7(39K=LnW2qQr&`=fu2nnV91U{t*Ywm2jQuLN4d^y-0>Auxh
z)Z=or&hme6tFVh6@K_R2v26-2L8jUDOpOTo=D4=4=Gt9QE_eRX4Aszn*|n}b0V*lA
zT5Z8<$?I@?3~{;papIXA8u+>SNc}wT!K9~nm2;wN!25&lECN(c6l`$pTGjp3Kx0iO
z^SGr}EcEfzA;sPEtm&E#A3#7xn_ypko~d~|Q@RVsF6q<id~~}W7Ultj#iJ%)Cqtf?
z|9R5b>ff+HO{_)joV;IEm;S8HrOJ-L_J%1O?ee!KO}2?)qOB(^ASG9}XQ&ujJCCFY
zPM3U5<8FR;VTyzbDvdB#tn4&<YT|i4vc;(uc_%xo<0}t%=hKD)zWnx8gfF?Zv$}kl
zhUZHtTPk+4OYqK_3)EMd1BAuJ)8FQadSUzJ9(k!vS8c5!%ZIo)XKl%)a1k+MUp&@$
zI-J~cCc|@@K6blE*jOSp+&YK6dHE;cC8&2dg_%&q{DnKd-%5Io<tz_Zc|a(*z>p*p
zLm|0Af7u#oVtU<z>23<>`FD6Q>#*+AtTXyUEGrU;iF;q9<*{4*M}{SS|59W0Zuf-E
zFh3$$?mQm7u+Oj_JG#n~`H?0E5x;KFIn3*!DjXj8+VDDvZEq}t{wy{529F+W63JmQ
zK0Bp4mt8*p4ME}dT{H4-!K)@a2dyn~J}iV2gvPVBZS|W%0b@&CH{0%_Pe+Y)EHae-
zAu7(?h6YGLPftjDOYFrNY449s$?7LWFYc|jlz{7kmL3za5X=}^cD99fzSV>8H04i1
z@82i8BYC+vRBbkoOeK$fxZEwtzmq5S6vDwr+H%=j%heyZwO>q&^}4Ma9VPuErC^Bu
zTT0R9{*O2Msr298NSRGUCjlKxS36z)zZ}r9C(>*OG71C3H_5~-sT<fQEP%@Su0oFL
z=_!Su9?nD5-2P`xT(AVyq3zNS8NX{*+3x3GvB+UB$`ggtX{8b(&1XgacgfjYUao8!
zQV;NQa#y6&HMw6ss1E<{wn@V<d>9Q)fqpC`qRtJ$XhE|I-C<unMeFkxZULhLH#bM2
zJAmYHcBCpsw27;ZQ)xX7>5wtu^ZV)&LCeUIbi8%g16L+lFwiKG$8ru|lIp`<(GR^m
zKeqOjn}f1(M`B#dJ$`y`Y)k`)FF8)hqWvZ&KoD_{Ho`Qffp^<w75K|HK#|$xvZYO*
zl%5`O<<D5?>$ni9f?AX5MaCq#nwJ-NI*Ps^m}0j`4*5US={(x%0o)sGnwK5UKtlUX
z3scJ?1X3CFIa`au3RQW)(UB|aVua5;G__-B$g9X{Q`*zo8Ofl;(1EMQ)~^juS`0)X
zm;MV&QmR<>?)F58H+k_c4%J=PSlHLb&RSLMuk4`YQD#IzI0Mbh1WRinzPzQnI&(>!
zS>?nD4U>)S=_bM}+9TXKuQf;!4OzB|w8!keCa;R-$9*$=h)-5-98F>Ym7g$-2t31M
zi_}O<-OPueaHbW0$utol$kuFdD`gzjY^RK=T8ALrg(!0GgrR?}t|Sa=ZX^LBsNvat
z5X|;La>Nt))=FDt=^TrpfHUStdmeW67gi_Lq*lV@3_P&1geZjW{S!>(;F*P(8|6_n
z-bb<2h-vpipE58{UorJQJp3Dpe({2u1~UM7FYGNs4XY^MHGa*`ODFx?5ut@MX>2-j
zXf11DRZfhHUM&5}tWf_o%JBT}G-mnyBV7Wbvx4_C?`7u_C6ydV11Xtv$szMLJypf*
z99JSSTaK2?&J^Y>c5vh-@V@YCNLd0u8%K7GiyN2!{^@w+C1L_P;2|pfqcEkp<k2lV
z<M&r`#>ZFKR9ebuv@><tIAUFE+QP5n^&sX6W<7Bg`9xxpTmT6ADO0!`#~~`b-%dxK
zBn^&dqnDF3CN0!q-o7)$(_&WoRXkYDXv0KMmcU$<o-=DUxv^d!KqC0%>5mb7{CZ5;
z!Lxz5p|bMLqeNntG6~kF;b)pjak8JKe-Ii}#s8n3miU54ggW{2jfDg()okq}9S9_V
zj+<-;LynOGhnLtRj1X1mI`@H`4hu6*xThd>c5-s{4>9rl3C99;9PAs7nOfBM`Y>*5
zYacGi+?phgC%>VZY8=ZUF(YQPB8+e2RfU-e<3_DboUnBNkv0u5IkQlZ`uA$ilyb{8
zcJPbSWPM<YrDG#g%uTC(dig{cQi=Yt`lmSIA(-FVs#OejeW7fVm<ZMY9KB#m7y2+V
zn!=vvrL!^oXO2r_(KiHeRI_5{a(x~QUvXGC1?H`l`BX|t)enY|TZG@@aQXrQT*{&_
zWZ;_K5w}w?jw)8s$jmlC3w9WvTG$UN%+<GJoxbmsT@e5H@qzJJq&tg1J3t`Pu+`~X
zw~?|-x~|_>(RZ;fky#TPu+1nni&#_yO?RlkAiv7vn;QE^H$L$IP1GJsg)`Drhv6Kn
z>hv__j?}(AjBxx+F8^I4*W8Cp<~{WaX|<IYSU^}>{1<N%;(|zlPi8(HX%9R=szR>1
z5W^11dL<WTV$p&N6$f!gr&;#PPN;VN{FKaDPK?~=ggs+ah6M;iMF$ltpCR|u&e~ax
zaSmxX`WMg#Y$*GCqFXU=KmX?BAA1Y%WwNcwvYumr3+g{}lnQRKhVYHE;VQ=CN98h(
z@d!Qg0L@PosKph9l>N(}iysP;(#z=FEnSf2nq4FCOV7^uSy08p<)q;3c7PsJg>%MC
z!(i?uMV@meD8QJ5?6IK)+bOQnRtG8DaPnP`l7;_-sHF254X^5ZGn(iX0uaPTPg+rG
z@JhXIToTpsSuNm1QsN%+zaT0=F_fIU-5utNGkj^kIZ4(chI(ss!p|_d-HfX2d&~&2
znk_^*?f;<Wt%5pPf=15<hQVD1XMn-o-QC@7aCdhY+#LpYx4~TocX#{a?(S@ybM6-#
zyK&z(?!&(ILv>X}rBrt2FB{w5!mTISs8RbagU6(oelWt~lweP-wV$aB&s_)%Dz`y!
zStlEDYBZc@e?Y&xlf$o6Z_Pk?a7w#?KCNj?y||BSR7&f)fHWz)%Qki<T!#!QKtaLQ
zgfB<^hF**+#Xma_?9qpnQkVonDvg+uI9CoDQQg_ep=tQaH3d>HO3~`KzkkOjLT44z
zIvz_r5-|uQq}J+XuOn8izodM7bTnf_MA^!Oan9@V2#>bWoI17_gb965Nr7-ep{LnM
zAy{CM;cFT1v^%}sO*{v?ha<QK*&X}bmQY%V3aNn$V=+u~o<k!{;uF__B+_-A93}~e
zFoC^uVR>kJ@fVgGmDsEh?1QpEo3(P+ZmU<a1y$_{0~@p3E@<`v6;?2fR2?E-$^<9=
zGlumW|L=Ozv5!)?iajO_4d{CdK-S_mm6vXs6QxY0OtP!iU@hw=XL(Mdj?W2vI-z)x
zAZGeAu7<!sbSBHHz7=Ppz<8n0y0>EFxbm}gVLrWkmsKhkN4s_`guckQG|@s0$|?e!
zp?;gCm^GHl>)?}3%~ub+@$_08*GgM9u?9vpP>}Wm(Jlsx(BGfVj>;mv+-9U)Hc)I3
zJxAb<h6DfpJBh9jr)u(7XL2t#{ZMBBFjw2fK_4)$CbyKzCy727)sDs~4LPVxP>7Ag
z%^Rf%x!9htin_I${xnLT|8wQ7ywr40%Ow13PWr+R-2e=wKTmg!tMciOL>gilgXT60
zXXa|tS53+NA7&919C86O<`jtP%?3;&IQS1K%c~jt<f&84wECKobzC;X5((Kkn@*$w
z>Ps^rkN^$>gf*S`k{1dYH(j;=?%8>@`pdWK0xR8(Dc1D2WvI}PjvSMtEseyF2$xYD
zX}ZLK>ET>w-qBJ$-m$vx5`7GS&V`wH5+kL9U9#B4ri&DuJa$`4a*P3yrh!2k%@P@c
zl=v)|%|c;#78e(>8YCbZ|5q`pz>D3^Of}9f2vq?86!%BPQmGlqH(MS17P+ZJO3ctc
zQ=j#VhDJ9C+=Yy}SG$*?t})d8eP+*)b*gm=R0~6IE)I8(ly@eCwatmLJMhu+xj%Up
z7kx(Jmr&%zCWi+Yf4+p6(7q|kPdENJS)PV2QY|1e3CyAlP*;}EreNABkWW$#U$iZg
zgGNkUYi+dJ8I5&Eqao_)fV-P&u$?YT&T#OwH=k7hg5OYE(XOj0Yq|K?WPoZ2Di=&d
z$E0LzY7S{YlKZkk*!@enJ6it7qMn{f_orl9dt1_jVHR3AT&$AjJY#A}l0Loa5AvL*
zs1%mQ2YUd>)}&n<4b>*Tt9fj6Yo~#bLt<9gFU=mqp5T^^XKfd!T_sO=zT=`-We^3t
z5eJ|Y06@Vx@1!h=dpN`>GuP5;$nX$@H@<erax8j>F}+i;oUV#v7stMamoy!AQX@*H
zbqA)gjj|>y!<U-;K(Ex=rBLkkjZd0fFc%FFh*x=U&$*!m1Ik5hVz3$fx|PR7u0#fL
zZO1GybA2o47*s~%-~_@-*S~M@K=uLB!v#`ur0Aj;=<k?QoLl|cd-*ttl3hC;vD1EO
zTzo7_3k5D4>$pRp6a>!Hpr;{hx!Xd}i^$%Ivt52noAZh4DQD!O(qYXr*<M*|ND89u
z*V>Y)=kN*zOj#{Q*ty!iT)LShkfq8>-gWTmqUq)amrKp<&G9LwhMqT0hH^g>L$e#>
zREOuuig-8O%|Dr#-!>Zt-t=>Of1Z+}zzuh1JB4jT*YD9007?lty1k|g)=JgC8Qx+y
zY+O|d<)yv<JIbZ<jHS=<jJJrDoQs%<RePMtZo1oK;@8%1nc~q??_!hPK;a@?Zp4d+
zm!3ZK##-f}@W6F*3VeeCDUS@X`%AV$pV0z%g~DL+<P0d;{+gPNF`W&!&B`|;xBP)O
zt%;WhH#+WjE5n*h&qddd1{31<TRWxXkjX4@_=*hQ_d{}Ga6kkPGoh5fP?;He6~7t)
z6vSSFOAnhY2E5!DRSJct^5MBYoV}YS8V8s^qNw~#NIbALMLW2nakL<x5B|{dw#S~H
z_rx`;9$CV;Rfjxea=BicpVY7)_s=)p#x;pa4O8m<PD~rXYGrY)!6ww}X||fR^EQ(P
zA0Q<EXd&-E(m+l4e7g%K$bh0v*LQw#RUsHE9`T>CIr8UCCFyc^958D$v3w4&%#DDJ
zAy(#UFdE8+ruhNndYpdy4Qe;CYTLTbE38Rt?HQinn#>@*ZY9+2X|&=t{B5;;8!hhy
z?Z5uHo^~aR=KGQ6_u=|8BIqjG=A?BRER;^%I}U%u)ARn>f1vN1Ok$2lrpgazbKaH`
z7Zl}LA{W^ok0Zxp8%wd;o$Gr$?^iO|MP{alD&h}&!&%Mg^4i5a{}|CvujsX|YO9%j
z6J;b(pMh$jqu1Bf(!M;*q2RBap}a*fkyjL?V2`VrT#BL&Ih7WL;<sSNuwrU2A;HAy
zp%&xATxV(_(<_+~u*yYoQlr8%aT$fn86$eOBRN*osp{UNqa!rw9=gZ6q5Po8wGnNF
zA1L&)GY{ap=_PF%5|32_qjHp7<iub6cj~;B6<Ff99y}{71!=+2W9R0it~E+#6bc1k
zdP>HhE};U_uPkr`bVNp_Ch~_*83wYnUN&@|Az)ec8GA7DK3POX%ro0uHl}+Vh07%L
z?0dAMLp4QOs`XomIOUt@RN?Vfx?lTU5589BzcrY5<N8wNzkUG+zNfi8oICyIc3eME
zORv=KmWxDM>S|m5+?v&&6-T&Was8`6QmvJVLg>CEuIEvgAHnuxmM2)WX8SxO9mYac
zP%P>)yiuI+5DifHf3qpob)^vVcJ!6{((*V<Mw>4NKj=puS8LJINtF>A)Fl#XY6<y@
zBO4iWl=e!*y4E`%jQxe0U6zvz-`=+DN{VCf>n^s8n|P=nCKj?@3#ErrXcjs;pN7J<
zn4!kCmLv)MY!`M4-)_8g30@A%X+;yo;q^KO1+sA8@6HzSDfwyHXe2ovpC3#{1q+~%
z^q1$NDuyHOc{@+~i|jotYM_xOrroNJU&&hb=pz_D?b~FTXZq^W_OxbPADSA5LG0TF
zwi2*8_?s6DHsh69elQXSmcvy>+K7s$+{c>>{>JMsHW*%SLB5G<NLv!h;5CGs$SZzE
zO9>{;ZkM%beAdT#0X(V~YwYT=wp@MMhe{pWL%iE<)uf7pIlA>7Kl@8J6V+od6MoH4
zhpweQ^Srl#KyNJ!gktz2s00Z;b|<L2hw7+1Wkx=M`<>iQ-htiTWSjs4Cz9_P@`C%$
z)4tJo>rK>^c=sj8N8J;|#L2wXX-Z@$;^~^7780|MRD1^B^}%d`JeA~4&U<Y-yKC<>
zqjdXCBvaodp}yarf#MlbX&0F<5&7~}T68#U9c$B^@3K!K=~-A0do??nKXV#nv<Cjk
z#Y3*7p*koQV-d>ce{zjZY@AXznNA!NWxma<i{!7kN!L;5uvWC&mj`%GU>s|5D(F1C
z#r$#@+<S1k?ltbMsQS#uINY!3g=G4Oe#lIMAM68vSdY`Gq-+62;qQ@WBlj_|n2mjZ
zx5e3yio79*zmjH8OB3KA>rmExnuL`l4prrr-@FfCO7stGzxwr!nnvNx=ttkqObC@&
zKLBWOz}T{zl7~vaKv}T>c+#C-=dE8U>r$qq4qfIK{bnK(zmc3DOu=7L=;#DydQz+;
zNk*OD+coWZI|pEv47c&AVgM}*-?FcNK7ad$0RYPfp6uL?6SI3Zgwz89F0X%oO4CxY
z>D>J7Kvcfj3U;5=p6v+V27@wPa~VNlT;_tAWH+t2VU;3L^ZjjXU;4FMC!h-sD)i)C
zsi5?e3_yMwf8WG-_lx|$i5`DuRTt5PvrYr~%ikDtu_C)hra{wwS<X+c07H9AgO*cx
zZ0yGwsQW}0YAtGR0hz@kLa;f)5E}5WFS)XlS6f=G>>SulGjGdC&4v?g)plIJ`_8Re
z%X}aB4N;V{{7`fqOpPX4!a*Niq23uxv~|IddsaZPlFhYpYY%A?g5ox*d%y{as}>JT
ziZ77X*p02k0-$!1OWezMr|#6&b54>-qzL6wvt~08s!Nly+lMjmev9yQ-bS(-_4C#?
zFqpywZ+({OU`PXifqm=q0?<IhTue>d+sF_CCE~_ph=~N)THHos$cYl72eKZz^}wSm
zT4qfiVw}H;tShr{Tx7(9-_0l~tDHk+wS609B>40>^CdKqii@|pyg1jVNin!E;>I<e
zj%Cq02se@lN(kDgs3u+ZLN~)mTF^RztLqL2Gc`YkT%iJUsKOW-W22C+Ifr&lpqT5N
z9REco?QRB6sPVvn%K#u&R@sN5oAJyPooJO~QJ`78I(VDxh;<~h>qT!K+jwEOU&t{K
zodGb}-Wn&ZO|nmH!8DeBK9==0DVI%k#M?;C9Wzyos#nJ@GJIWEjrQ;vr_5IYQD$w)
zC7p0%f8jXGZn`V!V|8DA)7RA$0#d*Z4+qz^&?#;siZ>Do{f6viIebnWd6viL%%7J-
zMYnUr_@fRqa#6btgOOjFG+ex<GPvv1GsLp#<f;)?KU=I#%?b*+A05oyRVnmrusJ`i
znPO}Nq4R3)T}UdCg+7JtgBCuqMjK{I%Y=RH%S>$hOH_9%pL)2>V)UWWx3T1ckY7HJ
z`FVO_iGrrPF-PwCYyW=sKhk{_f+qR`+Ir;rmqI`mlA!)S0$kLTzq7UGSs=t>X02y5
zI^EfRbV|n{g9Bl3o){l5ipyhO!L6L2cA9??h#d9c(!MImHP?cJFzl`<J9MI#O-ONQ
zFu=d9xJ0-_Yg0FbhpUyO_wo9X4)Gt9WZLWq$EAhUV$J$Urp!PWN8E(y&aU?W&YwOG
zoCTK)4PdzX2Sb_ej*~+P%Cm@eEjVB>z3+0fKoP<)96xEqWgVJs7<{CI{&%t==Ljwy
zEoW5bw@Y1>AO+HXcu;|8$)zsrKcq%p>@m7a3%k|ORdkn|B8pJ*&nK~qiB+FVrGG&V
zADNQUzL|E;4Em={QBi2sUlZT99{2w_+dKLo=024Fz?c8;D9iFfQuWKm`B5s0R0uGz
zqv7Ugc|2Lv<)-_;RsadJisGNVr9$Nsm?Z4@UBk&_v}&JbV~ofyGc$ZwQdN_f>l#{f
zs}44R`)^C1q6@6O5y(mxgz#mvgGpVrPDTbJV<-_OJ0_ZAM^-|JE=O$@^{f0|Y5KCs
zqW_U97T1@VOMltV8;a(x2sMBn+r38n_Kf-&^+K|dJHN6@t@XhFwCcsQ+#(30%1kjs
z*o+z*9DSmxl%&+tS-4gM0DAHxnn_o#+e5w#YI06#S)q53kMfJ;|2$o=+-3QhB5Xqh
z_!ILT4+bpvAUov!nq@~@W@)hD9$e8(b~Mnn7a#&la427DRTj{UJ#TT&XH2H{yg>W5
zm6MuAmRhbM=3>c$cd^o00Hz)q1xOg!znv@F3HJ>ID@E8D94${6Eo(RtL7v=2L4_9R
zcTbLC1a?)W9RkgIJ`+KolhcU*!by345-y_ny=>i&&qP$#eTD=6x6vCMAQ}TQ*6S<l
zWD%j;Wf9txL471H;DtIx^O&-}hVI@gQ*K#INSa&es+!@&plRugnT3R!5*X1J|AXJl
zr>Aqyvh_RWVyM2Xq-ukhT5vK&vuC9ZURJOXQQSxt{nbB6fHb?Sm;r}0s$BE*3B$t6
zn@vegPjqC(ld`m$cP5y%@zNCBJrPsBH8QD5D{i}vk!CC4KbGjjsmo&iuY_?LHkIsg
z5+a#s-Xew5&W*CPW1e|lb}&Zjy{ZQV2IgeFyx06(Dxap~=OsH;t(|H4>L_D318*oW
z;F`8+D<#i|K9Xp(fO){u?Ue}mrXJ}lr&>GidG?kU>|nuF+|;RF*T$v2mN6reu+4n%
z94VuDRR0zbZ8@#QTrMuH_mLJ?1n#OkB&mJcp27HBo9~ULj2XA*gz}LVRKCyg?(fD+
zB$3^*(n8F+uVcM;ReXQ{F_IPWuf|Mwk2Xhgg*|PA$JYez-MxB%;0u%zBJ1l%KZNGb
z#7^5|ET36pKP+Ce5o5&A{d)?6XM))|amtkB{FxZ5O+*LCD*Bq&-|t;ET!l~AZWyMu
zI8$7twWrPZAVn=3vs+0a)1vYfM5)H0jq_VHLI4}k&`1>-f&ebJHWmax5)GHY09X@W
zui<VX0isN>{==|y%o6WhPhfQap77o0BD?nzQAz}Q3JG1ab-w-$)IkA?n#i-~NOY<N
z6?i6nH&ltnAf|Wu(<cWDAmEVO!+6?STjnV}T>sN!G;kOV$;i&_D!rv6hV}7wL_*kz
z{vr|%F?Do7bu3Im#qq0uKK!^l;ry@CLPK!iBq{2Ua(~W1g-QTgHE6^9B0Ps1R{;<R
z6C)k*`9^s2wzxkwm1wO0iUK`ad6?dZX51aS{v`3yS@A5GtV@2bzqYlVph>>VnnP1)
z<5{(~&V0SZ2_>A=_Csyq{u4zdTF(k8dSZ>o`*h6C<-=$JxAFZ@Y)XxmC!_Q^-55{o
zVwFwcoZ0Up?Z<%^JDL#md-sh^K4QWl?&poBX|@!mJB`vto2?U)>qEUe$ZQ3*_253<
zTvR;t>*8$B?T8?yOf}g7naxIBPV4oz$=YHK4C~=C8}=ilQ@Omd*jRBsPtp-jWbdM~
z`=soSsY)v8?ms+xE_7E}XRk<&O)T>wcy~T{eMd?0d>Qg!$izkTTmApT0-#`^O#2bK
zD_HvwK?1)nXqRZ4d&BXdRRhS*H@iAx>#)+T6be$bZ(|@*8f^XihHkQ^>bg$`<0Rln
zaavV$ym!YOu{wS7jr(rkjz8}<$V_Iu`l#xS>SM*qsP)s(F-(g~4o946ja8REYo1zW
z!ied4c}cpDsD%~t<EWua_hH|viG-lv`?@6O|Ay&bBDA9P0Ro$4S791mL#Bb`Yr=#k
z$iNkUHet5K)*|V94MaHV*YBhkA>CmcrNXJJtNQN9ve&mX2s8VJQpUj!j15&K)64a)
zAOz1FBKaH>=3rt{FampXOh_uR?BrrFBPlYnj`d$rLg46YE=g`fh}Lmt;u0>M;ELdh
zTCOS@Jc;h4TpiJ=p_~$EOc05Xv}@S&R^JQzU`^<EvdQPI)l(4w89@VQ;`6g;{aPUj
zZVyit1qE0LVC(g6ashYan_VWGk=)&9ts7`t5#0vp0j+el>qyH>TxR`9nvQf9ir;Mi
z9`@@y1(g*2ukZQj7>Y@oUYDIvs1oE^cX~C=S(mXtkhP#m`{hBP-CL{&S2Ix7T6>0@
znJK%$#mG9l1^&stW3UWa0RZr%Vosc`M7r49N2%6hZg%wJRLjCuSALvGO-TDK+<(gR
zC|l^fTo*CNc007HRH;F*mM*yX_(K!j<=m>(AxgEDPl4@GKs8ua3m~AkkQ3laRM<(B
z!c9%Ua5}63z{~U%VM&=7?Zaa=-&f7e>#55UXpu!Z;sBv+O#vAB6Z{_rKv;Wg;CEU{
zWl!7LcxoQ1qs4=E%HpQMAB`G>jTfu>OHsy(9>)Xl0qOUv^<-6I%lg_0nkktLz6!8o
zN`VCZylV|7KX+Ju{MjGKU}tuGjOBNjk))ZoimXe1S)@&2Pk^;lVG)7`fQI9e#Y^kg
zvHnfnjVTp)Aykegg6qGzhzOZ7*rK-H!{PYcF`}vVK+o;#(PQg@c6aL;i=**U$Rt?<
z%lSu{tlwFix(ryUj+z=-qO#%r<~(VRiz5T^g&zSPQp4R{FQe6^>aqLJ%+QaPCb!w%
z+U^ilntk?+E{CS~O?gv-$-MsY?x~iUjSP>)M27T)%KkqEexIH%c?1Afz5ix`_`UUk
z#ell8Nak9r!%|fyc?dd+<n$A%{-Y~KT>v%GJ=FB(i^KSi6#(GXS~Hp+h0!74N4F--
zzm~A8_m6WR>a;ew-Q>eqT^<L7@%|EzJzX1J+6=0p9+QmWX|&kLTP6?5=B@Q@Y`p%G
z4HEC3s$YGWAYH08YKL6LDRVNcKKn2_4Q6o>O{)Nx^XcfSyxc=-e@-j0&3Tx}ld(Jj
zdEJ#}PjsHbxC~fqry|;}dGU7E-A~qAuzB|mZw<<k=_tM}_;54BvsP#WK;EsFu=s-o
zsAnLvgl;^F_hroP7$1{Q*`it=UYdj+KEwg9#Zk4-iTN?|CH8D(d?G>BSWI{I;k5~u
z)05)zbgNYGzSxHhnkYz5m3D*kaYDhwLZ>u;=dbU)0$zNEnii=2WlcbG9DK8$29A0n
zRy{Djrx#RvJnU}^1`i;6J#I6Py1r$_r<i?LDywLZ3zL1Btf+Y*Wn?R2&?3D*+B6m$
z>*eo~P?)FSGTf|sW)VD_$vVE4lwuu9cb~Vq&W3>y7(WkrUz~K1eyci#<UB4S<q2p_
z74DNW{T${JJ0gt64BGI4CVYBHODqJJs^s>4e@6%16=<t{WEC;rp7S`5?*wBync7Au
zLIB7GxiC&yB=YB)K80b+O*mY({Yz-|{LkA;l&pnWZ^!ID1mZ;2YrUXo-*ihq$BP?f
z54;kZvcDQ7u>CC)g`6b#cAxKa2R~YS)@Qh<+gkbo;O8E*;byOIhgHU+wcPY-6F#5A
zf%o+r{i3)^nuw5U?Q6<AjRr@B<Wn8zYXYZ2YD)85xJz?v$Od<<)qa4G;gaQYC`s1`
z$7|w#s#K0SJRD9`8h4q)+kwk%fi#w~b}Vo>n~;it;OSt)Q(v4r6STtS7Hgy1RU>n>
zXwhGK99ejBTw$A}004tc=VtZi9^2xJIh1rVle<B_gfu$q8J(@Sv6nkiPl&Rwv2TWH
z6<4>HlZT3c!8_8y)Y(9L=Y0u6tqJi`69hm0PH$j4Ynk3)@z{7#qR;K*<+G1`h??ag
zndDgV5O4P^0m@6XhXVu9bBn`xSrAkYwdj*t(QH0_+4ompj{41camE@pSGA0@O7ES_
zNf=oOx-+JEmY57&nww8@UJ3XvVo8q4BqYt9vUf}gATQ1ej%!KMJmpRU0CISLZ(-ZE
zYJczhT;#<R&BN1KzW9P)#)DOJx&A)?lbSB3%h}D_jmBEGY}e6B;R$h~sV^G)tE%Q!
z%a&AM1b<b<1_}UJ%`yHI8uB-L?AOp}%&=XseOW724f+@}R}@4M$D@_OrT{=)ed&K2
zO{CdDNy<Q2ghXCbg&4e@pY!Ii5CDkjxE>$oJdhuQedlT_)$7agV!Jb@4?Yo0%(+7b
z0CZ6gQcEe9x?dgZ>*^Wcg5&3BK}Cw+=r^MmfS$msxQKmIn~(>W5x%SaRU=AI|K%WX
zxNg?I*QRxBkJ>W_xE$r=y>Ha;^SLyWQ)9GKF77~2m=s;Lo)3d05`eTLW&KO7Qy;}C
znK$y>T6Q5^eJV(VnnFNlFDt$Ob!XMxRMueoIcJGLk`)keRtf2`IKSdMZvycoKmk3=
z&)7C^-jmzTyZ}&p#MIENd~$Kje=g4s2&gza*N(Jl_PxC7YZ4ZvvR!UW<ZbmgS0MG9
zgMDY?3U+w0NsyP#-+#WxNBzRCM)P#8<x#akqyMokRZ;mZvWXtCxT8X{6z<vTxyg$P
z@c->x_8D@G;5{H-j{&F@D3u{_R6!60ZMHTixG>~nN_#<Bz~ey*VP(e|09;k)x7jJw
z`n}(nzKnPC?N`mE^4G);4V`{M=bbRXLkMuf_RQbjHqH*Mchc8bQ{vPK3(XF}!(JWa
zbd7)k>ZllLS}Uaous5)!3dFuv^<^!Uagj(b(HYO3PtyS;W_IN0>hO6x9$%lXo#a8X
z70b-2uUmpB-Hj#8UW_OEyp%eUce}qW3_flRi;E0Wg~eswtp}E>Ut_Y{2r~2w3<Ozg
z5UM%Yxax26`BU*R(;4e>O5l)g-~k~0wPdnLJ*Drq^m1&B2Qx*rl}j}!RK#-i^>vL&
zQB!X7Ld;~_ZI{|EUo?`KgbAK?gzLAbZ&%98@3=p8>Jkv;2*q!hzgAnWmPhHxwbJ!-
zN!654z#t(NDpaZPP4S_L?j}2{7Ws+1w-Zem;q{;Tk?^<c!8;n!gi6VNdp0e?t0(FA
zgT-S>3uaN(FzNpq9Wzd%kH<n$00UHqb2^FoarsF?RZ?>0c{x5K=d%O9K4!n%Ucoqg
zdw6R--h;s2$Hj%yd==!sz|}B8BmM?srNX5;oJ=2`cA%@n#>?(Lo!do7kA0_ja{rFY
zjt5WA)X}hqv-nk&QdQN{1f7ZVN|czu9}FlhZ&0~C673SP`~sWSA;lgqs8;+XUZfX5
zi4^@#oybcUIcjoqvU(qTk|I%Ps4!++<2(nl3<N_2O0}xpiEk@V)3u6}P8m-Hp!3`i
zU-6KIK6xsI$5QC7?9F7bA<N@N1dR=8fKqD-R5WFyeA!fWz1I@E%@FUlFKR!^Z+;Tl
z*e>Vk_r+MdS}fS@4DEhPFC+JH6D(FRN3bAI`EV{i@o9p;=}4EwE;Sf`$^VV!N5j=R
zP%T+gn-le$H8SJ+J^=p0CJA1kQ0aKr$XI4vRxqQ)+m=6Cjz~SQvn(lKeYDR=R%YOP
z>Ii2pRT1nDCCTJ@F^b9?fdb2ulyY<`WT~RJA-jt)RowAgw`Z(WLdPv++WyLa6rQ!C
zh+61~Fhs&9RF2>%uf=Ik=qr@KZGOI^X18f{H1%3-ly1GL+)K;vAazf0d@}~*uB~VG
zqynm<1X$T9LSB&g*7oU#42XtYzO!q$nPf!lA{&wB2(5td$a?*xY*x8qm_mhjE|(Px
zK4{7>v0ATuva9_wbpxfcz2tVSU9JE3;-gy`O^ge?rQsAQc_Cl(eT{rr)XXZY#lf&z
zmt;c71Vl8fk&z?E)+`#KrR+Oyt7?j<jQ1(GdbOs_hNA}zOp*5|m7OgDRn_WGJ+0)n
zUrC{mT;p8GLPxrNU5G&n8)z%fY?j7g-nD5}UVV>T&9@kZcskExMZ~bcPYI5?cdb`?
zG9PV<O~Qmc*6U*~!{1&H*RAS$$G;khsA;oK*DVz6*RMmr>iQZhEmT=3su<&N=YC$9
zhPM|;MV)0J;w;Vl3M2-A!MwT9PMX>Lgjpx4vR1oTIl7bn-Q%yhqUx@A7q!Ogzg7;Q
zro<1a!iQ%^)?__QcGE)TA6)G{EU<AR)!tt>=fo=z2ClDzS>e-uH{x)PRxuFsu~tZs
zyIfB9O~tj`8ce)?(F?Jx3M`RNzU25ukLL9?7JE<4+hrsf{H5bsqhaqQ27)&g>E#4&
zB4!RL;u&$`Ym~)M(7P*#7!pvoHZ-|Ucl7!^pD<yzV=Q!t>GS%EMOD$<)&@B(MzBJ-
zV*8fV3OiQdRzELf<>uCxg>RNvQPFS`SVmB@-Le33nZx^dNJL=uFeMR!&TIZ!j~Jwo
zWpv&yqq!ce)TySJ{>bpK8p0_)CAP<pb1ENMUGt*GZ9cxWt>0xwsc=ZTzQX8tnrFU1
zeI9s_{rv70drUG!Yi=~mecxAD*jpYg*ViY^U(NdJK5W)~hl(pTM?!a@+gbu@76bql
z#mc5*){Z^}Y03iXiSX`vm+Rs&QgndDVeN2=4v($lb=u;6B3LCp2i3(Sb|-D@T*cLA
zF8yVW5ASB;vG8eim0o?b(qcFrwbdcfH}R_$_AQ5|-c4uV7(2n3rxy|tyD`E0d)%Mb
zWjnEz2o}znLtnkF{RcQR7pp{9`gC0`LzT<$+d&Bn3$eWcRnSF;7GsMH#`Dq}MtV5O
zSHI3-4SjSsm&ehC<N7W(4~q?Of1=&~*_HJ80#AhW*#Vtgda2I#T`nKZB2`?Odl#+r
z9BS&hz0nVwDMxYWJU<>KQ1`a9x|Z*ruZ%4HBvH_bl8^N7m6DlLo6~K@0<WyDrrwV+
zK%frIj`kg?=l0e7eP{4ncXk^sHlc0+vd||=#C8SHbF;<X*p^yY*m6iW<nfPl&bc3S
zd-*35X!(z{{>{NCocI1?_WwMqwA-_B3PHa=9vOY&@t0Ny3P2Ox5&rV|pN_TFU`?q1
z(uk$53(i3ct(-omTq;4+V+;CjE!D#Rwg7tKJp50uo8`BEE`)z({(rn_uo&>~!pP;i
zzyD7Uy~IBcwX<8vjsK05J4P7=t$d=_{lgG%Yu+R*u(?^{%S)Y(=)rr3S4sU&J-i*M
z9C71GBhB|=5eE~=qXCW!{Dpt>&d5Tarj1!H$cwW><3jzCTF(#XWQIUXrcB=|Pw-Y6
zD{J{3R#AFaAx~G$(DHLN8%72kjSeK{B(bW7n)jkKn=zgadG&Q%CbaIodU#%Xuu^Rn
ze(aQ#jg1ECP$v!Ee{z_XUhrHr*yCL;NzS5T4ppHsi1PmW%&{C_qPBO#{5bCSR7U_e
zSXJS}3ue!`0+m8WHtca=Yr1)F;XE(R%@wAKi_1-r)M-sLF|vGLHM*ja<t-md`M>04
zCv0PepLuhzgUcQ;kGnk2E-{SEkd&mO<II1_Iz-24h(-X$V2nXtXo0R$K%rv1?sG>K
z|CPg)U~g-e1e5tCp|E#)Bb>dL^((PGp-T7XPb18p4*9uYAE3dbU7TOx&ewFiG>oF`
zJ@?XQLsNIzO&w`{-@OXraJ;gF6StPA|A%`^XFD39)c!R&YAhi|f-(RQGubk2miSnq
zQ7#zkNpoVG@VSO$edjZnU@r^C!)jf1!P!5%BxhvHKQUC5Gv1uwr9^UM$P)Zlqb|P|
zHGJn^8X3`4EHUUP@W5xW`^*Y{1$E#F+eRc<k(uCnMSlckE+;3ey|qBnTW_)YX4kXE
zQZbD(HHbajpZ_{cOQ(b7Bp`K#L%kkrrdK`qhAmK{lz2$%?aL+5U-eGrj2u=fD32A8
zEV*^`^(`S|ZOV#b`_*T*R33`ttN%&x<i^`zBP$k4sYKbA16{KvJIz=u<Iy)7Lql>0
zJ0r~c+YJ?t|7;~`c0E&u+lw0wZLXIqdQW$P%nt{JEp4IF41xfR?owcxu-%09^evZD
zeAkY}Zh0{Ja(Uyj0Fmxm98Lagf_ff6R-CpMr{<$=M}1zC_i!9-i?RDKAe2n}U`r)o
znwknPq}FzJ46GYtJf$kJ|G{HN<YD^<wd+8qzvlF2kBlu)?JLWltyajio5{mtS{v;q
zHbV+p9>V9xHlCs)*&I=@=%Qq8Z0S=?<lK<{Xt(C9rC&Y6n_09JJu&~eh&#lj61<og
z#1u8Q)>aP}Tp1fP{HT`aRIrKjoU{Q&8u~^|EEpKTXnU8(ylB3h<F)6}f|EWYSI|VX
zq`NbbcfH*T3642$*~~t--fy-T5{cQv^dcJ`Y&1>V?V}$R2t&w2*MKS`g{Wiafej>n
z)9_6r$SwU&m(6A_sR5%e;P1rRv<qP$5oYvU<mtcOk)fW903}T&L`yq1USx|{`M8&o
z_>0MoU?R*rcYevyhvZ*_`XWF%F*4%l;2JL#eYx3+F<-dS?G=QvP@FBTDxIx6-V)VN
z^`x!n`Y99;ucfKh_kozq^LF{?sPAB6=*87Tp7_QI?jos^Gl||9@c#|D$_iIm$CR^;
z;?I8ebBl#EcwbbZ^TWZQ^7jxqph8`f8COj+qg2YH<#QZdq}U<3Iq?>Kw$_GVy}SP5
z`8K(b*1D=y?ey=??sC+!9o;=Wv9Mt-LETGjE*bgxvuy}vi}i>;wi>n<PI^Bb{pp=d
zVeCmColsHro<kI0dUtRu^84u~xLX)fVhj(;<tD%s=xomyYz}iMqkZQ3wz5-E9H;_g
zz>%H|DFuiCK>w~k+Znrc$m~%6zTSd!xl=W6xIEg;UgM+bRtwK0_+J-nDef_<*xf}>
z)Nys?b-va-Haxs|eBwSl!R^h)i4u{Cqv;8$>FEyp+_MjoYwuv+pWU2)WtHdDuvklr
zez|LQa6!g`(Fo6I4TJ>zD+T%}r4rCMrLdYWCSx$N5c-EF*EfPm0f90-BtXQN1Qq3{
zh&RatB%FRQQ6r5yQjZiw;Kaa}u;oGn>Ei+%QsVH8ZjE6_liC%tuGmg>kpPB4Oz#^@
z?*B}_G-Om6(a(=x$Q@<-k<0b$cYJ(e_QUkVM3F5-#r?`&)bOapIJp32cPr@W8j}Yo
zpWtVr<xAt6c`NqR)%=ilVjy;Iu-;rPe_kGnZ26UWnyP|Vl&3w1Gv(HJ>-uUQs4G|<
zBN244XgwH$>sN&1uWUkURhAn6$K##e?HQbe``zMbqT`UJ<DM#(qvW}jsCh$Y751bP
z^i+Y!73eQsPT)VEe@jeAUe(4RU4Ry8Lkqn?ok*<u)bpRzRp3UIW4<DQQ<6Sj2D_fj
zbM6~xX=zD;_<V>93{TmbRwubM94a_zxmr<jL-xEd65C+5pJi<q*ssEUG3m%{`u3h0
zPH^8dxh~v8WW}Y$&GJN`+muun-_I(zXLlkg0dqst&+H;=_USxd|M}U0FlEadVW-QX
z6t_Zq$+ZG{t)~X_@0g4_7LJ<n>EP3cG<)5nGm18QZT8`lB{tM$K_|@e1EFv{uP)!z
zI?Ce)HmFz;le9ds0>so&Q*j*_u5Tb@{;M8OYl~A(OpI8fq8HAc_Vr!5oa1CBWhP{&
z%r@JBaM^8dpKInveO@JeK11krEuQ0Ft;p_u=5)ik*<UQnF>(Oa{R<pi?5gTDk{X1l
zN3+Z5i}6F^UA0MB`o0z1Qbg~ji>q<IXgxb^B%~az=&C=TOhDXO=Ep?^BvBCZ%M$hQ
zl*N2$Z9u`}MX>AfEGOmhc3<d7r{{f}54Q*%z14b)q{yuW@YCZeLkod~lJcT;477dA
zmGq5RT?{4)Yb$9r!B2ct@QWO+%pFohoiqpVy*T9~fCpS9g-ZSB=zqb<CcZp9Vb*3`
zM#fT$qJpPqid2#9Lb;2G2s&V~TIeBUh{{qkcD1>$3|=OfU6HV~KhtFs)nld67c-ez
zE}^Vth`cOC8wHb$p~tCrLp3Li{8F=Z*K>v5r@r8V_iv4Qx?srRhuQ~<=JOCQU=9la
zI$0YdC-|FvC;DM?#h`Jo-+3g(#M(&VwSvj6v?f!{C`6jea{<%!g^x%J+o|~f)SC5&
zj*A|V78WK!Ci+9&NDE|VF*3`#O9tQXKL1kOS1X=uw8en`6M?w^um4l|Z-o2bMt%&Z
z|NX%MdV%hrFQtEP+5f)|-RT_5f~kDxcDBJiGBvXqr+}?fHnPj<cBfaCJZ(co7P|bh
z%V56}fpTHJVA6KQ&;NX(BYCe6(Vzd?(MSkccN57k^TaCiIL}|Pmf(VY^BzG&_v3Z=
z?09V#q0ui&WYxI0*8)F^8L{ejH@l!ZIjM^99=GX8Cf|KRlXv}*gjkh26#dV)w&%Z?
zI=v|tw}^-Kb`B;g_`YM<+I)5sOB?U|yC$jVpA9)01{v76CG6kghNN4D2;~R!4M0dC
zF1BZugUScw>wL8)udRinBwK52gg1YC5Wx@!zfXDEzi%Dzsx!0f)1$;Yy>1u0Hb2xR
zV@b^x(4DQ+ecE<)6{B?C+J$rVaNT9Mdq<gl%#hYM4;t3PEhM`wEd6b^xt*zt_M=N<
z%Qq`gi-v%}X*!$sIV$w%wtMsN{8JG&-|=1Y(8DX1klXuhInPM^;c~6(<B)SVkhh4H
z(%%8^>GrRzGH&;r2prKJAxW)UBL;37NBb()!cpW%*JmBRmmlu#SeGqKjsM}yW8Y)e
z?@H!1`9<H+fKA|(+4O#ML;98b?RAg@IlMN><8L_a6&{b(!E}?}q9K9&PeVdv9^Z?*
z$)-Z@da>ODnM=_4g3$0T%!Ce3_vcDxtX6t*x9Rm}Nqxzk^_ID5|88W}dIr+R&DzXI
zejDHHl7iP|JJId@1G8q7@|1(m`X7v-lW}g&XZI%EZY{3HWYPk9Z~N`>G;N2pqRjcl
zdW#ZUeB2h7te32+>$m6EL>5*$`5b5K{Y3>x6p5-0?fWxcm+;7+FTadd+->0VKH+r!
zjtnGzMtG1<=)vA?=q(nsmiVUUoZ4i5!=S7An~fcsQnjH$;r)(k86)w_6N<b3WqGb-
z)AifvngFHG(B%UEH&DCmm?wN;hcC?Mdif6}BN(vhA=^*SfdNBUK!CGq77&QacsxCz
z0&H%!2O=L$yrT6u>MMl%K04p%?ZRfYn=jX9LLg1%Q#`2U%hG+@+?8<076Sug*H;q1
z+Ui2FFq1SqE!x2?uJ5?LJ8mzBJm^Aoy0IL{{H;)dC~AnwK(YJiQWs8jKXKNHb@1JI
zVc~3hdEl>xgMVl52&@crIb%KFRZEdM?u?F9!wak7St#hU%i{O_;ePUK#0Ff<kB`Z9
z5X8tj!ELUoC1S1t1L?1=E)>zN%}><Qxf`x)@!R$LonHiKZw>*}ka$w?@pRWdCyMS5
z+M5G)pHr~*TfaDejQmok9;?0&bLd-rUBRN9yCmSxtSSan>8fDywIA_UD`fp6gBA2s
zu)R)?COg%YR2#hG2B!@!o9|p$zG3Z=dX&wu%M)<elP>{1zn@)kmz$N9>7kq$Dd1)e
z=`S_>z6&iF4yH_Lr)23pJzLxw?1nZzrfj}j^wJ}7%WFQl-+k-ekD|?K&fh*YBS1&O
zULqeBEFA6dvpmgtC5fbDggaulaP(uxl<0g+J@X|La63J`rnZ&HrT_!n7o%U`v8VI$
zLK}Z8?~w-Uay2~mzu#Pw?C(?4)8r7Iuo@~135Xj}NF#99+w5)+n~7D0<1|?q!oM74
zG~ZYx+t7df`95woABPCmWN4$PG#uaE6qI&{#aw4aVuq%b?)lk&&>h=9N&z4%gQ`2d
znh@=qYs@TqmoQEG*E!m3E~8}-RALkz!k%yIRk3ZzqfW8+6#keEt{cgJ6_CM+(SI^=
zBk$sIJbk;2EjbCQ&JvTynjY;-pp@?N*s2t}Hy(~Evun<S2+Z(Y#bG|_oe!fPdc^C>
zDr3F4ny67uhfZ4ZO>dzRLE!nkw!*yoV{E<>Y?AYVQx567)vs^n#=Nxg>NA=^?W;fE
z;#<xu0DM<^e1Q1sY@-O8k?JjtWZJdEe{zzRAn=)S{5gK|h&9_Stt_u?q?VlHecAhQ
zE>02&pG@)<VqV=h-EG0;ZrK*>ez`8xE$01wX~Z4Uq$(pOlPRyA6{6p0{v@lwA2Ww<
zG!^teEP&?C2x0uox12VhfBEqpY3RZFz_J&kUw7R}y8;}!<E_3I4y)VNSAAr|1(aEb
z$5SV5M2=R?a=tl2>!-`m!EWkYb8vxK$-{ip+r<AEjNt$X{HVUX_wDvEk{8F7W+oBV
zRC_x|Yj@R?Q1n+VNgE?$XDtp+^?P#Mz{kdLk9{(5AS4&V?KYZR542GI%8e3U8w4z1
z?3<>JG{}qW&iv{6?N7A7`mB+bvdQm6T6JsB9yuszYwcXDp9__vpgX>QTPB6j>HD%c
zt;SoG`3q;|Oq%`ab*)xltanO(Z02ZdJ?)AJK`YYd7Y<fVr^3U0yY=33`BV=<6>f_r
z?yYmt%7}qD`-cN#`;I7W)spMkaDa_Z6=eB(i`6T;O}Ey^LH#0v*Byeb8fam0RcN#v
zR*9JI66DHJ*>hEj7|gCNyPAK_?4V+wtNKQmLkCxD{kk5JPY=IaL$PKs<p&C%FX+qt
zyP@^GngQD|P&Si_bg@pDP~i2qy1ToS#ctYaFBdU-{S+Hb*1|wdXn7#;mF~x|h3|0H
z(~R$jU=?nJEl8m&+0HgdPxjmlKR@>`#JdQ~<y|=;VF@0_yoK2!O}&c_<8skqoNMT}
zY+CR8y^NGXKAHem%mesBhqn~{%ePU>vBEU*n^9@QvzMAD8-Z1~UA0g?=H5g`xFcRq
zl_}F~HE&U|{?;s9w~f&mFaX8tODw@sb8<~5jJ|qGBA$okT$?ZlJZj!2QojETbIIc$
zBN&Ak7hB#PqsDZ|(ziFJCS87gp4xbrQaB~l`Y$nhvYR<4r$5r~-^*y4KEi7F&kbbn
z>ei$12G<8E|ER8<cfJB)g@0Ru^&joG&_<8%@TQgr`$Q{MXKz$O7~$}E>cjPYs8j4c
znD(7&e2}|9VUU|jFa<?XJ>x|K)ASS0^@jwLO>pMM<N%QSQnx;C$hxpknN8{cyZOWU
z?_HA`jY6OvQt?ATme{=AR+H&Nx>YjhcYonPq3C6rM48smRTK^H8vN^MsqxE=w5Ytd
z%{9+kr)ZFLw1<L@2`8fkpT)M<AgY|Whqn=Kx7_aG*N1Of+Q?M_``1-G+OZ!xSsyDe
z46Fe1+F+K}Yh*)_N2>=hF8AYsPe}{x7#|3^sG1_m<&wc8rJy@B%%4uRI`^ld$)`{(
zn7-`kMgLMU-uv|sTA7yN>Pf*$PDA5&0ZOxrm1`36#t^X5N`M#!tNkh?JH}gxGb@I<
z>Dq$3zdc}TkW+d}B$WI(@Fddvq`jVqaei@XDasyC{0ARjjI}uv$Mb6jDnntAxGD>$
zl^Q=ir$E4=KPTK*FBq62&#ZuWjdsu9_Kq*T`yzM@u7BBi@jY}j)eL_P&h|C;4cm3l
zrcS(ZD`|QJ$&%BUThQcl^`dEbHsan^X*@67NK2*m0MY~iuz+s1pLEhvCxlUTF~1)s
zn|ch2vHU?KQ1-X&<2A>#)QYDB%pV#jN^7}Cqt~31Al7bw#&v#)Z{zQ%QZDNs8qj*t
zivMxk?Fy2*6otYh&!0Ijgo*o`w{^U##z3b6f}EDL^6r;o&%Z_8ZjIMj)5H1aM*-i6
zn?}51&M$_4v0Yyg4$Wpq1yf$0Zb8Xvbh|{v=kfTgy0OYa7B{gOf~zDZYl?vRkByBl
zDzgU!CwBf`SY5e-p3bkd#()IqxS2yCs23+kvP~LY?==8AcIGtz$ekD&KkP|1yEGmW
z&|IKXUF=#*1<9KKl%Zffy8m8hf79@jz;6#LgDyuV1^ONbf||j_dfI6e-sWOyZRZ|H
zI-JdSa-vt$O-R%=H?-Sba~)oaIjc<bN~De;7s?^fpSZtr+d?Z>8eUk3qb^VC`VPN&
z3v%0Pf6VCoS=t;&<(RlTR#=@)`_<>zrrC0_9Cu)9gH^*V`{n-Xt5`1GsD!%o$%-eN
zRkpJs6eOU9j+;CJ+2a1{b!98k)l2zndQIt6Gqk5$m6>^ZC~Nr}SqT6>gh(h)c$<wj
z($Q)(acQPJpB~f~D&!?^wVA7mHs@p}rPpdBFLG}!o7+<Qgu%@f<t;X@y&UUiGnYOA
zqqWx5M?RTJpZz)T0-c=u_jhX|&XAoRJAYdcW8*!vJsqv0(P+T*TA#-K@9q-uXV6Ov
zt^PP)!fR6mS;8PM*K%D@%H~?fQ_0-1*uD7VM{%?E{+JlT3zCI7cw5kh)8V=F9Fv-E
zx9+vWu7B6xO*8gGZtgT@frafgQ~GulaBw&zbpul($ieE{t?CEw>5`l`gX7{qsEe};
zOZhB%NIg&hu(%0oW;l5|fQz?SNh`zSv18%fhJ%Zlc(#`B_**u`9w`PD*3ss2!`DRW
zx|E;1{zx6t5|>|L)xCL>+W~pI7w5KE@cL&_jfR4_nf7H{qWo{yTmvLw;~z`Ta!~7<
zpXezS(wc^c!+<)jZ7Npt``N37&G^6vLMLRZt?D^H85!aOS<ng7oKwzI(+|V&v$F(x
zwvDCd7;UasAE?Foh|cHJyM@%q^Op%tw%(!P`6*C1f;0m_+gf}3?fh?2+>;@1{1=~_
zzUHi|%5*jt5SA*ZR*Xc)+qqKBB^OFUT*mv=jESk`7FLFwayQ-q^}$W`XPviM(l78@
z+quqQPB6O5m(_vO8qD7fzd78*hQu4it+^16PkNwiZUQb-E}|5*8?d^sA`zPqz9QN9
z+PD}Se^m!f^fq_#qEX-8I~l8NHxoWJnQxsM2`ViEe%hGuW%2Ql4TdL%vL{fvZ4i4h
z+DIqols|Mn8XMu3^e2jn<+@x~p`;8~w_C>omR)i1&U!-gt@!=k$0ksz?r?AWem$OZ
z-`hHUKe3h^V2p4t%P_0tNcnq<&*|o?&z?BAvC65#Y45g6!&-0a`v)@B;VqOCikTAt
z3dHDnT-ZrD+|Dp5h*VO2PlhhpLn*D>WHdQyH780~kx9xfUg&eGJM|7Yer`Voc0Qp}
zJItrhtK&_uT)f@a$)`&U_<mfRB{T5)QyG5NSkak;iXB=AY%w~n?0`*@MQ6NT)r6Yg
z(tR|R+}}8SJp45ps*PCG6U&w6ygQ6fDuKGa#tMP>UOC+V1?U;=)U286uvtmt*Ta<V
z|KeZ1aB{;upQ}<17KIhA0*+BrmbA}5q*A2f0PqB;P<^)y#{xK#Pp+-d{ZXVz<$Y74
za2^Qp%w^11Iw#<Kxsr<$SD!g*M@W;+V33Jk?GGzWpp-ct1>w4Jk4Bnp=BItdy>Xy)
zCZ8uN9Gw~S%9tP+t@w@ZlT4LL$OIo=6X&S;WTJ{{{4{%8ZOr<V9P1PA7gXordKJpE
zAG^>J*#ckO!v#DpFX>aWCYY}>ztZS1uGgz}BYN54k9%xZYpRorlYr|S9OszYh0py#
zg|fq42)vOarDNw+7T1-<!<UiVv(h;bJ(68;T@<9r!ut_~$rm=Z3rKX@CX&0|vJwNE
zS^Up5%&vo*@N$^nvMkNF&$o<+1SBWKJeg^7=#c^H+Us);Q)4vQqt)Bvnj{zGdN$$L
zHe<pk$MafrUIA;NfM8JiwvYBjR7d~vN_sh3O*Txpnu34JFn6PlFmzsXsDr&525PQo
zb4;eJqC;*3p9g1INrs(A{V$iBTV^7_Gr;T70gV!nh(-XSS`!Nxe~^*yW51mT3!?ey
zZ62M4qm@(-nH>WHXS$$d@g8KqkE>2%UjHrz&W;ln_$^2I&ztw+-{S0Z9(p<<Nmi*l
z7)e4e&ykFMZyC@uI=T}Q)<hlfwRiXR1_9;7Q<)y6g+Q9R+y?eK&+<C)_nz=*xoR5z
z_tmoYU{C*@b~m(pn{*g=)G`z>*<@EpBWp_`|553&?6$!X6CHkBMZ;WVH+HSXxxesI
z!c#g^3yQ<g2vax*yMtl<$!>4c#laiEqJ$yM_H9HR9LFC+QB+0<h35%b)_CpI569v<
z-rFOn!Mvpg*9qD%9>?3ddv;h30LV^khl}+mI-lJ>UBQ8Uc9Yu}w_KX4HH52m^HJvm
z6Mh>=tYt#X-MT2V(memlDfy1;9v3$p_V(A7E#}@wHa7Le;|9JArKB%9oz3<39#xn9
z#?2sLEHX-hou|z}3gM*W1>%S8$EFZ?NEG!@^`SYXfTWf&3~;6Q2k*z`#{~~~QoT8o
zu@D6C^R!j~2DCX66A)1ucw$(iBeA3~&BNhF+nSnzbh>ph9vXEB&sKdgZ^ERrVT}z4
zudf6e1arY+r%rC-uQo(#M)R{ZJWZ}>KYPL+=WVY*bY^19?matMSi+`HPow)J3UtM5
zjDsJ6^~9n1l7wzYM$1B4YsyszaMknFE{FN2;MB=|b~Z00F#6i+dI1W$Co>443E5c!
zg>Cm^QS^wB#w*WE47Vp7rZ39}YQ@oBZjNoPfxAF<R)P?8AM!<6QSv7-yf8-$Uv1@0
zl-V$vCe-QPsgaC7CWz0KPE{1lSaXI^KB+96!-+{#5{w`u<nZCq`3GuvO9ynhL<hc*
zyHI#IV=Uz`-Hw1%e=>bajiT#&?Bx>3lO=aI7{kO}6HC79`U0$r7(6#|k&t0C864S(
z1Ok}a90>@{JUmY~CL^UT3+~UG>cFr~ox<by<zsoCnHKfYEX(}WT3ePBAk>lf#q-gU
z_jK#p9Z)G)Pyl|?+MHff^A!hGnORK;d=+oh!UwLNtYzW$+27pf0%E}c{}d4dt>^RV
ziszb?hFczpx2M*UOSOkL$5tc)^lNP|uKI5UeRQEQzh71&YIGm*d0lwf^aE2NkUiU5
zdgr8z-|(#fAXmpEaho#8BdfgyIbK2nXqoMexRBS<Qu@D`dB^C^x@X^aMICkQbZlE4
z+qT)UZFh|B*fxJ18y(xWZ98W?&))xi$GP{M_xJUjYphwbYSyYX$LCuEe|KdzP`?C(
z>!!QAm9=8zOhWjsT@Wr_QTQOAnQw1cZ6zjmd|6w2+O;>I?N??N32-XvXFQ5x|4~$E
zZGeiUHZ&SGuNb3S426uGr>I$=qbn8D4+*H6nqr)D%Bxcxc4x+^cEpcj>|?3x5-uFm
zY8xnEDZqdQm{X29g+T2miMeXyL**9r7ww-W`g1}ga&CmzxKA>ZZrX3FDU9*cWbn6O
zX=f(C*s#~|>$QRt3ql!R7i{8*lW~v$x{i)g&l}CP@wE~v4&h6hJ*c^vm9pZrv2FFy
z-~pO6Mqg{T<BEK3#(8}@cxCwd>xuXos3+KRZtw5zZ!kS!Vd$ga6v}2w%cb5`y#sh7
zL`4A$DWzky`^Wr!QC+_R3S+e{6Nh&ij6SR@!b{DP-x`_US<<4xk;SQ4NUky~3szJ#
z$S_gBRSlGNr#t$Rl18{nJs18ap`)v1gL?shsimc-A-C;(ePFom>My+6lB%4JM1uw~
zgXbpV+nJUl;!ZhH$Ws2}o))Y%GI5Q}WL<u4DuIW&4d<-%ug<16=e7~bd3%5dN!%aa
zI8#v)V!%PVC|+d*9lbI_QT3yS*f=g6Q0!37<DkNTgA*2~!bAn&Fld#EgzxvfN#Z22
zf$GYeXm4D4dMYXboAO1q@o}vv@%O>6morP_%1=*YTiLw9&FzWx5;3nQG$%zyyn&Q)
zkuX52SHs1L8ao+(j^{;nAg12OIdlRn+Dns5y(Ka)_aEmRXbHb(M+s4>{ytws0Q=^$
zjT86fQ*l)bnx27<MG?tb0vbgs{xrc}chbi{04)cYKh*ESGzS81{-)?E2|3EGKE5=+
zZ@zo#h|{h3-H83+=Ok8n?@=?js+-{Cz^r`;_FLn;x=#N&Bqj``yE`u5t!)VfzxcKP
zn35=4e6(M4U}}c}!4lm)D8{m4e^u}+A35y1@z~cO3}0G{{={vHDcUcf3!j@S%)h6J
z3nzT<RxT1A4#XM$&U+X|Ke>@?kl|^&+p{X+vvPMN&}>es^Qyip9vVj1RiUZ`_mi2K
zmHcW=XUBoD>lVSp*i2SXJP<}s7V63ZeMkl=E@2cM9T26Uc)N)jkB%ry1l!tU@k|2$
z8k*AIO^pGk?YBBJ=!>=wa!|09+5R3zZFTcE+7W+DFv-bsG~%~xTJHALq*p87x<}sR
zC^4)BtMCOC_{vi=QYtr_)j}gS29$i!jN%q6MezWnG&P`dzrw6Gg#HDt{e~c27_K`t
zH4Pb19NNP>+UYe(($kL0d`nN&LA}p<Vv|ePijS;!K!8J+hEeO^_~lK4=HvOU>L2hW
zNm(RNL3UgYyYwdbDt|v$m5K{a73<}-&ot$Sf<Xu9sjItBRa8(SFf~1$1*mUtJ}kYM
zBOj1vFA~%=L4yrMg#(Ohnn%#nQoK*lbMYSAy$x&hgUw~n>;{i&?JoH}_=@_r<}Ysp
zKi&od!{4BhY{<wGm4Qz89Ha5-Y6NQEWh8G;(^6HdYC2XGaR~b8vom^03kK6l{4)>8
zQaVZryP?Uk8D)*UkdCZyvLR{{6Z>9p2hZgeJW82K4n>*lst$bkWxOlf^C}!bME@bd
z1eUfF4;xKownP9tY5r=h?q_P#tHr<+5p!aH_L?URi-hUIK`-pNP0q)e`tV^zRcT6?
zQj&g|qRN&ttd98@_uE|-x98*qE)b9`PN?;Lx7|c>urv6@^@{2Kl&5nt>t;5TI%fo=
zNOgU|Qz}2_)+vKAjRMP!%yDv;jR7_#YX9<3k)-2xx%_a;$?D%#QYaXm;c96*jO|21
z>SX;wojbDjv$+|%hO_C@wV2J}DeQcV@Kcqqg~F4UZ3~t=MA%xA=WYE^rC1*HWIs}`
z(6vHf3jkAC{h3cD)0Bj=`t1UX-hGu?zWCR*fN(>k3QZz<K*QrhA}Ww=Tfwmba+do!
z>h+{35?Et1-w}gA7`{{>;|-EnFAc3fN>zrF?clg<s@9nPvX#-oc~e6oC>s0W*J!M+
zf$eU&I&z;9NsXM{(!yLCpHRyMEVRjV5y|ialS^fm4)BM#kK^C~u)ES|9e^VvTKzZ6
z=NYp3Z7)&z<tUvdZfOY@%}`W%T4jHxr?gZSg1o1D%TR-vSp4C<m7SHe8)I;weT9_M
zLdq>W9hFqayJGQK*n}<<F9ufe{Jqzopam5bR|kA2y*MN^@m-)=yTfa>gJp~7A@xRx
z)C4?NK|y|2#ZY&})!t?R+!}YPrD%3{NVR4gRvWI;J&eF_;OkXox|_AhB)D3ico8-*
zSA*iHJ+j1ZWiyFOFhFT3n34J0%Fq_~%L=n978XH)R|Rybf}HHMk|F-;qouXEXaL44
zJB;7t?2*`L*^Q8DZ7iyv;G(`hMwYVZk8j9Fs{51?S8v>q-jdh@&3=oGc3%}mymmzJ
z6LT=p15%flBVqoami?|cm@68YOVmXSI9x0%`SlanY&9)0I{?MibwQ%=aO>1Se!Zq_
zJZr;t;$$&kEPvTT$h-WF)V5rsh}nAmC<BFOviuM{Ef<{=8+?DlQLZ6l|ILJ-*vI*D
z>u*+;R_;i1Dta(KHC=lm_~}MtaMMqA*rSz+5HOlw5t0kR+!S=;ViCE1ZLzW9J{6dM
z>FIH{;0g*@5bC*Z{A#mNEem3+POoF|xLs|ji06J2V7%`Y$%>dM*G7UfThF&uWc&n}
zYj129nY-^y+54B8xnN+Yc68dBGF#m!d4(p>)Lv1_JM+t7cb6Ztu;WQg)X=dXWBI<N
zsktoUYI$<H_!}+t&C~_9wFJ<xToAmT5Bk=80gSDbI_YcvG_jJXW+mwDR<y%(s5S6s
zWFF}8JDKGAhlv-IbQ0dK*Qi#}ZO?rClxS=6w4af%9T&oIJd^FI*i;n4XfYp+X*BR-
zDz`jhbpL@~DqRLyR>lnB`2_%sPxehmh1XcWo&1BwYPZa*6os`jE#{q^wY~Z;<NtAt
zFJVPu(dP&PC%$|6iquOQ+2&ruX36Rr;@rhj(~$sMQPS-{?^McrcbC*|_Ll>*iV|e|
zl9!EPu_rAZL!-YSdba6EY2n0L!I4vqh?lBYh?S~6&pNC7bTQj3EY+LmJn(!JSz8yy
zMxvwPER66yZn`B?$bb7NYfC{V{rmmX!J=VD;FTsxSNmPhdA$ZqRFKG{r@tGk!`D$%
zVKrt-MlxK0rWOeaUMhk5ltTfM!gKY|S%EiB7F$`tmT%F_?2q17scA;&302M{X*WjL
z1ux!v<mB2E`2fY~3RLTpr_`?>DIHb?!L-tozf}}egc9PM&DrSL@2$4%)OX#7au*>|
z+#TN!atVvs>W<m23x>1=3>cgJUM_$xb+ZS(F1=0pqC;3VCyapl+L0T^3+@@m2_mG&
z5BS9{(7p#azep+X%hm?+cc_5cqpKexCIa3PC@H>tHR0g&^71r*zXUY!9vps@qHpZq
z08uEm7^{1%*Hu^Lno(x0Ek6VCYw$$azr&CH7-|&FdE%0H!B5?vb22c>|NM6rEp$Xt
zOcIsRZHdxx5-iHThkkG8Ceu%dP*a$xc%G8#0|%hnl!CItf-l0fB<*zd1RM2ZwVBYa
z{c4VWN}%0?qj+#hux2oz-~Ucog`hy$f*OX_O@!>yx8Y)!h~u*_pRuX0!*7sJ&8!g1
zDaKZ-E6~7aKY`H+{;qaLrF1AErX5=L%xE%*#%r@N0c*}QCaAcf*5-3N{2S5-OvTF@
z&Ojffhw7_e!6@N`Fbr63<dTTD-7r=6d#?mxJ>LEyv*B>@2k;ZQT#DP1OBNO&=S0dn
zna%BT-hvje{m6Y|_w36<bL0kwI_p2Bo6@o>briH_t>6ISZj5!Vt1%Y^v8CzRGP&2b
zbT)#zoy#~cL(fWLzfr7|{Jr@coR+dQTq{x*|H}gVqTv;<dx*@Rzka<Y(Vp}hCGubT
zcDXq(elXliJoC6^-CNgHp0UXPP@mLJcQ<^9-kUkR$Z|d7vXwWlq2r|0kf+Pc)XI%a
zz3RKE_@?hSK{rn>Ao&K({|EY=a_&RSN88P0H<b1{Q)>5mv@>U}qDJpIiGbwK&E?JZ
z4#w<?7He&|ZCB2SXVzFovi@c(rS^(ZkD>qyfF0jMiV>Ry?f%$^93^}9?IDAu^uzhr
zZ%n;qN3L1#wV>sKU>#_7o4G>MLq8J=$hKO+G3}UimVAk};(NaJ4qR7)h2F{E*q_Lk
zOks-W$|3ezHOD={yyVO^Rg`ov%P;GZ30k08L1i%;{mzFUs<FBX-%U@71h5$R(Lw%q
z=RNy++N`Iq_~w@-NzBQy@@{6bQg01)#A#muQ>Ue@C*G{NiSgO_paaUarO(?Ly=!hj
z+rf4GO%2+P{D9h}JE)lK{9>8s7=)R@;WEf5L2|>MIEz`NyV?0Rn1B&XUXS9vaE35W
zHShFw8l!~lfR|N2apdB?!{PeCdHa|gx5uG&4O-)oA*by{d85M5bY|wyDzi57Qxgn}
zXAJyy`IK$fS!aU!m*fp0giIIrg>h}i)&cyveK2(0=hI7_{=^y!zK>l74%y)tfn>X8
zbd6jV#bCPayGdt1Zk>DjMY1#f_M=CWJn9fDLm{o-KCf4dx5@aR)EEhP5>l4$KyG>8
z6B`78J%gsqh7Np9Lx}_3xiqKa5hZP|HXANq(AF%o(Eo|<q+{KAyC)lmPk|^UIMZbM
zToh^AxotqzF)#5lmK*4BP9apa44jRp%~;5aVO((fqUN_2(v|$?*70W6sp{rDYfnky
zyvIEfz|BZp)UCK)2CqADoRf0d8mC;jU)o6J^oiu`-|^w$g|NGILb7+8h(torxvXg<
z((}Qt10u&bm0b(QZM!vYnl$iWYI*A=zrtp!DM3T3ryk_U9zL+RzCV8@N$S>YA{5}g
ziqMh5VG*8Kj~Jy<KmKl|nDV1vZ?ntnA-({~b)S*o)98313dsqBTOKr~(A;?XY6_h&
zsxy@Sq$lIQ=F8fmSaj%eb9MypPp{=lQR2fLNp}Y-sz3}YO1Ai#*~muv)(4VVT=(I)
zp6k2RZnc<w9*R~*FvSk$<$PG#KdMd1ZtB<Icz2>Bk@;H(Z-Hv4=krmbWo<uF&hxjt
ztkkO4W8)REwcbR=?6dvV$)<Q_Xk~bMAayjV)rmj<N-T$uf$_l1BR$&uc<<PbF}_4B
zbN!FYdJzenVDz^p7$$JrvGXYn`4JQ^p8uWfN?6DK?w-YAZp`Bi1~y{3PtGE5V`kik
zDtsUE=tlRx-5s3HAFMIsxlvs9hG24-RsANv?;Wdqy(?%psln<_b{wu1Oq>&aj<aVx
zpt4W?6K|bh|9)KaeFRA(>;z{pkaqDwUZ2hAoR1Fxm>-V$Z9E>6{p1gX%ZC&qT5At4
ztB9Y4yZmM;?<}^gOviSAcn&{KTy8Wo(h<%g-uds;xrUiPSl)T9dU-s}xjubzza_Ia
z`fQ|w+S(p=FBxf1xN((wBWMp?*kx9joge<nW>%@2kK~|Y4~;M~5PqI^Xn%MTC$AsA
zbNp>O>f4$8i2W<G_Nf=Gx7klC?wypa^Rj>WXy6Kv2!km83pV>(Hw*@_S(<CeMzzd!
zC~Vr<zTp>QCJWw|w;$=4$KrqYqZfOC(`wpz%l~_rqnR(W#^15|5a~Y^AHF`?xukc0
zkAgMwIca+K+5Y)4I9f(`v6llc|M5JBs9F=&nd5l0t_m-F)D;APm7c;!mxuG|fS~03
zL5qJlQv6$$RTsC3i0u7e`ez{tHW(_2?|WLHQ=Q(zP;M7`Up(r>78@_%1`{FX)7%qX
z0YJ?(6i*k+$pIfla=a)yzfd;#QSl#5Q+V>)$N8v&d$^Wu)?-_)yC_=iL9dYY2{)YT
zVq)BCXI8tGma^(>968K<kb8<NuW-Xnets*z-B08fg_+@~n|*uzufj*4F!PBAhx4w;
zF!MtHQ2(D8tva+}NP1d}O1b`++AdbxLn^NLP{J@BCQn5F_FW<VM~~2n_;ZRU-_erB
zehvxyZRH>S^8~ykWkcXcqSw#lbAtb{08R34vA*~)dG3%Z|B%Y149vWq1%9p#&Ng5~
zKQ}N!p@I0U*;DR+#*VrqnSIpo^*{a*0R4-%DV~=rEyQ_zVj9(GK<4>#_uQafZkC@?
z{X3YgUQkK;@<47a(bS5FL41e05NkKx#5nJY{x2A(P@%Md;(D9upHc0KPa}Lp{<i88
z)9P7WUGQHT2<@2K*xLM{KQffyE3TkZ3lw2S^r>p^r6M#_F(_C3|LQ+8YsH<xdoZzo
z*9VO+AzOX86XMK^{BlS{2g;7p7(_{!MI-E6YtdcY{<q@{-yrQC60<vlIhh!A{mD$h
zE77Dl{VBK8Ph>!F=Ur#Ii4p(V8tTF6pUFprr}JL)Bav`+c$==fPt~o6-~LPBapw<_
zv-rQMFHX=w!*^M)i(g&6Zbrj5UryJ<{Ew_<Hg>YZ_g|xs2%j2*kLU@(m=UmV&L?#q
zF9e(nN0EZpmroY<n^J3Tr)u>VAc1hpt2YtoPD@Ik(Q5$ocaQ!xyKF|g+bc%9ZT~RO
z?ySOogzHYb)plJ10kQ$#1Vi*}`SzCZbItjv`)`)@0B5D$V)Slz4w7B^%2SoB@tzjc
z!<)sz&ApC00k_ZARJNS|2b=xNl^Mr;7hmOSsR0t6fZNmZCnEikvGV$15Vp7b>yN+X
z<86-w{Po_0IkZ@Er<>hp>;jVPz8M~VgzpWPO-ckHM~Zgxp4{QnCi*k8TPx@nFCF5a
z`e+mI5-{%)iehPNxynN>_D!1l-G3}eAz0k2Qt@dxNkWc8Tlpv4!^)%T>YSz7?)EEC
zcM(|^*|<3!=htseO44iB&d!X<A20GvGhb!#H^tp;?$4~Bd9&#{Pdu+&JnRveExF7l
zDg*7xk7&)^bEN4PBIwUEc_F@WryZ4p*cl#oTFI}CzW|z#*|T9hp>|KV$_!9IHJR4)
zj;+>Vr*leljRJ3r`+7F`Z|&tasHgOsd3KMe?8EU*3gcPtW1rFS99yqk|8o{dAr=2~
zjN9j(+Z!yxFC}zi!xW&GZNHAHY_84~ZfE2d&VO`1cLsSWqZlk{XYAh$83m*9v&LFV
z$DxG@EKXj4O?HO&r<t@t>spF9HaiR=RX)Geuk_8eFBP<xY}(l!br5n(E_>Q8+p{Iz
ztlJ&reYLwKtkB%NYy95R*&hA79T&dO#j0sI80lIB&DCkK+Gb)Qp@r>iMW%Q<?pJ|4
z70GtZnx6TDe!&nPyG;=_Rtr5DDNo`JRCm@mKctPz4WwQTAKyUwEk}#1<&poc+5O)&
z`*#o3oL|*I@O<HxMu58J{AIV|!XhsY7H)af-sL4a`NWWSzX$7!yPQmr#cHaOnf-s}
zL=;;pD`hE40MRoPUN7BE_09(hA3ZI3r@b<{Q^bCLS17HmCAX_T1aiK*XO;b-`FlKJ
zoHkrHTM-pi(JCpE0)*2mQItdm_*@T3{En-MIOgwIHcy%zW_|Ir<u^$l{DdEkh5h&T
zl=kvW?foW|t>h@)Zl6~LVDueTF^Or93U)2hIn5U%6^r$sOGbZ%s*4NR_9r6n{RzJ^
z?f?O)&yP5qt=_DYUZ~<K@k!Wjcb5hV0&@_^W#&yNy_@#?hZfR%&z45s>LC6c+cz8R
z)l|n*EY40Y=aWV<h%243C0?!j+a72kG>Q7h2IGAk6!RwAB|ln?$y<V#_cN5v0bZ6z
zMJ&K~jF51WdxY?hlkMf67}~<dEChh8^7(IvhzmW1Qd)WVE*FQ@jniW*02pxG8c{=-
z9A9HR5vVn1<&;s6!*R7-y<D~1<2~H@9@p%S!(MKX@q(zVosQ#tKJ>Z7bJ|?o${8Tw
z{x^VG85sjzEDl)-y-f!N0}Z3*&pkU+_r--eItr{96h@mEop4c`_g-X7&HC$WutT5W
zRgc2vBj4sP{~@=_?+TfR7rZ6aC5NY?1c8=_^_$HOKT%?&^)GHbzGuHWtSTRtM!ue+
zBLM&wtE{<Ay0v9qiTKV!DSE-_uf{A+)89tlJcZom2HO}2E|sC!i-_H8Gwp~8U3c&F
zh7$`YoVXzl#&Y;8+p6IrQodn5&CT9A{&0jyfS(x;F#>*Sl2PCqU^O&^+_xY1dY?4K
zV_}+8cD6WOxfKqu!EzeiO_16Y|6;q$Ulq?%Pse&3UVUCUU9tLf3Vq&z$f&y88!o0K
z(1d{LB4}ED%tlh~shcSE>BFzJo!sG1cUtoLHFzqN={ITAz~lVmJY4c*f9s&|xTf#e
zQQtG*mtM1rwtuiXy8Oy7b31pqs#r~NdtG<Rj#i^GU;p)xvgqYwW1PBMRPVkwDTr39
zX~?mq0B;T5jY610$kA^tmJQkyy}IS~hvLEXTAlA(TF#UR=Nm#XBveDu4?ON?M){In
zZzRZ{yow8ff<%4-WaZ#l@+nW`MI$PH^bG@Sp*CF23tZ!mD<3kRaG~lC@Q*eFi|0Ps
zA^`B4-HUF8U!D5+`F^&g|M=KA*EOroc@kYZ;B-0TTKHV3F2!!SsM)$ViK&z8e0eyE
zgaXmY%#BC=F1pRrQsW1+l$cJJj<>qwIXe}XUI_&I_WZcFl&oXhbW{q%#+ZV>AGs`*
zqu51LhQtgDCqa6@qrUIHw-!zlatf<uJQQx3NrO&<IM11m-R}!`lg&fAe6^<Q+w*bN
zKWiiQNn__oHs8iP{dR{MzRKF~3BOkHl*xayr;NaX(6Gs=xE<f$8yBt4OpgsLGgGR;
z2B^Gd-7YdpvaX&cLUcTTO0OaoMh7`9&Y>2FAdt^NSFPkfK5sXOT!5SQUN<`9yN}qq
zJH*QR`n{EA&gxgJMV;#Ph>7B~1q5)!bB=slK3_H$``B@H^|xVe(6c{n`G$Bp4BGq*
z)w;ltPWjH0(${s<QZJxUxZyjJkMnI2vvTDmMX%R9@gbq<(jXV(*mu`Llfc3?$FR-G
zA1icMJ!dXI=TYHoMAy@=CO>620*OvZY8sR%MkmG_&F^sClY00#$v=!y=H8@lQ|GAn
zmxi*-20WnBq`~zve*uLc<sr02ZM<X^v|6Fv`0zu}kv&jy#f)!dXZn}Gq2wj0ae6N&
zp|)-6#i3gdd4=q}!ya9mulHP&y<<%LN*ZWU*F#)V@}P3qtzuwb-xFgHb5s|rc*eb-
zxCAUn;Ze^g!Sf~^pAF90I#O_}ytTE*q03r-I0QXdO6FVx#3<`>mB;}ha#e7N&rjZD
zZVj61UA-jVCNhK-^zs;S1(DM9LxH6{j7-Zf8`)({_#B{^whJ>)eT#&N$+Lc_W*YZ%
zy4^aou~_$gi`NUaN_;yC?fqS7eca4H{uy{`gw(0L=m>A4VP{rS>8Q|m`W2J8D>hl>
z(^<qzhN6L>VSh_n<lx)o=mw5(5eNRUrK}_0_39mzHB8?ngeg7@<W7^wg@yB3qujWH
z7=|^?kRHYIU4aje<6Li!9MDG|oPE0>waeY*6f+10sIbm>)Vc1CFWvB?7IPaf>>)1m
zf1Bi!#{?4{JgoSZmBrVRqw&P!W~pxs2N;&y)~i9n5*mCFzkvx@y2|A)Lhaw+_bA=@
zWIk^4{<=IfFPVX!OfemT?sSvpghw0*uQ{e`h65PNtrDzr;a6;ybDAk5olMe7RCiGm
z0Yu!jn&&qkH5i-mE757J(tIxi4;3J1*nrfZ@f;Kq6xt70e2;ona^F1F``X<9P8R{l
zXt<hwVfp=YmS4`yd62lmk`^CY)~a2@l}@1{3yS!7Pu|#afPnB)@claILAeuWo|&9}
zx-B@^OasfJ6UsEhlVCHg<Khi1_Zz=fY=DG>G%AtNwxNdOx(ijwuf<1e>z?#N;0XYf
zj-@FUG2J;;??w;QD)jOe=WxU;DOY1X#o@pJ5|UaA%3out8;|`F3hlzhf0`4CN;7@T
z?35bz0;rNmvUQg^Q%v*)pa7sIZKQbdyzLwHi|MUkXUV;6LVQY_{5k>#AgCJ}6nGm+
z-K*{I^;^Z3rZOp+VgP>3OwBJ`X%E9<@5Tj}arZWaYuTYT1_~07-{TfO1qcZL^F#Rc
zE^}Gr-K~@AHw&L~SBt2lJ7Tt)t8U}lkIk~}55^o`uMg@XpP=fER;Db+x-c3EU1#2p
zO5WL5?NK?P8_8`QU-$Zx%Y2g`A{iHl>Cc`qb^OlTPCH3<Dsl??KC|=aVZAD}H0<PK
zVQWErM#>-qIbd?g>^zE5RzVG})^l+#q4Svc-t05<tOf>#jDnJ0;jq00skMV#5O2~R
ztLHsQ0uYe|&J`UFT&%Ozh!!UrmaRMCdf7=@52F_hvyN}y)~sVeEI|U@DNcGT(ovgR
zpKC$#eO+KKp%~zSPv_yR2HEQ;_2buzU3wRJNzQPo>YND+9<o!9Bd#YwOGjkF6?Oat
z#vGz}k0+kGYVMgcEg2~6oLpR0#&pP&F%i^-Zf9#Bi`U$cr>|kiMxR}=w%MFLnh6xM
z&+MjRP&UG`6pJij>ukz{R!uYaZS}!@zjH#8^aPA#HKTJ+R;!D%{_N%cj+BBxCKnq_
zp>dtFm+Pqm-|VM~-E<l<I>=?PQp@6S^4_hE%$%}!jct&@Dwv6ji|g8xgh8Y)cAc|d
zocb${?rS0<Z8r2+If7yxgoTT(Uv6idulI~b9*q!lpwYs}Xb?_KMLl-~)e`KeLGGrh
zXftn<$V7Z)9vEcQRE$>(1@tT#gpw^iLkY_URtJFn=1Ik6_1G4g4jQ>ME?{NqVDOqt
zCpQGR^plE=X$l%!JU6fJI(LuHU014UaU`|HL#srU{t8rJUPRPEK+IC>wc#ihMb7_j
z`H5pcS*6#yeU+t{|N3>173<f;WnQGvyQ`54M8U&vZ0t<R+iJ=n4NWQlx60A7@$Smz
zhw1_rN*01Eu@DQ%PEWqfj|7FxJJw7+PXkMRf(*q%+IT_fKWws9hoOndvNJ3!bI4*)
ze&!m^f_&GjRCT1t{xBBR5P^bkevmDW+uQLn)n(DwT=n1p5FcNQDt`Wwve?^I-Z{X;
zD=tJ300jipMQQ!)%lhi+w0b;vDVNZUyGtXPtsuj+iLal+WA<`4Jc=l55dU)g5o6t%
z7s9>}VJQ95OCg85QXs?QN{$;Mt7iE7MqBz*{6rH0N(}0&c^x^&@UE`>JSGOWNQ5Yd
zuE+7Ta70i99hB!+(X!4qjzalV{$8u`vgL;w`;IKVoPGx;ZaoyPv)0G8MN;t=qi1qd
z+Ibj)Fle~QNCZoTBHHPI!ENa$gE6C&0Prk%@NTdGWCzcA^~5=HNOAM2z|puh&tT^z
z-G8<Q!1b?Bos(uJ4@K4T?3?iJCAW!8!k|_JBU{)6(@!)IrLwf1tx?1T10X4{UKk|4
zh+i;m{OxoO8ImTF+?TfLC2qDs6e^mv#D+QLaP2(+N3M$pztD%dx@XJiFkOvyg)h*^
zgez-e;Leio(Xz4Ykb>44_n4cDfRN*9R4<yPBBRlRjj}IPI)zn8%fCr+EaDUsYbAj-
zm*IfS9NZsHmft3yuO@?`n#4LmOy<ro>X<~ZjDahlr49<{MOmP#%6<|f`UuRe{KtdK
z$h>y2#4t|FPOQ2+hv~@Z>IkE#@d6*FyxEGG4|iL`DJ`gkQ7vO9>sU%gbF&rRIV}yx
z?2dnLzUwsYAZGZoki9sPWeu;!E|rBgZ*qC_vHzm%<6gyEU8$%4b`uGQ;EIA<X2SkN
z?h_=cq1+c>upFE>tbu@W>p|Ykb@C7!WkANQB8o#R@f9E%d;i$#d6eMfxyz|_S>E9*
z55jmAxRQCw?Ncn*`H}z8`Ayth^6rY+RPD=^CqgVs%5^iiMMb`7(3&)5T#_1k;A@3B
zy-Z5nmXk-fqM4+myt2B{+)*wkxMdP5uYN=`(cYN;rf7t?SmNIN6#8UjEDhPOvsIn@
z{R|Rtpf7|vE(AbV%27W03IyD8=_)Fk4S}h?;H#(`8TPnT-|dE*GHH<K=TGrGcF8)N
z+2qP0mNzk=<|zD5#J)4AD#cXoZGnE!iQH^!&HgIGNJmY2ujyx$q)lq8?eD>Xo;2T1
zG%rZb%dgKz5+I&nD_z%Vd<v7?6vEDEb=5*#<PkKv8{8g`dY|GB<mUb3A<JATZb<NJ
z^I%ref}1jY7wj=r*cqqquAdi?s3ayM+U|2ZB{KTiN{Z&@k;p%wHwFADqu0uuU#(1-
zQX?%v42hDPGM$0U$1PAHVm`RR3{mwza|=af<BwkBS8!d7*yeUE3uEVL_Q)yCf;-d7
zq)o}u`Ai`C%k51_m0|GtVs_YugX$tHVuqbn1U&V95=BqvTJUicV&tgQm`_b4t%E>A
zwsNvMY9qvp^F6XHY{bNRkbp5WBKmi$tWf0sFbUYzyV|KTU6_#R@t4#YxcmYq+ysVj
zm0r^2uTsPN+>gg)`lx7eE4etQXrS0glKhr(FI(b@^rjoD4lxn*_cu?}qQ%Vp-iA~C
zL=h%Z5~pEtOg?}16b?+x*8HVXk7Ij(i^LWta&}jmzYJ!(_X}bUXge%<&N=#3h3Nrv
zjS`b?rh(ZS*&%)AEbx($j!>pJn0S%>#?jJM$_B|-l{iVpc+kHS5?uArl;Y8IpkB<@
zD@cMWO$>9%cGnS<=rwcAMlElgA<PE`>q;q5H>ekjHlE0-E!{1u!p-=QKZ&Mvp}_;6
zdQtj$ub#L)&WnAQ-Uo%G#7MrI+WMM^w;y&G%HwOGg?wZq4H9ZLduOCyW(=*N$_j}r
z=9)x&#-vau`6|dZeCn>oLK!)hX@!_dXNAUaqEdPksTw?XkD59$IoI)@3v`Y4%_D>@
zj~~g08sikw$9&-EG}`o><!x7Q-bkiXprt5SAa&cQ<5v*NdmUrhwfOus;~C>&%24FQ
z<#R5LM7|mA>SxXIZYSul-S>mG-TZa^T=XL}IXh3iI!8iKe-$N)qP#?mtoZN`414c2
zDK`vic3~9k2Ir>4FtiyL7wlzw_z>Fks*9b@+l9QKorqK7X&$HPZhUQ9jxtpFdgU3N
zjwv5E#ux+;l$1P>{Ec_ojEMFR_F-|KnG|l@Q$oq)PtsXVTdI2>6ctfhbLM$FnB&*}
zFr^rt5{aw#P7RCAqEpV=b%M_yLB-2IpVh5uF8GDoLoX^d+E=bbF4kjt+dT#mpI;gM
z3Y}p+=iT(aN^OGpqRZnp!c}}G^;uWiY}SWo-}O6SBPY$0z+>_(jTIXVC_myPx~C9m
zGvUxLq0L~D+G4X!W~pC?5kJ9?>v-<dWja4^vU-V0DCj9cr9TT-%5sX-+%FCbz(OFA
z@8`+oJrCYpD|>^oPSG#@rT3NQxUokh+63ab9wMkljFM-#A6V>fS*ddJZMpsOlKABd
z*$lNZ(~_0SH#WU)kdz7qb<wd>Xz6)XaAxvr>G;Uu>j*fVJzie%kbj63voqb2%X>Z_
zmF$;4XPjU07}WNih!>d0%%cX|&^Oyjo}YY8UZJOKDVszvdMbF`7QqB<{GGjmpFkb5
zb~_<MyzxmQWA}3w8g*K2G1cptWLSQzl{`4-g6Xq|`uBf9A#CVTV4EtHW6`Vqor(TS
zOFb7Y$CIT44w&L0lYwRBV6`n2N8RAKwsjSS!qrVY>05^<YHzowC3DKO^+=>;6*hWi
zuk6dV_ujy6<;iYe58*|LJuPFp|BNkydOZI9#`|4=Enl4}3diOAGg?*3xQ@@9ExtpY
z3HU{h3yNLN(ipdT8~fq&wO*oFR0-WOU($%o=XKw{Vf}sHh)5-je0be%w#_O|0Vda&
zavYkY6RLmv%?<=|JBiR~L|xeUj3P-=jnht$-MRC-qAUQj%jb4^Fjj}d>0Z^ql9rRR
zcX^{cATOtNwho`OI<CDlCzdcGgVg4~v|MMb(aJP;ySBa{Ly!L;cM#gjbphI_!lKw%
zZi`_bT(CNp=OGVDLixC;PgopW8*nSSIx`PzOc~4OaShy+RYPUudAUu(w_{ZPF{F2b
z1;Wga9(-+bG+UN!)MpkFK|w<=7K7sVFi2@OwNyZ~k;La2_xjOwJW4?`n_Kx)BQ*i_
zW>3lx5fKpGE}50@Id)?;v#+1~jmESa%<I1Hg**&udhr?~ACa0+&t$TBp+X47ORRN5
z^?Sm*^1;@WWmCmc+VWq3%`xJ1?QxQDh0098xn`==mP9@SQf6Oh4?y2f<tUeMj3(^~
z+CuTM=M{JNe4O~K+uf#R2SqfMx?5r>owSsDRJ>FpReUBlt-8EU(%%c7A|Bmr<*lj0
zC{sc5=gB%h>^p3l*wa!79(ryMykFVHV{GK+r4upf8nh>7Dfl@BGq3Nq8fRJ>(MmuB
zMHG}YvIq}vqH}0nz}wr}4(k2dn{uKP(Fe2P0EJnX&KF4VYl&RYW`o!$;~)O7fD6dA
zOGimmM)3S}>tJrgWO!k)HYfO};G011ou;!%TlQtT9RKpsy;t}rSNn1am|*W>jhMBR
zY;@JFb3F(mP>=|D98%jP_USg)h3R+%`M?Y-FA*Z}sUsId9R?CSP>|?@-B7zAd17%K
zF;;fi6uvB-0_{M4dffZ?P2}n^N}LGUA3D*M2>GAMPmhZ6<3HmH4t`Cm7pOSs3rR2a
z_EvA?Q5_2s`Ek-GxlYaT9GxCFs`odKjU^T)wxhDuL<kZge;SW;W~K7&yTb<x0?2EU
zn<ny|T{>SO!IcusCb^kRdn2M!CNg-NNsE|xQetSW8mCDPeY|(J&wM^5gh)57MU<Iw
z?VAi&hV;MK&Ral&i1;}6#;a~M-ae1s4awF$Iej=%r3mO_v7Rb%yB=k<5=JZ4B*MO@
zfF>i|(>>`*(TCR6y|VGItoq-qYmPdE{>yOWaDm?k<J_gK$=(b$r#f$a%a$(*-Kw$J
zfF#_?y2PY@<4*qJ@7q%jZ&A*t^cCqL?&Md-OWcC^hl#;^3sH_=`3uuFxgj(yg~Njd
zQ!kfS4bPT!6TjAXC@T{~byvMuD{tDxg;Vj@o1G88(RESLlJbGx#Og(*{Jgx(zzFfb
z1q=T7wz67IR0i919@HmXKjJq+^WPk)`t>*S=#NN$I9R%Nm#`lyWUpmgx1GBN(yf~)
zziN3m#>9Pk4cX0h?9D_X<*c_oaPFxbG5Z8?Kh&9i)q-GVrRm-@czT2{|HgZ`d;v8{
z^C@|=!L|ANnUDF8&;Rk}G-Ueao~~2M_irVz>-b2%igoV(_Ycd@X{}^{tZCndg#E^o
z4RbVa)3eP<?!C+_)sQl7zstZGf#%hGFuxjg7-Z@|eN^D4e5}TstMB7I5(Hr-Gcg2E
z{Nu;D%k##mLLjja7|0hym~Jjk>7MC$@Ue`uawGEa^7(Yl+Gifai~|G|bH0Gk^e5lC
zeBnLLy-f%4oMWV;h7eXiua}dF2UHsM{P#ZTuWo543vRv3XWC?)+IL<rWTqCI_^}oc
zXDK*G#AE0a^7*<yrp5;^yCD5M58X{RcZ6(d7Hs40Fg<;|I|>LffPfj3-QDh2+8A6)
z`2Sdc{h7afz)dxPR;BIFdy1n2H$Vn-OOkyBfL_S}FmaMVuHC%bT~7(hd!E;Gd{E$w
zWNU}FWmNC_2J5%3;9#@sMX3_7xWfm~vy!CpEc02Bf#wj_VJB~WGR5TwmfMEg<2MGS
zfnh8NsnwI;x78QJ1XztZl4#`_^4g6rJLKaS@Dp!T24BRj`0Nh--pwxtId%K)=``#$
zz3<A&70_J|*OF;@W5A*~>DQXR`^ERp=5rs|F~P|RDb@6}LK4&L!(WRhN0cFMocQ>l
zzfSjeVC}R>e=)(N7uc_?bKKZK60@Mk_-|u(azvd?@e9={C~&70gt;J*<FITbyhoDI
z9UTEGzdGNWAyTdkav<OeBw&~&<$cq3^rew6fxUrUirg_x&Z7jWxUiyP;+NO+R<AoE
z7&7Kt&6~5jyc<dmpzJ8`rvBWC7`dETB(l|i5L2>Q3k$%&Mv|_qYjwH=EtY%lFC$Xq
zY_+^6BB4RU#FDuZ`dI}XJ&gJ4OBn+&^b6m1_^Zq{MrJ{-XQ&$3zDMszBLXlR3HQBC
zU5p0y<ko3qe5XZd^T9}~gg3+eU_@k8(IxwJCjBnIeoerRFM<D?mjsEB!;_1b54h2j
z&>az@H2C2de_*|@%mk#M*U@~Anq8w~OV@UEBon2x6)K?n`n^~_U+7g2wys?@f4-Q<
z3Q98<a`27Sj|wyTRIKPQ$lpFH=yv?k;5_MQDguC=Il{bWj0goSf;vrIWP)_{7K5Sy
zEy1ZI^i%cXyVGZO4PhF$-)K8Md*x%I11!wqoVN^`W5<)8NfB5|$XEP94s4t%y{M7t
zqqhH@cwj_FXLVn>!*_y=<C7b?VFTtYAL2w<@5-eq8ZzoH?}SZQfT{X=HBBfMS;KJn
zR4B*}TOEvL)I_VTWxtF=y6^95es>4fzj8MD+y8*fvUmuXLRlbo>oieyI$`CRGjdrH
z_h`%eJ@Kjw<9`Nx(uNTS001?3WK_Jczv>MuU6Pt>MzpE1G>tS_=J?JV3+7*Xvk2za
zO094Ib3DSPe6$89f2#%?iRdH*3{5hy8??-KrhI`4D73OVtvAc13X6a!W-%=M{&@IU
zA6kdV%STuFd(C!85P_QSEd3TM6<qH+g(1KF(*0LeBLS!B`nYU@Y00n2bIq`9$gpu@
zbTzeoGHE3xmA^mf8vBUr>1#rSlUZOHqJk3=)sp<BVwvYuhaofOZw^05{^R6vsk$tq
zkdl{m3Vwo}|F8hC%$k3kQosBWz}s}H>pNMSeFPbF_&d6C9B1za9zF|l8r0e-KD@UH
z{P?b*{<NECP`ehek7#njO%b_u>tP%pnJ!)QM5d==GM^3$rxZ`H)q1GS)KXEyj{!K~
zLFZ1>)P3dUAtOteF_HW%hs98S{Ts{^(bFlxe%Z#J4*B;P2R-H+0#2b?kx9kh-c}=6
z0TC^#)Bn!wf^P*DosX_tV}pZ}(d{+2dsf-KA@<d$mA<ZDxh;i-oP4w$aR!)b_*^_t
zF9)1{i7s#C&_}y0J2xzbU_kS(B3*mF&}VB&o7T@9S0;R3J#}c-5Z&omEFYwe4t&YF
zo+Pn;%x*AE<_B8_fYgC-HQKMKLfhBJ&!*AU$+P2q(;7P?KrS0KaSWUN3hL+{B@U#(
zxw%i`VTi^q5;uX#jNWDm%)BfmNOy&O+<X6)0xweytv2~OmzX4?2{P0_iqTHBF~FR+
z*~R{3nVmB8PsOA$m$csCGU#H^uXUIb$9@9h7s`J=r<f(*H&Ll3JhtvqdOl1_+Fv`b
z?>w$J$oMI6ORRBXQVqX*ZxqVo*dd<k=1ZG0RFkcFhS;`Oy=T@WXv8XO5Jfe6mc<e3
zJwpOp-;o~dtWWE$f>$d#x}}kPeVtFsX6oty07eK*$F!Tb<k>c{%-GFs467-|+^%FB
zAc}Qfb#I)Fh2mk5qmF3lv@-HB`l!&8`3bK<ukSS_9yKr-d(+kaQu+EA8hf7vrOo(?
z)=~b^1Mj0Av-w(7sU(J+*_|NsIilC$a&d8Mi!pk$)9LY@OYf0UlokI!7W!kS)<kHr
zrbu40xvbb^P#1W+DdxoiSWYaY{7>umt*<QQu!mbDCqE0Djux`MGg}W{zOFQ@ehDmv
z_I<CW*Y*p%Hv)3Kt6tY5{|)MEgP)wQY=FfRccTS;L`03N-$tf0{yuVh;iDb&MjL*2
zsf*f|mcmrM$oLquFj)!+hGg3s-2XYG-j*Mg1#tP%8mdoi_pggW(;OFha*Mc}%D*HZ
zq$Dh%|C9d-1>w!`!;=HdcweXf!j8QC_?#_ycbcL@{htZI2=|B4)y4((y8Yl~@_$|s
zXaRWyqyBG|_;1Bf`|my1e-$l)^>qJFm=ht>!;f(P=a|BXjt12t{{QK*E`*gW`p#d3
z{AKT#(-_{QEK=qx)CP;}eAKS%k!1+0XKp6FM5eNh<+$GOIq+rceZdzg$u21g@0hYh
ztFk33O&1&fd%JEf;*>X+>f4vrKP_19L)G3DTN%4PhAy`g29a`})_GVfL<)G26EA4j
zFS4?VUOz896=gLx+Wm*+4U&^L?+l;yR^C5zA6&1z96a(Vz5uBssd`90cws}MKho8U
z(UNWWoc5C!gTwfd+V!#&E_69p^IdN>rIpLg0t#8r6G5XR7jiJjqP;|QB*@{Lp-eX$
zfgScz05IZv2*U06cG%OehXG)O+_(|T@7Hw(hDRq*oJD^|yRtvLtQb~RAzsWhKc`qn
zAGzbkP?;W@nPVkwv1|$*o7K75HI1zfHikG@Y6`VJU8*W9H1XI@@->fB>bQYf1u%!&
zeqY_apPBt@DmMpnt%Dq*r*DSU@iFrvPv~av^fBE3nVM?>1dSf-=yG5|1HV}foQ;g<
zUVQDFUHRbC*)`Kc%)*<~-wZlJsWX;sH@T}w1!g|yvkuF|Oe1k^U3fCmk7-ia-;LgW
z6(2xc2|)c5N`3ahRI*<YWg&rXwuTZ^E?R0XCP~d_`m)Z-;H}WLCDfVla$HYeTgfWA
z7hFYDzq(-{+~<=u<L#Rx#K6?FS}&>H3*<oJ$N361{)=`!dDknCnBiUad)x4>0jC~m
zpS?(*>206lfa!HV;4iPp22AWa^y6`)0DxzK-vNzgVj^wE|Eye~Bh>P%L4&Dw8~QI>
z?~YxMu9@hz&y<x<Nh?0!Q{}&|e}}h>Lyx27oayQB<|Nm~!XGbE)&&m30j4Bo9(x8x
zzVC;Bx&T3W^P#op*)TV25C!GIL6P{gx9%Mrbv&L_g&Uug`AWpB8K`MZ<4-ov-~56v
zX_QJVifrEFnm<@uOR__Gui$4*I$v}<KMKx!{y(sRzThQqkJ*dlEkmpAoMn-xV@`V(
zs6!qD0QxP4_wlWo@C1$~vUpZ1J6Qfozdo<spPUn7uoy{a4Nj!lE^kUoK<yqB`9AVH
zAIM=M3eMuNdH=27F6Nfrd243$tFE3j{?0xKA;mo_pIIlpV(otsRw~pl)mpFs%3;lg
z7eid#yY)z*`s;fi+IGyPRkt_?RVR_=KKGk;T;Z$V`S}M?Ds?&4n@iK-X!RdTkS^PT
zB>lWe)o$=uB(r+u{1!X(2kvxisH@Y1-dD)eeu6e<0nwTM>fU(HR1qY*43nW;Lmq-?
zaAYw(y~g=p-1jNs2x*9WD+o0@Eas^-jl2T1J6VS@Tu~zMGKdUas7k)7>BjYYHxud?
zv6uIlbl9tM85BbiH(k#63#)8kfMP4X<A(i%-L7^Mq+^JPxSg|sSZ1307Cw>+PTlRx
zlVsTYHH7+#!b#rv&1&Zgds#~Fc+#7SxA9oY1di2G<k&cj_rBlwu61>3t#6v<cwN@i
zprA}=B^CW$2k3QO;W)@Cu;`@}#jOqVw~BM2PC44QMx&OYa#DA0km8MI$Fq=p|6yw5
zecWy18?B667mbYr9&SMfV>Led+sPu88$pxB@SNY5^!oU*oXItQ)cAt7du#;Y|A@HE
zoWs(XxV35yoVE86F#FF0RBN+=v2tu}V5D$Tg9AaMX7F5i#8U2S4}4Lt79&Qdd;}n9
z#}~e^`KBG(Z?TDnc^3DL`i86nx(ZMx<j{QgF4qY3eWp{fg)8G$+2@c^6IG?{(SH{8
zIqm$%sVlA~+>)$EFJ{iwR}n8NvHkpp^Eh?KH)hSX?>R5#)Dyrm>!+|d8N5HKAgNI(
z^$M*%*lTLjcnjM)s~h3cQt<C5PV-j}@f>^gD_#eR$0L99XvsJI{?+REQvG8@sg2qd
z*VLNFG}rN;yCocqtD)IjSL3Y3(I!G(>x;s?b)HfsNT{@Fzr$EQSx5k2Rx^K!Z(xP~
zW=)%jK?cR&?l{j_yt7O_jsgfOvo@r&T33o`*otM2%YL|=4mH?UT49VF%dNOM5bVxp
zXH}!HQx5LAd>Km<@YQtJ!$4)^WVk9TIousG#siq<9lb&HXqj2g-CaGkiPcdI1V^vK
zmPODU?~3ElTfJ+aQ-w(X<|@Lk;)Kl}Mq{_H<~e(jb8R||jmyo|hDiwqZVe@DTK)qE
z2&8bAdVCK2SmyN$tj9DA2W)qEB`#@o&Qfo*IWn)#Vkhe*bm=vYwtvg3{FbM@-a^M0
z<}@@A4P>xr>SxYZ<Z4pM59%)d-$(@jqpPN&fqmgVPTTU^n8~v2{p3C*0x^5o7yzQp
z?79kkpPVmQf59=If7D@4EVr|HKTki>f&ZWQ7jQga7Q1$POM91X)B2ThpBh_xnQ^TS
z$DrxfGgeg%R~>Ki-R)LV`(Qw%j%%U<<ikk2i@B3p+kYdX1MQ&io!yb7oWJCFC7XdC
zR*z)Yd=(=G0Ke;@-y5pv$?v9<QpBL7#tb@e@}JsXvq$R_tXKF~9rwPY4a!7{-G}Ry
zkc*W~{vu3rUa?N{cI=R84yQ7~LY^uPoh`~hEO^weoi%FS>R644k`h+yMd4^mX;P-E
z@+QMhI5q03a=qHsk+`VY=ZQ@<X|n^x8?GNu_9J`_B>eBx(*CFo)4fnd<B_kQ$NBFz
z!DWZ`bKSu#r&at+Qb^!N+|BzzE3V5!Z=Fy_)^>5#>msz*>*n;a%LrB3caE!V{!E2q
zug}Xyb6<X;iBkxk69K>Q_DG)_5fHSR^;b-(%{c^*`f&_}@^-`>l%M`vy8!=zo>TI%
zt>)4hbGm%>>G{EoM$@jp=^h*5|4!>LOGWZA14PH#+|>%V{##y4!Js+UHSpD>jAd%;
zHMIV2q!v%2M#-NkP`WF$5<I41Ew<dZX%dOoaO6(&+`(eQYaiW>e=`p`V|7Qn@5CAE
zH(L`<>aX46OTo@9^bXI~SVK^^ydKQj6}_j<igetlFIF7LqYXA#c%oOE^>przH;N=G
z->?zEu*KRstQNvn{T!ElVm{nxZ8=uW>G&SXs>3TJ3UMu5rp%x=y3W!k@-oIXP21e$
z?0Oz3pAkIeR$|5|Tw<jDhd7$6<Bp#3yLotruP5oS$3qx}sJcM2(YUzmaacP^&=w(8
zK2_2|tY-VsdEI%IMXYKy8<#zRp7Llij86&5ygJW2RYKyZ>b+`th~i8t262CiD1u1Q
zWe+Zwt;JrqcO7XOQ!A@0RMN+*KSuM}UB)M#tAge2+O%l*yV=6*`RiAh)+f(@%BZK6
zZx3m?y*`xMZ|>ld2Y4Yb-UDxpf&Wyh*Oa6h599l(iwa<XpiOb@vFq!Fc%<Jl@38fd
zwrvB^`Ey-BI5;>F1I=Cm9r<Vql)k{uM=%nAoK*e8$=1<bM6By<M%`8?!P%he<BC-b
z5*h3M*7<qA-&2g2nV5lk#6&&T9ztNr)!m{0b2roX^{b}UkM8dHQSSyav4>X`%1g>f
zfQY44arA5svTkDUk(fj*s%-Y_(xe-K10wCGFAXSg%`{$4V5A96g70k^Qc#!W=(~Lu
zTlFpNqKBpRsHvjv(6IT4<4;HiLuThRQ$TPAht<2;>Pc-dit!c}2>%+jZ>_8S-M!sl
z>Rc57l)sU##N4kE7B8OkhkJyK8G{KWI^LwUw0J-mQ!d&{@z({=k~#Pl@w#SOk<7cK
zz7U<FRK?qY_-?5npaa7HsNU4nIpZjwiNrH{IG?N)s4@eh;y;FtvorWC!v|9&#=d-m
zE;cK?Hai{2s7d03p#co*>%%0nat_b{WE8brpNFkxDPKE@7w7pe<Fzw#9d#Fb?=H-M
zsHiw5wZV#&iS3R*Ie5ZOf%s}wtJ(R9BZ)o;!5>4|A$Zfr^b(t;J{aU(iybiM)(yPR
z5K@9K*WL#^_~{7|PxIan$eswjd+rb2b3#D^q7s-DdK&_bJv}G)*j2LsSI9_FQz2up
zbPpS3vN)nr5e})GlKrjCeYOwP873$TW%3K~zv#N>;7Gp44fGv58)vhzH%>OTlZ|a{
zY}>Z&WMkXj*tTuk$*ujqxVP%QzrUxe=2Xv|=|25@&NEvF`!y0Uf0kUw*3@4)PN0(-
z^$#NCqdRNfPfj&K3CMEtBZp%{lej%5A;M4Qr5(4*hjD8?S+d+Ss6j)bCRJEDINj}d
ztFD|a06=_jqM&F2*DGF!0yOsi>FGn9J#IY$693G2F6)h=)~RovSpJ?_SE%N*WjzrN
z6V>Vnfs3)X81){e4x~z~OAb0RXii)Lbr-@&g|zLfu(q!V?dD@-^7XR-4w{=(rf#2G
z?RkoEJ`zAcL=^6HGZb;`sgv=fc+M`vkj6EO!-K!-$?&^9&@0xa!{Z=NKN<fJ1wg{3
zJ6m#hj=pH!!@q8J5Ve_uTvct9=sLBTq7nuNkQ52+4P!^RG0)WX)0`|{pJgB#;>c>Z
z4Y1*$**vZeFlj*mWZmI_hhz4-;Fog`IoW985P9Vas4ed>?@Ki}Xz-m)A9@z*!rDX8
z>RY&g6i}_40bNqVSbUxXY&y19_vt4*OEd%SVWF?s-?Un)eSYol!!baRLcj}!;`18R
zXV#o<jfi=!QVo0gA#_twqXCi1j!3B5ILO+}s=<ehw=k})L@+*U8_i`z<aZj8gbb2p
z>0;(wWJm7%27v@D9HCPu<&!a$vI=N}N094x)d9aRl>{w><gS|7ayvqG_n);3c(c2t
zlWqBhx%F7*<7T9w5~PE)hEg}XRL;xLje~*?#c)OX!*hulsT5eaUfq8}mM9z|{y=C9
z-PPufE@LpEn23ldS9c+i{5NzGg$(PgAtYtob5}N00;gl5Z&zIJ6G|r;7xkXB`oShw
zia?4S&~ZO$&FYfE0|ETBghD(~MA^gdvCQgLiKyHxz$FQKdo!#{(dpK#njXTHjKpfc
z`h65u2IFMm09m*w9Ifu1j!FIwUnQO@etWYNpl4ZtT_B(`E3IlL`*WYI>pKNUr(#K-
zm$^LHisOZm&^Q93blDY<g^jB4^L(j=yJd!RGwbzGqK@&ev>BQ<i9{>mkqX&)6Y!Ia
zH@|y!l<KUJ*9LH^!ek{4=U7-TIkPsLxjH(eR~<>gVmQA#E9nJ8^edAx_XPaOhJX!P
z=TNSS&o?wECJcjp(^iqEo`8=ot}SXNs0xwIr_#IU@S9m)@`*!7Q(er9LK4&%rAZe}
z=H~Laa}~jD0TCM=s!se)`DCnA9r9n4m2Oh<`EMW9jRZ<twGu6$#XASidA0K*C8uC4
znbovvrYl{YeR|KSV;>+zt%kIJP*1yIw!maQ2xlKIptE83;E_F2Ri<5=c3oV83YF$$
zQ6XL=_fxSI1%plwFIvOh@CT&N^l{i9-9=4M5qWv#o?@-f8@H#$sxk&Hk({h}iuC;E
z+&Cf_V|x+<VsTX*hJ`fgK_3JFJi9;6mE6)(4|CLFIL%Fr0ay0OfqhFULl_(YT(pvv
z6MN}mixCfPoB5Pve*<&OeIZKbnrv+;!gI9J1iH-s0#kruD++=O4onH(zqwT0L0*?>
zlUt^$W)(u29LDQ|XW{-8VbF!GoFydu*`Mcwk2)dcP1XRvT+pC8QVouY{RG7~rK)NA
z|Cdlj`2QtTr`ESFV$20FpdSaOr4B(Tp%%?oGkJk1en@JtH>zMO3}0{d8fT+7)5%JJ
zCdw2TCx$llTI#A<@0tAR4g?1cicy7OG*?n_Q?oqbQbeV)qJsOB&H-HYvhO2uKkdTM
zV$Rtj$u?E7+rM{($j&Sj>gP~{0?^W1_gYc#5o@~b{+@?++sE)6HtcaFv=h4aIb1pk
zDF^*W;$Z|^HYXmP$Xv8CGrtoH=69hfGijkThl7Xdevb5FjO7l=v9El)0UU+EMU21u
z5+qVxll+%?y+IYx8$kXmm=_t)Rq>0zx;V&j)~=8gnbc^UvW4omJ&%Nx4ouMg(Jk|N
z=J|H}Zmt!yLakBnRYm07-|}0%i|c>mqBH}BfP|TU38`r@0+%%u0i?a!eWT_*qObhA
z+8tyj?K`BJc+z^`8R?79hV&fJAybP#dg<!CPte<>C2kDAD}|Bd#>M?GsUVrg?cOu7
zlXp)_iHi$J6&o?5Brr${0ep(p{QYvdlq;O&f}y`=5~|hJQi46Tqxk&5QvocM5`M;L
zEQ=9Qm3;?o%9YVdj^6oZ%_??mU_(S0&)PqH$x9-YN#D1WsXtfcd5xJ&?@Qe@4BizW
z6LTaUh9WStXNrzkvS<PxtwKZ#&0e?2Dwn$|mav!jv(7l88CiT3F<QkhJkRQ~`APUk
zH<kW=2!E&7xr>19%B(-Rj<^*XhJC7@&kgdM+3O3l2pf*3dCZaL`N{Z`rZk0#%$k>p
z#jbE1b=-z||8~XuZML@kb<~93b^l!sV$s3qZ`*k5a#SuVj?x&eT5Ie1Wa}_!012~D
z2m@4B$WuIr>y)4w2ai61w8%khgfikA76pLhfrr1Bm{1Hj@@$<rcydP}-Aau7W)`f4
z5RdtAnXF0Ker=-DcxUwbq%s<x13$EF{{4F_=9Lt_u)OC_!13A)2Slt&f-A<yCW5+d
zARoa8H}oxWwr2Ca+VA-m;$3Ur-TwY->nbhpUd4sWaxqY#Mm0jNB=PnzzmeOmkqYjv
z{f3%^CtgifF@oy*=&(F_*0*%oQoV)2>K9Ph3@offne*ShzY4`;l15{X13_x3q;2wg
zQEWWnZj}=kb<H|nv3`}vF(6$0fdc;Y>qSsLn&YNY>n&F2t44qcN3DQEg~sioTsImS
zDba!V&LJSw7kos;Dn>|^VkpKsj=4AV$L}ZzC#Gh@=AB3f(rT@;HU|Z)E%eoonAvI3
zj3r2*qRa>rgnfxdX*@Q}QBVUFVLjCsrwWNGZ47Qqi%!#PI<U{p=Vg4~6r#GvVsr2b
zwCXO3M&2hLMnlhh_;&NdrPxhY(SPf|B8~kYktVLPV9aD|Cd8zoR7GQ;R41(+nr|ls
z@5B%VHZ(k3j~KMoFOrYM;r6ZHG|tWd9S(bjmheYmxuYnJS8F~f7KG#Eom}hPg_w-%
z&dxmpC3Dg5>JUMtIG1$O`;anG60srN@$q@M&2<M))U=F571chX*+g&V9JhAm&q(>$
zg<nF`liB2QZsTe^ni^sK{UzJ67D0QrvX%DPStq0n$R+dmo@|UfS;EXUN6TNW7k5Ky
z`<8^-wJtZ#PriDRyM*e(uoJRQa_Oe8ei{~NoG$bI3$vm0#H^^Q9);=U?TiA@{9>Ug
zB(dVLE8iTRNu6f#eLg||<;#i$nbTWxiwKw~*{QN+W{<7s!;@Zr@DJeDG!Qs9s<Whg
z!%j?y9V9frugCj63>!Jx4?=IGE>hy=eLBo56bouA=OK+)m#|Qi?3$j<|BPlidkt4{
zXG>JD4GaB$Aus7Mu;?oPMXQzIb#I&mMUps$g#}ilKKBi{q?K5UxE-MhiD*oH=ke9n
zIEPn36cst^BkI+xwJ*Wi23tSig+l9QX0Bt23!_6l<A`WS;bf>|D4jyR){{t7O-(IY
zx=}45YeB<pt;8*o#wG}F!0@~>8XX&ZVLK03Nk9a>r{GVe^#oSVU<l`M>Z}kJZyj+&
zYi_@`9pi@c;9X6U1ASP!+Yqxs(%CnJx27I2TGm@Qt30p>Ds(gHwYFl*>oO&v^H$1E
zNfottnXm^SeAnbM*)XDo)+@3n&qReGD-(L9>qs+?;a~EEW;{u(>emgN^mYkucspR~
zH0aGi{htrS%b@|EwPB;pW3`jZM;ab1Rs9Ow)XIE5$S@**5kC~1s}p`?%w($RXLRz8
zJGdsz&R=!72e>Ix#n_Qq?25wB&-?QW#!OqmYi+o$F4s}GH;+1RKMzrEO3z!r#&znr
ze-(ad>()-niVIYWPG{$O_e6xQB~m!$oPnS8xVUz^YfOB_t@q>|I82ViQg;hdZ}Gwd
zX}LF7Il6qddGifyYbtr}3>~BCMq_e7;7EGfbV-#T{0^Fx91nF+*umK~CWS)JfskR!
zxwVL+RS^<T8@FfT<wc9C!f<ApoBDM)Zm}Vy)})>VgdP2Uez(ERIzfaRK_p|x{UL37
z!|+r(>*Dc5O4fs=49x^y3e~?<x_Rr>vudhSV$s^5jr(I5T&fP{wqj0i-P6y7*$g>|
zw-ukq;Q9oY3!!U^+PB@PNP350Qbp{(@xl!!_H+A!s!XdcqcP^PBb25m!Lha2nCAvY
z_p`Ny<ZXc+fA;-$K`Pp&HC~mb3U!e82KsBOZlHqi&ifzu9J|G7dkYRj-sNo_K7h~k
zZgQ#C5Y^}lg7bTl=nPY8vxk7YPnZI=88^V_GR`IZNbdj7+E@n4xaQ};LO7Wj)hx6Z
zzu8k6Dpbc#`ir!#p9b|pI=8o^hLWqKYzFfCeh<&%B`83^maRGYtxAh&_8LhU&Bkgs
z^nZFQQVH}Pm+192_FIdAaV_%-$%8}k=eBl|zt8beqx?+mD+X7;%<9ERgxBf$XG1PN
zeryy{NM8w9Tdc=h8|ybXH6{5K(?7rNf{9*2jM!vR14w^&4lL-fI&WY2>K)wXQK7&I
z&GaRiiRl&}wzO3wt8<*Ck0ChPuF<(KfPlZA7IYXtg&U7=awu!ZpgwO;+#AQUeu=kh
zV4J<X0eiNE!?A2Y7q=(U$>!L3sA%`6jA(c46Ylo9X{2Id($%#aD#JF;qS30-^4>SB
zai;UIVl@v{z?7n-<39V)HJ%J31_=mtez4LXuW3+kos|y#Wf;)KdA@hgkX$?|DwKD=
zU?E*Dr+D4e)ct_r&)C7MSZ>_oDoGYjrB`cKPb&VnukxVLNTg5y{6`A)G4k{>e*r#B
zGiR?eEaPy{Sq_6HtJdIAk&^Cx5H;C<dO=Ad_=Mq`&-dNy56cWSmiP)4$tl@B@IX^J
z-!B`eGv^eye`?tJAKxk-%8DwNdBd_@tQQaFc3y~rwgT8VFNPa48O(fpsnOYy$;qz=
zsp!0VR}u%@&Q_FvF}kmnH!PUlfYZ^j_iU!CI7@$*ZuNc%TBt37vR;t`f4<JX(Bd54
ztj^LV<o{=a<R9y3HZNHfMD8}2*4OqV@bND8HkrO6P$kA){GA{{^^jnH8wLMw_4lkv
zkoA5x^$@pgUqow@Q6j!$DC*r=+j}l7er~9^6Hx@!lsM6l$>w=q3@^C*9}DoEnO#oT
ztopDB61&|&6si4kg7Xo5Wdf(+*Q_MRz-XweSAWsKy5G{Oal1QCYKyMb(*U+yoCp~#
zZ>AH9bW=KmdtO0Mh7T70Ud!o%|Im#@NW03ROuaUX^|f4+<Dc;;m}c)8;bu=g!_lg1
z;7!I5H>D<Y`7#N_m+uYv=+xPA`UbB23mC9&zJ95Uc75qvZtZ^Y^ygR6JS{`R28xTJ
z&ZKktVlz22Ge}~<%3}9;N#bB!MfB~5CpY-Bws~eI2akHww$*NtI1+RpFYLzIEbx2#
zbSbxiglu5p*>!Zx@z;p|LZ;@l26C^@cQ1E?^9K6*Jp6x@AN;~dUok>#dLmUt(^|QC
z(Pt)H4a5A0{tH!~%ad_#0+=sf{dbzW^b9kOnVGe|rKP2zpE4=wgu5-5jsp0tmr_GT
zv&v>tZfo%zV=XT)+hlO+3RWTnNYH)RfqGqm8c9;v%U!`WIl4_B@ygb9%m-ec_YD+O
z;UBlMa~uxGdK?B9h5a3DRhONnBW*><(BQeq^+TFaYF$OClrR8b?CtiFQ+yo#L(*`n
zubYWSRW)kP!!CMxix0l=$H&vT*B7$O7uA~cqWZs3E;?Mq1_>H`M~4rKF?iFfeY|@4
zMBEO%i=Oyoep%rnTW)3=oSyXd`BmkftPX{j6W<PjhMz@<0EtFY!T^^<sxE8)Fk)L6
z9}kM@o&*c{GZ(D(K<DXt+tR-SlehZh!o>6$PVtC6t&y|GKM&<HQMV44)ey4(H^ILC
zETleOUbd{|niHO$2rpvQ@7R<c%erYxwAK#UVRbj|cwUz$KnnRpqN(W-pDs@(ga80z
z(ZZ2vwY}=kopWRBNwp@kGa?H4)7YdAh-~dm*Jr{_gPvx@`G7=oR+nMl(=VG|FAw|c
zjF;h~?qw+}n^()c^1_ZYEr0NNy&*SJR-=SwH1@8~@1wlX4~6u_gW_4UyIyY;wibOb
zohK~Q^b}p4unSrCdoZgE57vz@Y`mU6%%>KeqcfVMFXUYlh=kpzYKfb&Jf1Lc?#_D^
zs&3N<j()Rd{yVrQK&qVvwZ~N?wx7Lm?vGInE@$Te2LL*+<D1IgvGI5$nKh{6s@7G(
z)xB)ic198SoBj8C7SFmQDJxT!6N93O?N02DR8e_Th4$t~WUM^4t41p|qb#YfmNF2D
z$O0IsP+DSI_lH?d9}=8>`(p>cElg&O4`9iSiT5E!*HA_tTjMz<IBHps17AzVlf@IH
zjNcmUUblCiQZe)T@|_qTa2pbDxf`EV<xBKVrHu~mdWh;x;Qp-^ePbdICOLlMx;;!4
zU*n0|mR7C44$!uf9!KL_r#v3qMav@zceo@nxUYeu9xhe?00<m28ZG?HhHCm(+v{ur
zpU3?sgTq=0nD%^nPO35wo#4FyaL+A2VI$#<(MHV=ZCK!nn=SHSzt-eh7Qbjw696K_
zVcKes`|5~5flkp_$rt?Uqxm4TME;otOVMGsr>o;8He|lO$tn}+Z~q-+rjZVLK#AjJ
zj_7~{T)e=>+U-XQAtZr|@5P2(j|hekLl%7}DkA|w>cB60G)7+UF%!mt+9DhP7@$9&
zhRNl9I%Lu7@y*?wm27!h9lR>VG)@xneCx@7q-QOb?C4|I6i`iUi6tN}3i(Yn%>c;F
zjT#T1V`??GI$p?nqSu}|{?|-}V5FQ9EP)hZ%8W+KP*9WZ1)q8H;P$aku4U~rIq{>6
zTl6eF%r&|tZ!9Z%22p7|aHBrefa}vI{B)6HC}IfIgGYy~R*QSwD%Zo{H~t<A^Z@`{
zGO_ClI*3oA_3PFrSC@(O9M0=AT$EcCE%Z%`&D+jwz~{^;$$wo?7yoTlHKqQ5uwsJc
z)M$h+OkM|fS0Ym*8bo+#o<_gBCC^7=b*_E1X~ass_gVl*gwLWTUbJXTg3?!#t>Fxp
zEei~&g!u$21$cm<q_{*62cxYN-Y+Ie45@vObz*g6jZOE5*RWA=2j<aPNgMA?+Pces
zpj}^A3<g(dX#RShF?PiL#yD%iG-p*Jq$;AZ(2Hv)B5WneQDU%8eh<MYVd>ZIsED8a
z@WJqNr4*e%Bfx~ED=T|z`(XG9g-bny9FnWv0*tsEe8^bu-2Kk18PL#0UNYI9ze~&y
z6(ex;!T$HN4^2Ad(1&NdrOij%)QH>=K}<Q39qqo!nbbBGE2MHcC@bQnc&83-A__&l
z(DBxoF@8^7za9L7#b&a%2XSiYHUhFG92(kx^L|K;wOrTMl8Tq7{?ProV|S0O|FY3L
zI&ja-c*<!tyzS4Dw#}-=Ylj^dY{BJz3dvcf>nVj0=?34_fL)-4hLswKSR+7?1`;<>
zuh3a(?$$VjErAVD$TW1^xHy4KnQ|v{qMY*|>tb#N!H~$%hWEsV7;F7jK@*g*{6i(1
zSYegvf#8l8-41ir-m1vR(IOSWef+Zf1zTg(&r}`vuCt+WF?$ZrP;|p%AN`SAUxRhZ
zuEZ0!9S<j~Snd3W-C&EcC*3O68*i5UxOQ?x*e9)LI<-Naz;Wly`NpzZYr{*QV`K29
z08P;w<8IA<Eh2lo_WBiHH0R$Fm#<7r{Tk<&-BD4ahBN8;$^?CB$li(oW8AsaGI#9c
zHmDXQI+?N2W~4`+76bUq{HAKtBvKz|v$-GHCiR>vWkuzB-!OXBs`|CGf~r!LwZf+S
zaXU?FZat95{2i&A770sIz3wxkEO_;~B8lk}>{Qyr>MobzuZ`XtTV%V$DY>Ic8Gdm(
zM3l1p7#4}pWoRaUdqYyZ*PC6*o<oounHZm-rR+Y%c+!CwclgP>zZ9Kq_d)Zz0?jYy
z<Roo-%qyII5_$d!yU_ZHBzUp-W!tYyY3vdfsXd>7Jbl>o3A2l3FG>)yVHgqmCmP7Y
z%E?qeL=ep)ZgTNy6UD~Z%gD}k*LLP6%)r+J7kw>jv)u$sl!k92jQzWx=@@XhwVf@d
z$93_Mn<9ulhtK6WM+$?OLLa?dkUZs2f-!F=Zv!fa<{KJU`#mSam|mV+KbopWt3bt3
zvNE+F&m3@tF}YRe4}JH@bE_4UJ*5*rd3X1x_vxY=6H1Vv0~GfnUsB6{$#wDkb~rMh
zPI{|crs`3AMPNn^&OkUolIM*DjlJ|Xitl3bP50$35-p$dG|}ldiKZLl70vI0$@<va
zN+PGxlDJJRQ`dj(5-?*mu{q48vx<$x6Dt>y01uIb*1tGgnak&-fb@rInDBUI5QZm_
z3h#tW2uO;T&#l}nbYVQDiXTkB$lQbxxm@l_=lXOcPPBym_Zi4c8sVT<67)=ZTpq9{
z79~LX<hEhxbr>jYNy2b5Be62-bAKGY$hH?ES+`w%q`t_b2(EZ^X~*k3etcY4ZqVV*
z#YH&XJ8Sz2y%5grbV%gJzNR_M+dw|xah#D8R57#`QLS>Z$klle1^^0k_>9)udmllT
zi6w?-8TnU-mC1NQ$uS&Kyl%hbOBNT-qkoJ*iO}Ek2)4rbN4*zwkmMea+non3(WEkt
zscK|pqhC+lie&WX1d>7}>x3f3I}~QJ87I~+eh7RNpMY-Kt9nw&wfX`14|P%5b>eGv
zTRo3q$ke6%t=Ow88(N+Fy8RBIw1wCj)@t;_x&A-o5^(P3#-F`ZGp#8St$AG**2Dzc
zoMrQ%VSnVkPvE+zd<P{ke@JWn_3-^R>YH7`b7*%}$2vYZqc8xV<&h>k7q?lz=35(c
z=4xQOdKoQAB;PtSwoRyW7zdbgwtnZG*u0%-aK=*NHFvlr#Hb&_)`5coVrH>^IDg#b
ztgn;}hqkzu$bH~pb_j%3yD{fJR1B&C09wVy0-VJ_%4x~3^1a_hS+t!wfoy>6D@QY}
zA+F8SlId{RvFEBj{+E?(7;~*;034WdfE?GRw`?wnieuxw2+uA%ty4t=@hOQ|cJ=hg
z@BMfJp*knOpE7#3)H#<{|K|o;W1*Qm4CI6nvtiSyN~&T_*}_#Z);@Mc6~B#*+48f8
zk&uXDp?J|h<)pb|F$rd3f_-bUYO3=zHyrB4%TC>uQ5!y`bT~ioc0kQxAvaz;ybh)F
zwMEk<)=!0{(VkamA5XDu|B2uEVr|;!JP}5DW%966#rpF*WirzL<TnKK&fvmzixI*s
zdG05sLttI>+y`Zo`{p3%g25!~{QmbhygJde_)!CB_k*;W92H&sRIuddgN#j_fy$!P
zd90Of@ljwvp`IS|q>}(X7|nBSZvE6_=Y=zG0o-q8p?|&_+VKCgwuS)_kdGh${d1Hl
zvb-XVWwQ2nktqVfb#v#Dsp?p3pjG2@?`UH`bEmp<#}*Ap&i9QN-NanHw60JZXgkeu
zR)t$-+n;1<|Ne%6H$}PsJO~eA|N8%jWs0Js@U-zWp!{yT<=QG7+8df$)cQ`Gw}aFf
zb22)K-zDE14sYh^?D8;aGS*~t{CgxmKl+|~I;wBLKE>2KiYDt%tk+5^$iUc4bLgxz
zA3o%M0<xrNRp0FoNgqO<;~^d9b74|yKprcb+r^NFis|rwmadl{EK64(t%Z$@Lc5<k
z?mjGL{Gga<MKe57o!z|{i*4wcVlGJzaQ<eZh4S-}xS^_d9K9XYUEhs5g}pC7GPjtX
z;%Ymx%!>hiU;vFXTBF{;j2BEwUF=}e*a|<??Le(hG4r#=c>zSuPz&I-Mj<;wk(K46
z5UzpKS8+yATo6KTbF}QY>Q}Z9X6U|%QldbY&2Nj1(sfHoeeC2d1~Cee(OO)8eTCa-
zcfM>nT)W-iW`!D4=c=r#h;6NJro^>dy>45Osy9-oMsW6qi0RK-KHJ=$Ja*jtq!GE~
zox7%sPLHUW6?I@R6c0z)+`N78iW?#a_*w>$zjY*?>FC|sPR=OkCOWFu=zYH(%nrUp
zcSP!UPM##Qseb_R<zs>!IOEn=f1B0Nj=nMEz|}O8RISN(=}v=cdG;l5oH>G8uL-C6
z0tE+M@>^11(=N{ISL}5>LR&V*R&xw781Tp8g<91T&tuYk(Xb}y9;rzT58L!KIXe_%
zmZRA^Ws%~#Csc|7C$2Cy(6j7ER0{BCsr7}rQ7BprwAf_r=<&py3Vs=xur#S;0X<^b
zbzxv1tk0VEf;UUO(vaJx=b*(6UM!Okvpwq%=?x^@QUa|_Sl%nnz35^G-oZ{QVsD|e
zdJ~97$BCO;CM3%6)#5zop$2AqtJjU26MLDkxsj1C4lsMf;k>w_-Jaa3ojem5vEVr<
zwNyQ7a#*X6PpMA%wPP0kOK;38=EGXTk&|;Kv)g<lEve9i&LZOa4!wnlWO}>FNAi>7
zBPDphYGx+RF!BaI8#u76cUEc$CSjGeVatSXjGeaH5O41S&X>msr}zyH&}W}mtEr^B
zESa>rv>1C!Hf3D2%CA(jWmbX&_-1PH>Pm|c4+}11H8L^`1Ofq{V-A|tmL-<ksK*D?
zz>|du#v)6#K)U6pdZIAmQ>Tp14_4)q*}C8xb~QCSdWD1vWXF<xeoLltKgapL3vTOo
zlG!hZh?+mQXX~X_8yD&JhfYs1^EfBgrYKL2?|UC5=<~96i=;G}Ih`-ESPj8rq%s$+
zGOfOP?)NSHtW4TXNtI|c6T`%Z-it|)2**NHYa9uD*-0pJR&Ht49(8(vmsXn>&9K;L
zvmW*PohOElSF~z9z2JIokFT|al>rxo8#K0JP$5MTR@SUCKHxdZVtm8dHM@$+rWj94
z8=vHwRz|b_QOcL<|LX-z`CQ#3^L}gR!=7E9=2T~(&3ZMr&g=eJwT6-uD3~9*UoHC9
zr}?;yss;^-8`L_!Y1RLr>dq-xID>go@8mEZF(P1<$(7x&&k>=u)#xJUb@L)RGH_+m
zDBV#XcM0hk8y;ruhL>-tw#wdP|30pW(`Tp$h<Bt>nE!@k(PTHjDK*tV)L>@4Uar{H
z2scd<ER@V_S}<#t{Ob647d2Xo(XnpSTA7l;^=i`m74XrU6Q?>npN9%<AzIJ6xFs)7
zOXYUAmVJ*^mmk%|lVE(m%zA7m(rbA2EM0w5TDvPPZkxWDS(RFAHbf)6YF`Y@x69+H
ztW&Ypvru=Ul+T}2l{dsNrnK!<cWmumQ3{4U3pwVXQJ-Zw+fD>qY;mXqK`k0rr5IMX
zVbX;6!Gc%sw6t0+hvHfFvxnw>B~&otFwuK1U2D4^dKTne<Lo+wO}1kBH8U3Gz+=p{
z-W1$uRA&EiU2vFd5Rfn$4{2FI>H4WqPF9|ce0z8B0Yz#MkGESmwo*!?)Bdc+Q+&l1
zQJGiNKQ+Brnbo3Hr8oC5m>qh_%8o2b2nFhE@{Q>@*xvn}CmaMo=`^Y5<*f5Z*yXSE
z(NP^rMDnqPgS&YK2Yi0}5R*YuR236+*==K@1N3eO9o)uvn8*MUu15KG!|fyTdgTCk
zjK){fuz0Yn;67+*pMc`2kv9Wm9tjMtKKm}k&RT}v4bN5E&CTLeLXB70!r4K?-`Xeh
z{lQcNBDutjL+%}9HK$2=?VW$n!w(hFt6^FRM|rf?yh&C006tAnmBXW?ZNan4j3>>q
z@Nhjwy9{FR%XJT~YCYtUwy<_7s5Zo@FphKEH&<j3fFTx!XdU&I9KjXIjTsCIASg+0
z=kPd_gG2<b1#T<dMN7Oj?T_3f*@3=26HYgonkM<SWGYZVGSB=o3dyTnFBNY2&l2z>
zn+GO>mJC4A=Y?dNU!siIpX^nK&w478&X|0erMrdkc{0$2Yg_LPc5JsNkpu<!tj*Kf
z9G9o7Vf$y?C^3C3nDqp{j0C^CS3cRp`1CQ+^VT`_T_({@kZ%J%rmIJt>TNp$0tF@L
zUA`po19Js4KM_m?6CtoI=zguxs23*+cX{Drkc0R<g~W`UI$D!3G+QI$H762*`J^<X
zfCc*t;!+P=^Nh@Kv_#aQ@@zU>i3EHFQ0nGavr<`0yL6}4QTAu#?;;R}pXqcu-!o{z
zen!0Gl*>YfcXmkG`8^bkfB-)$AX^;rg0t5g4}=*&kZ^HhtGp}@r^I0#Um~2XQf)1V
zeKpkVfRLzAig~sgC%^E_&yu4TM1e*u_8cm3w~O|xC>emy!Qh*&gGsJ=7Zi4OVyUd3
z+ad43N&>ff(_)jJo0x+G;`^VA8vRz@ReTcJZMX(PwhvJj6)8oD2Zl>emvSlWlRUqd
zI;A;|yYp`8X1oj;fN%#b33e|)Q&n9xrs`Mc3UmCLQ(Eaa=u)bpb|-D6d7m)hXWVua
z5&|H1HWhIlvw@DA=XLB>50rqC-)h-2yrTk!ol6+e=a6fyspF)jKAgqV`JviW7%{9w
zWt^UpeZ#uyG5rT9kQ*<ioT=<ky*MaONt7Kl8g6=z$2&v)_z*_?W!3<&6%*!Q(XJ$R
ze-iFED5F>A4%Zi7Lqby)VNz{NGZdAiIqbgBfBfs_qA=4PSN5iINZGl>q*?H}a*6M6
zOV*8b&`|*-%-(69mUq^~iQ<R-kB#^*e~*`-v|cx~A4H@X-WD^2=zp^V#Y{xs!&GdK
z79QFBbQo@%eXSHp2IF&(3~TQ%3G9Vxa&@H;3>-ubjCQ68)3akNd(bOYVK95$m4R6K
zK=<W)vl&4p+AZVZ1#c>D#!)aXW!2}-dXtcpoS){A&BDRx&S`3-Cqy;O-teNnd_LSz
ziicV`nMFsXrW=0iDKTq~mvrM)OX|F>T7J!)Ko`e0r@Bd&$+o*bfhW#|O`op0L5D~v
z=<kCo8zGAd4@owwuPLuHXB+-Apss>}eN*z#>Kw7Wuz@3i_^znwnED;zHRfl1ZQVlg
z7!F-zc*O~CuS7Vzi>sZcUBS1I+8uc;vCNzx5a5^k`m0lnx7%yYjyYwdE4Hiwr{m<o
zu^>mINmPX*7971%+k<6w{ZzCP?nLceGYL#tL!hpq?ls+qOwY5DOeqq;Slz_fw=2l2
zbblR&x+4z*CJ|oBjj$g|mqkXY<-H8<Sdz<c$<*(6|HocHdyp}xe51ib6Q9b`42;z-
zH}6NOdXkGAKXT51K@2ctbZ)uqS3K1`Qj4+{&}=cbHj+^)uC6BjXVqf2Cf#WQf4T#`
zY@tvajjD(TGS$}?J${6tu)tB`=f_jaKtyP)t<r4?1xDjS0v$f@z9Mr7G{4Z#1fju+
ziJxMrVvsBgZnaC*lk-7|hd}`bax2SC1*P(!%VUkW;n-MdvgcL%!-U!4^A+bB@k-AE
zf=C&;D1MSf6sv=h9eE0@A{Kl$x`HM1rKt#We?%yYYTFG=r)?7xgOQRFp!eBrVG?f-
z`Lxx02<Nay+P~1zP?DNBw94D=mt^OaHV{)#@1ekx`OoFw$WxzN7C-CirY15YPDV%5
z<uo>02wS;DR>b6huv!#5F^@*w(8<XO&)=68|4#TtkM$K8sIUIvi`GxQW3D|V9`KHW
zt`#qBtE<EzB@%~}si>qDI&&2*_RC;8&9~%%Eh9TQR_A@D*f?S3<H`Pd*SSoH0O`{a
znn6dlOti8k+!`iUR`V8~a0`Ynvl}3Q)pn;H#^*8`8)D}i7#o3Z-QV>j&&|I`Z?y|L
zD{(0)r9vZ%hXkeVBAfUF;lV#!V4)1cP(D#dBsYF;=gS9v|Lxn?_<n#PTBWHdsar3`
zhE|4OUO;sqUOz~Z3^D_D90pCE+$Tny#IcZ5(ID{n?!=fJW?iLWEO09bN2m42Lv#%>
zxwTVP66V9!+p_uPZ33M|xfYSq04Q0yFp-7~r>%EdPrOi6tGZHv;y?-etWqLCk^~8t
z*Z4YnxseT9vUPo81{nT*)|qG4s<?Yns!%x)VA=|CN<7+JXR0<Z#h{;wiR+M=dbN1Z
zc$nQswY=mbtBlG3MD!cQGDBLmv-9zPNvT)NER|QcJ?m$dh|3s^cDiO`DPh`qE@14m
z{viYoj1QDFS-s@>j0nsA`Ss%`Tk>Gluu3<6u_OjAI2VL52zxXYxTDd1fQYbIss%;}
z;}fi)GkEqWaj_&BE?Aa4=`TqZ)Tgjzu!-Fp-)@5##TNm~V#v&(7WfM*bED$n-*P{h
zAR%}t+oG3;OQ>j0&Vu70Gdq;WEq+6?D6%W<35S69s3WS=RxVpd7UOXO0P}1Xu?YOh
zOk+V-(6>ZMIej@2EXqFgh0-73atiU-RCI~s%EZ{w%g*-odKEimW&E?|7J={x&ANgO
zWok|&;O*+<Vk$*B6S9Lgv?}~;8I!1`^$dhtR5C@ONc#dgnuN?*0J-UpIS`jpu1bvi
z2>C^PZ%Wy@zh$IsI&J-51`HT~0*Q1^l7is~MEt^+Ddi*&*T)qyw2enx9w%#|=8HR{
zD(jW+wPfj>?5TSYcqOTX8kb>`-xK@@B^bVZ%Up<<pv@ibikY7;X+R-kNRfmu?G!>I
zlfX4&76K^spk(!Hih%|{Y(gEM_@!@WX@?AjWa*OM>z6_bkMS6fjtyu$x`^fTW2oq!
z?*p}}-tW#JrLq{u^}+h}Yh<`KOhOgENf03I+$@!0M|CM!JW7n-?9KPyIEGaS`3QmN
z{0tGCtms54_zf$dDZk_rimjlM300$B<1cSHly257K4&IOy#Jhif%oe0>8Ca+S9dtJ
zluMe`^j`JS9UXRq1nMiR{dRq|z)1nCOF~GER+^v;8StIz>7{c^V?+6!Y%I0Yfy$rv
z@@H|3(czpR)w9*FdkQ51Uubd$wTLu%kW6jnr0?ig{lChGiTJ&g1`H6SAg|0Jh?KTK
z@$l!Em+I3>!%a<UYi_8$giqB&Q8sQ|L4TQl&l(b*nKDob;3)OTQARl9nzXl^%pKe~
ztQ_1=2;Cd=8vP<I=S18lu}PaBf=Xx@=@zPoQ&9_vLNcGIprkEjFDvQ1b(0ysTB!NR
z<4H)7O%9T`ed=72!H`cmJ}^p!4n4A;8tshdl2v6Bo}nYFYi7vYnD6?7Nxm)3Ty(!B
zB!DQ_3FE6)<i-@-dl`@1*UbK0#YIs`K?VN+xIpx%;<?>#EaKeWZzX(;<$r_Guk2A^
zQzo#x_syD7a;6Pm#E7w18y3r6jHXr`9j9VQ$c^V;st<$KIoxRC)&^?PApoDs)scEV
z44^;P8b2?CFR+60R42B8v~X(x5piBrSeIkLGBTl)=M-)YDd6XKk~yZOc}7ALj0H<G
zUI`X!>)!GamGQ=S<_2og0wgE^WprpP#uo(8j!94yX*gXed6+H+=cWCD)pT^CT7fOu
zCK27JDq`WG-v+YiJD2Oc*|_%jF&+2Pm5ABT#o<JuYVm71Es{A$s5C+t8YOoYM!{Z7
z+DHT;l|5s?DX5$j&_+Vl5MpLD#5DL`7&mF|K`TIfLL?+WSk1JoWHiWBQ64db06SX^
z0aGLUot&aROKiZhV(C7OhmDtb=<(@Y(G6Q7-YCQH`(#Meu6Zi9pfrsz+5)U|!cRDW
z;E?2f-}6DqHz=@x2WF1r?zB7X)>~zLf+V0sjQ!X4RL;wjWUc9HWBEvzp_p9FJ`IO6
za|H^9K8J(33|&<CcyCUYKN7_B^s@nWV5x-Jbc4Bsnt(;z&Pai}c#N@7zs)k@dbv4e
zs$r8fN6*s{d<&&cu@aaDC&x)bd#BBZl90Nzu9zuSYDvymDnq2zJIBs8NDk}<QSvAQ
zWdq@()o)0atN7aXG?4yM338*CJbN#Y8Z6g-(gH5ZvKlqtPZd|gVTNn@-UY~9>V6ah
z%*B)JDh2)YM{$dMC*3|lj{jJIcV4IR>_7q<QcP-`6%}KCh9=9=C*C{S<XyfTio4S9
zbkr4E?x&@7Z}c4#TGRyO6vA@G4cyY#>)M;&@87NuK_eXrkV3raXUgwz#`Yg=!D=`5
zeA&p!@~Fuf;XVzwQo3QHXa4?e7#c0$Gv+ZDrZ$7kkEKWBZv3e0#{T#v2nLuvVIQt=
zv^CHZkq%9mFZ@KpcCFQEh4<N^Kc9NoBzasIyO*{)oEs&$HRKbKnv%POMH2RX1Qn@r
z)Z&rZdsQh-v79z8m%wHxGz<H)78E9$AS7xS_i1B$p5{T5Cdhj6!)OJ-#X)O@f}vQF
z(Pl_>qoWoro!xL<p({7oB%hWC#(pie65E&Owi{WxYpdfqekv!-Mg(Gmw|?od>oa??
zTp1Gd)X6{K?z%Z^l8RrPAlLFtA2CjO#J*ez{d8KaGeR7Xk9fVaR6z0I-=0z_?QM3=
z>_e_GWfvxDHI+G>xO+Ps*35+=mDi;P-bQDs=%6anyF6Q_Gkx-jU{WoASy{$>Zi)Y{
zy)2^y*}HbGYQJoA*=IRh=$)FA$CBzD>PgDnb7zcLRAmT-oF|nD4MBN(7+u=r&G5=3
zoi%$M9b;%DiDCLK>5l;}wsr`9oRL%co;%_Fo#c2GA)B)vosU0oL<&+GzcL;xGcHj@
z#6;r@mI;}(SHgUT=~`|yYt?|u#8Nf?`9j?lHBU~Vp`M}C%bq7)Qog2oZNY6u=Ul+j
z+?fF0^6z*Fy7$_UK97v)8f(`3rSNWHSgGl|!$;mP8uW&VoL=WzQJRBBQ%{@ld$KhU
zNZl|u9o!C&DT$*bos&BfC1hHkHqJzz9A0$Fg>(FI7dkL!O%@wzdIJ?PXLgZJ{$$c7
z@vkQS-V8bNFgr3$Z$zz=+O2->*V~7nQ_f#G`qenMZ_Z^wfa06LZ{tJZH*hvmr?gHl
z6by!DG;L97JVPNq?X9qV^=<d31aPaLVz!ks{6>vJMMa}SHfj;7+G#1p`DP=Ei+qW^
zp7{%tW$aslu7O)io#FepZ;A|UQkS+?9ciAjTC*dkm+sa>QKspOrkk$l@pOH2jv9@Y
zG<T1#S<=O&HA1-I#w_xEkmf2C*y%>1hHCjd-bl<A7jsG%OZPFF0)s|V&0cByvU8dZ
zsD`Pjn(CX|sBX!DHa1>v0*$K2uR0?~-1e^54We@W2}z!0(zY>P91lcVh?HE?*Xtjk
zW#(w4A5RLtxqtUueG$p>Iy@>+hWk{le^-$k8J8;i!S*~UlU1+!!*u0f<HoPZ{h*)^
z@L}2>sQDFtUALfmtN@`F+r%~bG!O>D*Rx&68J)(e9xc`F3Q@A{?DWbt)(ui!+vC9_
z6F1pw$|Bw2D31?0&(wRW0|NNHe)KK$=3?y@mA^|#WnkVutSplgtK3_M{aF(kadzHB
zu3+E&;Nr+2q#F(M@YMgjmovvPw~Fc4)b`F~@H*JBG_uHLqUm#fO-)A+4;B`F#>tWP
ziVXk&*N5HAQ<C_#plG$HG8QT2IOGFtAppq_I=ew5Y>k|aZo}d?EtS~ooy}lYI$?%U
zltcZ=u7NU|10{dXBNiPM@p7vqzEwUyxllir9Noj^okSdKflz4#1m6`;*7Z`{Da*rR
z$>^Z@j6r*Q!WE_$(Y`<ln$P!}%}YW&?qS2Bu@6X#+JN|Yqz5+1l>{wMY(>oOFC2B3
zBWoqQjoGPE$mk@2Tvr?vS1BvM=~ewPNMLnv)~(r$Zz8xclL1~<o~s34`~A~kl`wfq
z7MzO}?{?a75}Hv7_>TJXHx0z;jAxkIv*6Xm>j9as$3Lu#X~9sF4F-bNJOzsrlKKvZ
z#<hyzSr+7b`!dd&od+AWK1g&QoK7So?_70CRgFXZFripy3nv{?>y`tlhr&D#+_%Ta
zgjo{1l8Q7}TPrPc({IlrFQ{{=IZy6$n7u#}&u?Gwv``#Oq@KS%)>Kjj9nbVZh~;#q
z)2>G%GyeuBu**JEr*p`>8&r(8RVU%M(!44`z|2;%5-IP&M9ZIacRFhxeuKf=$UB~i
zyNiK3<gS`&(pZ$kFI=1**2X!(s$|;?+=9q_tkvT3%owCCXSx~+dw&*BVlS)oE%gHB
zE_!ighH^cr5afZh|5$SE&LpB0hiyIf<g2%!sACsns%bZbQDLc|%G!E)ed?!OF$?%j
zPqXsb3P1r$1EuEIV}1i`)!i%enw*rAM3={%QVGY5BI7G>P)afAA4h8wY?$*3Gm7$f
z+wOZo+h@9?O_6(|8MjMWG_nsLgQMEnEq$kqw$G{xjqTqVj>Zb>s$ii3fz-iJkm?g>
z&Lf0kOSFjN;y!$DGI|ZpV0;=dP~RufU%Jy5ZG}2#J1~G`7wIOGlG)=v=Hii7YQux>
z_U02FnMO12@*=0jc#r)x?=}k&Zv?(Rb)R$ajBV_s+bw6f^2WqF1$jF0$MD-&L)i}e
zazX`TbkL_l)B;j79w@NRiMPp|oR9#%5BogbFG_$EQdPLDkkZA%%gvdNA><|fA@hj*
z26g3(4R^hsld{~PpL}?jMC8rqVgCWq0M~I_%K!Jy4Ln!wD|aD{-Byrr;a*ah*oq}o
zbL;ZW=B4}QScy1vUl-`u*5a~)`aw{C{-OP7$%~U9d8C=z)0<@T(`mfO+aZ6$=_Y*G
z-=dLRxqJxMTxCJBJLh@bX=phyr!%-J|73r;Dc>h+qA?mD9k0wEOFz@ax*__HV;{LD
zb)xyk1^SwR`ATmF6D=rE-{QSP&BcGAja;$cj{oU+`MXi=UvKfR7L>k62;u+FYp;HP
zf4lx|J+3|Z<^EH$0_ywJ`Mda^!o7d+iHFWV>zaReqIA-IKlxjPr%HeRQAYbheVXS>
z@vdZlRoK?VoiX<jolvr#{JMURQyKk^Kj}qhf@nXnx$!O<?j0wo1GYSJKGg5Os}bKN
zak9DLM-soyNtc~6@B83PQ4AR|Z#=Hl6$!@dExyV+KQ$s5bj*3#?qzCg+z^ByUX$wh
zaA3<CK5!~Od-1l=xp0+!av2Na`vk-HcjQlpMEmFm2k6%Z=*B*?IGCBsPjII?FNuXs
z&L=ssNJt5f*6ddqNXZ8W2eu@<60XoNth}sEiXorp?D}Vwo}Ar>O*v~-Gw91b??aWm
z>Tl=S_f_;vMoY89X`dgKbDQp0cTJBCE7qm>#9*M;lfgH65P$1ql#t${dCGW|-;0c9
zd*x8W--Cufk8UV(H*$2GMb;9XAwIvCbV72SPEX87cba2tDyj&@er_jzY$|E*|5E3E
zVISgk3%u?u<wC2w(25+c`t*AK^cIYle7S3&_H<?_#PNZ>LO@vgC9t`%Xx3Gd*3&h)
zi5x=a^Ur0+pYYVtDU<QJNxG2QRM+EAh5e;^<;@iPVdG~e+AL1{b&uw-Z)le9OIOwA
zkGymq1P!<SZTT4Eb<NHzI}iYgt=H~oXPDSs{digk0*0SeCeuBU77~yzyMB#gE3!y+
zJBu$T!Z%wa<vES89@Fxys&z*$O8e}zxnJ5)<{+_B-W#RbP}w*fO%N+yD7}0VBYttD
zpDhdt@9N`bt9{fCgQu6`JRG(XY-?bajZZQXX>YNA7LiT*3iudsxP1}^tC(NZ4z_-A
zv>1-V=<DdTyA#ORE<RT9a%Nftl|BhhCzs(BM^R>FPl=M&I%eRxlz;|)r*cT8{V2@#
zq_RxQ&`Ci)_1<sZ6pcE#)aW=2=^(qf!c^iCG-Z8%in`!8KhXIZ2iEX<19vM7)zrs1
zk+n3b9z8Z0<zcIqBSb>u{?FLdPvjt$W9i;KDmy3RL4kgwh2i_O4SOs4b<EcL1_L47
z%!bp%C81ED037K59X>h-<BvPeTvJ;=HQ0H0A(XHM@SS(Qy`9zKj)JX>rLh*eQ&Imq
z9P7=dG0t3BIKDp-PFC0h5Q@X~cu&Wif)}YUbR?6&0AS$7aD5-5Z+n<i8&1(Aubv-H
zPaWYHR$mo9i_6kL##|qvG$B3t+x^{JXq&CTn8V!%@kEJ+F&<2^lIqp|iN*<Se2|l6
zg#?C2sF(fo-u_m*xTBtAIKNfA=zWb<4%tK`LbL6~$SFKSajg~w|MVr7(@Ow<=9uF=
zpJE*P=f{KC<sU8_0GK^KFwntkW!038Wg71r_FU-uXcRHa%{W@@<O$VsmO{PAaHmv9
z1isddS6Nx*xvi#Eht$&5_&$1i>J&mlOIBUx;(8-8<>*^ZtfhhoE!WXpi1rxrEnL10
zDlY2aYMjoH2vg|NRq1qMD-(bLvN_-ah8T&`221mXHz^>Q)OT|u>@5^k(&z2pNE_ss
zm<kOKxpeatpu&?x(hT^m&dj@ZG0WzavE@g3JjcWRCI`gIDw*a<m6G8AV2?zwXjy?A
zv6|s`_>CTDWmd}_N1YLq@bqHZaVgU*k3Kp4@ytYdAdjGS+&8z$)mJaBY@amN#ICR3
zD!3fqaebdA|235abJV2Pju_Or&qfHd+3@P5bTFg$Y3_!$9WQ!r!DK87roXi6W2)dG
zVj#)$hvK9F;LBb!pbMv~#*NvSH7f|I2Rz>Bbe_`%Xs)PsWExRfQf{8NeT{W`kxu^P
zQV&Z%HM-s;9oAd$NP2ZtE;FpPu1;QtPnY-0F)C71A?yHV>_?i_jN!{SX=|A+S*g}$
zN%aHM%0`FRvXKdiu*B1qVdO8?7hRM3&R?0`dv?YjT7<-g?)5oge;WB0NoO|HfA^Z+
zKQVGLCKt5}c!WX(;cNWbX14q%F1^SZXMAuu=)mcGFN5sfPoKjRqnzbS=V8Zbt!l4Z
z$ZCEX%Jlyk6@mjk(_>ybH5)%M9B%vGYja)jhV^pgLFkiq$8b+yZn9p^9wr9Hyi-~1
z&qYqs&{Y%+0f2<&l%dS+#76rCucd!jta4V_LQ<==V$O#p&7`}PxzhhN$Tbs%E@KI;
zm(cW^+ENqcZU~G|E92vLWmMJ)aW~u7z6Xy~>0r6p!Ae!l_Fw1znxH-wC+$wB4!uWI
z<c%VB4LE~inzc$2txtRe!TFl%V>UyzO0;vBMO+<qBlGv_jdjL0Bb3H=x-T6sE3kr2
zLW)a%|3|RD4-NT$2fqHd$2UpwcVOWW*%nLh^}t{t4%V-4T89_vtKp9`i>LCfG1IM=
z%`n(bSm&BfXM$Kc;xGsXgkX|&ukBjqZlV5GnQif8va_tSG{cx+b6Ns9=0=JbcBgyK
z)OfSHXP`~};WzP%yz+X+wXT<)G;n@VWJ-&Pg;@1Dc1q0_;W>38;F~;6v&m&f3zPGn
z$I68+*W1qMT?;o22d$J7Ow4&?UClO(4SZHVOa{)d%7jeqWrUL!sWiY6MN8nJ`@F%>
z{x1CSVd_ppbSuK}D!E;V8*zYKV$>0YXuA3mXC3yg>KH0QU>5^p@0Kd<3*ZwgR^#>R
z@zw$k^cBdhuveN`S49^v8P+n1h;=qxuGQ&*0y{gfsuhn>HWw$DsDG;Nsr!xg*hHZ>
z+MZp0^_Rao13-#&_Vok}V<io{4V45UFwMYF@Qr*y+NS1~7hP-GzKqP(`C+Q!$PNgh
zVY1=+Q6c;i#jLUc1MPF9*y<T=$il**YDWkHq=+nj;1a&6_P2Z0`qqFL@OYwp)sh5A
z2E5>XN_SY4iT-EA`*h3f9*u9B<nG=d8*KW+r#YVp7n^P|misMN+a3h?UO__&mF&_<
zS*ppaU!n-ehj*iT&xhWsdA}I)fFNa4Tj(~qKUGILM+Jxhz>%eteG@I`H{}A}z)1<z
zxdK@96_X`D1j^9qo}UUCI9FUGB76XeP+)1Rg48!Vr^kI8WPr~CV|2n@1j>BCUlXL*
z(GJU)+@te&D-xOkATcUy;%2l~^zQxLMmkbZaD;^&cdOIs@yf0R8T0j(y;%h3KM}O*
zvd{6IEmm=|o8$HN>oOZ4Bx)4%=q9D7vR1b799_d=7`<?QA4vfPghWl`;4g7INj@6C
z`h$}~;4tw2bQOkper5xJVTbBdprUvdZ!r6B6poroFvHE@Jre_!qr#{}k&{C$RM^$_
zFdOplu=JQu6y#DRX%0U4Ido7OYBtPs(D5a@!Bo&wQMSrZy76drm4w{H+e`|RKmPxr
z?j6573A(@CjwaT`ww+9D%*3{Bd*WomiEZ1qXJUS1+qQYu+`s2OXB|9$z<JrLtM;ne
z-MiQBx;|AKL5fvTw>mO>n#}4WK~$W`Yzsgk%8;~mH5!$m+I&QY3v2KGGU1}C`FB36
zgEl7|)V?xp>B@^oretFFz8Ez+3NdObMErr4JHH15xdSa?w>&A8g@==@F;7V%RUlx_
zVOp5~)kDif=3dCZurv%BfwI7oiQ_q?^=YPD+!O~@vFMH?x!9G*?jN#huV0FlZ^DB?
zhu5|qO^L~IDi@=GL?u!DO2EroP(D6}W)x2=9h`!hvQvN88dQ#>8b9+Dtdwn@jucj=
z!fO-hM&4dft#Pr4#U3KursQIo&qrbi^JGGkm+A8>nlis>0UtO0FHw72Ly<4xMO}#O
zg7owa^~yN^B~z-J8kx7-WqyjTU`g=)EUQiSfknZ-l_yQfMS~QQ8dVGkbkdQ2*M46o
z)mNgeezmJi$8w~b{Aow|e{fE`DSHnQvCPt!vcLIGGFe5@V6hV`tMyQdd5%dwSCE_}
zjCgD<tR>~~YRO-(I97k26=&UwyVwsXp~srctd7**W%=2BSIujzYbN!3zN2ZelI(bs
z7E>|Y7c^m8b)&a4u@G^E=;q_zbFOP|>Z(64U^dhCa;E3LQ+7-W37e@!{w+qwYmF$A
z^c8m$+_<^P5{ibzFj&@}4()$YzPK2p{kb7xHfCnsKdTu=Q(wkZ9l@BQB3_k>g!7qc
zNh9V~MkB!$K#S!F>niG1!Htcn(o;v@ic}?3_Z2B1z^`+F|Exn2!3-L(`h%38-oAo&
z=i(3<>u8+1{j#u-0V>`zG{}{Hs!*f+;t5oIM5T-XGa{^!lV?a8$q)1&QeV21nB0XE
z&Ke;H+X95bg8!a8po0NHVwJ69$Y2^prKxf?zHaeTKB~7buy(`OMRdlW*t||RW`~v@
zhRBmST@L~^ALP+5D5QBBiV1we-+!0dG~+J+9PiF3z)%Uep09Yor)<Tq7LiPZCpN9u
zB(J}3M0+fuDHPc&tx#>cAGIo)adD+#SDpX0^`&VV9e!a^>5nyt;yG|A5{KJ-C{+_j
zxW&8kQY>*U#s!u|U%@(CLsbnsVuI8fVeO~0e?Cu9(TPgZOt>*qwPyStpKoKtP@QBE
zDu^lT+9!d8v|NoNGrR`>Dvvqs8;S!4dhp^C#GnbAH81=YA7c;eWVJf*B|`Xb8z0mo
zagZq=x7o0XQLkck(3b`S)->|Y$W;mLG^;7g)UmCLX0woV1l(XTV+EmQR_pXAW&8Cz
zaj@m4av5cW6^Az3gtC2TZ<49Gc^Y7*y<5%lh_ZurEdMhM^_@p6?Wpz$omDkUmR3b^
zL`60G<s(|?E%bkWvI0;<@?cWwi$%DE3T9ch*!iK7Y;)TM{{yN1BHe3Mu~SAskp|S-
zk&*_$%xTcm`Wumn&~8Qi(Mb6I>#h871UDUFYq7C11DD6}3x8H+@TI$0IJ(n5MNfC_
zX;V)2dhUpGv4>6WPx=SR($7-d0yixBK@++}nAs^K^+X9;l*BPMqD#IjK7C<Y?j9jM
zcAB2*S}91b&+o+j`*rG^_<kizTM5bgBNd?&s!45zu5n@QKUB<14T)`puydX$wH4B;
zO(^PO<n4W&>b@UtD<8_~bYSXtpSZboiK`@qpuhy(?8Jn&Y$)moiow7K(-tLxk&ME1
zcQZXDx2X2OIu|pok8Xi@ztXa}JF$+y^C@-J3sa&?{fRBI7)YOV`2|7)v;(UQoZ~|%
zJLI_3qhgtQC2bHnzT}_Oeov64EdK>(Dm83N4Id{V7OP=nCj0BYH#O_fqxxL)Zs~RH
zzBQ9IE_2!b`45ehUEwnK{ghNUUaGS8O)++3of8-kIMR!5VpNygDMYS(VLfG{PLUR^
z)3U02x@$^Q(|{BF%W2%{??#hbIqmOq6_sIsp*O1k;Y`SoAUT;hixqbp-Fb*#EUTI=
zDgxp^qIZFBxJ{NcXry_u3bO{Y6^v8#m8)}}$u>sjHOli`d8xdOi;0Dl=3`)hGAA>e
zSppbv^{cRuwOn^m?o8|4OH)b3#v@`<x5C`dKql1g{CL2z&SQe_;(t$yP>u2w<diH>
z<0DtK=99y1Y!>xuPT;C^)u9n3ot%;pO#TZ*DiNUSBfdwmx1d7-!Xhp_hE~;MBPtT)
zY@xG3im4&<-@}4P4J_*`dc;rE&b8w3(7#wO{gR!+08n<;YPH2{zQ?a>G+W6bXY!Hp
zMAw+wA#jJEjMJmjmN#@aVt}0DKW+qG%Z2*>D&>gP9jy*gQ!(e7#mCVzut0ITIg|>}
zA<x#?X|u!2W}{;Cnew_cRF};ruk#$k>=v-?0l<G~ooXol*SFSTlePQ`W7nwO#*RCS
z2-E&Sx(itaZCFH8;j09+9)Hu8Nzd|7w2>+T0#_+LeXdVhQihV+!p6w)IfaFBh101T
zXu8QyUEg!u(iI8}NV`rQat6GPlN6ZZ&AbBG?DRxN>#0Rt=vkZ1<?yf0hy7WxPnB;w
z@k*#!6E<$N`cx3$*9o_rk*-rwJV-~E7R4lVVTeC*G6!E@<qbrLQ9e~*e2@Cf+qA_Q
zbu~OcEcw){Oj{I<dCOB%nI@z_e{_6_IEhbX3B#O?Sn+Jw&?u%A)Aj^)bUG;YBMzpb
zIwI3JgrGy?(|Pye)e6)m6E_f~u<BP3-SA8^U-!hYa{z+}JtvdzF-$3#m90rpDdOur
z82jIhx4#5j1lHo$rTb=Z+$d~fl?ivZgkBIfIHmPJYI@Vm7oHMb$Q8;DT@H-qYR3LA
zEJM;<d@kpT%~_McMascYA|b|ke!P~J{mGXm4G=zZ3-g$lTKAOR62VEnxb+<(*+MDg
zrl$XY<Eq^L&Bu*cf?1B5+3s6fO8v01(`K7ht)t6ZKHcT7xESDDnI-CaNLrkJuTBNL
zV3Oazvaa^7tq_0yN$PzY%*XmQ8{59O9H%%?@EV14|1h>oPBPp1DAr<k5@i`U7Yikv
zuce-<29mU^iXcN{bCN2o<aiHV8cukh$uQ-Z9?DQR<}<fh%5^){{E3;PFw0t3Pw8{h
zjU}zb$gn))A*XL8Vq@h-5@RzpQk3GWDP|;4mZi-UIGzHA!~TOf9Q+b0Qt!0gJA3%C
zMulZHAEc4O;gnymt@C!AtS|PsEUoUqB=DvKyda5|a9LC7bQ915K<uH3*>(>CJ{#Az
zV!MtOc2fM~+i1fkhpZlNj?29*ZI0oFeWy0n$Eq%<-f>>47jKmGedPYJhasok5q4Ki
zA;dr5)~pKC{aG<`r?V~p4P0loJtE6jN+wNfth%5WnU$2drWzcF;MGkzrVCp~rDUg+
zqtwXMDpv<%i*#K-nQ`Z}ONzFj>5S9y7b2&Hx)7=`YuTaoL;%Vj))ljOs9n`BeZN1h
zm9HH!=R(z)GxH{iPrTsQL_56V1SY$i9E7VoYwboGOmzke8G&O9x=~mhALOggQ)7sY
z{Gym^v}&nHWt<27yBIqRJ&YdnUYpt={p0(bz6QpctA>rP@`(5k1<l4qZ1<cU!%#iD
zQ*mfw7>~BvZ=Bb&W7Z`gereQ&cRQt58xP0Y^Zo0DPGt<e@<x5PuKRC17p%KV51bJ>
z5+S?t{7((T#=Yr1-6yhQR@}>n53JC%K)~22)WGsJi9BOgC;HVsuY0+Hr|84e2hI9!
z`-Q3VBN+KA=<)vK-e?2;GRTac_{UoY%8=etr@VmqPOB<!YJGm;R>uaX!8^IB`{?W?
ze%GAUHc>?LC#_Ulo29Cma3Jj1?BxY-KD+r^j(8~Bo~dSBjs01VfK^n%-^)igLOQ%}
z<{Mw6ZND<n-DH=v*bfk9Dai@f)qbm~ztqZp|9QwWLf*1%jQLS6n~-D@^!x=C*r!=+
zuBOX4I^gpv;EkXji}v)fh|(7-IKSkH)w*|NrGw*1%B_t<(^LCV@0upCCJ`tX7S5Kh
zceZ()LJsZ!7fbvRZ!(R~7&Ji93yMPSbluW<e%XdAlSH$_hv&c%w2n#=P>sd#7`u(M
zw;2dGm;9R~dm2vF`XS(37txGMLM;>V(8H*3jigKiT<+q;Ftphj`(?FzcT&m@j!DD%
zZ7(+dCPgf-;5(SPa6VxZujXYB(9?^5xDEzwQ#GXEvQs0Jk-&rJX{iSV^_ja9vfDQj
zX8gK^Q|h}sd+<mN<g`B0PkwiJ<=J?GCDT1XoHsSti638z?XZVQnu&kHZ)-bE{4=O!
zm71DB@OZJ*JeK2-(e^(S?IjUq?UAaP5OV@s(DdBiYNs=`WpPpfr>)#C$@G7NWI|-b
zK5i4J7?Neuo7-ACw~n(tXa@c_Tnrx^P@&2DLmy`3SHu3K@hBKFc|WB%<e{H``F){U
zRBWTccu4j@{_2WQHYK?*l#lDuBdL46z4?K;xIo$5su1)#(=Hrp6}T{37~lj3Y<>TM
z)hhm9Er8$oD$b_q!JVrzf<=C3Dkn6uzPI|1*zwa>tp;l39`B>_!8;mgM#jHEZFTmH
zL_Cb^J1dpsiO>H+4ZNYr`N{5gf|mTlwf0GFF*C08a6|PZUJq~MbZbFe>F)1zTPAJ(
zuYkW>&v!iWD<;pUAZajv6w`tI+A4-d2|&n-d(K!hW)DrfnrajbI4t&k%anB#xN}PQ
z6UD9v#`jfpsB>3g5w<J!vPDMAld0w5^p+}$2Qx88_kti=S<@49{f7+hy5xsN+Ns&+
zWjh^L@wD~vAIo}W=}wXK4!-C)v$bs5tU!*+wuIkb{`hiXVxD(fzYH*D1HE_JGh4c;
zf5He#bZ^~Sy@K<ZoY`{S^nD$pHj*^0i8zcSNcsf{>w{P0e7gD;==rc>Jk3yG`WHzZ
z_#uIIcfM|GMj9GesTw~}9g<STN8tIKl{_#oOd0s4MG)m>n=S+Gr=pF)K*$z3*(?p0
z-dC)nOa0jbq9-T-80L70a2U!Q7W#}$e_I0loo57mo)lyN$R6Jl{Uaaek*7Q}<jLZ9
zJlyV^{QfCqqERs7tN8}zkE95@U1&nsR^2-SJW@!`r{2h|&r?Od`<HN<MZd^mlurp}
zMC}eW4dI^xRz~kc-^?>~`$0glx%up`VbI7Yr*{?#Out{|C623s4MWt+rjU$mmnPnn
zpZis3YO4{pjfGIiC)G*s5=X%SgA?AKK{?~-$J^an-fm1h-4CauD(Hz!_F{Xlh~yA@
z55-@fN$+0XWOR>jCD^<Znsp8;j|*C2isR0gvzAR-8de8^=1kcFmD1LTn!e-uDac;y
zVYFlb^SPopQPlf456e3yYjxQ(JFOE=>q>PK(b>4Mg#3hl6KPT1ujnIS675;KSQA96
zpuyNtY4|q3m)<na<$XZtxOFEw<-ymS=ppCy@YAjjZvCQ@zV<V2XqOD@0;84Q5znAX
z6n&uUZlmpy>1CK=jPl=N?$yl3^ZBYHV`HOItvTUN6hyKh2H2GLCx`uY<7P+Wv~q&8
zb3z|c&YA~pDYgqf6@w;oaZMC#2086yq|afC-%yqqP0?<6M~Rm}HtWUDO#FYFD6CI*
zxC=a+*>fXqcOfpb`F&ZK)!_j0+v61Pj`fU-zRXSon@zVD6Fsx1g57L!eN$<=#438_
zyQ~kK+@+3chhLx^w0dbsuG!AVR2qIsMJkB;*n5=E@BbSR7=u*zgBV3naFg|f*mCt<
z-~<a#R&k~x1Gzv-awYvl%1ww#UQ)t#r=34i#JqlaAC9e3!)25+MuT}mt*SBXO=n-X
z!UQ*A!i;XRw!G<)vaRW~TUk1?PtKDOj$!_s-Dm&6xIO;2wLT^qz%{lOj_WlvM#ZRZ
zC*YJe#40bmQ>vS{51d3tM4x2{c{qFTW`l}kDuibjCTk0Y_J4Pf2a>GH*`KC*e)P@|
zv>`w*?vKS>kWw;qDzfB7*i1Pe2e9D&UPQL}P>N4qk#J`oDNUl0Rg2XQgYegSZ4-}a
zSJeM$dlw#;ij>~s^vH7X_qP}A0*R5!7)u9Ix`h6d%_GA^1x&O=)sUB`*k*U_IS4%c
zJhjNLn%ja`co4a(*8LeZ?Re{%?%+}bh11E);aqdw<n-998IkU0xx>T@soK(Jene02
z?*Plh<^sNk!H3!Bml`fcUC>%}g`%TlmzBTey{?zpX3g5`Pz#~-PQwaPw!q^S&MZbk
zOLtZ3hqR^O;nm5Kmq17IzQlcdJ405Jv9s@v%_hB$NAYHRF>yEYPf5A5?6D*6g8Oer
zsX++|PZxI!xAN&u&0OHum!ev+R95UJB7W)wm{BN6CPUp<JU_Xyq5f6g*6-zv;9)-Z
zJ!QIZW+^fP`U@QkHpHZcp}>6AjZ<VAtCqPkVhh*#+)B!_Qs=5GE_!rTAItY9I8jn$
zl+Bq_(VO#37g3!t@8f-!u2qiP!JSq$Q#K~cy;NV?ZjkS@m5X_AE*Ula7{y?KX`B<c
z#|3#ptCz(hdi+8~^W@6PP8QaC8PF!*DsO7Mh%zi9)#9|-GpCttD+(i+e;5e1ki&g(
zNnNXd!F3WiIdvr*%65eDFD19|vi~fc=4e44+WNQO3wtexWk2kss+$E)H|tN~G<)Rg
zJz;}Gi0yGilD!mcugjN-Op7E}$DM_W->m*&seJsQ84Xm3Tm%oX5P(o!J*s_r>yGd~
zmq0P1zoMjJ$wHR*02v@aQP*+5I#cAZI{e-O@8Dlcoo4%45S=wX{HKWuPdQQ>NAx60
zo2d`Z!T(5J7z74Lv@^)gOAGS*qF|GJ@gGJp{Xw4AF-};GcEIhtc<zl42!#BAL$I??
z<vft;O)~)i8QGH__xo#i5y1cITht_Svg>K@-NX(J2>sgG|FDz4>HfToh+$AZ=C03o
zQBhC}reB>*)@P^bVkG821wpzYHfc|YaS+nKtra?<0|iICsT6JP*)oa7F*`Gu3^}|r
z!YSmmVP3n3u188RJ!M%O^-B>INYBm~gFN4|k}n7!5&Mf=wcnW?*a3iqA<D1YZ#tW|
zO-hu6Z};MWAO;=8lFv2C!&l)X>QZldD5uq_@Ciza*!?|I8irugUWI{Ce`15Ds;ALQ
zvQjq90w`JYS~tza_MV)#U;nC|Qt|jcCu}vnJS|4(_@Jw4S{JOi4f}M-v7n_P0}J@m
zpKMeeg>XbE5;dMq<ia_UL*-oBYC0UThXT3FZmzlJo3Juv_=dgCq-5~NJxf}#M81#!
zvDC(zx0?A$E&aB#Nl_DwuwtH2G7hS$ibq6cX>E`JYntm&_NXAgM{<w*GIve#A(O7(
z*L2l7X{7Au1INVI`1Qlo6wvF251MwR$vod+vwP#;9b_mhwVZl2{3puvD+iaU!FXvf
zfLxJ8wf#%yHzxUCO$Ka|y~^1%|7U5Iznpldxic22A`s}x%IbZ9KXpX6>z)}^QwDU4
z01d6ZnKla3SQrd^MN??fb4wa0S%g5(+ZJB5%J{_CD78&)loU*lSZMJ4N}rVTHzW*R
z9&kxf>4d`lvwJziOQ}e529qg(JT>HAq2;%z=TbV3MXBPjN--vP%MKD|2Gp8Ta6C$9
zeYvp=GomcV?*-r6jM@oyNu!_SfdQ)c-~64Wr10hf_THzzQ}vN6kx((Qb!h0gGN~$y
zX4!D;i-i4UsUzQFnXd~MRk^N@pJ~5sf&uF}KrjM_5g{#K?vEuFT3%88wcE39dqVYy
za{(VMrxTB{b=U-Ym2DPF_O=YL9&N>$rL<||(?)qey6f)aBptIF$ibFQ`2LsM6ppGL
z#ak{7pUtp=nHmbv>EEAEPyYTb^SGsy_P;fIY7Vu(6a19xy$x$a(xq+hh6RU)xJ^EZ
zvm^z|qxflNN($RZhTNeJO}~fwF@CJ1)kDS%^}&O4Fm>m0jlmoq!urpxoKG!7dHxwf
zwpq_f97-@~b_QKmaMAdqTtW8E7{mdzIpyKgfd7^=R4emV?>Jd_N66RwzbAFr`KV?4
zMP;Ztf{S?4u{S@zdW=r&TVGN~uA#8nRU_o?$Z${`e~mIN*6A>HM2@Na`E#Z8cKDev
z;t@Y@65E|x3ND`MPfGI_eQp!(DWCmvRdH9bf)svgmGMaZ!9Gb`EnM=_a0r&>X3Vs$
zWYs8l)QL&-|4LJkw=$w!w{X<e8OaZ1Kf3~>$r+{|=R~J#;2-RyeR8Zh3@nHykckjz
zpxP$*8Xj|E==XQcFM^sGNNx?C&dmgh7u!<!?-NQ6i#Rdr5T#`kba6C>XLr6*RA+T)
zD~cKw0YGZ8C>1>G9sq1{Z*O}v22`;-y$j6ozwT6E&PW>zewXsCW5q0d@q6|H7n0l<
zI$e!vzHAvP&Z5LrZE|Lsl=b!SHXkG899&L|vl1uh1m!tC@s$XCS+v{R1_1J|?)US$
zJ$O`8StQ>?^YH&wcIYY3yN|!}Y6j%X`*~OKvFW8dy0ja!=vHC~P_8bDMe2BeRzPEY
zSi=08%z_o{xr@cxeXDx3)Dh8L9G?t8?|d9J-$==1RjMKMVbJ5Bj6HS7Zg%igcN##a
zAs&5uzwqG}usl78Cu=EaJ+Xa}b!(}K9xhbu9@>0sc3pIwd9JWW3omjxPv$_vWht42
zO7=-A6`M{_?lzWZ5UA6CeCxYn@;1QLYHZoz=XT+|&d81sI^{6-LEe4^N#Z<%H!VO=
zJt)08aYhHGaWmoB$G)&|u$LrG9W$Gy7Ew<!$?CC>D}iPEJoZlrc4D6E2WI(x1sONJ
z`W*ZvTpOaZFJX7HslAc;v~5ECp9j5DvhS6>7!Wbqss!Ky1}?h%9A7@$OCd}w)l(++
z##7lWZ`$iZY-BW2Z=NUihq(OD`mXQI8&jCt?-qYVrrbYI|CU`Hi<zwOmO}A#*tQxO
z^_b<8w;YAb&&ks3p)k!UaVuK6$*#;HN#_CijECnje4~lqi7d@M1>5geCjuy=dARN6
z{$wr}nA@jUf{1^%{muhTI`uS3?iCdkMkl1ia84^x1wGRkJ}xrx6OfU)M0_7aGe^#{
z?WIg{t~Yw?O8&`TrcMB(Hyp6+cfgd%Z+WX|9MZ^qowa$xZvHNfo22MbyxD5<-*EoK
z8ef>)el4or@I7#>@gQLDA8A=&y7Jb&lGj=Z5F$SLzf0i++jIZZ^9>92|0ZNBTI@O0
zfcB>z^?I@AbV=K%C?Z97{3lH^uqx&kk0M+c`ZKB_jYw|#eC%i_&!~F`iU$V<n_o=V
zQib`?#u1m$X=;f1X`iO=SM6uY-8GCq>aXAG88gkbQwU*|m(ns;jFUE<UKAf~!G753
zz3NU3-`^&M5IAn$RG)_2j<rt%FyJW>9^W+`N#v{byyC{G{AUa=%Fg@lhOq$>+3rs7
z<0gd4^F%bSPi7Jb6iAX3xX~N7oxgf(ozJXk^8X;^TR<P<aR((4obu8Hz=mIU+vpWn
za%wnDe|aw2lyvq%`LoMM^4IM&H^DJBAPfWU)_UnjWm#!qU*0lZeAGmAwzF0fAxkHU
z$Rp7jyj;eTC;wI*eBd{m!qj#zRs#V+$~n%Dq07&iu+uv1Rc)~N<_z1q{3N=H$S5cH
z^`WcTskia9hL7*No9FePUV8zhh<{}mFGn7ucmRKDCOX>B7ZVhi{vJ%3j<K~Wy3i)-
z_q(0#W$QM+NYk}uV{_SbjW0l|Z_WU33U3{2V2+Mgx)y!jNviwD{v*X}`|6pVAE}t(
zJ(A?-qGq+d(IhpuFdE3u$4Hzs5E9tq5KU=K_q`LirOW|<%mi9;05G9Je$;=V?zNzQ
z=im?JVOlZ#p<VxMSWSPkhyU1GM3vm^(c!V52J-GSV)**U<Iv~HupOVQ!V+8a-j%TK
zXDGMFbaDw)6zGeLkGF#~HX;O2zTTQNX$6YWh1*31f-0$Ln9c*Wclxuu25%-OS3U}B
zJ7K?9%;kmzzP>aSXh#^m>Fao<E7F=CHCtFNZ{!t)+}T^C8S^m6&O7NJjDnR87QZ}~
zajRa#m>qRGCtL&zf`&df(FjK{FG9_3+^aiuo1$_O)l)O54o4J*|HZc;&L;mq-C$Tq
zZ{sWI)wxvoWS@PtngW(?HU5LiPVM99o0qSkTI1trRZKly2PjZq&<Cwy(s|>r<u*K0
z*RCpGz+tctip!JjB-f`Y*4Golc@dZ%F~2u(06@1?r^(AeduJi9YOlzK1t2-uZg#1V
zz<|qlQK^=kbne!i<K2ohuHh%00Q|x?*0{gj@cY3ds5x}JuY!;iana|l7iOTJFDU?S
zz*ez%P%#AHpT0tjuaSmILINk9*{_og34_{F+4-Us`2F8`6VUV;{43<|qwQ6TXx7n7
z0eF51P$LX7h-39VFfhb8skqzRAFAfR<L}zt?4>0?(i>^a);n+$^y#Q$Kc~&_hkDBX
z^AUIo`H#%<O+tbaLfpl;SeMtMfoHE2Z1$3^6`t)h88mA%fWup#d5A@b%zHO9wSl!E
zShZvekR9?1CfIfQ?41dM^SvqcSotFV8Id^jPl)D#WzAsag~f{K531C;k#!GLRuCck
zPS%3MQCy)_3ChC@CkeHp=4g<!n`-N19R9m*o9hG5KAkdrco@C$G-LO6_8Vd~gW2@^
z?~iV(PJMIr=%y*z*EUe*6lft;Q4i(yWmMEL%Mo5?wm&iLkpl}l7q{gb{qSfK7%=FP
zS!bNo(1zRg{?Wk*>|Z{%*?W<J$0v8)nzZEUGTfK`IvY;$6;R(ilmr9*KU8ibLR~nk
zpZFFcLo1nWY!G4f=Gtp9-eyP}KMkw*dd1}ZSc<uS?zS0T<H<Wf%i&B{WP$1G#G?GX
zooiD+-l3g7`!SKuQkl_4nONN2<9E&Cdg2zE!p12e%DYB_0@J^V{7-G$j|@3mYi*CD
z$+=-llMyJ|QeQ`m)dd5pT+K}}7Z*d1!ZWd!^ubj^0{j)re!fv$ns;$VW%JTIOsrSd
zz<@EkLXaU+Gtj6KI2n+`Mg2&CP{8)IeUZaAx!G@XZ!N^}_$Hni67hr8>Bu5-h#z6n
z`sD>Na>Ftt)NuG6-pfwPrK4jKx64X9<tyo7jdiG<BQ^(Fv8>*=PwBUIuQo^nT>b-l
zy^V;^ledimOC#Be0JH-{8{w~m;6SXl{8E>fj5O<SkrJZ?^Xf@(V#Q+<@6V{~dW*|}
zj{o<06P_Kv@meDDA+sObV^!?thFl*`WFuwA<i3Yn5Ug>IpC<m??k~nhlAIm>+pUTt
zu9EKIF(&yE@O@C8<IGpfe^*5AT}s4?d)(Nv_;dX>TV1Tutw-K9qbEG0`^YIA-`|F3
z%{U=L@^2Q}>fZ><;`JYlTK2`Fa_<6aBE%>#V#fdTZVO59c=DL=3AQL`Cg2z!TPXkD
z`J4Yj64Y6k8<cx|Qp;S5eMX!x60~)@@BG2fH#qTp{ysP~VG#rY#15;_Mtw0U&btR5
zC9^1qVme2a(!h%ay<g|IG5pZ#XO^HlIQ1gG`qq5hhD7|BVVfF)Bx##Bw=_a$cjaj_
z>f&L<_&u709$2V%b8=NDj>84?!%uWv5EOklPUM}k>;otX1?NZn0~=E3detzq?zqe9
zyaV>P)8flcKv>j-;hEssXl1SN0vTw)-jX4tT5oyhI=vxoKiwzU<`lns`ji10D<ugg
zSfflxZaBCo80wi70Awm2pW@8gTGa79QYj(Aq-kgBuAK;$`<PA;%Yx&IxwyAHBqIF*
zi7>dT*oMOY>(mNG?{(KF>?Hilmc>_D957&dguFtIj%VrAn8pKgz-<XeTe6oCM0W`V
zDI}wUp#HjdvavZL@h>B=K=>b-7u**B@>|b<-nGs-9pvMC5qw@&O6vqRcKxlXGtxpK
z&p5ZA7ZL!VWR`ZkF6tmst1zG`;yT!X*1vHZpoc`K?M|^+KW1cZ)V@kCJn~Q!|H(H5
zxbz6L3_gu71$OhfRserN=itDOf=5c2Fm%PUuE&jzx<&G4i*L#OdT3E~l*vo%xENk%
zM)v+QUNz$UTQBPuokS>5Q2k;e8+*^6Z~iS_9kUO1*;#4)yLMv_AiHsBz@Xs`)300b
z<~=uxAuLkDT>5h|p+5a>xOI`O+`>>VAljIGjw*MLyQ9sCl@Z!Bnedk+JnR_Ja{ZoQ
z`_7t7nxrVz*b@~ffeju~4(S1h$z9ysq*LIg0~v9*js0p*x*EE$laW&GD@GE?epfBj
zi<9q2Z!2}#xm$nF`(UO?JdXRsiW7!%TlFZTM6=A<DZDgLVi+t}?c&0$J*;<Y#?oAc
z@PSrtF<E;Zf-DH-rIGnW2xgwNnOJ_*iN1<~JN9jZ-$N@irG|ts8B-^=b2jHNT{|7k
z^=I~3)&|W)hu4-#itQ|=j2&97Y@do(b`s;u*@_P+{I_ODn*RNiq|vOZ>P0n!L{xM*
zEw|@S1%u*0pv`EajlGM7Ls}pi+~aek74k#OL^Z3j4yp}G#m1P7^iME4U~zp5LD$Vf
zu2ZrBU)-+hMqi}!%)yObs`frvpBPVn6)Yk!3}<Rz5t4+JlE__m)Mj;PVow-KwIv#u
z1CjyzJ3qU7)SOB9*Gx}~<5FYXD;UK2ZSHUd@pXHAinWA<6~YHd_i^9llZ-L!`!cD)
zX`^*h&;b4T3U#Pn@}d!3dFF&ErH>qnlBWSfn|5~2gIyj!;$rZ&Xaz<RG?f#q2rW{I
zIh}u0>cZOioo#h?<oGg}Abn~0XR)oQzPQ~_qc%e7#X3bYXImGIwb!x1<#D{%Ntcb6
z<w96wWb2Bq@=RLty6I^pxDjZ(Mjd`nr_d6-H~4Zq%F<b7^2Us!BoZ);B#g1r?7BLE
z09N^`ee4X}KzhZ8MerE7hCws2AA8On%{FFEyKZ1m0Hq)eACZ5FbzaD5K2q+y^l!DY
zsb5VR!(cykKg0}j<pIFrPhieLDE88WR{ikBXuiJwF~TZHclO)Wsx5MOnOw5AVsCEJ
z7`x2q{Jpll#As%AoGBXsw7-Q_c&UFn_BUJh{AL@X*BxclaAB<CQB`+TD;24R4AAI@
zrjF9^@C3&{7J|vs>MJ{kBo6wRO(p-tQ*8GXExvP{^Rg$K@cFshmM_->yM8{pL9)Gk
zkG<I;x4lajL+6bd$9Vj=8=j_Ew*;wr==sR5oAvH4Zm4lT$Z-Nel6_M|%<cjSUsbO<
z5_~HEDwcd_y)9yW6^Rj*<7j0;3zabbO5NN*HIZF+ugMy=v)I_ot$ADh<wt-A0kpF3
zy`0j8_x10&YDKcKnR;TiY{F!UO}t1_CN|~2?BC-0gG)@!Oq>xX;C9J&*jU-voWrG!
zNJ9)^ay}0l+gq=wt6X*IOs$-7EImf+jWNo{{Tq1YgB^6&PObodQ|!NsvlVu~HjSKj
zcHo}xeYy~(^rxL~UH;(N!jPy~Uy)&xs8lRP((xj*>v8%VAPYWiw7&8&YD)%DE<`h~
zlyppfKPp6iIKNr1HF!bZ^wRAjNK7r6W^=cjDN=`~I-b7|%~t1d%l-ZAvw81U@!IOp
zv`myisP%MobiA=jB~ReNYvUL6wUx9E4C|+eC>S()Q2~qR0VAR}3`CH%!O2|ZWi8T|
zGV_{l6>y-|(ht95!F74hwc?Cv9Z@pHStc|6@nTaFzx#160{J5o8a3=YIPnW93(*Z7
zerXx8wM_ix!+Umx`S@yk)%?UNlMx&IJTY_QotqyT=QXbEN^^6`%is94SHX+N7mJ5L
z>6j3D+%ALUn-;GTt2*n~ZJ+bGvy2i~RCq65yC42RP)0`zLtML#TFck89J~~=whNwD
zy(#Su7|JMUWNm&sBA2cSYK(069R!SuC=kx#kL}^F(Dvkb&4j$wc6t&rPCvTU&SuJ5
zsL<S5C834bl$4gMbwlpMy5svToJDqTE3({dm*(jlbqBq>iBJ9Y9T-6?Euh+m9r+jD
za~P5!fiFJ@VDhwzrQeOu)sKC|5l&X@mMQ~C2@4X<D1&sap#dQM)nZ6}8I>&L@#vf9
zf`e#wGc_;G-9a<K;Tu}Ti!0ps;Sq?Bs$^I8H?(6zHv2cv?pI{d5~S`9`pVbICLe}Y
z$S>8rXFfLDZ^|P8&|i3dH*X8(uaqT~PI&v)8@`)Ds`ofhb~e93LB}=}eZ=ixg=`E)
z2a-f+YxWpRgC_D!XR15udN{=Cet|Sth%-i9h}yg<%n!X*i)FVRO>)(zc*N&vwXQH^
zd%=Mfs)#)_r-0IHyWxv~0<==e;xH;G28h;=i)TW4)!``RaJaWKvR|wupU%lnADT9}
zx?R{77p8eQ*_GjYn`(^J6O*+VkqQT5kZd2*c|H0$@g)BA5x}=dz!k*QXe4u5xzxlt
zLuZ^Qd&n6rz0W#fmTJ+m+3;8_D8P#nYG-C$&DhWW8N;CmB<$Ya8csXw64aVa>uYSY
z?@<+@kK!k*wENOH%0O?f1s1|L5o4h-tP$oPX_x^hB1dS%dK*zzyofM)evs;mFYKOg
zoqzDagj}5TY|YW%Igj0S+*}CVLFU#MZv#*qFeG=M!Aj{FWR5PC37jTuK<cZHazRN%
zOicBatIpy-gMvbvvqMp26Y-_YdqObpDGE{)n#XDj$v=KHy`c+c8U~|?9O;Lh&iG9N
z1xvZ5duK*j0X_}FyX|;XpKh<aYR$w!Q=d)ov3-C3Y^?p&B7Ht8iq66OK>$M%^bxFK
z`J=j4_p|K1GV-2#W#{ZEWoQAP8%zIu(?J*}@6$PPrm_;Dgh$S(&agM4L^hq{b4yg#
z3jKfew(#AWz7G($=EZ>_QK6F(LE_|84-opCuSl_7X`BEtRj!j8&IO=|z>ow@^@vLj
zZ}0C5!!U6@nGQu0%*?Pht!QN%hF6TB{%e5pl0ps3-Py$tyB!SKbGFvztfi%9C8f09
zF4vU79Le(^D=06V)Ue#R9CzCePb7bsI$Vy^Gc%Lp<GBoa{VOZA^kkzIq5oq{<nxib
zD84eXST-Gq-P%f7?|77ul9QB`#OHF@+NA=i(yE?QA{QV9{m1Ob<^H}@I=l6cfS{0&
zyR&678g2@9_O?%dF!>w-W$JJpolI*^4{TTB|1`hz16AqyR7H=Bk6WFslC!gmmZ>z^
zty7YdBlv%_ULhqRDRWB*1=Whcyz6QZIQ+bsUbW)==kBSVsSNWm>goS#0djW3=-$a1
z?_yGbDFgsm((;POh;}6o`k>rVKeWE?L;B~H8e`XgSEqYi3jruE88Gn>kRxDCS#bY`
zG7pY_D)i5HA~5sx|8<cFJN$p=r7-cg6yiU(NmLsCB|iVZZW^J!3M&Nj&UuA9`Q~Bi
zj&}2bIdMynz#*tI?*<MAv?j}jMiXq5<t5<ACncabocB*xuzYVUcSmttj}H8DZ*hEV
zLSth3ylhz~9AmHFgBDluS{S@&Fq)0QKfbg?=G@Z}`<;PjQj@KThV$g<1aWb8DSTEn
z%13}5BIf!u8M!uG@Mhv9!crzGCwkNBPu#QZ(~5r<8^_DoG1VH5YC!7!i`~#SqUy7Y
zgR+iajZImZ?#kxNUiZ<z^-McBWJXl`z=6%;fiPH6UiMl}NX;K}WIcT)M1^JgJ=3{z
zL(@5kcFLPS`X!Y6E;0q2IEcj`^JM20KX%@|7zcVX^tz_;)R7ydo@|##Z$~~GIRZW;
z9V#J6f~2laW3=AxuNLm<@5`c%Eq0epcR2OkIH;0(0*t3mBJQob@#o6BtLg+|n7-Ay
z*-hCQ<b({euU71*a&cwg!Hl0Qu=u^BPF4wilx)gZ5!rysymQhAoe8+wYRIT|2d@P`
zLSiA_JuX|4{g9(2=*#!QDM&XZ#|{zgE^LZHyT=(^>=(S|&y8vnkHTS^uT054%O!b%
zzx{`>v|1anyB$W%H@*-p-F*(`E@Sn4_}X}=lie)FsAf}M?EDUe0)PCY+`jq-uZ{8I
z@^3zOEmOf48TZRzz!n#hZjW0lnz*O+?is|k7GU7|8P;K}GgLfr{v?LwVX{3scB6LN
zGHK25aOHNeK2pKu(VssSd7O3jlq=WfeAT<`FEhB*?Yp~h5&Za7(6uH*Now;4tIS(k
zRK?DTlX9S_^hN8<`f79ij*wBBduNM0B3VA=yVu<I32BXf#Jl+1!7FvN10WP!wO^nB
z_qi31ju#HA;M#l9CJ5b0IB1Z_is`T6hQG9&4j*1iwrSf|Z1XUXu4y~5ig4+8J#dU(
zy6Pk0j3xq~eWBO(PSf-HR}~F!*_CMFL#aRN*C^+{uL_I8=z<eGI)~Nj(=0T8jWd;>
z$Gl)w9}38~i_e}A?laUEGIu3Z5nANvQW&Qy84QSy&I5o%({Ebmr;IF{^^%|4fjrOc
z8gRnN7`HovWeJ=G5j4P}Wq-(}_>%ZpMgv3D`kbUs`qE*x-qpEjgQS<53l`Mb^FjLa
zRoyx+FK%5h4bvx=(-zXK@0<C%R%@!G>2aQW^f@nDqCRUw{&Q^|#Hz<)9r`bk^aNZC
zhxfI%P@0n)SQR=|00^o_U|~kT1=FzXZmg$4)hU_u!3~F*|B<uta9ic_1t<*W9zjLk
zJp0pdN5E_(QSzfYSwt<HfN0O}<FTSfs@UvGn}Lh9r)g)h7$e|*5aIM}*8t}Gh%jd~
zK_?1r5des7wvCx9hc>#gAEHz6al0#5d9NC8FW|Hq48TyudpIt4?p~Ws4El06rBFbJ
zownx4MMG#g7_X0ap+1;C{5AxH3^qNdN<VDzxYCYK!&!~N?Xvm3_{(F1XSmt)mVGPy
zWGq?iEVPlW;}``mo(KBGYlcQFM-UR?3SOFT9GK^gO=iyauBiMnc^^fTIGR~4=9<e$
zj{fHGP0&dC9kVRj$lLSVN#MCl^B0kyOdms(>=J~^5H9BhR7qqIeU4vl{aKZif&+BM
zesn=USX}Je7+X>v&^n`uUS#pRkx-|URU&4BJW2%US10sXN~)mt1XthJ-TYv!kEY#k
z`UNJkqL$W<I!baZ69G@thniM5><qAqmKb*`ZokT>8wE&+FI5L0^|?`D%s7WV8SeDa
zV2T~V9S2P_DeIqx2hl-ts>!Pz#}(fK0ik|If>4CxjhV4OBK?Z{B}07tEtkW$HgNc8
zG1;QfZkB4G4HcO1wZvgBDqn6aB{4yl5v~JWy&i$)<;FUKHCapFv)#={qOOem11+^B
zEfH6t{_3m{#LMNCzDW&v<yd@Q(B<Cpp(aI_cy-%lEsb$IXFZlBImx2DcxlDF&jEYt
zjUpBeDtF7}W{a^gC$zOQ8klk->h0NyJ=G=oD9xhdR(RCz3H;KXG+i=&v=W+P0;t7%
zec;#duLs|*Z8^8JIR~*2Qt(DDbtMHImF9r2c_lG)ISRJ@U8^H->^?5<$HNOg^!OQ1
zS~-%Yon5wVLJ`001;>@Fw-=(eP!U&QPB|?te$sW$$Z}qG@;=w^NR9iwU*~UgyL@`P
zeX3O#ukA#}c9bAxBaNE@0Hhnk3*yn*c;EEk-+up5ifbnOEFKT;`q<>;ypIIihG>f~
zGDM4gL!@SxSa@&T_Z^Ryv&8`sSxIfE`UyFh*H1Hbn?xlQbn=5`2%u|y89O>kAzaXk
zyBQ`kjX9Q|4^LcK=f-mtCVtvx`O!=H^P;S{EYAG2E`F`+Nwh&<$onAD>E5Z4sl;5c
z2Tq-^`}^eD?<7Ua{o~oj05W{-#%nG@!f-?Aa_oPZ|H=;;ZNF|OUtaj=YGMjTLK_{t
zht#uetGn|Xw(FXn&Q``O0sWJ$b1NaC4Eh9RW(XjE(P6DTB!o0NWdHgJv-*6Hp?njb
ze*FF$LdqDYtCfHWp~=LuxBh4uo5l88-XtF_NOochM|;_``2q2s_uY<lsj?SqgiKd=
z4SG^*slQwk0xao^Zma5YD-_G^P4gl6kr9!=r~&P$N(PhKq_z1UsL>-A1DnHH(@6Ec
z_SF<yztqR}29ZduNv-t_2^m!_Bzc321-H3H@Z(O|kLN_}mh@&DGhR0E#QI{ptP<|>
zIeh<caN>Xjc?f4h08qs;F~P7}&ga{I)zw=i)UV1quoj~>b<xV!%o^k``DS6zbKC(@
zW76o7VyEvz_3i743PLDV{lgibE9yvE3zfp3N8E;^h>c`1b$ZFMom4H}mqtd<hu1Wx
zp~E)M4m=bNZqjo9WM12r=P|J#Uw9a{k8yavo$z~^-Wrj?8>@+W@C7u9r&v0}C3FiA
z4gm_;%45|GCyuH!mE(M5yw)*pWSHCzDU2Wd0cC}ViFCH2IiT*3&MFFVLPzgeJ3m;_
z$_|h=>!iAvztZ4L#U)mCdA+ef(&A*oR4u~b`t*3;STtIk)QRUj8<1?ut#*H!k<e<B
ztqp<fBQhUXlRw{EQ@^%R_N$z=^pL~kd35{!4z`Ggp$}D)rvtZ+6;5o<VW#|h*ZFf$
zy%xb3TcexnS1a^J+!TbN`q{JjF2wt$e-1yNKff*N+zIXxQ<>3vVhl{K!auH--;WPU
zC9P}F9y5erw{2lqe`xi;$%JOoVqQ~?0gCuCibZ?w)KvYx$~G}6!6mZaAJ25hmB}TO
zjm&7QEMA}UH&oZ1oL0raDc2BQS$DZ5X6V-Z?s`x8B*EvYF5nIw6_LZg0x>S4gelPP
zd?g+{$09tc1kIus25sEFp0C0GPByl*o*)ytWn)c32bRX~=rQSAo1@)yss|Us;d`ZK
z*l++qR?QO$ev*$@T-(>KD1%FZv9hf3t29$wd*H#(-*?||w~o`eo3L3y8Xprk5y$iZ
znak-?TOC2gaDv2~ncD**kGw<E9D~klXyM+3SdZ^zO^@q+^C4P!;+P7$7)Mk`<2A<=
zx|wu6Vx_IF7Q)+%W{<_k2eT^0NNj{IUK`F=5ulWmlR<lsRa1$*s(wQ{J?=N?YCx91
zi@r5zf>BLjthxa!%8nXP_0=kuGBMp<==}aRkA@ETOCm=kA~~~O-!<-rQ0|gTtC0N5
z+nXX!XRKB5;2AR<P0#BCx8ay=Sj@-N33NOkt-YU14k>)7Ny`syGv1C`DnP~*X_7@P
z*uRA;eHw2g2x7wVLn>F8I|=noNDz4IuU@5(Lv*ohGnZB9@9x~TH;{K$c$cqXm|1*J
zyZLiQt|GJ6BH@)bKDA7gF5j-}HxC(P__Wg$Twe;_wIA1$YrWB4c@Dr0_T$M%Rs|p(
z#_1=x02Pvvcr}N^l+%^}jB;2srfS2RC9Uq1)qTG)8MA5-vHku`=ok``lvQQz{p0i<
zR2Xu8V3WGKpmMZ6tPA=q8_c(@NiK$5Iuqwzc)KB9EZx7e$8xFuN!v!cwWWk%4hknU
zvsp=+7<-?Q7D2OX%YqaL4B=!YwfUIsqH}vPcREGVdOO#!?;zauTu0zfc;iVWF*3Xu
zNIH!UuBh~4Sm7(mo9Zud)U`7RQX~*pMp96{sx!rVFUmDPIH}CZR_|^wH?cPtE9Kx<
zRT5w&HG&vPGd-0bIBv@B^7Zv%>n=-sSvbIX)wfz3s?uF<L0Vi{9gFWbRWxX@BicwV
zih_}0Gz*g)f)eyu);U{h{Jp*$G&l3tvjj2G*Qbtt)1!AS*eC0*kw)Eb%~L=avDfut
zZB|^Yl;eH{84n41q^iTG&C2tZlR`uF93KgGglNxVdu!iNX6Ab~p_u~8lg!R)d39*V
zl~i_BOA1L|`%|m~4%BS<D8pOU7d4MBvk0pQr<cX@OPQg(YVS8fB2fhVHtdRUTT5;P
z8|%@??Q?=0HG=5m`{}%1sThMtQnUK=6cA#=A?N8G?|Rv-%X3W;?MtaG$MZKWy{i~a
zm_~DMOa7i;a(_Ob{*B^nz{%c?Ro#qnv*s_Iy_A0^*IV~&KSC{!6lieVP19($`~1Ec
zbyNK?ue%<h0-cM%-C^C~XJ+uT8TU?S$WDi?Fj{dJ^Zq#|+q!WC>p|D5$xT9c5iEgH
z1GZzuQ5e<pWl=lc9l}u{lo|cWI}ViyfLyq+4PmM@@AeqURu_qj1r&-zR9WZBRj4(A
z>}-unaTQV$pjK*s)fU~K3_XJDuM}rePK8(`U0MH(n^aKy)w{EAdsf*Yo9jAf*V&y8
zu2-6l6sROOqUYhZ8RocR3xQ&P<xcl`*Ie)AK7;dHx0~|IOT*w=UkCNWLS2UN@Ayba
z0)^w<1YUOE-ymZ+7qK~$g98d(2Ksb%XKrlFKWdo>9@TEItoOgjZdb2dr+aGj+&jX+
z0hSX5kFJugZk4l6{+qwm_}ysf@oCvIHY+?ZFtx{vEsVThs}91?)~k{f(-(7caA<H4
zQkS__Zh!(L6&9U`K$LRb{<YcJ5ctHe9S_DO@;MwnF3#{$0oYtzTAj~9`6p8ar|uuV
zugev+i7i>)T30&<v-kw6C11Xn*8?g9p08@*;jC=|0l#?wQWUs0U?p*hoB=BPHPuzS
z=ee?^L{Cj+^i{r?)NI1MGIeF`%GLar6<kA+6>&bM@`BAuqha6p!X=+ygs9Yq{4yNd
z{<h@=R5@IiBblUd8PEGi6P6Mje!~|;{LLSbGADi3U>-aMaNyuOE<g~~S9q8!eBI2S
zkf|!4@G-3ODjBysD+!T3SL~CncX!`Ng^EBmg2M{R<r1yFY%-#-i+REj4J~a(MsGDg
z&>M0m;Jnku0hBz6VKA*!l$;5L{7sXWn2dv{<0FI-7M#n-Vh4n%C>RAz!|9F)iPR%6
zPNV%q1{k=oSw(<jcRFedJY>`uybqolU_m)anPW{F;`hqV-;0QpiR5Zad$y4T-=M6C
z=g8glh}2^qRF=8Te(QX8aA1J~jJ9+ZLm+y^Ht*m^XO&dbKPUYEa$c6zyIF`xq(*+t
z&T!|4AaiFDkLI`-xDTUO+dA0KH{U<E?StarCNCUMl^fW9$d+Oot~x!hmiL$J@q1QG
z4pFN5M)8eR8s1>*Vt<^hw|}ksid7%Fl81?eizBA$fP&1+_0h2zGxb+WOO6?f&|Rhu
zeyaj%wKN1W1b8ln7h)Q#?cklH&nYZ65S>-PpJJ@IxSR^8Lg{y7tM)V3w`R2bWhbf=
z%1g(h0e}RIH!i*u3|!m{n236E1gO7ga8Qtd5T2jmX3{r;FmF$H*Leujy)>Uiw#^Po
zi;D@O1HZ1P2pY5>(b;bU>6@Yv)Z1E(my0WrogL-*cYZ;AB=pi_U1}?p+>o@JDj&PK
zGg98p0>=&3kF0ZvnBsgfv5LTC#)9lES$5~>+;K!yB%&*~<^T{xhK`eH`SLyH!R~4Q
zt?TfQqU8WO@Qp?|#yGr{RMgnG>up>I(;qu5DAS6(p#A>Cj7rVP=P*Q6{SrE4z>LQA
z_!<@tPUjVD)2GMCvuBX<SrPWR=)0(C@Blr94w<ndVilqA=jXqL0F@3dBT-Z^V!qYE
zb(^uy$*bo#PJO*bVv6T?5-7Fw3=lY=Q1t^E$fc&IZ@Vm>Pkhcdon^9rSL8A_^3%5t
zHG41SJm=n<KV}fr3s+3!&-G21R_@@25yJ6uJ7m8eKIT7p(7a<XKh3^l>=qGWS9~Na
zNr7jw$ZHJyg~3u=i;nh_(-yxjFBb5xFFkS<S=u4RfiK?Asp~s9+)Khwnm*BUw}AnM
zgs6!D8{t2vsuVVHjbY$#%a=~1Un95x8%IOS+9DcSB>?7MrXzH5if?)2r2jaMQ&nx^
z`UMQoy(=SXzActJ+O|BH@jObYdO`GXx(Z$AR33FRg&_fiHY0jVi-~($O+JFv`T&4|
zp4wzg4V7jDV{zR5>S=l%caeSZuzQ43n{f!E1#HTGt&5BVvQ)_8>Hu#-$U+E4A**rA
zHF`P!uMwt9xiW8hX)LvB3Fa5Od)-sK_M4@|qtw*7pWKZ#>YD?z^KlR|KP)UTUyFHY
z=~`~ehl%CMS&0FabbXELw=f0zJ(OG<L*Zv{^~-q0;eCqGf_hRMz`r{{ARt`r*R7Zl
z1UN8wzv5D(&N1OF5Q+_R59U7#S6E|jSpi>kNgr3H#LlEd{AH40D4J+$a#n8q|6t!O
zqv8m<e&0z55F`+spn(Jk9w4{|cXxM}4DOQvAvnQ<4({%QyTjl%z!2Qshk>*5yyso(
z$~x!6z2EM-pSo7}?(XX9+Eul8{r>C*fi6$lgDV%Yr@WOSu>h^ml{OPOipmLPd8T`2
z=DWw!*cR_wp53KIy@X<OepCf@_16GNTT?MWu`-Pg2PPyVNJPd&S6!^iD;E<|8=<rf
z^R-I4YoxevyO38`^q?Ex@|d`5tdLQpn9s?{tD!1#Y-POUP0##u!86GadJ-@Ydkm}1
zN;-4W$j$d1E_QD3Ooa|xek`<K%b<H+I~kYOD8g~xHeIbAv=K2vmo!?r?+yRGaGYSJ
z2VnbaI{AYs_}?C>XALGK=;h>wAGysD&SYC%!&Mf!6?04bNbUBA7me|QeV-v;85U4Y
zJnWV%CV#)Epk(!zQ9e00-@hMgI^EHSKuGZcN{iQ*P^wb%q-uX>++E|yc@9G=v$|7o
zyFuVf{^}**Icj-2YL#&$J$=&&VOyP+HcJt})YP&Meewlha7cITg{f74E$2B(ujVYT
zX_7oQs>tBb;%_lC2rL(bnKW$4^5+}2l03Cpo{i<lR{$pV_;w}0sOGfVRKBQC^TAU8
zgOeXF)!N{~K;?CQO*fSHp_5X`l*pAIm6nsx4KU(?1{b#Ohl<h`QWmn3E=j(YiUVb|
z5vLV=u@m&MM^E>vH8dlC|H|?lx7T~zK!BU<_Wt|cT%epjAW2+`@oi;J+@6Q*Cqhj4
zReotDB@-@g_#C&3?a9il!l!)H8sJje)!r+k!3Ph6`LbRH$FH`skb9q`WCL!lp-)8i
znEvLD_I*DdIc2n&5))tkB~2wI_;lHqZ*RmY>1f%9VhRY0tHERBr!X+vE7cg%BD`}v
znnG1zw@ij&4=R_S0ce?o$<8Ecy9et#4vg|we0xb0Ppw9$tc3)(Z$GJx%#wcr74vo~
z;*m8`%|SEK6V>0NjfcKD$K<1^d{l)He2?FitmfZ;M|M!|Vr}CfW^R>e;bb$8YFfud
z$6}C?HmvHF6`jdS!l}0oThwy}{5et#XRDi5+8!;LmS@qxA!;9~ITiL&e)bjOxt;r2
z=VjqKcOxu9J+pF`**-FGiKfKB@@IDVRbu#)Or?kl`@F*!S7mTZ#sPg^+BJ@<{*5EV
z52OC`<3=)S6J?q^6`!LjgN_CChXz{P-GMANir7^@EmcmrVc}g^&F3q45LfwI@rKBq
z5E)Aju|6eVFE9Vq%)eyw=hyXrpBhj)yBlt7_e_T@FbSxhpJpbQOR(R@)RX`rCnU`5
z@im0scUOvQ=)mK+j~<8nvUF$OLgL%(fr6A5#?R6u0ndSG65(Grfo=o!t~><qNYj>D
z9y}=)r<4F+*jZRIb0pzKGPpK0G%s6mgwxaCnqtv@5P5VUZkY`sq(qI;_+=ce)ZE4G
zJlT+Bu??QDI?co<Fd#>HX&9&boS8+JfKR61^^(JGt**U-il(PUxRrPEL!w-47|We1
z`VUe*Z@=Z&kmWYpXA6VCbM|a8@4~{+?NFNh)FmeQS3I7?paX@U7RQ!VD&L8Pggv&F
zdr7)$IJ3Tb;O4&(X|#i>2txZxyRz59*niC}pl3&HNn&7iT^>yrb%X)nwOT1Vg)XO9
zI!1z;WW*U`FBckt76vi&Gy>r{{TMZ=<ym>LO{h5+Ve7GheBYAZ&C(6h*)x8l6u_~y
zVSe95w9IofwWcJNgmM0k1+dT#%ckG)2V~_~)KRe>ek=1BejDe~q<r(Ths$NHp@9g!
zSb#$$x}v(_^Lb93JSIiTM1a4Ne7w{v;*)5@D2!_Ua5*W$upcha6OStlJU;iMqrB%~
z7i)qX2}&%s7xX&^aa>+t^pKrB?2$E22I=uZB}WVS#g$f3>Oi$uhOJaHp>rVi2M*gs
zkUO-HjhL3|?`xI-G#m$uffxFuL`f6Hv_Z6qiF-aCdq?lr4eF1kMlw(wjlFdRB(TIy
z==MJ0Av~Qe`bieO_Sa-3KP8Y68+U1Ulsx{_(4!0dv}xEXa3l26@gZ}w$VCXpKdBsl
zPiHl8jDivyLv_3i3&FMqq9SGd$?5g6R6bO>C=Wp4X22{A=#c$rT2_23Upl-}krP=$
zl~jakxQ6Ual|}nbn%*ABJ~*%zit<HNBNr`%Db(WMX7<2GL*WDX!66$@2LbQNae8Xr
z7MZ?o>LIFAI%(>)-2BH2Lj-&3Oi+?_;V$D9OU4mI?6Ox}eFXkv9OQp}E*6WEoP4}{
zYRdzW{qUK`SC}aDH90Q%Dw8=pVdbJ^Y5;+Bt(ltsS}AQTLF`PX{!mMAx=`T<JlJxO
zacMAG>7BP(8IbtUkO<wyGsSwTVq82>cVu^xclbg=$RK^u!{kB%y&$HjD4Fp^U((S;
zA;ZT{B}qeVqZ=m6cKjc`Z}Z1hMi{ssAJ2DLZJNF~a9haK4eR&px?$|qo@6v<jro7u
zNG_fl+D<rdxa8uxoI~T8C=B7$%lW(Qa&5m!OHfbgpCNP@&TdT{aFwa79iLHIIFD9%
zT*QjUU|Zfs#&>Y|Nt69(cHcc)2~v%?9Uvd@;lF-%HN1;Qp^@`)k-o~>``}JlYwaRR
zv<*yjee-kri9*BUxOypvMlUM8J(%({2M16d!1IAkt$TmZ7FUyqh~j>#y_AVd_LADT
z4Gu3Wi?)I-!3@TyU&Id1p`G|%y=U8=C?FB;u(jG)M5G%DyJP<ah99jx2tw6Mfy1iO
zdx9RLQ*tbSUHL;e<I#1%L{kw4qrD8Bna4Za6R;e_w9z;hXQVC)0kZ<|24aPUkJ*6N
z<U;R3VXQOzt*0>f1Gi+X+K`9K`~`s;qUv_cwr3pD;`=vlPZR`Em(sVVf-Qy~@?Vuz
z9qy9OUYFRMH=@4n9oVFA;M$$+VPJ@b`<TDC{mV5xngdNVgLVj0X%uq4hUS{V_X*Ix
z4ntvY#lP21XD0;a*k>Ow>{h+8<!g?ChE)7w0K641X4!h2vt<QXK7iZdZa|Vz9usF5
zBpraJYe!VXOE3vl|Gx0zU2#2r85<$JFrAUi;W>pL)Yvv%o`TGKQ5!kR=@@9A7S;0Z
zked>59Ay1-;F_%E&z|l6kmUBT>Y@5(eEqTT^#QhFKru<Lny{{@n+wsku~{tyCv%tW
zl!+zTQr5C>tOkdqScsNS866-tCVXJvT0%=NfSMAYH?ppaE?(R?)$_fbS(~c)hBoIr
z8EhW-c_D#L7_lkWQ}o~?Xe52MIfPx%kyKX}Nu-iS>TS0hY7)GbiYkT$J~rz3+m|^x
z`;rwpx%iz?7UTLES#<5^Twr(anYmN>XKCUf)A+NNWR^a}5wRqrwy#dqTdQC2MfhMp
zdN7;}kloJ?GHTd4t60}8N&B{FE;kzt=M6y22&z1kmrLfy-d4g-sWZzgKWR|-AqTe&
zT(mnfGKfX_>k;<0$%+d6*&{JZV-==J$HAGSyqOoVLoCxkzUADj>Q<SBie(brOu*N;
zw^y|E2F#5WhdYkaZsycrBoOJsv2DSiPkO~7j^ew<n*Nvyr^!RT#XWALh^N_I;;~)s
zs$IXCFA&Tk1Zkf2<Rfc#Et@Ht8-=YEoy`>MDxaJ8n+C&C$&&3aB%sbuo(p-Lksm}<
z1r=St>At`MI2t=T;$Q)mL;et=0gBn!_{49f%(Uj-<=3X5>o^N}h;r8Hq8P?heiGig
z$@At0j0aQ)^f$VxY}Rh;uLtR;;eWf7V$!Hk2vur*8vXlAu3w-u!79`k*75YMI!Jq7
zzn(E=ffaE++dky}vuk>)d-?Y`PAf?8W7Wq)8y=@?EJX@x0qp-~0hp)NRc(Yt8-e$6
z>%5WJd^Z!y5B^!SOdt2FJh)RA>tL}WQS6gskS}&eJ&{5k=1C?!hgzJup?M6Rwd<-<
zi~E}@`HACgK6mE1#CIMKO5}Umo<A_O`b9g)N!b}Sxf16XFEu2PDo%zso0;)%^(Zf4
z57f%Sazh#ix)m&3j}t#UV9u6F<@}5|Le+t=pV^irX=dC%?YecmD&Uv-zqQ*-{E2k5
z!?i59Do>aE7&v9<+#MHZdp{p<6c+pvpVi|2Y_(pKS!A3~_ygjX5E`>g;+Gr<LLLi$
zA4&L1#~aB1jX^-B`z=nA%|M~7UDCC&nSI@dtXD;Zmt&NxhDX?zj5NHrRq#!)%8T#1
zJP!K<1^rc7p`}mi3S!UpeWR^vPDL+hu42~@^gA09zCVH9eMx&lUYyXMGZ3?1Dh#G)
zHWY2?yv%&RxlwyRXyMREALdha>Zx)))Y)P^QH6Im`t8~5(RY)lg4{Oq<aRZe;CvBZ
z)!*O!XVs=Iy7=pyPUUy54|}~rl?I(^PUC0qcp74Viz3JB4rbguyf!$8y_}`YWG*|S
z9AHj{DuQXi&4o*hMSNAFZ$|&_R{1UuJ~qDV$Dq;qP<5Q2-5LIHe>2?MxZug8T9F{K
z1bHvUFv{LFsFTC=A0lRNW^&}h&9Wi$b;u+<Qcd1X<ciQD1hC-oK4h)S;~y;Y_95~=
zkN$^j6nm~?GlxvVC68wncLZPa-PHvDLq5>783H|we^aP3GYr<?giOL;N&Ev^ig|$E
zobay=9<E0(-iJJ~QBVQGlqbrL-T&b$&r<(zl=B<vf1t^K;1~P<Vu9X@zs^bf$9?|S
z8?FBv+<9B7_ut^l{~Ocd`Pa+rH?97EM-b0!Pn>fJqd?M!Jb2Dhv=32x(jQNK_pNoE
z<0#o{<?9-R4ldMf`3G0)AjH+7^&=cw1&k%yg$B%gr3QSrfV&`TglEVO<`(y_C<MkA
zt55&Hf7TV<LhT&x<go6kBXq9}{GP^w<{$O>c$-fC7zHA%zpTFmd^?PW0k;O@JeVCr
zxJ|A>F@XtC5PxH7(e*C_%+Bqggk9d7x<~eU#*n9DZxHhBYnrQF+a74SLBKB*fa$Dj
z56SA*E^lV|><fUFRbj2E`kY@wKYyy8Voi+pr6G0eb0>xti5w>v7NMh-Akb*gC7sEj
z^T?3iV0AN@mN?TUaB21KDeJVd;D=Ze3$wwHuafoY0SO0a+-V6^v-gaqsr5TGl}<|o
z05D&)JNJYe%rv3eD)49*9XPxw8yX$?*uUKA|K5BRgv7k;b;FU`w-;1-orBw5j6$R7
zU>oS)b?FTNnA>rM)c(YH0X4CeZ*nb-5GZCjTi@u4<(rc^d9D(7JAJ;oMwZ_G<!^9w
z9&ASx#XuWMHoL}~J%&ZU#QAuoci5EC4}8pRj9fQ~QfjXaJWq=63@-*AqCJclxcsLs
z!Sn~S5mlnyKtAGegO<w;dqKh1Irjf*aiucA87k7-Nd;?y)G^8=Q|*9`b}eG-+yQ;f
zgI>REN}FPqyiHKEcPGt`Ld+=1XF299Ecu7=ZeveH-s!5|tUbsat2m-L-C4P>-6nK^
ziU9!gS*!i3%k+Gz)VlRscVd9|8&T2fp52>Vb`=1iy02~fF3zHb+x4?$!EjY2^%?>;
zI&A?|B)fWcGz9NB6Z`w<4^<?fgZ$D8Pyt!H_23lpQ}B7K?PJR3aw~>}mon^IYna2F
z<5{1Ya2g+ZLQfxwj>_W!NyhV&l6{O;o!N(nrW@Cqx-TIciR*{xAQ2>IXX%euF};(l
zf)5PkSuL9dmAP%t$t&xl9&Rm*SYe|gos42wRaIo2o7;l7G1nB!QK_HHH6&y#Vhr&w
z9}mI_QhEzm@DMS2e0AVhR4}jaAY@8&zw@N-6x`AAa~yco;6Im0oa}4)bUu3dLr%DE
zeKfBI`!&UKbQWKIU2O25;b<S%{mC5B+(<h)O3FRT4pS$`bZ8OISp#ER{o|+vh7t)y
z7Tq(@$iI&9!}46y)^I$^#Ph`{b;QnQ(VP8sv%IPi>{buU!MI(1Y`|NB(-#RMhjT0A
z@_lLwTpK}b$d*H2_4}x|aRw=By)8T?yS5JWs=Iwc0_`r(6_#^{^7r#sd%U+4gE7Zz
z#W8rSias94ld$D2Jzi>I569Sn7-`4Av0yHSnLi_#8DXowG4EEJ8j6BB;<oc&Wj^f}
z!QMGqS-l2yxj@#>SniYO)H(=c+|L?`4lW3?O!%5_)ir^`5L6t>K^4lmsZr(P;h1K>
z$Jzs@Lhr1ZK)so}lZ~ZL;4dd#o`K%qG9AM3H)13;UIWt#k2Ef2RDiG=uV?7MwcTIm
zf+|*7jGJ4*8$_O_mfeS?`Mvp#I<(-y8$08L3}$vW$O~xg{@HL|3$G{70=iY8{p^gJ
z=qc!rRwWRBlM0Sp=C$7zv5J*L(TAi>KHkX`1+F0^s}NgqC<c(U%dL{HIyc7x1nROc
z?pR4E^vr$ym*YqI>p$uR7b@+;dX`8r@w1GDT$4nBPI(3zovm!F!y>(2dqPepVK>G+
zXv=NW@h{X87!QfBz2<ix9Qj2_#V)UYojW`xZ99nXExS!$<y5S)diVc_&0*?%F6@ZI
z+Rc==Dr0#QqN>#O&)aaNC7p^CBU(H?5k%n=<$u>1^N1%#5$3}MW3B;?m4|0iCLY70
zbzZB=7!J0_M@HZ{Vx1|h=k=#A3}09*%x$Q3)_PSbzkluB$r4B%fyh~0a_#dIHpi?P
z5B$vOX2foO@pd$8M!LQ20ha9M)7N-iJZwQcK9m6&?)?4o^+D{t^W6KjUI`fPpuOXA
zbXJG=&u{%YogtrI0K&2~s(y|-xyMc%L3IC+YhiEDYb>xjnD`&B7b5NYAcy%S3Z0wm
zdUpmreq1u%JRXXiCrD35dJVfZ-^blNVkM>YCuH7+y^?9^=hN~pdyA!DR0A6r^8C2a
zVTq;ecZZw0`I666D7&yaJLS@aL+E^8-r>->gLW#biT@{Yya12egL;ni-PVUHeJ{pL
zHR6s;?p}GS6TJ$CJD?E%#kET8wk9*w=KCM7JA0&I6=5gR;dYDE`wA>zH%IHa=Cx4!
z2>@7F@w&Lk+6Zw#Z<Na~DZvH+I8M*{bv#bM@TR|f4sf5xt#Abj0p>r8%rd;0nrS@m
zc$^m7-i6oA-;)HH!SqH41%wbDhkw0Ovr2+nW37H%wGVx-rH_e8n^Zuk(C=KXpeuqO
zwjUqwP#NT<?ZUE$XI&0Mj0KT1{r=`NzFYYmk%cxBD@P`>U*Qft5&cMSXpHkJwVvhr
zit`@HhYatxs$bt-X8a0l+TluX9xd{u9M2i>RL-auYAoes+26&##HmYZMmH4cxOR{0
zD!Ke4r_rHZ6j*avfElJ%2GwD+{m>e)hsX?P+VnM&9zQT2RcjOc-uKZ2VOF;mKZm4i
z-F+r2&0EeD!fdp<oxG*!v{wS1BqaDPNGsgmjHAUO?eprM9vhnKOa`^C2mE<iZ+0NU
z4s-%_p~3XHCVaf7kp(H7-7U8|k!Y7LPqjc$=|ERcO(056eRZy!0mWcPr1gNIXse$`
zR+hmj27wK0#ez!FYvE3>RgO$27*Ioo{gK7_VIt+!{Ro1C?9k(w5LtGCrlt7!;;^Dk
z7@t@UD1EAvSp5OM_3`{Wxw9$tvS`AhsDtgD)mCb>=s|`4@)z&T3oZ<nVoW&yXO2@o
zziSro81t_M(TP`wq3uN#XP>vXrM0WRycGwN{iA3=oWjR-CY_@9@~D8fna*2oruGsl
ze+v|SmI9i!J+*(k9>@MN^C5gsPkZ)tZt(H!Nm1U`_V0Uk7e8fN&a%_ho?mFI-bYhK
zau%D+y!oaZ+g4REeD5@-+jmH1PoJ(5Oxkb&xw!@NN{!b}TLag)vv>)OAJ7G?vJ9Fx
zU2}2XbMh>Vxgqv`R49k8vAzVX&v|G(^SNvu8)5>wYREYY)AhExxBXn?K8a~&^vwHd
zbar$E3cj4(CK$9fd@^&|2jRzhH=4jl>Tqt=yc>2JbmF~?0vk1@N*eii4QPEj1&6Om
z`AYePR+^vA2;QN7ul_A*U*|No7n9P_nx*r*f>pIvlVKE^Y?%V8l1@(0$S)L&aIK}I
zI}~U>L6L6Q5Qf#>-yvx+-zL1CKqTYrZF^p-vS0!FW@jF6rhop*Q$WP}1KtO1MH=83
zL-PP;92pN49mhk4X-${rOelajDIC_oy=|kE!{-R@hK4zI>{dVC_v&u|YTZy~mX}st
zIY|ZG;$tG6#7>2NE#&ci@vR3GW^vE42GD^+z<VK1c<EGZ02u^`M0p2{d=fr(t75y~
zHw-}o(DoAW$F$naRjuFk>_~*RkRZ=jTLNh4QoSGla<b?p<bZ*8GnJ9}m;f_1rlJ96
zGH&;+jwmZuL2O4CGLY-`1hXABKvL53b<^V){i~Dkl9tbcDup@awVw^*ku4s{OUh%*
z(MP9${O#A~>q@WzAwPeSkRIy^*jL{oO?u=#7ZyZBtM?Zb=m27prHg*giJ??I3aR#3
zf)15i^A&zo@$LW)yecZ4>9*J4kgUh^yAS-RuNCmQ?fGFvrngrCyceIuY`<*IyK14Z
z`<;y5xz@agmYo9FuY=!^$BHItd_S8!qn!bhG_m^WBCjIh&;EMiFWz%%Ycws%!$V_M
zQflPwlz(L8MCHC`Ft`Xr?9T3sH2+-RhLYc`j^zQ&%)0S|jSdl-t^c|@sYov-&6P@F
zI8Hdz@%QQ66`?mAZ{M|D@{v2;wWC9f33#hAR$vSB>%GvHl7Xk?#oyneB~Wk)UixN@
z`=d^M)d{9`r&0<C0X$@_ReoXOd-SN)wez-hwTu0=v%RGr5ceAeAk>7G<u4~DHgXtU
z{*j3ZY_d>+({vRLtz3l$1Q;ZR9Uz*2_mTW4xYhH(h^w&&8tELCiWV#dt-LH{c&phY
zB-&UG0DQOD-Z#sMeC>U0{gp4_{?Ui2DiGy1HXw+g#(v#tT)O==6J?s3lnlKpGw;Im
zt}zD(Z&iPr+i2Rqq;Y0l;V6{d95auW>(8|M7;82fZNSSeYoShZx}$dQ-XOf=gH&y1
zE6pr$)yp62;~%ng?G|CnmTq+l4hfrkC$yh1F~S&)JS8tBB$zVH`ztoJOmrz8S#tg9
zOVvUZeQj+|(kmcKsG6Vf@c~(N>C6n9R;t$f`+w?xS3ky@P*1pBU#u6Pqa_hjs`{K=
zsy3uHH7VJBn2|)6Nmf?N{mBm@Gk?$XK06ZhjeXqtF5()DYpW+?I7a|;4>ya8h!;|o
z3hW3P4vS)|5GZ_aBL61jv{4`?skJqgjrOyyvO)sU4O68dc6a`-(010;wv6fc5;8o9
z51+W<dKvEwE;k2FT*N^Nn)n_;@4v`UlvHbYYx{wkXgnZW3hD)Y7BC+=`vI;v5@lpw
zpUy!k%Cfd&61C;N(FsK#?Ak)33WEI{Cy&g9wvS=h^bFVU7(b{az7e_)Pw9<ZyNa`n
zxK)<|e0Q-ehBlDj^rq&xn9xgFXFt=wo6c=Al8MXt(|i4=es?3E({BbF1$ir=^MF%<
zj=i@wwmQ`#3x;m*NBSIW9gytFBx}iuONN@O(v6O+yeO>AH6I}ffA#7MH5c{I4?Oq;
zfk=J^_A$l;6`m0>>g>0G@2v5}9e!e^zf)Mv<>yM9Hbt+Legv~Ex%BG{2ZX*k6-5kA
zY2=+|ta<Il7JJ!b0hQWY-s~^T7gaWd%XV#^Ntxpt>@2#bw&gB=6wi4<NRq@)nna{?
zr^!Z(k1=|xm&wV(?^V<0$fD-^szY@MT`%Y8m`B_Aks<5#07*FNdv-QA3e$*4Leuy7
zK!9%XhO34Yg&rq+<MU8XaOV<t<NLdTsQ`w@ge0PmKbS_fiBL<`O5l&+X<jX@M#~U$
znqo^U`Os2JPD;|0s-y_{9h4ASnqRC;2AW5(1LQZm_aP$O|8THp%ef<y$&KdLU%V^A
zc7Ioqb?*{7?vroFSAw;K<u8K~Gd*XM9|LjOn_3Q}>CYE}FZA@jiA9-O5~vitWZyjM
z`rUN-+m_C5c4V83e*55|g7>4<jj81lHsH2>Y<L?pIsEPzwyH96<y+GDx$F_?ZoX#K
z{Qx;RFS<PyreJ2&4p!>iCie|Aj0?2XOLBMZ?iy0X&2|?xw{(>KQo?yH;~7|DSeRW(
z(#a-5p}&);nFQAG&5nqyYblzN4VpN`Z1G+!xz66_DlF$z8`t+MI+FM67+mylKyW_&
z!f|>dH?CvL-@)Y-V5WZ~NdyjOB9ea_E@jm+_VDmheJRUa;#?3`suN0-Wmu+Z+pW*C
z1!!}|mQ?-v<>9M7L=n|<z#K<bo}6f5NcVMZlhNr&WGa&eHTdc8`4aM4ASR8&=gB_D
zaXyA50`ms3XB)<}CI2=|>amHgcZQ%%F#EzLS^v|PeDVi;EQ~gc->-tE<;$f1wLJ%g
ztmJE?pRH?e)seu1uGO}7lYXbBPXCjmwXJPss!iF=oALxO`i^=wDm%(%wEwclt>^Eb
zs0<v`Ld|S!Lh=qq3-YOHhSK_3wLRx#KJL2s9^ZIU3KN(3=_DQ|KEJ9mt{ceBXYS1M
ze;b#PlwzVfM)EvNE#l96%F_F`!}w<>y-Zzi&qqV(PBfelf3VTVO~%Mw@(7)wi;D#-
zyGTbMGHe_tc4%9WpVT^qHIY#6{MYE^hw9ob83s=i#kbAPODTsPu1EglFb6RBZacPX
z@#?7UC8L9BzE0+ag~n$5mw~ko4+WPwybril0z~87<_US5vjfrk-ihGr8<G*#6hg4<
zF&Ve-rG!u4$V_kThKoz6*^i>Zs?Q27i<7UToo04$3Wn)(rCI%7`NZMr&7IhAO)m-}
za91XHTs`U@C6VYn3~ZIZP2dZ#>?<N+UX_%CHGC`5(6f6Y<)XZZkVWioPP3EE^?c1Z
zCnp>B$)R0sF%s8>`!pe?ScCsM{^?z`^q74)W{m9EkQOF|{;dns@0Bp-To4dM&&a2_
zR^&jE2DDS5#{zuWwK6@p%gG#T__|<GTC<Y40~ZD6+_uOur=&it;-q{E`vJ-GGwMeM
z^D<%TEnYbcx_Fq}+%Kc@1mc>z%^6BC+u$+}7i{8=#v}sL6OvGr{L>(-zdsgZ8!g9>
zE=WIesL2%g*l_+|rI;f)lYPcQPt}_`b;(;8P!W|G(z#O+>qLc}B$w0OfHUHH9&W~9
z>=W)>w^9&sF=tOg-UKyhIq+n`VQ6WT9Us%(SDL5NIJAag;uYcZoM%_fDJKN1C$H;o
zuT8^!y|>ygN90A<V5m0}RPNZ2?L0%@SY^C*;pp$Ha&S5_oo}yceO@=(^pP2T0?aDx
z|Di><Q+f19@F5q`U@Y{JjlPn+!!&$n_PUxPb7+2C+4pv~w_MaH^b4Z9Kt_T%+W51=
zJ*?fbVX*;u*5PTdZ8TN+laW!%_ZSgvZ*XTgG7_K5HR7BoA^@y}7MhuW3PgayrQcoP
z{zG>-8QH5Ov?5pUUsf7CzdOF4!o#rR?>8(P2!`nrqYcW6%>Dk(b99i@%w{2C^4p_}
zoiD}a7-pmE2js?`urA6k8P~_9x>F~qG{-bI|7g|YPQO3UuM^Pur`lG???4XCVrMD9
zQiU1q<J_k=#(8qE`5R3WT~0UAr^ol=VC;Vj^k*+eGnzq%v#mfL>6fKr3OMZ$E99{5
z4*O|UG){OB73)PMYGJbbkHx62?DCr4iePwUb48lK!(D`xPoDHG8NXL`iAd7!$Iw+#
z)~b9_sYsODfI23(l{04olBh59GekE1oozlBs{|YvHcgcEX&jcwzvn_)&PRD%h$g1a
zH1-Emb&)?_Opx<SXyxUAvi?%?a7Uw$w!bk1!{$D=k#!22T-5)nr(?&r^k|WUL7PID
z+Bn+WH2%?(s^W6{_mV>^<0iCRH<4w$y>pv<Zn7rWPvzLsYDi0gD;K2_&2}F_@FYr{
zL{eOih(7r;Z8$bXY~A0+*RnGyYzGk$X7#;0<XO-ouyzq;&6TpFS-=5xg3AxJGxL}w
zaLezEg#*UUq{`lS+)v>uJKZyS?9=99-puw<nLujq>eSi?CMX^Iw07uMp0Cl6%vQ1m
zxL%cniW!`)J-ou#bMa>|nfYUfcA&pht9_8l(cP-AFC5hYZ6pYUw04rduQ)H#W@o10
zs(ijW9f-6u)8AWlQcxE8?f=<5pObM@$X6U!kRTv8zEDbJsbNQVvIt>>Wi$=(aNwJv
zzfSFRCS;Wj1m2&iS)VKR9<(J9iwe}QI-G3b!5!bD;(D>H&@#4;g;~QNfdy+@CBZi3
z6k|z6p@yQsMbLpG)IJf7bu4ZuVlLi1!|CTFgJfG9`J5-&Tk+@Dm6g}e4_`}v^Ll^y
zuRM1YZOGH`l^~m-Ky2%79k<t0U+#VBnZFIS;mHv%;?OOXR5|;Z{(jF1V0v<^6rDvU
zBGS^c0Q{H7rwMuDxDpOn;hSa&KhSvAr-lx<cH~IM>wTv|7jJlJqx+w1{QNhg2k1Lf
zLUO{S45M<cY8M_`L$A#(xbyQhDp6l4><S|$^~GPgc-lAc=~n3C*BE}@oAyWdgx<H}
z)F}U@&733CPK#r9TmadNGFt@1H1Y{PZP#$iO!R|-2GbZh>v9~LFoYcyrG&JzQV3nm
zHgjgWN!{OTD*Ts-Q?(-J{)fy0I#tCFl+hk!hslNx>|Ww^d+6c+l*#^oRs;IKmbM~e
z+YvD_x%Rz)r-?>O1>c`n(gHt1CIy3JWfE~-=9+hh(!MlDQBynmNvrf0H9z<YUrb+C
zMOOB--5HvE|0GL;A@|x!Y27by&`r_P`gBF`R=F9PXaoQN0KMV|{|^6;3mXkysDSln
za`vrpxG1S}&lhhw^3JF2TO8t=V<T=9(=qAt#TK!4&xc*J(wj;w0H6!>x&#HVoXK`N
zHV{psa9|$V!Bn>ajG_Pl0MDJj1pwJdMz_sMlhOGmFKz$;&?WZoT%P&Z<KRRZf2j?L
zfrXNf_7x-m=4CRXjfV%MU<g1ub=9QIYej>s))G31Qw7&_Yek!Y_8hK9qD~X}G(TeS
zjfN{me>FPZGsul#qGUbq%=}n_w<DJz>d9eI$Sf1Y@b9Bj_?=LBA`#yW$n!u$xXnml
zDa_r<ZUNVE#rw0`z`Qft-W39&l$9yWv?!O$*y7_k7;E6Ntn}x0Wyn;=tyH$PWq09P
zCZ33e!}^1^BU$?66f~*V<j?HFY9cEXTeQWg7d~Y*{<GAYS*~wU81i@s(H<1_-My7`
z^7BFg0J<c;&%OXqCe)lB#fnmnwzs(<NAfW{Bx1w4)}B`8?kbXs9H{Ts7jHoUdN#&a
z-5v}h3NsO8(EWF1KU_dJp(gVk(aa!5;)keA(c8`b2VNZt<}k$O;D=S6iFDrgJ7v|J
zAHXG81G1F?ttaA)3X;Axd03*`Tl2zpQUbsJLObss&8;4SJUHegCHpSZ8r`+8{tBB=
zC#Jb)o^8zXieL`ej8+~$*lFPnTJ>e{v$tu*H-GbshzSeZ{Oo$(Q?KC%dTJK4nQ>Zi
z<4O+fYP&tDjG}*$+b>^B5tq~uzBs*{s1P#y0sx3b$;ScMg0P{owvL7*6jx*(4HLP~
zi8acppmxa3sUsy`fB#@g`ctj@f#h?w2at@GR++&hZ`_4d^!Msmea0cTv%SmOTvg`^
zo_0U}syxHO8->B>D<KG--n*vF-QI3$D0qQkzZy}tsaO@*%28fUKWLlq^yui}gb}_3
z@+7~@YN`@upf4*l9yl273_y4pa^ukv!qA>SH)#x%-g+4(*GU5Hq+hhdZ>}3G)g!{g
zNJR)*H_Mz-ELrgS8HOuB`aC-&T>+hv_RG3*Mh}%lRfbzh)+Ml38vp=6h4b(8ybN#c
zOit6ZZ_|19n^ICJT(2(wZd1h!&CGR-jO11Im!jVzU~U_=;bF3r9!Hv<bviFeVE~X|
zz{bgIyJLy{()@J0BQX_R0(wZ07X8uPzU@#EJBY|qQK$3yOkA%{rP5(Up-h+e!&l@l
z2Q7wvh6Tf$_W?e35aY6r)coRrvX(YQWlwV&i9UQhyO~Yr5r>qTh(BlPbHS^^j{I>D
zM+4@Pim`F~Q|A`|fVcNQ7hBzTjd?zkSk2VvW5Sfb_IC-#8!o6t<5k|z*TTe)=%=6+
z#;X|_86jpv{r0gCKlBv&Fo9CF&^hq=K{5w84jl;rDHq11?i%^-4b8z)gX6rhsd$}L
zdD+pGeVT~>n*~q^$BP{$N&6Pzk}_OMh-rjmm+ULmIzXcdq6<ABz%0}J<ib8PRKVm)
zJZBT%sD%#ztOJ8)UjU9(j1tp+PwsJ*-?^qn2&BvLY3lMW?53rK%g%oatN)%fN?3mI
zP<Y!oz|&0JQ#ul%M@u_kKk25@y30_IiVJc+I=_9Mn8e2$1U}ZXTc^VpJMIy1&dBY#
zsNGp^1tdAKFYfW*Fgo+lgP>nsvxc&mkX#^!SII{JpvwXku7m@ijN{?w$!XD$E&kAS
zgDOoi%QabiWi8&ls`0DilSod;>4vR(;*ywlj;4%c)OB{s?ytmCg!BDD1u!OoMC5pY
zfp&o9b6+G$=V?m70)8Eq!stknH2nsmQh1@FtTX>+1pUK4@xf@7tP-QM;kh=moDi3c
z4YS2gRueV=Fv;;(A06N>>DXT&dK2@ok?IB4eg+EFWSqWzxH|fg5eCNnSijAcSs#w@
zGJJP7&<f@RQFml%R}%eM_Pa~{_*}zaXwB{3-S+!J;`CHmyHo?TI)4h=H3`@mn9eM@
z=%HmKpqQPxhu1-T6~Ntf;Ny{k2t;{X%#6oQ?$Qd%UsPWhRl?4j&+==YEXFgI70Jwu
z+s!J-D;Q()u1G-OF}IK^&j0l7y+5TI&kvS*+gGU;CWagaJ=!~cS;!k?CJ83Y6M<)d
ze{+pLm;a6coF=+BA5vC1q<|?(R!IY6AQqxF1b$mOk>tkP$BL;!w8M3voi|t4w@*<k
zPsiZG%PfOdCz`w=6}~1U49rcf;xIFCk`Jlb-kt4QstVY$AJDWkL<DR<w5NI%77#NH
z<L_@vNhNVQsTG`v@ZbOdlP@>|pS~U&p#%2b3JJBn(GT43gNDntU5?*47k~ZFxNVee
zEQq}PtmU_W3IJrkxUY8!AF_wz2RqYobC)bFoExJ5XSO6IR{y^hvgpwP-eHR)1k@^g
zQ)>+X0ASDbTLsF0?6I**{{O=Nxe=Ce7o3)F{cxy7zHOcT=tbvgBkZE1rTwwFo}%rt
z*m2qgZ{_J&gNE3h>Wk!(Ms`OwIR&<M?mtiAZ1E{SSi_TluKJ9#dyrl(-Iy5fG1)rU
z-8PGm;#=@+^dkLIu)hR0_h0z2E<-?bpUQAN6YE9dUr?#ZQUWFe-S-9IX>}XlIvQz@
zMt6zJBWLjNEQBq)9eT&jd8@p=_KV<@VM#T|Mx(z%Ysgz4cKJox5PH7UU#2%6gYZjk
z&X<08nJS{OFFji02Eyj8=d^y_-*00EkSla9T&H(m|3UU16bb$X>j(So{eprN-nM<~
zjWCP<^*iA6RyK;CCax;LTX8QjiSy0=b`q!2IF_NGjg0eJiNvn?jK{GN<X5Bx<#HJo
z`*uh28oIWp#ibwba_baYe^~1+#%Jv;`$H;548+N5bt4I=>JT2jJI!3rb?Yd2lKV`8
zi#)q`d55^c;jzG{5|<-&os6UL0EqqSmTgf2*>wLAa}aS^#`P<z8F4GKu7Kp0=zTi6
ze+VrwQtm(u%x^7!>G|{K-gMI;xpmFk&nqU2<C0p?VW&9D$T6CGTW@Oj#t9z4Xdoro
zhvjY7JCa>@+E&9VrPG>fHrm)Z63FW?r+0rG?bdGn+-9vh8<7$iK824rW7m^rvePVs
z{BpXPK*WL<j>dBD6xUD9&dRT8xg+X%aQDMVIOAx%`QkC8P7t(q<MJap?5>^IDM0V(
znjw63N0Dj|E|<@$(CTS=`5+Olj*l+dX@9P(W8u8MfMCGaGP$?EDcVi+c;jMbHyUj(
zxz6`(zzvFx`K|Hoo@IY3hM8dCnonNF|6wW0L~B0w$k2B7xR+IFt(oPyz22Dj$j=<C
zJZ=JP3$prW`9%QO&#ol_CSO>9&C6;fx&xstN=000&XJo!+hx=Pg@Ho5MX#O4nI9*4
zdD#!!{JQ<nF?9p0qzp{d0xyB)XOT1L_quLY{2UBTE-SzSRhXiUo0E7}7T0mODKGPn
zmXF+zvz5n)-pG1MNg+5%AhK)YmTouGdW@86%W*{8T8a`@`ve`jkk)bXHYzMP=2;yK
z8T7Ay#-MfTc}Pj7qNSZaRD1~z@EX`t)xnBk;XPToF=<+G#~lPtFNj7dAuOM8<Ccj%
z_48Q27=kzX_77cxmD_KdzHLOQ<v42_`t-)9Gap08zAtFEi_CV10pZoBKIY7^AR)vr
z+06TP+^jTtAj``^W$=Y%aZ|gjiB@9Z{w+I?F{@2Do*y=t-$5J%RvsvQ48dyUJ?2X<
z$xZ$ypz?5mC?OIZH}Pn!ZLC;fg9db3OO70nbU<=#AsTn>B&YrhzOd0#N|w?J<)Uzh
zz(4_q?UhsKm8o{zZ=YQ&BnsQV91fqv;41+)es=O2dFr?Ixz3DLu`fKnGrgvTs=17j
z!3Rh6vsvU@>TOmFXWkv`;8GX%8?9cLyuYNXDi3VZnRuWx$zZE?X&4MAtw9iQ*(mSr
z?!Gr;b|YY;dfbfFC~*xuBTrBEq4YsqXQuknZupMh??>7w_KIZQ9%~Wdam-tYtlnij
zwnD(*iq?oxAQ|LwbJuVA^`9nBioi(sB|qZ!8$bK952<{O!da<8jj>=q8*+kpYbk2@
z<6-3xXDwCr*#wQwg84vT&w<B`{KA-#o7z{&sQt-;^fk<hwVQ|BRfsR`hDX456E2Dh
zd!Um+X^aKcXV3XDwVbSZe;?(slFanyHuY>8+PtoNc!%hF3na`Wi#Z^wDkrG>{eK*q
zDL&@uQEuXj9e%-gdtNF55wI#K49wv?80(+@ih}O*9G8(zLu)?fdv!RXum<GNQ5oo{
z6Mb@LxxJXUW=>$b!x5&R@J6`lY&L0UvDsgWMz@SDHkY0UKH+5iQ55FT?xvw)(ra+}
zrZZLYnO{LDR*d@V$#64%a#*?H5pxw1d6?{2!ne1iW7APn{n_e1E=`F;8-=6;PWN~g
z)6iNPWf-amMm)A29O;0fG}l%x?|Fk_Q$i&{9sVk5S(-_23PT<16kv;=DhKN#;Z*vK
zHpo(HtZRDD%BQs!Oh$#-J?l4>n}6u2C){P1Z%2#b3SJIoZIZBg)oc~68voe*;yY}h
zXNG9<?~q_Tr{cHSVU8^0Bz9J5A3RiwvU=8myCHA82IgQ|g(52B88wzaP49Ex0F`#S
zqwMyA<`fX}D#&x>={w9g*!N)#QC+9!C77sDMJg7TboZs`w;18Z!`5J{r~ojdTM>I8
z2dFz`mx;XIFvaJnj2-n9#MyYZ+r-mvucxHNsE`>(3hdn7rKdt55FdW(k5&?Z!4DJZ
z1yvoOPn}AF6<R`7`^?6&B9PmZr2kyr5k^dq7gVtcCqj7)(mH6(5rds%6-JBqVB8Kq
z?feC1rh3USBsLXM+~hMPR`i_%A;fEtSB}U~fkDP2kVv7=gQE2+!N(IQ7<m7&a75@X
z_1-1Wywb<wxIcn;ITwm6nDE(Rt!s^VHzuV<Qc@`PDd4!Q(m6tXr9xx*;02EKkA*8D
z1$vBLFaOs2Ld_!)(~Wqk%yLLv6E2~1SCkH&&8@R8M2hh|(Ej8|hggA&_$h0xr+aRs
z(%Jba!oQFm<R`XWxorZTn87b<pkmnIk2UFVjd6Oc95)#tOmJFI<1*3Px2m<=?=YCc
zNb7#lv7>1HPQkE<O1M0UGhl&AB&bYnPEwp2gv(>)m+|Pydi9e8bT4UoHSTB)YlS13
zZMZLLmnG*%WOtSX(|0qUFDEPf3$(yXRf<MJqPzXvDQT3h*Me1iJZvr#zr}FZ`gK|3
zsvU}}v<qF|oH#cyH2tBgOy~sbSvk5V$3(RiRo!{NJl#k>ZKBtK-GXm6{HP;D{QZog
z;=QfslWDnr7W}3WKltwV>t6`|%UI7ipHb&PucExXxVrcpc{RtY@@rd^+dKQYF{Id@
zcA#zdyV%Ki1qqh!K<)n~a!qS=ZWCa9u)bCWnYhu{MJWbLw9EIz6ucoNBQquR)av)R
zy5(Yyjh>jtQ<GZ6rJh^$PN-dKfO|n7S}tP=wFvO=EHb?IBEdMswUUG>#jg8LW~w?2
z&X%>cxy^=^79J578@YnYPlu<5%RACQCqbC{d<}?gAgNZe3E$bUxz0(bb87Q(mP8xW
zu^Ev;7ZDp>ReN{c9{6V7^lqgu(}8Dx>~K?^&v+HSPiESiPrS0Z62vhgaJC(qN5_KK
zPnVb$_`Ea(6n>7vb@)=S%NO;Br%%We84p%Ttd=CCPROr+*iL$<LfP_UQ<xPN_MueZ
zc6_;0qd}4oR5!-6m#+3TYsKx2N?F~(NUpjbcbSehF%j|H5gra+oS2)(Oj@QI6K!t3
z;Y=5N$LpGiawLVf+}gl%IWvlTArN8immeSYiN;`~^ZdS2Bv<18f>?egnMkWxSNj7i
zBNIzG<=9cc8>;s0?<IMZwO;HGjy9pmVSBz#KU-8Xj;i?1|MIrxX-T>>%Pd;;juN23
zjF#c*oi%hR6Otmg2kRX?3^*h;l0sF10Y@Y3&lF`Fd{GdEqIxHQP*?XS97^70$ky4k
zizkC7ftsPBdc!KT>YnFQ#;Dxl{oGD9Q*xMd;bmJe90R-BOdTstuvs5Ir*uv!!)nYq
zwRcsja#Of6F~oY!har&_INx+JRLc$O(;>j?@85n`f!tWK@uf5&r%n*Bd+8q?YozXa
z<oC*JLLfl$+!9Q6(pD_V3jHwo3mhO+IrTHhUJnRNN~0?*Z7#09!5lJ@t`#{w(_ubb
z19yyjb=kBBWI|Flw#Ts{zAfd8iz68SM({<&_8JgWjAx^-QzS2_HJy@Q?dwipAkINZ
zX499b`$@)4ql?>)%ih24tW)D#_zLjTqUh6ht{cas$7wIDx+X@q3#xTJhC5K`ZZu$B
zEk{AvPo%f)HoI~_vQIYz=XLhtWr~9ChR@yonX8NB)?DTvo9(Fu^SR`wr<>agUgdYx
zNs7iVItKc}g2e;M2zp|rRyZ*+&vytcPIh;*BVy$tn@`w{x%pAsWEjoY4P(*KtR?9h
zd-4$@dU3k$)VSe|5Vf?sOA`6V9sm2OwxSjfe4bXi7^f7r<mC|ZDGwW6Js-oF#=YrW
z^Rk133O2S%b1Czw_Gf~e(dbzAGUh@7I-!=Hq4C}yFk4FL6}qk@IS7@S=&ku^Z`GQ4
zCNkha<eP#C9!a{M&es4rH4KN9on=ji{*UwH<V&UT)ArJzoLfwmt7p<!`5&xTjew3;
zKsoLYiLX-;tjAPnxX_s@EcVlfhNFRi0S}BTuDC(t&XQ6Gr|EHufw|F!q`||b5r?8m
z<^Z(Y!#*0?EU(VBM!FQ}piWbc#`4w+9O=r0rj%+X`bTXeHq%jyyjn6Nr<sDmz6Eq$
z54rHfWj^`S#kpwW1F6*=_RQ0?vza0T+A=cKAY$K)!;M|mk_bqaCbe0qMx|5|X28o8
zz5-wk|4XnKE)~Z-jj*A-1v@xqqVa(EXpAl<58Uaa=cuR*qd#_fH!PXY&dz9qDlP5B
zs**rKU~){lZZYw@t4W48FFz~~4?`dPTMRF*rm7P?os_bQHp}Kad*^2%p)$|veJlck
z(L3j?2}4@*B&k%N>A|CL!MoFSeRO~j=hf1#3WIVMPcvfRjCr8_;r`GfuuZ)i|GXdn
zL%f33n<vHvxiZ3!gpme+et+=;0Su_9)9Fa@*1ID=W4xIhd?eLLT;>nx-ZRBrV?6|@
z1Z=qQ&Phu8!%p%TV)nLo&28xM&-h;A#gYltkB<~wgt|o_+HrHPrMbP6Dq3zX4NmEW
zkVkiV)X|v+Zv$;dT|h>Rw(jC7cyf~Y@x#twduuJu)Z{U;6T_e7-A2@XwX*{d`Wahc
z?Gn{hw$LPn?T>`vX>C#;@qkxa(`YaYq9k=n3kG5?O|{Db>4uWi1|Cx_PM^GCA2;F2
z&`eKUI=F=0EwA^TdChlAty=m7EopPwziBu|H8!%rYo=ee#YNOcozx^VIt&}kyTk@j
zKs$c7rxr$UiIel46pHFgc&XM+EhWwIhVyGfH;aZpH>apAKU6x0Em-yVo4k;4^&?;-
z;{K!Fw740yD7n&HnxCRQEc=ldcokk#V+BQf<-W6hAL^^UwwRSs5yO@?FTD6vg=qpp
zms)A$S!-Gxk>&9`;&NU&qcX}USBkzj%&G|~nsAf|AGzBz_`=>bxaV$V>jj)%8`|(T
z61o&G2A^A5eP<U%e)A_%7@(&gSebzOH`q)cvze2op3#6TIUY^K4*=g~&<*_mx{sCL
zqXa2A%RM~U({^-f_v6P&vuUW=aAEwyJbdE+PezVDX+NBg1!lR%NcfH`zq!skz}V4o
z*b-#IAPNIGuk4T(7*hd1_<44kHj&edJk|#TwOBYdey50<EEjF<4Jfrb?`Sc3Y<!LE
z@TrvJrj|A^aM4V7Bd;;xY!u*G)bM<!$3AX!@xo=8Je`1CIg8Mh?wwqpe{PE&wu<TO
zRy{kc(4N;QoSE=~T=|i-COk|+^R}zA1cJf1t#sQUPQT!$sHjA$UhCn)#r3!LO(D>!
zOewu|aoT?T_{%Xed8Kgr#P7^D3G>ZT>K6)ZNy&1<%E_d)yOV@~l4##n-LDmDgIRBw
zspdO7M?3y>w6nNDLkjG||Fn9@Cq!_FtJUdv{QJK|m~`QE8)*HQQBkDvJdUp9eod^c
zE!|X+`c3|^OAckbZNkDknXKm{Fa>?zUy4i&1T&!~^nD!MTqWTK%k_KSbF$PftwGLf
z5kmn@^#TEslJ|@2&Y75xLhiiKl{STzcG&#8vYbc}zdVJ5%IL!;dJ_3LOHu3l0|uC;
zsg=JY8Yl!@lrAtNbnPvfYD`QSIBF|jU8Mj4>rF-f5f_e=W~-XFqC`3#hxdfWstrec
z`-wtDdQ$!JyUc3?;P%*?Mu*O?NZ<R?N^oRxDz06E1wpCc&k%w6@w|6HRj63rbUFsA
zFRgZoYJA^V{u4BFaufzxB4?FNC#I}&zaXbLaLD+^sy`4f!h0cYwtJ#-b;$*djbSwl
zZ+7nPPPVdXa^|PZ%+fK`HXbHQZ@k7WQ7*E$^ACh2H?9?1Yo+v2-|ydov>LOVqdN`M
zOfurthi^}I*vtK-*7pwssckZK3&gw0($i+)V>D-HK$qF~&Nk0thb_@qZ4$wXbBv5i
z&e-NwycX(LR5{((%$&r+zFuaW1o)>9l3p_bg$!BWpWnk>CpVP+J{9bH2!yg1BhtDN
zR6=R9`I_w#u~azG2*s3lUK-XX%c&Qf<U>r_vqI?;o0mQrJInd)9y^9H5~qO@4<Wji
zA(_zG)piZt0`aM{Pv&E7ZAa;X5mf7@v%4$uTIs0nZkuzRbFjgZdx>itB^<Ed^4vpP
z$YNWR1l%dSh61tEw$2lUVr1>;pCqTM0*1*1*+5T{Bl?;ZDdQfj-E-GwK$g5NO0(A?
z_OwnH*Pnjs4DG$8{wnY8&t>v8f95d!RZwHVIX1LR#tS$QrzFV!(ULeZIZ5F@9*wt~
zo61$mAdQ;bz<eL(C-&WFr-7V~rDi*hS6vAOfqUzf*e_+X7bcsI4=%28tJAXPrO@Ip
zkWUUH&8bkZN#MD`5YzaVGppnqpvM;hO48@@AQc8ioHJSsDX)(D0R0VaY7Is1OA!j7
zBPBQQoz*6Wo8yB+@{7Lmf~q%Ll8+wmzbZ(!Wc*oFPw0Ru?%6XF%R2^u{ejjhW?20W
z_<00+@SNb|gsO!Vc*W@J*z#}WLR}@CA_5vRk}dH)wC$-XxFB+i%C40Lc)3sSF^o@R
zp2TXqm=&Q&0q<R4$d1g+zAmWXEqxI<xwWtxMLx?lIl9XAKiGNCpr*PgY&6QNs3?dC
zh*Ff^5s=<gnu37z4$?bFFCl;;y@~YRYe*sxYJf<WE;aOC10mD|63QLl_kMF{?%bI>
z^W7i!n>+XXT6@kpv-jF(?LB*~=XuVj<>cxYN?{FJl}}OcseDh~MO**oiOJpB!fr53
z1oszik-pns`|`1#mtQny&Se$;k(8=nde-VsOOrhBv$P`boP%L9jnfnS?yTDp0+vue
zEEU9QvItNAN+lJab~a)}=r1?BA$ujG+}7f(?mKgy(>v#f1cD?|3=MU^?pu}Oj*k!V
z?vEQ}MBp}Mb*3>TJ4ZD&r^E7jbfXKsW#EXEs~}PeV~-$wA9Dj27AXcYz<ytrmG2qK
zeQY`W{ir8bZVi%mz8rdPMF{)n)-C+gS3aAnYnP1*T|3e%0}H`H64f)Xm~p#onKblE
z=UD(a`Iy$pH()oXP&F<-MT#8gV@<1?_y_L!=Nl^b(8=fKA%K*H2N87U*LHc<VD=0(
zUKXR#U{Sl6F$#&JnlFtQ0nwKczEa7#HuBS7&3<j8@nv{l8Hw~&ipdSw&2b3*8VCx#
zt!{d<ZxB<A#G9p2QS!vayr(_&D@=R7Y19%OSx&I^i=7JoBnO_~p5B!8&`Zim>^+Ok
zmS+7mC-AGg<#cE_hAg^||7S#5Q;41Oq|NlPFmdrJpq*VF>hQifcH5w7;Ag?U|H{gF
z0JCKbi<|Wv#glnODq4`Lyh2xM*rogPhJpEn)S;)NV&dh-@30nBwj)d{{cOzcNU`9v
z{j>xQam%AS_*=dPH(nE0n$?UEw&A3C1?sBx=Zq$8pFs1buvKv3$OSmi5>Ch?6Ks%k
zER{TkX{73^=SkqYscYGsZPfQ>+?JO73vjo;pwE_&)2!KYK{L%2N|QD_V(P9}`+2lW
zHEz()dNfQ)w)5j#dVYSG`PW&2GDZ?U;@1IQL*ppt_QSj&A3q!PkGQ1RS2lDga+mW9
zjiMA;7Y9C`R`>=GDYmI*R+GtvJnNJ)r`4;4@Ijm*nhiTVJQ6`vTXEH5B9<v78Py!f
zD`&eJXdeha8`}z&-Dr8~J7Ekit=Y&xQMg^2;umiw0rv$>d#+$XFM}P9cIDzJcerb<
zhWD=mP~Y&OZm|6KvzOyYa&0rerGapPk@$1s@q=L2`SVlCD(QgZu>@6H4F+P5a{XHu
z!+@?8UGx1WJ$Kmn6?$7PXxat8x~-TOpQh+$R3ij~xH&tNE#%RtT9Ij75Wu}z!ka-8
z8v0&)18Jxw?6SoM<ukoNBT>&ID$m6nUfcCsQN2?bHfERMm6U;E?b7(Xvm;I($|CLo
zmB#vOdQ}B!4qDRw#o(fI9xLbeFzvhJX2%+{o)tl_>t?yC_Qt|tKD_C|{u|-6{{4mP
zP7!U_x^33#wK*Qwq($5oyUOM}W|^}7huqcmtmjLY&wR&^=v;QbN|EQ0;j6(jtF^m9
zcdrPo`etz|=X)on1nKL%$pPwdTWJ})K5Nf->FZ78uI#i=%O+J%Bwthl-^24+6C{l(
zupyOuUrE~T6Kt$@NbWs!U>d)M9frxYe%_$!pO9hVAFgt=8E=LokqgemvGF{YoFVNL
zR`c0fcgPW@p{vftUT9rQ^;urYAJ%TxvB=z#URP_BjzXR<OW~)UTA$H|yexeV%-Ltd
zoe2k)vKGP7j`S4TvfePvkKL$u+L}6*oC4*onYTZ~p2%J2<Det}uRDy4i?{iZUaMOQ
ztc&NHB&nUdLc}rwVweEPMgDD;95rpG5F>mKFV=({B%H+V6{tP`TQdhP1@w}sQqWpy
zjSV+43L{O&F?$`|K+mi=hS-^(6hWX2#7=jDdaC#Qu%&Y^#7GYEX>t$yS10WEWPQAi
zjTsD5z2BTNF;Q%5-m54C@Ppq8&84?a16_GNDt$rmYg+72lD6i@@_=pOVbWmHn~d~U
z=nWUjV057B68Kj&(~0%>{hkV*4F)lfhk~U+SHmAPgI?rX-S*>MCg%b8y?R+nZiXw>
z`$A>*r2pI(Be#<tIZp;9PNRA=*p*prY2MepjbNm*B^MjGI6g6zt-Z^r>wI2KVatd(
z_U@VP=^h;$wE69+EmK3m-{z5^fqnK=;M1%W2^TjvSJ?+BEdmGJY?95MHW#p7liC3=
zlD%U99M~_Pe<1knJhbxnIm3w{P4@nj*-JeKDVjx<Ur(P~IS<83Jay1?T*qlNU|iPl
zw|`lMRx=);E1S#+t6iQ;pazb*B2$5hw2c&FjqH;#Rwr#1CDTOT-6MiV{e^Z&D8uq$
z$d)7^f2!!{UwCkyR2p^TU)V1}xS0H3<0bF^;zmd>%|K1J;;kN~uQ<r<|G>>(Yf&~c
z9bZk1rJiYP*Ww^|VXeNm{&hz>P$aQ)bhN#H7W(sNIfy6JiQzwgpQYN6-8;(8G5w&%
z*8wxHuC8`mB0Ts0?<GA)=7>=_65Id51t=?v=;~tSmaNfO3i4>G0fE0sRsH)UBa=vC
z=g3Heh2Q9CV(9G$gMED{dpO3J$7J{4`+grL6v%^v&BIr^6_m;8gjhMso=fp`4h@xn
zc*6g3OaOob@$x8oQ^ai#@r(5B-v#m!HnyAAHYEwq#Gv^Ajii6U*k7R*hV?(63$Ti(
zM@GfR)5``bDB0@y=n>8i*RERw)k?JL+)lqs{x>B561FgzfRj&AQE_qpM}3rZ8HO`6
z8CJb<2#<}*x0)OK`?GD6^8b;k{MP*g{GH&<7Z+dm7rxfk9w)2l=E;JrELS7b8DGeZ
zj|t5-1f1RH0i40M>$+C@%0P3ArvL!J?|$EI(7Ouai~9YDcg*NF3JL@tBI{qTL#`uP
z9fPH=s!0HVv*0q6N+GTR)#DB!0bH>tWvnP=tYA#Z004kJY2(y?p%)(Z-$eZX#^3Az
zn2l~H>^;D*>zL5idyYX*d?(vlcW?fso^k!}vGsq&i0klV006GpdMdH11Lk{9y53gD
zc5>N#f0jC>hAw-C{A}&Te5JI%m}#c^?shf9$l0A{5pMthfXly>uDhr~r{!|NQ27fJ
z%wX($L(TM*$Cqx?=c<W@y3G;I3=z3&1PNV^9I2<K{a0n(NAqt3B;UtAaknooTXz0Z
z2~iZD(rCf$SGh8mZt7Dxk>(ca5MSc&0stW^f1x1d_Q)3Ymg8agYfo3qU?!`cdJrfl
zP(HhkOis!W_i+3MY~a9fyw`x1Ay$UQlyI>6!8m%7J%`BA(UhP&88?22267s&)2?z@
zM;a)i`;hS*x>*Ouur#?Y)0+Umr+0sk|AH@RK;}lTTEP+#k-9WprZMlhCROQM5WdGR
z<E4E!R)%5cW}pBgxr^S}Ssh-UxP{9Z1On@izoW=ZF0U|KOchKoBcQkl0E8&tTiarq
zSo8*jkhgbs&gE}3T!9z@^JbQUgl2Q)ooy!Em_U~rKHfvSCQ+e9<>IyFIDMt<Kft}N
zGQ#b~nT#Wm6#oY1VftwxZ#_<rMM=nSCp;~*>6|oGK*mKTh|m~xW0>Zq_j`0)l2ijz
z9PAGj<x+ibvcCC~Eni~vy+n4~1*g31s!!)Mi=YVdow<dPh4!9_$YkpCiqS3dJ&C8|
z%X;kbQK;oZs@yxLp4F6|A~ip<jWua0_GD8nACFm9$35*o&29DB5C@VQ`|PcSJzIr$
z?Yy#>MAf!zPhn&9x(VvJN7im~q}uU?FAvcxa#zwR+;&ldc#vby-rZ2?Ay-<c+WZAU
zIU>ful9e&EM}wXcy=Bd}SvlbO2$nmI$7dv00{uSy0{|=+yjN3m#CiYS0OCWi!ubt+
z5s{OuO!FQs{2mVz)l;*$z?T`6gb$Yot?zTaM???!Oq*o{%beaVhijm+2VEZCcLomn
zH6URy>WCN2kEV&_xlM3k{3Qjs^-g1M(Pk`O%ncX)56cmg7=C8)$DEj7(?1V#7?$0T
zgv$q-9;uN}1{Ps~XPeJ~K^SfmVc-ZOiHg9L_YWifdKYmhiJ5_9`^a2zsl9M-KBYjD
z@h(lUe`)%bpx4+#fxDhtSx;&i1p*uG8$<J56Q&#SPmZ-dQY<m)U-)fU$o{+u033Y!
zOFSc4HUI{sdq%#?qhi#Y?r;dm-5MA8aPm;FOGSH_Nj9wteurMRIW4JL@%Ns8r<LB7
zwt?KhrsNs1(i3_KVy^6(4qhL>G>N6N8Yz&MCU<Ks(U7~?7|V{rwoahFj;4Ks5DD*6
z;|**Qli3RU!K4Wf9vQQlM!y^8*Gl&a_GwRk?g_<wA8qwf%&YiB_ddZv;C{`P@ZZiE
z@2YA>OZnd>aCb5nOM-a1>+iCBKE*PtN)fkavb16tt$M>}kLi-~DKGa%FanKD#Bnx#
zLTjU6Hfb7M%okL{rqx}k(r;kVP$3|@^8Ay5>C6z7vVh$#CLlJj2En%!w0!Kz{AkLo
z^6fqV5JG;lf&?H5=o#!te!)DJMw14ADA{O6Lh#)b>gw+lgI%2lvZ;D)hM#o0<sMVs
z0Y%_^#jkwTFIlrDOEKqYM5}~kA=yl+Szc`Q+UKf0%s*bL72JI)1K^1oh5HUXM_StB
zPo;5?_XN*L<x`{${hg<bXUWtNsES&K2yU+)Q&QYZtH|ko)m_=^a}~A1X=8+kQ+NFX
zaP(r^W|_7P?<jIZR1PWiD|uzwyJqcUTOlWlF1E-rD)QuLHFn~a1ZAQ->`g1LgaV<a
z78%$isP$gKZdJrdHfy^}WJeHQ){QJ<+@v}K000z#zn<O<cf?X!8fS6{+p6=^&@+$O
zbakV0yHK>fJ)1iqlO}pnUptomit8svAPeUYK|^r!tUTj#7AbN{^IvxFX3)~viQ+!H
z<Ks(^q_D2^-j(#mNIGU_#yn*O6Dd1VmhebO8#SX#NN<yOhNfVh#t`_}Q}x8UpN%oE
z7Y>(24Nvx^zpxbH5)?}jfjJ0St?_V(8wv%|igEC#tQ2|Q0OVV}Mgu~~LsE463~FAi
zrW<E^zMC1`AXnmiG-X1r`J38XJE&Ewz&a{&<w;EJlS&N+XGMQSQ@Q}qGp4FdM7-fe
zd)2S-kx(&P-dDDfkrP50FWRyaAiS_Dw<mMqDr8|IKm|Vii83-hF8%GkAI9c}06<9m
z@=CB5E8v&R_}@B*0rRRjDIr5d%Gfp~I`d~cWz;Ss2kbfn62o+Qt6s!$!s-LzL&hWf
zVH*S8*+dcSV3r^zgKL0dU5r-=qE)M)pkyhy^c?uc*DXbl(`nY3waJu8iIvhlGV<}g
zTduI1fDm$$zn|hO`rCnlglgBFX7%hxjxz@uR938yJff!i2V=ElDBTyDZ%^E&ig!W%
z8Wy1_D6?DW+#m&EKqk_QnB7)-DN@oK@?DOW30M9i2rY=6f2r;2?Yr;HllAj$qMm&5
zwg3M9@@AXig3%DQ)9dCA`2Aa|U3a8IFTT~KxMR?6JrAoh_hR=V2rm17L*wS(3|{$H
zKa@c_l}@NHWu%VjVpxBl5@l7(^WNIR2D^$Wkv_vIUng&C4d)EdOU%Rx+{;B+e>t78
z4pUr?6f`}%UyU}lNIN=FaA_%tOwrS;wpOJFw<Xz9Pj9(HK16qtTlY~bDBMRaE-b8T
zeXZ9X*%`r!I(%dWM?OGSphwkyr=J@C{D2J*H0-ba{9q3SaUSQ93v<d8@L5WE8w&Ca
zm)zVdS-rvHB0&>M!>h-1E~f2-@|<`_%1_CYAnx1x2qg&s<ahp!p7=LO&0BMP>H}Li
z_@=v>>D!2=Z&Q4u>=PH}Y3`pd&A$xTp1o(y4K4F0hx(^X>MLEg9s0G)3}Q}iQKE!7
z{2R%h9EVgN-;DHXA~NI5V;X-DV(n;IpyTBUqB0d6<jUrWSsdP<UseE_jA`nvP_IX3
zt{y3^iXPB4d=Y_hcNp>DR0>vb8InQxkqA&~thY%00noA3+*G7aF-_E^>D!+h006_C
zzh&R}w@IF8u&>;iJGT35Ppe6(4CU~6!#_&@>U{0B4#rNeVjKrCst+LUlvimP*3}!C
zWzvBNc-?_E@l;PY4d2}w9PD!EqqTaNQQ0`BO6@9(Huni3Tiyw^-<GKfovJqS_9xUW
zIO(+@_usmAiWl`sp3NMI1e->VRD85Q35cuV<vH5Ma=1De^H1d?VpF=Wu11MVd*rIW
z`Sk7Kjt-jWIF@I!LDxjp?lV^p0ATyw|0!F({sjA)$<$+7=Z3An2>^t=DK2FfAxc93
z%RfRaUi`mhc)c>|`{PC!rhoD2>X=X1hkV3kSN6|2a_J~^Mddb>JV$6^TN8{YvDlMT
zyKZt?Qij&f7G9Fy0K9xsOb*z-<402@b^@xGYiQj)Okd5sPwej<*=D5m=2YA5I}B(d
zYJc%g(gJx8r>w5u=X3gX?~Z&LK3ht2-o1yDCxyeDdkFmUQ_+Kb_ud6z=<fV?6pfMU
zLuCM?%sU1EfZ>tq$<NXx6Am)pETGv$!7E5vVnrF#H4f(NJ^Lj#@>R|X_w$`C$zSy+
zdzwu*8r)%zby2?SwmNmbBKz-?;+=FoBSQGC-1Oe)qi)<_;JCc;`q|+u;wAt9v0%MH
z-dW~-^m(&(qo%mip-jDBhnG@+TdcEA-<Qhi86%5sF}=D>fKH`lpMA*E?&W|eX6pfH
zakNv(XLYFY41h$D>hHI*?n$-JwnuAj=zVijZF*AXP(z(?t3aN640=!M0sSY-x06k@
zLh*YjzY!0z2Q*P$=s_xn2%nSz17>DuoXxf2@S88plto-oJZ+6EJc8yL6N9BJ$%VhT
zTrUY3na_6mSII_PhMRTgy&kchxIek7g4EVlM^(42>K)E_??frq?fxvK=}eXI!HaD6
zKd#^yOTfUs??grZezz_+0|^e+R;A<_;!T)O36dx^(y*4T+*Ot5uIKIJo}i?3H!(Fk
z>pJN%u1@rU3bbr}vKf?ag<OvZoStfQCU8u+e%(cRjYerPTb}Rd^dcu_=E6qw`rH^k
z$oQC)+8XbZ6|nlH8pCqgX_&Rrerr>d(M!HS)xkYTT82gCb3Kpnl+lfn4n7-kkcKO@
z2@wQ!oZDJJP!50kcnSDHgyEvVx9JX3&1ZOF`8M?IdENm7M`hoz1<sCLa7j->!+U$R
zql{bes69Cto%v~W&U->fio@wgNt)S}>Soh#p`Ez1^2$_h?Fg1V$+1FopiXJCZOeh=
z15XCgp8obsFjwNDWUBwBU&>duRh4k)p~zwu^X@LqtnP28G54OKI8vzfcABgbam>2a
z<n3359wYC?jjAH!Xq8tA_m})*i9b2`_V}6tGPtouQ;BNbHiX+nQ^OXxr*kJ8nihuZ
z)z7`&`J<6HiC;*Dcw@ac#K=afMp|?|DAq7O8GQRPtFwj=vN7|M=Jr*ZTPFRoZMEfN
zOHM0q_p9}(s2(fCY9>&;&D}GBds?VuhDY)+HcI}M;kDddY0ed^eu|hyX!c%0YMyP1
zuHW@UsNb{#d0$QL6=jjdfGg_c^J`9es8R1(ARVjG>j_gfj3L*)e>0&k?%DLY{&Ubh
zeAaH~q%?lm$_)REEoPnw3qLV(Fmf<32nb44pBVB!;$bWh9Hp%>WL_2b4I)Tv3@zNH
zjS)$qR!}f;+e)n53vP?$)jM9`AjSrCOKinW#IiSqKFQK_4FV=z2k5`&&*^PlIW;L4
z^46HeVI13F$KwJ(Tmr(K*GxmHRDKbU8y*z@SydG)a+JL-u@B1KyiC@S5LxhIgALrg
zUJ+F!m2FNb6G96u*mW@b%pFzTbSZ*Vmh|sYRiyo(_E4Hw6G4uSSB@chG^r>B`88%~
zsx(Zli<FjU{7-mfsUB-e#a9@FV`Y|t;i~7=Fy`?A@hOl=5AV@d@KX@K;?kJx1e>+9
zK_|#X@Oqsr>Mk0=Yq=NMSh%dYn)J*{gZhUeQ^R}V)&LHroRLq)+hh<7CyZmB`^qdg
z9lV|?kzv3&*{mnIkGm4Rm$|iLnBB5=dQZaq6Nanwt?7VFkTR9!yPu<`)tdylYLRh^
z_eJ4!#<GH{!2zE088@d2VZ^QsvsO2yoDu6L#^I4RN9`sa_e(am-u8gsf%?8dx>^G%
z4ll)d5#n4)C>|%<rcL>lGPN}&Sd3hDp`b^@v#Y`-R`nBH(O;<R4QeKSCCl}){*Bc-
z=4HSeQ14;$pp&cgPX+p-d<k_;W377E%FV{<gn$JrYrT#5HOC&5!^J;ux-x&uc^X(5
zR~MBuS9YtjGxylSmGLYU#8h^$LTRfx?x~b2?zn-izvuWUwRdg-&q$X+Zn(GcD6Qrg
zaxZMUW$7)9OSn>OuX51B#B^Tbu6uxxFy3qO9e7AaCLOMjTK&?qTHmG%?56+5C}107
z948t7&X6~5CO0if7gAgAkCwqxI#35^SNW@wMF4hcVQEfFH6B#d-F*-64Ws}@$$5)g
z00!E%69tal#ww~UYh5ihLoZwjcwOX|R@dKSSBzo>9e3DUZ4ZdJDLZ^e2UsL#)l=-I
z-t1S$EvHsdo-zIM=)gt7LBi3Yns@WHMYV#Z+vI#tbo4M&B`23|n!={ig5^IM=Vils
zDJd0X0$bf1M=qxS+)vcR4=)T3j9jMXWt63E>MOdcXgr)g+2d>U99Qw&{bSY~2{Ekj
ze`=G#y9sM~OF9Q=DD^Gc^&DV^>7}GP=$7aT>Tk5Dza4Lu8;AzaSfDm^QzqHOgfwzS
z#mV9I>kq9Q7-nNEgEeB_>%CW{-ci;X?tK;^ZS%q}9g#C6o=)Sf$_CTf$R2Dpd;#}e
zsUM@IXY71v%!jJv)(vy-j;ffQl7!wMPk5mR`{6{*7G1^DZMZSfBUWE>HzQ)4*_FFw
zqq53MLX77d4r;<2fBaBtAbHO!f~UWKf~~sgn*K)(M0Zm(7u==9H!x%q6)C<7Wf@xU
z9UnGJ(oL=)>#U7u)RBxuuN(LdB&<5(W_W6%J-k;^Vzuq+>KN=sXZ=2!j!1$ujm)6@
zas6#H-Lp+G5(@VdI&BPcw7|)_X=N$B;XH6ieFhhoB%%!dv$0vIc72tLYedn~zgO-M
z65D{l$UO4eeay-$fha02H{luJk_aw;JCB+wX%>>n*;?mVe|VRKkHLcswy@rOD@sB^
zN!AuO)_<~xFi9wn<%&(v*HNjfIq5jFuJL*W#bRtJZZMCPs**K6is(HO3<&9^gZ||i
zcOST9pWW0*NJBNDT7C&`y4Rk+4S%e}e0^8F{RR7`W%vnw0aubya8^Shw@lrkghf+f
zF?`=H1)BMUF`?-=-W~L%uxj%kF)$d)u2@}(YkR0yR>97n@WOI1`&&!L>P^K3;Kb1d
zeb12L?*cS?)}|MYF<GpX0A{8YDyS4#`O>MzRB09E@XNqhpF=hwQgG9AfJdTEo2y=0
zL)W)0hp$iP&%*+V2yV%!swavjwx%S8E<u&iOx!|i$)c@(o=Yd_A1wsoOM)Y{`}v0f
zP&*C1Dq?R(<Pr$pi@CMZOP1sbcjjTxUkcD;sFms55W(uVC2?f;BZ8XY`Oz*Vy^}65
zIm(^MZi%5+?UlkBsr;~nr_uCHIs%T>LJ!_K$BLIw>xw8IeG|nIzP?htd=7q>#5JfO
z%AU-}#$3;=Vc77_JRO>U<E<yTE?k^3GLmmVZ;I`nUeSbS*nP^K)!J(btgxev{l^a$
zXVn+!2D-bZRU=7h6C%w<1uTqP@ybj_bZ)+Lz%B#vnApKMjthHTgp;31TfUaFP7WQ6
z9__}xQqJ)9LrL|FyW)=<8kxrXdg<p`+mE!5v5!*xaw5b}pIKVib=#bDiEV5T3ww(=
zUOnWTq~e;S_Grrxi6|$Lu^|EYhW;hK(ssUNMWnabq``y2d(mF^QnxMxf7$o0g3Ogm
zA8#Avo|orcd^_c_KT)$~u8MaVm@n>gtZK{fgny_Nn1oFGjo&XyGCO<4rEX--4Ay)V
zEgzfIxz3hT9L(x!%#-5u+u3^gs|BBPOw)kFf-SngX%1+_8#5^)tnFMNaH5bxZ2@*w
z@H6rTj#->+k)I=bF_HyN?i;r!xcq@M)H6N}yMnWrrqP`1OQEZ`9x=vE4P?hdVqYR(
z)UV`@Ri7F=lnOPVrIJ>jxmOsKS-AOr5GK|`txMbE-F_N5t-XP{>@RZVNIE!q&1woG
zEph^o)bmn8{=|gt6h3o_#$9nYP)nT+cE|GwADHV)oOz@N`%z73R5|AqRu--+%M(5Q
zX<}xUE7v=_P_MN&G$iv;R}CWg3@rnCx`h@yBvMU0O<hBl<Ei3Arw`I@BdaCjGS8Gu
zipfKi@BK}$$YUmx*X<RD-<s*xRTbjonsj<Sx}ZTVEwxQtw<J>|zulx-A#nq{P*?ue
zvfuk48MSNn@`sm?wQ5bW?=aozt)oYJ_Eumptf@+?$ThIWXwSu!M*tC|!i{=J$x{93
z)mhS@f%x6sVO?QSC^NTC>hAkI4gm|r9MfGrYrh=nSP_Y66`38lbLaS6AkZqQxz0eQ
zy6bZ$F?6ZFQ1n#M)YFEmn>ILlu|<C8DA|QWeV0cpf1D<4i}8{b{aa0Q#KLwywP6gN
z>pWMv(0JG8+$gH{orxHTditrVIG=uL`y+^wMj$zCGw!LPCS&igyv`EoCgUT`uoeR!
z#2Q+C+kH=_yN&@Be)xx1&E4iCFA516oIKgvbMh6yw913mF#8A?vvNf(wc$4S*{e5T
zoA-HUi6tqG_v=4vrEu8&bT;%?sh_qADM?C^mRX6X5k-r~w<5X3WUp0Pj5;3)-lRGX
z2a5*ZnP^EAc<xe{3s~0tD;#AA|D|QUri0Iu$x|i_Ci&lrkEhD5^+r2eTe5iU%~SvZ
zc_-+8p_+qNl%7$sVOQe}CRgBrdi3x41Los5$C45=huxy=Z#+#eD`Q~hE}Mb;#zr0(
zp<THK)x3R6PgNFG{bOhm#O2x2Q6aY`xZ5&f*o0YWbyxiJFO1Y|6q`l)_;RkLw)PkA
zp94Q%wCo+TZ3I{jsPgC8UD`F120V!xiZ#tWqJNwpEp7&V@x$(Sv1sa-t3Yx}R7cD8
z6S8)Uv969*e6gxP;%|lLLartwsk9<fZ_OWC(K%zcI7G!Zo@PYRFZ|=2VFYz^*tq@V
z%iJepUwx~nNS+$89p}z>s^A%#1`lPKQ*^%&RJ%MZ?5;Vp!y3|>Q03X3(iY#D_fjzB
zU{KmQFa1-y8$_tV_eYh&kP%(hlvkb^rFY|?-#6m-kJV8XznZhgwXMSZd&xX^)e&Ss
z$p`yvq9Rn&I3EVl?^(Lz?k-O#)IOV3$p>T_86W<`{Kb?u@goHKL*~!6i%U!07lM+R
zb;bFgF#a~io>IM@`XEsm(#(UX@@8(94D9JQHjYwW4b`s7@j{)Ph?yB0J?rF!nY$09
z;uBMKJn273Mnyfzz5I;&9!?=!_xa94%DZucteO2<Cffi%_+MmsoAXHn-5Y_S@=L|M
zq*i}-+aSGR=*X#ju6KZKUD|hWlC8cHhLc^7x>}-jJcf~M3g}2(376lo`v5Yz%97L@
z=xA%K$k-6FsLT3R#uq0bd1k1mQp;4_>FDYbEA_IkZshn&C~s3hh7eZC)oiWya(23k
zg`*`Lb_Y{3&LtE*;@U3^YIe;qyTWQTwP>~pw7GVr@MuwRFiKTeMnz7Ry2MBwz~}OP
zzxJkomqti?xO9|Q%TVql)ly&u1CCO@D@wQ4C_DvnN_n>_x|rU(H?k+jB!ifH<~boY
zrH~zoG)-WSQBQ?Wdx2^}ZxkLS<$9W6AWhkhYVL1G+r7i6c{Npe#D4kKJQH2$?D$rc
z#9a$3#>jDwYsa{?6x|)$og<^)3=nuSNOQq}IQ^6rpaJCZ9D!vgCS986baK}8Lv#7L
z^DO3#Y|!>X)@(hZ<T>dRys44Jv`N>?jra4O9z@IN>vJQ#pRY`e66ShO=#-D@LR+_x
z?CU&_D@f5&(6GZl{atyKjdB>#F3nF0&6QQr&z8y-0)I}7&iXl#c~54HxN?_CJpe7W
ze^5YM8qQXq++nt?%WxNRkL27}N=c23<cq5O_`ze@49eLgOuPNmcYY<AjGS@g;#04l
zlPc7PVUESG@+yhZNb;Y^M%PkY)rBpMtQhU`Xvf((X`L?vAYcCA;6T*=oD@hsaq)7$
z5(I3Z4vAdD;Ese=y7eCwVkNV-B1r=oCpJ7LN<q<6rOhUNe_+i%mFKe$Up|iCZTa4Z
zn?Y9be`oducqvp=ydP?dcVYnixgrQ$gImFX1Y`_P*(-wSI%{hAgpjv!_)<3(rHjk{
zgbjSfS6g>lbTz~h9$9cT@UobxErzG;VTMuIN$EFp>7}#U{Pz(zU-$k+r!iP&TZ#jw
zPm*)@x8EC5j;(s+Bqm{~G_ts$y>?DN=3ZSi?$8oQ@6#C`5Wl2G@aPMjfHU)67C-p5
zE8Sk<8AwPi|Is<!2}t-`8v>lk6-+%lmr7vZc||EGS;4*K*bkNCo(&L4R(HoFIiY3|
zx32MChI7n8_E;6bFVGt_01$Fb;q0)}r(44Dpy5W&-k|Yyy)VxVfFygM2mi0@X$1DH
z6n!1DhRqs%^&TJMnqTso%O*80|F=>&$*nh!+glYC+ry%d!K-G^?{Vfo&yVDtk<YhD
z5i&C3gnMBZVu{2en{60pJiM+gH~8dBlNdf|Uri0$w6*vT004+rMBT`bKN!^oG?T?Q
z{|_zz;KFY7-|F0F-v7u4z0CjLX_|s40KbA`r&uh1ZI50S8I$@yt?HJ@C`;(xGidN}
zvMexKVsSc%bzvV42(V5nKG$eF0A&)t+btnjRE%qOPPv%&YQ-(R35?oXa$~A)QU2FZ
zeX+EoqgRijeUZIp{?D5okF$hjr#r8`0cdhl(h$jF3i`9@0pYUyapcF|BHP)6xi<<J
zpw0EcPFqN%y~}PCHW0DC;Y4zMH8(5QSRVYH-+2Pl87g9j0-b7CLfS}=-3t9oM66a;
zZ&4`i?gCjKe9c5)c6IOi<OMavIk;6}+W}_+1-pQccJLQ0`>isw#ylmx`a_q2rz`Z`
zU_%8jSV%I)FqoJOZqvmws=e|!VtTUqx2Jf^eQC>&ky8O)m`sI;SI^>7S7++<i{IRF
z+?pA2HDZt=tn7o7PYr|YLHypNA<b{lfRFkol=8PDB)J^l?_FGjnpiZb6Fa^RCXosZ
zTHM)_2-u5U#ANzQ7{`oJSxyNU*W(NdOdX-P9mD#=x-H92x3-na^5^<oDl-kPD=jJR
zw<@Q^0xmAK!_OQQ?q(ef7v3%0gk^c-%iKjhk9m~tV^I}0AGO^mLLuAE9s83pv@X*A
z`;IT<KaM1#C@_<4VKDHpR(fs=Hp1VNf*1#J(VQX+ov6<}n^I-DoX}p9zUr!ZjEEEs
zT-~EpItSaO4yQMt6|1?si1_VIzcKB&T<}U=y@*XBt%n#jqd(_z7veF}mV?_oQsIQm
zVpbLlY%^QT6qA6SB7Dd-a3k&+NkSlQd2d2ioBhEqefsgxgq>b?U7k6(S{};}wTxRj
zRmGLWKN4ugD=1*+9L~I1h(7m^J;kP@g*6z=q^@h3sCe$*Sb);`>w0B<l4GJMGRn+=
z2Y3EZ1jk>kgozm~k;^MTK+o1U<-yWo>ZP~V3-|_Tpz~?kp3bmCd*L&J=4DYQiHw?7
zswZJP6()DS|1mM3!Xk3GVeR)b7@|f#9oA=-nF4n^j&{>$`duF#x$3cTGP1u@1)e?M
z#JF8qQfit&11*Oyb52ub+?H^gxc*GjH1X>U0dCSo4>i<h^RnowZx~giL8C~WmS6+D
z(D|3FqWjUzASUy9{jLD(;Y)#wWY1BY!-eulz;WtlwyiQ+Y!0xCz3}jv;BL-c$g5ks
z=FQl(P`&OaW7yK_P9Xg5kylO1W9yPGEMW(M#o5j(xZgz_g$srP>+gQ{t?bu`TB->g
zt&yQi^+ZBtqNj!ftsz^}eOAOek0^hqeqtFk2-hk#Ys(kBf*D_6H(5fcY1fKiyK=Ee
zlb<++3U20TVAdCw@KZ<Hr+>QU)XY=T0<5<v$dC&edR$w<@{hLUYJW*uuZoQFNsF-A
zt%>np1lqVxoV_m!sB^R|AC#_l*|8(@EkzY;ZRML4xi*(>;$L941>|@MK29o4+{})L
zZ8`263kc<tc--Po(TM3A`Rd;#0TYxipRJ1{lqRA(jq&S~9{EM5Oefo_zFuD1I+M0_
z+bwS;ALPzMO_!ZUhGjl#$skszE^}$2pFK5sc%SC9BW$qM3D52^2Dx}D)|UG$N>WnR
z30*rY6?B^=8$+YZeMZW!^t}$?sn&M3I_I~;z32mc$?(y=OS78g(W0LYtOV2?u$ASN
zLypu%`kz$=)GGEL#WXudt0v6lWzG+%Ro)ve-J}c5tlyp%1|6fA3;l2{_;Y2#nSIrH
znFec=xdHJ_L&IH9;O0)rdy$B!**`qk9LC3VwmMxuw2r`1TwWH5kl1LMjo;N5v&zQ^
zpvEB@v@{qI0Cb|Bbgix&-oLSOrEa6kY$;r~=c`)=02;d5+Lq|Q{)7O#J~*zE#f@oX
zAd#b$P(wTz5$42mPiV|@;bvz2j^`THo7tW5HnsXFOIJCEO)7bk(`d&A1B@i9)MDs^
zu1%$h<CADR7%?}vF(E-uCu@>>|AywJo9kR#H$r%EA*hLCwT@3&?mQNp<*8euwzf|5
zP~@ad87!1*@O^!uRQ{(XCFP{q4-k8qNuAAOV*$5BkrNlUpw+g5w&*%>VG;SYnOEYK
zcBA`lY0=yA$|HVPrFz4T4z?a|6IG8>7u@`+Qm*%QYJI0#6rLuO3ywD{z)wfHaaF5A
z#3owDUqvIC^B<<}WhvRYK6Rf==1AU)kc;M{qU?rgUz;WNRCZJi@>*$M|8XtaciT5P
z`JLTKO)Gj_u><8-*A<1RV<&kDgo+`ep8t6!gl1Hd?xxgz#MV`I(#XYkSK7FxU&>}J
zwMAJv>)F!oQ(T-a0|%tD|2!*0)@)XpD)c9Ga~J~QWKMJa{x0h0d9yD72egTQgE1~G
zAx)_(H!auDaKKuAVq1`5{xNV-AWs&*xas8*GdiA2$3*wizT^9;yQ+5OmgXSTCTr0z
zaCrYFN|vJS=%bs4wsnM_dRA~$hFI&{<5ADhmc0tOwyTpPxF_|S^8y>D7KDV1s4Q43
zyQ2q5SoMD4n$ui2g`L*6+5U`4=hRo^o4wvRc7sT`xF5PPRH^ZE@*ukk`GGv3w_gXN
z%g+(ALFl4Zo7H(%X@eiCI-}ta=;j8Lo#cpXs=}MyX;DrMq)UNtx9vYpl8^wqgc951
z4wg%8A6~Oo4ng5dol!;7`Do)$Az6h+W5d={viVC3z={I-Ufju)O823gd64(cp_cr3
zszpz1tq)~2JLKFCm-v;0bR-pQgj^Xxf>e#SrcCD$FhlbLL@yB+n}^KKv5<I_rRA(G
zO;7`ET|xQVO(jWrRb^R%^b_cw<kRkE<e3GZ$AE4bVK-e`?om}0K7fIqhyayT)@a%e
z2zajgkShwAU}fJtMk*z@X&JGrBcZQ_o|8=1=n8%PTzFlh#b(vBj?*9p$$tV<J_k%X
z!3^?1*mzEt?lyt4)@R3M0_xiHZ@<cj6zb8Nh_6i!-CA9zo|>27)7PC3SbQlo&uK%H
z3*MVNH54^H@D^Trf~wit=0RTC_&c6@*4;>S@u0Xq+vsT=-*Mpbsc4IN>n^wvczsb7
zc1W!jA$>?#$FV1rtMkFD4@EV}eE0*9j^}+cchB{@=g;?1dCjxE9Fme=iz_Vk$5|CJ
z7u{<x*zf`U$=R;9WM)pQ%$T0+<*(I$Kqsv*>3|fNEZnrwK{p^uo9N`Wx6Gc}#Wo_1
zIPps9v0K)5o1d&$D1QT)3U(i4FQh3grI{^~z6{NB+<2^?ccYxFm>l4(SkWe7tm`C|
zJ9%4Kp^>X_6KjaTIG1q$Xz{sR5p+S&eVwg4HcHj{D3gX6#EA$t=_OvIr&CQWn&x=f
z(uOjpq)EQ5x1pcUC>YH$S;&Da(q)K>D1e1C?nh65orC-6Dhw^PI?Agwacc#NUj3G<
zPOPt@>I-v>OtV{3wj*K<5QJWD;G-B9=4fAqZ+Ut;;76ak&!m7ckx2=a(U$k`;YRn~
z!-8sz=o*$c@Tkjcs*9)kzG8|KKROC$DLR6Eu^|1KQZ*__Idz2I_2-t~>{_Y*();tm
zlPxTWqsOhI-9zu~hK4y)>&>1f&6K}uXG&%$;qbv~dJWr(>F2O>$c*swNB22vDP$Yh
zxj?nMQV)*%Fa7l>om`LFO(-=l9GSw$iq#afA>|wHyHh#b+KOZK&>5-Hx#t=%AI#Uf
z!!&<joDpS%52jB@mz53oanpO{P4tYj*45Q+1r0lg%?vY1w$#!&&WQm9Gi$X~?l6pr
z<cFI+D`K{EcK|M|Z&pUGI{b{<zWJ4;PAf^WE4K-Esoy59MOBlM32bn=o2AdhRUc#B
zwXe|x0ezdY7Ijc?X4di!SW+K-ItaCG<rk3Y<(D;DJC72{IzR52P|+2#!slg92x{4>
z&evS|RaEx3r+=&D0p*Acv)d&ep_fRjCBw)wyvn$l`Jtkeadw}-gFUKVQ)|ZDi`F^x
z@$|hU^?3v^A=e@ek+c-x<<#mfK0G*_dOzl-0pqr%tyStWGx6J}57yPx%!qs=*px1!
zl_a_6KhreHL3E)3Pnh_6S5R~JY+m+g(9du%|5AjRyh<yK<g~3dWU&<J7dWeRQR3qn
zGl8GffXv&DD&}SOqd&s*^yA2o9@hPYgljQ7{oEL^A*H6*RnF}*^AnRSGnm}9v&glV
z3Pzb2T^JczX=eEoiNJfY(<U)9+uRD%Mf&G1BDdli7XCDVej>)Z=bi_9u~wd<{V-kb
zB$9OpK2y1QDE{b3PIlTPCCW*&^y^)<Q4`B2Pigg&n3*>e6-Cs(wKkS_@#j9RjcKa?
zV*jcxus+==Imx)yVAA&76ZLVj=4*_elT6!sFcw`pFUi@#1K&Eu;~O`dO^>heD+J!!
z7)?q_{DB!sr@*3cK&w*mrcF(bjQ?f>!epXyK0A|W>r4YSx<p4uazY{DYV>j~KtHPS
zu$;=P0E%)&3I9n|xQ?OD-?5puzMRyukwNly?>SCIa`xCRKwW(fcPmkOL@;btms0c9
z1GMKX;FaUw1>BXInQj6lWT<H_6b%Bcf{t%JbbS9l%2fIll+jhB*HGQnm7P*kHAaP>
z-f7M`jo}e|#j12sqRZS$0s-thV&EWiUMXT~lC9Ys*Pc8&x~HqKwz(fPnz25hE&MqL
zx;g!EYh|T0JJ?{NX8n{&Z4PIugR~Gck;{kZAAj+UjatBKIyz)<7t*--pF%0Df`FWr
zGI$dp=0Rv{6<mk9dk?Kev=8>h&h!uTD=K{0-&bd*Wk__o86kVJ9Qip%X6skKP1Yk1
zZW7W3pr<}wZvIBJ-I7%4;=~NAqH?eioSnaDz6g)eCJ-j8np&z%bQMP%{Tq2aMsxbn
zY~dCHT>QF<UE7<buppDQ&HX~k>a@rDOMkRM*3d}@MPBCUtTG^9L_coedgv?|s6kDs
zSccMd`?9*S<9=8jq&tiA7xoQaYR3O@>b<|aP5Z}l>?{;`rEg$V5WSe&_z8WIvV$}|
zZ5r9GL(xzP2x?iS8JDRykIDCIxaJ}QG>odXBeEFjr&b$`9UHE3eRY>T<u)ZYK8GKL
z^kgr$FTTwNwNlrD4Jm<!g63T}^P!(pNnV?BNj2`INh3HJL9W4{y?UQh6!i^pl<RKY
zU;&2Pcl${4^Dps7E2G-=&!o7bE4r7zV6q=iruwYgUokN~snCnjrPh?bxQvaqAL1W=
zs{JuCL66e71AVS4hKY(AsDCPu-C1A4#+C*y^gE#!{269Q*}Xhoiq*x;r_9ovW{nTo
zu-Q~b_J~Q(Ygb%-n&MnLH+<YclL!gSE@3|YGwTlvqBAatwmdoUO5HnSp%c|Kk)&XF
z;#{7qzx#AdutS3w@r<L8rr1umJi1-rSJ{*=W@!OfpIw}E%SZD*CL+#xt(003OF2~=
zyv6?1<@LLKbxPoD53J3wK^XU1C2XapO<ZvtZkS)o?06-hx(S<U!+)}j8ukk^aP;>W
zGektzPlk-<w4O3cqL#PcEXc!gs`uslWCF#9O1XzMLvM?SaYet#$1Xz|qo<D(7~j`L
z8R;6?>MD+kx=}kmq?A9FT?oAz%!8uSv`^ZC7L7FT+a9~M)ywno@HBv#p#>{nBq_V+
zp}rj0W1f$(ZxShk*dc8Av&}HKpc)BtYQ?Rc9Y>95DI;h!`$?q*gG}X?-hEk!<hSPQ
zZl2UvX6<jF(dD|NdO^6$DVb_zvUQmG3tK6M;Np+eYDtToK#__WvsPvM-YMDsrlBLU
z11%k(ZNTOdmH=3;`Qr^J7v3P!4qZyDCf>NQIJ%Y>&1imHZq#zVF^Nz&Ueyn*D<hID
zv<A$dnw?;16k#ZC%c1GB)7i&!OnEP=%h)*5z-ohwmt~-_-a<|CAn~1{3E?K3deCg-
zE)%H5yS`dcr!hfSW{Ep_pJ?Hta#A<6AgLC(c6_KeiiX#JJ5O+xH8B_{G+Q!rAFUK3
zXHY>_D1I+kz`&6H-cYDRWJA&<bc%k?A+T8^U?%{1w09EwHp}>vu$>}An$8z)P)7|h
z``OgHc6lkeh(nikj@J&<L1ooia&SX!82cV3U%pf-<s?2(QKsTIL|~rT$+h-0c3<Xn
zI}@9LYvLQ5AcSvi#n)FF<xJ&PTlS=qIFyZ7IX3e9ZIdLN=V^YOtvjSW6;cPy32TpW
zPnIf;@a+5bvo%$|pYv%SruBhfPI{Pd<jt@M<%2&Qa!;)5xFjK3H5(go2n}<~C&V99
zywiVxv(K-~@4|xIlN2X+y`!g(t!N>!4Uv&-?$;|dvZh07;p)H!%!~&<|2b`SrAL$b
zd0A?%$}rsf{#ZlC!TyDysM;`vaPFDpd7%uHrkCkmrQ=f1pH%{_t?v*V81YKP$fZ(y
z2$tQ{sivXf=+dXEF#>)?5W(x{7%Q0smO?l^4{L6?a46h<kbU(ARlB3;Q>08~o>qmm
z{h-Ew!Q*Q;cRXC2TF$qS(;ORY>*!Sg^do*ukgLu>YWmyHpny_KbCYFw5LUr7FW1i7
z1Mje^*>qS!jNdX)RA6Ep)q+iHFlyxQ0zT?*O9Cbs>Yn40=thED9NjE!-AmN!3{{TR
zd)<s_lWb`zMeOE?8pwL<<HQqYu#y#*id2h3dsRkWH;w7AMWRv5ZVZKfuT8RnPMnT4
zTkc@>%%ikc#3!IuTQ?uvv+U!-C@eRtNqQzA$Rg!#jCs&XOx~In8INvUkKPY|FJkIh
z;VkXxuD78^AijsxX>B-ldPwcURF#77aw$etJv*z{?0ch_XvJ&ko1GnBO~GRc&W0!G
zYrT?L#fgq|jXYq`er9Xmc_kwF-S-CVzKR7oj7nQo*29So5F$Y*O4}Mg>{^$5<9eah
zPL+6AM=NX6iq&y#QX8G__n-=%feXyJ${}z?8e)t?(3iIwuwy+Ur$kg~uzUHDP;|)!
z#JmNG{xhSM6O7=;1Re(mIT3(}=*gJyqkYd>BymGQuR;;7W%yar_Ht3UUX@&aV)Zg_
zB=B(H0qMwN9qy+<_swdTr8eB4R2CR1rNuW*=rcCQei#P-@h1SCw8VnX=81Dx2V{!;
zKiObs+XFcq$K060YU&(`M5CjuS|Y9%yp-1(Xs%K)xxI#Ukf{#94K@*nvEeoAARtu@
zFaH&vktklPmdckONZjbYOG7!Zqg!j+(rP_03Kt4>`}|Q`A2_uFkz?w=1TVbt-|N7q
z?a7$3E<z+5DC+kv?FrAEt^+77MrJSePxRZ&f|tD#d!#t0m*lm-{{&s;!qH3G@^kwP
z3*A1B_{CZs1^_yGOteNGlyKv9=tG*R=C+8CC5ye!ThBBoPTmm$W@9%T0;jmHgu0LW
zIqa4ey4&yz%8Ro`uTeLanNpLzTBdq;Bmv9j1s8wB$m+Kojm?DX8))-<qLC_sb;y<G
z;nE+WF>SNz>wu3De<L%0*Z%B;-;9ynMb|=o#m3~$t%;t#q27h()QS?_DZ#-OfP-t3
z%H3sG55O7fXY#sD+64aj0ai~pImvX%3UFZFMXmQ&o<tw>uUP9>bz{f9*9;ZTG^S(j
zaC^VG8-RS-X$U{5-V-fLw9SSW0|0#|kpvJzC>~AmqBk|?*}4OGZ92NG(ABcNLSQ5X
z0In5F)@)I0J95qc3J>EI|5c<d8~i6f{GV=K(?pMm2tW)Z>&mV)<VKJCIW|Xt@PsU_
zrL4cd^iGDhkpckZc3i{iBR{E)Ckc#q0Dx=FVsb!SuF)eYHzQ|I!c9QP^-C?%5W>de
z3A@4Rf>B7;IWg1OzYnNCoN;_v{R6G{76spJ<XR*3zUNcB#pZ0>%sJ_^Zx~I?x07QE
z+B+ZVCslho!!js8q&i!@zNX<T@t_4XR?cX#*gPgo47%70Es3}{iOxW_AdVne<_ktI
zGV^zrvKK5m;Wj-^y%f8%9md9)K7Pj?3AFozKd10e03d&q*&9%9?&JAU_%iC$oL_CY
z<`#K&;MO`vzsBNaUjaAeR(*r480P81{w=p52_tLg#VrES)wwh&{di>JABy1B{cm*x
zvVkv96&rty-4J#GXChNIjnsL=M)s#z8H@hLURMeCEh3TU>RQr!MNAH;yh^~z25^m|
zCxcEfR*XPSeA|v(vF9xs03iNvu^U;{ON+cv8A2xH7|vH?;Zu}Bnet`2X|61{NjIy4
z&^g$6ov7cVXGxjM6j%q)N=CF<l<^5pUrI$cv9oNDp;_)>%JoW49%MjQaW#I<$R}?G
z>XPph`~!0ho0zGw+jk<vr^Q6lORPPTu=5~_mNJd0?gH%qfIsgJ>GS|kAF2kqCZerB
zYbm^HhrE5D7-9LS(y_F{-#tPrIOTa22L%%!c%NgUrlmz_Zl<XB*okn@ILPda<10F+
z>*>nMHPVFCJY!c2AN3SVFTta``T&6VJyX(<fRe^<rV<|3$oQ2nX8gBv^xV8At@Slt
zX2fcl=mf4*a?}+!uIr;-S8SBn(5lhYRTdsy1cNIh-(lXrg>Z6RPMXr27~KMd$p0-n
zmE~&+n`LcNB0eu7Jhf|7!O5vsOX-YU%*>AdhE3_FgR~pB?d&>X+TRHJ<2SiT03njy
z)OrB4wock-(~F~oRIG##yReu5a(>wnnqevDxvG-_wC<(ZQjh0!b(syf-v#~x0G0)w
zdjrZfG7P&_K1R5{;19^Da6nk#;~j$e^~<{v`YylkKRNwPQq-(m?=WZc$3?prUazSI
z035jeUDoLFtFT&H#6r-n@iEiK{;>pSGjXE)z@WRxc>mg_EM93NM=ZgA^_ITV;-QP`
zV&K-`3CBDd_!|IN*3h0+@+rp(0_-1lbQoP<hF!$ZJDF2c9v4RJ0_AT2&IGs_#EcbM
z(&Tpj)UmQLz)szvfAv)V&)4~1e69qHy#Y8I`Dv_J#KRzlXzRTJ_!XS8U}Wx8x(oQI
zY(idD-YX^r09@_v>7|kIpq>8Rmm*)V^?ZM%y;KAM08T@oe+9N7R*C<LXT@p${rU0#
zGR++{5CFKcf-_Q*C?)JOElB<z|HL=kCk^7Y?QO0zrXrgpFdC8+HF{+T9T)JJYU{Tg
z&NoESbUXd7#V$~m@XeeMk|}V8XrLDWaKZI=Q~oaddD%)}BwOf}<REG?-%|*9`<qWA
zdiDyEbA44<2jOTt#{5WwJ-8scIbAOoUXgpg_LNI%=PUNt4%LE@+yE@Q75(30X^8DV
z4d{iUC?)kPlFkcK+Ed^145!5a{@N6$sg+Q+$~)~OfCD$B|2e!&;Y6l%IJnqurU#W9
z^8k4s4lev^Qo?Do)EsuK*F#-yw6uMQ*PvSkQ?fb#Z|$9VI9qSK@0a?ubfVg-Rt>HG
zlp2eoMWi*hHLIa0iq=e!#!PfjO3~KT8jDgw#5{$>JV$DtrN$sc2?;{7um0Y>uj{?e
zIs1M0`Qw~@_I383>$%pm*1DhRdhXBteeTt)9DO}91?xF7o!LI#i$h(Mski-}bWg7V
zbgC-5{5aZN+NNUjnTuY#%pW^^0f#?q)~$ByRwcq$y6B;w6=@}ev55=M4~LUPrR>aS
zZaRA56<Emnrh7Lwt&*fIt3+CS?9x(g;Gwpp<BB%peRz|^<O(9amO`sNoqjv?X~!AG
z%A1RgtI}X5!@2YyhGDY(twWf)QUynVTfejN!!$1QU0TWFs+{{Z0t%>naoLi2FAnoU
zTU$}n)Wa;gPyE~9&#v`}qZsPi6sz!Xxwz-_M!@U|MV`v$?EXvjR#X9cP1euZQ3dl`
z(XK?~IW8k{3f}R&<(g*gA|le2_I?$v$!6g8z}HbL5%TnYN0wi;7s~$t$sdkzW<3U`
z4kS>EqYx8CW-@_CtG5RdR;5bwqgVbxBw#7?vQu@Cqs^>qm6b{QOr?tkvkR|bO<E)6
znv7Q{H5l~RRI3<!FEtrZO(P@cMhoDm`wpgdW{ydv1#stTBbuV0RN%9|*{J={1_0P)
z`#((VZw29GdpITOKc{gkrJELsbLSNp!#t>y-lQR9WoSo+n0ka;heoZKYd=Fe6Yhp{
ziH?Soo_hG)v)B_xO+BgnH!Z*gSjOB4<?Y8=ts9ffJqJ`VzHH?cDs`{DCJCf%ySFag
z^T=&U=1cS_K5#plHAx}fCPPNWkVMXz-f3#taPOiC9&Q&ZRx8wKYaDZ<2~TK9j@2$7
zA{Iqxe=b;YLy2fx_^PX5=JN87fQY!Uqd=I}YjhXO5O?nWX>C(C^gH#-d|b16k(MP+
z>s9562+O43s94Oj|5&9P5yr?kHu+`U&E5xT-xK%ljvcqr3&&&vdUztq+si39c6woz
zY$w*;Sy7O^tb6^n(8Ny#q&2tENng~&2jgPI$XxlRc3*;R`?~PN4_}Y>QIT!A>#+EZ
z8dBebmX^~BTzYrCzETf#sYCoEPVTXxfq9wDHbkW5MYN}Oo+k2P49I^(DqAMyy?jft
zQUk<E?c>PWDw&*+oZ-M@^xpB@1`Y^o4=-lD%U{ZK;e3Jpfd8&P>CY}|YC+U^TM<_&
z56^{RzI}6U?!<Q&&&NkwTstb?)7jI9Bm?fh!6yF2KL(re>96|M>`gRULG`1JzoG?3
zS9f?nri70}p<C-hLWtb%?5O<kz3}091VVzyb~U@EidVt=;1_vTPj`ZH&7{_w5BRbC
zR}j<6)!wIe)k#4U7ALzAbK?+(`kIuGFxI9%zdCCM{jt8V<am~=vLb&$?Pkfil=7d>
zEgiZI&`4~%k1y@hqO$&lv1V<sPslfnBW!Vz8xh%#o3_4YkDhuS6<JwSp~l?+@@^Vh
z5g&vrr=+w+Pcu?)Ach8VE~2NDU;~K)#-ToxgW;fosC1>N?VlwVw)udt_6V#eu=;Sk
zNe{a)uDQ7krN7QmJ{E9M&r|gtQi=28xSWP~)u6Zcp0ANg9S5eF@W4n{@))N(@mqdX
z#WigTbGKP!*tHZP6cvHZG~z;zw^=xxII-C;X0P)Y1YgMm$#{>O<t#PlTDm;wT11En
zfV5A!+nH&|>{hG<nJW9`R%sq0f=Yzj_$AFX&jk*b#0m^UvZ9*4n?@MYz}802^{-w(
z;WjGdC^}f9BZKVYE=0b|U<H1N_Wxf(E{RZ@%|Bx<p|j_5hqA4slTSM<UzK(Kxy@OZ
zp(kB-8I-bH_bf!w!PRFr^M;<rT7Z+W&QKCr-?|+vCtvpiR3DNbVG1H71Hcde-v~+B
z_1>C@Tn5vBc&4>??qRBHdBRe9ETKy3I!;Q+wXcen8S2rsbZte`ET-K!!PkHAm4zHQ
zTCy$;a>gXuFJyCewdVcVXvD{;qSp933RZJvemw35-PJYWzU1==<^5r(T(XE2Ub;xu
zZnH-^coX`>)h-v&KlV^I&XaJ~)`XrN+937syQ&mHB~t<PuS4M=1D<z&g?;O<C4;~z
zjP?m#RrCqq2m1|=Ysy2ki@+^*J3AyPh#dfa5+rY|_#@*6|3jiC42t#t9WSuWFP?R`
z+Az2{z`M_54;2#xO<u%<`YGKVgxcZ#6?F(i+E|)$W9b7~{jK$QxkKR<LBAa1jO3IW
z$fN-QIT3GWL_p7St_YEL7uxhw^FSpxyUYj<EWlUZ0@l0p|K>AFOZ$lCndRi^3tske
zZ9#0zSS6$xJ%jns+{RZBZsbrjyxK2=?xkJTfKg-z!r+&T*}}98B;TbgN>XK=Ms`mJ
zZ+|fw(KJvk+aKDqxds+F9Gc~~qE6A~uEoXN|ALWCJj()vfnN`?d=0&Gbmx+suk#C%
zBLj2Y%4TaO5xNu%FZx!O_(OhO$+LU+Uiz!)wSeQ3Nm6xQC8!$CKq_UnBZFBK{Nvk4
zP_xQV{WpFcRmO|t!Ny6Em{qPNq&TR2qXVz{I56K3nX%V{7AMs04I{a;kJmA9<NOM`
zR*v<)2PMUl^_96U5sK0W{<D3j3L`}Y8btI?P3^T0W$K&Wj@WK^z7=Dxr66yq<6}&d
z4xk)n5_`uP4AxQD6N;yMZe(P8&UB>J^;4vY0d3oqK<Ae1fM|GEiE|1^02PO>AJt8*
zyP5S+BjNh%j8LK!YS=*E>VvaP^%|J^woo~OjUIGKto)pBFl9XL^bKyI?C6^Ld8hgd
zePdh--fB!=M&F`K#7GE(QSE|+)KQigMlT)R^qWUe;FR(kl?cZrr;rP(wY7U5)u%m)
zPWhd;%V1sKPby>-uWz9&*(`d3EeTSi(+Zw<i5F({6Yo5bxs0)>5xU+ZCSMpd5z=Q(
zND-L<&qgKX)zCKl7l}gNaeN^i3$xQHXr0h4X#(CBiCxd-xSXeguKFp9vS$SjlAS|R
zcZdI)NH#XA9M+)$tpJy|QvK2>r#PeGZMFE!-r?4wxPtJd9PPN34PNFW_dLDU+VyYd
z8J8AeFS@idC2jmf!OmkIEiF?OPSui=iLT~pE&J9%Fj_GZ#%3ORh+Ca@0-<e#Jh0^c
z>4U)$iG%$J-0_EKyBs$EKMyKITEwEDkFjn!9_S<wgVLzE5#L|(=G)6$S<2fjqXb5c
zO!1%Jn6Oc;B=_mhhC)#rVanHo+(SvEU1OR6C&t&drv+*o5Ynfp>~0NNGpX~oe&TBu
z&{$%m7l)cj_TW(`ZAxQa#BcONR1eoCB}Gp4J3s{I0$w<{Yu(%GpHmo}o-(N3Al3w<
z4VVQ69La(<K|#<eJq?}-$m1X5F$8Jb{g%FRjQRW8till5e$5fnTNrDtQ>(+3P{WZt
z6xL>wV&_I`%88(@O@JOw({bj6;&(VI33|BPIfuL)mmKLFjDCM{tkCL3c|9^3Yl(66
zOL5y?_EtZ5q_Cm-$Ou%4Wfq(U^LLv|%XjLMAT~#<i)r;T4qxpE19+aIu@dlP&gkj*
zxAgR>GDT!r;7e9Z#p4@<=`(2i@l_;!&fuB(u^4}9;=9=uH&yzx%?Z|8Rda$;X$1Bv
zoY}4S;54(32iS#_X`JTb8Z14{VXYGy>iO3?nQuEXA8i|&yF}>dlOT`zS(4bnxU4~h
zPBqtSR;U?xr_WCtp|Rk6@IdcZ1g!$|OIH)sDj7&G<j+NP&OTb=m==ueX8!8Kk1QgD
zygNK3(RlY!1w%Bp$_kM#8MK6{@`Be!c7BwT`Ut&V4RP4N+AwsHi#w&1Ip}V>xe}ze
zfq=<j#sUV!qKrKsiHnPwas_EwCIux_>$fiT)ANjQ1K6Oo22&BFkoGxfz0eH5BBCR^
zMo;t0W!02X2Wq;XZ8aU&dl|C+x!it2@tvuVkg))zjUpre`u?taK(&pZR)vqLzS$@%
zufq&}Blwp?l(j}|qWs2wyR*aEqjKy!)Y*@_<r(S3sR^m6faig=k&(`6P<SZ4VdIgz
z&{_EH;TyXR-q+}%l_Yvmbn3B1zheQL!6}XR=8Lx?>DyhLql@`MXW`5KwKQ#7tl)mj
zOxq1#E-vfnq(lh#U=@EyUeaXf*GCWW>V~aVb8G@aXw!RBGegjTWKF>80%6CZ4f>A$
z2z$H*jW!W^9WRu9+>_f?ROx)Yp{bl6E?Rk;M8EMj9He@}tY>Sh+ubQn0FS!!xoVNf
zov#&dQ~(2+c5n(vf~%*R*V4q=mhDY6=KEXC;}gGl@OT)OUy;9abzDp+`?IcAK~cV;
zrbbSGzAsuV+ihG*E%VYjXkDIsiIaeG(sxL|tcJLd>(ai#Qrq72?m?j+tjn4@Gti2#
zJeHNTv}hXH^z#LoC5X{~&4mhO_DPnQr{50DUY!z!QjokkT^6-Bp}`Zi({=^~o>atf
zkMT7{r%$1NA9zHU%+^!HMX2N+5Rc~2!RP7YuJ@l^u1?t*Kk17aPl0-t<vl1gvl+Qo
z%BC|6o%Gpld`H+80e~lWM_Inw+>o*}kL4RjIrx7~j=uMO__DS9`0zR1>pACnxNUC>
zqms@iAFL*^RMuClWp`zpnVMuUA*S411)vxC+`_q7B@I>hEu_(TO%07oOJue)!k~Bg
zkTun{=t64b@@use$MidH+%h$FN^Y#4yMzIfw0m@R!o_sAq|cQ*9n;k+ijBcf`%}JA
zzNnMNeH&q;+p(_wLoMz<T(%u~gg4D6A2ABoOHIreb@@gK(T-ARXU8BH?{~{FTIro_
zH1}mV`~&gJ6J6dQBkvVWH)(N+svCMZN6ix&8bjHyvQG+5=YD>oYiwlfV`uHE`QV-D
z6tmX$6mWN5Z51%ge5Hl+_sG^>YYy1x)9aE#8e7JOI0Sx+G!Zn79&Zaa^7QgmI8f5e
zhwoq(byN%_J8|YADZ9>p?kvpCC!zPLJA?++4kDrn>G6C(sP$`4oxT5ynJOoPNezkI
zT+^z-LfcR`>m^N{^2BGR#6Q$`KU?j)>hs}a_~c6I(&g|QCYswG?f5{K8V?GOZ9QyR
z*XE1n;3k=qOgV_2%&DoVc`|mHSJA+)pj(WtH~ow4wF;`}+fcDL3~IXY<dab^xp=~M
zu|B#ZFDWr8x~Z**=T5a&di?C@(Gvi`GkZcD*tvnwsgVlZ)9#`1DaU_FO}6#)k{{JA
z&Aj7{=mwQJL_<Zi&sQsWsPhFqEllE%F*v?9(Pog7v}XCs`#m8c4zusbI2m#loW{5p
zO#F_0vPFg^wQWcml)j7H(KwLN8N8s^jsN!KPx<O6++6CZr8H|Izp~Rv?>N|OyMaW_
z5QvJr{?+08-JT2-c<+XSjHI|Cw$bwi)R?jQSf1>04R33hdwO+BxG^K`^H%E6Ci=C>
zd%cvSHLjW(l6L}^-++qToHC&;Mk+Z$6~@M~eB#CO?BnGIX`(~b<clsUw8%$2k%syX
zEP&KI@L6E>k)v7ZK&^W9hxF8eH5-rOwA*<NRr^r_M$vw#i4S`R`Pu@ayFSyK_QVh5
zoMI0T=&y*fi9yBUD1J~tcjL4)N{_JB_j(d6bH}2m2Z`vMMLR4h6(%kcF|LNV$^D(~
ztn%w1a0_$~zxm~PRKIeKX>=KqGLk-^J+<8^iW;NYPNhA{3q9O4u+GE=b(3=-<ZgT?
z;#S4-z&NvUhA-WA=*NR=&1<U#*xM$R-F`n>I1_>!u4au5`TS_TY`FkQh0V4{L*=Xk
zKPW&qA_zf6+7qwn0#-?`_{X&2i6;EC?4b>APO?ilZ|Tr8<wwD@9&xuv(wpItNiBtN
zm44<@(09jP>(HCpqZRWdmy5k-d(N={$r``MI#oKYVQighMMz<W87GB4qco2TS~|uS
zelZhJq}3{lZPW+!o|CSzq{Kq3ww9Eg^1!o8KQ{CCCc%N<aXN9>Egwo-^ypeFINi2b
zObHtQ;g^EPsV+C)?>4s}i<_v7)Q`%(Qy)?V>P7}FByp+%{v^d*Ut*Oa_+~Sd*@1_2
zn`(YjVHC!Vz|sRc($R4k%pqmmjyAR5h$eg<&K^>C!vs6T%DOe$@)by~N5q-m=B!=s
zIv(2I{eJf}1gik|>t}L4Prmpq^6`l>pPntbvK|vIBOT7ZR8={rxiKzI5TVr>r(6pe
zE*ecH*KV6b9vg%xk~DGr@oz!0Zbd1XWq!lSC*23hzOdzJR$!OsAL41|2m4biu){GU
zbHCFxSd~>#l#P@4LlC2<S`dqssl1nlAJv@N?21lT0BtrlFC3!?uk;-{O87sf_e)B9
zO3YdvVflLRf8yJ99Ki1B%7g9LaMZ@*{M)tufuDD(wwhmMM;(Lu!<%d|BCRZG*Rm~L
zPxwAJJ97sBDzCzTM&W!@;Q$Na9Z=NU2bY!Rnm&5IqsQhx<F<-<*`FhF>V<*D0YwH=
z&I%Zc8?ymF4a#}aa56iWWENAdllypeyv+s};nICfsR9-SH6ZNR%OMtksW6h0sfWo5
zjrh9MCgp#}_g=`xai9@<l<-&1&&JZ<IaU5HqWAAy8uT4CG+#68Uw+tuE8g%1fM2%H
zQPmJ=?*BiCeSC3Hapm?x9hdnF*GoUM3Pn5nRAA3Gk}64lxe16Us3D5vDbO!2+d5c)
zxT!q9-TyiL@(4sn!bFqsXW)=t4qY>RKgGT6&KD>BwaH5F>AY)qM)qfT0e~-Vh~+EC
z3M-qc(tNBl1SupWbPOM6Xuy1`-kpSe7Y+}|nix4p2z2pZ8I4nIP{EORJ#N0WrM15I
z<|=-;qp%$E>Pg6vLl15EOk(!#b^|k<j;=E|@ZREZU*SJve}BAA(#U&7cJYhIzGA_+
zmjUxa2IH!L1zJI%%ljab1<3dN4V$$t%g)VA<}_3q2L=yM;mrm6jOtS~HE1X9k7w*C
zMsb7`&VW*!7oJVKzrH&6md!KDi(7u<=YRnbqGIFjJRwvTq&WIorVTMrLHw#uj<WQ9
zwo<r(GI*qNq$RuVmfmy{Qf#S@mA>oR=Ht3!1qn@l=1qb0S3Qbu*8A=blXC@t)k_7e
zcdh%iPhH|${gy9WN@3C#V^vHwPMnlA5Gcw(Yzl%%IIHHwv`m|NKQdQpWILp_$nSc^
z!1*Hh3MP)zlH1`vHnp8&qyKv6V3(Qkhs3j3()SIsj1vMu%!I2LUZdvg_2tg5^7lxN
z(}yl;rstv2p$?wB1Lb;O(HL3q&RDU0Pm+hK1tKc4YCHy2@9pq(?!f87;|SgQ>viGZ
z^A_9>+QTzZy)nFC7Za43-l@bd9aWNt?z4R_dQgh@yjPUg5CGC1Ke^Rq)notAl<P*f
zj=_6wE-qv=x=<+lf^Zu@UaaDw-95*L!8?>*PfttDZ$iT4&hb|#Zix1(hPWGqV6Onc
z&~H|tlzlq({q~PYOK*QtMm>1iV|jAspfyB2gxk&A(e-V6xr>(xK6{$L$k(c*jJ%7?
zPuz2oJ0VHUp7Jqmz42muP!8hy+{6UkW-mv73*(1DOulVI<3pj@TT@<^v7xSYh0%`^
z^$G`r<fAd6t`v-^4aTuhvqJxEBS#Cl7ED}_1Ak+#rbv1?quJwyTtj=QuXCA@%WGf0
z8;cDA(7~%TkPYT3gHy(3QJ#{&cjNnsb!3C}{?w+%OUl89Z<<)aYqur<aK8CFZ!An>
zesMmRtCX1QWX4z#5%;{>l)-Bx&MB3)Ip#pq%?KWSBpp&GUoGJ{vmNKh9Tf@M=@`vS
z+aHUUOHMDj;R)(^e@Zb*@{l;XQR^}F2A#=dJWISC5yR`38|M@HPRZP3jwg<wG+V{C
z#3yR1=}o0}G8ik9BC%K!PH)`TXgh1YS+5(VZMRKT5ErUi+b**7JYufnE6Gq&z+d0b
z>sQndp&we%PP;6c9ZFfj{Kt7FWhJtAqWE@xiVHF}W=Tr^&=EG^7vZntT?wm-e5Qvd
z6}|JryB=65n0k|giIXT$FciD=>62I0!P%1oZ?&ov#Ow{Gs}vMQ#j2Wjhf~jaWZw?=
zbDj^j`^fDLhUg+qkY7sa2ICs7Nj1+8H;spFyl!64ddRIg@9x9EeM(HR>ReAAJ7zWU
zcJw>WvSi)lon8gm?ob3w?+yXgpXV}y`h{#S$U#R1@zqi7d;^rFOXV3CFXkgRM*jf*
zb`DK@E&Qk^BC@@OD2v~6yTv1adSqUQK_jnT3owhZa>kQ3;IoH{g1i^AQHSp=<Hz$O
z^EJcUhDT)z+BDk`k=gR-C(hDC*=hA+TwJC9riDG+Y(V68iwR|mVl7H6Z44h5L^;=o
zG)V1`U3%hd_xj>#stj`X?vd2x!{VC7x~jSqqqN7&&G!)kfv^X<Nt(AZ(mM!0a3%!Q
z2>^h-8e;hxJ7#<?zQ@!^_qSs9p`=_sB2rYTp*S%6FHxwwsmml0S5IRQXRJ!WIS)^<
zfJ9<8){BSg@&-Q1nre7cypW-BkEW)k&vOl%89(vO`c^Ut4}!D_CfyuKXpJ{By)~0w
zS2e`!3wB*uNvGImVyo4-V}kC6^=P&f^+q0&aRyZjh1nMmSsMb*9Rm(Tez9@>6G^D%
zP+6G|T5OJ&S0MkKQSW-7U!9k3@x|9d*A8?ob;z5zlZ1n3P>fhq-{7Dr*Z)A-ONII0
zOPgw*8*=jEfuuW6PjIY^8jHIQziT<p4R<>?R6m`{nS{vR5ez0YycRlqqIaEk{i;Xc
zDS@-o8rR+y$2+O|QyTRpgRM^mIt*5Myh_s;+N!UY)mzZRtAzHHcuF2lrS0_D%zC7z
zYMQu(>NjDR(OfLRE~zG!>u&lD0@j&~=ZZVU{wr31X|lbWqCGr^lSa+JEG1*XA54ZZ
zF<EUp(!Jyq7aE6)YsG}g_mrP@WUs-&cuT9TfkBE`OehY-J)FeFlj*_}Wa;BmJJGr}
z4WAGRk>FkY84+(oz|d16oZ8bD7U4VR1b2{SE@|7Ann;z}{Z!mIoFZzABdEe{MlaBO
zX&m+TTPMwRivz}zF!t^HpVb=73uiz=LALPz18$Mf{T0K+fe~atH48u5R&KBPyw1d1
zL0ZD^6xYn-mW1n}JD_90=~v0gaV?`p9|h2dh8cahmT6qu^0%?>69Z=*sywD)yY2;u
z3nFcq{rgARcKw5DM8iAajDvZkenSpxQJ0l@$Fm6-nQ>3AA$3=NXU7ZCs~>AkUyLBM
zbB}8x2F?z~;F^!9=;<3L!Gs)1OV{p<WPh`zrgQs2AO?!%eU_hju>oD$f<?Nb++6+s
z8XOnTuVf|g5o)eWnRB<*Y7*SC4{ue;q0Pt-E2EuR>#U)gCq?AxjjK43?$Gk%t}6x8
z=-7mdQ=lnp>$DwX)0Cj4&J1L#pCDcgRkqsec|E>sxyW2X_|A7ukA3RvIQT=vnPFq$
z>xw+_T?=d9#=5ugeAAe@a$0g54`r_w2x}JxgR4h6601J)uLijTyl+ZMMs`4d0Kl(}
zzX`@_QU65iaF@RzUlfIDk&v600Pl4fgl@%W9u&=IK6ua}F4mo!@hgNMSXI;13@9h7
z(>YVK`&XHa0RU*s9PV*^U<nd=PBZB1Yp=6awq^^f`;g?T^uCh?xO>>|ykpmr_boTQ
zIJt5V2IQZVavWXlES+63+5uev07mq&`U>NmVf1Hf()0D-A_cWa*sy(pBLI+JjqUus
zL&@4#RR91(>?%oG_V-TVD+vI;Uj0e}etiCY7W>DUA27hVcUcJloY|L^fLo5qO66Pg
zh{PSxEdXGs|5fyY9{_Is@q!=Vl_USN>VJ3dZ*>~)kva|_=8`oV0GwvAW(#Y7U(5=G
zy$vg7z3ZSg$^zU~|4mtBa{kjFTdtFCaVZp+zc0WG0L-g@8T)qz(EgWg^<UN4zqjl^
zscTMiQ#b(N+|mP$dnW(+z5l=4AU~NC=<=U+<mT9UW)80G+=B=1civUE`bN(GSrtE~
z*Qs{3=_<=ZQ9E9x^s2$;?JWM!H>_<w%T^o}Q1V!jt!O--Hz<4b*xU58Rb`HBXV;2i
z=cnHZD@Rp6E*lBj_o{?=-zCmq8H`}Z54nZnd%LP1=!3Mh!i&!Qce^V%fXJ64EZ=lV
zK-hm5{C9i&_i*^HHyaS0l!MmIs&?Vii=34lSDst40VXyX#B~oms=lPMwl+6dr;-u<
z#C$#C$Zc_Fe!$Rfv8&V(x4I}U<qiScV2ntBaUKk~E4&ymGeT{ygC*Zm%w(2lst!%m
z)d!<VN?{2u{D7g%Vwd;$^UHV-*ZsEQ4$u0PrJ0$*MFW?=&6@o8TMIQ?-Qr0S7Iki;
z(l+!7TL=W)KRRm8DEim+<%Fm~Y+><4+H)A%59CWiRttb8d>4K-?U1Bz5bpi!NA!2c
zJCH^s<>hyN-!$og0>4;Zo^4?x*O7{=s`?AN{?)?sVt5L*il@rf&zgO_*g9@Hlzy2*
zKq+|P*UM_m4w6%4_dXmB-}AI&`yh*C1x^fa+S6nCmA5{C7`tR;vVTjHdPE%Go$Vwv
zIdC~Eg1%p;=w4G1tcYa2|7C;)2(Mc+O?~@TJC@%KO-&)i@&(LpuP`n{>Ro7L5w%WV
zcWfw=@p=($O2T%A>Rd5APN%Ndx;)Fzs|qDXU@X@iSi+upeA%CUTk1Cwenw3+=G6LR
zwbOjNULyD=k~RO$aN+1WeMv;;n)<Nn8Q``~qSjk#2qnJI997s&D24%vKgMddf3(n4
zf8`puPt_DOtcRbJwp>J3&jgZ?)iY*W>zI%rGnCEfSWSf({*N+o)P&i()3v+j5d&5%
zVF_!K)lMUm>2^l};C#<-J%7~m-!hW6G9>^Av$x;}fV-td902h3u^Afx7)lhf0)S}J
zFbe>jFD#y518yeQPp}!vSX6TUt*U8q#F?#fC;Q$__TGe;SgzDR!Zh)#073|ic51(L
zDJXL5X5HOhPT+!gA#1*<+kA37vFQMKx>=?acA`}Af<{2-m;fLlWyWU6;#6~ctHAcr
zdQNeXdv~P&7fqQe&?!#f0$U-g=*U7-fAAovr)sUpV#Ij;wPnJ?5bKaQIEwxfA4m8^
ze9HzzzaC~e@APoa8MBfBh4=?ma=LI8T8tQn0;f5F3;bB&GosxUkG>^&j9aW<d)U+)
z(SKA9XvMDrCuArECFcq+v=(vZ%(C2FDB^fJi=+NIHaK@Qp19{8_g(v9n7;*o<Ezxg
z<E5Ex(nXuL1R1;}aE7yx_3=}=V{f~RBEQ5TIxdAdTktnFZ}nDxN^?5eIQJ9=oP4mH
zAKBmWB9>AFTv0M(D+zP-jJ*SHllIseyD0}eK3~M~w5j(L|GCV~1^;_`NWMXVCvoyX
zf2mSf_5u_nzGN;>urNI)0C1Hlg@wzG8ccysOSRV5vI29)=Ig9L-`T`K%O|VL80I59
z*vHn-ivG*X!@8#qs(^89i&aF9RbZqN1<Mx#I?Ix4b=b$hgvbH;e-yGlz6ebxKI$L%
zSlzHo*qEX$mu_NT<U1HRb!7B)&_?Q+nPv*P+ZrmIS1$|lIF+aaUsH-WzOu{p9Tap@
zJ8AI!pAH>cDsO~I(lxVH(AA)0`fKas^w!Q1bh3#2o$GNN7OY{KjjMpzSJ|eVTmIW$
zUK+D!6|clF>-Tm@TAA-TVW&7UY^_4!3%QTbm<h&mh;;<*^!D}=Oj1V*<G6?0u!J5i
z)k&P%2qfUaunj|-N7aWLz6VWx{Y-eT@&uT1IVf|LQ@+rwf!K3d%8fni){CDy+89c1
z>>-_v&280kMA7=Ns?u+2ddQ^oQBAjp!^F(zUBi9gih>#2hxbK!7?~cm45GTUD)<ws
zP#jDtww*Bq`zAMu*zC?}$N42|f%(X{Lw+)21%gWoDe+e1u_x7gdOWv6&<*HY2fZ}(
zzMmB2)YUg$tBhFUF*Ww_tx2m<#W#k${@aIf@ckLaY`?Jl(B_a1IIxb=)uDK}!j@G1
z&1an*kPv0Q{NselcrvPc73FVD`6Th?BZE$$N5h%-=~=NWaOObj=#;Mxr4ox}&{TbP
zG7m?Gv6Lz(Z`lXh&cQFZ5}Ug7ZsmxFc=;JMf;xW?y_@+e>pPYppAcb)-mX)|BTvr`
z(Kv!<tqxlPMuO+-!27+i*uAYJ!o>LFa}T8%8w?0Y);K((W(zJ1)Z3e}mHa|bEo*t|
z*US9s16<TEY`tVSsW#9AH}>~Bm^*D%GY@F_*3^CY_<kR)7{eH$j6gse!y6cXhY<Fw
zX{uAB7ANc;P^jrTu4<iVee(X^efFyx<f+5*k1B5_%qu;yDkt}ToU?@&RG(K18SJAW
zC+liAU+GxcP>6*JL*X}Nceg_txHI{+*nsF)az$ZtrsM)|>-ku0gX0cP8?y!J$WT@K
zMB4%HW#ZQkyV~Hpr7`9xQNixc%?O*R9WMi`$zP36GvZFE*b1Cb|NZu%CxOJM5xjth
z;HAKQ`t)nm9r$imtP@?Wv#ipuxTfU#n^{Z_eldXEu7*gWsqDs-!U?~;*spHfk$HR~
zt4b)&N#StV+v!QqtQZs!vWEdDg))il!F|f-uNF4!_USPFiHO&P+xwMq{6S=Y)!nI5
zeDJqLlxn^GxEJ9NzPG>=s&Z47)-+_(Ul%e@Ap|RI)M6dr@WB<q7gXX^tAYA?YOeg%
zHv{+KwtJcJoaq??3R@q$H3Wi=glTrH0#Rm(@nNgHQir(H8yLHB5pn>z;L+^Rwe*Mx
z^Cw#^Ew=Q{#`^-UqsV%qdh(O%fCuwG-!W@E@Z^^dY#*c7>Xh+^eKQ%e$x4~Q73CXQ
zvnp@ik}RvO&#SR#<@t7%NxUGA-$8Ed&*XW;m<F4ORGyamBW$d;nDxHa%Jw6|?SLXT
z`^BMKinrw7!xJ)9yaKOqUVY}aVMAY))ZrzmF$SI*xJ>wUna#`uK2T@B#>$5Av1b;X
zDVyja+@{W%RQ8P6Bt5^naA+L|mQ{IfusDoPI||r;hXGv|R|q>FMFbBFTM+A#m!%;p
z-!U)dn&#s&PF;P|j>NgGmSrvVj}EL)K@o0VE|2_Z28`Ko^_D@bUX|-!tQ!XzUNgk-
z8hv`>nI3UtcW1vp>BBIjA*gLs@b(Nyc6SgPir6$5c~V}WO5#^xw03D@K^5ycsgT-|
z3C<%xYv(F3@QL%3Dzot&QSft3uH)VwB*1`FYtad@D4or*##5KlY2>{|zYN^N0L+V(
zHaFK;{x1{Cu1W4e^8vO23%LyP?3w1;>I$1-+0Cx!C@Ur!J54XZQ#sPs82u5M`~ABj
zt5#JebOHxZitw-wFsh7WiEKW~QzW`gub$eDeZ@Q~zau^}^88wE6Xs*nOBEE#!*cRP
zTk6OZrD<ohxJ!-Q0y>yz<)*}$rn+Z*1CnnQu->f*_ZqZL-kD~;9?az?PH$0@@=6P@
z@k()MW5@axE~@FZP-*TpzSG~zjmjrRQq4SrOxK^%yda~UKfUs;&EQRoMC%|t;&QQV
zUC|NLQ|>x}-Qc9~GiC1EafX=UYpL5pX7h?i?h2=?jLVSL#}myx3aO<mMq@SJgQ#D_
zdkfLL?W&^8JNv%tw!x(n%vKFP2EE#fA82(UU_j+FWLKZR-!h1%P=ceDxQ<=%HDhZO
ziVr`drr_cFERPM~Dpv|S`Vj|pP$2RHVdbxeStRN&fg?~<7UAou+tlaeKLDc=rLZFb
zOIEkyZUWJ-hFQ*c#m{92ykU8Ks)!>@llWf0^hlWhWB$8bjsY)ojcv^<<HU|GMtE15
z7o||6yI8IWnXwt>yC2|ZrU^)D)3>KvEw>qSPaTf|9}5eqEWo?YvJb@a;M-LF5g37}
z#!hr^XmGU9spRxE65E08kQtuDkjzwnVS5MGFwN#wKuq{#IxVD_g2BI4S-AS<12KR-
zXCwAd#?ifT0kth{k>*H^k~nz|yYXkwb;2h-)nwNU2s^M@q7)YXNss^dyr83nnZU)x
zwU6ONDzaq~J?a^YSKmnB)h>p>x1sZd1$Q|Z<jsTlZwGw|sn;=xiHOqxrBo^GsNCoS
zvv|)F@l-8Q=?@ZbRHQSd6AaQ65)69y9%#iC;OyI@IvuA4<S@be$YbolW~oxxTyK(c
z`^=Ym#j^g+k1-z6!QCzzIfPaB58*dXKBKP7thC>F{%lK;B`p6jf8&u9-%rB}Q!>x}
z-@lFBnz<MRFM_?f<D*^Xc!}fDQpbBHj(Rl5*3la{BV5S(_`X~pf>-deUDXen%~1Au
zEA2h<-uU+Uz>#ufUb?z`h)=H^7`P&4##T~Nc4_o!uZ&8&eo?mwcdYxw&hj~@C%KL@
zI!#Ut4A#Q2oiDzHo#l#_8CyxCV{K$``>%`2L9PRu{PQag-J^PRO3_W2UhgO6X1@5A
z6;nW?XBD_GwGbmiiWzqv`CI{NUXEY7WO}WkSLX0#z?alK>!$)sseF!Xz{fJBFrjDV
zxNsM@KT~h#y3RFkx+iVCFiQ!5bu6<%i=)eTJ|1~0Q=$~6);poBWq>+i*G*-g$9e`0
z9O6@WN>cpK+mNdnI7;d{IT3S~Gm3?*qTNqguIWC}R_*!TPS{ZioI1c3OfLXeLe1C=
zze@C|ef9{{t!H0b(CPZ}0ax=iI2Qed50E%w#%5S?C#7S|se^377~Exd@(+L8)4}ps
zqln|{k#6uuJpPKaKW~WEpB%sio<i3A&vFETUVQ@a^tTBoE;D5s_Pq0!uqk}NoD&Qf
zmfe%cvalUkEpl`LKAbINjcnT0v19>`BMPX$f6w@?{GV^#dsYFh#D~|0RsR5<a-|Y$
z-wd<7U)=y(ud4&Vh0=fwoyYu*`D8NLRqzN<5{aWcX<h}icBs_tG+7lO%vK9uK%SY&
zs8w}?0q0_?1?5zLFmnXagtkd_piE^|!4@@#RqtOBYH0X=jE&9BwQOQyLW1)8IPg?I
zcc61+Fod69+BakEGcyA=tZH&asi6TxId2SvnRj!_vivi*<3H@Bj4)ZL1?P@kh~DV^
Qt(thCsjpG2_Vm@i03NiT9{>OV

literal 205194
zcmdSARaBfy6E;dh0t9!L;32p>1PkuL-Q8UV3BiI)fZ#F-n&3XTyA5uG4=}j9p0#&&
zzW={I7iX>0SJP|Wsj04dx~i-Cd85@-WHC@lQ4tUjFy!T=H4qS9-60^nT0ucVKtNEF
zRft7EKzQXLDgOxt1qCG##WD&30fEF*M%Po*#oE)y%-ssX#@WTmiq*ry-O9?@!`8*~
z7_nUp0Re&jpNFK}t;{^_T%6y2vU9RRuylFLCGghL%Hk~-2N(BSP97mHZXqr~?z2d7
z1cbK;^3oEYe6tRgeFC*EANx<|uCoGMuIQ-Ejxo4i$$ZN4`XN_Wu5WPtE2+uepe%28
zLTJCf?5<`;Ux&cK=pCjsc}U2?D-`O0<0ZGT+ebGS$q)4}@K+)Iw5&^k5W&>|_eRd+
zz_wK&iI{n9WYpggSfLl-|B~kKI6Gw8!Nd7)ETFyn|NrF1`|3kjCl!h*RE%ZVb302~
zns1|tG9Hhb9Cdx&Ye>*(m_alTO<sQR=J82Iu;`Cn2EYWEk#_d>`SpdU{a)TX^Vz6(
zj>8OWVwe`6u;0-%=U9=j3<DuHc#arHCuGZoxEpu_gNN}>#}~&!(tn2coAy;ze}5z<
zCZ_Mngj17?)yw@yt{OHRsJGIVK#snzZO@hGT0Qkv%$t7<o^UJzy^;wIsyjFovyPk+
z3V!?Jo2v8`u?5RRXom_FC}%>38uUlKK=%21;6*GOR5U0OPxvu}g(hGT>_?@bpm5Za
z{-0+L^o7qn4lt1c_AS(ZzSe+Y{Bi89*g^uxq7F&tKUJkI*(--<*BKZX+%Kv$7ks*&
zE)HfgJHYdr4yq{OlBMj1{VnWbutR>6qQ*u)RaN=_{Vv8^ejL2oBcBz}$u6&~3?(R9
zWqlcn@Q93_{~QuZF1qEL^RS;6DCRSklaulnas$?0cazJH3@YY#GjqWeQf<lwg@v4t
zd;1G68~LK51b^X|FuFJWgPoHz!GrzA$|mPbcxwqQNZ#ChBPS=~f3o;J?Z<sCsx+^Q
z75<gu_Rr@Fp1&GOxBb)%YXdMItfm*;tK3nG$o`dn`?Nc4O)eU6c{DQRlmz!fAhuY1
zMmI%pN$QW|%yu7Lek7OqE2UnxNc-aT%g`~AWo^HlNKOXQwYul@`N#!ZB`8R^`zSE}
z@BX2ImP|Dt9kDsh_&dEYw(?>%sTi<XuTCyyde49#UkltVwQmz0Yo}_@ImH2uJVm9J
z&le>Pablz=RlpX&E3nb$=EP{GfWcPW|Ma{K-JLFIZeA=@^b&=1!_U=q4ZGkmDcGoy
zoWva8l4imIvY3qYoH+d+{HTvY0fNWZnbdX1*!~Q?X4jNT$Clko5o5oD@c)yRunZR_
zyKr*;?ZlIxCq-}KxqFmx+51Y0dIPqxh*_9l`uVjrNzxTXSa|2TVQkf6>TQs?pXVg%
zCZ^%6*fUvBI)7Geac`jBhWFL$zs9lTzfpM&Amg2mI&3A1IX{`lK55K}+4pZKkAyeT
z_4J$RY2U-+ID2|uzbh#<9~=_F-PmvyNgb)>spjIUJXy^2I`BRP2y9Mkrn`5@-FZQ%
zg=bV9yk3|DU!VpDoMC9!>P+44a^41(i#+T0U8+!P)Te<#K{0Z}4Dj>g{tA<}%->8g
zzH1MWZ=N@CRm3d?8r{mivpuH~Q3ZVgXG`5~6%={wL^;z%Fza#NzovW`R%Ed|L5Ojl
za^6T_mW5#j_hmC0b?@_1UVTIJ+m1FFFIlr=y9J0Pu|K^QCxxb>mxOjztgQb=ejd8t
z|J;1L9sM8r22uiTKDS+M)mA;*#Wa)m|K!EbZ7fLc+qTx%*MAey^@Rq9yub5YL_bWz
zk-2HvwEtwR-buUMC=%{(DiT-^MC^+%ly&A?pQj9J&Q2Pr%!`M2h>hzTDXH6WiTYz&
zPcqGMR!8>h&9zH3I>_a?3SO`H(})6)M2Nsp;-It4pFA$q2Hb5pSzfEH`BrorUql0+
zc>Lo8b9S#|VV>^0DfrX}3pcQ4&b|5J+dRzy5}&aGKeDO1yPSbTEc&GMJ>0LlH!ssK
z#MgM7_m0$puJQsYjxL1h{(@Q949E|&t?1f6N!$0Ut*_TGH16CWC`oHJ#R0MD_B_xJ
z>t%p59=yWw2~*V!wN>Q(Ue{s79TEU2AZVrrgh8OVRX8Ity1J&$bKFPDW-Z^>>`%9Z
z<>L3R;&ZMv$3$SB<$hM8Y=lfOESvUEhzwy;DuOALVqtSFX+><Jp;B0)5!}ZaikeG=
zZI*qi{txy~-kombL7O~<&o&g8rUl-#t!qqdB2RMhY5w%=rEVvcJ6z5$5y7<EyxQ-7
z^H#Vm56ZgTB#3Wk=%BfA-1t*=ym&lNY32R9zUuQU+i|!bWl!<mA`RH|osyY6i3yu=
z9~`aST1$eO_Yy;zMunyJeEt0P<o@yIQS2dz%9~{qS}R$>I&h9K=M^1;_ANOf0{*f8
zD7^zxV84DpV!RwHP9GN=D=;)iu#V8DK*PHbQbE-n*<*HMn{h4zVJq%+%hbESifL)@
z6}=GAhmWppZN)V>Q=o}wsFtDmN^G~@;VP0DE=BYPid1m<S0p9MFO`4pLm6JZ;rAHs
zUYq4O4x9H==3*LLoomJX8=|hn0vvap`!O5(LiYVX&CMo&%fD?@qte93K;n@CGAY50
zy3SMIj>&#fQPx{&LdQQSxZ|F>g}Qt~IEpW5acjkbwI~LSO~8;R=~v8?^!lH~qx0zy
zeW$<cOtuNlmi;X53#H5~$v?M!$DUVr=#t=iAyAPpG&FmqzJ3x>R}Z~(6pcKaL|xpF
zVaNSC+Al3k9`kpT_(&EZ0mveK3@}6aD2PxanONAYdNb;H_`qv5P7h)M-MY3F58Vg8
zEt@Y=s-gsN2-!^JwUjBOkgsT21^sHy7p)FDA0DvU;ju4*S~9|09&SoT3|2!(Jovy5
zj&x5~p`$#!e%M&Q(|2z|P(tKs=>3Le(&B3x?b}_Tzvp`0t~zjS{s#R8>Sn<1QDJgm
zS(!x2cA541Suzi}cH{b%4;32ANhaBrJ?&j<#lm7yRo?KOortxdrP#XW9BQ?3$MGYT
zDok-<gwgk;*XMR;>h&kzXtH2xni9PfqMmLVtI5F!UsD<+D!qG9$IsTQoBFSRQFcZ#
zy{qU0)}8_H!ZQpEZvAiHqbev=v7&*TU=y=H!Z4Eq$*vZ|c3_z$E&C0n*JNluqEbBE
zJg;5`74Pq*U0>q%#SwpW_SR-ugSwU((KMtybfF+)og{c1)GZ}f#}<~;E(H7X;b1Ki
zZTj;D-gGr*i3Yu2)?jp9NOExvDv|A&Qv$>w4;nQ8O`1^;*k1O2x&T<j5jYcVLntD!
z(=|<ISf{%F*DH{dMQrD#h#{oAo>e0eci<>d1(?O+zipkAnJxd(p6fIeA%%c!-}&am
zyq~_We}Y~#dFepOf75b;l`*Dt#4`~WR>fKZaO^lP`rR1*S}|2qOS5^R#YayIRP)v5
z*_FS7ouyE)oF5N!8T4XZwGp1nd~0KzFV(X%akB9Eus2I|Q~D#m5{^@x)?dSK*mG<x
zP3H4I#XT(}fW)m*zqK_cQ-%l2TennWDa6nr&`KRcgS9zM5$?W9-`@8rTNRxy_Z=bd
zMq+dlJEn_)Q3gigu<1>@mqAp-VK4z6aIJ>s+y^ZuQLjtoS|llf@)$_9yiyb+Eo(X(
ziCumH9WD`3N4=v6gq9dpb9G+YPKLL)fMA-B=Y^?WgxWhv?T<ou{c$v$VlU>-E9<L1
z-Nb6D%qJKyRHveSn}2@met-FPt!7bYF`!cmKS&_5upW#E1#U&S2{XyM*xN7th9RL7
zPYU8;|AFO#^4YnL<6MJ^QImnLMqh|=tDLHGpPON9-KlXv`ToZF?K`%Tw-u%o^-kc(
zz!a;A3LE|itRqElYkx<Q<A{&AeIGvBqb_??qeRm3@Pa3o78QEjPVWQh=zEgB69Xaf
zyr&)em9ul>b&5g&|4lXRgzk-G2VE1x_<jGIN3r(~_PROkDQ>h8GC;4q{RkgfBIAT(
zUgk*3qSetah<EGI3y|WDREAi#lqR$3rNw}jDu=*LaNt=_%_nei=YRWL&Sro5M@2zF
zvKKwQWg!;zh5(t14?NTgJwfhEa>*QSyuhnKv8DMHU#a_R>!n|vbbbAJZsc9@VO9tb
zX+&{z;T=CyDBrH#pk;oMqd+T}(G{6nmhGi!sjv%_Fu0ru<H+B8U%_613#6wwV4@T2
z1ic9qL!Bj>;s!G>S69Cg#$jPuWPeYSX_ip=%o__zQ+_NZOTS(r;;Hl2)jf)c`eG5x
zH`v42k243C#B3S2xWa>|=T)lyImP5_dhJmH>YX%oH9l%8qNO<1Ap;_8b#0)0R>@l5
zb#!1r-W6B!$fwrks@1f0x}IK~cxhKrEXbuRIZ?kCXP+rq80SO;X$~C6&5#DC=&{>v
z`AYOEmUF(!Ub6qxmAs<0Q}!J$H7|Wa^nE-XBXg1*-DfMkFBFkl4rtH{cwK)CO|@UN
zC6F|-;*7V=--*!6D^B_|E16hVCRBNn#`#2s-1EsUzyI*+&42bjm=UVWh19c>W@PA^
z=#Q-hwOS;*6#^h)kn?x%*rJb0Y@pKQkr&gJeR0IGu!iXw{yJpecs#VDkS|{ZG&FHh
zUOh~pk%aB4)xl*{F)2vxczEkHR_7%-h&$7Ef&wS@MA6zI47`HTZnVhU9#^T-hR7x?
zUrLM1@*Gk<yKrnW11_T<ex$#8I3+Z;z>x5PcJo(8k-5J?1|6TCnmj8z+3F~({W0!l
zWPxUw7#3F8&mRq6+C-Zy^vFK*L#u5a?SAGqG1Na(Hsr`wI5*bTe|-0ziGlblcC<j%
zUUU89tw><Kvc5g8Xp;{$CpG3=oY!SsctB6e^M)TWB5$2CeyaA=^z@?fPaAY%3o|{W
zb_j!5Tl~m{rF%6O(>o^mF{-!3=+$kdv00_D^XJs0?_R#Uz+2!8z^5&5%a#y4&14Ax
zS3XcsauB*nv2Xo2Hxhe-#!NFE{8#_p&I)<$vKiMFS2WefR~HvweSpw5m4b^4Q&MK%
zrdX{vvAuC~yI~c7z0drs%ptdq_Y16{!I@{1J0;v|L7E)+wODAjtl}+xylF3~Z%2f4
zTMpcuL`uqn*#T|%cZo|Et$wdfZ0C80mr)l^<aWy2WUWhlLaoHCv@h(l*>lw_L(C;8
zvRPMetDK%_swrMB%kQUzva`J~`2mw%;%ByulX<8d7Q9(XlDj-k-~IY0L>?#$@$NX3
zWO-0Te$Gv_-J&QIeaBo;-06|0<x{?&n3Wc_?=KJ^W@RwJ)*5jY4=x*x`=s?9+tI13
z9`H$vU(Hy(S)JeH2f#&a?o!vpP~O7>d$``#@z>9$>R36tr4@-eVvdx~dW=prV(1wT
z6;b4V(|o<Mg$Fl1L9%X2ojQSu!H;(|*#o*gz_hVWc+Q8ftwoHqe=_0O<7^`Vz;WlR
zfwsDgmk~w1lUazVfRdLJYl_uGN;*9~T`fPvmO1;}eBJcj{7^<q!DfZ-$exxWN<Cly
zn1Sp&{OD{OsT*rOLN5&E>1n==>-*m&<#aB$l4sg1<^YM6h^ox*JGYLRUv$T1Sy&9K
zxj<gM^oQ#|q7EecXw1etEekyFpb38rHGnn5b~CtWsz=!A8s*hXZ>m%)FKdB^F*-W$
z&GVziF{a@I!Zlg4`@~VpjF#2+WPDt7K22kNIV~$DF%U3i_HCRpt8V6}OA^F7FXgJo
z`yctXtaZG}wY5ANhH0vb9u~C<!1<>j27OW6kcI}`dx)-;sgV?IOiD#=ZWB^K(g$^E
zA-#9N7RF;!r$bDyi~mwVg0iRoIMMPV8|f@Ta>~^FbnGg;sHHf=RR9;t4(YCE3G|Mv
z^QXAp<tJnvRrbw^IXs8?QL>K4rRjPAQ)YL@9?3GieGh?T7OtZFqz5EuphHG-OdRxj
z^N|R9Ns+}=f_tZCz#s=h6U5X)liL9`hR^d#Yo4*%NrgLM0Q14%%~sO$rWT8#epxHW
ze`m|K0+qui=vasqdfezJeyYy5tnYH_c6yH7LG0S{HhhZ?5YrA{Y=?}5#Eeh~oR%Eb
z3@WBE#g!Xy+B+!#tq-;RWkXT|5N@^A#K@e!V4I%P#(NVfCnrZk&G}}|%L3MNW!)NK
zTS=U$&NI$EG4PWY9}RyYKlE3Wqw$W#_Od?`vj&Xc`I8fd`APWPlyGbJF=3a3?&I`K
z;ANep*q;=dFjlGfxvjoqgjmW<o=McBd2)$#sS=(|gt1`Q-_31&uggJfvEGD9VpP4m
z?1JJ|H<Mpz^=*Pa)m0$YN-w{VPQyTRID^+AcP3Pf3K1FeEh}&IP_e(^TtNUNNFae@
zUF}<WW2>B;T-W)M?k}Ru2>6EoN*_fahA$gkPya+w02l)ze}5V6*wyI~t=-zk6^Kyu
z^IKDda>U~4t8C0*tO~13O`R%Jw}Ss^tWxdp{w@m1LJV41T%Xd^_tCw&`J0Ivu~E50
zha1Jqpv;C4(5xx(+~GKV_a#S)@^ud4z{rt`p`l2M6|9D}x~VWRCu5|zMJw>8GtxIl
z_AT3oxdTV{CTn$_RV9EF_vxF#iz9LLem6NexgIyej_&Rlty7t6TqUKbytYA46f)`!
zp?vznaqc3AT2zku9vyX%9I`QDTyk9+fbm<>>B~5+v3lSO6r#%Q-4fl(Uy^^DPjZZl
zRuWVQeQVN&s4<GW%dKP%s4?b>4j4a8(;8k;AqMyqmH$joo2Ms_$Bq_gC?_*0%nY$A
zg4JMzhJZFVeJ3?=-9%GMOIi93h2tY4khr+G<yGW6Z453Bmy_@A7&0=#zH|)=l*jB#
zGheY-R63%8APj5ZH?JP@3+dDh^&;ROX(Q`zd3pJ#rWYms6;N>uON}PL(whOSO1-7<
zU*tZ5c@;si2Ni^q)5i7i^>A&qlQ9-jb1XkfY&Oe7ZXM2Gv&R49hI+*?G06GJ0-uc4
z7W%<d%t0*rP)W%f-JlLNErb3W^)Pw46Ic^v`Tly3WLy0TQC|q8zS4;d#J<?l?MAMl
zshM86`t+rn`ei6WJtT6!iLM7Z3hidllbj|#4Ca3r{<$y2NsoBAtGdJG9woecdYad?
zw`rf$f}?MIk~IHUY1YUEk874L{SW&)X`!<rWAia7iI3U7NTQ6{3LSIQ*e(FjqF&Vx
z$f(V7W^hr#lk!;#(|;X9oCN}JyYV?r9_F&rLKn!<cP;JStC<?6_htD_^`RHFmRV6T
zr!Hc04$voN(jFPAa}g{Mr0-ZY_NZ*`XLdQ~+Vwrk4PX@oe{pQ9i7lud*z%cXkCgQE
z{^8JK@n!p2F)4Y!-7$VC;7*!v3&)s0>=tXp^hrCCSMz@1S-rWrkp92Oj#xW9m*<}o
z=>#oheoxIUn*4oJn!LZWo+ZQJGt00EQCT7F;`hA6v^X)-qzDSKm;7^H(C4MA+ba*p
zb;I&~a}p_scRkfDb%7Swt@BR+W#!Q?T?tnmXZN)6-On6JBy+L-?T4KPrreuL?dKq9
z(YTjRn?fRRyF8tp6EIS4B!d|;lRZV1J($$KLk3ts9&`9xeIA%Mi>!0>t<|vDlkM5r
zIu`m|I|sIMu{Yt*)$2C;Q#=O16Em}A1jwCTzE|13UQYR3KPuYR2wNPRt7n-fI;pa>
zqogO8xp8V1wdCphQ0mUH(IgNr)p6|d9B5OOc<+7!RNZQjy0X%(P{J+az#u5mJ2^FI
zIqS+~DPI}uLu!td-AdGJ(M(qjYd)MHJ5Q>ERAu>30@G?$gWWX{8(8b`S?^=7je|pV
ztSj=ikgL79*Vo8=9as4Uj-Osj*K_ox3P;zlivwX-hpN^;!m9~9e7CA1ea*~R*+S$k
zE=Y9Twg!>M#g_}*ZzDzSJHlF;TGSOy{|nvu%SXE$I0oznYM&&pvkrC=^&#EWEc*IV
zflo7B83y{N3xv**9c49Lb#YQ+z=jae#-suv+pq)HOK9<xQ2gb+<AWGg&c2uZIFa~?
zwDbKwNRU2&pkm33q=@30HeO&`dhB*tbEGDIt+4-it*1@cBxX*~uvqM#5jdtRF&s~B
zZN+(79qGG~aaubP^m#SQgGQFh55NEUg6rwwBj+Oo5F*RA3c5Jf4Bb>ww7kf#qH{TH
z)Nd8M+%`z-dT!XwvQrW~HK)93;)kzz3nJ4a>RM7<Iyj5hFq^Cdyb*s~*b-@Iz#>{X
zWyVywmspbiug+gkX|@{8g@;1mdHL0eW{CIy_}ENd(Cvk|7)V*(kJn=xFxq(^N3(X0
z7kwBr$9VuvFQ{2z`1y0+ujlsh)9m!wU`sC#FW4M<^$`}w*-#z>6S~+-QS3NoB#-u7
zoHR=EN6=aEMvVg+b{)eDxVI)V{r1+{@`)o;zBY;kJ$e~d9r01#T{4ZdUkIWa$`NzL
z4YOzU-AJ_VWZ)M%?lwPMmPe*Fijj-joN=hMY$%M0SaR&Dki@J6W;9CkeF~tb8Z~04
z8f_sHH(&E>U#pa0swEtSCEp*dXMfjh*z017J*1R{Wh{sQ;2>WsD>PH?gN@*m@in;M
z)*i{H%%iNQ6Fl_W<6}LcD;gDXUk;-dd+nf`;D_BdlFho8^B1C9*5zamob8P_e)d<l
zuXP@`w66wH*CO`x_+j4VErD-{L_HBx$z3shMivZZGN`TQfsGf5n&~1esUI9T6|EmL
zWvPO*x8kZMo(wS`ZVR%wtwbKVoic_}&brFx&VW|yPAerYs20~5U3GBKU_y6I)!y96
zZu>Fp2u`GV>;wr!x64!6`l_h9{e#*lI%ZnEc2o4pe~!DsMs!SBvkA8!aYP7*Mv-!h
zD78&`mj1b)0y${NWz7HEYh!+YAFP@+DsJ6RxJY}q7j=52qNmvY`Fi6^;bFk+58eAy
zej6|mnh%3`SR4;O+Fj4q7e<~`1%(Y=nf~j^1QaZ5Ow183hIgBN9eTerl_wm(kBupd
zBAfejWzVa3<jI_Kw5;srvCWof1#{R3T6|hB3!SguZ*sn95NHP_etj?Y;7Fa!dwH1c
zE$nWTYP{^e;M3!ZbhR4}Yszkr1<6$Ww&66J=zg&BMuV|8XPeMH107Ta<Cz$jdv)|$
z2Wlz4uKGt@Yhb}E#U|KQD}TmrxrmP(vkAr7i9hmIgvYNfDq=E@A~3{Bl{X~~%a+3j
zO&(*X##$3n^?_Tlh%o*Yzj6MIb2hTkN!g<FbC5|VtmMvZ)+rd4qsh8*(=GFGQM&K<
z+gY5g+5P=8_@-FS{LD&+!*S5U5HP!&1%Ns5C^seUtLzZ~sOeQUM>L&`+wKLmtw1BA
z?b!p1_hV*zZko4SiWnCo%AfmW9?rvgl|<}KHu!xan?N0`J|-VltyEoS^u)Ig9G?4z
zLWw+%mHVey{c-w?1Np%!r=0sMyIBE81xq&r=YdUZ)rSFf3+(ck{aI~PuT_ouA*!Nb
zyQ<|DH{tDD@NNK<pK8^1taX>ADac<K{<PVj<=^Szcd+bNT2{KACk)vrUyykJ<Ut>)
zoHJt9{y-GYCZO_)kvtm7Gr?-)sW$ylMKEk4o$tmY-E(nblO-r~fu3#tkz{h!>~_wN
zEamCrnO-f=$Pb(_Z&eNU|1hwM*38OyB7z0_x9Eo~k^66LkJl+OjFw5v;+OX$p3M<V
zE#X?Os)z07B!&M|HX-)aMru=pHO8+)w<SC3KT-sNu=>69a!fit7x+!j@SA(-RyR+G
zga)<xkJl-F4EQi_XXH~>ejr}OZ1QxDMhd{YndlsC;eBMCt$TU;hVI6|*6y-HPgTN=
z=%aU?SzL^PNGeIM6XWmo%XCG->yb9knjd0*xS9;eX@Gmgma5tpSigMt+&)s?p=b&j
zLv>4UAhaVl#V?6`&u`NoE-Ee3pEqGG?IP&-r^h;CFq=87{0fX-gLily+s{e&CPvt0
z-pr3g5I`Uo7>gtXDA|I8T<x-p`~VQWxY=F5Ft`z!3(|@SQ<gL*FB>iM_2nTf&vR2?
z+a=6oL8~Y6T^fun^NmKM1j*ze;wPWYg95mpT#DQuI-XC#lVJjvH*A4-MT)-8Du7xV
z*Tdo~ZpTC887DqQK9=Au_7)y?eG;9gK93f_5N#~^_Xs_W=F!^+FXfPs)wNgqzsrCB
zENF^2t1}3|`J#8R!!B?%QQtnteV?;SXBa?q{Tx8L6(>J$B0h4lI`(7y^@fI=vSWTr
z8!RV|&8zP6)t%Kh+qd~~chW(+O1OC{%@K+~vJaA@b1lBlfCrz;l;V_sGva2XCHOU<
zkJu5K`}22n@uCnzJc*2(-fKOQ-B%BMirVFU@N0Dq<6dM?Q16c*QIe&0B0HwRH9vv!
z=AYfpEH_Y|rI@Fg81GSDBoHJL-t=8-rqXjuANA`HN_aQ%a8HC63aSMh?dFk=k=|Lr
z%qBb#K^t?qW|)a3K14j4E|_(u>SAzcjCvULW0+Wyg1!PCMjWMS0^i1~F~M_U2J{1k
zJBF^>zg&RNZq(G-AG-A&5w)G!{nI2@bQfyPNE|I$OVIf2w%2E?oQ<6Bxm4NbC1W%t
z%}yiSoE?}Yf;Y5<E}OoWv;Fw}C`rkxJeuYy&KL2;S@1@|T632aiH>pH&_EFdfoj2s
z`;AWh#*4OTPuxtMsfW0b_a8t(%XUU}S@BaosHru%yKwX!GN9GnBvfaBjF}I7;In^i
zUz5$eB!oIU>!|y*S2w=2v3`xr0p+C99)qXf+qgq{RZk`-Kxciy#@kz9LN&t04dtaT
zpqwPgTG2hv>DVgB%I@qb%d<<*&~H!3*?*gPFE(5T>JWfe1sS|fk{8Y*qil}i%)CX0
zYqfW?raol%8tkoAqxD>aMowWKKQ_^fpM6<7mwk4RF_S)2JOa)3aPB#CgZa6V5V0M9
z6#KF=6SA8gF?yu6*XOuQy&ufSfXRxJ$~S3t9L$NWcCl+Y`m1CO<*)GZ#;llapGCy2
zwjI1s5^^VAc!Px7=X&#nvZc}g5S)?vZ=2wN!ux(m91FN{hKjrKa>SrI_Fx44ibN<%
z%K<G<A}6$On~;!gIPb@=STRxe-Kjig5<8}w$0uDAtcunEXEKWp;*!VnvNDOU!|(Mp
zb%*XI-7_)_%o~@t!-VnB@RD#hqOo4N8Uc4O9fiT-Yuk+t<yh@lwu3e@>f)Fp4UEqL
zbrGHY%DDyt@hhS*dF8A=btaI<aWRVa5sz~l{AD2fLypOEb;y}EaGJ^I6lCHUxDprk
zHZ`iojthTb#DZ-M^U-n#=S?Jdes{)A#1TXlHhf2L`)VwEWG6P9C00Dq;-h}g)+HTp
zdBPy$fz;ChqwP&!G`cl2z)}=~INarErX$4cv**23qU?0kcF++RrN*^SIR?5Xw*aQ~
z4HhkT))b9yVCg)iV=;rhm*=yZm0@#p@oVS1M5puB+H1iN$7Oa)r}N4W?pq{Fw^kT4
z%7ghu3*&9Rb2O}?$#O=@k>grzK1<j?qmZAJS4~8g)NHS{?K3`I3Ez^dtg<Hzd{$UV
zZ%tXlI;^went$F{<$gRldL<Mjk2|%?=Ze0J6u<tB7Rl|}3X2QuSHvzk7p4kdnu^$P
zxQ&{5UX~mu;{OVRh-On+HI<?Qh5|B?0Av0sfkwS%$kyv<$(6o-=~sJy?#4~|kpVf#
zV#9@n<?%A3qtb?{ixEh<w{g@PzVm%A5zFD~Mh2=*0K}46!o>6x1#fH8T{|W^MtW>2
zl(iZsj)@L>^5}6=boJG7B`+sYf*G&rS$<sf@Z3&gDEWM#t4(aDo6)33;^}?h#8A5m
z+KqV@%`86Lb!`oQBx9z<7vh25a`eJjq$V`kMYM~6AGn<%{*=iS7jtt>b!@JV5*XIc
zHN+2sf-+_Om_uZ&wTW0}U#_JPsBdI<gao;%;Txbhc;)H%P)&OsU4X~(?3VTSRLK;A
zS0h=TZ`_VZ&V_>>FPMD`K<5Xe?HlLZ&TGGk9`M_)Il%2zjSRRF+HfMA;1jjGd5>I0
zs~073H6+I56FUiPa3F=u%BKi)g`U#YhGNJ{U+bb9G)MKm#)Zl3DVWOQskx@{V(?z@
z_FK`-&6d9*77Nr|v4XByC-|<xujSk7;*)NJFXed*8|<4{x~|8$UWUzS4G!W7pq7X9
z@)n81UYESY1R@)A+1B0?v9RRf$CRWZ5_4XN9`9}A&3toqTXfTJaIV)*He92$9Yii9
zWEN8~MfLfHv&cOtU;vI&`u=S@ot&gKp-~OD{6)a`V38z0VT!XC+Nzjhme_4&E4EUT
z^Mgtw^FwbdG8V2)1|MuD-_%a4L38#0w2q<|%Op$;G-Kp?sBzsY5unv_Q9xQz-sH2P
zV%<85Lq!K8EYeJUTYGymfZb~`XxH)i`t^OKQ*-M=1WXzwlJ?&_{y1#|lCWs4V<(4O
zCj*3edRjo<t@rzihy|B1cnc_d>;y<@Gnfd!UDkv65Obs|s`>@yNiBWVcwZ`yPL()P
z8a_&gkv8O~d2b<jo?BF!*`4XZw!u$iIJ8u4b5kvp6Dn)eGcDFpJ(m4cFP+lb-JBqN
z(~DE#-VLP>bbYo8bPbMt!T<Pq4(yK<Ia49tU&LtGsRggtJkn_^6!Uw<Xyo<25iMse
zP6Qc}Ia+d@4RIne8kWCQ<t`GCv_J05F9r2}c3LW-03Y6(Vy%tiHEGtFzJ9$m+H*;v
z0@@^eKb+|rt!AvDy!e!qKF$g(kN|G)5k?q4@H-2evhf?Ayo)&_su^j{;vUP9?revv
z<EmJUC%`$KJ}}iBvG-rn1YYd*X9Yi6Wj$Ytwxrk)^BkfU76cDU9j9)X%L(oXJ^3rU
z7`NY{=8S^pi@I-#KHhosAzpKMErS}@js$t0#*1s)U^I1pfoJQuLGB}_iB26%+cDSM
zHEjT+=FzBg%FS(yX44F~`*AN;jsLt`R^UTuEaf-FVs`1#yRE>hS;ZCshs!<_lVH9)
zV9rn#@=^DX9KHNkZ<jtP>Y0g|K%T#2iQRmj@rq!}D|EfO6*mJl?A&JuAM}b`ZuCxg
zd=ZDY)f}67V{^D|#)^EC!Xkz2bOLsBvK4Yy3ku3VcWs^f1^1zg4LIyzuLZ|6_Q$JI
ziKN5gvqx^$0Rzgw{;xcmnoaQpXyUN!=eFTQdoaLpJBl`q&x-3F^H9dSTKU({#7pLF
z?)^)W7I2F<*|5HoKaf<#pJfxR!asC%=>qk275xo^SWIYMWKx55FMrqNha=s1(REu)
za_(<AM!1}1m*0t4U^Umq7Jae~P>_z{(JK|9V-}Si2U*0Kp23H0lcYS*g}vW(y`rC^
z8%<cSClb-aMTqT5%;*p9V^}Y@MMY|Xs>iOfi-w)Q#}Mdf^P-IpdwV#NZDR~87s`Lb
zr~*$f!Fs!<bvj$7a|XG4ljS=(p+vqASw2X}n!JB=m-Kvgtg~GmG<CVa5Gt0Wx*ZF{
zG}VQCD&2NJ+aBFqef9@->|(jY66}a=MA@IWg>noI4?6ahB=Y~swF5`h_o+wDxD5;S
z%34kod6Ae56{ZxoulG;y0kv4W*wgENUuZFZy3#H7b|M(_5I9m<<PNh!pV~x+UGiYL
z_vcmxMRh)lhqbM@e1_4BdRXp|`GAH)b`p{6O~sKrdyM3=h@Mz-e+<fQH5bZ?VC}`H
z?&_Kczo!SK;PNM!A~~6JzV~v!$YZL_uD9D;?;+Ba=W~}GE`U&~*x5@G=hrdM_r$?|
z)Tt%~-W$_kSxb7z%I!;^rBkA(>HA}m^KBaz=JM{-qQsdpD%yS<&4)Xs6c?*=cJKp*
zbMw&l#xUD9`}3ZJMrABL)nl9kWjc<*hBk!p+GsSJ$ao0i9GErC?U*qaJebt}9KsIv
zs_^dOgIho?k9{z8jHiL6(za{{y-TUi+dow^5N__mk#8a2h8xzYG|d+94BfYeb?bp4
zkocokol8ESC%!mENPCv7>Y>WlWyzVn+ZM0kOOZwvQl@E08*o*OH+y%AYW+efris_X
z@5tx+#JUlUn1k;{I~Mbm#-VReZ08yB33PGv_<oEIeXG(VxK}W#KXKuzw@=mk86fzS
zN=v-BMd<A7=EW0L?JjVZA?`ZSP<u7^IwU(o8HBTNK{88qwq4caXEOFQN}`17cn=uM
zr|M{&Gak6<iR)*uxw4$k&q2@T2<^OH>VcWe0xUZ3F-Ivv1nyK@BUZBozj`*q@Z_kQ
zAt=>N_k+Q3qm<e>(RCqb0gqR96gj2rtz==>;_(tNEYk-~pA$HE)~W90Z2jStcqFsp
z@106W;hg?pF+^<fLN7t&%+tBWnG{iYB`F`>9}^@EF~bvZy|7q1J8>LZM#pU3QBa|*
z+oDi=aj?$lG3pmNQNaDwsK0yQaq#-VyT>wu(IpKe?t`5a#Fed%2-*Y(2Nrctnu$La
z8bL<I$rSESK45*MI7N#<r|8p3*mThjbUxl!lK7XXIpA#ZFI|CGOkRG_;9-f0NNM$F
zOn`LiUIY!!M=S~@Ykg8~_y|2)<*jL9>!J%Y+DN_4$o3anoNBH~!N83#S5z8c{IhJg
zp*O;wM=l)E7ukVaMXK2&^AgMQK(L!Z3DcOtNGY5W*6260y8oCGXmqvSFr~Wv>rr;R
z!huVyi|0F0rTGf_)7=2Hbi!YA_m#48oUqqY$O|bUKZe!#<!8^MR+zN^;s;-9pm88F
z_kNq+#9YdwZzpQXsDZSZgOJoUnd0&0{7Swu$o-i8*hYnW{!s;XB&?bX#>mm^ORabU
z`pvwk_P;P2NUK7(dt{$8dPWW3<hZMxK&KFoOJcM%dok7oyn!1q=Zy+vaS;YpMrk0w
zjaMgH>W+)-8iI&hbQa_8Df7YN)4RSnzd&Cr4M;aJxqs=9l?@X9urv-jha1G_$(F{b
zRGQPHrKGIW`4m8Yys)hB%NTafl&?b$?G%SWg3}aKp=*8^o1=lr&j78^3W#Np`$pU5
z9fq+05MJJ#po0p&7_*lXa}~l;1<6&vfc&;Tb$ISistEeH&fknA1C%4}r@uBFUe_b^
z#hfu|A7$oFRZrzf%Tvke8c-sG@p3;`IW#=Be)NwQk4orfbX%NG$R|FL^lNzpV(G#W
zjK6jHQPsp!lZym#SQKTAZRYT;X*?|qw={7yVTBpgWC7dX<<Bg}e{GuwvqKyTeJ27_
zz6*L%G*aa?_ovu4Yqj_d6FfM{dmgJMd7y)r0{Cb*a<7+uvs<p`*45@;SWFM(<k!D0
zr+9x?fA4h#c#2^7r;l+)kpOBpZ|*z1`q~!fySB03#OC%wydaq%t?ZR2RMQB|P2h{<
zYLx1{pm!4(^m!dy+lC!_IN)G?7zuHOM?wyo91bKBie*}^PH2n+d{rURmh7<aC$rh@
zu;ZA#pDJAk=MC2pc{}!@(Z|CfM|>V<<Vx<SOisJ{zrMddZXIsksw#dDV-y_B9en-H
zVm*NSw}N;UNNM0@N16T*^6^;i6WOiyw+hfRqRvA};$$BNfj(7fb>lIX=B{<vvJ*C<
zCc1+?KVG~Oe2F>%02GZqs`|!mcp?N|IUyf5Fo)MB4Jbvc9loIBxSH=?MC@DyQo`yP
z+hW;LA05TQLxpc)zyS06d$*m<pq4AgC&H8yf1WWwj!iphU%15-hd0B07Eg9S{QJ!q
zA7i+<OQ7V+M=iUESowZ;)6$DECcmVBqX*ei{acT=Vx{fSeJt831yfKr=8ygR=Yo^r
z>vzsay|u7B391Bh!jZsKcK*BGes?i{@Rx>1)wtIHO0SablOy3?;p<^4_K`gzm#qk*
zS?rfedpd?*&jd;eyru;c!5@f561hZJ+!-l*zUd0>@Um_kx3|WC6)8Fx?kh`frs!ev
z%bU=RtM;*f*%FpMyVI9}Ds<I{5}E&Wry%{+54@X1rTy?4i)AGrEXcX5C|3KbEVz83
zp}c0MpzWucZ4EFc>cD>NPBpEu_IK-EgVimKc5PjM-G+QDE49~G?HazT2Ko6&w4=sI
zvN6#Jw`Dv|<FvlMHSIfjm-IQcdi4QhY$o=CQr3~G4f)t-Z;$???s00TI0<s?mU}{G
zeW8(AyWA$ec`@&sZ}~gA>`I+`sEHo#gQKJL{9rUznQ&>Wy4^)Ezr4ZyW1MD}aPX6;
z4@6f%nXYL!EPE+4n$f5$8*61SxgUMLGM_*kF%rwsWoe?eDWos9et$brzcuGl<$%2P
zZrnljQDIbXu=IL%^2%t~LANWH*J-r~<4yFNs%I3GahDIO2lMB4#vDmliqN((OahM;
zn<s0&n<cFZ?teS~3x3&mFj;^y0m*_ORJ4s%iTi`5B6A9-?(EUB;s~*n067D{a7=9N
zCz|-0naA5%qH<{2IUY{*SrmRnQNG34Hj*92%Qpyx02j@QJBysB_Nog3pO;3DNJ-;y
zRhnaFBb-I*7roEES5y_Je!G}YlU-w`J7)dvBcXXDOU#k6-+douBOE@a&-WLej$J`0
zOoY;%3M`CidwW-x&MRP9P5J$O83-0*w|H2fn%kcYVhO%Kf*c^6pN5ufoVQBSEd=+z
z;0YXk`)PTL!BEAY1ZhrK+B9g~EtvVDglfd~vKD}>D7vFTDPW5>he4OP6DB%A11({<
z1{g&)!+VeXlmcG2%G2@AP~B%LYT4cPO~rlEFg}$0x_mlebT0HSuO-2yKvT0W_wz%x
z(Aas)RY7%ga|Twfc;eOW1Vyt{_h(kEi_!aynq^L2oCFsX<S=OC7w(ZepX04PhhzAy
zs<tLsw3d-x^u^M%WqI@C`}mQCP;hY4D0O>NwgG!aUuWK3ViF<H?ssA7uWwzs_WEF$
zQ@}mk*=t^?)1qV*ccf4P#@FXO_W?M&aXaFBV9nP2;GL6cB2z2C9x5>v)b)bNX?@<?
z*hjYCn}&T_!L_-qz&X%G#3w0C1lgv>AxHSu>)*&nv#MXDeX+%=H}E6DB05HO{wGW*
z!af_i<qe&S6Tq|^9K0AfR1hHVB(CWdoSvIIy~?aOuD^|ra<q&L!rGW<31VYk;ZN1!
zj^yxL+|3Fa;ox!#lV6Vf9eHgw+dk`P25E|0K#bpH#N*0S6mHdTd$>OoIq`lmN||;+
z+ps=?MpAPbQ4JOMDGF_3z?#JPrgZJhl-A3eDK4U+=#`DEht%S~(hkF=%vtp-@K_&`
zX$gGxK=<9?x&rd2HRN3ET6Ye8w72i}z2OkRZ@&vDeCBp(KH74wYi$=e&-mpK)sq91
zu~s1zL*)~pN|M|wB)f1DXqYm#`L}(2cIdTNvDp3d?YT|+Tzb)xl?WupJKB@{?(#@p
z(r_sPwVn0B^<vY6s-UsakAF-<+Oj`=)3J%c$u|H?r(&(O=xA*MYtJGyUB=yBA%Gwi
z`qOY&L1nj+$mpPo&1mpz_LzfyPxG;ilo*1EvyVH!@x<++!2W;<S^U`44YB_;eguPe
z+P7@U_GpXT`xQY4-D;NlW01VrDlJ1D#3S#PG5=djoryy_IzzS>iMY5mIY5J-l6bC_
zNYIJ8kSL#b=LNNPQ0rGU$LIDX#CX$@?av&->C;~@fwEZ`p{eZQ(>J5xHqMcIf>Q4G
z?(m?zl~U~24vVBg#EJcsLr>{s+bIH$G%&6<!59ia_P=!ef%3UsgD({(N&Q9K&%+I2
z@$>6LZOeniQuA(ds>)^`Dk#6u8kBFBR8+tQ+r@_99`J+E^sfUeL#bjR@=3DaR#KAZ
zmq~(ebW>VeLvpvXSNl3BPb{3<olWdhSu9V7UVbgfIQi$kx8eH^0=uNVx*dzB`){U_
zw>ubg6Ct7}j1N~4D=fcx^5ME8!50$Nv)Y<4iSido0^g<LiREV|KjH=)4xfsPW~dlt
z@6Md|mfk)%UPx=ib*}onZ*O-IFkxlNodKx;C8Tyh^-=ebr>|XdXy+@wsh^`6C+A$`
zpvN>vO-}eVVvwTuwo!_^lE6?}68_TUXF~w@GwbT4Xx$*OD}s2AKgZM<nug9NIdv^s
zvtR}Q(iIKu?93cfI^-eOmR$RMa6j+_hC`lgVX;Nt$Lq6oavF)It4Y?E`t76lu|zB-
z_qPqk;6WoQu=KH~6$wGSY`GQ36K9s!uot?C7Eqi!H3jQv`&5<mq{Vt@c>i?gb0^L9
z{O;0{6}3!)rF-J}EgWP_Uoqv=;L4PK|HhB;+Cr|wRD<zkSo|r6)1<VJ^C!OrLwqjO
zx@(Cd;6K+LRVw<wC^t!x)l;WNl#MNv1-;0(_Uybm{9PYru-(Web$3lKCYGc2u2vl{
zUhQ4aU6<F${Ra0+(7Bh^S+rac7ZbAEOjv4FaQ|0!=FB(Z&GBxsEuC>XPhkYBG}N4-
z=y!3#--BR$kFm10kIgL{CAk1W$NgNaG|fhFSxW<AJXJ6Nvydz#3F1zc^#Jr`f0oVS
ze1~b_Wi@%r&&A};R^<QY{2ZCX`GX{*mb2gVs9!|?^=>ag<n`Mz;+IB9)vKGKWD%aa
z*<@n@;Q`N!ajQlg3FPg{cWYsSZYP~&Ag=1b<_c#e@?BBn#1#*iVB_Vm@6-C+0Fbxr
zGK1(87yzP$-*FRXo8b*mcH%Gs=QkbAz6$3QY@=DT3M41o7nsIUH(m>1?o&{JO`W03
z9=fON{rHreaVtS#r#@!$p^@C^uEWgUqx?=CtU;+oCc@t`RgP3!IA2vqdJKGD50QnP
zRSfR)Cx*JMKA;{C>?{3y*6?mMN@)w1l1O2_$+AKdTh&V4!LK;leG@f+l|=A%4BTit
zV*2{!t2P<??b6KA819X90qb`Fk4d@Mn$yq9pHj=M7E-BB?)E{Ig?3U88@zztB(S*B
zFeDxxVkSBm6=`Zj@_JazMynM$;pLMD{O}b-AkKmTosMyV=99@-MtF_yu8B)^@oKn;
z=d$IbchC^od2!nPJO+NS7YieKqj(<DW@5r-zk}0{7E=;XyLedm;izFZe(N*BTxmu(
zrzWPwvpV8VdbUDVG`3^u&wNvQG<aM8(q37QvN12!)1jEa1wvmO@duEzkz5?u?X&Xq
zcfv~ZPR5qYcA&0$v)kEX;<Jf!yFU}MieQA)HHFIaQ92zm`uePYam;MBXJ=7M&9Ay{
zFZ-LFb>Zj=(Kw4ftXu<q1aLvbB(Gw+4z?p!PgjZYW_$oeP|$`%>|T;gE<x^3b5Uk-
z6NQ3dHv1zS%PlmphsWsehl}|~;>64^b7~{is?Ys3&u`q$XlY3r262S%{>#fo5OgX|
z|Hvn15hf--olzNS%Vu6)-lJ(ZL?rax&Ge{)Wu?XSrIUG?i3sK~`<&)GpO%)Od;fR;
zGF{~00}zucBbc|Z4gK7V3tYw$GI{?^j`6%8F&SrGsp<!{6Q~M3YUVkBwHIIe-5>tY
zZTaGQL32D_XY~V=@*PcejDU)zs;Y!#g}KHxygD*i1^l^}Mc-IX&x^GVgL<P0xGvkT
z^tKnF;nUddx86=sQG-8+u0#sVyRM(uVxTzA>;-FeY0G=x97O^A#j6iE3leUY803(3
z#D14;56V$LZr`28-r9pJzdteis=B6md!;20xiLQGu!hq*^#Fy9rdlrtj_ZiA;V<0o
z$-&KCf@eclof=g;K2O@|1?cI0jdJ7YI83|rNy=@7Ml9o$2kY?>FkA0@|LNb%IC*Pt
zUtI67gvk%H6~_(}$L^>H=%&0B$64?)oa=U@`65Lv(zg5*Xx~Tu=OTEO9}11Nh)g}I
zKRrPS{~W@%{~w722WMfbb|U8wUo<Le!1%+Ts{Y?@)&HwW$F&otiYnxw)GsQ^QPauk
zGAHNrAMpb|vtZP_3n}pb{>>*W<>)_BZ&cL5Yy6A9FP;5=KN)zg@mXD0|Fn<T-(JHz
zSa>Zd`8JO3!_He}e=X_CpYP^A&v_G&8DHAW#b5-mqY&m7M}-^bUt_-c_A>vvP2SsQ
z`&#zpmv0C(%7NmLB-w>@QID~7?i%jnERT;U)L*buU%a_^L;VF?@}G$$iW><>7Wg{>
z1q`X-G%Wz*`q_31tF8)yZ%&(i)9y=KrJ|;BWP17Zo`FJ*WU@ay_49rKyz=zqKq19X
z_;mOK_fOPc#UItv!+N8&lvKRc{8mtD|0kQer{M76_1##=3Us6-TbZY%vgV>P0-Ty7
z$Nh=QNJ3MuYV~6Vsx9VZEo_x_2z=^*Q;WvyZb3x!{_C)B$r=s*e>(o7Xp~}y48}$J
zvgeogmCic!z@piYrx&OKYW6y66c5#TUsn(N+dX)?UoXtGv`vL7wxKasaNr)7NinHS
z{9P*b7wioXJQwM%SdpBr<YN=qYh6N?z=XnEO<P=}Xv#xbm=Tvpjrkxj!M3P&#k^HQ
zR@OumNtw1tBk3*Z{|LG1Z~Da!bH$%K>4_knR6;sB+8ts?%-UHuba^c!TVcx$?n`Sd
zXr%Pny2%}wEq840jKj*q$1Kvj70~Pol#FTzf|{+*J?0K#vN8VpAvNKAF;5i{|Mgxk
ze4MF2HT0uGaq@nRJ#q5d2rcVq%WP+7C9ju-7X=?>roqC__;PL_*)X~P$2<Fn99vja
z&+Y$ZbMg7x{fQzwd~FBQaXh=<_ai?T7YS<Z<IFL#vhbJiD|H0Z>VALqOI|zr$*3l1
zHT2<-9Kc>yX5MH7X&1_{b3<Ci`9F5waQC7NxUef#uF)hm-)svaH23(F)f#u<{uvS3
zk<Na+v>^OA&&;MRj9f-FnCP8?*SFsi4hY#f4#EOc>aRZ`dw^$Lf2<IGDv9&C7TQ@D
z8^L3BT1qX=&1rx6e}iyPsKVodfU@5GIfeAf*8i@KW1_dT+Fh0Yc>&gegikO(uUmjk
z<+xG&A-p@X#Md`7?kw-kJ0XAR3}QSdbEWU0;~)JG3&?+&Yo|*BUoj#HXG13c;QJ5A
zcQrOP@GQNBse8mfN=uLQj=k)tB65qJ$M(HT&K7cgM#kHPVG>UM<pRKeBVb~V`X~0=
zP;|Kk)x7)9x*NC&Sy`SR_l>5(N2t_a1VrI{%e$LDf7p>`6c*`SGo#Fz92ovxR>QR1
z4^<RuHao(_OGjX4u6nf_hHx?Og~amCga!@ZuZdMWDNXwRL1u-9A>Piy*yr5jnscDw
zf!Cg-q$I+!zclCL2b!xqX3|A>2%{?JxM=DvyNbC>Gn51>9*>~;nxr}9{PFvO<B%5u
z>Qgre{s^^D0|Uk^YT{zsV5ChE&Fk-!th-w((wp9;f6Yr0+7Yqkb;X~%I+jz4Vzibe
z(Yps%`i?mgGNeqmBFJ~v%piP3-&NQr?7X@4U(410mRTP|AU<ZgGTYJ=C^X@)L8P=}
z*j>y|wYFbOz2vuVx)}MXW+yx{J%dzkZoPX4N}VzO!KB3qV;bM)Tdf-ow+$O(qogqP
zb3u&pR=P6IQlOLxZdWUZ{`q|SlT9I@ChODwsUFjaM0SJyw3<Id?c4G0SZ(!=^?c=#
z%sYyG_fH)mE?sKnRBrSXG%sDbXVkKC2JTj^xgD%Xles#>|7^<*7s;0ZNfft14cGno
zuzEJs3@>&AZ}_)O59|P_z(bQ)(Tq>@K|Sxy*D;V7p0Vk#NakXS3nbMHAJRdKP^6sT
z4TCE!Dpe?PFfDsu1I)R0eVoMg%tfZXIj3j&imrlfSW1(nmgJg66~iGyy@ZZ`3xPz1
zTABfUbL>X@ru_kZ>Ppuk2~F-tFmP7)fM64DseVWysphEKCtcTZ_7Hq4R8?qPl@(3)
zgaY|k&oG@ILK{BmjzO*>eRZT*g#C+cjGl2WJmd$VC%HF2=L=F`TT@oxq3=^`(`x_o
zT@$Rl#zG1>AsWRO)_4BBDlJlMQK10o&N|F*qZcags`FvW_1AkLFanK5%lME3V&sa>
z((o{z|5}kI)2M=Va3k3$t&scW<EeCjXn&13r4XeW!5{cVDW<);`+~ipQP42;Th<|q
zAg)+6b3yO7M!gpr6Sx-_HkF>^wptw^tK7}LKJ-Eiup^pcNfJdYngDlk4EK-|kMMd(
z05~uME9^Xf`gSUcJS<a|uKYjbyj4&n-4i_s!{9o&Gq}4u0|N~1Fu1$ByZhko?mE!8
z!{F}TNTZFrZG85RU&KD_?(@EMM0M4zs(UNz<jIqnwFv-)h9B)+NWAR&!fEqnk$;22
z<LCK|fo1b{2Ct`^7%p~|KQdr{>F{8NMC=KDbI(-tbDl<zKlp*DC$Ytm<cTx?fn;#r
ze)C(93fgA-@12gpVlQUY*<FlfeCHFoZvFa<{cN4M{c;0^-DQPsbN?Z`7GkD>0-pK9
zI1NuXi?69In?D@1`{w4nC|z9#TAs;?A3d;mpW%iD9t4WWVmy9d{3!OL=O@DE({~rN
z-NfQJ_4D&^Wox=mHN3Tyw+Tqm#lpum!gZ8!f4#+rrr+MZLgi8}Jch@;rbxQ55xb43
zI=*~?wW;Qte$o0DWv2f2s)Ll$S0}RZ9_&%-1KpGSwDTh4oBhMhS&@;qh0gIF-D?f8
zCm7u&N)67u^z2o$<y21(C1=D~V&+L0yNtmzb#g-8m0szKG7m~85Z7E+FKaelu}Bg)
z8;RKReA0Vb^BegAW+RM-93OF&=kn(FO0$YAVO-STVTVw9Q>P9W^V#|K4(&uQ{!ljk
zBqvquGiu1^pvhA2j%3z*j!-MP8yT{~ywDz@8VXnihE*vk_?e-gd}2M(ad3q^fqr%{
zX*x;cG|{jYp*w9cWoIM9%!!7M{&duDNpu<&ByrH9|KzB^>eic^*T3|-M&Z&|V|iW%
zrOL5Awc(`jvexeIIs{3>GzoVz-*6T2yzEx`uglbdKtI9|jgUzUQUK9Mu+!$JA3I!>
zO|(4>atiRdQulch5Y*fWFV?4O5S|K_sii5aL#Mm&bnxWiI;hao2y@}(Noz{+;^))I
z^YGIH+B=rI8>Ftjo<wzj=loM(#$u!hF_g2i+sb10gWBj518(xO_UwtYGZ`m$X!A7&
zbq_nV``)m&<XnfXbLT`m%(l|W`-!h4BSqbg1%&*7Srw5%72#(0R8W@ndE<4z5&pez
z$eLcD9YO%g_T$!VygeZ7OHzX&_&=nXqX-lt4FO=%`njBc8K^LljnanoYHq4`)D?eI
zXz&0ShpZ7>PUU*=K$WYit2&8V$bsU@IzA2I=MN0bBNOFUq^N4C(T$xfwNhU%22bC}
z*cscGC_0=vQY*xqh7oX@ROd~0{<g$ie4I6Z<?(vt(ha~+o)33EH~!eoWPwVixPEbu
zUQN-BL+8$vl#t-QGCt^atc-KZOo@{2t=>5~aIBV>SJeC#3e&B{NwD3Kwyds}ogMe@
zvv`#|Vse8CK@-iE#hFPVo`u0Aq?q;y(jJN1OD*!>)7yQ}!NNp5_omqK5@nF<<28hU
z8pu(?L`)ES#;{iusiHVAIE)Nr(xvHwX&qS4H@H0=n*l=}L2$l(9aWD73U=_AEQ^qg
z_FAv))d)X}3)W7q%}_1CLleDEia9Dlc$3}qyatw>w$wAWp%=~P9l@JhNqGE%gih&P
z+-ARPU9{O~PZOPdD&7h(pKwfvqFuD0;c*8<DP83rL3UB5hXi&-I;uOEoEe$tB1A=o
z7;1dcu46;a-F1mUO(v24hfNJ`hu!{daB*?@^tE4=>jKD=YP91NHPwW_r~Nt9EkQcI
zh?EgU<!i4oK4@^avEZ3-jPW)`FebwH>LM1OEtk?BtXr>MAo*Tpi4O@yb-fA!TPYu}
zrzApew)cu<Ql4+hU~=+WD<IeiJqaVXKVY|Ng0;%h{<L#pOLa94yXsr~YeP)3-ij1}
z4+Izj#Rg5X;H)te*o&gvN(~z`UFI4IT~OxtmfZzDT;)o~s59M^ws<&Z@`OT@EGet=
zTGPMS){#x{X3kFg_y6dC8p@Y6-yR(y&`2<m1D09RAKm`Y4=SuZ7*cpnOwo-x*^jHs
zqkfLPV6#(jD;n_o&rp@giLm~H_9Dar?+1rlgmO>*6*s_cz&w6p3%FDiYN!HPkl%X&
zal68V={1NsjatP9>UU|xf@_oKoxd~h42zcO`qZtvzln7!R=8D}fHx|luvaLmI?f_W
z)gs+0|C@NOmphaH*<}94j!aX%L1*kiv7Oe$*q{>!$JmnG-uY@4k1DX2yb(j!Xmj-O
zz?I6cIq-T|;)QECVYu_5+hDYtkWQ|T!o^xL-IgFv@D5#=*vX-El*43`KL@0rKGts=
zPE)_8bgQVFICWoAwW?nMi9eJj1gZcDnQyg2?W^+cl3+{chsPDZoj%&y;@>xIwEPD-
z7ScLC{i|ET@T7y=^8XM%2x0e07=yvEUgxCz0>%fQYfLCXPA7lQK-f~MTmcfI|LBvp
zVg32ep1*>TRK+XOzvw<#!obUW9J7=}>?;a)r9j1;{GS6I5Btl3{zv9Q07!q6zW@G-
z7!R13r4D(NY_kC!Vf=fP<7y)B|BiWtO%VB?@Z$d-p#A#)v^y{w|A-wBj=szkm@X3i
zo$z0K`0L`2h)l{pli#BglG2-Y%uD?_WAS?4r&=*y&>SixUNG(3-(PeO8T2MIO@*)h
z-?ZlLO10Y>Gaw<1A3&PjUg&SKIJ|lPXR2sGlGDPFB^Sn#>pA~$G;lRU{?SHc$CY?4
z;bF9sIxYV3`<YXV-TKsh&H75aBjdPV?l8f_9rZ2Y=k1vDi~Y8BD9x8M+}f@?!|s(s
z$qz?&2Q};ErinT<(TE$lD+2M35#m8f{|0BL<S%*FJ%zf{W@+2@;Y_L651mrc^)jW6
z%!102y(Jzx2!E}&jvkX}zCyTtncZMI!N%dy#?eL*qdz5+xwc?rf`;x8C->Hnii+Ew
z|3H<`t)gW1yOCcPS<&T`&SX%m<e$kO<Q*1JNnsD>z#yaMp5zuZQI2m{R2FBdTJD#f
zE4*LilwPl*>_e|?(mrf)9V}g;Ywr+&_~H68+j}4Cs7W0zd~Izf(32TLHVo&(+hHTy
z1(I*#l|?so3HOdm6M(y%?=O9}EZNcff1Ad8;9oaeRN47yUFr*4>{z4I``AI9y4rVj
zGZ;zbhsO7^QGt(1$XD+N(qTpZPPeOO|1ZnW5>&oDF?ZJ8z?MV4-i!#t_?z8q%Ifv{
zz?7S^>$#eo%UMXCd8c08SM%>2R6X6Y>8~jE8_O7|VwgpFo+<vn?N6rqWgmAWpB%t!
zOSSp~Ks<YA{W_603oOwHMDVL%oYJS~nNAsoVXAgej@{FC7;D_lyRQQ$5n}|3^O;3I
z+37=nT|Tf^ovxB;XOCGIw-2hrSoe;ck`u?S$^3$BVK&r3`Gp5VZt)wZsWnKE*q4Cx
zo6{o2UsHDEV(M2*mRKcWf1>QdSq{gK+oZ5q>Y8{q<Zp2XP=;@!WO|)BDU<L8;p9#k
z9W;-$?J1JB;o%Ft<?Zg3k!!xK6>T)Lk~l9Y5_=u$ZgFi)5$O~4XEue$df(ukCHw*M
z_9W>g$Ed-Rw@cc0E^}j3t6d)5=?nP?B<t$~qCpQo;m;o6>g2qFD;+<Kq#O4LQx)N^
zri%@bdcq<gp)MV`3sTQWop;kriqoJF4%Lk#&sOoG!wL8#iHEF(_j-qed02qX=i!ef
zo#Il1IUMo#g%02@LYnT(kOVuE3m58qXYK49EE`Ge1Ob1pAuMFOKdz3=ogh9!>xaFy
z8dN(w7#m6KU!7!F(?Z6Vs8`||Inq;ws6RIK6|=Ob<vB=v$loV@W-2IE&$1-P8dFpk
zENJ|SegL$l3pnLD2sj{GuiI?0p4rvFITk{<RIkATidK!ZKW}&|)={13@D^~TF4bDm
zR~X=ul8C+UNs8ZJk)bJF<6{Y_bUFlOe~x%el;T%Q2|GCKqSIN$EgO%&LtWiEeX^z!
z&*~;M-Say;ayWhxM*no!U<hts3s;O{?rZIi1l_-^ra4nK6onf)YFNIB_%Ccco#p=i
zRm4h2Y4DSLJZ+Jwxw&kJF&;>86grhE-xn1xwUwdNfou%-{syMt;KGE$QU&Mq1(uvv
zIMLvWhGVc=z~$yn(OB`OymV7r?s`>n;^^?lk{4QgXHTHm;En%yvt<%DMJCC~XlVYx
z`J&-6IHVb`o+ERWiMrCm2o*~;R~|)WGa>ls-M;G$dI?#>7+rw~)EEX93&@tGTUEC9
zjMs9SX>GVOzX}8<5AgZazQKK**_T_fqW65YcWFUFcz;aaKR^C`;1We<vZ5RE{juO@
z6U|yZ!f$8Ev7RTARnt<H{iZFYnQ9WqsVp9c`f4x+Vr`CHk?ArDfQOzZ>fu+H4c#%V
zxCKo*pMbdNk=xuNIOIFDvFZ)Y+9TGe^~0i`cXlCIjwrX#_7C<Pk;V)I6=qRw(DmlF
zlfe~C<$}t27R<<01D~=&lG#8QILy4R!*Yx76LmDZ>KV0lUpS#WqpgQXb~l)S5hRgp
z$DD-rN|0q<HyjtFvW#=QqCk1K2O4Eq>YYn_^!8S{eTp_oUBH@Hsr>e`BDtnPl3*Us
z^Rn0I1<M=RiaswCN3O~LF$ZPv7e+?-7a|fL&3g{AzLtV9r+lJmuilQaPGiZf3C7il
z`vvyRp4BH!JTvc@ZN*sI=d0h~s5WrL4hu&qR!>{b?F^@#6)txxuh+7mb<w!vkHh!U
zU_H-4M5<6G3cEwod{^_E+%s1lX{+_tMA~Z`k!$yG>&vyf0SLGQ@=CoBVKGFq2OIuZ
z$Ca3bB3q~=Y%iG^NJMCT3;S<QvveVk)&kF8d~Fpf4}}MYgG<tlE(#{g*X#Z6Swq$E
zTY}C_rd}d}oldug#+J_Wa*yZUp=WFm?76;n!`)|MEfdrIyY+#nJNyA658Nv+S1$`k
zS@UPZAd6K~_Vv`V?2QMB?WkV$tX07SJvun*vs9c&f~NQZ_FQ9Qb>yiW>O>X;nkU$v
zk{Ab3$?agtYi*mXE}SgZn0)JZnX_K>mXG!tE(Z{Mdg{3!`BRoREq&{*qNpX;$+kza
zyxHl*ch!r)=62UlhR_PXyo&qwzIu}$baWd}Gs9M>zrl5aDYe|zzwh>U{T|OjzvPfJ
zdVsYz<`zeD+DvM0XUnmT#!%{lL1(X|UeeDso`3&z*&Y<Z8jq%S$MNEZo#TXK!P}Dn
zpa^0ToL?0@kfi&~u4y+IL@ZNf(O4!tG~9_V%erUjeJA%w=n*YY1^*xvj}Gn%5hUsQ
z9y%8^la)(RYR$*Lyb5<D{Au%$dKFLvF}WXI)sbT**N5iJ->`{9_zd=Qiq5$td}Lr9
zKwJ@WUX2W-0@ZR{kjU<8pw>6_hD~u|n(LzAm&xy4Ztwy&w_}5tsS|VyAic(X3nLH7
zTNtFPUj$>V6~)XtJ6xzdpXaGl*)7>T)u}t51;0le<J@<4{6bj7$@``-H&zsJt#Wu1
zA`u}I?Qt7!u4o3U$TGYorNbTCd_nTHwKtF!Xa<y!7s<K*ga@s4&gb~nFyR|obAzb#
z8a{K98g8Nah$|J@QhMrV3zKhP#s0aKgu3CbmGJUJasse!>E=KWtJ0aZ!d+$~S|-ol
zwre~sU5Ua>?z!%roOar9>yg;<2AlYCu#vR3RdL#V%+*3~i`pW81;A5R*}v?gp9>xn
zh0<db9No|g5uzYo2I>~4F0JP?HYD6b()jNJ2IW1+gp$A6)*rb!DR=%O0A$aF617($
znosOcdtT+P13<IkxL@ojO&^Ho?%+4BS3ZOBxdTV@gh#&SH4%VJP9B8SZC3^l@8~lg
z?k52?9=YMdm54i#EBEz=GEY}o(7w)One>DkIe)H{gz28VAAX$^e=FYBRE-zPK1wy~
zw|~kmp;xar8bVNK$Qpjch0+t!`?E1G8qp)sN4Saj@Jd-sjZ?6j&u2*+8h8J=&;_qE
zxh}4xhlh`UA48O^=55qMD4b_mar0v{C2UeX*6Wr^Yg1wBS$BaaAd?)E!rbuw+8$W)
zMGezlUs^mChBKU2c3h0VF{rv4p*QSq2c;U@f5J=gQ~T~|TXf8C?}iGIJHtkeI*I7>
zV9@L;>Mid+!+RtUC{5@_5asXw>U*Ei#`L8F#;Q-+NqO@s&d$%tuUS+Y6<oGf8bqE}
zm@JC~)*JEPSa{pFksd4!QcsaxDkZ`t<2Rb6<q^N@Wi%(1yayE(7GT%x{aF$aSa&Pl
z<!A)ONz2WBa=NY#2+j=7qEUNubW;%_3HHy%2tCDFUb1ziTjf`AjI@i-aH>Q&2Mj-q
zQ1=p*P~}~}8ujAUaS=6KWJ>BKAUCr~x6~H!RkIVzBO@4&4{3dga38S)wBad^qpB!b
zeK=dbmN-2xrm*AZS<w7!EpExa7eH99%YU`dwqeV=!*jU5E1?sv0&{OdPcNM}oIfUX
z23hsW%Uz?Im~o5<zdw#EG<T|*5Yvc=4<vM?-*&kP6cx_qRDx5Awsqyqj8N$Ev26=k
z*5RoYG-fi_xXYGJGN~OET`dR>4!H88#`e2ZwL4iky)v9C+wI%4OS5&8Em%DsPy2oo
zZ3#)4*zg2UHX=*h{_HPmC_5kaq9Tu<eg;%)>->^Wv1Xa_|A1%uI|N_?Ag&cDknjhc
zu4!5^1F+cr8U*psy@7mudEFZ<ECH14jUO)4-0RP+ZFjMYKdZ)R|1jn^_Te&5D#_i!
zKOi7TCq1yNY094$i_NaDz8~ufG?h2&q2tGm0iF3cG~uokiU;-&1DW<=*5q(q&s2u;
z6;0S6By=z&W~=2G<f&#HhDSBYUsl@WOWIi;_HU}Rq$e9{zu{+A&h5i1R}GrgxU(&)
z5-vsUSz6I$7B1wT>I$%GAy!oMczKd?w$sE&2LFiDsV=#5GPxSIu#z0~&6~YGGWUXt
z+nk~{6~FrNwHTz>2_>kgiZz5Dl&HeIZH0I5l>q;{5H~!DA4WX<@FYxKZ}6(xav>Qz
za0nxKZbhNDE#lpBWlZMeO<R0Ed99tx%gE_|aBmIuinrZyC_vo{B3SubpZ)ai5l`aG
z=~kiX0T)}UugtI^wQQ|fwzhzH8j9rnLP2@Ok(|gI%Ju#Cxo*$s05ExEyEVgF!Vsa>
zHF+qdU7385Va$15>ikaJsH&*t)0J<n8ul_wkV48d@EMP_h?};2acS+X7+}<RR8C7@
z*}7d>PW#)a*#kn-O1LrAP`D*XT22$bT~WhDLSE@%K?tdurk1;>KB_dZ@F;-lezM^C
zz+N=TlFI;Txb@}t=N6kVNUX`DSk2a&$nVpQu@$g1^6un36C_E$p;BWODTp}smdl`s
zr!0BG@n|%2y(H2k%>8wid=-s{3U~^*X|umA|M)wERhouIx~28_9YwzHqPvEP!Ft7t
z`{!_as-{Nm(2?eR=8D*-Z10Duf7CEmjkaNCPXpMS&j$#EXOJW1)jv>h_i`a5<Hhp&
zjg-#-g23_zuZzMt;?uQ6DK9j8+GI2Ui*aLW4?K)syb|Bf$0-iAzir2r!;WzMtV$p-
zKcC)^{fLAm#S&l14rayMJsQ<?yy@Gg8CEX|Y_nUxo3CORHq%vDgC$Y&s4OFwhWJKK
zwUhRS?Oh5k94^>dI2T_FU(%KY#m$NbHm)HbG34S_A~aajwKOUx8(gf3$lEr<C3WB=
zU-Xv-6>yy>+k0cjOx^im$ZNp*a|s#J7nIVaRj<Y;rq2HHskI^=A`mL`*mGexAI9K+
z=BgA*52|U*j9Q#-aMoQqZc@$teqXr!NAF9>MSx@^vHIZB#c~cGGGcbtS92n7JgzK$
zs_0M9u6Y@ZN2j)hS3XP?>k1H@<y<ov*@_Ty^hKrpfuoxQp^fcqJjPD$!>O9gN2XW(
z<-zz^BJr!6h`$?=7E5yr!B}x_Lbi>5=dtHm541eNh#B+T7=pEe#H4IC$lhi?vKeaP
z@ZA|G%iK#h7aa1d!<dySDiJYO(XE2njc+8zbu23B{(@T#wybUE)cjo)P>t`7*BWu-
z?FUrUw+lNwPm{KPNB2MurkxpGXl~R8_Lcmg)q$KQV#ZtZa^BbXJA0lm;jtpIJ-FNZ
z63;Yk&*xgM;)%@3)F#j9yv)&y`Lsf0-$Wey^KUNo!hwbjE<I*Qz5~qtGI613{>BJV
zTM<(ZuL?>Wm5J~991c9Yj(xxTz6`-T8#qsR&9niET8Rs){~+M9Na|kUgz3M#YJu^c
z5RKrEiS_v>W(Xw=;&YD@)s;2|dDX`?#q=CM6?Cl`a?u442Wxz0szn|v02sK;mXFC-
z5jokQj4<=v4*p6O$_$ulz;z8!kqK(2FyIG-BB&L4eIQ8tz<$9#h(>|V(cl*4|E$>P
zP0v}rfO$~(Gy=3!hkzEl>3)1(Ao!%K7PVQ!i=DQ1K%KJ3F|GjoL17;s<$tjY=)i}B
z&XIwu6{-z@2JM*P-XU0|sG6D^X&})^Q;PGq7@RneLk8OY)@JoEgh%4>tb{X$s14jY
z!px`2i|RC*!Bgas!{;<zA$tG$nsYi<U|3h)yMq&_DLF4FoW%h0LqIvXI$y&vFZ#rX
zD!_L)d~OkzHDT_{RSgZz^8~%<Ygc0NLWN{oH?%zh&thQZ$=ElElGMTc_LD{K>inBS
zGYKE&Eo3lU<h)XHGs#`Dt3RLId6uvSqnrv0005-<Q8HH<1Pt@`=~!$3Xp+~IM_w=3
zRE0sNprMKFPj;F?pp~B*>5>s<(B!AJJd?5-xW7t^8($mZ%QNFiF;~88^~h@cOH>*x
zIS4}8tf8SFC~)+#kSOA)92;w6L3QMmR___^ntsa~0sF<bO?MPwQ8ZW`ekRULbx9qt
z;Y3L5{?mi}aJd68PrnWzk-sNHIoIkp*Pe2`4@FDkg(40X&VSh{`e;#UxA?@*%|vb)
zmx2A3mp|`->Y|0Uh=<6_141i#0Xgy<G8qlG4k+o$E%qJkmxSwgl9eBuOuV6O?r2MS
ztdMl6ONaw)?wMA@a;W<CPYmZkK5$U>h3CN-EJs8uh!2TEA4GKHr+1>ts0m$0l(WA2
zg}!MB3uBm0_qK(lPgiQq<UPOC1Vffk1(aXhrr+3qXl1DKPXJ6PUqFBvryXY(V#9A0
zQ-v0LCifTR=VoRKnc`OC-jRgDc;1?{_k}h4)Y{hk07$K8qqt(BACH3iGi3fk-rY~f
zKl2N(4tjD+8!Krw-}z{}?8$*s2|O9D<tfLQwH|rFp<E2-;4*QYuU?YKD5r)9etDwb
zeut%Ugm%eu&l>HU^l!=;(3cu5FH@L-vL928bRoKfM=*};zcnozFt13g^<$}8<7d+$
zugkNklaM}VJ{*@)C32n1HM+n3u-mt#5D-9Ek8@vXIh)87tC2=X>y$ja<hQt)ku#Vq
zFnJLgBb-!7ntrzADVN=h=Idm%d#*|5;W&dWZCrLjWVH8*$7b?cNbEBCxJAi$qLb9l
zbn`%5I)Zn>#g0)LFS6L=FFva~_ue+y#K|tT?>4eC+J4R8<Hh1HAuw0;x#L-j?Sbs5
ziAb!mrj5Jjk8YNq9Yz?Nje1a277Y6}2aTy_5g?&<jY8-vsnlevu(vEu{X4$(ea$fv
zav9sv!2|!`nhfRdm{wRWGFky(ut$dZ5V!GiPq4AIMPO{~?w%>_dQZ3IXF<k}lHEja
zLK?zDMMidLWDXgS*I@?5VkEXBJ{5_U1`$u%{N(<L_o7SQZV^u}^{5}d!`K2x(d)lj
z0J5nns>EbfzswXYS)$xh<0@C1+-}vw@vh_yel*vI$rV43#Ac*bmA|1=l9HM_XVwd+
zSu#((Jv1JCHeDt`9wsr;%u~O(@^LG}6M_bGn!oul(>r5;bKI)_IP=V|oG+(oC_MJP
zJXu0r?p!3SUYY`&*ZDnBv0>L0o%bdH%KT*3Bjx<<@5Z?o-}KLahZE|jl`b-GM_ISd
z0*D_ob<y|#)|Pqb|GF-ksE*BCkwQeYTpyt~EURw^(1<n2Y#_BOmmIO1lKaC)Zp^J&
za@&hbL7z<UA02vddx~<kNZ~KB`@;o)@uk}Y)XmI%#AV&mJ<(o+<B;@^=&SSj8vp0t
z#NeMFCaAv>d;e~PpaI#win)iP0m*)~{hxA_Z0osy&il_{5#s^>4|4hcuXYbo{^%>&
zJnwv%R26zw;1)<xsjiF%wmkHhgU{mew$~i`oIKj*p!Ft;GuSg;-Uf6GJ6GENEzWtx
z`#Y-|-Mez-S2~$Hy1^^?(R~o9HwB_`g?><n0{E$Fh`wW+d$Kcn#RJ>vwT)^YDz;XU
zHJUJL!AyjR+sDDjd`=ut#+$rqXBRd!cIR!Nfn%SKVdU@WQ;tATOwdJ2{Pn?E#>CUJ
zA0H9oV20(=i(9Vu1!8yJ6XU#)Pb6%Z_^wwi{jstm@p_+>3nY@C8A4N!PqyECnsw;k
znta6g&^8cT5ss9J`yML#(e4}B5M937uTCGn9&m*acjW0OfYVtIz)@8r^LSb=5tIa+
zO(6ic2cCMh4nF-P6fd&beA#e*$%)Bpj`69vS1AjrYCBDxMT+8Ih9t(Qk%%wK(}%Az
ze-(9_<du8Po_%^a06XR=oa`PYvZR(>kjQ315QT;}R$N6DUYsjj_NEA#>ndbc7QP)2
z=8=Hvh&V(i4UgRsd4OvP4XrLix<>z0<p9yCjI%?~fMhe$sP!I)PJE~q;;_0@)`v_6
z?gd)>NOw6nZPG6(%RSZk(<|Sa?GM8Qg(Fk8{il|#n;MFCRuA#tIZH{-2YgvqWoZBK
z{5jMwy*YQ&2;1^T<sQaWN+y<l?S|z+VLy%hV7vK+$SP)MberNB0{aX!Y*BKtz>zVR
zH3r{{s>Zl<eqiLDrHs1QO^i6*A>T%$_P5bR=S24$%xkXGs#@RJBb^PFvo6nc$T|Bk
zDrRJj9rET~UX3wul(Bei^MqA(w2}>qDVW~-alP{8T%;B&&VF?=K{y@X{J@i;Hiy>j
z_vp?RB(8Dz!o0y9x{!<U1Pnx>>FD0y!bvkY;fnj%@TAm>BEDcv$`FLHTIw1AxL*@g
z7!qyS)&f%ro@Wb6{&CzoeP?z4Ml!i?#lNwZ<&jP?;4*H0)_0*RI-Ij7FoWaGM?iIr
z1qZP@+k&4IYSI_(oF856gmOkUhiBYK0ji*S@7ZM^4rhLGd;>fA?W{Uu5mA|-Hvva=
znbDPwOkVv-Bi$C{GQhgWd7EKKx#fi4GoD%L%GEi4!svr*uX1DH16B7VNoZ`y%55Oh
z>jNXj!oE`e^PVrm4K^RrS!kXf<zAVT!2S6*2451;+Y8^E;bTh3`xR99ViNj5$E3q>
z3|K52&VS=}5tDFh@^xCs;G5|t9oOZBFAj4&_**d!W|@rv7^I?^t*(|Os;FVtZV5+J
zBzpPKn6J8D??2#E>f035Ooyzyv)FkJW_)CNB2lo9GkrY|wzSn68h=orth)PQM?9Od
zQV-F&d8>L*)@a)2F8kstY`RvlwqpLO$Q}WUZw;HYtW*R*=d?iLMm_(o8UQ`Uw%YVe
z-JRQ(8e=7&Q5FLjj<2v^GBHxnodOPi*;qBD(Rj8u@S7^Z|MX8j^1~%fK3-@ji#{)X
z>b4Aa{;HijUGN-|Pm{^5Gz1L@oPkB&ou!sQFEMqdse?)DT|(;ku!DJ~-`U7;jNkZP
zM}z3OuHIlK3B&0(`x%!`F=xYZwz2^-lRP|UJgvcHRYG}8b*6enkSwA(IicN`vC0h_
zh&~%jK=Q`@=5ykzGAHRYpn}Rq1BkjM7cU1FxZuB$*!A=yLo06ZIV?BDJNU-abe^qJ
zl<gZmAbr=@jH&dPy?HNtnpT7Nz_K$xE_5x<(q=sZmwD93+XruHAW*q;Cs*PtiZIHW
zEY6uSXy&*u<p1>7jm}EQw1SA8+ec>5ZjU+WaB|>K_AmW&>UlDn)z%12QKvW9sEhU4
zwIgmMuRB5gFlm{4#J#vioZS8td+vm~Jl(?mMP*}gG_-$$jF8E1@U|oCql+^kf$_}5
zG%ZjYj!0sAKn~s&epz*QP5|bj(#5S#cQTa$%8;n`umFC*vNX8Tx9Q19iK~({yJ`fP
zVx@__HO4ZWzQpF)48IB=@w$N8<fsR4y*<d(`QvMk-`kOB1RQsf#R0{+)IgZTXl+h0
zpU5&p=8y4F-I)ni?n{4#P1zm~|33<Q2Blcb2GmwjC(z$=_?>TvavW%XP}i-&Z>I~z
z_+MISE!?52)kp*xeNt+|SgrRW4=03d#^cBxv5(q)T<}B4&AHfVldLNd`-S*C=0rDB
z4-}JihJuD|srNdEr0X&|;s>+ZUD)u-5zzOQjJoBMdmNDqcx(7;@tQXJT`6;cyl37|
zJ}%F6iB6G??I;w=_(~y~eOhd!`wS!URroJ%wxbpQ_V^J^E?>NEj~(uBhb9e5czR-t
zi;9|^DsQ`+@t*`Pcx8ErGDJNWL#H<@jw3rj1Y1$LeSi@^Do`<j5@`sJB&OidxISoh
z+Fkj0BLQ~HKf9ZlF%q7;{_7}~JGBTSx$T=zw^ouov_#B`;^O2)E|CO?iP5o%$fVCa
zud&aKLy3QsJ#T*s4?nXopS?N%@^=~@5x%$%B9sh5oSpW!Jl6QK+-$kZ&0xO|-}o24
zb~HSqAUip9VhyCC);wZHZ_*^<k0@Pr<e{^eRXcGUwveh0578m2?vG3D7R|o&;=L01
zF3aUI3?X`KLV_?v{DThAjhv#k*Pz!xf|~4`3H%U#K+q{X7VxX*tOi5Og;W*<)DwaE
z)z!xB+SeGN%5Mj}vv!Xn{c?2S{?FM8{?ig_>MHwhWX6SFv;1aMk^H9*C-WHSU*gy~
z&!mOszB-iWYb2##Z>MSg+>x#u**Ykw#g;7@_jsCRUQxp6FW1=GN&Vs8ul-oKo*P(s
zaJi27ai}2&B_7^q4>#S#9S1mU_^y4Jpl4?K5L3Z$`uG_NSZfSyQv2*pn{1mimFADh
z!Kbr?#+B`DA5&m+Z0*y-on3Y!ndxHZ0iexSS5#Ji87NLkQ7*Nl;X~~dz>ITEg6hq<
zAAmtO3juPHTpjUS(=PQMogt|se>#<}tuh*?R=7N@L`Q1a^8ke!eufdpIIjGqRak&k
zXL#LZJ;Q-4K5Kl;8#qmT7NlQ=`|1*DLNb|~MsiX)?Q!yQM*-4yw8%eyOoSb=w#W=B
zWS?z$*3HE``X*b2=0bp)-59IJn`s4GgX^Qlz@!B!Q|8w{0p;c})oVIO<Z|Rj39r&p
zUmGb<0rt%jC~a<U(fXArnt(0mq3Vo;h*<v*Jsm6o^+P{nBIbhKqUhIeR<h%9&%0xn
z>+q&yl-)PZ^pLy`T*2T&gROyJkAoe9tsKrk_wGB;COq@y3*PsIiQV8f`~Gtz@X9Cs
zrr^eGOgDz-Y$=jjfuewHnY^_0HB(~lo^Cwvq&&-guulI)8!YW#W#T}exoQf#ZAnTI
zS8Ti|IuCpnd{>JSZOvx7a6tFBTi;8$_Dw)EmhiOMed1ekHl3XD*G)Uz@p3)KkSBnF
z>Pew^=9fMA9vJ+m4mYP27)5zAGk7gY{}>5!1im2AU{)IZ1Mk+xX)PR>iWX()^vuv%
zS=cCRbFgpO4SbfnhX=4A_;t8_Cr5@)I5WIGKfmnhkNJ~{$y;cxhbL~pbD$8Bo{-*A
zv+^~fd~UYF<jQ2OC~~tj8+(+JW1pJ?ccglN&Rmn#44E8mj2ET|XfxH?z9ZKUe)q8h
zf0n4mJPXoTSA)C82zJ}|4)&bnLd+r^y2b}~zDGxs8BQynH9O%!Pts)-K`*B}$tfNi
z*(=$yT<hFlp){Z4%&+u@oMR9knjf~+t`4y}Xws^tDwglwq{WU|9O~>ieAGoG->BE1
zT5g%q3$AsO?N?kvARy~@q-Bo<muJ_s>)v<b!;4o+k~;)r@+EG!rK$rR0~nd4S3w^i
z)n^ef-`r4211<>hJQe}Te2i=reZYHO_RiPniE~WM;}NP@8486~iptoN=wMleTO$5#
zB#x17EP+Bp;kgPvW2a(PKU?a5q3H4DW04cT3VTr?kze<=PVi+*t80391_i-YBlYSs
zk_l4g05jPEiCpeR{jkil+)pZc{svgboY+2MMUl=^bvZ}x%?vI_n|Q4!o@Gz6l>X<K
zTW>0%IHD0vN^+))vp0ER>L04*SWUZoAJ;3TeKCZr5xF&MY%V?wSKZ7kj?aM-;f+CY
zy?qbYGk?@^qgvQcYw}hT><d6$7`Vi14!W_G?fIwyr8yqNLfAZ39JQ)AjidS_3(Oxp
zyWgU<QskDPJ%2cH1XxlZgC3p??ca8Cq?Jxa`vijfATp8HN9P|3)YKI<HPq#57z4W6
z!-~Xt3%oE<y|y?5S#@>FS03m|CRRmCGkbe-yW`Z6uPv_bh2F2fH1ThNVgA^rb3^yM
zx3baAeRowy3kLhge3K9Sd;;Mtuq^0AUAz7M&9MRjTVq4lH2`X8l89Rz@^?&PW2wI+
z0eBrl%}{U+hM?A5-r&r5?+BzOb}~onQ%@Ef^=DRqy%vhPryda0=#|8NLSB22;0=Qz
ziela4nFK9G`5DDG-P_xni21H!?Wam|dqBY+T(t08?j+@1cXf(0;OE}sU>Nn`vCBv@
za<AC{42?vQtOLW}r8Z2OIEPw`xFSATXxW0<Z6`1@9I%y#qE)0t5XfrqU!Ov8c#l})
zTR&ciHr1e>C+gbXo~BnlVT_Gk{2T{gN^edFD;U<by`ww)x4D*<^hc`5jY+&CSi6ia
zm7Q0cT=0{&bH}$3P@jcf7?UJE8yu=|Z9%l?=CSkM(Gm0RHa!5|<Ln(f{F(HJ{RS>y
zK+5?XdrQncq~Nm1vy)pAyYqDflA2$GC3#oZ*248YV4+n^uJrI+zkn+A*V%&$!&#iX
zL^cbya}e@QL#W!(tGC0$AS|Foo1%Nz>RP4sYMy`ka`YJ}a~~Tn8iAN!ff29;kK>Dl
zm*oc>kn6dc=Tx{pT;UO28{XyKgIGoR&9zd-ZpbELn=C5naDx^TC9yl4_hh(9OgQY}
z#m_CY{&OBgoU&0ZpgIXFqvLIq<6b{r88{kl@W9qMkD64V_YDzMc!HOI)d#@jRNA@&
zR&`}Ca1)KPI``CO&A^98&-t@kj$D^9QCbR;Qn}$tv=c{k@0*q}{aC6=UP6ZDYHKT`
zx5u?zsMo3z0R@#bJU_Bi8|9EpX7LtSaGt%|V$-{;7NJ@PYx1%Z4fQa)$5{qPXO1k@
z91OZ6fHJQ%nyx+$6P@}ma#3*HxsjrRczNQc`tGogeIrh0!UUbof4S77Gp?kl*JK%Q
z<i^POSoh!U{P{szVwkVM_?3So4BL*X(wJXBqo(L5RIoYP7U$}M|8FT3agEN*FDJDD
zdl1p)jHcG49^BkHv*MvDO)Rf>2v%!!hwm*JVwH%*8oZ0^d1ZFS8Bbb8=OXmH{kujf
zT-{rbM<@-hGJd)&O934nk&XD7cI;)mrEF@7*}4wuB30FcYpQ(zYA7Z+6f<Sq`;CTj
z2zz^4O3jCYR6^W2Ig15IUi-+oB&$J<w$@UWtQg6if%;pIQSPYspsQU^Rg#Wxf}EVp
zk;R2y+fl8ixg)a_z(eL1qbuCh>~yDsxd2P(jKifE-*>F7-1KSW=^BG4MDEL=5jNs6
z&wwgDem>a;>oNIfS%p_A?bexxgb^iSkDM1_X-R9L?8rKSzK;^SUHy5Kg3L9CX>DdU
zmOXN+IL+_vtceAvLgP?GvDFzGFK>RRJ^dD&BLY5~Mvbmp9P#l3F2$-rKB79qm=82C
zI?HLPULx?NBju!o*$n}LWrW_^54v?i0#}D>>G$X4HTn3hM~X2~5>j4#;&kQWtNTAW
z$ry<MZz&*L#gbpQ=k(PRV?zaPz|~{?VeIe57MpqR-D7zI%NF}J`ol}JtS<2Q6G<1%
zWRx01O`0sw>?FHSq2o`EZz9BC;y$_QkN9-k(c}|Bcv~#7gAGX!OUD6NT>O;P)#UP>
z`4hhPi=nvW4EBtN3C#Q4W?R@cP2Tbl47M{vy*N4%jn2enVOjh7+!V$efAW%>yYIJN
z0n0uu_5AB`(f*$u-#a{R`s!Bpcvv^HCkP3pWrBh?72U9M-kvlVzp{_SVcQhm)i=bT
zR8n1!L2@ix5}tl4e{?uF=bqidic<HTe96OP2QGqeSFiEG-Ch{euMU7Mg}h*~CMu_a
z>b<O)&=`|BZR3dY_h5~S*I$!dEQ~tx5)W1IZO>9$cG>}Lnz-22XS$7v3rX!B>W#Lm
zS_pg(L#;1wvM2=7W-0W21#Z}H+es5b!B39Afi{iwoJJdDxE|v)I@iI+LOj?|BhjnL
zmDvnYs+Xw8eaPHvJo~E&-!^r4h}8w;2(%R!Jor8ADSJMev*<6ZWM267f&S<2PJp=(
zg=ii!_U`@KR&K7@^}E{<%m7lFbch^jC3P<Kr$Fq#Z91*|=3_}$MOaU-GreMOk97r=
z?Ip*4McrUPDYyS3N%$aM8hX1R>CtvoyIJ$zUx0rP0y;~0w}*Lx@>rH6L&JVQxJ-z=
z^}~B2?*>v~b1Bb4;q8jS1(1+M&V6-dE!@c7^y_s&_|arcdcrq+cIc@NTd}X<m|ich
zDI>YsMtRwPviZRD`=Es3XIY{;)9-&!y3=ow36z`utn@_D*7=NV6>TD53Q8n>nN*T;
zG$eh>fL(2TG+#3PLlGdVGlirSjLYAQmCGm6fHr$!RvTr%?^++*P}*ef550Az!D8Sb
z%=ehuWdF3>$!cqDt57sHIq_%(4I5<x2>XtHs4k~jB7JzF@@V#ENGGtya<=x~Jn<3u
z;oH*YM%*j>js7thRqrV%l%Kt!Jq#TKD}>jcKP!=brkQNX?~%-YN^?9AK|$*QkVwxj
z3CwH_m8)2ifU>yv6}~yJ_a1G^gpaWajPJ@$;@gDGck<}tFteX5*0~TH{{wN0Wg07l
z+DQ4)JI*X?*mrN^vYXS^IE~eeTx<BzzPX>9+#<2n{ry^1ka17@D$NhOne08CEA#+1
znpN__eBqaeRchx@$9UAqCj*2n!4XGmYImCL;g}09B`x0olG2*53hWrXCrn|XCkjmo
zNsAPdz(sd|Q|(l!i$hYLw6X@jCGE~PZ8P#f?$~Qa70=^M{Z*fGBxglTR>Rt4@akZ9
zA^Yoj#oF*g-uqOp0Ng2W;uqcQmDhLe*JQ_Mcw8c>n@5i+u12fZV>YADU2iDYiyz(8
z4O?*nrUcfFMCB%oUeV^l>C?kvZb54gh4yv#A*ZNKcGeO}--LE<M=-s#28VV;p(DNL
z<#SU1(U)-&&~fq{{PJY7-t)R%P~r={)_LA@RuiT9C`c(FMN!2o;gqo;p_9qPMZSL#
z7ymLCgp76f`|E2x`CpB}L73v1w_E(ABIwFLE^OB)UL?`s&@xpAZrW-c5>_*K&CSwm
z?hkoE%?CLLNk_YuB94RyS&&eVRE>`s`v|%jfLkcAqsk0p$7Ay}i`j^-c(3VoiQRgw
zi+?@$Cc)|>Xs<!`ksZ4Sa=YQE<oTx)!jx=}okQP%r7(#r$<zjgdApyR-CeFV-a1l9
zyny==_~Lfup60D5j^=%6`^Nwd&ZX_8#s<3=UT(bXUi|xuXX7%3JoB}MRUd#-<?^Xo
zkeQKwutI`)>)nEbXfwXas;_P$qcsM~(o`0cG6Y~{X!zUS4QH_Ck79}+iGS~aUq|}&
z>-Qy7snJxLA;PKpQTv(I`b<>4^fB;wxz|6vw?HjEKLKFleaAbN?~-fhW&<axe*<ck
zR<NIO-aZ&jL4c04_`#ao;<PfU-2{nfEshHKKAp}{O&VAu!FoIZx!~N@-(q7)sCS1!
zBD@_hSxPYn{ypn*r=+Nc#b^m{FEAJH_ZHRje4B6Gn)Wl<>351VpIg>>{|zpr1xUX5
zq8H55)aPU)v_}jc3vmA+YwDYq&G{go=6(QN>WGTMk=8OwBFXq~eh-r|CO%WXJ5w_r
zvXw6|>VUP>X!sS3h~20mD)bN2N9<sYcEs%m)H&P6L`AvZlsy^k&YKIKIWNC8UvJ5(
zi}<eHy(XXpkX!N1PwC@cv1vwbx21hHrhe^mRaW?(aIO-JCWc^*K8A4b;)09>BUa&1
zQ*EmuO@3~|@RVYuI3Q!_ucZVi1HgVct1;rWUM4K$nmS05^KY<yz3^GNU@EoMcN-Er
z2|*KmCE#0KH@jYK#?18iykj3l24*{qz-onDOfyKMdC$GW8Be9wbwUySCyuo%J=LFu
zHHbGGhzd5Lur<AJ#>#eq(4yi8$(lNvP&uxX!+E+P7_amHyg%`61`9@Rc5ixGUq?4T
zbh+RlbGBda?|_@_w|;3YRw`9VndjoK$Jal~*+eeZpQVp){K-VhVhMxA4?|b1U|YO6
z`u+h+pz;l}J|X>Alz9?LGtzbc`Z7itTdOYbc%1la%3L<J-ieg2zd|P+_kO`_{9H4I
zk=lmk$^j`D1+~NoT0`K|sUq`A=<VSCxMuiwIMTu2g&+ryCmpko7EMth$FS6~T5;#}
zE(_F(#OuF%Wh1mVVk?g3Z&n^Q9oi=r>aAjxI$SAMUTDV6{08ds<OYg0fLm!7y|sab
z<+!TQ(2B|9RVDN15_GL3(%ZY=9s&3brqm85<MuJ0{xB~!5MN|TIMK(Q$vvFrm}4GP
zX@A6+oOVVs!1PXa=TWoOZCPx+)KC+?CXR%E{2Xps)$ltH<$v<I{VZE2IK&;TCnhD_
zUzyQ!<310%qB#*f{Pp7DIPp`|CwtZj$Xox6sQ2a;|M~y4?}nfO8+AX1c$l&fYqqr}
zK!R_IwD|2W7TdIh4Dr^==~^syqaT;=#e&8fT1;I%Xu!;bA)f!*LtdA4z($1JrG*zx
zG)xx9Uu+&vD1{=A2CD?;lqN)Yk)Bn1So#Inc@x2aRoyS58x*NCX8T)LXyvU_@rM5x
zM+h2D!K&l-4XivXznz-`)6vpXNJUxGQ?&UiQZI3?u6xppb4|Hg+sA0!5&v=%Hyw1e
zw{3gREe~>1>Xm65g9fIk4hsB#`8uGm1ZSf6h#30q<`x2ti+$hx1u|)KAwP@^46AqQ
z&D0U|DrJ#dD8Lsh+{eyYVsk(4zw94?&=ZPk`x=^{)$L*oiZRlkN@!9T!`@Buzq!JZ
ze)lZhIz#zyz+Z@6oBO{DDVhw0{=Z))P(t}JL;XL)dB1-9-!_?pfd3bRfu)K9;KLNW
zyqlkb1E%NpHhhVBpx9lec~|gCPs!(*^RA00fJQ`T+u!*rI8r-=y-9EYnrK8LUgzmt
zg*z%AXPsnu53E_uuj*n86x-LF3$u%_YCVrvQU0hx&-d{C<F8V63C)+TVgBxLFX9S7
zsW;eg7JxOo)niA2RwIwA4~f6u2bMo^>-$SI)NMbHTaBiIdX$?Qs82DNRNqH-d#4df
z?4=>k!|qnV=);tqiBa-OswgGq`M!7P0*g0$r3J-Ul`74{YOEN>?eGqjxGXde<EQef
z&>JJwYfA6pCK1%`!21YPxc>fLY)chi(m$>cxJ3QeYHb8fkUp^6_3tf6>yE$jCOv^o
z_|%K|x86xZeu*BMQb>8N3Hw}cFl9p^aUOqcu|F~qkECTGLJ)b|jZp^CLx0p3dA=kd
zRA+D{T*R3f-<JPK$qd{#(GQ;agFhLSF{|NEJR<duE1alC1<f+&u`+_x;yXRgj*6|D
z$C)(fpOe~#w$&+Q*OHR9r8d1c1I!?NPGhtzOTF5<bQyl-z;~U46Iyjb1~;_vP2#^4
z5O+VT{M$co=lhp24Aw{>myX<sl@r}SG52(Ytju{%&jz0{bk)t~@xuyC^?Ku@pFwJ}
zdjDiKhjDJDG;ReYqNizh=HaxV5VhW_42~S+*7B%y5zL%M_HAre<8OuO08y)rw{G(^
z39KQJLKYAP02lnF%-b@M5K4rr8tqV1AuS|-Fnrh1h>yY;?|9aG(pY8xs|9#}jy(1!
z<iU`@r=KmnFh&Bjeo^Z}+AkwKh>yHrV}7^WdUpIOWiLG03QL&(IBT?{_}pA6W)VOg
zw!!1Zls$%XgPPzxYcMaZt}LJlkq$SyJX>u!I5On;yoC2=vGpJY<8Jq(J}Y)m%=*dn
zgkfn|^P6L-R#^ek#by-Wd+pKFDB=1&zrJ5v>=?O_p$)b0MCVA*OCRwS`E+-C2EXuY
zMCFaXsmkUTqzh#nQ0&Kuao))Mc@eG43U8Q_v+*p1%0UO-^VwIvr91ISp5f=V9*4%s
zst{)X7}O<grZ+9cPe)I)BMU#@;lCim&NrF5cHYUx*}tbScWcV4lH!0rS|eSuANjh1
za+LI*Qid!j7;s0L*vVKHk0$E-ax5{iL-ML(lOtRwo_+XE(a+MBsq(!RK?Ma+$7=#e
z!cCzuM`}J-OQ>gKutV(Gxe6!+-ZxerR+faD%>kD4Y0eB6+Y5aEzKKj}f4$z0(X6W0
zG9&da>fQGbtEAhWIu?(Q>zx|{Q6yAd6HDJi#~7clHpcCD+1@EjiD)`K#D=YIeNT~z
z|GdZ2*2z<>fd_~L^UU@;a(_y`#ZPLY$P>r+T{+ONsjv1o0-S?sq3f2WFSncvY(5S@
zJpAlo4l8Z(_^w^IIJ$@FZwedsM1x1RfQ#zzudkEZK5o(j?0>>Ld0=TkZZz=|E4~cr
zY~e-lynqG&5JzS~u{vL77WO&Ep@%CZ>JucdXjXT^opJYEWB(S|*ynh&eFFT7>FFJZ
zo#0NMPO29nuUG{#M2Fg+DeWnZKU&N&*bksfRUZ>Z=C({%xQE2tQy_X%o`dztc&<sh
zJ-w+a@XG4<9Nn4@wUB)FpuzI586Vz;<Yh6W%_P?h@k`u|&QB?~+bJDkf`RXQ99!?S
z@Pg%n10w>X&ZvY2XBY5jPJ!<@#KyxnBzx}zRRCYXh!1*B7maZ_N~b&7_gA_wRY{14
zIKmNUvG_(%FsF&WL{?@4K5EYsj37eV<z0vV7u_QX14>wG1PEgm!I3Tr(0+!`?JHN}
z<ZqA5P#jNZ5147WEw{)S^?xwlk<+Bxfiwg#luoBXsu)kj)^1`@6Lj%*(P%LH37c7~
z7x?rcStkNLRKvS@ab@rluis>1&oC-Qz1p--Z)S71-wkGT5N7_tUzYQ%>+zK$u}%MV
z`2L7O8HmyZT)+5P@f+CZhNUzkrS%N0((=e+a=k1|$RF{7uS$oHfRwLVY}=Y@QPmAv
zPmzpJkRr2sv6s!jkXi)mR@i?k5k(~KoX$FDFTH$e*&7^|a5NZ~FT5WA;eGolu2y&W
zkleA@)ci~9If+}bIt9g_<5%Ch5N&5KH#g(W7?Pj<WU&(qG)t3OfBK?qEwo1hj5rKM
zM^dw-B+T&P6ZkcMU*SUIAQ!9pTywKHj^)`1J7t#_zup`ku!p(>^*+ca-cC^O2dR=U
ze+TRLXbm>V2rz?G9L}<)TV+rk*my%%HWAZ%DC1}9D{*)A@APFhMz^i+oycgD&KBTO
z>!JtI2xEG@JZ&=xHWVHzM;=YDZMX;{DVd(()?39BD}rfX{k%fJ=J(w6yot%;UT1E8
zxvj{~<8B=7V`a+!J{(64wOP=?fpg9CU*7~u&dBg<>TnRFiTaco=Ehe(JF4>m%}nUh
zr&vN?7h8csQw~Y`IRpKtYp3d;VvzHh1z{;u!RJbcT~QwBi(dvC^KniLMXF>bg7V*!
zMb~G(B2gH(<{52jFgN*rgIaSr`vGcD!NqL~P!N7kd4o=YuPH?9x*p6RZ9Fm|jHVds
zA}$a@c%lD{VIpgAaCH-0f0It{tdZyEVy&4qh82@f;CQ3NYoR#J{NC{?ETHmphu7@c
z@8f3PO?Yx9GpNv97{Zsd%S|9(C(o`nc&#U_C-rqSDhECd?wJGq;k@I|hCjkqpPGYA
z{EkNjJl5T9(xAz)hwdzv1;xl<qW;O9;xGLOpyeRMPX!&z4=jNb7c-GO6pq@%@TS7R
zChF3SpGal)w?k{Hmo(iie`1^olrB+_ht_{nP0M8sMI=sEVu0npc(l<g(op_O40V__
zux>Y*NZLcufD(;VIb=gK*(Yj9HavRC3%pK=yctk1oG-HFrOB+%ze8&E*?y`pq30cg
zd^8-aNXE@CjEDN4kzS5$CGJ-zBQ$aTFV^0&E3T&N8ciTb@DSVy!QI^n1PI=^1_<u%
zu8jo??(XjH?(Xi|NJFFVh+NOPf57?LdyFpGwQ9*+bM6x%NirH5yk@VW^+eOl#g*38
zQ>F~>OZ1a$`zn0%>)wS6g*|i$otWZG9({GTEzcJ|%A^`YP2q-W^L>22s$7&Z9>={b
zY|5GIO@Pj;3Hf_$Bq>J=m6I<QRZy8nsh&qD1d+7J%?<=kkAW-Gtc<I#)ep)?0{!i*
z@H^d6uGg{8xoVl+ZPrXR7nrq0G?}96awXYRCPgKX)4C=CTF+Mp{H7!HztKFrE&tG@
z_HVQ2inRW2uSk;S*3f<TNidJFAe-B?<Xaijf}(2*ExVa=7nXaB61KLf3MD^95WxnM
znM=IX$>{gl;{1=;ALZ0>6Vlz|o+(T30XKb{A!HA^vL<E6iLw`2o60$`nD%mZEZP#%
zkq2>DViCvX*c0#O-gNhPhUi|yndjJt?RT@f?I>-TnL&Uip_HLDj~_LL#5K(Dit^g+
zN{zua`Gnuc7-Ml*ols22+$Nc4<sDj4VCQTC%Z?2{r)GC@#!V_NWH!R09lCn1yN#T8
z1eN<1r<=~;sAMz;c|JiN1r+IcGB?k5JYke$d2m7RF&<P3g6^6mjto=7$rfnihRq(-
z?|9hhHG%&^>&EfVzcmRoBc7=`JX_*Yu_mrTno-kvUkHnpi@wEACbOAg0NsbYTvyaD
zRcU141ivJ>y>)SgC^d{IAvLiE$4l4S7s1F{!X;Fau!OfyfOjKFtofe1P44b@R?Qc?
zvmL1qfpE?aCnL|!oD{9%RLUY|)2F@#xU-4|7m@H5ZZzim6{07XTs_Od3R5E~nc}D*
zi;m^gr)z8QiqORR@H8^kx!WmjGdn`pMh6Rf^7<H|??LPHVbbS<Wl)*IM?o^ZtGpqf
zbT<3;hn1oO3xlm;Bs@XzC+G_VvdM`ApJL?0$r}3au=2E=IoE4jfZMyyzP_-ZJj$T@
zyx8Qtw;YPGtcCKgvUrc~n@4An5SEp?bKSn<8`vBC^-vA3bC>&t{F#raimy_vJ<^RP
zuXTW!X@FUs#h1zgI02&Z!y@Y3BIQEu9%LAphT=4wMebdo7is0WW*0EG`G$BYcz+J6
z5JN3O+%g&64C>^iLk(R!-pe38Q#5TDa8oAswN1sLqk+guHDl$!07FD&4O1jUGg5Z^
z{K6FyPxSyk`*wj%lo=EJaq((MHj>=#*6ov>LuYq%#`@l~AEk@KsWH->;!x<?$gte{
z*1<DOf>l4!0P#gf*mEc;-`&w0nq<VUT#b<x>kpw3Njy|2Y<C(CM@wlWy3V6+q`0=h
zOKg^WH7W%;(A>QFSNpp!Ncfi&x*eO5zdrPV$uF)UPlegVeEbPz8?8NYT~SlUqXS6S
zY(Fz96EXysN7HK<xKnOf^U(#&(3Fgjb4fVUdZdk+J!hyibZ(#N^j>d39*Ngf&*?6~
zI$q^JGkUAiyf4|`U>4p@+61ZG^~lu4*xC`7P<W0Fvk}_Z>_*`}VRFPx={ox5)VS_N
z&?hXE?vV(}-XqL}ynMSqr=A`CXp!2H>Uay6@!nio0h*W9s@s6g+0l1Ocbm_E@8Z>S
zs(Mr(`@|b+#AvkOB_!)xI&*4n;KkKb6e8qm0WBT(j__{rdN6WjIQ3#*$#if}Jke*5
zNwEEq8a(g_I(@zETd^SD8~j9Jx%R%EYQOD~XrA=>=(Ybd6ip#UzIe?+1#W5c6V|^B
z@YPR|u{9bg_k+kPM|Zc`#wo*_pYzwRZ){Rnk16iNR^|JH_^zK%Tx1DHgYnA})^-2+
zxsgG9Cfqk0Fcs^U^-;u8jit|qhvmNs>Hbs#qyd0I3i@lm5|4jbX>SL`?-o{(kP~6#
zY|+<WhmX!STpZA0n(XJE)trt>oJ_Qeet+vpq`h^2GAwvo{=-0wW)8#6!}NEM#;oP)
z5W(8$SDC~yVca^}zmso7`EC60q~&n@5o0s!M%T3|YajmR@4aUt`~TZSn@#ZZw`$mb
zX>W*~(0}9o`Dys=`~Q`Wpn@yk(I-G?TXw(H`B9mNF>RR_$klcjeY|x}XJXiSSP43Q
z^1xaFf-CU0dlPLw((@^gqC^ae;cuKW>}IUiOu*^Y9ElYy-8*`d+ABE__)JYCk*B4?
ztBl`#()VUSy;yLmyjLTvRAY}M*GQ@!>F$4GeVjK3`092m4>quP*uK?dix<8FY}QE~
z=&t?p#9BS!Rp{WNkqI5mnQ`LfP~JOt8|PD6`%1_OBa!7#$c!bhVoWye1$Nv`r`gP6
zSCKvPnd;qLFP{}imcCm<IbFDE`qwJ_dk^;39CaO4;lc&PHF(tT%h2Qj=j9fi@=t2-
zGxV_Y8#uO%9V<!urSfBaQIt~?cgrqUH(*K|ex=GAj49y1r+{{bNx@y1655+{^+@*E
zx4<ppz{)c@6tXLJ$|uw|u*^*xMG!wnv^B~uzV76qHGKp0jTELq35)FO8|3$@B$uT8
zG~b>24W<J~aSrn9sp0@*9;be-w{ytwmBYuim2S8k{{Y8<k-V|hf8Yox<#tj@owNaQ
zOqEB{ZdpP2TD!y*i^7~xZS)g6BJR+oH{O%>S_;?rn|-$K+)Y{g_}@!TkZ!4yt|@<<
z)TUn%W`osu#ExI09v5GBIT155F(K!rra_%&SCDkRTsziEU()JqWOohc%Fb#`!O>9W
zpHUd=ifIdM?I4c|eyu_)!oivB6q7HaX|EMS{OF8*HFPdwls-LCo5QVEUEs5@uzPLK
z(fEK<sN<pUUl5H#WV2ZqXz3L1q#T|&xkRKe7(fW~^s_K0rv@bd_M;QVm3?*pITx=a
z&u-qz($Ab6t`wKjARy_&aG3W2Xm}nfT{nFs4nUYeBYOklnURo)^#2+>EQ&k|pq+Cj
z?LF)AoFHy^!vDY1tjOj*W!$8>=vZ+$V}asignNi%(#hQ)DeV(2o}9KZgB;+Babd_b
zIfzK0&hau%#jR-kDv3{d!lf`V;d68dAr3*Dwxk=e+ve6KLq=9n!LYtVblCn88&ux&
zvJ?1}<OsG+*AYMF_WzX=t)cZzm3>eQxvy)M3*Qto&6L>ivqwW3KVHJv;SZA4H`MPr
z>X)RfeEP4{BBH%u@gP)GeG3KZ79PYEmtK~X>BahcbxH{vk!af;6Vyh3>ua3<tt5_Y
zp)FfZ!NKV>PvNF@wr}y|r@@eP3*&;ESpjhvP8hZ@S(PG%Qa8|@ECozKwQTu`p@xtG
z#;VkpUpnm+uyaoOHiWEYYtm=dOdwNTISxn1ec7?`*)^4HM<InH`97Z*Yh&qO{qtgQ
z%_*Vo9_5!BG6?4ghFHhO$kO9<bj36dth8|$7t}Na+=_#ODuE2QX@#^S+5dBKl-R7%
zKFB-BrdG#l4TzZwlEpuLpCIDpUN_F>T`P~x@juSp%o7@NaF+tzVWmXojoQ-!9Nucr
z3{|Erd7KI{w1K&8Qd>I8t0<<0_l_w%V#`Kl7!Y=m&MA1@pkZL$*zLQ{i}e^$UMUKG
z*`^~-mhmj{xbV^z+B`JITwIstK?%XcLE-C4aG5N0j<S*lVrU89X8w<D=dJzZVbN?(
zD^rPgLLRN<;89CaGxHL76YSrHt9QvZ)%WNyh94m!^N!YrYR<PT{MrpBv1tPuLGkRg
zBlYJu`$|JO0c&xtOL(V!$nY0TCtqQT<03s9)+>2rR!^D|E@)C=3NziVCs*({-r&<s
z)g>`Rdyx2Cr)L*zc(Z?-sj=$ATLONw@1|KID>jtJLt6h^($#H#!SsCN1eX%y=oW-y
zn~PP=OiUB+rL~~uu{gZRVHD)(kfYP;PiIVa1_ij$qMgZMuZ<C|DE3X4(K0zR%vAmX
z9Z!JLzHUsWE@;n;Ny`gLZlY3@ma4q;>|O#bcl89)747$n%A~5r>F4QSLW>8dIb-dC
z%-{NSx0TT_QO|yrVC0JHf&c==g~gvRZLXQ8oBjORxt+YY@~4{1lO)rW=kpI6-SAC!
zkWH(wyheCl*_!A2XM3D@IGGhOxm?-r)c?P;uv%|5IcmeRBFkO*W&r)PH%)UMHg^D%
z#Udxr(G@{PWXu8VA8U)H^Hku2Jg>-0LsQm0>QI*ZGgWWv7Sq)u-U<Ak-}4(%;SVDr
zdRA@EiP13UW=<7eU7|`Q`L0k^{KTdK>{C-G4$SnU3-CK$2+$Wr7#8V=R&>|eC~ZVI
z0MI$N5DIccN}OD(;*5%Zv>;GLUez2ELo|+%k+{OGUlLcuT|h?j9PRd79chmK+bHp8
z`f-v)*z1Q-pjb4KIKjX8)qfTkLTmTr();6#(!A|oK==E}{~tBu|Hc>N)@xlNL=y>F
zi7q;-`Q~0ne=aqIg}?H0_nEkiu@Tl-^|H_&HSJ`t@+hjT*L-0!ZqH|XA>?rdF1pf*
zx<%<GWsUIP9pAX0n=J=VY6a!KYiIQ88So8x@|vst!T5#Gq=|!4_1Tp3kon=ZIhH2K
z+<y2~0Q!4cFjMZuGg~>8^}k~oa`k&Fz7FFBpfyBPRxWe4AQn)cpW)uE!6z3+Kizk0
z(tVrll#i95?2zVsmJ@gphywec=h((0EGm(y@gDGct;U5A!c@SbUM>1WvXvhPFQv<9
zJTW`bL6S1SjWdqDGdC@)@Ch+y!UK|Co_oss{f&w((%x<jB@%OQ1o_e|40}(F=NMTb
zo^m{R6v+aQ$Q5;xdf>+}+mrQ#$SvPSjCB1CV8%Uofj<{p6)qVndCI)gzt$2Bn1R1b
zDN(i4V14g)M(uEbwhYD>x>Iq4zhe8D;SyKo{W5wQPdP}tLpXruLizmYoMk#jLgU(!
zwM%a6aH4NCt|3~>9<u&=#|&M(wDfp}_)RUz7bUSf_zJS3eL12&ATi<D2hu<VeU0KR
z!rzXPgMkh#QaF8b=U{#1lR{Zvow9x>cWd&M+<r)=%3g2zI{cNF@IoA$TLq3illS7)
zn#7A%aPyYX(bdkx_&8;Ob!!Qiz+u$~8~Cr1Uhn+(p#4A=fwx6udFS+flonM%N$xX6
zAJAOL^W58sD~*PFb2^nY=W!-KAD_Bqp~lvlZys28$+@4!?Y>#8S^2h^EY!2)_4}OQ
z3RiTFua3_eYdD@2x7gWI?}O)2V^Cf0Mq<I?VM&}>E3D@L|Ac2eVrbZy&^3I%`b9KS
zTL~0GCcvb-vO)aX<|Nr=<s-M(C)^g*H$hL|*!oghGCb3w*YLK|+JluxI6oc$f**sT
zb|7FcsvlY<DtezPo!)3{f2g-w6c6vofW6}%T70QvHU(LzVTTg3I$l_WCqU_C&!@?N
zl-Z~2%MGl3W#6{XqOiwcHN_&Qd>XndmkB0iWUg((2W|s{YoNnm4+DG8wR(z`%@;9M
z;kC9GXW9UlW-naUQAd)oLaIoRrd{m`Y@dII^n}Rro0PT+#DGpJ5i}ZgejIc*9k$Pi
z%JVmNG*e~2at`1n8u$4ndh@GqbP-2_h~nGgWG&%n3bx2K)?ASuZ~ul;$B&Y--CU>0
z3C{>huc;|am^rnGn<$D&-bRYsVqEnkmFapvQZLdSofL_<wb;lC*{!7f^4UVnfM#Z>
ziI(#M%P-Jw+bjYEy#CKHJiu5)SuoUWCWC|Z7L4mk()FI)DZ?A3fMNHXWjl#Sqx*75
z%B+3y!_8>KH-f4U+6xL8&{ob-`p4Jwg=z&Hm~&*Q%eCqL&}K7*>uGEtt+C?P<XVgK
zu;RQ**R}7ZZ`?Z$Ae4>{+QJHBY_(5OoV>1zEwX6G^*N;}b&1LJ7bJ_RJ?()?NnVHF
zsCBx?Bk7OIkF`HoJ_Gv4mbyW+Py~vojDK&r#=buYSi`3_A2N58SX4dkFCN9PI^y3b
zF!|lFM;0g*Dnv;L(_iC$J%ekErug>D_@w6h#!V42e{2Zfm?=e}>8gH{vTaMY>UNlK
z@s&M(@l36KyBqWKXW)7*Iz{YznE1}kVI0h~RnZnME%`X7qhC-6Z|&pJiVHIvIgNXF
z_l?;vE^oS(0%vQ2T4(@;bAb|YPT8grZ}>)GrJDDc@R;Aa^>fUh<A2RDax`7)^}m&L
zo?cb$`_K{X812-VG>HQ3Qu~-Ti*nVyl!>9bZHgn4;Fi+jXK)s*{<LHEiG_UYAAxW+
z`EPwBCh(~{Mo3bEF^&Ex$>RAzS!a1YDcEgwV9gP4`gW)};IXY|L{LHzTx(17HcjHP
zThx)s=yYpg0;`I1E}}&ueA{=^{%($%j;rROqCA7pBL1CiT)Z=;U}2use(=RYG{CG+
zw~Q%T>7e}0>1>EFBXU+wLwup~3`Ads&6VBldjBUyqMS2HN}9QI>`W=<tp;0;q@9un
zCY-_vC)(K?Q8hVn!L=lkm_@b|rI*OTPnjoS;U*{A`)O2X!;xcT1*MX(|0ytHk=p-(
zu#QENV!Ciul}JG=ubU&B5};|h;7a{Zh2QyUihV?B5gq}o`!la;If~qD@UhvkRhA#F
zIf-{o9Eggg)ob>(8%-y_3dH;6(>BhTe_M;$8EXfCSq-9iC0k*E#$Qrnz*PnZ<=GYd
z9|*!^KfR`Yq+M5r2g`SU7y|05R-FvmDq8GczhKi?-|^HN`zfV?9ZD|z^`i{eg5I%p
zHc7$9BOz#<x_P~t!v%lZp=RRBU?t9k4u++oNF6m^e_*)ykMVhL{S)|G`Sd+TRPyRd
z0rVWQk7Ck%TeHn+LI=0YR8>RYfLp^syj;t70guE(HbhJ_7z0Iz>h0~pNuiOipNoVF
zf;2w{wZC%QVbO>^-3XY=k?%~dfy}@p{?lgPOTAI=?y0fg-wtQTR__rz-ImLQb&j`k
zG@($&u(uWiC@jxS`WZFH{OHqMs+4h_2fT&O)&_<+Ts~+Oa6meu_S-O%QngbPzv{Qk
zo*{g9z*|IIm>sS?*1{&UQ2}M_k(hH9OlO(n)M)`q9~Y{q^A5iSN)`-GW-7{?KY(jK
z?99bIYBbxaXcgtz(G2<O48_)yt@jB|`TjTnP!P3+8~pcD1x09nD<)Gg&9_DgYoBc9
zK>_i<6B1`>HqPu3YM~8u<+$DlZ1lCI@lN+LCiIke@5UyzP`w%4=wf7@M@#zN!(RwX
zib=P-YyO!oZM>A8a_HKk^O^r5%k9`hAh9{egs77?v!HAz?5?27LKh0=ylb``H$-We
zsGfL2bb)p8X0OHLVTIz;b!*{9GvQhCLMQ(Z%9R|1@u&#|XV!z2Jc4h&KU;{iB@m6B
zJYI0Udoy_7EcHh_rf}uqG8Mv{YBxlLZ^v?f!n(S(ZsGn>CKg7-Z=wmpVHHU1`Jh?U
zbIUeAo;<dnXyH&HZwAY)lxWc9#69pY#On19_+5pGqlYK8!v7bK-6vSZH<;rt{%yDJ
zjd1$wE&tY0H2b*`D^_EM&-JEw=+L45{*5iG<R4&v74RBpb1@Ap&pH(OeDn7r*xvtJ
z|7d)FbM^CFyK^Zk<DJ*vh-{VWZ+igeWC!BCRh|6hRZmOINqpzua!JUE+@DIxHf&St
zPdUc*y9e;zaq7`(($o32aC-R(I`}WJY@4=LnK{9oiACy$BoRx;Su9B!(D;MCnH6N@
zEUZPwUk|I*uX8ZbQ-Fiy;)v&KU-pX%cE<5&Wh|T50)uExWFJ^DMHtDt;;6lU@o&mJ
ziq>Cg_gh?C=NX@_c5pP}Jbo!?Um})?y13B$wWW@~#&7J(=zYP4P>}?nZ3|YE9`jYm
zlGzlk<gW&Lya9FvNUw3YIO5r^8#FlOW&d@Xua=zo*%L%PFFi@M_5>tT4e#5CUE|tO
zYqNhv;lfPTL80H3>u>pyTZB}9oXmu7BRcw0vpeB>IFund$uQ>=s$xxl5SG4Pcxd8;
zxHLq$*k*^7;awB=5r%UUk5L$O*7qt<GI$``L4FmpKo-!bt);`hSSBGXA<?w~!xM~C
zcmiW3o~FfXA?-)bj0d(OI@GdK-VY2q;aM<qrEjs9wkw}Qe|gz%J!1)1{S&H(ob2?!
z^VC3>h|G;Cb-P+D1>Icnw)~V=(1y2IjVQo(-Z@fSu`CLrrQxo%d<u~eSoRq^jPzb}
z#{qA<du+wXW}w!`c*`*CZYYAxmV$!z$vEq<Mc@^FP1}y_8QLT8WKIt2Zf)Vw5E((k
zaPXqY4D=LEw&W*CF<`X|X6GC=th1nVDlU=gPBE=tsSP<Z^yxKk+GxLj{O3x+R;T&|
zKzvNCiVenFH(@;6swy>~ScMOt9~*WTbSw*htPT_L7Ou<S-b^DRnJD2~(<k|t7_rz+
zUl0t>372(mUU+}<V8Mg_KV5(=S^_inpn+wT0s7a^EBkW$&(`zNCX8mHx0d5SnaNxm
z9W6bOmwHb%hQlRwtJsRs-YAuTo^Anbj2?=en+qA)qF<3}3XG>cU3mFq&JtTZxzsqB
z+DE8<an<SHk4#L}{6K#ChNYO}bUm=k2{Dr1w|wqWgSRy(^buDVPK_+4I{XpfKu)SV
zK!T&V5PB*?yA;R)$TLw^4o0DF!dedIvS%ytVSjI2{AwkLjRLXaY(@bp-Yjz;M6=ZY
z>#=w#vuispH*)ql7lLL|F`g{=c;sk?P;sLx>Zjxh8{wTH$yhLbcgAk`c2g=?f$^u{
z5j4>&9ZZ26>h<ypG01dXFKCo2s0WZj`En=tU?h96_PyeRX~|%k{{X08bsa<C3af+_
zDA0!M=YBbUQlQ3bPZu?i8%u!Oa{)7xxM4u+PfU&5eA3@W+%9K*Yp!!z<0m#3JbCGs
zXi!7G`%y$o6`}7#oZ=0|rjd$`iX#Ef?o!t=74X_&Jizx05UK@MfG29!?i1MtFfvkD
zdD8LOA@CQ1A@*_;uh92rYQkVIcUbNpFm4S7gR0q7r!6-ef77wv4pjkvfxd9Lv`1W!
z4gI#N?B{NjeXM7f+<qsD2#wBm0z$O`&Y6X)$$&>wkhi&-0^n!xk81}ChE-7_p>1pr
ztp;R4hYOK2;*L$V*x)04r=O<$1vLT+(A(<wQxdaDujKyC9(~K)1#jf}SGn%Nv>r_Y
z4P3QKMIJiD$cdvA4iW-MM@P9DGm<h~P6p>uXxsG%xyQ9d7MWEUei=29>TiQlV4S|v
z1&HESQYurfARK051$&%R;K=v*%w=UA8H)%|6(7#rW-s%HjYW2Z`E`Vi7d>TXr8Jkz
zyS*#W(Hd12=&7hKfiS$dxGFcB$rb-A8aJj7D^D7q-@iR+kQHLaVKxJmzL;T<c`XOS
z#CKNW-8U~BjP;ecmhHarM<kMc1Qlh9kot)0k4hrQWlW8OL?x<_5y%G%V-(u(h=$;}
zQZ>xjkxxE=C1@Oq)RCdT2ou-)TdXCygQ9HRI9@&YqdAD%x~;<=EB~(*6>RP%7l4*6
zCP|)=@DZuP`19(5nD3hJT2_{+o?_=%Df(g7^r&u@dAdKnB#KI}*)BIQ=xQDRoiLHn
zv^{;{G32^5KESgXg+Ug!HI*P2gQkF2{>mP-`cqC=(B6U@-g6w4Q5tortu5%{7g4?D
zJep3?@xNPoxye*Gqg;KE&o%s`sS}@Hcj5j;B&Za3i~VX^aj3%&RkWTy7UyY*!a~Oq
zhu0NeN&|_S-2SA9Mq?U%9fu>nCvy5sZBT%4mAdelJA*^Y)4fWvr%o|r*&!Ha<j1b#
zFN15`yGw-PHAg{DBG=?1XxOU}X}N2N6K*?gK%)S_0XE=h_RgM^y8z9<7$cCb@8cD>
z19I4!Z@GVo!dBO@Q8K`e>7X#Jkf4!Ph_qlbs95L8IJ=le%>oZKsCah~XmnI#_65`5
z)oHL+L_ABj7>0%ZOHUxX5G{&700@il$|>5xV#MF79R`t#8wL-ffOCugxkmG?eppX8
zjv>mZYPS)_(HBcx-ks|(!3(YrlcjLbj}F<k%FYNo;F_%q$Ws-M-ze?9Q0_qi+DF2`
zKpcUmX3QFiHmQcQ9QC-uXtz&5iwwK~97VO*%rx&xjT;HQ+v7&+4~8di#LWU0`Y~Qn
zZJi=!4F(2_0SV1sG>_<E6W_~4pObl}YI1Df1R>tY%s9v^kB@zrvI|+}N|57t?yCoN
zTz~IqNv!u=lF=bogI72|<Y~^9UjhgvE=g&$zxP)p$T>0=X^F{dDAuU06nATnmtqi4
zFD*e&%h@pkRGMliIBvqI$j~ntEwB~4;WE>hfxy{}m@qO6Ri=0l6*z8=KqUyz6t@kX
zCMAQ!K)$~yWBHq%j`)ap<uTQVi`P8!CKccbq;V2$-CSYLxOh7KyWHLWxIAa+0M_ME
z)X{9&uioOhfx$WCS)6<73zgScV~Wz&><#+zWOIC-=W^nqi;m74(MahFZ)luifl<nf
z1%p1si)yx8Cyy_GVxBl%PL9Kxv(1{fg7z;JO<3s8qXyfNt_y{v5sMoF`p2F%IJd*l
z7Wg%Zy@d8j_}u>AKlcCR0I51rEZdY3$c9Y<UbJdcQn$&*=!2P#Ut&EP$Z-=c--e%k
z9E`^G{;>7Na)H2z@FAMApI_>xmz<yukh^EV2+9Nzuj~8@=@0Z1h$vMmph7Z}91y>j
z46o1GQ!8|uXmja3r`R?`_=VtDh<z&ZkY#AGaL52pD)v6lWwEqk$(Nk-W9$$iB_$<W
zFtoC=T(DCfwBQ^6;-A)znKbef3t!vkBHcp8@^4Z-16AO7zL1Z*frx>M)hHEy!fyq!
z1BcIHHQrI}s-JzvJ`^+TJ_kg^HtEfDmZ!Ba4SL6Ut?Q2e;z;rQC_uh~LPZ0d!i<%3
z<ioq6%#~KvO0$v|tSE}HUDoQz=I;vziv~~AJyNdY)**&T`tzpe7#F~!l=6$8mqk}-
zv-g#dRkWXuO;|t4j(Wck`~L}{8i|JI2t18##hCAUE}E?O!&<L8o%-n_^&SeN)zb01
zVq?9&w-!hV>wnffkTC=u`JWObKeE0*+c26xQ7)3l8JXAB-S=0g1PW*^=iHm#)GX=}
z^x?Bgpl!xUoR;UczMf*2e(Sh@4Z*f}NS{z?9SIo<a~Z9UzJqI*5gGJs<ualp6&N?+
z1`((|!&G>+Ncahm_SUHqRPUOKTcE%N;tnM~`^(3%lIkA$oR4a`^O%7)!k{{8?r2Ar
z?7_kybb>Dfm<ecD*1|Jg$6TyhYRV*&V?xSu(3VgZVh7#zhH3oNJP?%0+E=^4jU==7
zu<@w^K+aVNH2_7vGg;>QD7yZB$Jht<xc;@1=L6WrUx1VN^5d5M>nmKSBD_)?hk4lS
zX#`;XGrw=v$ncCu2m&S^dsaR5v5~XbpNMX?+e&TnV3NQjd56c7tETE`4W*XP`J@V$
zZ`rLs3E7l4>2{pSDBcmcokt=AflCyqXPjY}j7hJH;@%-P9uIV@HsvEcXE^bt!ipds
z%?9Pw%XkK@D>2%9A`NH^y4ePhcO8p0k9~!4CsIEea&djk$w|co$CsbeKJ)j5S;V2h
zREVi}WtN}FvuHJPAyqH3BLGX_&0TSecFJtzFyZj!jx1!R2WzmEA@Q>?FLzqo>(t`m
z>AqZ#I6fq)(8b>cnKE*Qs!V2kG6z1qb_@)ja6xx`{K!>h${5KjkOv_vo6`3pbK8>3
z?faaa<X<@HLZaMq*S*Fan`_<jVTUzz-%}GKFppVj@pg$0X>EV1P)Ql1v+BaJ{<T#8
zdhPBqJY_6YaQ`P!N<hzMp!D2$03QpiATcIEs3F~BK;oF@5Ti|ZlbfoadsJ@rYoHX0
z^e_Zz7Kbf*O19(5Q`Q`IeIZ28nU`8(f%PCIV=+;UrK{{?m*oR%t}5*@OrySZnEt?(
zZerd2q-&2A=0&r^(Ud<g4Gyy)Q;e#HQH}Yzvjym^=d#~+G`T8zx7w<yD}kbocqiH&
zA8pr+95N`rKbF`N<Z=ReOonPQ??ij3FO!gmiTA6GJ=Nt&o4_XS@$)mkjpXCWg`+pW
z*BcZVip;A?s=Aj4v5_3GC^b0>5_vZwJJKc%$#HcSa|<$A8=HYb;9we#@0e^RpI6mO
z&>6sV==I}9$5Sfdg!4$w2CM?ld8ms{*LzACl@tlmwbq&X*X?}VmC(1(X@g;FT`_sM
zgVVZy(z(4EWP}F-f;65G3ES1Ho^r!IK~gc-yh9!sl=w1kotwhAFDgzH2=ZMepMcrf
zrpxMYiBmPxRKXh+#d3M$ISJusbB;)6Q+KW^aECmYX~;JvrkU{_{&fXx_2efQJQxJa
zNjz1WJx%=7b@H)ZzS<1Kk^JAOi<qrkoLhEAZ_wNrmZWv^NOF1SGH?Tx0`+ERH@Kf}
z6Sy?mh40C>aIR5oj_>Zcxs>vzlu)<TODMpWErSahoB2G0f{pKk3mEG~Qz}<AF^&6V
zb#{qv%;a{m&bN0*P1Q6!hY96WB!<GsIC-G4<uIu}A50vCa!tqK$vsCFxKku~cZ^qE
z08({uBZ7~h8uo5zMiAo9J^ch;p9W_ejAOnRizgIh>>On&5Il9%86G3(&<9`7D|MYd
zd3|C$o9HE2P8ODH8>J0ua53l_swsF=b%5@?3ICq3+jhMLxEGB0RdRuOp+sipf#+J8
z%X=J+(hSul9vhEndj+-MhN%Dw`GIdBB!PXpe|-B=T|L9k`f<RuUY%#7ofFu$MB(9Y
zuGsg>4^#eWnZ-_vF)mOSw4BRzLqq6dH)|rk-_{LRGCl6vjJcYEvNx9Xw)FWyyPe0V
z>uy{)oapw`FI(#>l6l{4Z&b#15IiQwxZyTx^e&h3=fOCk-K??JbH4N;LNI7~#5m}j
z#_Nn>xgGC;#6V(AbSs<D#dS}z78r5F@4=K+41oRXHYJXc%_Z$O8|Rb+NCT(_9P&)i
z&cGI^U_)+&uD)-wP87J*?-wlt3;V*1;>zb~iw<ca&FMg_6RIT2N~$-2Nd;w?5^b`Q
zPH}SVKnXKkT=fkhQDPYE9L3ho0q<a);|UhifzY(YpfLlDs-wPN7D-%$WoyQ>7U#Nd
zl%?ZoMYmtQJ&Nc1#ufrs={tVz&1F;)-EE&^huE7?7Ng*V%uFqP?mOX{vxu}GwyLgS
zpVS}XO8pw>)MgvDA!HPZqJgA7Fk@RXhY_p)rRIc+LhjqS02d5fZ^I8>Eo7lCo^8&3
zc~BQNsAM~8sDuNv1-YBdfSY>i$6RPy%bQTY^oEEg!E&-sr186nXHVb*ui44tcSSzi
z5+~(jQ}Zu_H**q_Uu7uV4v0OTSC~awoG6}BNfahRf4r{m<SwzZ<bbQ(CrG#L7(p72
zmLd)AYl~bblpJ3QqT{i~`nkRB1}_*i7I?htwf&dEfoV^tbk(deA<GTEx4|`&%xKG?
zw|ISwM$0k&sl%h6K%M$t+8J`sEh*ccRz&6Zllhvo2r5sVt!cKo#(8K>b_^psqK%K`
zBmg8pM*-~?t~6vnxQ>7)NyuVXr=CEnsgrhJ@eIFky`G*lbR_X*g=l+vT9WGuRgjL4
z3iB_@wFiKt{g#UpOJYNQ`F7otnJYi@rAL2=jK2v@)tOOil}|n*f9Co){+;3h@=n{^
zVGW$#<4LO86TmeSQ)#)cb`j5r0pVwCp{$*L)C2wsuM0oOG-lj2HR(G6fzaU>SO*EB
z`Fr+WdXIGIz*y5uAxY&7pncgsSB5MXJ;vw$ES2{Id4S_00K&kUD-R?zkjj~DVCGh}
zIvWuleo4$tpOA*#D#~&|&QQ#7N7tQGeW=T2?g~zny!hs5G+Gy~#^7=7zTrqt@7jnf
zNk}f@a|aXV$j#$dZqJf46As=W0yylKx$V(9^Y@gYjO?UkWtDGQrUDe+BKf|9qwXz@
zq+vHMlidgH<Tfsl_G*6DO){`$%pfHR(8Fe=iGU=l6v+MPU9#xi{=RvNE|eC>UX!$9
z^VvWk<J)e3Jl(T7=8C@E6q5ou8=8IDiw95J#1R>whBoN493SATV96GVi2vBTIhU}D
zmN>RjJv-(Y?^Wn{3>wv<0QO@p+k`rw!MtV8k7$Qs<i}i~f{B7yV)qz8**NAJ>z}k4
zv_T@Q`<^~hT~zZIzjwxOx(+#Mq5?foYu@l-(^$5DCDXvsWY;iX@n=FrY#6UBLpe@_
zY#}UWp5gnz6t;#gb>EC^J$Z~POB9Su<;>9K^h$8t_=6H2#0kdT_V&JvDfLblQ<#P#
ze7%cHl@55L1!cCQSQ$(h=0$eh&U?uYMOBzTeZ6&*sk;qf4%)%ZNAo;|pKnFpg{$it
zY2g7kw|^#B^&P8?)w(l!2ZvF2vg$(MJc}<fU%nx!#-FVHx++~3ZM~Uet_M$cIW+X{
zA>K-<YtzYf1nR_zx857_PCNEMSwW#z?d9qI<BKefr#PYXIK=+u$W=o9ev3*))lw>$
z0rm184t4U!d9X(%)d%H3zcj(i;qYf;<)I_6NA)=32?oYoSG4QJC8WP~8oFf)!M@Uf
zE?GoOumR!958G}C>`z@jO7EGNpC*|67om?se9fDZ6@e#x3Cs?(atucRFmV;`B~L(m
z9o>|~g_P*`olh#r%Ok@Qpy0c59~tI;{+W(0p(4)mtJ`C<A8DiQ&@oj9E!Tux&*u~h
zpFuoL=eu}%nRRA#g<ngN$#>Mc-R0M7;6A-rjrM0QhkkY{9Qt!Kn7sU<$yn4FO`HI8
zAJ$EvahZ+9l%}MB9ZtgKJQp?W>TzAKjXrd!1Zrl$TB!R`bcw96%la*!<A9fNW_4UZ
z+Ypu4_ePxUAvw;i-96po67>G+{eu?8$anhN4kBhMJEKP!d?l&{`c?$CxT>#svoZRT
zm8zc_vm<V5*`{T^^I|poH3<3$$#~uH5j$`vMrI<F+E(~yIW$6}WcmSlEJRCr6S3lM
zDqWE8$vYU7JB~D}Ao7b;C)O(qpZMMYwo&C0CCJl<UXy0n<KN%QwRKY7dl?WkKl41k
z5s2kD!u(1i<QMQM6F`liD2CBucl*f+blisEMo&^$ScvVdCkzCV2n)H%WCaSLPmg?#
zHDvMJpKY7Jh-#ZiVkJjb+;Y9<86D+rDQz=W9Os<Sh!Q{Wu5@;KVbe@r2?;0oV%fEE
z-|ct{7}|LA2N+oYwOipT0uSQIucZ1x?S!lp=6<iYh9w|hlXTR#7RRHmRjPYXV5j83
zF2&1LF8vvuQUxGIg}x&cItt5yIHj?rE_i89r=TUEZa?%c*!Bm|1??W@*5}cF(f`bZ
ziz95IE)ei&q*!Kt=yj{2!uRxPd^VP9#p>t2yu+wO;o$=!?S;4BI+$ZRCEai>&6|Sz
z<<oHxuTM9jHwI|zZmKok7igLz?_-uK+T@wMuewZ?gz*iTW5m?;n3*RfWhlQ{lCw?9
z+B((7^?k3L-r}j*@+*jbzO6dI@X;s+AG`8)3ht1|jDCHs?bZojZtW3i{~q;vYNuaO
zTV=dbbYgqvKu+)3AN5+p=pcCUh`L#KGb5^=^?CYr)4!%)QCInk_6}R5pgW2IEQ|$k
zSX6HFzDHb1mxxS5aUy_Onags;gp;U*$kk_ISa#1ogC|f_9H6AmAO2n<z1!Uwfc&Ct
z&~SD0e7)5e1tK<{$gHZ5ISyhTb-6Po;2*uftG)tBsB3$}X0#h}?BJUf;<G0$NkrtS
zsW;cx|19PY&!JRNP*f3*uBo|pFLgPlP8Lre-!qoWX>Scrt{SjAYGQ@&xLx`Cl~)uY
z7DrWh()E0dUzPQ<!7~J!>s<jRs2al4HHLgC8J`k2mNja3(4rF17#YYgA|G(ayh^uM
z(tXWgY0ADD^2I3<C?Bvi5$Krt9&or@$O?T*oGyvW;61yLUfw!7GfTGO@uzr$*-cF-
za};iEJE(p^p6gU;--r9HwcB89!+Lk_!m<-_PKo8&{u}QBw3vUdq%!dr^(96VMPo&E
z;wMdA6CTVRR<;hl&?^vmR~O&3w0F<(qe`@_uM%@8@S|5}qG;F~D&9K^iUIHb2X}#y
zpn9v2h)kE^yzrIrx^tax7DrwntoFyS>!v5a3cH>IVAYwq>y|I^b&31JX%+?gd!5Ig
zyQcC-^mXqgPVNF86n;&$+bcoHnmieh!)`d3agWupuW^ZigWmI3iZ^q@E$reG{DQ7Q
z)BW~L(-mBT(y@_=wMO@jw+7d4og?2X{>uP&25Q<hb$L@`YRE!gKWF+uIr$6L`h)k?
z4ly-D%OU#9$&FdI4sQt&gs_4!U{?Ch=EOc@C%a;!vneS7GNxK_P?eUtq516W^;83&
z@i2)EIqLg>eu8~<w_<e=SQ5EL=KPn|LZCJ~YdVA4>TDwdUzHG!&uQw7`qszYm>t>%
z-1@-pb*hC0ICc5Pcw{82&P!gN#cO$0@mQlrPbELUAwUqSpr|9mg$})V&bIbkr?LUw
z?N35|eIr2){KQ}>8MUBE&uGD3df{t`r3fo{)6;?aBHVdu^x5&E)QHYTw(HJjlmFy#
z8FnlCbxLETu;S@<O#4#UXe~+*4WJKo;~CH;C=Itf@lUG&4j50Ha5n9vI7JzNW=+<V
zn7cY=Bc;qc6V@VWguHh2@>aK;)skU13_C$VQOAEC&)}OEkgigW_pBWky5-s|k7<57
zX%v0_vK%%6S6MyTO-~)J^sv%GQf*pz)0hs2#2f>620QLQ;I2#jH#+9Ba=FveY?I7d
z(!k7-p3QocRV#7;C7>zKo`=zovrYaZPI(^kOcX9`?k#2fJ#V#3&t?;@U#(eDo$XiE
z9?C}=wzVU=GwQy2j9Q8;Uh|_dntHHCvRf9brKDSn;Fd!}fAd15$EGW#cFA8D>oMgw
ziw{(<H-!)ssFbR?BH~FUDlwcHe?>bRR5;AqzZujW_iN!^qS9;7xe~?$8X5Cm9kI<6
z+QlTVFv2`2!Nh@SZ9z?%Wv7b0$Tfe-pi4#Ya>bl^uFKVYBh`7j?(h1lGX5Zna7}vX
z3_abF<0Y0^6meO!mNvD-088uRvbrF(R*Zr7Tdqr9YZj>UKPx6PZ#VqjH_dBItBcZ{
zC~zsLzU={SZHF=-+eUR%aNHO@=5zm52qW$FmA$xl3r`y0VooQIFKcf##$hIc>&5~r
z0eP$3QPd1gl?NY4=9y+bH;IhCj$*g4;GD)$=yYSyx{6838gw2vK%FB(uz+@Yhoy4r
zj=w(4FMb~JcX!<X@Sknbl+=dT=!}&c<gsOE(wMm*<@mg)N~P@2QFkbkx(K2&ulBE5
zm_B)wX?t;7$v`IF(nI|FVX$=u-X$o_WZ-U-@G9poQMy-${5R{DAQ$6Tq5)S?c6=2m
zj`#|uVo4hTLU&~N>DBcdB%2G+mCz6T6n|StgTUOx$I0wAv6k@kp>33ici(roL;N-}
zlJhUxy_oQ)DZ~F~_cm3c`t;CN9=}5YQnHp>o%x)Clxa+;70c0QsiP;1b!W51g$4oA
z`#DcwP~+=zxrDO6+0%mnzWn4bE%0gz!BH2PcZ6p|I-<p^&Oh*Jo#1yX`!>l=1yg}Z
zI0aXGYnowyhF1$OX+}pIMatOZS{1UnjKHpYL7-=oRR1cQj`_2@MXB)4Ss?4fMy4g|
zy4dzD<;Jgg&-sy`F3*zn{4PqD;Q=mx!QxZI>EG8liU_&vFD054cxvfswOW-H%&WIl
zKc+Nd56^lXdobdaQE<V8r6=GsClk}I?O?C;guH^9uwM*_arcbvLzOhxoez$_^MWx@
zC$6=lZ6DlUBYcqSha6$gA3X{y?ikq%St>5f<10c=U#qN#Sq9xa{tZt5hr8U>t3iM~
z5a-B5lbp|LIR(`6sBH<p66M>QT$=+b%L5dBcMkom+L|`4E40RB3-wZ;CpI|i3E^}h
zlht}7TK51PeGT&}wQ$g7HSYA#yHGLCHHxw2^oJ+zyRQlwUQA7L7*gt`XOHk*x67-;
zJ{*GQ?I}#V1@5yb#!IkrVB-1BpA{S9=;wboylUaEjl36pR0t3M%vD?(wjPc=zqfL0
z)~=<O=XcCfDy%L@cWh<dWyp$=pt9XaY8PnJH2FU738mJZ^nL_;janYUXmMWThwSGv
zq;aL})OC9>kSu5<KV^(m1nBNiDN~SooPeHJ3m?*NrAu-EI?xDH#8Mp7Br7U#<YvEA
zIqmp8(%e6YYoW1&D~@XdAMd|s5Q{<4EL^C<%mqPcPq35ETAoTXDXa@HJ-bvz0oTlj
z_C=R}0UUj~=-<o;6m+Z*v!2u|j!(mr<}&S)z2m&6=<hr@UIUd8_5u`S;W2@JPLkP`
z0aTIkAM6M$IG`z@b+F8l5O$(^X`T{6W5Hg5q^j*DWp!$K3d?T?U?{`wv?fugkmvQ<
z=v;6wS=1QASafW(U)V9RIF~myYK}14*3NKF<m|^`JaL%juP4lrRHzBgG6{kq+COr`
z&#`CDlDph*5ML3BA7E8Lkc=6@OMkyfMrWUA%gu?k&5B3mTjUQf$c}vf&__+OKQ@Zw
z7t=NbBI+NAxiKo$jc=&&VZ1M_R5Pg3$Pux1P~a}EeXG6h!%*}EQ#C8+3zro<=P5dZ
zsfdPfG5*So@0nSblV#6Mtw=RoicFS8xk6w*Q_u2I9!5AdF`gM5CNNu{{4j<FAc<Mr
zh=9o``el1F;3;zg$AaT1s-%T*rU`SU2@^kD+BHcJqiJ%Y!i$!sOpG@<z1*of$)Q8R
zM;EiGb|Zsk*F@(y<XXcSlmZX&%Ry0?I|z1Ld2D6c#K*b6ji~YdvC+=n7*lZ(ng!iK
z=$*bH%JPpL1IGDd-FlfAUm^!it0Vm!SDg5MaNZ@e!`AxK&<qq2MX*}X$gaI}P=^)+
z+ODF>4w4f%!3S$=siN}yyk+@$*nP6<XQ>`#svc&!5+LKCUt=1_>;qL6g!GKi)3!RR
zRYCyZ3Zf|&QbiglG8I#f5J~`ua7EgQ@V1iA;|=ClwWTG_Q;hB_Czh2|o@tWC!uwI5
zSqGErXvtC$<TSMSI}~FxrUYg}#LKTH=74*lI8k+~F`m-OMxtK=pz|+L;2)pRtc5y_
zF`=)z{S?kh2CWYtnQT1UUnVRW7x9nPDlL&g|LFq6{L`(dD)`f|2gmh;UWGcpuLYNA
zY%;d~kTAgGx%j^HOW%lXuv`xzFJgfg3yliVsMRezH}LDb?hiHuh=!F*Z{eUimdhFm
z8gkKtWcqWPtIATCQdITpOZy$zM6>Z*!-;p15q$heq|E_Tel#?9J#7!5!{w>MX*>Yc
zwzV~1DX21O)(4+C^P8;iG)i$Tp0Y|9>#@AW0ahz=#ZH+gOiS7OYSXxR2ooblq`ZcL
zC{Nnwv_pzCsV!IBaAu#kWiHKa;p3$}C`z;1kapzaWBhxq*Gfjgy5x3Xd%K=>p}e&>
ztl>(@uo84S{{5{_&e#5bZincv+u1Bt>?Mp!B2RPahy6Y|`Cd{0r5d(`AT_xvAioXH
z`9`7eYn5(Ng3MMB+mu?sSGMq-d-Jo~vZMpmbWCySd5z0z$j3r?Bz_C1=I?wrPI?;i
zTb4S3rs~0G>##)u-sP*HRVFdu)DLzpc7w^=9eGUT!>`f0w#IxG6lwTEuTeJ<=6b7p
zQM9ouP|7M%no~Zkc6dvB6FX&YZ&%jVEBu*+KBJSNhi?6-F=UafPGVcK2nwlZ!_u55
z4=x{C;TKiCy$y74s>r%{!B*+Ute+?JIC~tCALDxPtXn&3QXKoY+I5OQ20Z9jTpe1a
zgQu_VHuJJOt|hVLi_rzp<`gp-rR$bR4KBwE9LujtdM9Q6sS3U-o2mR{ld}@Jd4)!q
zDI(r$U_!=n>`tW;HU+eBs8pqx+JAKTVWx7eY_UEf5o~1PjPGI^(yKr|cL;=aaOLln
zQjjue`=&dWuITUAN?KvvY45qC=(U$K<X2T#%_Abwidx`?aimJrZ?*Ch_0ev|@h!nZ
zpRF{B5%WCyyp8_ir6Qbz@wyv)d`kgzIx@}UY36}l*d^u-{&-s}asDYv?einE&9GI+
zLcLObL)*c>b~o$45ekVCu##hx>Ktj`!^)ed2&NJ?6>Y1i04?2BKuoIg=p9vr6M;Sm
zzRCrsjJ^Lp>-+c42HLFfI^ntuMd8Xr$efo{mUKy0Db@g<1qX7!&rbGgWk(I@$!7xg
zK$(Zru0z(AvnOK}{5+8BXC@Lz#2ag)K%NA-)8nWRqBge4(-$uN#R2TUf)7^7ceS!-
zdWO)eq#+Z6F#)nDRqz{`N6pX4Hm4gt7RH#K5aR~TK1$MmN-^$X>kta}bHEqJokXVW
za6<Zu^Is8qPmMf4@YY}e+IHuz1aD6dwRqq3XO{kp+L6usUJbuG5XP421u5T&KKuY_
z%8jT%85K>W0)Rl+G#>R9L9|dCS=a9Iwxm<(#d^7khX3Tp)9v+YWrsG!o?y5{IaEbu
z(bsd3(cawz+^;T|X-S7O9FdC$l4d8mc|*i;B{k*(Kf__vb)yBE?&Jo7D@-CU-imhy
z#1C~(Ih#btUX=+%q8X@p4^fsO=4U18t7-24NCYk=V1-mHqwT(q&Gg5M{c`WoJvrSZ
z(Z0-%L)u{@&uGD?Yn}6UbB4Q@V-^Yt@YrDh+O|+!m=p^2F~#Y9*38c_&Qj#&6QlPL
z?$}#74Da?H%onI5rh(hrI8`o<nN*e54~LrXmk@gLp9<qC8i>;C`ccuZ-%fQtgDsA8
z?39BbC)11H&<pIiveXZ<hL0<C>PbkHAf8XbpQ49Y%2&U;D4YYqy?~`O?UT(-E9b~I
zXQCDt@Y}9Ul!E*7UC002UyZe2`y|r%>!F1i0Zenq`vcu!YGs5~^ka#r{4BP2#o-?r
z+d_u=@Zv=0q7&@5MhWL$-jnvOB<O19Q#n<KN8QGZCZAcCuyLdaFGNzZoao!+=v8|S
z!eL;33GMF@E$?ff^sj#ro{OZJ1lvt2$rmM}K2A%fF53n~a(!HdpHCDfw6$+z;xnK|
zFwIwm30}z&U5U?uiQW+?T6RB~^J>9E8g|hBJ6mwO=f@jY%i7vx51D{7OVP2`7)>IV
zaJUyQRC{6wc7vBKM;7?J-O_@V-g3p;poRaumhtiqM$YybcMnc`%%|8*P_X58=G#xx
z5s?s*Ks<bDMO<dXwk+C_Qsnu;u-*^?$G63`L??Oj%Uv4MY-+LAdV>vePz}$eml_Iq
zDKgvP{7}x@%$q;_i<@3(H};53Cz$HGGuq9;ml+h+=j#_`#cgexXLtJ*f4lJDK}M%3
zUnMy~3m4iWYZD#g(+Mwq6&1Qe?^V4M$%?gK>HRhPZlqts?n*nNbp<XzNhk14=ytqX
zo~yOA^n}^%HWet%PLE6-q)I&tV<wso8xs$F-+JapA?@`QdHZpPAENf7McbstwEJUJ
z4=(%16xqzU4HGg9r%-H&Ims?mh1O<5$>GZSj!<n4^JCP@<8FmIwKt(C-FX&e4h`PZ
z?K`*tm8QqIVVodL-r0e>^;@KL@Dq5-o2KG#N~Ev5^r(<nyjgoOv6r!sCNq?L;BuVT
zS4x-OKf3+4K*iRGK(RZykMVl8ri6-TN8-ugJjzvf&Z_hyz=`i5&BFCGU$DwynLCx+
zsFPa+nc($^_`0A;j^zSk?6RAl0$C)@N^8$AiQK-r*yvxS+-JTx3U0bKR<(UdG&wJg
zYrin&d+l6ERG;ioi+X}@;J>33;Lw0ZnGty9JbyfPPrM$=uo)1YsNRH7HePV*?#xD$
z3b8(|o;2>PP|9;0&8${!!svLMi;puX9WEO{M&+yyx(cu_yITufFBt_7YHCp1&AyQK
zo>xgJoVtXEf0i^F1D8Nrk&0`BCbNv+&3J<Fov1>vzu2Vu6>|ug2hKNd=7`f`daT_g
zdp|v6zucxR>`ts%k3!7l{mb*LU)w$HyJE+TCiB=Em7);+1gXBk*>|NF(|`FM49a@}
zfk$~fS8~>|vNp=gXa0$4ExNC!SzoD4FhwT?C!m)Iq|Pw#5VUeO-tNce`W*VmuoivF
zPj$p4&Ok>R!C<zp9`T$oblMV2PF5N>ki8@GIM4ECehHVeUs?*bIg!KOy3p<&WnArz
zlGPcgc)erwFmIFiVSub%Qp4*-&lVcB;X+1i(GhszwT(|VG0Sw)v$3n$QA*-E)Zkib
zscIdNz13=c8S1SyP?z!ao_=dc>%Pn!0!~P%yc~8nZ9b6pV0+<xaRT!RcnpovalRzV
zLAvTZgkFJ+>90)xkEgHTibDI|RuSotZUm*fQ;<eFq`PB)p*y6zyGua2J4RZ%8M=n<
zW~iBW-FyGP_amHr&N^%F{nSK9(vXchO6|p3B~Ty~`#HVOR5d2zOF1&JH|P6q_h;zI
z2!kE3qGunOtHo#D^%Jcd9SQy&oY*i`RI=*2#e@k@b57z}9SPcGS^)FVPo58F)?^sl
zjv2E2l3#Xr+E}$Ot48?RE{6~Ded0$oNH9Hh0Z3Ie$rDLRR<b2rzqly!>b045naB`p
zAlRtk$O4#!3DFRK>ykQ6ld4|rXxfahY(+@i*QC=~tNLoit&k6cYVFcAX7bxJu|D@|
z9(FP&n}OFtp#Kf6WWVqIr^}+~;|RMLren#7+p_~|L^9=v!ft?sc9!HW2SQ|Csp@t1
zF*~M6OQ8kI@jK%#m}QT>`StwWsdp}fmxELJ!&TXYSFUWo8*tlhyKM8GHulz@%#jGR
zyS+0-2gth!^4#81l0A@sgf0m3Y<a)o!lBz(nJ=x`ZMRKE*8^u0o!+18a^tU0@;9c6
z@V;?@+Wja9Uk-i@@jo=M2+gy?NVQJxW;a&k<U3N+Vwv2pe8nSz*AK1PlvE7(=wDD6
z7hP2a3M1)$UIp2TfGR55_`{mR&d=ZHenk=N^gcY4n_fu%lsKB8Q2N(1tV%=M%&}=`
zAx)cE+(tEKw86B3NxqzsiHaopsj%n@tk~T9_%PozF18Rv&{WJmG`+mg-_oL_t1D!4
za#|{sNS!H{%z;`(dE1UEPL;0Bt)R*+{#`X?Hi>#vZYKqAFhaVIUw4}rzO`sRbLG5t
zC6nauPriaOr?mm*%lolt=J_#%=hs9awgWk`*?-@UIN9HO|LJstfwj(kuE%*Nyoatn
z(Q~g*1u330zJT=XO+S$`rP^SYXiw<5jJ1t$N?dk8Uy#j#^JEN8hZa0LpeJRcWUftp
za{n~4vJEaYc3Ic-RUq98<jZqF5r8oDQi<@@jyd*R7gqlZ;5hi#-DvJdEV;x{+90zH
zgEe}R;b`R;ewiXsaDUAQKjXz}V?{B`%%d|ZTvXhZ4IjSMkz!Cs9K;{WbKY~|OY!)e
zyXFrLW~Si8#}n@|(8h~vK#%|O-DlNC?iaVYx8pEHXbnm12<?n+@g>ue?yAsoS9NTx
z-io!&MPVi1cg9pIz=s;MvTr(d?U5jYYP{_P2`{IZk8b!e#Hzz}PmI)w?0Hr<g^;|%
z6`}bQ<7#|^_3o<Gw$ugEmf5cA+?qT*o!UBehwU~L+fT245^=O7D5{1y#VrjfCOr7_
z8tLk~Y9SD7;VI*8W+e#vZDqV^@>lxm5k#9&wu8?Q9me9Qs0a&}9TtPq|EvBfu8-&;
z7mKi4f0@_u2S+;nNf!7;G#P=G_S{I;qcRtKTdOV=m;Z50)YvXFxB-O#e(XH?GOFgz
zvV#CZ8P4Pm13a#+qe1o0ZA!l9doa3Tt&eC{t7a5hiJWaUlXpk*2<bMCIw7s=XOAQ-
zPh@J9;|D;p35CZq%qF*9<VE^{tT60=$7?I-<Gairrh!$R^5hc16q>U=?;Zk}A>RBs
zLoAmifu<0@+&1ypzWwUb>`HG-4MmIH33cYxo6uR*YVNq=pz>ZkGLOrq<t8f|hcinT
z0AFR6ZU%Qpo&;@7QBe_|*;9)zlSw}LWoO1Fe}A1nMAOjEjJz^i_wc*rHzu+YM{+*O
z!@IKUDZNhs=G?CgE1k(zn`=W23lsBN>74H7<gxt#dKQKc$%APNg`~6z1{{<*&;mDT
zOf#O0zO7l<L}Z^3&409aY^2g|%G*6D{^KGnCt3Dbts}Leagkt-MkKpZQ-y9Qj^*q2
zs&MLB^XJM2h`>b(bsqdkrXALv_i|HMP6-(T=8a{>dbo@Y@z}9nSdIRoo_~U+`dD_>
z66<PK6%@Ops#owtX9bUDU7BNN8tdGY@px)CWHN_PhoEivg~`OMoYjDaw5LhFUK&&#
znci`ETtci4IN>1pC>E=5*d~i-!p6E#7xvDlgy^c{KAR}<>154dYLTjU$zu3g5cKRQ
zvqsl@TAiMn$iXqK#B01lN3s-}T|qxk*`v^NEaOY^osjb-ryK)FEd1nW=wi*68^T%>
z0D!R3D#psw4`U+_`5D#!v!<L$%y2_0srKcu9B=C#bk5nJ%=o5&K^FD{k;($*1tJcC
z(C2L3ottM_oU}BU$P2|P>Sb~|ye|&Z_!v2KC9M#Qj}}x)=Jzl_8BeooeGIv@t^A++
zWCX(I#zjXqgq!nqI?6z>ko9ZGky%bI@DO;$w=Mg1ARqRG%A{HKS2S(BI~7z*I{ZAD
z7q$v}?;)D9yKV#}Af)&jx7|;Y`BbBx$s=y&ajE+>xcb<Cq7H@fv6*R_@!;R7^S@TG
zxx_uww~8*syiFQQuj}ySwaU|0Ms{SvIw(%hmwa?sH;@=ERs0e@wg2nLEk#396^C)Z
zZf??IvPs%jZYPCT!SeVoQT2qLyTyVy)qq%)NY2oL|HG^pvF>!p=O3aU4b=L>VoAMr
zLbW_ix5ui08$r(c`dUa6^v>iiE?5C@|6ElTWBhhFa!ae&^?@Ksisj=I0fi5YCyUp9
z(8(2K)7rV3%Gc`WFADH_jcpdLcVw8b{~Dr?RPAa+Z&M9o{nXo5UBq5}x_Pv49~$&?
zF)QIDLBWSvr!jMQA2igbr8T>;B5l3o`J)RD(9kP_FpR=8)3f^JfA6@#kMQ<L&X&==
zen&z}U9US@%xF5q4ASkv2{ew>a~B8z-O$)7iN+Tfkqck-GeOUjrF^%tR@)9XgdX?O
zr;P0s0@r&1%L^}86--dSlPlko#b>X>3%;w7L^kI${7uMaHEdO+@p#JjA}pQAWx+uB
z9tvu|08@VUewYxR?LKKm`gC;)cY5v5Y6P~Who84)d1%r16>p3Y0-;<klmSuU@E0Sp
z_IpC#*Zp*wL);zv8r~e#iha~~9b|i2u*~DDt{!g$EYZ#cDPR?KrW`J2xKmRw%kQ?a
zaO2QOlitE$ZD#9B6Bhv^_S6L|H2gHjza|p$bn#OGvG&zxZ8eRnZ#PxQs&(p1Bk7Dh
zgKH$i93A!Hr>OWbBLVLr<MCdXXH<kb6`$$`HkFw`;&s(RBVB`)UOVktOG_3rdw1Gw
z(Q1AR$uOQ^D`xz}9zELsRhE;-ZROVQW@GSc3>)n3!Pk7A^}VMhZUAie89Ea^>ne_1
zZx#Fhp|r<X-^n~J(L<i<tz?W7n+S7ROMB4K%j5JY2|;{!0^+KEhmfw51Qpz?y1d-x
z8vwrP6qcoyT{+Jr{Cn2cQ6s0>-<U`t5-}jkK`?oHx*j9P`(@jjE~I$~YsB5@$-#st
z|AfD(spTeKhM=LjIKA!!dXitEZ$b6DU_^HNXDsp3FLR;w$Quugs<X}yW-PSXg*`oa
z0+t;8x`xyz11h&Xq#PeiO(wFG;wgLVI1pe>Ycmi3MOGnG-T(RzbbGETV(ZKha(F@-
z6KoKwimEfD1HRlGygcInV}*O6z+q26OQFNnb`^ry#PchM9u4d<y}TeszsuH|rN;!6
zDO~-Npv(~J&TYsm5A>irvu9~)wJ#~_#GSgCRyvQ5>~Un>?O@iK8=u8LL22*UTIz&d
zNVnIMKsey3dv-P#v?*whK}Y>CH|yE*F9zh*O|1?kjeevfl33c;CYGDWUcqG>_uc1O
zP==E01@FRyv5pCQW*c?>xL}KKp1+y%>hapKS3ClA|A+2nw_s&E5%G%L8nF68pCyZ^
zatb#>bfeS1CyruP&0~v4c*M2cM+nenbO`YuyQGxN4IS1~iLYE>u8MB08vZ5x@prF}
zwS+xSM(;#(MVEJOeOZY%_uVJFC>4E8F*kbzi`0csM0a{bol0%!itP{&FLw0srEsGj
zhCo%Q<6o1#EDUCyIfcJ&XhGu9vsre6gDor*O)Yk%t!21u*;0UTS!N|0FB%P=JG}HX
zEM%ha4l9B7sGgUkfDp1lUQ)W?V9dNJgRpnPfJgysmrr|V*L(j55)Js*V+Hs8oJf+B
zZO+3MN8b<sA*Ga7S1e1EYD8BHL<=37{+@%*`Z4<`9dO69vE+ZaAMWd4vKGcOX5*my
z&)wu*sUT+RjHSgk**TbcLOjD_Nun1q+bh}=PNvsZCP*v!IB)7AJvVAz5fp0#BGgc)
zZagiH1l5S+W%*MA6anGpKt6yLv&C4c+ZWvKjDn7t9V92cY`*E)wSmhSNI8IL88~?!
z*ZJn46#4`%<haGAk&2)v?(%<7G+_=Qml|(wDl54;$2>C0@xKeW+2+uLo-}W6*D`Hl
zj##HadY*)8gmvprTPoY0HYT1Ao<ZRk)fK{NOtr6g;dB(+bXuE3MFSKhW&d_aOBeTk
z|41iIWk;VT%%jQJHl148HAg2pG_*T@pa)-jm~P!J_mVTBf(O-glP7-ZwA+1D1ZaIo
zbtb9Kg)wdG$jj)VMdmrgToLiOa}s1<i~~|lk1A*}vpGphTtQL2xlRV*)hw&pjW&8c
zS!{&YCF&??AQ<Pw3E225-{k}IMb?D5^>V{VzG=<`XO|P%(5aF}VZcR7^B4Pw5KP?9
zh!t=$gMf+#iSY@<Od(9w%_`_A+vOM=xqM{9Ei05p>*esf;Dc+?F1p#`b6lb8a{r6Z
z_k%pFsvj9UNkrS83^a*f1L8MkHg3B$Qj|n8)yv$kPQTt*kG>LhI>|**OG?m4HV=UR
zh1q~~|DtSfX^Sx8My2FlH|Lq&R32*9zg5217~2y%a0pk6a;r?Q_g^3_Kwc~h?!#sx
zToH(qr_D88n3WocmMbUa4YK1!ll$mQ#%q7_tGPP)_?Qv?Xkh#nJW~Z&kyGZB;KmtR
z>G@<o5mjQR--=pI?uy-ouT(x^5ImbD3B+Pb>r$xtopGG?p+W3nja=&ve}h;4L->2D
zAJc`caM{;-X=kxw4IhyMbs91bs}F;}WPkMyU<#!bkLB-d+WYYOMk)nR=0m4Zn&1``
z@u#r`Q+oXdn@~Kg5H44cJ>!GN3&1AdtMNe-?9^96xz{&yqvK&@G;P%?JkFEvoA&#t
zgwN%Z{(r7IOX~k(wFpw!pV~8g_j!MCVOHXOC;fmiN?$dqD07FvI(0L>LIW1yBlOe(
zIO(TPw%Awc)qh!%IUqG6GJAf<SMriDq1yyWkfYIQeBogP96L4z*MF!c$0`4ktta@q
zwvsA&*{dzBmYF-Ol*L}m`yiYl?qqhcA@r^?9Wj>oiD05}XxFSwpU@D%5(h~*JTti?
ztyMMD!PSo^{*l?*O<MD&81K6{J>n>4&C;CQM>prz!CITO<R8llaoH5%_jGN*4f9D+
zH^$+Kik-xOW@8kNy<+gydZX=;*Ri*V55yPe&DFB+Rk{`@T~DSD{6zkx-i4OXz?FoH
z4!x|U2zj9~lW%{0xH`Zyhv&Q0D+lHF4W(!x>Yj?%mD`#d$FKa(z<B)!GQ<8V@>9Uf
z-34TYR8;Z~1e#hvE4v&SQ{GFsRM&SIyzr`a{7}vnIOYIlJ(zF3sf9lZgA7hpeRs4T
z*YW2(_gdj&UG;>{y`4j<4y!t^FY9YBV1l@(zZN+nX8c$4mIR`%q@XT{#R@aF&F*@7
z&J@GkFlSY1PR7x%qr0;9=Le5#eU~9oBl9nGey8gC&>D`EU%c0|YoN;~C{w$yB@?{u
zN&dwo6saNu<)S-7UP&|w#Z79uIT4)K6TW)xnN~WlvKhmVs|4rI7k-eHCZJhjhv$!T
zeP>4O70eoynA(w`6ps8nw1_>?Qtv(kS#w+c+EvGcRuO?xW;hx?l`#Tc;V&&qRjf4J
zD_jLawlx@3XcRmzklHW1WjJlLi3?qY6y@O)EPNaNE5)F`i<*qSKGL4iR}IRY<O4FX
zvmK+$`ut{RRgh0*hSy;2;}A;sc=vg$YYz0|q+k_hnLTm*>lNS2_Tz-76t2KYWBzvE
zcd8V@wAu}SX3vwh8-US4%`UON52Qqad+H{6%zxB{_!DQ2hk+x?g{T8#zdTPQ3zN>}
zw80we56+6>=EDQCkErMqh(f9Bwwp|(D8z1zGq3Hnb?x4c3z+Wt@9J~MnAY!oDE7`9
zNJSxC#D2v&b5xV_t4hTuZFM=5s;l6hmm37ecd3?hPYYjgx~;2&8F@hrGG9oFyDGvO
zMs54Hk%x#x%^L~87&9vknTu(bWMC@3uS?q2C#TERhw=<kwAqElm3+v!&q1S#Ct8V0
zw5oDQg(O5~5%~D(h8hw!QuuL@4|A@;m$NAK_G7dwt@gw!xou2l_1fGvYsOy(3NO60
zvHV0g1*Ha6hn=nQItba!&t2FWC&DsZ*X)k*zJ>AS`KHC@6?s0*kdf>vUL7@NsQ$X-
z74A=FYRHg`2>X7Qv0pOo<1GT{7R2<spnDvZN=7cEXGGb4(5ZK=$r&z=7aldMbr=fH
zJzeFSye<|Q^5}7;kl`M1^6orZ-jhe?f?NZyBR@l$9PIj|!R$xBl&@Y-K%?zu4R*HY
zK}p+WSAkQGGq({SWx?-VPB^I}7|j0nHik>PoW~IlSNU3bBgh!omZMTeJ6v>%zZg>r
zN(Rktm$jUh#~ph;WVudnE1~yvN|w&9pQl7$kkRx;`Ct6<4_5OtzF!ppONyX>#~zRO
zT!^%`6YOjx6h-pU;^H1w8HHi*dLCot`AyKPe4nT&{F=kVmJe=HE7{DQ-{*Wka9J2u
zGPSkftNnV1&Q^0=XxE2a)NS*}WI)Gge>LBejY~S@NV_rV&fp`-DEirmerq=U9BWTj
zZGb0lv77<U`d5T!v4<I+t^?89otO@Xtd?7xYM~G=&?Vvq-)x{YgHtv&f;NyVn!+bV
zh9Y;WqJ}E2lrh6)Fu-Y{or@U%$oOnj(Y&(Ec~l0}%Qr<S(`Kw*w$0sh+w78QoUPNz
zqu2$*o^0Du?<&(Q1^mkyB18Vy?FkdRJ+&bxXsA87v`RO0CMw2xX7K~y7GI&YIbq@n
zL$Ip8x5rOir`s-Uv3lZ>=ME3m3|*rcBgUFchS@NtIW6y8iML8e$p?TI2Z3iNTs1V=
zuPeM>4!sEAXPGmmiozyK#~Dk$F?7Yq2<BcrP!Z|TO6ZNH6=c=cjsg4s&dg%~zTm`~
z3QNd5^DfqU2TLjw3KHq@LX5N&`~R+YKzN~S@(zCDilBt)r`(u+CI9rVojI8m`xyf2
z$a7<8Xoh9av0vC)@<)A!DaY#j53a!&AAl2c!tM8VtQ1_i%i)rlpl>cqRsHnTW20qx
zCe=tSuf#Rar(C_S9`so*G@!@6nR$gg$ymeD(QyB%;JJNA>s<M<7oo=mBfi^E8KLD?
zfh7g4dE>k%jLoiBFU^)Om+p@u^kj`OdOiLaSPo44ZETx=111@%*B<G?zDFKiNfeXM
zwXYnMBu1l$91Dl(+3fCIF7Si7H6ROptey+W=Hs$V#tMIEq!ip(!W3tCs(iRGoiO0R
ztp|Q#fA}=_IO#@dqI(YHos?Ai3P5%0jFo|H*0!5@5tu3t1YB~&W%#|D19}BoJ@FJq
zxIiOi)C-x<re2cR)-RdQ&b3)#n*e?gN2_8Au~kp_j7fiokN?;N7PlD!ftJhvxB&BW
zO&b2`(R5_PSIOtb7Qa$V5nDWP*}g*QDD-C{Q9`GQ(aygpeRZLB!eM@T<!j$J%D!@p
z7$n2_5EcBap-XDHZNItq5Z~RKmd7j|zX>}t@JHH&ULY+Mk@7zW_>Ws84?C`Ld~SP~
z3|(^r)5i&VGt*?^znt*#ak0^d&ELIZ6^7^kS#BJqYRnNedfi-`GmlV)^MeguDTeZ#
z2)N*0pQrX1Kcz}Mn~CnogA62rcC_%To7&6shI$2(v+F-;<2A7V%lPe<{D(Ej|83V9
z7vb@|_0{Lk(;#p$$SQcZ+<1b&<VA%sd1P0j%QqPPrM#`&HOQQETk8ff7dXaLndy3{
zASXBW`eR1iO9SI-2Zw;gH|$3d(y-GvhNQ@i0xDUD@kOkC_r?sm)**`aeG0kckuTrN
z)M4}bh=#oKXLYIyIqvTht(iqz8Y*n5XNcqt^WxJd3drCcK0X~mCmT8k>penwwbqi2
z-FV7{$Tr!l7V)!p!|YZ`Xd_zMP+K<M#u!Al=9`UVQi1y=)isx465+W4F6El7AP!ss
z-+OM;+IBLoV&n#Suj|ZMB0L&gWk>^7cX%e`gaJe7(Q(OTJ*c9q@N}qWnP$yn)r=Xi
z`I>E<MR22AiMTp8RO*iI#K}a^$o;l16eD|f>B?j+fwJv*w4eW?0gd10$=Wtr!VkZK
zI9&z#$M3)}Q^XB#g6@?l#4eWFde3AN-GsY}*~FNN>4Hju$1zdJu0L2!+AA_hvbXt=
z@%TiXKHFqDDBZgCn<YyvtIYvItVJ&`4|iNlv7@!{!|Kb^T3;}My6S$C-}XleU7s%p
zF(OIv@GbU9gC}%&*9q%B>q;0S`Q%?tj16x?UoSM+xK+GlU-2bjV(YyL%oPsczG%v9
zHaWTGTiV}zV`$WX&($876-L4hSYFuZn!J>jwhp!N&(+F)?e<P*-ie)Om>-hnDBaj@
zZ|)u9?VU|epGHeqkyMWkbWT^1rH%YoFiM8}Ukj=*^h9pLVn_E)9hRal4~h~&E*-R-
zB{B=LsrOg0xCFPI031x}tgCopNcbYJM{PNeT#Ym+R1Ab-Og<0Sz1*cctz$0|iEqpL
zXRob3c~)%+bVK-_+bbmac5z}uI9k&6Eppur^!X$iXQEY6&)Q-rL{qg@QI=gvN}d@%
zgvXM}%e&x`E;7@d4h7i^2~sX#*qJt%g&IUXhx_@zExM~@MgqMM*o09&vktYR?oo^o
z`ojr(R4$Jr%;GIh*8$q+I=rF}Uuunn6Z<X6CdM;axuQP3UMCB;E{L0dNcVsIobw~m
z^6qo%W%Mw3nhS>T0+xw8<lA$WO+4zX2Vxm~1)lHN1F^c>tLC9c8oa5KTKM+>&%)7+
zn@Fa1=pp}C`SSxpk14a_%t@JAk^GTRq&uNGywj6J7KN4{m+D*92iw^|D-#)$5=*|5
zFl6SNw=HM#OTtrlFv<6%<~r^dQ;(}BM?u{f_LXx>8{o%&K2Tqg`s7Xym(o_<$i;p`
zC6);k3p6wVc%r^0e<fQ!cj)jq(qzgBGIHr$bM@X*MXd~brp)Wb_^x)lUrJ0#KOy(;
zHb^q><)#u_oQyt*Z(OIcP7`DF9rOEGF1tDr%E!AiR4>CYJHfNsTEdqy6(WF>#7A3F
z=_hrM*uqkW_dIU?bnE*3X=n(sS4129aSc(7oJZV=)-hR6+eCmMhSq}SqM|12){Rp=
z<{F5aDoOwT;tJOXFowF2ow=h!e_f&(eQgCz_QY=GjjO|Gy;=+rSD>~kiXm?@rCv{v
zQ#uY7{u*&;DO(#+S7zTj=~%o#G5@_mv13)C&zSCF6$%9)`)FJ@=V_UYZ=|-ovHHf#
zR23(x%yFe$Jz{QbOqsP{BB+9>_pch_hBHOa%|}E1j-=|$%YuNB8)4BdRGFv6`qc%$
z&4zW9U{{RT&qegvmNRQYUOTCL+6yKTc)nP6U`t*PJx6IydpTlM6{%ukE${=FWVJre
z?d*dqjfOW1ThApmnvrK>C>!%mEI#Q{7KNi>XY78pPL(sUs9zQ+EMI+W;A+orJAHZd
z2?M2ScK!#^h9`%|c)IrOkX+UZIwQ{KwDmqF7vOd${E^1Ly#OtT5mUgNzoIg8p8{=?
zJ}yHw+9<t}!QprDt>SA8Lj|pJ;pE#KZ_G^H;GsGTGZmIYVt6qo?nW;kPp1RMiEwmH
z?kLqA?Dvj3rkSa>N%D!#oNxiJO5fLi*bNZ~X+Qq)Ckv$ZEY9a8F?+Qs2_`&Jw+5iB
z#%#X2{SG4=N>HFfkuiI`R4O;t!ziXxpdpDi6OLao`RpXI{mBt+@u|NkWr#?k>vzca
z@Nx68(z}!tO%+vx@T)H0^o<?sh?Qg1hF+Ixu#U%Hd2~j&O4PQSMpsi6gHfPWwaIQq
z<Rb)~k_WQ{-_!li5?)?<Nmo%8Lpb?&pA*d}xzQKwSx;EKvwDyRJ>iWGXzmKzj7O~A
zsD?0{yol){doSi|npwEe(&@?CRqh3+2f(4notV!5)#_z<+}3g`bDYvBAhqetbUT@C
z#&6e-R!QY|jg{w4D61&Y23Xn-<}5cSyLg;_j%-DT7?dgXh6Yt$FE!Y3h0UOgLZbD#
zOh`LkQT%VS4VFD9xmK6j1ft0a_7k{R_Yg1`hVmUzV^{7m7#mZ{@>cu4mw}z;%WC$J
zhV4VPA;juSWMI7^ga_vR5M{EVZAv)Brl{}76Yu^Xv6-XLQaA)xG*=mfzh}qBCfc45
z_c^}gX<f_N0D{^Q62{R|=(s-go^6dUT|>s;Pa6alOsU!ZXJ?=JYQ;&R+AlTVcl)7=
z|C;ON>9ZSifIa?1_s1cnh+xH;CVwW{xe2p);MV#<%<go&Up}dlwv5)VJk>$8$8G%9
zI`39s8a4Mebxk*no_E=M2n$Q>7$eV<S39`AI&%VL3|jQL?PcY{QBJM?G=3ApR*m5B
zSUUXp%yqFRKdii!1n?hMJxTfzODZ2L*SO!?-j(nshf3)`t3pive{~E<=%U|_uk{-w
zc!u6rsaXS%6Yug>Lg$p87fa=7amB23Q#W-O5QlKsSPPwA@P-s}q;0(Ld5sDWv``2>
zSS;#R0Kz%^k6pv!DGofEF(wlyEs57vzDwzR@6jF4@2PY&Kmxnn#Oq7Mueq5wP!!9|
ztEuA9oFGED!?e3HIB>B{#zSldqUC#+#LULvWjt>E(j4yBCg`L*m|%=Y^;8cpSP@1k
zgI=F`FiIDK_^2_73;bd_Z_8t`+JiZ>WQqe+;;3sw$0qVX^1ZTL*c&rk`nCSP>-G!U
z3Vs}d{Z0PP-iGn>uKb$+4MJB7zVw7ZdSiTC!{q_kMOobhKh0zv<giym$TxfTgTvjI
zTuGTQ(_qDeve91H>x4zPr6~9BK(ZIyW=<CV?Cs#&RQ<_U;c6uxxCPJCmlE2GAu;IN
zZx1+FW_?3yXSH-Yedqg3_`nfhpBC014_O~3pR~3jpXy%X9(Zy~n>+w+4+r?>@sO+V
zR#8|j=eO^Bu-)m6vNc`<^>0L5FKg4YXNu!@LU7}^>r8AmJRLan(9N^cuXF()aV>NI
z+LVz^T#no3bwkQto<?|?iPK*9!e5{@2Rbtqzlr%GIW!nFg&!ERH|JR%v>&I*h1WGF
z|8@{X?rXIjl<_$Ss5_Q<6JDopicVg)pbz#Bb5(qi(z?J7uO}aWzI%X<tlwy-(p#PW
zN|anpzk*W2(l1^u1Q4Pr|K$}91j;Ms@*2<@BU5c~48>+Qfx_SX>27>6EVY_C0R&`5
zgOB@dM0o5Fh|PkxMg!L04T<M)!xzIFzs1v8&i&c4BpTALsHlh>jJiavID5I-CGq^-
zlK}ja0`9AI+0JeD6DzV}rm}zh!yq%mUlFK48?A}Thew^LkaVcH<z?6-$d2dC5H;*%
zkghOPTa4O{ImN6!4q>bLgo7E(<KLA*DPdHl&JXJ~8`JpKkge|Vsy)S(^>FeSqgMT^
zI=glQ;WDO#nqoV@Qhlv^wCJ_UwR2OV{sIrS_U?C-I&@Jn-#E;0h$SBmJl}kBhn*-!
zWNN)+0lS2TR)j#4TIc$$a7On33L#SOyw_l`qEvd0N;UA-(zl9GMoiF1aWTNQh9`|W
zNz8zBNk7^URYFi62*jGP7N+#ZzyzJT8=X9_>=3R#n$5^<>!1xm4*Q2VOto1u3lM_b
z$@W=16TQ%kiYhCkT?Lb|c8X?@7Zx;foOj4bWMaSMDw)MtJk8hJt*s1^p6Eq}tbeNF
z5<}XCfkiy+{7m9WcA5(jd3+Xu4R5m&I0x)La1EFnRTuE(Zr3qRFs%w}x}I+PlkF%v
z3%tyMZ|YUEwY$qxCx4Z?uP~Q}7oLRDJ!#4IAe_e1eEIK$z2E;EA++&6fBtTn?vaQR
z)C^1Ygm$~677g5+#varH%Us?X)fv<&b7p?YmHQYc`BKw#8{qehP~Yq692($%So$-@
z%8`eRqdM_3Cb4qDI~->N-InI-PCfYe69#GhqG=G~d5W6#nFrJ!2sjwi^5^}H$~^$#
zh!eFX8S0rlj$Kt*>75b#Nn9ni1k~tScVHqp-Spt_3s>3l!lso{u&R?YnfOEV5#MG?
zg?u50Z*hCkf<n)mMtd2~%)*p5BlxId*>%Ehx>8(bkHEG8#|~(};n-Ll{GZz6-ylM#
zpApvmPJ8w#{5naQg$M$ngW6J|$wk5>)R~um%^QA-141#yc`k*(_xJ7}<0PLn&X>3N
zVe{)-H+{zf3tG#iZ_HToIE+~|N}NiSNd}uDV<n3|+OfxL02DbhO($0Fv;o0xk55Cj
z%|+eC;ms#}yHm-4LsbKf-tUcA+a+MFdRI5DuOsNXfTrS^b|<d7sLA|AyHr#`Y~X?J
zAsU0dBg-Ne5t^=!KA*VX63%xEc1?`T&y0A)Q=C2H+w&j8MA=$BalV{cQJld1a5rHO
zFp6PV(spRJ$mAp6*@e@8CVvRA|G?h$n~#O7g;MJZ%yNn2S!V<_40t+tdxE{?GD?Lk
zD61>FHfM)L#hvMrj8cNhG{3`(%UZ*&t0JtqDXQMciX~`W!V4H`oBfHx?)upgLnN|}
zXQ`zZwK#g}^TIk9^}&N#J>{Syg|L+s+c;5o0xXg1_f%67fMGUhBLT!~z>Gsl@T#q#
zW9q}4%WHY72EGNE%K%;&Sfjyt-ICYAzDy{Qnw*<{TCT7O<Oh-)UTent5F}P{poJfV
zviLNIN=+5Mv%_yu;#48G^J9KqZQ)7qc!8T2kGMl^DqmTF6T;C+H893vL(q)bT=+j?
ziqXGVgMS&lN8>o_$sZ!fR1QX8MPOh)rFlF5k;71WID0ehcXy8@*^;Bf^TO)J=*2kJ
zmClZ%<MTqg#9y7Aa~HB`=4aSQ7;z`ovBgv*?vYYODFdH>q!6g9>xe5#5##R-N)~@C
zs6`QHt>YTPMh%5t(j2I(srBuE(`FaeV>v#6G5)#k`eCxc5xQ}z<dIvn#}qXpK;&?d
z0+~?K_T55Li(7q3bFjU=L6gVB>|8c=;$+f@x98ABn$Qo`TvQ5OfW8cFWE<XKUkd&(
zJzK20j;4an_m6{DM2QjdzuM4&F!5R1Xw8{VU1W~aFFd+^E6)1Crr)zu{uj%MDg194
zV0iC=Tv46B(X5U}v|Uwv_<m^QgJ|=IXnojODpBJ3Q&d!AW_PG<8ON@KB?ObHGUeuy
zWv3Ui3p)A4=<%rWW`8wq5eKJF6sYhQV%KPfkV!EUd?s;<7%mzp{%Bf{TyGuX_;=7L
z=Y@MC5U{jI;^3J#{CB&*?Q{ptdSzZgON%g%BSeCVk%@_DQALJZo2{;{qSnazH%|$T
zR0<v;M^#UjtDppRW)WXzQ7hkfAfqC6DpjgN5(iA6yNZ&mqmVr=sID?%&}`tdNtEfw
zoh$l!>kwIfN&4L)wAEwXc-Jv+l{nG3!qW5oQXwW;b79&vfHb}j@KG<{RygUL_#h}v
zG%6H(r@*WM59EuL*o^k@Ap1{8?Z3MoiY<PsET_6}nW;J}wZbJfxUqF!`#7-;Z}b2=
zIcq$?hm8(4>hIR=gh`b@N#neul0!E9C0jqMCMSP}hF_5aG@y427DqcHv<dh!ZTc36
z`~2J?yQ*_?ay<3s88SKkBps3HpBF#evYg9wutDzbv2pX5lU!x#BIjQCPkWS%<_z_t
z^#^^|wMAWT;F{5e@MG32{;~=|e*d}@hfsq?k3Kh`Vwho(6~@Px_c5Q8O$52xMnfze
zd4DC;^{S$^stUcKfwSvaGGdDK_fB<_L#0_0#`AO*v?&1kD)R0v<&llyYQ4Jw8CWO`
zB4~Z4fny6sL=4+Dh%Uqnn;M9j(pqw_$Eog)`eyMojj_<CAw{3hCIB`H-+{Q2DeC?;
zSKw=foW%u(_=+Q6QCUK*i2{=U<<d;@U!zJOQz<njmdD;Acg)LV6OJ54&64=O&6)jr
z=!n6Xu!HCk_A%cG3rAjyzU1=R*YK|;;N8(%HT5h#OFg;MH0`D$3!vSYy<V6Ld8mIJ
z<O|{MWhO1hSYJcVE;Uu8SyKn?g1^GXm7adI$rjfeU-|{96T24zS_HXPuhreF<_~l6
zdWrFvU{feUE+v~l&%irscK*h(iFhU9UHR<0KPdbe*y0iD<yVuUquD&-$W)WELy3GJ
z#gUyFpcoT>=e_N~h_24{k*o|DVU(>k?^}H-M+tAU{PdU|6QMt$a*f}ZE!B+(huqgZ
zOY);nj(26KedL+lXYTn&=31@6ii#*7QA3le+al{&KYxwA9+lhheEzC1_k{?ZmJ+;D
zxhVe~<s&Mh5c=bxDY~JBF(GBgU~|(lNFd{u!UN4c$Q@@a#no>W|L2gien)s*+yA0;
za-6SuQ?SKzr2T?bpFXe@wJ0&4uh=|TbFsBKpAoskbjQUA-$h1s#UXI9$#O+VvGm<V
z-Hzj>P!liN_;IVI53kD1%;TBNB;oJwn!B6}NPNc#{U*k2S?~7jVCebC!)v!DuAzaU
zW#Esp?$Wu<rKo?VW}rT{Uo9l7EDw2cGSdwWk?DFG;OrePu-Gf)lPQRFs2F5e3FY*o
zkAuC`oFpA1h<HBylgjkZT$-cu?<Zr!%{?#qcb;2!W6fDczF5`r&GWSMyV%s<-vn3e
z*C|%j#uisfONqkDWfidst!qk!o(jgOczAL>HjTz{0|L^{*E_jf|9-lDy6wBoOi9(M
zb9wN`B*eps9`t-{Zns-$h&7QwN={7_li(lked#|H^+X2QTwlh6<l$ZZ1E#7eobgW-
zWYuZlJ;W>$UomPQFk~^U=q0cighayLRV4SHKp=#F?qA7QnJV0vNCvl-{=~CnJ&wM5
zMnqJ}jq1KI7Am737{}XGp?_ko{B3TD2(d&~9*suN1Q*THwL9R2hy=aAps6eADU5xP
zrsVxQe>~K&24p@dM}u%<c3BGz9*o%7)0IX_(A0nvSrJF{Q<!we!TuJP-_;F;Ug}0-
zQwIS?jXMPV+uANhr4dH1mVJzZ=(Dxr?z}qL*E4{PQDW^XXju4v>HsPwx_@PP+@p6o
z+HtM#&N&ce<PtL`rdFDfH|vh*Ej(>fX08I0H2e&wShvIItz{L_XjeV;G<w`{?iorV
zB&iiTtlvHOUh{7F2Yg&u;F;(1?5-*`Ny^OZ-HoPYx14VuH)>1C?R-$x(?jB(n&Gqi
z`%T1Yb>j9gG1@{$MnloFX@wQ1s9BmAb=Vz6hDTBAIpW+Xn)g#e-W==JiRa`uM;<6f
zaK&!~PUZiT@a&-ftC!4?7V963)rukqjF&W{^?XvA;mzq|fqpRjNs3`+-48fB`@|0*
zwzjFZv5VNTRn*l*?zg5)pn<I?nGm(r$m`lNdTjV}L5AZ@hHJk5_@P;hcYByOR#zA-
zV6|k-$vI2RXNf1|aj|C%GqF86zIuMWJ)6tEk&ZY1Tkv+oCFgfRZ83lyJrv)?x(dsz
z9J`+UW+suu6!zm7!1Q<g=x9N(!|>CR`{bVir=|~c-25s)m-_$D5ab#s#=Xt7=_Z~R
zP1YWHiwV{)^Whgqc9Ns-!gq=XY)T^IN1NK`hA#)?5IW4<MNv$o`u$v#>{D$zNlK&W
z<5tuM+cz7m9`n`;PU`*n%)*n3HYpm<Q7mIT*p<H?`0Y)=pZpvb_F5w&?}uY4J7;tz
zOEaRVZ|vXxTqskpd97h#-#24GyWGv$asa5q$b8a{mxX}qdUrPIOtCjv#{drW<lAw5
z6_PXWhf@2cBgLt*NNr3##z2bUuRs3x%ozmpnqPmYW#+&$hcj+q!iHIQ)Giyj!=gQc
zxrTK9BKLEQ{6|!V0T7vS1=01-0vtc?7hY^P<bCa5kVc{urTvb)HlAKFZUtYbB&n3p
zkow1VU0qb%n41>2uuKnt0|IR%__9)+HGJVlgv0XVdI#hP)QSXd&5GI_XckQlMv6^$
zEo-gz{Di0<M#jfKad8D3v;Ul-{^DvtIL9rkh?1C^Dkd#0_!cDk=vm1@9=^}spvZ4U
zZ?{^~QxiG#gdBHPfQ}0o(_ed%OW8)Kp0Or5t|+f%km$r@>?!y@R&P_?Jvv+v@7Iip
zL>dS9{ohxF?4*{v?>SiTAQLc3*(03mFLr^LckOl%<l{d^DdNKlD;9~%FBjGS^MpaV
z+-CBbbg|lOuaD0QHidOH677x4uhTF3L33Moe?m{nf0rN2IBtiDt=0?@7Hg*u%4;4Y
z<a~G(y{eASlUT9Iz%~rWs`EY9v!izs{i{m9`a*G&c3uJtCX<f9s<&N@-(>%^Ve3<+
zYSgf|&>UGEfI(g@k!e|ZzgBZ^KN7V(zrZ_#7dJ?W1a`YBy;H9aY9H|GHv4T}aA3db
zpDh_`FlMhS0uvMO8E9{EFu*6Wk5bhlrJXh3?!X+)4^nT!0D!4e*tVKQDm|x~+)?=E
z)eLmRf0c_YKdm|2g{if%GSdhBcG2&DW&0&d=|T6f?#A&|X~Bq$F}t2`bGRC}BOi9B
zriR3E6gG7e`V5-z%ZKwrT$G+8bUBdp2iNo4!>Gi*S-8OLH+La~gBN<EvLe^ZQykS7
zHc#pt{8=X#a7xyr2eC=uG+>3W?V|MRS6*G<zcjF%WhLNA&GAqZpfqXW9>|YxI&cT(
zygo9pYl(+BF3!rdK@w>OVm|3~hdXV{obPN5=N;^b`X<&+tVrC3V8WK#5HGHwMk0r*
zcD$l6VhZm@)BtIqv>{BV2i8A)M9`CZ(QV|ib`~&9(~=FQSbu$swWC)50*B6_5GP<$
zDm`bZ9Z@z!(E2Zu%U~8X-|rtYEr&K+Py|L&%E%ng=+Y2w99E^ap6%eqL1windt1oV
z)Ppm6(iZHiE1z}4Tx3v>m3GBRCm=SfhNoXGb$GWO@tABO9VF8Q3QgoxE%%#;)}Kcy
z?VPIi&4#E=$e6-JGsM|xFakb>*gSnB{`I6tfWLJ5`%1S)IrfLN|82B>UUwWJeA9GP
zX+N8~90EPOJ7R`Ea55?%v8CWD$k1<s$Qz5U=3$0*!v)|+Ehm#jvHh>2(VX_i;5;3^
z#p(&G2c_WSI7@{{4QFexd)Dz(6^F->ofqc6@U`!oveqJHi-c4Y*Ow07Ezz(jk@&bD
z>iRz<ReRsMSNWv}z+PO|o)6znK972|)37;}M~!o|-t?F4*EtT_YK{klf?h9JVn!q4
z`~E`ImD#ouvuSURjJp5$jA_-Mp6Li*U#YrM`Xg*U51%j_wr5$m<nJMYG3_XdXR?VO
zUbD)KyrT!1v>IP>3852TasNh9E{fg_GiyH~rz5^mkPg_hFoaL0D!^ZWUfa2QRXXhv
z;C$bN%4ZL^g)D0WhCwMrvbE+kFXfk?pqi1bolFP>qVg;Dg-F!%*o~k@dvLZLzDwv~
z^et{iILsrzJ6zT5d@E7sMyLJM=A6RX(+Cbu&+s}67QTDJ(X7_~3kY}><a)k0ojnK`
zj=rcdz8gjCx*hgu|Kucg1il)^zkyD^XJg{^R)WZbatBxC!F3J`Y8!d4^l&Z#(uF-U
z+G5Z(BNHVkbZsE{&t`n)13YgT$YQoIS~C6|0NR%4dg9$YxIKYFX6c~2Qhe7S<?hL%
zRDd?@+|J+S0lM3LZp$p5W5dg1u3|<E_1jqUzOuPFEW)lOFTs=ZG10V}BjuM`)or>A
z(){z0I({+Q^^2}oKX+&`OU15h_}kU1CNj$Sv;zRSiZ{f`E<NlC*^Nh0GMjl#l77GA
z_czqVG_R#_z97*ho3T1V_Z7+P<MLY8veKfA<55!*fE)ue(?NAVD@Qog<9Js+vzTas
zP1?*6ulOl<{9zxD0U>PmASSc@Avi*%%Z7>+HCyS1U!kFaD+2GF7Ss_KmL*7Sr49WB
z@Thkl#H<iPO~~bJVbhxo#8RC0;Qbo@?~W*Lv;5iR?_Y~Pa-*#p`7msH-EppXkYw+l
zk(}gncNM!GwMG+i9}!1D%3xqRY_QKKV8mk1httO$Wp}-gjj}VpNh@H|Pjp$%Z;{C1
z_5Q)@g)mFm_sk;djVxrgc3tKb=s#%%Q<0xy0u9#oToFxCuJi`Lpo-^f2kf_T`Ilqi
z6vpe<K=xMY;F>a9IAfmP)B9D-g(UZ0_~mLiXllI@2$?w}H;5>jn!vhh2m25A=fhd>
z13#`^y@o$-x4PHe2MWkMDmBI02Um6{E1Avyj|%{rj@<y?+{l1_dfy|hy{^9=Qt@3+
ze+EIU+$aw!Yt!Bs--814eQPtMru?&~_O(<s55+|<F+kZsgF8GdQAec5eR`4C#&9p_
zawUJ=ZLRQ2`=&~&7l+a7od*<Frs;TMwrb-iWut$87v4VT8C1LZ#7ZO0_aTl#YRi#4
zi<|Z0w!VceWiA8y$H>!s$N~1!uUudEjl+0|@DcVoKJh-a6T1FX*P01@_u$7ist$Uh
z&0nG{Jcy~ij0V1@OgXe=irS&LaS%{V3TvdrTQo2GHd*1vomBq;{N6|HC@z^X9CJ`7
zpTUQJ*;~0N@}&Y!3RpB%c%CR!KAx#8wMdu+%QM^J%AsH*Ke6xF583y3Pih{%7Q}J$
zefnu8Bw0i-LyI=-^o<D*wfdV7t28@CnK4)WU2PDjYL+{GoV^wpG4w>x`pi_1gA9R$
zJXx9vVWK=sa`BVLuGcNS!9>wYqyp*J6#Q@xH=SIHQ-QqlIa<ypWrDYK3U?ci<C&mv
z3N7DEfG_ZBx65E8f3r8S)%jxA*3ipcB=$3Ke^EXhmpkkxvQ`1fit^$WB6=F}t>A#a
z)JQnfq??Pq&w^~JDPfQlb7p=9OCwc!BUH=zs*TDOZDpQp<<E**>*GP~=>ChIsMNz9
z+!UB!naM$m1>ex}eCkFp&+}oJ8^S8lQlh2mOSv$b3_>Jj0Qa|DH&PCQE}izz<K9J8
zp?ElfZ@GEl2jA21+JA~|5*zIfIgEMTH~UU@-x*F$1f&saY83<*x5FCE=snGl1PB#P
zJo6RCWf76Ups}DkL{BbT`dK7{@e;!LvVgRB*+D~IW+B;Hz>tbCfFN5CwR7AqOy89_
zSsLS)9%={^W}V-{yG4rMgI9Y_GqGSNe<RAbZb%QYPUYHn=#5&btuTWW&YviR%4U+F
zJoB>0hy@DE=OnKxe(lZeiz=1P$ngw+s$d_>Etl-yEE~O}4;xlM34()7Z@%u9sY1K0
z5(T1^Xg1y6z-C~5QymiFM9!!{H<xNG&8guPZM3`Q_M81bfXCBjk$q8ta6kM0o-OMd
z_!|1L(JN^*s=;_5*m){NaKq@p>U8(!@7T530)^>Gl2?`R5;i3e)sL+$iueGFhR<5n
z&l+LOql6vOhkRqnR@h}wKveL2D4*%ni|lQMNTn;k9Ei{C8NiiF{uShtKXq$E$nndA
zR-`g4=_^3H#rLy?s?`2rTwXt$I-)gs(dMssj;pTT-4MIu=$1xPnD70(ELP7yv*@Hq
z8T}y_kuUh-aSQ<>tNMnJ^D*kg^SON3b4UI`{qkh<W|@PS=&B;w8g}xsqm1@j=;MgO
z?kA)uV|~yDQ3}^-m{5CxD?z^Zt%1AHH!+R?*yAVK*OTNm-$}p=%|@(k^%Gq{R%fX6
z*5&De&h3$mz(u#{ReVXO)6b#<LrVzxgQG)0ayt+2p>#{no!X5TVfW<h><KX^{rgo?
zA)*X%@WerFfM@cA>Q9`!oaU(29^R<leKN-Q=?1&fJImYDhnvhu9%f%h1OnQA;1ixY
zrf|O^9Ed@~s`5w{knO{zY{(US?qc|hgq?G4>Ao20aV#lpHyT;A;K$oq_@0jDsY@VE
zo|io-A6%Jc>h+w5m*-7a-_6BlKkflKjiP;7%|b~A6v4j<x3sh(DoPt4U&<%`MLU~t
zjM3}^C5S4VM)X;rQOl=S{|ZeMq6{%SkjZZgDdQcF&IcPGoElxNU7P9`T$aEg6RY|A
zT`n#vdS(VW$`M@gLzTy4*Fp*t6@$+DWPYcCIt|oQgnt-Tl<f9y-m^Wv)9p00$Tw+1
z9gcI&86b0eQ=buQF9iK862##DE>Lm{?Ef~gC7<%d%~gYZsU>Nu!Orw!wDtUuQ_ik_
z(1`E6n=0&+gM`40g>v!dJNo=q<cQ-hlJ=C)Ktel4-_gO^Pkl~q+LS_#l*Q7P>Rpyd
zKDG^Qhs9>ZSuK?iBZi-&BvUdDS>LT6p2zj{We4)5T6CnK5g>UUw^hS!QJAtL_;+v@
zdu98XszuJQ2A@)}8}NFk3)QvtCc|rDLZ8?#3*6f5hai<Gu<u>d$sU?}@hZAOAD6TO
zq)s0v`?;(=Z`%3EuWap`(vc=XcSk~)BM)YlwHfiVmc5yc7mMbxBWn*#j+NLYA)Ob`
zxlNm+*$6nk{>aam8yMU%Grz@YY^)qpgrmO@>;I}&zT_5xc>;}rDfEn6PV{MI7+55V
zKyhmFoX80Yz7Edf5T<e^#_PL?c+cq@uIYwNk_-*Vvszgfr0if`==|(DYIV8WQcDBf
zDBpv{@3(C9-6zi88~UWtgd$e?AKBQ}!co;pVH1sLSTiPIx2njM9Smk&ElG`~g5gI#
z$20sn2472xM|(IX`v>-;<MLlXpU`FCkF7B0!x_5NtX)3-zX>*65v=~%aAq57d+46N
z%hlPMs(RmINiBQjERDySo3Hu40_u&CCD;j1m}H&KX*r{r+51_5KvLqi`_h{gWcp!n
zYI3ijM3&ME18k5onD;ovRZA~z3y;olIwImE(Q@+?P8CXIVmp%P?FzVZw?Pk(#(FXj
z6Uu4TvWPwS%s2U|?u^CIr#3|UH<lS|dlso^k(bG2sZw75hwe9AKx(tfO~`8iNTPT-
zx?XGT&mNZ?eNJQOW&P%de|Z#KE9Exp8ago`YjfdU1Qlpdvt3SW%u5oFu=@pz@4+2Q
zmERp4dZXMkQ0)PWc#u<`mz0$D&2u9}=Jd3tNHkdGU)oXBrwbrmC4J_wlck5@rzgGm
zCY@LwA}fB(?tAGorwMUDoeQB1C@SOT|0xfGvIk_p3f}B@4|WNF4$^u)l-jsI1x<f#
zN)Kk)AFS_-)rP%+DH(}9wQuRwHag!4E;471sXt(t&s|V#f#r{9-V+P@ehRENGP!>V
zW!7&?2u0h3)ayN)?(Zh$@|QNpYMhX)Xrb~ylJTds9c0P2p_DP_2koN0Rs2Hs)~LWw
zzPZK>h6^$~OF(*@I+?n@Os_FhsJZwX-)yprVUZx3Z!e@5qs-Ufck=d~L|Ec!Piffe
zGh>z!_YpgWNvtULH}d|+5Pn>1JjEJQ8$|-3<}S{H$oM{@Q~Y;l8iP4yyJ4RJ-bpb;
zweLT+$ZeeB(uQrmKIDQYNuzbR=Xq51aB0_w23xxFBSvMJb!U3-nyp*ybz;HGGFA`{
zbbKSS0V<M6RV~8%p^tH<tC$-vfh>$LeL{5HQ=)nr_#f8QaL!j5eD{_vB$nF#A6Y+V
zd@<<sjJLEWQ7Ft0dOn=)*q>rx8PB&1<i03z9CAE~Uz3120<H*9nJRxX3;gNnTftJ9
zuuBl~rbejHthbgB;n|k9Mbm8bwhHNT32!z+mb2ipGY>EoBCNAhX1K%PNjca3d+e9!
z9%$@sM|aWH8W&7M^J8A>tzw%o+A3C>%G{Eq*(0wz!IJrbd;cf#?QJ!2zw53|3x;6g
z`NkZUY}D_h{7cWewiK_<whZ)#yWXiqzH>fRQ*6aGJy}K7Ov^gSO7Rrs8{MP=X@<=w
z+D*<__-@TVC=7@Dc#w{oHkkNhoIb1bx1HMalGhaU)CBcsZ&)tFen`hsO4l|1Kg!-Q
zxU+6)9}Xt=#Gcr8GO_JsV*Fy;wllG9+qP}nwv&I&ocliKsd_)XAG>zd-fQ<-t*frp
z{jq8{y3%Aw7MS43%(7tP@<v+<(&8X_vE5cKC8d~iLE5`R|DYUrzSS69n&>@+qdicY
zAv`~?s@QBw^Ona?=#F0dsEg_NfQs|0D~7NRf_qgu$|GKhhAWXqPe%>zp@HOFyCY^+
zm(I<IQZ5A+oBNylkVoPrWlm#f*zUzujlT6!XfC6)6thfzj7@W9>g>n)vZ6rwMk4rz
zsFs-a2PYc!mav*74NC!++UF-0)~l?6!&7CIsHjt&+X}pdIkrjh>d<N=g#3p4+yyh8
z_}?}cwv6ei--Os~u5~dl>)Q=#i!10OLw}D&eGjqPFWLG`QNH+UedAMlwVAv?0Q;io
z<==U*aAci4^j=NexE%1?b9yB6{teUlitfeXNyPiMsMX$3gto?(Sk?7T?B9lw)<|6r
za04@{yEu7!-dVTPk5rCVX0Bh>$$>Rdzcs&nosdwUEUTyhFHL{$jg_f)o&8E&V`p_*
zt7*16qO)5Kx%5o=>bTGXmu*SZ;JqQqY`=>e|6ELRagf$Rk8YroJh?w`9z$PP9W-NG
z&chC`zY1fDBRt2jFcUNOP{;KYgm1jSQ^hV<$*xCt5nk#Hkr?Uay|r5x1H}+2Yk7`h
zFJ)b@4DFr@TUkyNjLW%xlYZyt^~wr8VT$$DDf=?e@UW{d10rLTyfDKV>S@F&PZk_+
zw6#QEl6Kf?)cMg5^MZl_K2z`&+~AEGL}xR<w9(T&y(+9n+&3QgRY#nVlNa3A(}EKM
z6kluZ%(5q%A^H><&Sm0zA2UaTUDh5_irlCh9BsAHruUfAlcAHG`CiKCkI`TnfWlng
zjwHgmq9)hU5Pzt{#F~Jre7s2$T~@-KzEx<(EB1t>n9OcO&dubHp$;hg#_;H3FUX39
zlWSz={aQ$gbr&?#Mw@le*0-<4oa&27WqQovlR48@UUt5}>xitJK(i$jhEx~Qg?U8O
zrorkYY+KfHs-JK$e*%n)H#vMN)2KEPb(<JDFFz_l#V~aLV{E$^O@?6>g28K6IDL*T
z2?akJBp++x{DR!a?pCeM1Y$}1)$|gxCi)_6sm67P;54qQSnIT`EbXeJvBn~4^)&U6
zZLl1J75wnVDXT3(snNyHlq#&C1L%7m_J&=yo%`5Tm!PsRYO5?+FqO{GZltT`OAQ@E
zzAm-~YlY!kkJ)M!+%6Fr8+O^m({KevAvI^<x+ZVD^Cv`pC53fE7C?=?5c7%{=?@;s
z-j<%LKo%b9{l(yoeUHq;T|j5FVy5lk1#`rEk9b1YDfQWn-D0Q<+QqdqhgZOOSlO0R
zsd_h7plpKj_J~8uY|rdJPNIEAs|$-UF<dW@h!^7E**uBiD#hMK_Hy?*($3wW&5m{~
zGgXfKfu2vQpvL#vGYhZoLx{7k8uC@kZ=l*WxCsBb$-Our9hIUn<!eZHopxZa_OX}b
zvL8k9?m4lhtsxa0-LYimT%?Qerr*S1B*b|tM;I>&m{0Ec1);rvUDNJz@dwb*YbO^(
zV#KNSV4xNqQg!5h%p$lUVQN>=q7rdfnIrc`+^RkqLVe^P^2PT#Gs{IvGnpTxM=9Lu
zzPi&(1uvZHrbh|Vt1o#pcb^mrOn3HJTA0|$ywG2RZ`{kp&Cuj;I=E?PT|cxX72q*^
z4y|;7H-Bp*?^{}5bjN8o;|VMf?<BCxJtDM_G>p=p@BTqCIN@=#o*4ZNbHSM-9D21A
zfZRnk^qY@#wW<vROv2Z3+f)0OL-qqUuT_MN=tV-kj+jWBCENV6%o*F9Kwsr<;h5dZ
z$Ku#Hr<}A@8f@$7m}UaImLpG~H1hEhS>*Nh&t8Zm#RbG2-2o|Z_~HDYP53C2Me{jv
zUl!@lcSUtn7rN`KX-su>+&tGz-Nz$f_#J_FSZIt-yma#4o#a;HnlIvxoNE0gH!_=2
zJZ(^2k0Jo;FZg?vP;D+p1x?H7Uk8V+R&7PyP!&9mxamYVl@BM(m2+NF69{Z}CNFnC
z>ss*pM5MRh%Xr2DdYxSjH;v3zEmjvKmPFe{ips7E{uDg@D+lop%%`ah?-yfBH_?2E
zxZ#6+)%+f>H|Wo2VEibw-flKbY#%OA8B)9sLX`1>S)HCWAEpjt*dz1NUSVxUg*E%=
z2)82d6%QR%KgVjLJ;Sdyo8olZt3y{KYSwS2$xiAn8MN0t)8iP=B*Mll+@df9t-q|G
zmFWt-cIKoc10#oAX@(~Cj>@L$9v7{z_pVTH%Z!s^@!@CA(qY(_v`5FrBxN^ClsN%a
zoqpqe*vpQ^=_Z4aA`h}TX6~3Os?iPHG9QGWFIVoayPv_$1?P0*y!j{ICm$XMu~^z~
zr}|N5J6!;dEJR~ST%8#5A>+71MInnP&;iJiA5-+xGa`iHnZ)~?&yy|Ra4q@rQqhmE
zo!C$JNQcs%e|DCgnWYy;qCR*<VFd|bQer-m@H|yYl7Nawf-k|4YpSw+b&+Ob92<xw
z6>pnkv!C{}w83NW#489T@k&~ZX~r`GIsQyBy>rZylh|txOSU(Y@Uat(DsbKqIh@dv
zb+q&R%^alTMFkK+&=c;tWW9()V_A53hPWqPTNYjGWnFUIvyANr<?=62w@?ZvL1;h9
z*-_>&y-Hq4U`ZBiLo!=E4>ZxTH7_ag_u8;$ppeQWV<N*A=11qk+J8Kg%{Cx8Lr_AV
z10tAJ{2>1NVIx6KJ}WiG75yuV9D*%j$7~|!-Ha5TGujuEK!OebGW+1pWO;sZerM{8
zzi>6FeapxQ{v^X7$I22@dD6x00a8GESGxBHxBJ1aN=4D5$!0S2LxD~c<Xe(eJ~2+0
zhAF1Qe8XCpvS3f6Fv|Jr*gY5TWV7Dba@UJV<sGrTd2vbL=SCYqVfy`JYH~2UcuXrJ
zNWiIr)?n&VeEoJLG-7yTbW|k{cuh%Vej9%_7zcoldh=FR`!-GVOVTR=-J{9-KX~=~
z6URYZ(n<}QC2fuVtt8D4NDKo6JSjE+ROHZ#(|*<`VpZphmL`{o;DMe~mCkS#&l}z5
z`sRA$Zesfg!X?x5C|l=fT-5^^je76mOZ43VZ>NxNlg(Dm983G%kPhPx*%Q;*#v9~P
zQq9R$^zG1-*W~zKTm0TGT6@3$Q;WyTr|fn35ng^8ugHL}WBccEZk&gav~IVu$4A<h
z5nmIcl_!A)`p-e<uSTTsd0ISk_c|gAuXnFb%uh5OF9Wo#OCvdVT^4)1)~v1y?$zg}
zvKmNRBZ>NwLM(V-MWh;Dm*jbz$CP6+&=_G^qzL9+-YX&#s?&-=^W;sKJ%EL&C6}|-
zt~pJg_|k&OP-K!s$ulc%*X<$=p0$oEy7h#xAmjC&o4*Fl<PQ5bg5QRa!3oo^HZ;<q
zJYK%ZBytqSc)~(BYELu2PI)4G@{N1OH%c@0ebj>hwsXUCLjY!KYZ`8aM7-9hlSTe{
z`-moILoA6#cxZBp!&EK#vW|qZ8m8N*iOBxBo_&LK_0WqHPK<vH>=kp&D`$B*KkP+a
z%&QqXu4%r<nmY7kTLcwtncht6$NVpzS$Ej%wz_D`7fY3(g@yACwc&n>B*qe5yfg{@
zfY<b?{2kL`T9`u?xCcl2e1r}K6gWNnl|Ezo#wuX<?`!?!oSIUn`!}%j?yhW~hgy!G
zz*s|(#`#@-4`4$ztwOt-7wZxS%P=VnIU!(cqc%+7wmrgqkP4eOv@;zR%Rd9Li?j!l
z2M5l}e9sBcnH<HC*N)CF><stwf8jpNAa1xj_Bl7>uod7R$>NA(HQ-uX-y19^TVTOR
z6kCPto-HP&XA1)aQKUz0wcnuf&6n#w=#h)23}$y)EXbo`XPrUfL=Bu?KU7x)F&BtL
z#7)5-ko?DaxWyf@OiY^c>m&~vm2q(FIhe?jYIW@iVsv!|wK-$P{e&%|$-FPJ`b6*2
z=})*W<}{g1c<+qp^2N}0QUAE;;B`~&f*+${-XD>M$d|?nHVAa@0NTJI)LS*`uag3)
z=aU(WGShXYV4cq?9Ius`J}cm__i=;Im0R;i5ij?T_{BArjsdo!_Jnt4r)x*A*OMhv
z?tn2@4u;+X-ox2_6jAs!ypGTjOBq~^cTn1v+&De1HP?H9<&%k|V%LWuUdxvu-pRIn
z(*j1S+C^t&iPwWyVf(5X(7DTd;voZD`v|DwW`wtX-Q&nx^T9~e;QaCc0CydtC_UlJ
z<#)o@vB_KGk+kM7o~d>2K;zvkCodj?NehXSL!r}e`{EUpZ{_qc2UEMO@kq_r@Yi57
zDkz2+Hyp=N6|GeV9O`DM?<9C<^_Fb55r;!*UmKkFiZrFS>Qk7<er57G4(q7`xssnz
z8C^(*soEIJ;+6)xZgB&4%&OpxE8in~jWOmqyevG;jIMaenzIJD%vVuKST1y?DodIe
zUe_(0tV}+dHCj?ztjP<dQ$`~97;oC(;;r3-b3aI!Exe<_xOsZ>*Sf}0*hBya+N|ZP
zLQPN;ZyGODzgmwtNxkpGrK+FmbQh`4i#LWfs>}+dT7H*ZHOHdNk!m_7<BmN|XBIl$
zosGk34ct>*>IqC2K2CEcQm;rn25M<l6gr)`Q=d7)F<pI9G69fI;VTSQMx`o;EjK9@
zl4T7~5gDD&3yARsn^E65EM$!=44A+~l^-`4n)FHRx8Q9~>eF84QSfI<JuOz-14l7C
zxK{ddT@J#>8)%J3MK5<^mHZ1!{m)&_gjLXS47GAReHQN6Yz87^ZLVHeXKX0ARNIFd
z%V9WI_+waYu+U{MWZZ!C9}4!Z-6Bce@@z=Id77Lyb@Zf_s50z@P1$%&7dGk=oi*YW
zPE}7nisxJfP^Bz#$7Soy{Ysgdblx;__b<E%BW?Afy6P-Vw!4wC`gCCBZ;OiU2zRwS
z5i#4_dVQSQSt{lXi=i^yWr|d+OKtp{fruB1MB<T6zzKwWVF?C1v3@O-uox>q0kM^z
zMur88=gnfh7-ZR<62XtM6R6?yosF_x>|(nB_mnsT_U}bSJIvG!F=#-T*=>!lTyV5J
zE5botdJ+{jx$QOSJ;}WhkG8Q0$Flk=C@tV$l+X#X%oz4m!>71bHy6Unv-NEqN$)7_
z<F=|2xBB+vUF)8l6j#e3qRhQ*?Jzfr?rykV>kd-XEI2kfgg?(HW`{h}+eGmX2h=1>
zes{4CsO8^G@`C(+8+Dew`@;r&Z(44$UXr(TPNn)YewX-rp~z6bon}?-)BsGWI<ag8
z<w`pp&O$HN#F~!+_@ggN^FrV^vdtjt<$+BpSIg43@8R0%Vz{_h#gj9X+jnTr(<Vyv
zaJVHTjgMgZ8e9BBsd9x=Ww%@c!w^{YgvU(PIOt8nfjVm~kStiDX*d?p0|>n%!~6r7
zq`%kvVT)p}<sWv!qEZ~jF2Hv#0{+Zb{!>$s{Jpa`CpF|>KshFw2L~+dp*?dbL{XzF
zN*HmAsmn#YrV&kfeg_}G_|e=z!c5}=;{E9cg6;uJ<V?RB<p*#*k_Wd$?_fVzRk<Dj
z<?)~(2Yc*U=wIxJP;7-Lh;UKPT|03>ev&h<qG6}et<K@eXxB})m>aa)yCZ2dgIoLt
zCoDX_t=n%NJzsR@6%r>>0C(hfr$D~u91<3U(Rps4%;}2p=(}Xn)LnBNPiIXS*Q#9i
zBuC*WFFfc&A%(wFWOD-?<qR(Tm#JcF@%Mk2d_b^p@DEge=ak4}(QJ@9fJ`^5Bi&P&
zS;i?X=og4bt%Ii}`^%aym2J+^E?$zb3$NWox8rOLQ_(ZJXJ=rnHnwxCg9l82a+G{u
z@>d|Qn5o>GXgEUfRbV%CuV(EE?eJz<jdEQQSX$bujhzyS!DMDfgr~1!Od7L8VQOWO
zTiM^vd+{=_u&pQL(yeX&=^tY5vKNzmRi1Z&VKil`$@wTTD@e+zAbIln<O&$M%+vTK
z2$W4TjOEIKpOGjYCW~xNPUJm7MZKv)7QX$r&rdqxUtV0w54<0iFvd1kL4oER$(EF3
zI2FUtm^fCqcV@z}m7^uw>-XdhNa$I<OOdOE8Eo<cK{DThX()ku$}VA+5VhW{%R9y(
z)7_yCt4}c0Jo&k_6SB_wL3tB2gC2!~y+&-R20r-OO!|Uvi+s+u<1czPZ+I3zm5;@6
zN3U6?XqIy~8V}yx!xo?VXTl<U_|?Xz(!(;DIl@pIR?_3J3N`o?@$DH<nm6_P4T7Z}
z*<RJOk`8cn1Ul;!nX{DbGxZiu@P>lZ6<dQ^=*l@Z`u=kMo~!<L)J_Nf4kKz|DYn-e
z!TB1<>?jW*SYp7Qgv_{t4}UG8=1f@uWUcH})YcV{4m3ZcIgX}>@1mCg;>ROAZ-whZ
zGAW+Bp!{NE9v)imh6fmWdj^;8XLDc_iPkITqikkft!ba8Yq35vH_6<iy-`~WpC2*W
ze_Y_cF@QUuDbxe!!#uWubNb{w?-;9wY0M^i&`l-pi*91H9{Zt4QpKg~rl&K0v$)~d
zFbHHPKnjM$`$ciaA9x^2A>DAXw`JJT++qyoDS&46{+S%KtIOU^b+7@|b_nr&`EQe^
z5`sT%!_)awHRCu?xtr@$F*g)ZqRzn7kk$-^rNQsYYE2wGd<xg0>D$WD@z3P>yHLWb
z54PF0LyX9UOSgXPnuHMozXs_q!~dd9zCl~uPj^H_c!!lEwbBBciL3%#BuB5<lOOs(
zC4Yzj_U{G3<~n>^(b(bDxkf0vgetO<mKrLi%|AuUMB{xKrRY62gPo?O8`x3TY!R$`
zdD@|xT7fQ>H=)~%2)FIisGv0hJfap2z&ugdFv*!c=eiv`I9^h5CQe%&4pj{mjo;KK
z+<&3K-8#ry4;luY9GD9L4>*NLJDLXI{^_Chmp_FM|M$dV63Snw;K1EF*jf)7Gshm(
znc7G>u@uVTz#!U3x(KJM4*Yp)VM|wNu*5`I;OjsXl+*15_ZT2pUNL6itr&8H`JkDq
zD4mLr1%NNiS*804ti5ea9*+b>7Nk`TR-_9PFw0<nOYa6Zbj$%;r{S%n?yN))2J2m0
z3V$*9<{t{-6B^d$LS7W{9PCV+j=`xAt)c3x;fmPgfG)G*wch&Off^(zlu;`F<fGLL
z{yB9mhJUAdo2mV`wL1XXp308jT*Qz$#&WRO`5nguS{~~T**^05m(pz~C^I{0nb|CZ
zG8Ryj%5v-8g8N@WLjdBg6!D+U)`*;2{Fe)m&i_3}G2y`2)=`C#*S=n2v6qBucb8we
zV-LWu%sLh+RqMeDEU0*uJikWTsKTyZ(@GoeCkCy0pu$AVA^;fgS=628xdx3bTXF+V
z1EKQMYDW%h%8N%p9px)H&^34zFucF!@x#P8+33Fa*Yi7h0ufpQ9s<AcSqNB@3yhl2
zJCm?I8=HPOXpUsj4V<Z5!?}C`A*MnIRlOjwf(&f|@4)Jb@DcaVOV-HjOMQ(nNN%bf
z4EAjbtHJIH#-)M&{hXTDaiQ)djfV7}-4*co^_Ti;oGfIRg-jO$+U~l?`3sT|Nnizw
zdMJN}VQt*^=wocgh8=6aWj9kZUU_PM9IMuk_CX$^0=2ZR8zJ`Y+10Y{=0*tnheEhw
zXO}DeDBsJw&rB}K(zPEC+vaW=u61RXK|>aBkgozMhFAPfM#F;Zp0c}T83JyF_zfmT
zP|u_d<&~<TA|6b?;7q^goj_;hrQX?F3GwoOriKW3nEV}kVw~*)r*VfKHO;$fr-5z_
z9ENtbN2=ioz$h=CFi-_h&e@w`#;J==D>3(f_tm*8ZSViuz=>j+I!pT14a(#drBY_m
zoQ<nVhKBE+`@!<r)ya4Fcx*sfvIk>V-2ZqJ#$A<4*Xivcyq;YG`78xZ#FMyqSe-|J
zszDV?pm(c{^TGY|Koc7lKhpX0#vxh=lA!;_=3<T;gdhMh7xynGmpWDxF)t57qg+Bm
z@5Qy_XVOED1F7+XtxR#uZ~WfS#LfM5_nU1gmSCR?*<&ytOXE88CQHVdGlMrYfCW5O
zhv;`I$Y2lXtQ>Ny+nPqsaJYw)U#nscca89(Q#L2qIt6;~(wl_D0+0kenwn|%kyV+O
z@_+c&7sF*R1Od-<aUsh%aKVHG(7F7#erlS()rPL+h}8H)IB4aE)&@i9%4ax#Dpj=V
zt_8bknYVcoE}OqJpB+Rz!-~OREJq#M5DyOqNj0+OBh88Y1e(V$^`Rq3?n>1CT%F^F
z{SS$>U+r%@iD$a`^~Ew<O?DJ01;h)PDBd&%)5r)Z^Xw+xpe^S1>8ZtL;?ma;)dP|!
zw5t_mQSF>XDj<u6BWzwFeLXmOpgAArtfp)c$9Y{1Ey}dBISve{oQ7T!`KDr?_<#HU
z3#7yTbv@oJs9E~5?lc_?yy5yQ)D<K8eB`4c^Ys3Lk^8SS3Ln~FTI04gIMy-YLd!+!
z4eO1Sk8?C%WIRV%O<7GD0((p-{EB*5&|?cqqHs<u1=U>Xqnm{&y-_K!ASB!WoUo9n
zzbDM^@EMj5U_RhmhzOA?@En2T_6mT76&`^RIo^qmwOY=9Zf{hFYpz5`S+&xahnt3u
zml^MXfTkN}N??P?4x=kavSnszj2<ln3amj4&LapT1SYIR!j~RXgZSU4CjVL-Vab6+
zM`!^JwW>S@oB{?MNXoZ((zUDU4fH%wdWk60xQix8ieQH<e}u@Kb%XAt;_W(mlMqZH
z%{cWT*@la}UU&t=my&u9A)LI0U#UxQi8iu-nfH(cQG*cBueEh;8O64c1pP=0^GX?)
z1nD;RqzUPl1nECS-ut}c*V_1~KmVZxBkl@4^YL%3Jm+fs^M*gyU=WB*H&6va=C*^B
zJ7k{_|A__y>4p(R)`b5`f0EC+znc3SEB@5BYJ7k03jSA~1o^Xv|CMdge*YN&^sgLJ
z_xIl2f8}(rKbhZu<z4C@e?0JiWn<t!R`y?+9p<kl|CRs0pYDwF1VO#N8^Ts>=|w18
zTC~5iLSJ$Zh@KeVH}>qfpq8|+p4}awLDD8)V)v<X4`Hi>oyDJ!ggJZBtBHzUouadr
zI>_T^ukP?odwP3bY9JWw2aMfvM{2gn+{|exwDcgXv9j14u|hyxKgsNLNPbXjXbxEm
znzr+fi2mSNbWU2h>DC))KvsCZ{ekZpUsybNcrYPdex5K`&OmCEc4j_`zywGd8B+y6
zsp@uQS$KfIx{SDP^Mv1_z4Tw<3Vfo4o7QUJDV)RDtFhzN!OfQgs+{Pv$8zO?J>dZE
zWaa5r=9aRHFKk{t9FUg&skr)>+4A$r3$%;!?sBEL=42eN<Yk8{vK@;{e(RrM2!GUP
zTgZNb>WS(3E_G{KnoCbRB^u3|gSKk8Q%U~CbG|(Wcioj#aPyE^!8R+wP!gRYMIy-U
zAqCI(^Rdq|<mPOG^#H3kLEfu&uE(tAYZ!^Y61o9jLz+Jz_)ZH)cdL^=8r}3ZsOY-R
z-XnietzGMUI@xR%Sz5SYpnQWto7^rG*wB!{=pyPyzov<o&oOY|?#&|1pXaifJb~`O
z$rFFQdV<Pbe|*(gvAD;y`sL{oqYh!2dUdfsd?CAGtnG}bec_vko6nY3VsAzVtV9@~
z-EO&O;_>bw#dJMu?QoFNUt{VnZt2nMpW$zRPIKL?IQ%P0+?_|h2zBPh)%Mw?vB+BY
zgrf^UF(6o#)o$&b+&z9I<LKoi39`7}$h)FY)f&HVR|k7;NmQkxPn*pac481DO#v=a
znN{-4@%EZz0lop4_lv2Qc=>T&KKO-1Tdt|A->3-;v{nkFvTtsz&%@c2sA;O?NVPyt
z9pfOTLHgY;TKXHi2m2`9BJ0iBhYaI!8FlFG8H*lIQx9PwtcWvHdsw^7rN5%_%}|5%
z&-NbuEEp&02%Rd+UGy{>rv-KDl9_BR6?AqbQ+8{Y-xT~4sSj`-`r^pE>YKwEV}N)}
z(kzS<A|hKo^}4n}l4Yi0^tb*pkbkn7zqWa?5ANxOuX?W%FlMPuYe&u|O?$QGdOfdX
zc;iI#&E7LY`hJ*lS;I&%YX@M)nJr~>&#<g>s(g(rt|%Vitzrg_fM6@Q8q>rpcYw$s
zb(!&fx6le&(cgW4BUUP_2W&&yLtPPTQF~#BVKW$hz+Z6A*5%B`9#v1eW}p@$--!t`
z^Vy1Wxsz)2``GqtjjsV8<^RliQk#tBSn}e)*bIm@X?b30wLFS~cK9xCZUtUl5gDui
z#gxVf!J*7zu?1Yw9s9ZNT{Hc#w!WXcG@II_xxIQIxBqDGF3%%>#?eN#y($#KnX~wk
z-^<GpypHsBgln{o*+PmF+iGf?t`9XBp7lm3hNtswnm{-Rzy5L6J5E#D5jMidtnwHX
zgdu$Bi5-K3{}Nj_JDL#X4`TPvD)F_+7>*UC#_wVR3*EC2d6Tz|ePAfKJ*BMI1k=`q
zXNbV+%Sx;mMlx$H5|z7`d3Zz~9vG@e^ljlpQSULKu_SWebxI1Swh@~OX3Rc2o$ANl
zAK)~<RFb__x<hs--c5>amDoyKdv^;I(1&bOn&x(^c_!bcZ@P=?+7X$X4!nX0*?_F1
z6t`~2Od78uZe^5gSCWB<l<v}l{<p~8bNgFAo~)%zGxC9!572d<@u_DNIWPPqM@DN+
zrz@Z(BLT(0iNr)hXZ5<;{(-HzDOHH%d6YE^u0${Oi`&sejF-ZZBGFf|6aBe!ltBFA
zipJ-QQ}Q;=foY4p4YM}f66(;~x&tJ%Wzr{2M1yM1&bR3m7K;)GTdBA*2<B+AB3T~_
zU`SPtb5na+hxy$qF5L8Spr^;AmjC0sCyhFZtnEAmHa;|Q0(!L~HJc^}LB`8})Kx+;
za7>8~@~^E;)3>+^K+pM+D!!%OJK$t4TgVq`z{@Bq>D$|Q{2t**Rb}JqS2v0e(%0n0
z??B0Sykns0)6)Z--3X25{Zzx)-uVeiq`hYJO^WvHAkawA?F~cQz<x6ywlndxI%jlX
z^xnQQM@@a<C)s99voxCb>LtCW$8U(>UmhJdVoyD0%ArZW6HkoY8bJ(g<TFP!+;JMO
zLTepNpqVCRjaBHvH==s_y?ESO;l0=N6lLG6k2|@Mw0X%QHR@2<hhn4tsTlu;(zrO4
z8Me-@Xia9Suylj6az*31dc0Zpx0Lf}Z+T29T&(TX%&^*A@-6qKm?5e)wiM0=G%9R<
z4c72c$1+wWBJOVgJ&$|2->KO9Lqt;V7g5<MO(cVtXlklXUx-`S`(U1e!G(6-I?Kui
zin^&%*eJS2sbjendS10#+=XBqk5{4B`W^bK&4^j}4)ISpk>MgmHlpz4hBgNQi1^~b
zO$>w1hinXGN^@<_KG?TX#Wl};y-`<~K#3EIYnHu3^j`lOfB@vpPTn7IPq7J#;L{uy
z*X{BI&+p#|Y%BG6vF50>mNBpF9Ed33U@@8h{ZNYXUxeUK<U#v8|L<R;|NkBSw@&bU
z5CuY_F!ncYVZ6MLbftipR~t-AE3$R3&{Sw#!krgUzVi?*Nh2^ER^s1Gn7>XppHg_;
zA2U);4cq=(#IFcb{+U`S$e#ntTf*VVZoI4Pak|#E+qBgj@$>5hPZdH5+7tXJ21zRC
z==Y}q{*-m<w#%iv87tlABO3UqHRV4)z)tzMVTv)QIcT)!rz$n%+sL^myrNZSn(PFQ
zSk=hW?Zqu&=iRzYZjpNg&57CJ*UOty#4*3im(e4~kXOk34LTEp2LDAUe&#<aOt1Kh
zd?CQFiD=EJY<j(`Hm`IYgdY{nUX5a>a2lh-n6+>IN?;9<wCYSLBa7DOvx07|iTJ=q
zznwjAu_&$X*n4)jpP6W~@4IJ!y-bPPf>Km#PLeL$JXla&lHUcQjI*z54#lQx`yJ!D
zA$F%WkA|;1_Ez`uw$7ce^9I2C80S#xcv0+Rpo?3(?C_TqeagQdxVrADQek)qN4V=2
z_DcV#dl_`r$?1l(y>b4W1VzU@_xybOsqIRU)dt|~vqy0ZW~0AqF?Mk@r%^AU-w$(d
zzKWY0mdgg;n7q<y$E{wz?)Uup?uCmLXO&lV*qCO_sON%T>%m|a{#1SV!O?y{=~Rjf
zBs_K2iUnXW?W@|3TC39Cz3$x4C(m^>+_%=5>Sfd3``~^MYpVH=+IIW?4#s`1o=KqA
zX^)(W$P%M>palfKsa2DL`x30*cHrOM*em={AMxc5EZ!9S;&p$*#T9;FwRz{NBk556
zE+!@bo%6I=mMtb9Mi>&3s|zaB;|J#6=ciRYD-R4tK?pr-4w6Gc{2Oo9z1DD(_xq3d
zfJe}Pr<e3T4g=@M$qwhs@kt(gm>8`qf?R&f&5TFPHG5@&U>U<vK5r$75pjv!<w@kM
z>_P|H^@-Rl;DH!YfR4U8zBeqiNh%nXQ}a^jkM7C<1vngFxf>HF^r`w%SwU-DXwoQD
z6fI)D!tV}mOzr!}ejO_jxoq1=>zVFZ4?=05-@8a%5of3oA;3`hsHR9rNDz>XW?`s(
z{M_4a+8+(b+8v=&je7JQyYsA=tlYDaCIor*TUORaW+u<C1YG+YkfV9n5*MR%X~oDG
zFf}_oLrs=~o>{_)hyNKe)J!4%Ct0@=C?J!KE%I$L^G|Cdg63#;#2U<&<D$nk{H#w>
zbL$Pz-}+r+%{yetgWFQ}#_04JE6b;4?Ew8trhIq87!A=_q57dzG@Bqs3U1zqXMJf5
z!C(JizbotR)cEVSzHL7p^|!Ts;&SENoI7(q|MkA|7d>uwWJYn`%;+F#I1bfmj>MX?
z4=9gL7WCl3Cq{reFNo#YOqJ}nE>B0F1nVxb%Y6<hE936e+MuUG+Jonkj8h^E`dXq*
zPIBHxKeo+Zd`g|5G0w6(Ed+Yc4tN8<yB@C}fbAn)l|0VAn^gIzj9<3UT|e@^m~fJT
z^m3E4|MH@NPx;3pHSND2BMXG2#mH1>N{b8Dnfb(25AH0J`;3SkUm#o;gJ<tnfP{s4
zXY+E>L;^(P7+5O8b0+z;U$XJAmnr}guedloYBPYz1}|bqN<!cAFIS?G0xUVcTi=cZ
zF4f8XzSM!%=&k)RPm-i`NAp9O#f#xy*nQ!u!zzGhGp}Z}q#R=ADDbS=u}sk`OLk5X
zbZTfa3suM@1E_0%`7gnF+?@JG+alXKJ_m?hv++EA4gm{2UXSz((}&}>_6;*o^TqcO
z-Zy0OxXXV!orI*tfBWP83iGy=#t@9brX@zksf84AZ0zP$1GdjWO&7SY+ht3@i8!hI
zzi#oaP6lnfzl@%rS#y_$gYI!+#|K;RuTNf4aBy%bXKN0BC)mdnCy@jKh9v2zp49b#
zg^OYrpogcb(sia6@wiZn^={w?W}rmDx~06dZ&C;v4PEyWfLJM`WZ;zrW6;O*RH`HC
zbg~3j{GDew`UAI}oEbYUy@Lj*kMf?-krK#e{wXH=CqzL!1t4wfW|j)wqeH@8?!xq!
z(apgt;&b(3u)xd3yXY-%{Z3WeSPZKHpBm@d^1)~uZww}U=mJ{ibEfCy`j71+nY*!J
zK&hu;ZDk-YEMOhX^<xpC6qA*x{1QM5V5&)@ouLB*C>mv7I7;83U|6md9-5n1^M0$w
zsA8jQo&%Mm9A>or9t^xKmd9udTA8xa)iZE^g~u4Sq%qrB)cp|+yE@cwjj(`Xjq;yt
zEaZ#$LByC3lAwQpyqFWUBNCY>=K_QE0W)ZUDc6KF>Z>OG0t`!TFvl~Pe1Y$1DTRyc
zRiFLCmdk?>8+o@JNaUT6@Wy^xk3!1e?Uv5P@sf6wS?<2Fxs80kf52`Q`WWPxAs_j(
z5t^K}dC6QfOQoUmHC)iqS~x4J69W~uGV*nr<ri4F!O%c#0kBE(gb_2J<ITVlKkx#Y
zC<N$YJbCUcjZfw)_Z#v_F6ctc^=F5Pfl_zs*ynM6IQR)llP(rm8z3(}4ztb|e=B9c
zIuunfN$cnOK1K3Bez%ag%P;_Ow`+1bUbHJ^C{I~uZd7dbn&gT)szCn)GV;9ZsHRwv
zTZH90yRZMr<R^3BxB_kz-lofHLG5#jaVS-FUeCsyYjaLY`n(b&bT>^lEo)d133qC-
z0Swxmy4U7hpr}Uk_QDPlj|CSzliNLKWL#Ircq^`{sxr>RsZ?5Moyl7Wm~fG(G9Ojc
zPSb*D@h^eC@teGxWKI!%hqL}UoyHuTgng2!+ws|7iJo1)i*ap=RQod8pQZQ*XsCJo
z!MSR~tE|ykPf2|%{?1c*i>KoONw2#K@%$2I@CQzv^A#1K6(OMR(Lcui(>({0z)Ivl
z9>KRTM{SH^SYq!v#?wNpE9gO<Yzkg1C93ZI;Yj>~*QfI$O|B}D*Vm0{fMeu*qt>^W
zn#!aAXR9L;BO3hM%RI^Ylz_N4C4}?WSS{EXhY85A?#COQ{Lf=6a0d%9EjrQrM17gT
z3&6%DGc9B5V=lF5B7=K0FX$^9S@%r;2!QMPqU}m8#g5W2@}5P9aqWvh!~t?(Or|H^
zF+GoBz{F(#;yv|9hhtI;v~7lR9YGbFsU_6*e5E=fuuC|`6-qF)A_ZclmMgt+=W`zF
zA?Q}1cGtPi{^C1Y<&=QYzc9>tMEo$g^!`%>;_g@E@88$h8DKz(O(n;uY`SSzaFZhs
z`jSN@I(G)<poz^dQmKzr;;PsT|2_X?ySwl@vrdenS%?B5XObnZzbgLmt07cGzW)~|
zvI732)&EvnyJ$bc|0ui}USj3>QH*u-*y5jO{WRx6V6P}iKT-qT0djm)GDcsY#9@YN
zi2uzhAqgsn;jmiEh~77ypHIW-o_Fu2Qa&7H+du8?>&`-Oc%ykY@qMCUZP5Pry)Rof
z(trZD*?d#JfyoBDT$Kufnb$6H^{s7Nua%mZr?(b6jvB$Y%BoruvoT6792Umh#Tqk3
zYOt@o_WuiSRjeoTWoZFYm)Np_)K9EbK2rw2NE3}D$9$W1eyd5HalLK3j}+KvyB?{q
zXP{!%$F{h_<A34^-h2^T|8F${np|we(?!uHG5~k5X>u+MVJCmzh>Tm#tVvhjO)FKN
zAXVFw@oYRS?}^V)LAc9&?`e(!rup2vzN_oGQSar(2c6IN2N*n)ec>id7}qBme2-wS
zo=2^=<;M#X5G7nVytjmkEcl*0M#)l9s=@Y8ZmO@%!A5Cwwfh-jE0|jDIFGlaUvGOZ
zoDXhcvWb<(XO9){4fn{TPS>U7CSXa0L@6&D60BBh15w^fH+M&}b9IRkaQ{c0sz>0|
zgE`-)>!GwMef%u%f?u*Zd_;P-=x+5d6Do&ub{FgsabdppXIQ-Ds<!$fu%>@s@r3k#
z^8uy7%bHl@mbrdO+jHfa@pI2c2ODDKxV@Frc2b){K0$8zsK`hLo}S4zyA84#^m--`
zv_HBY^`B!myUm^OoOAtDWRtjZjp?$ZysbdMowyV9+O0SeWvc5AJp^bQ4oV`gI3K~X
zCbAj7pY2`07&1OdaR!aFup&vXbHq>p{QnPFve5FWHG-m=$_&Hre0jD=oao&ZG)@(D
z2R8jRX_Q}~J@R=Q_ugO!f#(S^GuUa@M5~3tF&r0(Ke^rJtsfH2J6;Kw#;)LC%Eipu
zm6k&Q@$7bp!-^+ON~1?Nw&@mrkf<GTe&*gvh{_UpfbTW<>K~d<GH^Y#B)M{h!SBh7
zibBK+4rXqOr?#?^KOkDOvjm63q@|bgzZC`)JA8n8w(6d~WD*~4p?ZAHP>m-$1H~1}
zH#!5uJSJ+{*1o=iVjwz2C{rN-_=%3P5-b`|Cc7tT$$d`IrLsTS-w@DjUTTC;qql#g
zGwHMcYIxFmA;^uU{1yzJ0i~I`7aG}=z9~dSn=izq%S^7j+QVl3<vRz;d;9k8>}qEt
z=@F@_X+RKw$RgJcKIbsH=aT+pa3aF6&0s<+&9&HBK9Fk#ZRY7W*d-~~?Oj;=<(?nq
z^R??r@wXH-Z~64)xs%y!Idi(qcm}ze`pBS$;B`<(Gxz!>Gm9Fn+fZ=O{rL^+?Cv-g
z_k6P<T+6$IU)I=|6aLgc8oHPgTBY*GD1=Y0(pTMhX@<B`T{6A020YV<xz5q%r+-T8
z_BY@skM1cL?fkZ+@forJ_TXKaikPk0>Xx&}$<X4c-AE08NLba^PietuPa!UxGPHh%
z?^U`}Ox_x@zi*CyGBQ?PDWSCb#4zKsK_{i{<gCDz=9yoCT<nFdY|mf7r9PNC5FIA|
zWpy``tS>{xRpL#gu>&HtdZW`S^NX~=1`3$`-8ics{NFG+EtXHbpE~Qq-bq1E@Qd}O
z#ea-oiGA1v!`$ajPnT!Uos^y!>X9(9CjPv7oqsA<FdT%$3Nj<^C)I7)KBASPk}(>p
z!e=<ygrY9Qf4aZ!?1A_bij-AfC+uv)WK}^lmWJde?6bo=yyxhJc9-&~q6QVg<ZDWJ
z1AN>vl{=Zj$vIooa%as|w~pjNug?}TV<WqMt9pGnxgS{Z;c6iqHAG9wYvIPrSGz(5
z>g8Qmk>vb!&mmN{f>*gpTZPPbR7P{-BsdH@wv?#hHt`jDr?Z~@XsWJMJ6v9vFWk<s
zCf!f?9}}@G(YKF#Q%uxflB}dDwk6oUbD<3ul8iBlv7wT0R`n0O<DUwVyXC!gj|!dc
zJiPrLQ_ClLVlG!~QSq)bkDnClB|1|P3#Pwz-d!Q43Sjb%biHLRe~Jl+5U}<{LfTQ1
z5_R}!T)cE5?y4)$&v(TA&g8bWW!0bH;u}4+7L%d;hGIb|qEH2(!qH5ZqahpFcqb8U
z8q)9a8OmO9!FA7S|6TJfs3oT39x3W@lRwT^CSRCiZ?2TV$qBl!pQXRzm(*p;U2<v6
zx9BdIu|p#E#*47HI6TE&{C>-jp@uWa_786Pv0ZVUJE$AcT1vaK)!1&HzU#^hU$cq4
z<88*Mim$X>JGcRJdg;q)+jkuev!}~Y#T|u5kG6D$qr`8UtT<QdwB!e-1|M&zH}10O
zUvdL-2wiJeeN9d@5sjSVreBC%?+~@OlvSl@L{XMmgxSKN77+*WIG-uY3uok%yo%91
z+-^IkMld84`{&QTfVF5{k%7*=Gv*t$!Nvj&%F3BAGOwqO@Uu-Q9H}dT4}uRHo5ooi
zeS~sMs^u;dmLh%jFxf7c_O8xd>0qO88(f&OI&4ac-_@{rh-fKW^zp&H+uNcGWIi~L
zDRSA3fJML7B}#<(b&7ZiI^K3q&4Tr5@}IXo;Hx$zQjDSjV>1Eura={vV2ZbHyQ;J#
zMceDvXxKQZ8?s_;Xv=FS)1!>TA5X|p=i(xHsmv06kQfYj)~aMbhrFb4?+9X>e65pS
zmnmgu7~3OiJMh1MRKf8_^MH(H?Jq;2M)POwW;}ux@Ppoz9z>Z*ke+2tg{-A1$;+(C
zy}xmXc!!`%h*NT`vFckc`1RszlT~#8667gM2Wx2C12p;P)qo{bv2QQiq4Zd$0<4R4
zN4WV`U#-PC6a9nyYF->t=T{_S8@NAnyfDhiMpk%|nkOKr&@M`IE+Z$3=9azD#S@+8
z;j8@lX>x78qH(m^$i~dV{^bHhDws<T9j4nKIpC_%#U8f6Z9px_ARsN%f75{ABIgu1
z#joQ)%JRO1vb|~T(&cE%tIrTe?n*e<Y=>fkZnV_S5q74!$?6c2s04@KFu4{pw(E2Y
zjBg+H!z7$E#fK12exo3pAW-$vPP`!cnDz`{3nyk^k+_Wh3!c%=!NJ{gFkA7P3_@rA
zigP{iq@_gP5mWmlSPPqSo$`p+LA%h~_xCq>IG}p}Sp24)a*gsd^`1F$=@uqqaS(32
zSOdo-f42#+-6z)8VuXYrKlBau;v}nZ@k(a~zEhOFeRq!DHdhqdy;N>z-9cV7)G@nM
zZeQaak00{8aq`Kn?|bL^QrrA$JC=~73wZt-F5uGh=TvCj1#28S1eEh;iujAl-yRqn
zB$*}GKE~FbtJ=w;<-%Zy=k4^}a6V(1f&sBMJ9R+Zy{??A$Ak^&gCKO*k#$a9A>OSF
z#h-zca9e=)R5;fjRRNB4vK*0~Ma~Vr(nZO0X@Q?Q1@=Sy(|^(XUz8jyH>66$Wj4iN
zz7c`V7fk-XY3}cs${b)wh6SE)y;D1V8U<Wkxl@8T<9R|_wZ=B%<K<*e2MCu4Ui2XB
zegDF1L&xhq-3$+T%Ow7BhPjJ8rPeW=F0FSji}OsA$XJHn>D(b<vxaL>6;<N0)d*EN
z$hQ170+Ad^@Vvzm8A2<5uI3I|ra{*W;hewUgn7;$3ubiziOCQ;J$uBCk)XIoFg>ek
zXQBmJ!9`l*JxPaRo^;y@4B@~o6cEE|&ABF<2!O>G-Qx<{v%U9}NyM<d<V<P3JY&B;
zDMO*)pU32hyk->_vSiqq0|1>)np$in1sdJ=&#XwL6lNpf3w|`ZMSU^*Mrdkix_5}V
zd{IBrYI-|mk5t0>a=#B}a>W!=BbNej&*vSO&1ClaXGz$lO(YlDtbeQI19L)i_d@O|
zI#qBe&G5_*+nWu8KP^^-q&=;#9Q=I8Ba^hSJ^TFjIk?4sy<-+up6PO*DH0$FAINfe
zS1uCbDF^C6h9;*AE=NC)FKM6=81RBTGF+<*+Y&tNE35x;X&75qA7)ADzFmFK;#4&(
za&sx!-yw^b&K=knEVZ!oacIETvs_Fk)79Q{nQ*ebm~lM=D8_9|TLxS%;G|)t$xWCJ
zX0%DDG8B+4A~zioLBlw*J0y$j;dKnZ8=bgXRvorhbw&!4;dIZ}0?WKg@BjK~Q+6a^
z+lbestE%91lznII1F&Mgc~N#U;dJnQ1SVIt)z&Y(UgnSAjI@!<W2e)m`D;pM4xpkD
zSfLhZgF9e%EA|KGHa;xAEqSYUPesA(U5eQW^(1>I(@&_ZNkAmF@1K`KmzNv9Dl}`;
zj@QWJyy`Q&{i%=WS3g}KwALDO&iuFR$IW)Shd@o=jumPtuQVFk$q&2kft(#I1<RZ^
zFn{jgsthKiZ>E{vNjjXdM?NSAA)305r7U~VXW`WQ93b9hV##bxR+w()vShq&4b|B<
z#!;}<2!u!$>LM>f9gRB@4;*Cc<(yw<8EB;L$hYmTL_QcWbCAJIPt%iK<z<hfVh1xN
zxzl)I-poKHOBw!>)$%SE72Cp+ZUG~gC8nZ9#b&!QD`X-kalXnzNidi5@;eWRGYQ2O
zlcoWYitoS7>+iwF#wF*mym5#mb+wlocrP#{6I-i?s_;_Pl$|ImlqB=KsM<e712Ck?
zwXf}6*#3^E38pvKop?>VcQIb?1DTqNPL%dKM;et<sW$j+PYu>lx0XW3c7`<TjMHlX
zR>2%KkNY;gWbW%<s*Ak}Ty(!cj5pFB7Q|u<6WS)byV?xKx@6H@k#O7R{oAYdTeTcs
zo4-dHo0AOmaqmr3J&F6-YFH~xI2jEk-dnZNvYeP{Bjyk|_w}`{2*p%BJrjC$Uxhr(
z_{<o43IL?Sr+wo~0c{!@ea#+PZ!|l982t&&($;PkK=YGdzVqdFwz<^KO*xSXHky8T
zwYD-h{V>kJdV_DLr16&}PuVQs=tSJq$jlIE8gD6Rg8t$yFiy?TC*`&|OI#ejzpW=_
zK(;;(Tbv^`5EV{xP(4<Eyg4W+XHn^Cv}DSP@Ia1Jr8~9G|D0LFLJOC_>~dLCv%xfT
zNZ{m#8wD-ZM<HxapWNPN$fc*PIrX&j)edVeZ)C35_GZx+pt#NrAJ=|C4*!6q#}_QP
zK|c=lM$r;)oTlobt<ss1AXJiv@5J`?E$MIJxU>;@HdFM9eA3~M&m$A7hbaJQJE9aJ
zLtFeQX!^RpJy%8P7KoFFN58#nK;MA9FtiAX<+QwNnx7H1^owF_lKrdIe4^;xVd)3l
zgjwJz8o_KBLxK`iyNL=liLmkPe7Q-O0+MEp^MG8ewClnIOdW-)AVWGdp&BFkNL4Hm
zgfr}5VZhH<lAa>%xs#gnCN4UvFiGThuFasfDwwc^u-)zGSZ$K6MUZi2Lgd9<P3p$U
zV^q|M8K?^SqESJ@$lG@u8yn#&O%t@5FX4OHKBZ*U18b_(LZ$hJ9@M-HDq4S|JzKM*
zFg%(sa<_tz@&u;pdJM6QwoS5T7le^BZ{n8#8WB<KbHBp5)|V1yWfb$DoJ4X8hN_2x
z#P8QUJQon(U$@2T`x|g{o?up7Wmt-Ag%!=`<zzaTL;!d%fyPlSD(UV<1ZAhUDH<$9
ztj7`1i?y*~d-?484ssN9!zFg>5)@N(J=@zL#47Dd3O+CQ;3}gqw{mCfxmd+HmpM4u
z<mieCQ)XD?VbDtU7E!7+-YlikcR1j@Ki3d?*_v71%1ywXE#|owh}{A$$KB%BiOJqU
z+8Gj=hX`Deg8`P;r>i*VZQss8?)N`Xy~T;>E8pA8J#yN=h3kh;7TZ8+5&f<GgizUN
zr;Q_z+Qh5$8%E*M5d}0ksS0yF%Av-V8+7|z88BE}a30!PV(<5);0+UfDk*ZJqkkHg
z!Du=+jJ2SdCv^@A%fpj$@kW4W*FH7w?)%QfhL<RTrj2^4N>{O?D~_mq=Xr@gw-=>X
zDR`DM?~ZdR=$P`g&ZB4|UvBgaG;%Dp$m0Z5t7d2GLzMbcz0O*Ur=lwI^Mqx&3;!r0
zR1cV0frHLtP~+D@axAIkg@AQZ_M=BH^B?<gV>*!6PUSz{9U&&x(G4X#6Sr&f6ux|P
zWoO0}{UFFA|1f|r++_@7o%mrUc{)(1<dR&^Vja_%gO<rnhP+4@ym8kwpB@DIZta(z
zFb<Y1HHm?XGF<90F$k=cpry&4bw(MD%*UaETr8r2!Z!y^PFJhz;3T>;zpL$pk#Rv^
zpakW{(X1zzvkslzH@E_4ZVRju*AUdI%D(VYzxv9ebG+;!wMat!-R{OHx38v;_!R7Y
z%oi+6UQS>5rY-o;S*Q4DOL%^H5M^{XTAr?+;qtH*1?L6UJ_c?j#d%M=i$SD_D4#^x
zSwMwbw(_vO++)imJj#xmv_<qUB-X6S=1`+rru=#fMIiKmf|3EO?0uM(YZ8z58SJt3
zIUjjn1{p=(xcm&Rp9i|IiK!({2*yF;gO@h#q{{GqduodL6&s_B|Mdt*8HBm|ZF?<;
z=yWG?Uj_Nw%<R{Jffe$pgIQQ4Kd{5`hCsFR&mx>KZgBU=+4_Jmf+1GN8|X57Cou{1
zAlb5445e<?Wc7+P-LMVe80Eb4Ves3Z?#PIzp<#Zfi;0{Qp2KThX?ErDM+VuhOG7In
zz$o{=8`t;6jNe+B@#_?Sz(1m1WvNDmw|nD_5y;?G?{2j4PDX+A@i#mT&GaGJbWc{X
zf@grJGZdIoB%^YNDM(FrYGI@y^bIYQ=+n8e;dppX>iihp_Rp*0Dg}u*R&ZcMSK@|7
z7td=4svE$Dux=Z*Gf55)n|5Cq5Gi=g%vwmigH)^G{JG}PH<|5o>L)oi$(}K4)9_M0
zDkQFg)~MY;sY6F#d<B0W39)mb2Xo8-j?i262*n6bngL%(k%@Z^b0;9oe>8{vC6<uh
zCtAJu>j_<Pqo$?ZtR&NKa}!BY<>vs2id?#l)pULCC7o*I!8|?gmaJ`s_Izmq-(!uy
zbnQswSbvM7Gmb*uaND#J)lp+~87CdprV6(iKqFb;M7k!m_7A$*?>z>m6(I;oAS8X?
zeE$;g=qdAIN$NcjCuFHJwL`-C?ZG7|@k2|lL18pj6}fGn{Y5m<mhhdwcZg*`K}E#$
zTqj+s)O{~ZSDMiE#A2T3X=b0o+Cd#yI2aAN&I-Y(6v|so_IJGj>phmt-cXiMRh{l+
z6oKggbr?+9y+AD<nPuNrfTMeYQAKz)8a~m-HvA~)ltnJdr-+%F4wg*1Qcdeo3>ePm
zo6P|IUV9fuZGYyrHj@cUH*f)ULi)v(t$~g(8`Is6a6bgEK!@#>9_{c@dR^Lhb8HyA
zl}}=QV*m3{3D>8&AET<xcCd~t1SReJ=M{QMIpgi8TN)rk6p7L4M<Xlc;x2J5n}?J|
zBUEr9GGy4jurbAuf}LNvvi&gS+%)_Y!Jrd6Kj>CoWgU`K3yQG!R8IYUohpTj=k+-g
zypA;lvpvUQIX7|nCSS_`qvoxm;tJZe!6XFN;7)+x?he7--K7cc?j*RoySuv+q;Yp`
z+_jO$VOG9#&dm9*=3=hq`rWnH+Er^;z4cg$u)JkjffOi7Y9*Uwe#t8==n6!^@QlNH
z8eK4|8pv{y3Cy`qT_U8#OzgfSS9uotSx6NkD$VQZjjCb<-z6njSz?^eEeK=%F~oi1
zmS{f9O!Ah38|n>D4EZJu;jQvyDSG3LOp>E3)yZ%(!J#l#oa@RZfw}m>qig1PE(HwG
zT3qs7633oUv8mwUOjV`gU`g!t{oL*zRdUjnpC-?<e*u!SOIyY&QWqr{rxhC)_-U{T
z_j>#By;KT{U1kqre8QP_BLLfG<ll3<HvFRLZcs4HLXEEABbm>S`XAu5%|^yFkdl>A
z1P=TmAtm(~J@w_&_<GT2=KtXA;b<S98GSA995CjDyfUNaWV;xY&(N>`s-1Hx99-}8
zN7_^w*}M}nkhRn~gK}|Dw8B4NG7p0UT~JGMOXK6{C1w7>=etR5Z3C%I*?0da&5yj8
zX{N4OZM5Bt)#n4*l@to4B+Y=5+rQPe?u3eVWG!-?`z^hehYktLcKMFAf4GM~r1r`e
z{q5!_c9K6Tk5{RVmi^~T(jRtK+~8s)d#Q8+{)=MN6!W@+Cw(`JC-xQDut4CvC;8r`
zOK?tvl$Xw2Y)b)-B^e#*(nxH`KAmk%&c0oej{Pqpz;XWH2sqN9N7OlLzDHzb*xvS<
z7y2!MM261VJ;wh6KHEOq9anVzFQ`210~!ARP?#dd{rumW(biAth5tzGPufAE|3e{s
zWc-_f|4lahzi<)%zb!k6LitwA;@SHP@e?6YbFq^DKVL1fv2XV?Z#ra+NaD61r?(!Q
zt3L5@sEb_-8Vt!5Iy~vr-7fBZ=RwCQX@l%ktIK*8SOSIXE!m>6dMEQL_mHRln+5#$
zM(*i*<jQj5CjT3N8D!*Od37H5ZqScahC_+y+8&hpLfJLim4leZ?}?%uymml!MJU`m
z3&2~eq`3FVW=Xq|iryTkU;=GNPNr+s(%yPy$QumKbPuFM%%9YYT~=M<`CA@ghhR>o
zyjIaakRLYRSXff58+EI>b0+CNzEf2f9LkOIX*bIZgXgRph5jER$nl^C5GzRZN7V2r
z*=@Fq+X{W_N};f<i#5%hfkFsuD42QusnIFq8gknW?wZJ=xy<%(yKLoO79CEh%>lfQ
z7;o^sdkPx5hwYuTYvS!gMeVrQoCRL)>Kc%n74+hd=LrWYd=T8M#185gekb{KAgKib
zYrd-D9XC=|AIz`%quKX_ykLr`vCf$EbJ1(F#y*6=Z2YyJ4n7G8z1`^#rcZx?o3z(b
zw1Ivp0X!au+CSaZx3n4D6QX&Eg!c5g3;9mnftue9<xDD{L45>>I1MiEs!eQqr=>P0
z?Dvu>j8Eaqu#Y1P1Y8L{EPK5Mf9HZ5+iF4n7qpIS$`0qxNQf!)raMufHrc{|d(5Ex
zdB+>SYF5Yf3@%rSykC|8a*jC=)_3IfMo_}X5w{q;_j)%eW#jLe#Antc5eco@-aBg8
z)p?}iJ+(UP_38q%T61{vVqhi;DX%l2mn`7YeAV1aD^2l}9z<<r^OL5;B9$P|HZT|`
z=)iOF_k%hZ`sAgMHumVpP<B?KlJ#x81={|mUxa+`$ak>J$UCXEwT^&}s)uA;pG3l#
z^Kt$@e>AGM5Lvhef7MY}3j&1oxm84<{5$hbp&^(tWPPjG_7J~rd2UH+yTvN#@r#(^
zt(4W%!uymrIic-d(jb>5RNr&)-gJR_QfAjf<oQWhcKChbdC$#_zdNT63^>8N6tSG+
z#O}H0t<1VQScQkO&|Xh@T|xG_Kdq$a)zSmENA431zfb7!#V5hLUqkHJLLf}_hqeR;
z7lP6E%k8R#Xsu*G#yG}-E90M?4zK!1Nk^rQ^j>^tDGcWG;4@6+<)_)h7&mSbgYk~Q
zCp|yIQvzA@qoBfQ1~2oM@fVR!qjoGCLZW)MwY_tXQRP}XGYrmvWy21rPGtL=J56QG
zO`Bw<nz#UGG1O-<?7F9A+aHGai6faw^~i~bg5t2570MiR>6Hctv-T!+pCYWGU}Es3
zw+>w$lo6zP>f*(naT++PZ=TB@3KnNrqK-jm{;-Jc;mTESU|qkMvG!-!t`Fe|bBt%#
zd#Zyg^>ZFiTPEBHYuy}=7kHhb>7%FAROjxVg#XYp_cgkq(CZrA7T!KIk$^F3+12UG
zGz&MPQ4y#rD%5)CkI!zvB4gT({?`Mb%gO5XoPQHu=6q`?Y$*2hPVPBfce5%Ok2yQF
z(-b^e=stJW(uw;p7F#70C*t|UXcnE;U%OgdmAw{o$e_b=JwQFdJ##v`+BLg8(SUOW
z*xsJ)Y7!~@AjrM;aDJJmITMv+DRzf(&LJGin`K))<;+^{c}W?5ecx$@g=I0_C?!NB
znZA8k?7cDIdp_i6E$4X=BAnKDkKWrGAdT`iCvLn_e!72B-r%`|$3AQZ+$0GvX#A0#
z=tSGaSI)Ayonfbh*vtG*46nK)oPac2%;Y0~hMCv?%r#k|-}ouZHj&Tc8bo>*<I>ZW
zqn!aEc_gh?t~&q>#o~>(aV;f!;w8K6IAyK~xuZYCdWIeO2|C)2msW~?z&>MGtPK<Z
zXSuZF6h%ABZ(c|WpJ#sUzabH9gsf?9!e6cF6Vz}3`|zmLg&Q&B(-TCTWDrJa%8QQF
z1*O%j9oG{To$W)vXUVEaPjIM|J`wRhO(^w8fASIuku#plJN&w`pO~f>B&tLZqUamJ
zS5siZanY+&$}935Wp+2?$9~%ZX}!|9<UIWFg3})~8oIkq$@zDB4$ANI-XE)i;qOY1
zN61*Kjbijil3uWLJo#L)YNNDWpQraiP3k-OK1u%KYEN}&E$)Ct+gAEJJ3ym(KOkq$
zUN9hMtbomvj_t&X!J{_-iBL5UL3IG^RkCT<br(oVo%U-!)r}&UZOjMPLaGYBDkc5U
zn0Sw2aMbu7ZJ$bHG()cK^8sRoV10S*?-IH?YOF&eOv1fk(lUc$D5)|!D^m5hHht%h
z=i6FSo_#?HP7^1ob8&~!FapL_;w_%Jx%q)vtN~+x#Qe0{(r1~1F^WP>Gb4`#K4?!>
z;2ghoe9z!?60grOz0Xv<J?KH7;n~L7moU!4<DM^^u)!IMD<vtlR~0&!RSnm9AvdI7
z8!tb?_o_8R!siLPl>g$$mK2{{7ke*zczc#3M^DY|mOZwNaoXs-q~`a~mg?xvIqdym
zQ({{^{aCN>pz6{V>k$hi&+{3lm*{N`cILY{?b3C+8X!MW-hygCxm`XL8=Gp^plSK+
zLd+S!w<fuLRZz%%0k`g#JFIvXqg?a{R7xQ#xh0+&((E{&8lM?I*vBybXgq7j%EA2D
zVtO6Mcd|i^rU*+t6=r^vF#TkcNKS6v-G5PH=yBOC#w*~0x+xN={eJGE0j;=m7Cxz5
z(7O|_xfE9&!fLfdhvcv}F?>Z>d~*D!sT?3H{ECh3_s(#pn09T;l`+hyb(ziXb?02-
z+PL>vV4mJ_{1sbGkKBF_WZZ3`J&mF3OdS5g1wQM_UCq*iDLrfb{L<r<&G1LGz0w!g
zAVfsr{5hM)@MEYi;FjrhXasZzzm#~ptkbe@aa43mxgHSe=>CGH*Q~eO%D59*oZf^l
z5V4-|3@}WYdgs`>J?Zb>xA-mpee<$CGDkiDeCq_9%20HgpiG(2A53A#z#8}~WUf<+
zF_C^lRKhpR(&S5&(CZzbSvWPB{%6gX^7bZB-f?WBf0#|scu$%@#GYWh?GHowo|4EM
zWNXEYL42TQ?8vHu3d1kZjP(p;B=hc>8Y;LZoz9q0-)NYZTPm^|v&w%5kw94de(8C|
z5%T!!_9d!RYoG0;;p~3b^)t0X5QKQF4#WWe;M}K_BYTtYI`MRkgMw+j*gDXwI%{RK
zmptrXf}ud~kyz{og}X>j=zb<$@cx)GjUyRvO)_*58)dH5_F4So@4^$&U#9@^Y5wv4
zuZS>P8c6N#-}UjKx9#Z3+3Zj&ab8F4VQ*+J?W3Acygs-?ToL+!NkctC@A-8r2nrkq
zwiQ_;SVzMbYgb(_wltd(kP>MIT^W@^?YE0o8`sW6*w7ZL1$_!3V***h+<~>dUsxp7
ziy=D$FLPuIB=%geNd+!3HoAT8LN?#?ClU?jxAu3;Q1)%#!$wJLD3@`E%32Lfe)lE^
z<r<nizpgaa&_yJ&DbQ-EE?-0Tp^xOn3lNXRYM<Sd8ZwzmdnOHm_ia}fsd!qQux}Y3
z{X6>i$Ft;U<n2|t9LcMl`M|;}uuZFy-5Jr;m9q(VErw3>@VjPA?%L3<Tw?q@-i81=
zi74r?``gsU{Dpj9_vp_{yqS>a&w_1yC)ATs=F22P;LR&Z>Y0j8kY7JkqY2z8Ulyr8
zS^3#ncw}^V*52%E`!-+7<z!8l|Kbj)Oo%+hrPwo!OQD0cLE+pSs40{%XGMtm@E}@B
zd*}a)_>HCU<80XTB$mD{$<4Em|AMM+TI%v_Ilv19(TZ%47Qmj&c-m@&XyM^~RQ-CG
z8MgG*MGaV<>}{C`{^#c8f7o$<+^EB$rVqSa&>_NGVhgK)Dzq7}-@D|@Df?Y;s#Kja
z4!1_5=ZgwOS59XJUIn*wb=&Y5c5{d1<TG+;#Od$_b%g8@a;te9p44iHO}u+V_1)8Y
zPkm0=8_eZa$B&-dMW@FbmZr@gvo6l#Qh76CVS_ys?5{H(Q26kEJUbryPLg*J@9;XI
zgjHRXhVG0ooH(^{s3R*&Jx{=_rvM5@TMkK)ROrFNq&nrW{#}b~L_<cwd6H$+E2GrQ
zf&@oT#X*5O*^a^x%0HCmra=9BcP5R6NpP|ba_>N^K*m}B^{5Ud$^+s_Y_aQ5f)ipQ
z8~AM+eC}%t@35q*q7{{$_~(Z8Q}k<_ZPkaffWLUDGsvDt-xfyBE8w%dk7M1wW5Y`J
z6!|lnUh{m^uEa3>G<fAg-eDXxo@?C_XNn<w6<TuZp{a-ojJDe&Hg~A}c_+>H=shkx
zr|#dsS&eCx$IWrnhePG)9;&o4VL3=N{`dSevgUDuu(HD6JjcWC%NxFjaVe&<mM9lD
zFduoZbW2>y6Q2f}m%qP*#cxdMlmLs6v3cWnJ_s$x`%<t&(#uFeKtd#k!Bux_RF#c5
zAFvqSg-I?y%s)MFp*JckM`q|s(KaB!&(rmJ=vHO%+gt<Qr3|SuABu{b#!xgn5nDE_
z?pk7YLLd+nd3}iretuEK!!@PksQ#4oYAI;SKajbi=2Oyz`SRCcLpE`x*At^t<^C&s
zZy;69xj&>?4`<?Hnt!~l=H7u##Ml_jBao`bzb-I%2b;00;_;gV^coe7r$MM2V|<zx
z6V!G>Jvkv9-WJ)Zo4a}2dFVAK6&pc0Sztsm``d`9%<r36o3Lj(o@h5*z<r(vXWpM$
z6b64G@4X34rP@>#9A2v}!C)McbNTr-i5v7?Df+tnl*r@_mFhz`k9tmnV&cG1{>efj
z!V#INf{oeO6nCM~!c74so9z1KG3L)16xn6HOSebQ7ld?m1>Ee$6NrkAn(I1AgRhgP
zy@2|!t|kjjG)QnWpCwLX)A|d$$*x&b5)&;c^R|>a9`)XFT52>5b22t^e>bSjMY^<o
zZ8AM>yt)}0sCJx^r&u?Ql(fJh_NapuOonbu!7anOjO4gLTj#VrY6FH!bPt2?t{srp
zq~Bl7NN2^j*WA7iWN@ptepuMuYO+whPiYDb=R92hbaWb${=8U@M_$@HB0DY67YLQH
zXZ=;F4i#ZY6M7u{MmRE`$DiZN@?;SqaNmDwbd5l^A}-7Z{N`JS+hl@r83`;ZZwn3H
z^)+Z-@HtnU<-#8n-Q=f{lPOfXk{QvykT3j-+7ESaO0)?qnUth)Lo8iCrirptpTBQ`
ztJDZsr3msufgZftoER#zITtl#sdM-rEx;P9&CP(zL)l}I{G(D%t{>_qfrqHsmwFls
z?&npN9P7c=C6RQj85!w~=08Fo8-Fj0<{}Nftw$2k{csYAj}?l%NnttP$1efmZ9z*z
zEp59Nmg34bLRuj@m3RziBZP7PTDHku-uvUm1Y&~NdT+q%qW+IlsN=T@TtZc1a|O9?
z5waM>Y44cddZSEfVEQv9;xJz3DNuhkm{G;+oyv79kt|e8r!H11mhw686<~>hH!<8B
z_`BGkLSpt$t|VFS8pHV^Z#+VS6=iPJqRC~2W-I`~R(g#yXn!@0+7O=SPs{*8e=04j
zvMAZne{FMpmeC?=r6tD+r-)r{e<+d3>f<^(cI}$%vvzM7R?<G!L|RK6z>LdF{v$3l
zb5)gTg5-W{fV=rZk;{;1X&<ZWc_NmOkqwRChteJezUbvI$}4(v%G{VsR(JII>pRxr
zyK7Js8Jot%_euhnqWIXHiHpcbo0H($+>XB}F379_Pq>i=S$zc_7&Y0HEN9>)ZVkJ_
zXZM4cr5dHCz^6ukQ$=`Ol*+DWQ}YZr+wftbS#F*a<+?au7joI73({)2&_1KSpaAbq
zKNrYcesT3-bm<YgenI}qiZOtZM-_utaRWi~wvVs3;Y^J27q&xLjUQI>0#+@Ht1v%y
zD<ePK**BfV)1Rf+Pd@Etb{q$S56Y1Ylh600BNF5<wc7mmCyWT{B+tFqC;<ExGo@Hw
z8-py5XYP|K$w#|2IgOIQt-qS-91X;F`S~7|FVYn{^$~o1eRgFj<b#x1IPX8r1tzl0
z%^P^f;}ui|_rp0+aBr8{oNt!T=^o6lt*;#H1<X%jJPR)6hboF2Zw^AA^yhyn&wAhg
z8j>swN2*dx8(>X9P@u4lY~5o?>ETICo-N<cq^B0dvbQv2<3yIYJ|9%@$i&ck2f@C&
zbrCw`X)iCe(crg#_>JvrXO1qyvh7Z$Z(w=g-QQVbD)T^HKa?p#2@#clyDyg~^Z(G7
zTPDsIdpwbXv-=sRP`JM>h?1P^h3<)WkKj<>K@DH3_`!TmLuz&DV)h;%15M=S#w%0B
z(JH#wYd>l0GjKY8g#XL?(drb|W{eAs_r}$LKr2%sTW7b$k0TNXcBaCWS)oMh{qY8|
zC7o7qZ>dp8zgt}nHWfUYCBJV;+c{PO-nbxju`~?DDxY#W*^i7tFE~^H9Fm-DugBtD
zMHloPfF@~potAq0itJI0;E9L$?2#z{=Am&tKpW_!$Jm~Q``oxtWu3ub<b}FmShRoK
zfXF`zEb$`>2J-h3eV#n5yU6;%DyZ=Z5Gq3kyJ6kJvw6S<q8RUTpOLi5Q);in;}<UF
z2+(hXStY&Gxi)E_b#z8^p>H6Q2V}B$wv#(w^{+~tVm?fsa-3lpmZsi@-V9IscG0I|
zXiT*niG!ynOen^wnl|b<71z+`j2MB^+Fx2RH}iMtuQ@Qyu)Sk14?$UrAQ_17z}_A^
zyS%V+G&|!<9FA8z8u3nS$J=rFT(*C=IJw;p`w-*I3?{TXi5Nte4NrwCY2>@WS;HOs
z*>dD3DDx=}WF$8?C6$1aP^_R9TNxt2XXWu8Qw2GoevwY+14Zk&^KFs!DzYSW)2<q%
z>OFk1{z(fNMosm=H&0`tenqW{!5RbIG&Vu$nuKVH{-2$(qGsKM@K>kiP3lWzlvQV1
zdM3{8SQRtqY2O{j{8xcjdwlbaYf06}r|I{Nt=_C=3>1B@?-Na-$RF4@khu7!=X-`0
zeGBebvwqVrfwNkxAE-*ca8-c71T9xlHlEPs+s#UXN8c@azjW@jl3POnfkqX6sW-(J
zt%MkKO+PMVazbT=tc;1xKO-T+X}dV_9(z=E6-$#@?xc3e_)p$FfafIN4Nec{R(F)b
zb>Hc^mieo$+nd;PKCG-hnZx&PLaxvIiD^lZOA`cveZK=D{EcjpA|!Tp-UgFDr*RXz
z#%1-ng3B<%dQo<1RT~Hm#}#`?zF)9T+b?!v8_;ScJ~Z5l0hvy_pk{w)>CD$T5%^ww
zvZ~DEZrP33uAX}C0s^scR93spP+J8S0=C~(pUPy>JC_*%ebbpz%;gIed!Yui)KROG
zeF+hC2^tzIV5s|rTioiPY@z9+t;e}B9IG@A89K^K2NU2-_l78;RMQM?|2GnQZ%mnr
zj}2|;2eP~v0R(K5LI7<5a!R7ug<{`Y9iyM?nbANx6PmRNrnjPo+U4lJ+E|m<$}uwT
z)MUwNNNHw-*%;aF7er?5#0Tf^x=__=N&9+LD}ad2>3sCxNC_(Av!{5o1TNISPeEzI
zg_kAXi5(t%_)5uRL>YIuQxW<)qibzxz|I5(R7?KEW~IxV<KWup<fLC)%=Z4j?Clq!
z3`w9O%yzG11hD2U(_%1unNvysFs2$PmSl?oF=ty<ZOO>Hq$7}ob9;j?{Et+7hl#|3
zJQL8qg~U5SE~E2<*n~G^YnElp5P{o@L^xRV;pd=CWzSsW{G!1x$5u9>Ly^snSPIQ@
zvNzviuq}S_fMH`)T+E3GyM4hLq(`qdP_%x3npvn3to8-EZl46yLGuo7t`e>{{~Ryl
zj&7F~6W&99kWw8>rK5mw4Mn;=sk``y(6sW=B5l&&Y6TCug9u3_KN2mWak}$wB$WGT
zs+bBdFT^9gdbkN(vnq5V4Gi(fTH_i{2~t}8v*V3FFD%jj_z(;QhRQIdLErY+dsyuv
zAO)xIXAqUGKl$YlFQe3!w9Ya(V0<iG&nT-W)1p!^)n!*?xw|T5S@S~7TUsbD0rnEW
z&XaJOBui5DwM>RTn-a{YF`Pj!ohFrh%_MYQ1FNkINBZ{2JxxTs34PgQ@Yi+24i#TG
zpkM^@yp)Hxu%X%NJ0Eg#I)>C#ZtqVEmO&L4H(C6au<xdm;FJyRRtmtD#l&CHkDK*f
zU{%x@uR4LLxfwwDi^GG1xbQzq73tvQb_et`_3Ef5iTLfnEfbr?uJh~bi!9RCw!A|g
zRZ5fxI;-s8a#GZ;cTCr1xg%g<>g<+0ozZ|fNxkDGV%JMDx${wt(Rw}oL`%&h%%f5p
z0IQP~oyVgn>07rQmC4icAm%FC%8~J9#DX%IPafFm>aRm986G45V|-V70M5{b>LK3p
zvlJDDez9n4&ew|-u|FCT8kbwIbsqG&@@YeHQL9x#`O2m1Uy08W#v6t|@_+L6`i~^5
z*4>xM8*Q=;6tk-`mXGo*LO83G`+&EML2Zz+`G<z{#_p=;c4Sok7hD0T7uK#9-h$L$
z8g|Mo8y}b#8zjAB&;>*|UdS^Dh;-gVdc+56Ug|i|^;&fn=C*3}(udeRZ-*pvm0vNc
zi!F<Esxd#Fh!bO)3%CBRpUiWHX+TlUFmD8#n^o~99^l_<${6nyGrpA-l$oFI+}WSX
zzTUOxcGfjgT`bE)@CbaF(U~`)c#a@}P|iPfcYm&K3)@vCvZ}%=Pa7YbmYa0Y=<b{W
z_fg@^uH_U2_TG*r*cNGJI(#_0e{=lvij9qJP=|uaN8+=9F2kW~b&soXC1hy+O9uFG
zeIi<zO%o3^IrtLVi;s_gFnBH?r(KHuHKc`<egs=}!#IW#)2T^HGBOMz_I3Tw0kwDG
zZEckSQ#oS=dlRCXSoFnpf$i&r4|POAL5^pIR{L@Wj%S&aL7~N!iJ&%?zXp$dI=t3(
z^+Zpz3_;z(igT|Q1*SR-YrPKL!>@u@HQ0G)oT56*{t=qOlS>VS*IegEQ_(Nt_aWE)
z$A{*~`5I9*9=z%x9a>rx;>#5pC8xds-4R8_>Q{e8NB`<y%bT_*XNOUdjS|9k#MsDc
zlIDb1)JvFISwzaSBh!<^S-G+~SUxt{j;vqIn7Mh3Q7xW4ani2Z4gvlV8Y(`Ny+=)4
z`Xk>dqpt#mPHf(H^xwI&La%HU!BXa}xAQz_UX{D+N8fUAasRx3taM%-Q&({Q9_U@2
zED8OJE+QrMC+-ue+DX`NwRkeEpTggYslSV3s$oLYCn**qs1(D|B1k2IGVkzZM7%`2
zu2wgn-r*>Wc%^QAr*;VC%`P|EZP~6s-c(?uUf<R~jgA`pZ<o|LOy8wmVjX*^i!D;!
z{b9=R{Hh-JMW>ptWMUbs%XJ$W?4urlzfQRib7dr<@7g^x2ajDSZ$wc3@v|)8Pwpmc
z=&b<O!c=R#CJTyr7$Hf4P(89&sIb0tN~S0i$h7k@{+mFd86n;MKpBgVz}|E0eraX$
z@pIn;{mTKD-@79(z`!c35aoNcKx5DLL)1}Prz=Tk>-$&{cB<Cn?Sbyg1|Ea;_3rTP
zqwSd=ij8(ZTr7qU$Buao-e&-uwK?N~PV|HJ{j%9%uK^T;cGinAE`Za*V<&U*^?uo2
z&VMz4hy)cd6n^)j>yxHrK4Y>}t?PcaMbh}PqkYJrN^A-WMsruC7qDDvpo}^6j8))a
z!QsY8fQ|@gj$R}}RSQN9l^_cc8CA!svU=RLgvlG|R$v&jR&yE<fnz%4!x)IB{!^ZA
znUCril19B7mFHL?pDm;Fv#+3o%kF82#MguRn}m`Loe8#Y3<j0r!5g1*@b7I4RyCp&
zY#o(A6!6(YF7s<6@>c>(`ikZJkYt&Od#$L7fMi7|EA5Su@N$7E6zI!A4Spcu)tWjB
zbkdFBV~15=nuwYjXuw+fk^n&8M|x6bQEo5{YYjc4R%AzH&W;<7gz_=m1E5G0mq<Y{
z)6l|Z4@o_|RaE`<Kzm4Sg>uyLI@Hss2`|TKqOnHhB>Jg0hGa5{As)BdYW|^{Sd9&O
z!K1+BzAOTM@oaI54yu|Qw0L2csvABgP4Tv?{d#Y70s53HgXTu@`!4He%~!lS7wfRv
zL>Ry$&s6f^{b(^gA_qrAnG05v9edT42cV%0=4>pPx)e9kCKT8T_R)5%7H80fW*%sa
z!AXgTAmxp~B{yoTcMToFoYysM#Scdc|5;0$rrAVxzgw<*lG}BxxP6ZqRX!`WHR7$m
zb>r#nvgWmOp*AFRAcG-GYY4sUgn;|H3SMVa(C?A3sX5W#!p>B!e9(1qnTzwh=QhVs
zJI}Z;^mp$3@|-5Zqp6rxZRh^UnTw>$<`aN$wqAm@<_W{>Yqhtnj}6vLyK1Q!4<<)u
zp7l3e6R2xN=7Qr2<<b;rBjM_f#aSBKa$#Z5U)djSkyS4V$$_3&T!hUCLv>KE^#@=5
z-oKezP0FHun%_RZ3{X&(=5P7aEXnA^!A%q`-oq9R785@zFbP;zy|3>C(_wUuaqG}-
zAe_?jPRQ9Wds?m?Y+|w@(%-RUZ8ii+lMi1HfYoN!_Rh|ntWUa%izyJ|;^QeA|3w{!
z4G#up&cgnLN%i;41yQYoZ>*VE--lxzt1W^v&_%DG-fXg#a$Q43B3=uNsCnXHwfT3x
zM<PCTvsf{0p{|cVxWC?+b8bA=wsn8(U37oY?b{?5?cL&mtlzVRI0v0vz}zv|PO}>W
zhBJ^8zIkaqp{T>NE2$t^p)RRLk(#K!*wyYF6F1{t#r27@!_2G4coq+MUtRikHYQ1`
zc|m`Jh|!nLcTXmfFxJMqf^l!CYvl&%@JLeW=7IJE<YRJfKeDDEU7WHXM5})xmpv}7
zCu5~si$ADW@ncUFERa~vK^|#eo5Ot1nbDjD@X3kWT<|7S4Zs!&5Ek1d;@#WmfspM1
zLO9<Xkh=BERpkjg{L~<5fWh9siXdvoTg$x(s!-Qs?kKXh-0>NoMu$(&dg=RK>_d9j
zddy{_(7{QRtR9N&&nu-+8GPoUpl|WUKOo0;3f)?Pl*xQxa8$<EA>8`PUAfoVt6N}9
z17;oeQ4I;(096$Ii&dL;0O{-Zms<Q!&2cY+9-8>tS)jJ`O8IA{!bzzf*ItRLayk&B
zS)5B0vUmR&q{JP76h8}7b{-U&2qSW7T>BNkA3y7*X0GbfdAA1~TUE2)BzBLMDQ7j0
zBIhTIzpeB)70sUZ$oFCjc>n`mZ|JgC{R8$T7#uD5BJ4Mz!e)6?s~bYr;|tJJRCmRv
zLU6&=r{WwG;TM_!<_g+B%LU3_9=rL<;R5b4VGY=l(qm)~=-!Z!`Ib;RSI~0?UbUz+
zhjahr^H<eShC>nM3kO{mTOY}r>MCk%WL$Pz{EJ;V$NQ=v4f(x=9*iFqd6W|0vddLA
zD@dVwp0gm@2$~uSX7@YD=ck9F=0}V^tc%GQse64TtRTUX^K|B%Em0=tZ6zez+)A-R
z(yeRTb+{-6b;owV$?p_e2JhL9ijXtO4^#J_edA`bvhopRw4%i!(Nsjwkbc&wbnI*^
z<Nk{Rj@wIM-qe(Z6O{JHo*YDj2-rG+KU?50gkqRAzU5A@x~$ZG0Y@ohFDfF2DeWao
z+s>=302?0K>hOImEFS9BwSsN{pUZTlsoZ6>Wq3e3kmZtjU9l)1|8=#V<2R(%d)95i
zr9$FQq9k<E2D95m*W>hepLo~apgi;>QH?uS^yuy5xdctGBXpAoOrlI}6`zF#sk?hz
zqzVqVXs;P25CO)PTa&ZWO?G<U$!2J{{RVa@_Q2!P1rJ$cm808Y<J)}f6UUF3vsoB5
zN!=Vzcl6`}B-32IzfI8;_Nne{ws$DEFPi-yCf}9u%+zihzH(%S)vXZRSM-e*qw8=)
zmYu=>BDng;YlHs^1i4q@OM|!icEhi(RgTOp*2=z3t_e!!e%rdf?Q4L28tnZ!o7WBq
zk3-w_Q=VsRbbo>WV#3Bua}^bt9ltUT`}Av#tExjU!qX((uPTi_Ir)V#(Pl>?y5e92
z?lqHRzSk679*}AYGW+3j#=4Xh@k8EPvH3K4rlb_)m-!$cg0|%U0Hw<~lwfP{E%iqF
z{PkUzQ~VH7vLc)?hcEo&%@6m(h0jN~rNnjbRBJeA-$RMAf+cwyk@T2uIbS_Ars=-^
z2V{fu(Dwya6FG0_%6v*Qa>b1?LC#v!%0qpK9)dJnTbyc(9nO;R)@w_((VsrH<h9Fq
zVKjBep*P6@^o4rf7J4$fL2t>91P-nuGI<LamvXW=?-D|iT@TYU`jR6_aoML9YP8=$
zDFfx<=Y}mo0-vSRJX;GjkJk3jUt`icF~%WEIj+GRLN?#2m%p|ih0gWnbCgS_GW#AV
z2PF0_t-@a<tNXMc-w}<o$f_v}QBUQ@_LnUdjJ6LY8wnVF-w+Cui^gUc&Eg}_8^cjg
zZlQN-zZq96spXOR86YA)jjz@`O}RbdSrBO*3Ty_i<B>k}Q~L2Fii&G`yIAhLc0cp^
zt)#}e%MHQ%X?Ng!4C+<sSL~T3%3Hydog8WNIwH_P41V;@MIPGb=BFz{t4x#Z$s{0{
zIvX##({B*`Ea*d^!jbJ?Rs=x)6s<37&?@!bBHo=YC5>4LGjv2XC^S9~_qO38+9~$_
ze4sqcN_!(ZBez>fDW~d&aqm;N{$X<F#2LJg?r%iV`|_(`rFFmB5BVyC!~DnP9E(C|
zQGTO)afU8*80z*l3EQKO9S8@r41E4(j6V*6jx#-s3JsKr+EO@_*Pc2-!eU12Iq@#3
z<xy}b;i$1Y7=afW4@uu@80yXQX6m?<?RPj(Jbd%ZIOB<7KLKT%)56r<oh|Aywv<JS
zy*CG8Ns3ChR*R<QT$EwArqtqOecxMRp|zy)H@TUZ%z~2!RyE*oY*b0Ndt}LmODOHF
zw(gq81Qq42weKC6C}>!54xzV>`_D=0@0bK&8OX2CwEJS{IR$dRo;^%#<$72%o#`|a
zDmi_*zGYf}{q;{=#qSZJc;SUU^v!)v3vgu=;~E%0@zS53+znHI+TjyRmxGj(!$ItZ
zJ=iOK1|(pkoE@Nv@1^V+E<pT+Lhx3JIXvY9e#`WLtueX_niLzQ0%QE_>zLHSMz#-g
z@?*JDSj)kw^NO3mXSo?hwZQv;1q|1aKF->_@3Q2(ddHW~8<y;jwnt_8Z7(5;{O6x`
z(Cc(778@1_!t>pYH=j*<@L%n}%H{asa)N3@dqKw=jJBJv`gr8cMM7jXVc@s!NMsv5
z<x&d(*EN#opy_DZ^E2G(t#;?4!QX^?=daAPnZs^G_u0I^m3{rM-e3d@RH(?0J?GBy
zzDgP8zw(485=NzgjpLsVM8%tQXmB4AY1bIZln$om5&cUmac6K}*GQW4DZ&-&+ynw1
zuX?kA>xv!!`%l6Mu1zfN6bbvl)b61BkN+qLZP$@p_FrJu{|FKvQR9m{Mc}|_rkz}5
z)$fRT@y1&JT_Z-65Lhx_0$@As8XpxYvHp`b5`Tfe`R@#ZL4X7x;eq}EF0oXOG{^(j
z?(0*PMy%He-hW)mXd-aR=qI&P9{W@_BT@f5eIe)5|Czo3|9>hT|G$<gA2NOyP-|(W
z7OKZCmv2@vpiI?R$je<xf`ZUKlwo{P9OI4k_&Y+O{A<3mF+i)Uleo3~_uPntNv;V%
zKVypbb(;zB_Ob-5xImFw^6n<cDJ8um3y==_$5&*;<&+Gp6%yO~%*9oYn}2h9s`~o!
ze~%~In4i-}JacmK1AJ9Zr_}Q19O_6Qh#;%{6O8sCq0FwO=`^s`$fBH1`R@trr2}HO
z7GgX~#qQw>4uC}s-7D_=v#3^^2e*8+OlphDrR5Mq_GG5un)mpRPdZ&MAAi?Iv+EL>
ze#=NY7M$$^<<1T?8c?k&IprP!q@q4olHHqzzicBv1ffG~3>(}ot<}8mBC3Nh>AO2`
zXU}sV0dM$z=}-6^W7k+UEvMEKZ+o&GJW`Txn#p;&pe>gFEc}P~1AAeudhBwzJeSeg
z>b2j2Bpm6bk!~|%{c_BF#qgPpF3*v%`H^9%+Ue8+$ySNmpTfrYW1(TTJ2mjhap82M
zeQiqE`JBGtB*M`G2<pc$zN|Z$(X0*T{Mm)+LM+Zq>hrk@t7}o8v%m?cgp@;{sE(5*
zF2^JLFQT`0vylLfN@V(5d9}g^&%6h)c{|k7_peMyZ*NE)S)_0zpfDBh`m~X~%qliG
zLt4b+)9^Br>3a^GjA6i2F}jD15T&s6MyzL5ggz{#kItW80Dp={5Ua-N-Pjs7V$prk
z16S^BX$ldqDCP3Q<iP+QtaM9v@56(G1^84bv7Doo`7x1Uuw2IqHEZ-XRf6q8$*!-I
zI{BFW+SMv#a_?<gF|nEr{h`*qr@=c9FgQ?B-cP5xMR}1aZ6i(X$<&kjUvv27l4VA-
zQ(ISLE+S2ZEC}r((3Qf9%lai3?yel%nJ)N>Y4%Bn=~<3A;%!JV&HD$2(rhWP;K4@I
zhIi;JRJ*+Z32y}6Y`9^YHOoTyVyH*!;F5lzy|_?osptVGcW#&^t=c-Z{(a6>C8|VA
zvn)vRKyG(V_FBmn?$;a6RlRKKCrWl)?&xJ_95%OAVAm%x1$1Q~zqxf~&tPe;3n^fL
ztS5^=q$Hh4;S#h0q}uX!P>>(C-(!8f<RJQlImTflCa=HkD_z}mlHAUKJ?Ic^I2`>Q
zd@Ftzo;J~m_%>5$<ZXC$Wz3S0k`+Tr5zLOoTrE)ugJQvm<rvX|&Zt29o{55y5O<%)
zsw07F7v+IzLB~-PADYr#EKolIsQb73h~;=A-0^UCqNln{U)`dKgpq0UX!P}6hUb37
zOXf=0c<6xqGgsoxl<H;L6vRB%s<-3ee-jhxbdBz7uJ4?gN=WQ`wlL<5k0rvF?K52I
zzsJ)w8os2Ew<B;0ZsNXbaAkO{0nDUGZ*GJ&rgSFq(>g^|G;GuAx|n8jdk121kSxv#
z=FFvpco*GEyBI?UnT6cwvqz^(RqbFKlbqQ7?RiPu9R4PaR-Ju$rW?oOw1fIo(U-wn
z>nC@0guiW-EILu_OP|}A1hs6xP#z8yZHPB`mVLTwl`NaICFrMJ7vQ_Y1C1F+!|@W8
z7rTeo^Rev>0pi(xoUUO_Z8=u)T-rY0K<KK=^j9M`+N=rJ8xknanBs~K;|Pg_SwHb^
zu&PDzfW?ABovkmEq$x6bp0Rz`7lF-$KSHyNhfj-Nz35>Cj0_eLm!kl32JN|sUcb?5
z^m#L{o)MNn*`C%v-7~y32ifT|#zQ%;=Nm2_w-6*U_SQO3?Yr-gdKfv&ES0mg1%hdG
zk?+!YBU`A3nNOFQqb$njp5;NOAh=pu6s<(L?OBeA?AGYNWP5xF$-F*;clq-5ES6*E
z_rBjBez1XFBlOFSPFDZ4!a@pyTLsqkjbdzdhWcG`q%>%XF3s!bjj87mr0jDa98!Al
z`v#%4?+BMd4;jBz5%T09D-7H;i~p?8cdK>Boh$rir=cyD1sYR)slt1e;oXYT5zosn
zd!d<p+gxnH;ydkO5Bjr-ziXB(zn@-R1?JkoOJXRQ`i!~0c1O67YZqN<VjXpKy5mZ(
z(~$k!1<PfM|Lyswfwe9H4gs<@m^5p(?f2D^A;o$HGDb?v&bcP6!^th{^g>yfv<@}Z
zGLz9%hip+rTt<eBmleKOHWQRtRB37@&sf{mN?81eYc8|RNwV(KjD~MctkAjW-c5;x
zkk;hT!`|xaD%xQ#7q)h79<bihFa%<+xH)E46if(sEAhB<#|)xT*SQB=SK3}XvQn_U
z(ywdK@22k6ACD3kB2=99((^K3-zzNKy7cw2rmoPvXtQ|3ztrktvr1Hv&uQH?zvs8{
zHdqY=QB-sDnh6}hBITPydB5tWKO+5)7T^%c_~tT+?@Y%rPkQTf*Fpj1r9z9vd_T|A
z(U-%jdvf(|$JjTM^!rer>0SuEYxd-5MAzRX3TG`xvS57s$-~SHT|C}P#hR_tsc5`z
z3#5Zqo4;LWvX5!jW%u(sAocl``vcvHYbZ4Vom2?Y)pDeH*Trm6u#?G~$RWrA$~~rU
zd()qiB%|6)cx=9FwwTmzseMonG#s%iyXx<Z)LrZQA1_F3r+37hrM%n$kU%8NKfAzU
z-xlQFXwe@zU9%TT19%kNMA%A|Wb<+nszJ&E)^|b)Q8u5v^wDwK<o1s+4a}^o4K<qa
zkVWb%m`UHZO5A2OWQ-1=e5<S<09Nvr#9O)xGFQ?NrgJ1{bB=qm`JqD{ZRw?y0tuMQ
z=d)|RA*SE&#QsRrC_M89;IdH1-6p!n7iB0nZhakE=>5A9KERW!6656yI_g%89*ou+
z19k#@J9L_?_oQY*n0U}M7v?Ji^vCn%h%cwWPpY_%oZnPq&2g_m9)fI7X^z$bk=nc#
z!kevv<~DoZ{hs~k{UvF*xlSgp>oMvcccHNLN66@Ygq@`*&R4`k9mNd2kqZFJ$@eHB
zK$90#xiqYw9nCn?$bPBPB=~q7j<B;80s4{d>909dN2yb$=c^t~kQ%MwVWYwKnuVw$
zim%S5_k!5aLvg>BgZ|{A9A;0M<FyJ_gy99z&hnL9=L44~to=hCBsUG#D!BQ_)52@>
zUIi0b=KGcO*I8W7C8HDwfP)u!!3(~$%B6@3(_d%Q{8DBIOrE?i*oVY_e8aK*TFQ3@
z?746ldT`v|&I0@R(j+3ddNW&C=n`TqVQG^WclUN$1<GVgf=}oURs?RzDGkSpy6m|^
zx>N}ggXp+oXnLkt9E*>rNaktG@KhxU$%hs)iOD5zSGUDNrnzIZUr3{@@Taq;L!5ZU
zL%TD%?Alp2tcEC?J$<!MdSAJN<MVmA*-wUH10}9+fIIZ<Cg17Sa@ourah(UWc}?(_
zgnWY*yZq#6j81AuE!YfW!uGp6V`w@I_GUb~MyLRMaqVs}<gL&E7oP}_=vKcdfkS1L
z4L+*b92%9|G~qPThYc;Kf1)E`I6>f$d@1PgzBAyIcbydFLtuR6RTRz<hH9<%0e%2h
z?_grt8xfCO#;tl?MoID$rMjo_`KNwJt?AsURziU);xYNjkKk;;X4Rrzv>dSifkW`g
zh`M_!+BDrC<l0OufCus<zwIR$-(a`)F(e)hi+^ilx4<ri5N&%cms*~5#cz?{;AeYg
zAF|J7n~xqYo(q&1PpR2+qCCGs=Je@)?)_~PIBPTknT7-(m~8F44x!-njr$E~JGJMr
z$oJLHqZzE$2ep$hkt%COABD#5b_@T>%Iu2#aqss)^PjuZ<^Cj|2pkw!CCu!ofrAh+
zhLn^u49dF28CZaylZ=4B<a+FaFm$e#kdPRT+&M8zGz`aJmrzt7Y;F}`H9<zflRkKi
z#z?pUEI(GcBue&5S{z4l;-LN0HiPln0j8HxSJZ3%tq$;VYcTnk%jHJHRaDVKd(nIy
z1x8eRlpG2@Osm>dZkuGw{Pv%y7PxLA_D$=yBO>6c0_=rsrCnEXP-A(PShGcSV&Cpf
zjf)LRV7R=xn^i-G3)h_=u^Z2VOcvAZF2)>vp7=Slk;y4}lh`u-j83*%T+WxiT0<i(
zzZ*S^_*+Hg3<TJN3Ka?LX*Zsq<z$;7`rzpGiH(C$a4)fF(FdttM&qBAj?EJ-dBh0v
zYVW4sn~3S%PxQh&J72Q|`qQriAOKZq-rh(esxM)3Qlz8~B;Hd8+q;Kyt1aityR-GM
z$o)$!SJSs*l$4Hd8(tb0@}&l6lxj0c)t4MgDSG-m*;p@(+azcTyFvxISe_lKq7Cj0
z#<M-23QWkZ*W1IeLRH3Ha41T+XB+fwS=~Mc69R<?ha??cx12Ocq&t13;7|25I}tZG
zr*Cgxv-M&WC`r$`E0+idnzXG?)Bk9gN5BZ2&`AHF68q+1Cgja@xMi+9&@3PMxM#{d
zTOY5t@eJ!tb^)%^K!Khyd`!mE?Y}biA2vBvpH=C$)#WE^t=mpb3<3f%c3K02t*1A0
zMk`k4pMy0_-<#7GhX<sjB6h}Fa#zt0h0jX$?ca8^l=KM-6&hTxw7(Q4N`-g!L*Cvk
z^z~^Rv}l3NGOCiEuxt5Q8Pl!3BtWKZ{CMb#)p9c@*DcN%JrpWIiu7whC(k#{Z(KNy
z>&vPpEA1{El3xnKq7jU)YS-JWw4+ax*>M9Pja-A-8VuR?`}0}63<M@lkWa%Z5zpx2
zfgdG68*Tyx8xi(Y_o`phuHO8Whs}S!Ai&SX)LD%hFiH-h6TNcv+VH!3Bl&9m_X$I<
z?M@ej7E3PrmGs+_nZN0;gyM|6d93TQGNEC6A>!@5{11TRI>z}*SGv46Bbx5a*vjhy
zJ4&sdNTFlkqp>j+iv3F@vM!1PN4d+{U!-Nx5t7b1^I!SPCo`XQs8ID7E-dcA=sKHT
zoSc3AYO*QS*llMz5di@a8CN`OXkeVJDE<J2Bl+C$Ko-rPv%Gr-;-ntt+ZUf;Xv06h
z59+*Z8wl^nx$L0s;Zt$xxx}A$q&V_P6`G+ra1iR7yVF|#-HH>RG2CK#{Y{|QY$y9-
zkPF_k#?cmZg(0XF#&V}>fO><Uc1H|>^Z&wX&_A$<B$DOm{AZhJnR;Ix@#%6sp~BXn
zK=DXI&Amyivf_A5yFj3f<_EVDA(5SWHcRzttahbA_q}TM6uNv8(LoaHQa31<?T8H_
z*SO5JZxUL>?dw73k)B8(Im-g=d~{OO5<CtS94Mn#U>^<Nhe$NK>w~Um3M*lAlg9o8
zcr8xn@o>n3&sH^AV`PrZ(wPEwetUSb=;N=sTpuclUgt*7N?~$H6|s;K>A7PY9Z{P-
zxm@-e1};<%C5=s?n8L#BTc^_Ek>(HLTZ6dU5Y#v2%6A3Qll5<lZHz_CeqUT{uM3^(
z<m*i;bUmx+;;Xs-)nf^0XXt2RZVKj@L)WA8pJ^0(L;tPzIt8P$k7j-<cbn=p->i+C
zWh?iSqpu<$By!EicMMHI>K!F3UHWj+aS6BYy?fcCSYLL-?<3hr-&Tj6eP<ycv8Y_!
zC$Xjk4LgPDvC=GFTaJKPA_T+|a%g4-!WSjc$wmJsTOgPHCtm>LsziI;QRF}X-=DXA
zByzPRv(0&D-+~p>mT#H2{8&@Tf%IFG@T+|vAtWU-14}L^@3e;QS3@PWLguUOO$ogY
zBKFii=~WWK064%vs$u<8O{<}4>FX_vzI=~@ng$O)KW$!C<mkAl9cz64sF8_m#kYyi
zO4NX_Q6`F-i+q=xY1m`n$#L%YWf+~PjG@pg!Qs(*UF8TprOGb|_|R&}CSxjnB~N^E
z#2UeGADR6VfOu0}S9ap=qz74V!&ZwK>NroEZ-qEH?S+17zLcXdGdMaAC&62(ETLKG
zgMZZbvVWB=6Ucya#-u(+x$7?*F>g5jbabtuMi^=n@Oc2&e%<d?<VbD$ilyE?L6Qji
zW!^m0<lO@s*n2T`E2Ov^*}Qxcpin{Fy|dLdzk9Yw#9T4NH@<E$f}^6T#P0Q~5q;DN
z<qmNMn8|>MeP0`Eu!duNxa&zM{T22aPmaPTVKO1P4d=-PH@dIQm%Lr3Zz_|dRIO!B
zoW)a_xoj=76lVT!pI-v!XEGPIFFX^=6NID-b2dbVwUdtnz1ue)JaZtA*=JZ8^HR<c
zBnrhi^C|bZGOI9Z-90NzP{b1dwU~v{DVGSOgZ@DoSd;A+<4;ZtKU&JBXS#!ZM@@`}
zT>2GljQftR*xoEWI|L0sB$zL12GnM(WLo1EaIs|CdeARp+6RY$7^zo=R>Jd+PK=Jn
zTC^NFSJJ+jWKQ;QRNQL7%})H*qfzP=^;!jBlafdzyaRp>EJnszRBP$49@d7U4tFf4
z0g-ltnSoxG@JO8gKG0`xc@)w<<uvt5g=8P`0!K(e$1iqLV;-X@vRB?VZ%?H=lqCEO
zU*EcphD4$Fm>&ah)EX<A%yf?Q^JVzLh2qX<K{ov&g|qGLN{mlaPO*w(ZA3;iMVBAx
z2Jm<VVPRjEt?Zt9EEl%bR_mi=;}AQ0J5j?ZSz+`lI}ST*u&GjITHn!Vd#2RUMF*rC
zorkp(9VF9%z|uI^N@+YP6#lWb)m&z)9HB+S<1oea9u1BHeBnZx$y_VoqBV-LGJIO6
z=XMg4wknl5p&gdk57Hea;N+jC&Sz5*ubmxA3`IjL%jx>3Sm!~rBj|>4O=^Ehg12E@
z<uU8zazkvfJ+X^5tgw~N9N#`m&x_3>eyj+5RfIfB!e7&#-a1X!{jJha+>XE5@VNXf
z#l!<4Tko<jhNr6kP)rY>{{)BUxagqjxLHatXu{gi)7RIYMpwFGgB```>%S_|m#=mR
zM0aPE8~uuD25@v`O-jeeQX9ERGdi+_uRL-V3l}@Bq_i?pdL&EA3k>D*VOU-tT0C<;
z6g312C=k0^tl#4CBl^fpZV!$D37Jp+K9-Z*tTiHEySewZN5FCrEFCUEbgT%ymoJA`
zAPg`q;GzP3PrcLbzjYuExXrHQTcCWbw9r%sgCqa_GaBy;x3RfqxK4KHOs^#^9~Tjo
zzIxe06%~`Kg~XfAqC@4b!lW4!^W87Q1jSsk8KdtW>%0nU0@Iyu8QXUDve2zVciyc8
zSWGr1l6jw_mREc4>9H?hS&MubD%2{1tS5(>?#dlBKTS*d$Pud5#I#n!V6tW9UP`v=
zP`truN=JuNtd|orSgip7=Ap^qf2`NJoIsbJ63Ay_`mGTwnlAYgi3<G7GsMLs9Zb~S
z31$=#fqYCR^F2bo1noxF`oyh6-6zW}yBFR|ZS!ZD#q@-;NeMuGnK+U?SCosMDBIBY
zJ6pYAgcgVg`^A8@;`(NfUA-#`&rxd~%}O8$04lMSH>X|W+dZ5Qu)FZBQ^7nx6Odhh
zUM#aQ4;ODA^YGRX!yu6~(dOJ_8~R36+t;a$sAoH_oS)?h|D_YSKnL>$a!Ik#O#tP+
z)VDf?J$yRNyj={lv6ik7ZM+piURE7??Kd5wR&A;%Zmx*mawT(18{EnR(4z-u&@PnO
z1qTEqOTs?8IgLMrntcX{S=Oot@X~(c2v6e{fGl=9Fn@M|u=_MqMI$`J6ppy4aCf}0
zw?rEjtg9jnqh^ucnt2WmqgQ&(l!<eUttSmH?HYP{Z}!fW{sV!*-2VV~IPl=S(N-N-
z;B%*m{pa+0;jI6Qytj&qt7-a2LkJ`UcXxMp3m!Z`aEIW|;5NY>0t5?|;3N>--60I_
zI`|-i4mRjn$s^}|*ZRJTv(`EPn^Si^J-c^xS9Nvm`qk=MIF%%L%F%#kia<(;Pp{q>
zK~=bm6#$n*O2t20-gjvlA*RoBTE#-1tv!81G<wK%+Y(Hpa>>j#Jx2l;c1WExGER+j
z<M8C82sP*WhG%~pAm6^j#PRv*%_(w0-aCRZmr=S{$T)!IZq0ZX;{HxUQM~%&xb=nk
z`j0$rmqPx5KB@$l+n7a%&=}t>jyD47x@wz0K#jgzy(dJDCDi;-HqjFG53_KUH&W`p
z2j0NkbR!nC3jR+NggtOXUby4saN9?j6_bt!6`7|-@cJQAYBeZ&=hudIK!=B@2Fph!
z=uhGR^SL}h)7uRF-imixJwi<vq!^|xTM5xi4N>%Ky~MX$?h)37IDyvWvAQ}R>J(67
zh=xSqqOlkWh2SuFTLvJenYN^g*IrbMp|tJHPgmmJi>rY_m@dNj!~D7Bn@P_~POA2H
z`d`sXpa$Xqr#p;L`5<-9AC5osmb*_3A4+G>2dH1$dWd)+IYEmrw|6)Pr%M``tuF_8
z=j|!BtSRWqzTUN3&K3W<WCx$ckBYX5pNsnG?_hcQ@y4b>2jKn5bHZOSEk+B6w=Yg)
z^3*#Ahvj8-jJRwX*sKV@8oV!>{wPRnGK`!f5gw)dGV|^MS^5{=UhIeEsrs7^(T~K+
zFL56rbn<Mhr6;S}J^eF39+yZuZs+36UE(Z{Nv%JGQCN;{;**iiAL!`QlYbfUaiUxc
za3j(JGbLtHhewS>!gnk-=J{XT53hh%h;E0am-eR>QJ%79QRg=oo~(yDzj9lMe=BOy
zK{+U;o590iGk$ZV@sLrU&zWh5Vsz_(q>Pc6uRpAX@P11Dc&o2<%U8ggH7{qp;~}dM
zvD|3wBQ|GXf3o1zBCiusZ46UqP3xcp{qI~9#)M6+R+G%e(~Oo4w4k#hF~w0DQDJ;q
z0~JS>ul_3Y_@%?5!dFM{^FgiC_Yc>uY)6e<(ovdc)sb$ihhTt6ZZ7|^jPtQ^z&P_W
zy$XuUPXL;}-s1HMPaaeeV>8f@=_{5yR-162)6eH(g1!ixk*Xht5(#5~)nka%e|-0w
z#==e!#AkP&l;WojrhkEJRm6ezUObD!$Tf+oX7jhaMB3;C>gwNCVf?6T;VXSOyd%kM
zTEmu6tAj<CtgkLH=~xwFe@c6@%<aeNMjkI1rqiXeB_}-n@~kH|QMKP@B}#=lkfNY5
zDWqaJRW&y!%jU_eSqu0D;`s5qaFYD~R{orZq3dn)x$uGR*D_+CrF^xElJbcj#?Q9<
zs2A`zx1WD+Zt&H|=YjH?*MWU&<ddJhIf1NIHc|S6la*sBMqQ-0d=#O+UbdX&N;r}u
z!oA^?4C|B*vX=TNtgU1`Tbx*KJ>-cT;!0`#GwnAI4N**q=kJ}25L2?|`Q@?BA!r=(
zVlvHMjfjCU52#`f+M*XR{31DjL4wI#KbCWJe;7edGvDM-<Fg3(WHv5;0XT2iCDSue
zQ{WcsH0T+KOuDbfzVB>F5Y~+WW37W}{`xS2i+_ES7vWA0nQSjmngi$6@CxCz+lN@y
zBh*oB0LB3uGo_ZYgQV}+mZyAr=!`1xXUY%h2D08g4jfMnG$9(@0+7Dx{!GerNGLJ{
zeD@@eN!LY+OUe>%58#-ueLtf-y>PL{hqs(tcUwxU*s0dd$@Fq2hm5!$moN7w&QO|t
z8oU78F~Z?<vJ(j8(f%Bp{d8dbb1I8~a~bO#B9fn<Jo&yf)NmfNY`IElEn>!=1;xK(
zXXd9&q4lDfVJ9U&%kk!kYS8DC=462*qjy^v>y2K_-yWqt?6Y&#R>sJLcFgQgJy(uq
zeoY<b6GzPZ?Y!3I4E{{vS0>4D6zcAFrIuckc*9<L@2j(+iOtIczK#QXg{fI%(4*I3
ze4rpD#{M5CV(0{+Gft+vZC}^J$?tj`Fs!O5?ec!YVA0ZGiP&A>D#H$6)BSn$6>3kJ
z8^6bHYT3H`)^#QjU_DmyV!+VC5F#w*lpifp9S?xfz8eG;+Z*tF&m=DWx-i>6JBVH(
zM-Bp{OtS9UBDBvT4Gy4JO^I086un!xMdQE1OyHQX&}l|)z~@nn5?Ac{WvACV{<WoD
zdJLXPrr(&N0^+KKempw}c$CNtJ+p4oil^P4S2XI#j&B~UZPEr&vv0GV4I8M?|E{F6
z$(?@K8SEmla9UMM-6ziF>NbgGqIXdROH%lw!qn&fRsI)NgjMo{RAv~<Y0iwg+7q`y
zZzAUn%r#@gZ}D0or$=>>y@q2rZ5GdxS`D<?Vb9tQbmdA)KjhrTfAXO<7!TqLYDTn<
z!Dg(*6lz*doS2sKk$htDv`E1AVkcnnE<XOT%H8R<VK8n?d%l8SqiVmg2%$A{{+vN#
zxDbE9?IMtR)lOP4BGPvjO^KWAl^OO5alr;R&`~n;J2Gq_Z~83WhHKVzXY&aez`VH&
zxBE~6dCrj0>Ro7ky{ngXz<r=Pf#<IHd(ZxZQ=d`<N+GdPb9Jvxhqe)hl$8?S30+=_
zB^xVOE96;32SSMJu9t>VJ9V%FtOSFUF>sc)d2{#YV=jiM;=ad_a3$vCjgENdM?gRK
z-L;lWRrjrxP>4L!(sg99rP5B6a(QOSXXhsT5d}YhWOsC8TDy0$_IWxjj?0JPc$SJU
zZcdlf$yW)M%iNeOjZlT71oG;@E*R(kjj{J_Z6TaY>Ylp9>)O;jEaBJ0y>5vSw|#u{
z_6@Gl<nHdNWxR~^E*eOcBhzn+3EPsynfNZ8I@>0;XWuTjHMiys!kPJe-7(I)!#0t*
z+7=SxuKQI}+a&_u#Z-IJ9tL@JxNADy?J0;LsslIzY14QID5{vz9LZlbKg^l_$2y(+
zz6JEf5dqGxil+BK6F!NBu!|%s^`l$ro@8UUD=(RnNpp>QVf=F46s$ZYwH9Ot8*e@(
zwA--vD(wdAu3Jdt_Fg>AB!+L=$sI?AHxrNs44h2NCNe^$#@kafHlym>nPoquYy%Tk
z<VPpUs_DW9Az9iP%FYBCI(CWUAH95#Mr}^w@)R+Ir2?#79F_R`|J0NHON{sPVoh)I
z?Ay4rROt`*gc>RyNySOn41$y)x+ISPot%8BW`7YQb4AmqSS{r%H)&lARR5QC#Mp&J
z-<cZN-F|-W%{MUpek?5W21J6Pike?zBli}SmYRz6S_8Fgr(6p14hb*{{_uihXFaYr
zW4A@aa^_Ab9nig`Ld^~1vgssM`$W8OogwA4%=0<eLbYgsom;XqC5|?)mUW461WJXI
zf6*2Hrhq%+2d_M~wFzb9FASz=Mn%C8&1x2bU7YRzxZ(-P|4pz2;xMp%bc`LLG)DMp
z_J{d<g!k^W>9yAnlXM3sVlrAzLOJr+%###>B<VI~YgD;IU$J;BWV+gDb`I-%TbHwh
z3|ZdL9&`wj$EvcvYW7GvEzoD$O<0)QiwJCPL$wvV)9h5GvPm?eV!wDzplxsY9YG~;
z0MgG<=(3`!IYX~WcA(V^LJ&l%y)Cd?;*aF@e`MgNc~x6-tJUkwK*(A8mFeq(1!PCA
zuWTy}**e(H*U|o}=P(>$!6CNu-x_PwVK*+C0rvB(uvVsGXQ5Ej0K0L`VG*9RiXREv
zqk9gQ;^Xb-GeAgu%|ZOfHPrz#j;9k<j<9{#{mz8l_;N~<wJ@JB_(E^f@#Tpyx%xQC
zHMQV1M+XG&*`Gua;r~h$dDa!Qs(^XFH2>3>dD0EjJW&D(wyU+jw(#+_ZJo%YD5|Em
zdqUtq0(ta8vyi2^RRZ;aOHVHvQ^S#4rPXB>FVlY*1TD;cD>4#3hNn#7063E^xr0`>
z1)>|_{m?LXe)ab-r}iKp@598}Hrs!0>H6&eOv=2zc<{FS(V+z6u9SfOQv>9Wj|2j`
z8RYzHaKf<E$^Ppeu(KEceGi!Wv;R-KQ~XuUASL3*3KC&h`EMm)j{yt%|1w8m_a{;3
zpVf$B{P?>B(?7N{%;)*r|0;_6|3>$w;#Z+bz>*8-;OO@BrPn{{DD{}4jMw3I57cZ%
zV%fzyR-&fN*L+)PW4o$(cX||<%^mgHrk2N)rc<L*zOQsUz5h*vL7doJeR?^kb{uAm
z;sSB&e9C%EZO9zY355J~=cqwX?@;@dA!87DPs$oG*IP&zDOp!t@frU6*2_NNk_?an
zPx@6-q8*}q`Az(A&M&|nT&H_KocSIOaa=nEJ$<y3UiBuZJwD_RtMdsheqE{Zl+A(v
zxQfQ)MSgP+Y(Hx<%`+$(YLvJYySvJzr)hOe*R1UkuD^a3R6S5be_A=E>Ay}k&@dwo
zjT2j>cqhqR(Yn0*aBOqE<V^vb>ioUfXX}505)|~px<XqvU9BeUAeTp#vM#OoAIT|4
zZwdyqoiSGobPsORXfHs%I5Uwc#!f{MeCIcfHjPZ59TuX#T%YMT^T7p7BtgIMU%r}8
zKeG_-hU#6B4q8xZ(&P8nk;Ib-4N)RK)x4Zm|Fxdb;QMs9D1J>&(Ji4x@;47yL$9Av
zhxrtKaNoGl_6R&!cXH3D^?T=dINjt&wA@%cU9Cu)4Me40c@-1rbRab7c4b5-&+?qb
z4|Z@t#2Z2}`rX1tWqT=!AC%dd^R>Kf2LFGC+xcCXS7+?rgC%lUJxxn&YVAMkrZjnN
zH;PU*DH_%@f&(r^Bz8&cAL`P)XZgGW;RL+*&$JWgio|>GE;or?{Q2y@W$Sf*YChyh
z`u?0r&(CZ9D7f8r!zocfIKwh4t=e@JDfz^wLAP{fgSHscDJEV~%ewLev6(URY*!bm
zR5ZlLcZI&sTS%F6(5hvUE@P2FDVjF6onGh_VEm>7LIgJ7|ADPy^hs{qJka(Sr~6mZ
z*5W!}+zw?X&t1KXa55^Bz|8R_hKwIy&nQc5)U+YoE{{LdR1uP;@#7WWigwX|<&A{z
z9zv#>y(9SX0N=fcy4DE|-_<75+smUN3_hA2XXk_wF*S7Xr~2~*j`5NKfoPp!D;cV`
znxTzB8F7Orp*I1EtS)0j>YTcO&u*R7*tAK966On2tSiLnlbZ{5oHBQfCC*m7Q_>05
zL0V$BqC5@>{#hMu4@#`|x(zgf$0UOd<sXJ`QRy-TtS^$EQ;F;RlM8Uoo%bXFCL4N&
z$I{6a4tH6s-Y@vZcES71z#j9<cppnAx9g_wk{YwGDBGvaHz^&6K4o&MD>;sn#o>VS
zaU_ubp?ASUsyxbZXVjsU58jk|0_p#p4)Xj&qkE~9*9Cn~4R8{ZVJ!!MPap>wG>|{>
zT$oasE(fGvrb@CE=B>7AppS8?SvfCHw@JF=OCfh%Fw1j1#?1u-eD7k(>Arvcd@@uR
z&WR&p&ZNv9v9{=~q{zQ8S@rb7WPdL<#g2q}P@u-_(T}5e1(fnXXHwwd8NM%X+vBmN
z;%qF9sG!E^H12elZifxg3=Ta%D4gIP>Ptrmzu=VNo@Y{&_~VkjhS?(B;sHDabZogS
z-m1$2uY0Gqq_;v2Nlmp@g}<y@QR3pAHLXQqZFXxZiU89-bvu<F{@j7`)9PH3XtAD=
zbvml{{ZK|F5&lUp_PRXq;2rzX^Uk#xHoG&QpQPWE3Ai6inBJ#1wDEdj_2zYUMFM3l
z`2Ke|T%P4w8Xx72z`?m(KnD-WY!Q0s;I=ZYsT#V};f+rSKA_mI)@=gf*eqNz@p?k&
z)N%Z_JVP+k+`M@~&^M=AM*g%0?3!jI@KvbJ3e>0jE+}s}!_K_)=Mj;}6|H<pyv62K
zQvd>I>K?h)&BUg|ZoOphT|p52jXVQhq)qHw+R$B>_+4Qu{**{^8Xe2XSY1yQ+UW@e
z!fcn6k~dm#eR<5-os;@$BElqDqdM&D^ZCS(z~zm&ldYj{;Vt;BCIkM#mD$8ZgAhYG
ztJH%5!I#R`-d7}z6mb;L{^l}D-c?ClSPaFCy9&eZoPyHirE&QRDjPXB`eB|#kG+Xx
zF&T>xPQj&5lKOxb72pU>-WhdZ?*^|uvLifFU|lD3p`Ps5_Qo+;o@6+-4KDYkPXxkA
zJcKtTk@)(~YRp7u@5GQi1rajAif_BH5MJnmh@N}?=Fl5Gbb#2@)KL0r740Iejhuij
zr?3i8o>l+lM^c&IO~(KuC0fyZa}pbjbJfQE?AmnY^7TF=)Bl!TaX@(_<#sUC6dhQ-
z@Q8?Ojr7U+s2>mtwwj8Rmseep;=9&#4!^Elj+4z3RR=jp+<ex36{9sd>nJN8NM^@R
zqA~8r=&z*>a+vF8J)|N1N!-==UhV<2#m{&j>l|@few=!=g+M$46Edw)7MIbMqNm+m
zd}hXg?q+cfIs=`K7hAvti3Ppb7A++#RQHT8%Rd+Nw{8*ZJ)prP?h;a>)83y5ecVt5
znL*+$mH6a$m1~CF%0E3?Z7NmLRBD6-{HaBYw~?f$`ZZ(8%-)#dFfDKLpqIXmq&3WX
zT(D=RC7}C>4a79cAxLt!>(g<?uAXQr(;D4*4%%a$*<V3197!(D{|Y#fot<N^YWdNJ
z*NWU!f0Xb*-YS=6VPO|N2O`Kho?J>)cy+eNE1v^#RIxg^5&3GSmNOtxm?t6kW`;Q-
zQoF#8)*sJfrc@VqtDo0stl76X<Pj=DaC}NjBN03V0M;D86*<nO$avPWWW0AAl$!@R
z*>?BfK`|fHuiqsq9yQP!hkB7j036_Fm8f9@eK=lz<PM2zY6aVTH!cRCh}w-l23dgb
zpuv?<<6y15FkYRH2UIGw$`f=46HAI#G?Hx0)%Kq*n{Pp(UmhsW;Nv6lC}t=fVAD)a
zQH;ab=;=1jj^PlIEv#<XKKQj?zTl1U^wAaPBv-cJ{r0{Z`tVwPnB3j-sF>(37YL0G
zS&Qh4cdv@J;hHKQd+&x-m1(${bKgFtKt=H0>{h&bH+dNdv@Kg}V5dkj)H@wf?AhFm
zK3(qasfRS-6TD|RSDCja@@C&1%t?=qif7onIRP0QB`P#RPWctLdKTX}2H0!JA;vf%
zlK3OT=8H$(+b&=cqBD6(%(z8wK$|m25q|nRM%pvzUOR0K?YM4gC8J0-WZ}Buy8*aa
zA6KT<fSHvg$sR$3qG~U&GCxU6uS;BIk97BsW&%0RXEiGVbpy5pc)j7~_mzWK`@pEY
zT}P@0XKxXmR^Ne#gH9ygu<R{qKkWdA3`nZ#)~&6YleM}LI|+RE0aUA|%9lRo&Ro(o
z6H~%KZgKgm;DtOR7T^d=l6_HC=fSJa_5GXbl1tQzp?e4JABmAkpYVE9og{1NL7{W%
zPcS6P7**OO!D%-rL=M`7qZ*)s1$?RrG3IVeWL_ll)mj{=-u$VN{I}ljU}sF0bk{8U
zkce-+wU@>5#TG-VkRd!sC=K^S`1Y3H5os{ZW%#;E>qQRdEcgaX&>wvOq{oxunXx$A
zSM4m6)Y_QJ6|46CSO{zUmx7|CN5+NWxTS&Pm$vx%Y3s0;P7D(J1C4_NR3SkDp{^-L
z?zL8B;aK^f(YmvR)0O7^Bo-W%zbP6c+E^ROx$wDe-guhWO+9O^_%>7FG&U=FKhzdT
zQ~hn@!zu}>HV<#@JE+P;zS-8Xny)fv1gAlFt03lNhPjg$lBfex4MJRBSXfe$WPBVO
zo?*)K5KOsuTCY%*Tf|uvM`?Jq<VvOyL{`3wSQ^w)*6OtT9pe3s*YjbSLJNObOud^D
zYI8@4A3)!X49^j2JK_{@6z-ZWw7{9W1MCLKZ-|E48M^|4KaoqppNlt#AuCvvY8&Mu
z)NjLiUN~E9419@uJXiRV2OddN&02Kh;Q`y2YFw%YD-$Y@|BcII1+m8d4b1O8RL&7!
zv%KyWMTDhBD_MM$te%r-()|d7aALvbodTeIee+H#qkAy6<vf*~wF*1EGfWHdz_MJg
zV6cp{$u`CEw=&*Q(*xCcYkt=TZiLwvKVFk?*z*_N=2yvHo6a3Fr@eQA;RK2Z=C>5k
z8)(bvj^P}2hm1{X^sh!k-#i7tpUH$tA`o+KY}g|QyMk|B%-w&w4`8nS+=?EaR3VYH
ziU*Ik3MEa4W0KDHUFbdUs2_228kC#TK8AmZDCMGg8ea>HRM4moBzqcj76`vUrVe`{
zjoSYDZBl+n3{?~omel*Iug|^Y`Z**HSatC5@HAwR@Fx^rd@g3nnNX%8*Ho-*6+NL;
zq@tq7qvU#&nD6&Yf`T&r$3WSmD}b>~CB_<Yi8NV`BDE-do}N<5V<o*U!i>P9Nh?PR
z4!mPn|MS5Mv$`2H`o3h)REE-gqj>N_Sj=nwQ%Pe|eZ8`-?{${I#e!*<-c9coAvsxD
zS+ygYw->_0rf?xv9g?Poz&JH?PgiazUO#X+g4ln|m&BU32|f5x2h;;zeB1@TW#-~u
zvEMjyVQk#At95u$&)J!JN-%nMQDZi~qIz&ryU-X!>2=N2^Kwl+)K!;@qhPi+J(xG)
zK`W23bum!Zm?XlSyVM^Na9{yB?csJbqLl4@$$*RPn$eeOxlj+L+PlrHv&-r0&<Af$
zT@pwiMs8{*tL(O@FTh8TV{)D$|3r5w-shjkA~GuwG8ev^Pknb15$pra?D@6WY2h9J
z^(wUydorJy-=0Xw9W$x*i4fzy?qe?!#K4fo-HplWdiQAI#7PlWj8s=651UM=L1qnF
zmFKB+P+vw~t9un^<>@iUeN@=%ENRzjM}$0fVG8eL+^wlR7cbCPT1(mp+hrap6%oZ4
z99F6}<NoS;q@a?~0nZ5gY{yC0s&rjj!r4pF7&d=$ms8~>-eleN&V*tjPmWW4b9%2W
zCCy$$nW?PjO0~pSg?#ZSfn{EQn0ZsA7>zeJK2M^bJT`yNeP<Ren=4#uxrF;{wumm>
zhHLCzPro`>?yBETBylxix_i=|N67dJl!P_fknLcLy`!uXSxmNe!+*B#Tb@X+c-J7+
z7p7qDoY#G<`D;WZ9X64g)~LEUi6QC>*@@IA&Wc<uLh)7!46dqWIq|py3M})Uc3e1{
z5Rnf2nrDQ~Eq!>MEx?h<mGV-(rp+y8NytwixAO4%!|TNkdgRI<Uo;yz>aM}v-jmHx
z=7fQ!5=7PKTXq_Z(d?6%5PD?9tp%+gn~~?f66mox<fbayPdeoOM?$CoH8BNBH5FI}
zeYI%fW5AL?jr`8k_lbm@^-AcpbMMK8TTE0`RQ4}9ZjZ(|#o^-Na=#7hpuk6hM<auz
z?b?k^@~ABJu0`}vb|IDM={{F<#ws@<4&;n}=54ZHOi!ZRA3q)D73imXHSIW3*&VrT
zFMq)nSl2hGLm#k!b@#Jz__IKTWOoPX>0I<=oP%Eq=!&Z0a>WjT+vB#;l@--lCE%2e
zX#=urw^-&<;oBu2EaqM@mJYrk5xhq3I&BZJmWjY3gN9~$M<tWwM3V%tD<}{dp0-^e
zeDQKtM!%EL6nIkfN)TQ13~<Fe#C(%<P-r_y;MK}sJeWFKTJ3~r7&{VlB2<-o*{tDl
zFrVDQY`B<gFzW!`b`7BM4Z;pH;89c`7rN!7Ezzv3;{71PU2P^_;F4m2v#C`TKHtqK
zx|N~FQ}bHQC-j&v$E@0dd#no0Mk4wU_+hE=rSB0Y@aNHdG1O_m248SpNOp?4l$6+H
zpJGk=?a>#TIsg3+ZaHrh2RPDza0X0qp2#>1#65D2diKl&P3VGa#l@<fPZ-vLu5U?B
zhFX=LnhrKSnaJm8e;;va7WPdN9Hn>t;|a1BTdFi93ho!-705y8q&V4x>H)<lSAmX;
z8-*GpBX;wAd6y2D>s(rkO=nc`OQvd()+W%!w$SfwHd}RU)O;=!Z>G*q^suvZy*Qd~
zaMuF`wCvuSKmDj_@62`~pfTX<1zc<HK4hu{<8q0ipb0I`(9!qxQ}nRcP@AV>bkf&h
zqdOF0rMprL47=waLVXzYm-7|Toa9T!DqbzNC#d=|^ot5q&9>8%SK7*j_AW0Z2i)r8
z{pitb<?v)_M_SNnlrS&+^m+4{0*_lX76FB<$!)dM8|z0?NR~%2`Szz;fy*A&`0o0d
ze6@<0*W%LxH7rgOXY=#>jc&Jp8_N8*7uul7>v>>MQ$t&xb7I=)^1RbqO0hB51PR_d
z!Yg*LRGCKPM7PV7CzMuJfK&Mffk-MHcWs6;W)7Pd$WZ-5!e(&%2lGJI$A%o&QR9(d
z)2FXPC_-1Cn%0fI0wg2rpf4~U?#VNe7&3%E{PasC2dmLLKMniGm=O`#fonF76c$f6
zXrXIbFCrKvHaxkxTpgBDo(UrIT2g1N<#x4r58||Q7ig-ZAZC>aMj#}VSI}|#r;kn_
zThGo2Z`;a7zOA>gcCmy7fAN6o#jYMUx^9OjUImsf?-d57TW>44FdU=(d`Pa4tYK=P
z5R~+I*`6<rf>EyMQ_FGDnNOT+Bb-ypOB>HuOF`ZuyLobySgD}>+8ql9lWw@Zw7g&F
zsC$jcz}1AIDsr`R;1$eh3s!a4nr6bVQ%x^@)An$G>LIL3ERUY=XVgs}FO72QG5Eup
zE?#<dSZ%!UqI?S(BvWqELVm(3@2(sva^nZb4H_OrJHa=qKPj5-)6S%?Lkw)?FEL@K
z6cf9DmH0gpXveU>sI8ozk@+%e_`4irjs3L#Sp$^_8u=U2c_mcgX~p5Hi6#Ky!R;;9
z`c}|NkkCS7fN(VSLo?u=vh+hh+2SdW{OUv+t=%i$oE@0%Ce%~Z`^xc6Ri31$0p<tj
zsA|;H24h3obG%whn9059b&+_MUh6o5km5>JG^jYRNsKL*ecAo{8Y-v=A#iY||FWX}
z$>7AAplsjkIjI265K<M=l=B{yNH$xFpOW_C)3nP;B_vBx-d<$J`K_fXDv@)T7pdA)
zG2>k=ND8{?vba8<=pW%tM>CQB@l=^8NF5l`$Zj!gYH}GMpyrYD;K>Z>c5)nbd;{*d
zTxj&tS{%`O-B{zSfYtufKEZOCz+!Bq$qhH4h3g_sZ3gw6o~jMEacvGYk-hWO|2v8`
z3oAi+H`I*~6T@EN!65iWq`=oz{CRh~1=GVxkp4L5p-Kw|WxrKY@D1|Jx6v-ceZ%WL
zVh?Ml5BN*fxJIT$C5!Ufn|vXhkg`n5vzb)>aaX36sHmuWQll3#-mJTOu|nOHtVJIN
z=|9`hqN80a+xa~?`7q{nlLcB+FOKBxCN4<K9P&p^3^~hU?7tn_Wp>PdBBkd)+^|FF
zE#Orh^px<@R+ltlEv^vZREfEAp&7^cq%7q}V4Y&1S1y3Y=JR5HfJ+7HmNmqTz(nN$
zHpwQpPo0ks%~q96TJ?GnbQwAM_|0Kx@sajr5ImvIV-$%=vm(RJF<PRpR9?6o{9YJA
zv*)L07IVjU+GT+g(OTaH=*yd1I3W|Ua2U0EyJA#hc>aZ+z>`pll?|!&9E<h1{RpC9
zTVEVD{Qfqtx~;wa^&$Cf=J0q%T+^iig|8)A2M0Zw+QL|kzJq#Gz+{BWjqRmSgd_|h
zR9WDBt!bD|T$Q+C!a1&GOYPvMc@v~=KK^B~?Y4icMnqI<<wTcR*CM&a=QZcu+UTB}
zi+j5b_sfFx(@}L%+ogJYPp@B12^*@l!Inh$#9<{xVZCRQZ2kZiWnR!UMk-QQM`*KF
zNB(XGib|g4HzCd(a^+oK?-6mnA9@3spv_E}o!dB5F^Ej&*Y!B8t7LG%A`$*2ea+Pp
z8a3$S5=M%2<^aFl8rQqiyQcL_ZVe()S10btk;$_@5aP^^#H@0jRBq#adgH6lAiSI(
zed(fJVRiT`V()nZBI$xrfcX3_n`r1-nOWKFmk!-}OUOau(-$&6fF3`9WONV{ay0Jz
zjf*oS=jkDixHGW?7X4Z@e)<@Q-{75pxSi8a$z5<3xN^6_cFaCRZv|@%5EIQnxl|*I
z%<RY(%x&O0Prz;ys}SH<np$|cBUJeU=Z#eP?xmJJfKpit+Ol8h$YWntMZQ$qY(?LZ
z@fa0rC<lkyK$rv^7a!6KFBjdap0XPC*4OeF!M+&=4Pu*ffxWSmZ1fe51s@)+C~zxe
znw(DcOvpD9vuGm=jXPmG(MwdkS=uM<aZknt&0CVwrvU4!Er`C#QwM{$uQqf!vp%WB
zX;95QFvp!#I~o^NCkuTm-^YlPhK7cav_Ky=XCuA~n?=g<y~{luvk?QDN0X^S%yrkT
zxtUiV34kC&00wSc>-wA-QALDtV&xH*+w>sL7K}<f!lO62{Y$$f8z-rR);GG$@&!6F
zewX~M_Qv%iJ;jR=mrn-RAM24+8QR_$=Xu~*uZ$iqoVUt4;F9FnCUki558drZJ>Jt3
z;Iek;wkt$BQ-3bc>2pDC*jNUN9El*kYk3sb0XCvAn%Uh_rK2APTY1CD0zdY*GS|0a
z(6l|!`}pZ`!Jf<p{ZoW93N~6b1I4*6{V7N%cC$z9CcX~)M(wUxp?yL72+2Mp6v7eq
zMwXiI=&I{j_OV?_Clit^AlShZYZ32ZY%Dyzc&J?{fEdxx(9oPqCQEv}eijUtc$5Tt
zseq1I*uAkY_C#}$Vt+U+%Jvn}3tg*2t_e%>JniI1m0z7HGB^Qoyh?I5Z{oMNF?;60
zs9BN0nFI>KwWMn%{M8?vX~c`}6S_B}e;8tW;iB2V=?)`U(=1J__PY2GdL#O+k<`HC
z+uLPAjB>=x880k;EI;Q=SKVGPK1GY~vL`bh-_$|m^=4F*JficRrRQtEQ<Q!%z`;7`
z>CT41(2Qke$HL-Uu)h)MvkI3(*q;z}Xh;-3H92D3ecr~!#>U1L9_UZn<7Fd~U(CRr
z_fntSY4Or?(`-8y4l=B}e9`Nk03=-;*0;Yb-XBe$D(6ewELS0;pq@G9;{wbjr>%Ff
z87M)oe%MadV51-Vkb_t6nCfr0@F(%^&Z`}byoq?Pslw?QB#y~##dhfr@JK&A-1Bj}
zmEnC@>INq+Au?_y*$r0TiRaH}tI}uS9T_Rk?Wm%Z`ieW9I7zE@aITquBYIDFYjk>e
zN5D>l;V#4-jZ=W}xP~m0JTx*v7f3_%gz8*@%*6+#>U3FCSL%>*T_$ZVNEe-)9)Yl?
zbY_Mc^B!+~LnV)hii(OFlG~$sd!c`JaEYAbH$TV~JDd<-zy`5d$8kp_XAqAZcjF`h
z42+tMDu8wE5+oqq;I|9A>hFArjuAYo@NGV|TJpOoLy~oDpJx^Z+~HXdyz4QnXZWh^
z!j>TRI%VFStGTNDQ+|EleG^(DYwHI23Q=Y6@>^D95E=%@Bi_@Y3tg%8i;lSuQv&$C
zir^d{``wLx=nYFo@%%-<Bvmp=v$F810!4g_U;*1Kq)^C>6)B1QmHqVVSp7F{OCp<T
z<8;)jmi@A_kA&Ib?^>^qR7kXODRmi<_NyH;L^Jm#OSB)XaDHnk4Gl0f)-gc>asEnu
z+SBZ=h9b~`@oc%r_K}~Nt@op)A4|*T{0aGzsX^?N=XlNS-RM(p3zl%g?%p4rz)nI{
z1YG2BrzE3uRt3bOA~O{CK2{!(o4-K&dQ`eb^m2<CG}7x4OIPa4j;4SU*#Ol{R+s&o
z)DCErFAy>^uBL$6A(bKec<Np;IiI4`ZhV`h?J&YoSflje!fw@agd$?U_3t+|M;V7j
zcL1yJRr>-OqBBs*BY#WlH{EaPad<rYYf3aUH15Zr|K<=I8@mko|33|mHQBs=^pj^m
zG2?ht^60-;Cu&G;d`J4FD;sHd#T}Q=#O#G5ZbW)4f;Ec%-F&UbMnK1d73bm@D&7|x
z_1sKPROXc9-Cm~zRJ^c%2Z%Nni<an()M-@P9wyCNkIyL&%W)LTNbDDklaJ@v8E_-t
zU%kZ5_4lOamb1~ULOnXp>xKmea&vJX(QjMRRc$q%z%OD``|>pO|CJJ9Ni5x@4fXbS
z6frkT+!d`kE~j4}K`UvB%+HXI>z4t&f!A(;NDVPhZ<a0aZHgld)bOswTx3gf;Z2z`
zdI*WpuhGWDE&Xf9fsW4bo=)?`e^g8MF`Xku_!ey(1C4Z!;3ULWBKJZB>@rd~<JvFE
zgvCk7B+`_-$l2C2e@Fh}x+PUAeoRc#j=;+8bX_VL*CNW~5$S|;AraV$G2@M3^u_hA
zuF_}U9+)up%62RHtQLOoEnz{8jGv$6V&hR)!fdRq5^g`>AQlja8o>IxDtzkb%EsrZ
zwmINwbsqF^<C#meK-5@UN{NkK22$EeI^lf^@3_hFAkk$-k9?raQ)$co%A0*KTR&>7
z@^m91;+yM`{Y1-A(d0d+E4KJ>au)#~oc$xpq0Sk(q&<McV!T=qLu6Xeu(~3Kt4kj`
zr`i@QlM)8Mh&D1D$B((<I{8t*t$#34Zx{-I#@KFp2z7h7HfTK(OSSv#HD{eZ!Ne(A
z0DN1;_rWKZiM$)XsL;?tem2FP<<#69?E4eD-93n%jXj@(supc$ZxSQ{ksM^?)pEu$
zV>=*`a^Py)?s-rSoPaaFGil6oW&C=;mhaqnx6@tKR~n=Q69w-~{$vd5bE75-(&gE|
z%qsJi2kWWvcs~rBUsiADnPa;8|I*Q6150b3Wmf1q>Gd@2*DD&~y7I}~de1~}fYS*(
zA0pC!qP(eG#reH~g(W#czO@pB^w@8yp=5avyn8*f=OZp-0Jr4-xQ?;HQ-vQ}QeI+q
zqP9u4YD-2CL)u!MH@b^P8k8j7wDZM}?AD3l?kHQ1U9W5&BC^B~Fk%dLp&xyL0URV8
zxjS`FOnAWt=hVq!C4g>2J|yMrQ;EW`?#3BRu;J<MRSs9U_mKHsA_4X1y<et^z?WiI
zK=RD%6*>v9Mi=pJrCN`oiI+q|HrcsK7k@H_Q)m@bj59p%C9=ek2$q%TG{FoVU`tFw
zIF?-m^KlG1K4#Hx-(&EDocusv-(=q#sF0H(7mk<7kk*qA^Wcd6z2S!BKJ6iv*gZ!k
zP}cWGSCB&J|M>D5LpaioU>yM~fr_ih_)T%w<rGT5<&h6sEUFG~xTJ)CW=SX5Gff=o
z7&edD&u=f}0_46Ja;az_(ZhgmSaL@jUoq!3`hFTLQMDS6>1Q)&%HXf|wOI{)C;RB6
zqI5o`s5;#B0)w8y>~6^u3f%NO?)1iT7yzopk-L`3m3(UijO<jD9wIKfW$E+SFaYL@
z)5Ouvpu@bp{xv&A+B3xNwCVgP1N5A^=wQ{YRTuAM2We+#4tTTgf)hItzZK2=yyu_~
zl$BtU4!+DtEDBqA$(ptl>T|R@qIbP66F{uH_Pv>J<LcV<>zZIe<^@1N-b^%Ng+IH)
ziRQF1)m6y+rLuKLKP1bY%Z<ML&UFCoNU;`6_cd-~)lF^Ujl1!Z8>TCoy)j&<a&;NS
zC0(rzwu;5H+Vy#vA>~;H2B!f=U`SS_v$F9xj;8ldv$<AYea{KC#nUzKjFnS=XP`B=
zev{VIFO4|jmGDvnelAqa#YQiRllIonO<TDn&2^o5`iZUQV^xBBTJ}X}LybOtP8ief
z4m%<F|KtL+aBqI`3iD4*ZgD`$Yv)Z#eW`vrG+fI#4uX!(>FVIR9b&a8+?uH`4_D>^
zhvIgkKYw<y+?}Ay&C==nS}oI5r-oBIsQMu&nH5{yWg{W0WxB0_v1p&W{J~9tw_{me
z2Tqvh;G=%r<o`-M|9Lf8g88f<>(`6DMhoqP#OPp~UWvH23Q6Mv`wfjRs+%Wyr#+b6
zV&|I`e1OJ@ixl{Z<!&{!f7y55*Skmr!Bx^TTmDt3$pa=jFerYt!rAH_<n8?^o5fr}
ze=FrZD43?pL{_5=QCVYu(TM7g#dd#AD3w31=x6lYmoH!Ou-K=3<?Y76IJ~pDBkn+-
z&<2E4JiZ!Dj@U`SUS{Lz&Lxn<OD_Jt1+GPr-GJSy{&GM}{1q*0blkKDN}XN><K2r`
zgm4E*i=K<o!Ig|JSJE})X1gaAYq0AozH=Oo6K`_MHKI42<9U!pI5$ZLD~-)y=0J>#
zE)TRw&4}cYp8L+&&hw6rqJ8^WUK^YVNWt^!$cOh@{1%O3Tmq!9{L7T}cq-d)Fzs|F
zGKHAXRQlcEhM3qbg7ZocC9jt#lhWddb)!diQ8XxEUD7A;Tqsv7k{8}stJ*cQKDEr~
zTF)IxIPfU{r9V+5o@Db&c4Tz$HNB<J<4>$0Uk4hkD+1hreJ8Q2y#hSR3n9}%QI=H8
z<eCpWi9T(h8CC(<`b~462tqj@vXKGC`cmP3+rv=ghZcGFqX*2huDu7xK=Z|<LOmqq
z8&4IY>8L&3y!HC_@TQmZ1$Lv3n&j_;rA9lv-KLX?+phc2FqUcdy}>@ml<j$YxQ;){
z$Fg`FRXFkjxuQ8Sh{KG%NO1>L`*KAR61_eLqUzaSTlXyRJ!U^qQYinT5%2G-JZx`s
zHGOd?kpV(9#Mm-8;gMgJOe!(XU9YaRtZr>wZzwq~0Nk^gw44ZHG>1(F_O-8&*qW~r
zlTp(aVkU}9;+&*Xp8dL5-ENsLOkj_`c=+MFNvysWSkH~BpuRZ>s>uP^0UZOg1=OC|
zyYA<Bn~mK@Db{Ln9bS9@$rLnKf(0lt)8nSuimOUrDJR{+{+wmmoP_;kf%MBdRU-J$
z{nmQc8IIRMA9|sL%_n26KI^G23tyZpZW<tSS<4&diB|pJ^}c(!=tS#hC~8{JpokK1
zUBZM6;z(ppVu+ViMZH8998-4-c|uCHmM`gG$oMH(c_Hj=7!r%bg(Z{^=}Fq}n9m?o
z{!f%3AVhIMeO0+PIMCJ$yHH1NJ8vY3OudF!<!u#GFAV3_^tiW0UrWD^K6vJ{j{v7%
zUMBE%ssyOemcVC5U_lVr*M?qQSV&*{P~v<4h3swUTS~O94kr$+AQds7cmg`AfG(km
z4Yu&&BAHsW<??}*ql#My_S?kZRp$GXL6Cm>8*3ewRzl!dBFg37WW{l2AoI>+cec82
zE#w`;{@Gz>t1GJf1M-Y`H!n$Ve*}8UR2v(Hjn$_%Z^V(HWd-w8cNOIAij7#}k;T-{
z@=DOWfM%}S!sYLJHsc|Q`g%b|0zoipFcc+!erGhXZGCuCJ5;>ZbgLGBd7+gvsW-ul
zqqTu|%!(4WF=b3wROD*5D%d7&!+CjYs)|b5)Bshj{AwKV&@J7-VDpKfGu%b;HaO5m
z(?!p2qC}FNm*8yd!gPTkU3TSI^}d6>-oAY&etJ+}<7L7gJm3cG)K^lRRJCuo`;??E
z8|t^CP8`d`!d6(N7cKGoAWwqr<iEYps7r0;)k$%7==!8M&eNicc%MMmXN2PHhQ4L$
zm(f9uu}K&N3Tfh1g=z27!8@ljQWlbzPmblP5QH#lT!7q3tA3Lc)6aTyM8utU4<Z;_
zLjnJ52$qQGMZ>Xbr9jfm)sNsvbte+RR|CmOW9IRz_(=eBJucTxzHS^GHF859e@m9p
zc^iT%7j>G3(^vMCb{l}G#F6qk6>6mL-D*t1F-G1*u+2DC%dzcR-XjYp=Aoix=lRtP
ziTs1BZVz%t7gV@5lh;N7AOTFJPU5(^h38JDCvTaNMW>38FU7`GEjuy>Xth{A(G+vC
zZO0HwemJNtAfBMcOXT%I4C57k%y3F2AjtJFe3l_hM-O@b9p-V>|3QPcP(T8Ix&Fio
zHm5W=MxrE}AqCBSAY1)Byb<WH2z$*)(-i_dT57U^TACI)hgthQKl8OoW&_ZdJF~}J
zpHOc&cBrY7+Vo?HD8?&)UALuwr}r+*9MJuGoh|=sX;gksZIsj>w^?nEX5Z908NTc<
zcKwZ29lRJFjM*;L**YcsIW4ijk%0P<LXVl|7}DtDJm)nA&+SSY$}a;?Jj5?IwR-b$
zawtO*)xjHscM9h#phGUyTH&UhPSAryw&-&;oU?CvnfGzSQHGT}NrD6GhnhVbVMlCP
z^$k!!;_U^wC+YR<`GEB}wH?HM%^!f^rgRZKBwQsYt2zJH{E+%(llysN>KE%Gx)k!(
zt&?MZtD<wqm-KGRJ`WvW6o>gx2V}IJ9fSw{i*q`ORdX{vDD=jH=Bbh8B!l9^SWh;u
z|8VlE#^uf^n?TSlo;O=e{z$4WuWJt;vQyqbpKf}xQTT^+yGDRKVkSE3fZI#Rjir@{
zGLsuwW8Z#qBJw()8wEg!Tu7}IGc_?$gTQbHupRfFTJ4z%nb+NLqd9@rd%du4-&+41
zl8{lk<UK^D%`VK8W}pM(&jTR7__7?1!91povj{hk&3qp-R<A{PCl0cUC`t+@?!Fv+
z5^$!#T;)0$8n<3DuokOLBOYX{|5$|oG-^5q3r*L(1<?Ud##I7$ZHjZveq;gzKwH3o
zfPu-FsO-<|aX(z35#x{W``o?04Q%CreQiGHcZjsjG<G_n5%IlDsyCc3#}B$gaHofp
z(rI&|_L=$<&~=w59TPXOrAxtXhe9w#qbJ&FfpW8vCU2iYQ_@}MRb?X@BOD4@6F;L=
ziWMPMo5higv9B-JhChFRTENp=_3C-jbiw3rPNGaR+n<d5qVwVeJr8d!9o1MxIpn#}
zNpF)V^Hj!$&kg>7W=s4DeGP0a0TQ~1oe}6LW3h}9)59B~%y>xh@5YzS)O{-@dPT#Q
z)&`PV#2(I=cg-|KoSjHC2U~(WJ(2};GW4o)p?E@0+1e^AnTw95H7{rl|FtHYL@oYd
zib403ApaBn<4(&Lp)c3E;v3gS!_p;oBWsn;qoeM%h@1S7G-`F&rF%&yiy@bBS@%4R
z3ec_TYl5Wp7w7Y5M~VA&otGRx?FmBiOxeGfcoNcz?$mfpiky!#05??_>3gNO#*9l3
z4`n_k-kJL6TTxIk{2<8jZ|s_Xz7Vp<<?+nPh*i2$>U|<>Q=tYELhiB8Y+Rv6sp#T<
z=I1YE<$6`fwS&fDLZ#%F4oEm;OCP;-jYf*h8E=(%hE-JygbMkM^Pitx!FpkA6dL-{
zq7#jVfP>ld?%v+S(^9{ibnE2YhilJT=P4lG!<WeQ6Vt4@`9yQqg7-oC4O`pdh@&29
z<EGKI^G7R-wFuook27}SpQ;4~sUIWr77Sj~Pj=R@w9*U4AIrQ~HNBV4-}Cnee$n~f
zGEG5A1~tCo<^J~2>>{g65;;dlmrragBG@<b%toHX&RSf=Bf1Z~ObOl^6w;+0`_2{8
z>N;J~+f?n~IxF((H(nhzWM?cZek&`x&BUtF`_vm}s6tj0{-I=`8t_1<5@3h2%){DZ
zhF|M&1#5fn^OBYVE;(?cKcu?QGc}*P6<c8=JRHoM+0P4^-ptid$rO(Ge3AzVR`;e5
zm7V+Fg8QtdeFRJK8s004<dVACaAv4JZ<cQ7LNs|wIe5)7-}6-?I>pEj+Iu&^_NTf-
z?~awA%}+4`0lf-82D$GuF^P<7lCB5Z<?o44G6YAF6U^U#z{*X-!5CDig^rf7joxJW
zr3ho5!5T$vJ?@lO2=+t8oftdSd@~nC)i2jPQ&ujgef)l59h2SiX$|^rhy{G~j5XQJ
zfxrBfAT>!~-FAwQ*6Okg#~d^pjW*vQ<jusrd8Nt{Q`U3l)(0FP;WTIpym^&-LKzk*
z9vdhL?7EWd1{w52^__gzBhoXtY4S{;c+;-QZHR1A^{N&ev-4r4e_}A%)PG{^f$6Y=
zkkPilaZd;@1$GjypV`5+n84Rj;q>XRQYq7%7m}a2ZF!#M0tQUi-)^_Tpu@bi&KncF
z-n>qCU~V?OKc=1|?Eah9vsd?5XHW13OA9YuJ7IAJLTqd}DcKVb#_xj~JE=1ZC-C1u
z&FshjY;*~?$Mu?XBB)H<oy%^!Sfw=z(mXwbkN5_io}-e7|6%tYHAgG4<6`>-*9`MJ
z*+=V$qVo1X17l++rHGWUtzJn6(bs9j!ti6GhET!<?7OcdgW4y||2!NOWi&I!JlS|~
zH*O1t_^q@DjO&Wg&<wg>pBDw@9qL~`*bs`~{WV-t?2<73?Q59(josX`k?*pPG->0D
z-mi{h64*%q^AK~ar6zjaHG$kb>vmOhld*6NrN4qi+xcE<oLgL~DNV+P8JFiTT1>rJ
zS6?R5Fx7GB5YEH!^P=uig`xC?jEq$eiKdyC=PzEv+__Z6WwHKxuW%|r=|W1srjkl9
ztG^a(bq4hwS5WzP#oQw<ei{8eVeBOPH-A~I-}Ha1k@8kuxqo!@NIFu3o`X>2*}vSx
zYS<r8=YQerK6W+Pd-wg%2L788w1kJ#Q&RlD^_Jn#-~RKfEKAwjbA0^ts=zy)fWSZw
zkGI<SvUz`tD(Y?XFU5}4R`016Z3mU<wh43X=zqe)*x1+`eTp6TAv7_uv78>Z+W8d!
zD%E+VcRrn|vkArB)zQ?1@xR;wLsIDBS0`YF>*MsKJX6<iGUYhvtN4HSCjl#_>ETz<
z=x+OZlRd5<|H1sWDYH0xYAJ(im1y=LXjoTxINehyXJUz(P-KQhBmdvH^JD5k*lho?
zYjR48ax6hbm1s5|A>nksoC6LnrbWGh-C_+tbD7=mhbAYCv6E1{?Ow*B!evT~_TK)r
zAdmIuKTe+>QgvOIp5}bUQvEKXql})JWOcUgbyEHHmqMJ9cBsiQP4Vyf5`HvX@mtxP
zGu`9*yO%^G@sB_JoBogK!~YW{OagK#zXh6Pil+Ml7+lNHs{}0iL;)Gsm+$2pUCT6y
z=Z2`;_`Ny6pteXaZNnWG^A{dgJu~W=mq1$E9k-uF%@cdYx;GavOrIL{BVd2}s_9rb
z3wP<_iSTX^Z@O@zX#@mJ{5AWFGVAf<p7QQ!PEQ4T1)<0n`y=Sj-=a<eMxgpAGt!*9
zSYz?5`>v5p-ZVutecr=7*@DySXAm;gpbiuvujM*7Ew{Nf61|%xsfw5?dn&qtn)FQN
z2=6!$H~IQ*Y#1O?R(3wAt(`iL7^hHvQ|R^<<3D4yP<p&l{Uz7)%6^nz{P0uTW~Zal
z-Mn$V6&mnX0)}B}K;d5@Y|*)yqyWK&yf6xB-Y(WaJ6a79$;GI_$=Bz(!`)S&98koU
z7>utPiEtZ4H;(?kqo#O^F!#U}tNz%U-e#|V<UG?^PI(kR%4SrZx7i8MN;9~~xq0n9
zw>&(<XaY%}vDg1bLqqdK@)V(lK|@2x&wEYfe|^mQL?~m?umvRhs2@ZdXr5W7?BjMp
zzT!20S3X*K8(-{y__*RbVs^_1>lQj+)@&FJ__Qn^Z@zhd)9L$U6ip(Qyw<%~{^&j_
z$uSJ!<BTYHQnxCS0w=|_?UO7a=N;y~-<1?>cJbNRazd#6yfX74IeFxfzGPSP^+!~6
zWJyqH=o0pEnvArjMDC?1_x2>p1!k?z2B37(PY8GLs>q5RHPbDU>C8p8QX|pLG_gx*
z{vne)XDqg13>~bt;sH@zan+}zuxSm|-cd1Mgh(c>&*pA4dh|d})^dNNG!-)i>ayF<
zSyu(pZPxU9tKrnTEn<A3ksSOB;)hZU9B;e(!gVayb}}V83fVIH5NofpXH~z~TfcN}
zb`VMzL=THwy>Af;-rPdvX|tWNVe0*P{HDMl_fr<=Y8K4xaC}0CkLc{V&+RBQ?`bDZ
z?t+S>9~rgWl3Z#1(3N0>Yxwr%Pf9=X^!hleA>7xRm{pHim>Dfgu^U>skfkY?%p3XV
ztAl6-x&_Y(#2#P3ly1+a414XM_o4F&ZNnrswDKyxxd>~WurUXJJ6?CHoP(AWe=~G|
z<V~3ArZP&i2i-Mz5)s&|)HNY^<Hz*5JhNv=aBlj14bvw-{iU0!_*j8y|JF03kYyg*
z8#BMggf6g-iaeAc2yTr5c2XJ)4%Qu4fZI9(8dQLp{MdqSGU)>^md~TWr--}~27O~I
zopVhav%wC25pT|~@9UbMB{19Y0Oi*}@x~<UHr8(Ii7q#;CL-x^WZkn)2k#1m!kr|?
zHy@g_gdLwdV_%SXA?ns8(D5x`V%lIRit4~dL6v%dQoO3kAm~f6N%34_OrX-fXF+qB
zvT?Em`5@}#pn^4R`H75}w+(6A^!({qp|^hOL0{z#)iH@DeuYD8a_y5Kfn(#Am~*3=
ziF)P?$pwv;b9ABW&S9Ldzj*(g^~%}W^#8@)TXx0Ot?RlWSQ6abEd<xXNpL5)y9X`Y
z-QArc!QI{6p>U^gcXv1~@7!yiHQU+ieB7V*AE;ifjWPP@<G!DEUD_DNKikgu2VTsu
z+>)OVJ+`UfLQJoE^FDj39Cx!-s3F>>YjXs4^QS8?QGU{ER74)MHd#u^X0>%Nb-S9E
z`abH7NVJ;ZjPz^Ent__an*gD(eKh7-THc$uf-Cfpc)|pLlJAr9_2@y9ma8sA(C5J)
zoN`99PA?dIUr+ruIy`ob+Z8&Rfx00>@l+`PuyJgTye*%RalTpM{YRYv?iKXz@4dKm
zHwDf2tOUnMmcsmy>~~|1C+BO)a>$aQ{<3R@Z4G9OSmTHUHAe02ogrN?@b@KWtH!Hs
zz?_%p4rA>LvFf#5K?^_!Pu5zXGB$s<Qs)W)I|K9=iJ%W~Hv=e)nCLnmeC566yP?!A
zT?~g}OU>7dkU3uYS+0~8ulI!nUah#RMODcwe3I3IIs2$gJ~Ihiu}q2TIyT)4^3Buv
z=A72Lo;;FBR=n`_Tnr43eh^1o=X<7)h(1R%wH(<^5#Nx)?v!y$yyp~p_E_Jz)QxIt
zk;m|U7;`@Yn+;5zjhw+~Wl?(Fe?b95Ld+_~UH2h(b;k<<Ep+=B?<t<Q!{DgwFC#d#
zLFp-L!w~_k(~~4Mckjb(huKw>4Mk;vO7jUCoGLw%%e9aBDVgp%T!)X3mwsQ*+I+Z(
z_z>yK#jh_Ha#`4X_L@BeO-r|Dt!t_B1ew~M5PnGOnQlE5L=w-XU{{p70#9ftIa;Gv
zg6|5f+ex)gxs54Ljb3w@9!?sKPvE^xhAW^}r!IfF&%PuC(c)NsQT{uhE&lfd<4v~A
z0MXTs5Lz>2<8X+&oYZ$T_>Sr-mA0EcQ1_J-yz0iSa5nr>ZH#w3<7Kh(?hR_L<<|`k
zs`9?KKj$d_%&-QwrCX?`naO%WYNMrPW@%di?z5rT8!d=Ete~LP3SzbDeVX?#qu@WL
zcVaYJ?W@+F;lo9t$Zk`**<j=21>PqBCV%gs4mYcQB)H!?3$e{9F7+#HjEXn>kdT=w
z_-L}k^wLsKpLV%mugP+hCf?L6E!>8HzLfGaRDQbx(d&iQ#`e^$PAzs*DnmgYxRCE{
zOhXxObV*Tj%shZ%5q<o5#K{r@QUy_45CBj;WUhLXICDWe6UZDxG6IpgV$8DcF`K*Z
z9*KUpr-Xco2oNW8z=KV2oim+QVO}Ucn(U{qQpPLirAu~`K^M-icz_NPgQU*t@;L41
z#qG$mB~%}^p;0<6#zRZ8gJ~8%HxB~O>xS#4o#HYnCw-V(!xLe^6w4~S{mjs%IhbLA
zqwvaiRB0grzIaNDdxyCQZ7x%SPF*NB^eQCYkhdXNL8QeOZ8md{Om!^N+A6v_TczC)
z+wk7{yD(TA+3GDzWh!mfd@?PAq$L94XCgjYJ}k?3yTj}bsQi3beIm`+M>m@l-+QN&
z9TF_KHXyh2W~sHE-JE73SV=a;5H4T@+VKPZNOBL=2qk>^bnkpiNkJQcUip(}l?&wI
z0dI)QaRGGsc>*&=j?PJMwp6ogB}3nHVKrV<NMk3wzl?dN-o1tOY&Uy85lTaB`n?Iu
zF8^>cr1^g2tG|vkSEdckOM1qE!ZH0DeJ$tCz~I0%#n+Ub8}!wW<cB<077%x5Tn3$K
zi3#T|yy?i&^Nyqnh>6D@eVsz9<fjSY)(3}M%`L)u^CdI(7(@$yBwiqb;9e_qzWT3Q
z!yPB23k!FC3PyykudCw=GdLs}JJ40GNmNht-HrtOar+>*NFc@YG~e$sgKC%sn(2iu
z`Y40riI2<(i_In^`2|6~15uxf-HyPPEwg`q@B<LpV%AoSX!|KWEZN}+^*>w62!lJF
zfAG#V0|N)C5L?@!Iatvp>6~ebB;~~fC$pb+PdAH?i>J@BfAjOMwa^F()&egt2fluT
zg3e59Rj)t6Nv?p%7F;`8JBW(Fd8e#S<b}XZRX8J+!Mg2uX!i`khfKD|(O6`tUalll
zO8FBgjZ$@%>2S_0RoMt4r@%RyW7y5NQ;Ld+?DQzb2%yCwjLmPEf_!$DYe)#gUT)^$
z>E)k28cd=Nq`*%V`s-jdu*_B|bpC^rPb@8pW8d+RP}HG^wbHLtJo@Jy=)JT00C98<
z-R3OkERRX|0aI45wkq78u?<-!dW`xW1w<L+QpLTb8`G9e^o!wc<}8(btO?~o)WI3>
zHg`P~K-_uKmuu|nJ<IiKGJy!gkT5j+_}@qf@HicPxq8H1o9h9C1*^SO^{vzG!-NH|
zd<p&Ity4A02#1!PhDU9ESH@eH*H?HC&S&D4sB{x~L2Va{R?avpp@diD3Gm{R9{Oq>
zQMy73k2R|M!~$MhqTVuolYUIhCa%IS1ROa9CIn%FH-t5cg+KWDz8YA{^Z-ALL6<rJ
z*ob}N`tfufeI6JFoUZyf_HlGQ4=5TEXE&cxbhnd(1!hZ00!<vy<=BEqvRflaWH1mB
z7`xS24o~CQBh00Yz~_=<<zJVx(siHH0FR>HtM0Lxitu9PH8C=+M2&mGZZ92Yvvq?t
z8&LoaOtp`=Fivfesvx-NfC#tU%QP#7i{G~g?-$D18zl=fbW<WE#NV^J3fNKV?U_qx
z4JfM&MWOhaY(<odk`{;dW*gHn&sKXX;=>EW%@iv?I2-N>bQ9^Nrw04==L@7&b_{K_
zM479u2j$~2*0t|R^;pN=t~~Rx@4D2;RJpl+CwsW(esnW0cEEb&efsgnv)2a5kPXsb
zvEB^2OqnV$ga4SqBw)|@vn}i}repYskRU3!b4(h#*L<lR8mg1tbk_{QVzwE{Nyj1V
z%^RQ1nd<}eJKfV%Z9&j<*825X<eYH^HYcWFcb_G}WUjOhHu23L@q5%VOmzP1&$=(P
zutF6E(*zXe-UU8sc-Uo<>(?h3>!@bd{W`XSKeE58NdekNdu_|82P**>>qNp@_n*j*
z)zzCv{nBm;Y*()d3M>q9Rry+@%$A{vK1cr&sxrYD&WC@nStjRcXATX0yT7z*)E8pt
zKS{es6Qq3Oh_Y#FHe`d6CXHH#OMb0U(Q0uH-?^m`&<|*2g24Sul(unO*p1I5{PIDM
zMDWEkv+!kg;V7!I5o*G-#$i+rlMN7}J=0h9uyt<P#nLXsF9)<qMO9RA6195RVA0h}
zijtm*lW{x47y1P#_><D@XLWsZt6cp~V-A*)t3R^|mz$Eq=ElC#I8}AD#{clS^kF9;
z-#E>eBV3`-Dg#hez(*b7!#trf<7z)a(wB#`b#oXL!@Ds?br%yf_QDY7X|?#3!AC+r
zzS>7HWPD)O64P&VEAq-<;qTC*e6C1#=n$-_>q3D-za4)_cXox3p57Pf@nsmTuC%(e
z+e;Id*`<|6^y34Gh;UcWBlI&{C~4Fb!57XHHO8*9i0sCMdb;GQ)_vxj^z}Z6^Lvx`
z?1)FxGxB-rjM)l;@CbwWMk5Mdgi%|v2!v5|8Z3VJaiMu|cCRgbc=UYlus<h4=u(z1
z5ve843I?Gz`mShsItTMtz9r4Ub8aW{o+><Qx7J29CB&an+Bb5@dU`QkEoigVLNbrj
z6M^QOg-KMH)A7iPR-Ap~{lTY9KQu2;ZUznaVnLS+!;hJgD~lite~s_<ir8|$ezw>W
zw0?n7l;l(QUz)_i$-siHf~hl{3?(>RYa!-nw^EP1LP~DY=cRTzq%@ja@N6fG3xAUo
z7q;w+x`)Ns+M|4Yj(IfH(tV6-3rhdPff{XE_g}LB)wtB$D+{%3>o8vy>p6m_=>kR<
zDuwvD)ll0hvP)Y+rszwk!^ZJ9;%kHJ>Fmwj-F$NJ;n4`@aMh$1+uY!T>~^d>R4UcF
zu!Z(Bf*ri>O#|WQyHpi$3Xn1o^gkEa5V;_poUAl8)1!S%#K!(OuLKIIFxU*#=(=bL
z^eE7_A2TKD@P5$zy*1`Yd1_!=@j1~>|5^8{vNS?%9QBtb={Af(K+t3;vsJKP{t~n9
zv%Y#hSjO|kv&uCDb<4t+BKnp<aTL9;cxBOfQu4ZmhW-XK)A(djEQiRBkdk)pvmbT!
z)XFeR_n0I#_e!316#^#?H1maxCl-ZGbNn5W@CC45QK23gCxwFcD&A|I<+YQ@t-}Ww
zjf|S=d5`ThWIJJL*CVMh9dI5)HZ(-ekK;*jzX=Kno~CZ1d*$)zAArV^Y{Ix%t;faP
zvk(}hC(-rJ0d)?<J;YQvlsM#0+hKbk5&%-#y9PnH@-@&xh&b9-%FUpW9)XU(FFouR
z`8hdI-{H!h6qdpIaF0f3O{?L)1LxIs31<3jiEJgjZsGN~mPW^hWruD{$jOyTX4;`K
z4-z@_$4l0)8FJr6L`2?zf2RhUyGHgBdA*}MzQBnqalzTx&=BsZn~3$V71U1my(7aT
zU#A9*G#p6i4~ICYXX_jav&B5nCrr=6^6?q~_@7ZWmLaF1C+-+A4P{_n6nU~-@>L}W
zC3akjnc&>VBz0zbaa;YE9gmWxJ3Uptwet_PRlYglNL=!-HRw1vILy+t{M~1%u#cFD
zDMmb_Qq?#qgtTD30*Ke4^S*1abJ>r#2@==)3_(ffhP{R`0P5{R{P5@~FL1dx7rUN5
z2s7<$w!`z2S91GU%&rjw-2`>*be^YN2oa6ALsemAA-b~_L>72|C&GRtvi)?HIB;TW
zYenpFU0xS+B&3`N&vjShW;wyaqS~&@5O~ub0))=B<8Di<e6xkpn&v-r2D?6Gk)oNV
z`;>p)R^B&w44Js$@VvT|Qv3$HMbFdsV}Hsx)<B)>3Ef=!anAJ!$1D-cHoo)G67qWP
zXLMJ~&W{aGwwqF4JI%e(1yns3WuYBo;=6hezY3R@ihemuHC)qVd)bV;xntVws=;e(
z<x74E4sdffZZ!(|Nk9w(<E{ui)M)>B;l%O#rq4q+-6=L;_g#MdQZM-oSLRq+=i>4{
zm_fss_fK*w3Z%l9$O;0P{V<kkRZ}A^|L7J?5mH7-<LbV-Z30Dz3lVT7fa7u)7MLQ8
z!Se9&ci1i>|3W7>w4GA=i$5vFLB>Nh$VuMK8zh6ZZ2Iw=cbvS<E-l&^{afY}7fR*v
zXcv^%0rp&YsW>3tZPJ17sUK1U@yO3l{1`l5KmhYM(qbN;q9M0eV69#`O~r+QgHK*_
zTp~B0?t0DKle5nwCSUuU9J^OnW&(@IhtEmfHcjYd>iqFiL#_%2)jZ5-J2<Lry(;dO
zAZMwTDXtFP?)IXKuPr0LR(HD_Sa~g7g3;TGS5Co@M=aB8f$z#`DLoUuAld?lj_;T(
zDb<@bFn+xK1@~>-Tw&qM1R*lf$RG^i?h=|BU_og%Dj^U0GBF(vB&#{uh14Y`GFtGU
zB_oBg#nm0!_l=pBp8lgW5}*9duQ9gfutpdRw7qD9WYpJfwX(&Ukk=)-)rlKl-a8hT
zEg0(e)X14y?#5LgqPU6=a*8NP?T&pkB~-U-AGC|tn*_vp<5crOGFOeZ29-o@<jd1#
z*pw#_aqnSoXA--g6m3KdLiAi1xnXjGD~vy|g(!~n*<_F_b-G?SR+ccH-%r+D95Gc0
zx;EEO3SvJ}Qu@V$P=&BC52t@rlj#S^qvlD$E5sT?BZQJG=DEP2QAsGdGfjI)3%Q@e
zqQ|dgoyYu)kG0~265V>v?Bz~hYj@bcbGx57L1K3sU5u5Gu|oc4s_gS5d1BLPY^s(t
zGG8*~Tomz%V)}!WC=I<4c+F<LkPEo?&5x|wC7|{L{=MdGNzsR7Wse-5`S5T7&R{O+
zRip{pJ$21h4Mn`rFHs_e-x3{a$X>UKTMx6_aJy~~*bxt_`yfAm9RFx<xod`644=Dn
zU|g#yqwHKLU2NUd{Q>3mf!BMfznJbv-@ZELr<1SB<}aM>8B4-Pu+cglVFgmWPcEea
zP6ogYDUfodr>&Kum8IgsD5B^b8c9Z=fIzG-C3JW*iu`QN$Fd?7Fph&L6+c(%BG-21
z;I4>0!v%GTq4anQC^h%zA32@2y5BMF6Sw|;0=d={@1HSM><f~VECemTI%l%u+Q9EK
z(4WD<%i?83<S~TQyJ5!-0+{!=<2<X5(3euTH7hw?yqPttYX+pCZuevp?xhg^%I?<1
zJE|~*LVc)+$e_A+>WZR-Ti-mD&&Ura<fmp;5XA0N@Cs45$NZ{NTt{2s_&YMiwqs=o
z+xUh&263KBU#d4hmOsyJ7k4B)9u+$TuGMvQw{mvGMI7G0(*C;390*OX*8UPnt^(Zr
z>;bESBdcB){jjl?>0S;ORqAZK8kw#g!=}H#C$zPE|7ay{VPD?Ay9*pEB9coEKp~$0
z9m6&BX6gQ&ijfB!TDPf#E1ao>CP#8<5Wt3lEg?*`J0#Z7shE<Yqi4ExlMYk3ytR8A
zDMm7QCL1EDc)n(+>5opu`3<{$D<DGJE%ACd|B1@@17es+|Itq!`l4q;6x~vHg!Or%
zi`gQoQhVW#XmP`tdTiNI@}4p{>uPw*r|1}}+GKBwKN#D0#rf~m9(GzaVe%KZ&Q1fx
zcJCO{3X&4iJ>zQsz#X}(4T?(|JlAs}mW<r~R!^LmyO=KO%jOj~F3u?NTRh;pDPeF%
z;+>(GLaA*zwKy-@p<U0&gm|U)iCF`!1Om_bbV<LBV&k|Ft<Xeor{sz)Z#M8hka#64
zjF(QG)>ak)c|zICiOx7I?XDZ|)7mI*&lE6A3lHAM0d?|KUG17!b-&;W@3My4%co+$
zJC+gG+ly)<rHdrt@;Ayc>MvJBog67=?Ca<nzbL!NX-fuPsa%#?cZ1}qFDw_akO{+c
zPZ3nixh^a_ED6H8mk1U<#w644uOzEw@Z_QhbXA6se`&XF$eT^XHMA+2{i+vbw(gB}
z41<&IQWk`FpPr`pM(ciK;}>8bz$OSbdfF}U<h-^1#kUXwh>_7>%6~B+Wjjwvdr)AT
zUHob|t@5p<Y1=sW2T5%VgHL|$5%l7v87YywYT@aSh3lYitr}Hgrk(R?n?wUd|Ha9k
ztJWGNZk%^>*@AF=LAq~x9GZZ&xz2&4`yMOuvY~on@wJ-jYvHtyDiuWi`GqYmgM}pz
zzw6K5u}tO-`(d)e%iHC&;lQ4eXaib*2a-{z7hc3@%4f+oQ8z)CF|4H7&`<HU*|8cb
zI3?zYl;VT2w2h~KfiN))OH(v~sP9tWfV|i&F3(h3j?uF=$|Q|r6l0G-_{;p5Yd?WR
zq!}OM<9=70B!`|kfuO8)pTRv(!CVVc_h(0ewDvHgKRhJ@bMXxf**($(193`m2Q0C;
zc5&uxE+Cs%dLk{?+%T@;b2hVDs%hW!rtBp>M#GinudLQ<#R~1;k}u7;h#hkse=rNv
zKl?1n1tuY=SUXW_L%L5aj+>GbG8U=?Q)<tYG4V9vJv~c*x5w!|2=A~lRohQ1tDd$B
zl_bG)w9(mJKk1ca+`&f3V|f!;T`F%e>5)Nx_ZP~^mPsWIWaY&#b$WjG_^4EMV+k$=
zFOYfcJ9;l>X}3(;%&W}5HpOiavhnHS%T&VclG)JI7CbwAdxA4XuHf3u)PGa!v{Omh
zKar)S5k}kx59&|;nlgq5a)`hmgnjx%t&}S&{cV3DnD4v($oE+iX>~XDNCK?vjsA+$
zOG$OG8iJhNwXR<r&>k<rXR#-2(viMYwJ<n@!2&17fx9`?xro}qb%L_v^_Ce5a8mRv
zW2p(a>gRl;91LK)u7gd=M96r2l;M;+LryglxmZX)d}(5$z32Z${;c}e7dOeS%qw5g
znoL3Wiv2{eukrMVse0Bf5%1)bUT-Zrvz#O$=yP(%He&-cxOK!nL!#8M4X7>UKqKfd
znD<NM8=T)-Zo<&v>FmR}<3>S+Fp(a!TkgGg_q$%0PX(#rr)>9?9a@F9>1c%`-L~8p
zMCJCB`>ty=@PaZ!1vOf@5wiw@aGpA)WJg~lk8;7l2W`wW)uhWSV6LYeV#?j?*g`hL
z{)sHsBu4e4M?pESoJ0Y`88OySG}q_=Nr#cn_vp`+!gq6esaL(&a^lCuJBQ&aVxPo)
z(kAY;a=*|LY+G;tNt}W9ZfF83y0}q9H0qKI%%Gd;*%CV98RLc%WJC=`Zfw;PD3{Dc
zA``7lb+H7DdZ;p6KNhdF-q*P<RQPcKn(PmMJXQQf9};uqJ7+yzWo4mm3Fd0n<HztI
z^e8VMwXqqYXJsWkZeJVFw_Gr_-^{vS&I9x=gSTl-k>8_Vi&@JB-Y~6JA`PY{;lA$U
zu$fOg$G;u^Qu#J*&_f6*^@{4JpuQGwtE0OF)D#JK;$a*Xt@Wx=VB0MR>csp-E<TvS
z!s>7wde!`Or}lMb`d@vQr+&#e6n@-J>7~@-7v0})XJ&fC5W)nHW#B_JZ9tImKZ=6K
zKR+pb<*GlEu`Hx#e0rbI_?L7whQm!P`!8MayYh52gV|G#E55Q_LAV<;S`dVnUgYym
zrh(l0*_hkxBdSUE0F+Cq{+o7llJ$xa3B-Eq@85By+?m%Q>+=a;{qH{5#<PC_QU9Xp
zUXqae{dZgI$cKN{<onpjM-YE$j59gJO#i=dk}<FW$SZ6FRfznTMGlIT|7<5QzW*Sr
z|Nhn%OD@Z3d-5|*Lg`;WET#?oqt$$*XWzg5um<4-Yi2LU0IQ+s|6K7u;F$_={|T&Q
z{r=a)@^8LnBGiA_WOESzlf-HApY+SG(3F!j|1S+w1n*z&*_hx4)^T{x?ydUc#fxL~
zfrff<+A}sz>xZ4jAjGm#*sha9gECz}y6K*eiz$OS_Zf~Vaz)J2x>r$8^xMvNY(`=!
zj0|{5(TMZ+f?6vf55fqBgU%E~wd_X0tlsq7&T8*DN}krVDni<y_dSkOmV%lu?yo~n
z!$j2{eW!V(`9cT-j9H@R%lTH&;cQIux?_M!_o0vf=vYnWbDMP0ggzNW&Zp?scINCQ
z|A<`A3{Bssx;7IqKD{6;xJ&KU<Mx@kEZ4lgEP+tU9f4!aoP1_}bZr#_@UAjpeY^z%
z8K&?PGiV<tR915%_`x0Rn&h@=Z+N8z6ltnHG!*-Kq>b1}lsepfkUmr!zG?q?#rEs(
zx|R0H#l6(%`pgu(1F`Q6_y9=ea!O<+O*O}%?L?U(awBz?>uJ83>&OC@2LV#c4Gg*e
z#P$AF&<mQf=O3+lJn#`py1v3<#4l=(&XeJ~+yUOQAT0#<j%R#^;}!#3iw!YPTs7pk
zo*265gbQEMpXql>><ms%uU*n9;+NxpLRdbffk5e4-No(j5>WtLFTJVhW^XG&({2=t
zvPYVg;(wr~VgFoE^3F`eY1SFZ(Fa~8ZLDvq<>4wPc*uI;6q4@%;u1t=5fan6k$BIZ
zaGt0m!-QHk@Vaum-0MJ1NJhOPbMMkzTx5heH(HvE!5?GmBslh)>6-iViEzcZ!e^g}
zru`A1_bA+6IT9%+^oWXMU;j#UV4qb&{4ft^_Mh|e?@)D&Oczt)PF!#OE><y0P|yI3
z@Xx7Qv-#kC3Jd&}<j3qRQtH7k&n3FbjWT4XWRAV@jU*KGp5_mU6zQWer0plD&h#j>
zuhp{z+RJsB()sda**;}i|2&k5|J=V@)uw)0qr`{@kl^JBY-6!Zla&$C7f(K7qQ5s%
zm-(q@2eM7~q^|YF@N&<?AG#)giYUm5JUIH+u5p-bZ(6`xw<_KXZRtDQp@l_WK0()N
z5H|nwWoLtv9YZA<9ZMox1~#)-FUJ=fWW{f@`IeoH=4yioDN@PCVtV?|@!VxxaXxC~
zQlj|xMBt76*Q%<rUc`66WLAd!Iym5v)r@uS1)lXXW@javrEqE}-?J!dcx9a^_u*AI
zpFZXz5Vya8hw1KokYL=as7QWex}rYw=XIxKv3f|wtH)Gv8~_U`Oq=%voI|zpx$O_O
zmJNPui=*4UwXV4`l6Zs`Wyp!)9nC10nkBAutN7KUKYa`Gp%~kOglbf3m)Jg8*~5^(
z#`|+L1$Xm4%lt2fYqsU-`+Rq<j6w`|Pd0@8%6-pYZs|xF10i4@!*1gjJ(#sQEJVCk
zv=vZo>ee%_m%x%(_?J|bKa%$XZEGFGXIP{hH;BCR^d_g(T#h>s{PsF=J~kh^LFso(
zasCv0V^N(AFjcLF8+mc4j>7JR)itNrx|L*B3Fi(a4AAQMTe4Nt_i#7s79Y;c3Mcxi
zdCy=UasF;gF*bYIuP%4y7VWK9w<-L^I&#A0CdYVrrd7ug0%J`uMLcyCM7Yb_Dw>bn
zzlT3<_XP)yU3SW}eEF@fbE@%l=aIDMjcl$Y%+=t=jqu78>#k>tWkqmrx`VKH0%8wt
zE}Xf_lt)bg@A)(iynWU^T}i+pa5t(PC%x+No@dY)@3_z^0$_x-xjlO=E8EXnDdtdw
zg?2coij9cC_IIZo-Lagc)qp6VnibABx}-BlGW-mWzF=B;X6LG%%ke4Ieo^Hv79rFf
zFsnt0pVwCh-6{EZXvVtfK(bi;)YeA-M7{>e;)Y(4fMfI3rU;Hvq`2F%y;7hmISNg&
zEN3%-FvQPM+}B3t_c~;U4AS{Cv&F9E@1ec*a4Z{-nu)yZL6C@1Hk<yHKJO>uYo-Gz
zq-dm8wmf<9Bei-;{vF)6(TOcU0aA*%=U9Qi78#aVi(HoEN<uDPGbdqyEP;T=a&WC4
zaaa8cL0!papoSPO4S-(%E{jt|MDK0Wib#O2EQ=VhG2a64(zTFq0*G5l?mkU9jit3l
z9c%1B{B>7ZqGnCvHRCxM|018?$^X8E`i!Lic;-UM;2(^gkx(;JY+%ccyR$iu;o3yK
zg*q8DpBK;O3Ff{`)S3*4_{S%NPHHID-qS>SUww2CAQ^eA`!aieC(uicFM->U7{NUp
zsM{hYh0o=TJ2XTcHumPqTsSiZytwG4po#9e<1Plwgf+KCxpnGN@rg#rFWjdwxAE>j
zkMAi%P>PBPwQkV<0QFcJd+{J7&B>_H`l{P#N#fnc-zGgLVV)jA24{ma+-X)(=MLwr
zb=6d>OQdFdatoK+2e^%y#l10TW}D*sXt@ur-&uvt2nVOto73E`2L>_Rs4UqWXkH~G
zl95#Cj+;Sg8FdA}c*T&y_A77KnK@a50@b0paQM`aqQQ6h$H_sS&u`kSBMY1L1_7ze
ztWgHp=Nm&~Xk+x9{*bVQ1Hk!2d8_8jRlb2}yFfN;fdcbr2T89U%NNF|b;E;H`KqUr
zzed!N*F-h7V1dpsx0yj^n%?9V+erO~P-5*f!Gvv%`vt!>wtzIg*@W%u0_GPhR&3pJ
zSC>T?0ZxL!MW+;XHgC!)j4ykq#9mc`+XB@FcgljCx9>L)hB!{&fjDQKY~$V4VZ_hi
z?ms~J0Yt(Hf|THzop9p*YKB}vAB^1v65Ll=t`ZLqxR}RK1w4vJPY)qK(qs<#M$7Qq
zrT#L31XI2)lfChbY?+<>I=!^VDVM;5Z<odk_qd$J<VzGj8=+I5q=6>r{){ZC$Hj7d
zYdP3&KX4>k&nITLj-`O!(bWm=3f}MJ9lEYbH}*+Dju=XfAb<Hfw&qIgL<hh8-p+34
zCGo|v)9ysx#^v<p>tAuNo45cz9=2cKohD?72J3ufM!4M+O6|V^HT;4K3%Q`@XHOrY
z&Y)V;?hozJ<8!B`xb&RaZL)CL?qFwS+3?yKU;-SBT98hpm5xbeAa>@eAt2$JN4Gaj
zu|SjU#U^-?8<GhEoRFHGl0QQ%%xn*uo2QsTk$I@mWlMuO$3WvHj)L_*sJ8nTjRBj`
zVQVw7m|}ot3YF#d-;>q@Q@j}(0$E>YJf1wFcHcnMo7Kp*?dzi189%%X@V8S+vhiDW
zD#u{2q*U1UQA743{+Z}8_E{smD=b1Q7pI&~-yItiOc1sGXaSlI?{byTAuF=BJS7!b
z>MNbkevXo~=G?45{$Rxt9akExrUL@|K~r3^&@V;A1@MX4c|SSGHXmX4f&{)96<hw7
zCZd@OA=&IQ7Rs~FLD*Y9LyZ4$qOC+o!5-nW1sZR~Ks+wan4VyzvD#|;ed>Z+oEjha
zdZsN)J4}{}_Jyl-fv7jf!tzK9p9v5_qnnqYMk)w?2n$f_3H#LCb7=(C%zN@7s+?m%
zRn};?0|5p`ELM9~C%ZUAz5NOmYU)x%Z)LQH>UpSQA$l)Kmd>`n04-}-ZQ~)l*-C&w
zPTLCCjPreHy7SwWcHzJxL{3a$Yq8l8N&KTxXv}Bh^JQ!8+Pm&XDKhC#{b8z1fc`2=
zmTMPXGFE})jqOfW2iXt0S-QW^px@2IgMG&%mRvdgAM(^IPSn95bNCWBweLS7796tN
zzO80AcV^Rk;|@A-AW(0=hr87R6exBZPN@#8jYp>X{$6P<`cO-QTX)mA@@marD$W;$
zr>}eOrhD~C|MWzUn;2c%v(LnNOm9d|*ny|fne~l=wIEUQj$2jcIVjLfz;r4moB3hR
z)K#qs2SnFVQK#%tfgw+6V>;inru`|3^5)0_SugZi{OK3)^#=>vAYoEwBxbx4de|4P
z;R<0tWBe#7iz3Hs()IDxo=dtPFoO_!J4Q{<Wq#?~)bX+BL)`9aU?6C%C#Ex#;l|m{
zXz=rLTj;u6Fe(8_f4`uQk$fWboaeV4NVrZs3+jiY#Ou~YAbD(29(#Pnxe>V8N}FH%
z3PwAMXhvNpxhm?PpifZJ`R{h!84vQ+>(~f+ePsGN4muidT(f<TnMblkL0EmEu07iI
zIA>{OrC_Tf$M1n+hRNRa9BEgso6v32TA8w2Mc0J9*5avRYu0@G<;ROMrWCePpP3Ev
z%#Ohx+g<Lkwu00}QIO$b-hK5fH}c|fITtEzv02pcEvfE-(1#1-!@h-iQRmag__HVJ
z*v*SnvwfA<|A8YX@sMS&P<4OP2WjCE#wj<RTtm?`v~<Jb)rw5a@NaJ=;FMJREWt>Q
z((+*<lL>dWDO-RizK9Pk>SW`)kVR-|Ew*9ABlB<IUDq66xQ-iGsa<lT{?l0YeO?Ki
zKhzCcpxBOEsG%u!S_$6XUXTb@9iwXtZQw~8XrI$EX{YPMmbK-!hU8}CXE(a|bTL;~
zkiZ|)xU^zJ8yn=*?afnv(Q)E2?X}l4@w&ZvbHkIO-+q0bV1MPGm_O(EsLE0FPX}`s
zOE~rqy_H;*6n_4!y0;tTyu|l&JErFiE$#kN&ZjeluI6YroX4sl*?B{d09g^OA1FV#
zutF*5Sc>YsE@btP$NW|8<V2`;|82F!JIW3N<YLiQnXC+a{qe)ciwyxVXFQ8@ZQ<<A
zqy?}w7#uD#{OAQ|IFXgRabCA-6kY0pRZ|IXU+Gq|iikut|FaP0QJ#XH9c+E@iyCm=
zP#hoS_u=cjYolA14H(eZSi_;I(%<IKu^f=j2W4P1Sl3lP)Ix7Tfb)+ZAnvaXVM|Yv
zijLcVa`Izm%W*Q`L*8$5M{P}hze9M|t9Ec~nls?y_ukG<=bUQp@2Qa5%Lt|=#f@)I
zs+w=lce4a)57yJ9&QI()uhLm~7i)BFH#3w1S|o{rvgJ6oGMQZwpXna#Pt>%fhkpPM
zN9r`jrSxE2YDyVgw+$4eG>C%=jE6`*^!QH17Vcod3il8f#Ar$DLl7)ELLw=#R2WKD
zD+0uzux82q2}{T_tS}hov7!|9wL0PnB$zo0N`BtRv8%LaME;tLGrEe&#FxG?nEbPV
z<K&Oe{>7MBtFI`?><Sj5tV3N4J35OhuN>+34FXc9BWrGbnx&5??~&;F7?W`iDZ%9~
z-im02G0Bl8JGc<@M}F@f*dJu|`bjd8{TAQeKd)jl$!gn<b!dA~+J6f_iz&yDEwMh%
zVexi?;E2Z&P=SNPY;Yu(6E34dMZ>!?^tdx0{-=w()SW0e-m~)e(InPVL1c{Iy^B)N
z)i}iH3KekY!y7~rEef2`m&;X<c3a;u!Y>^~Zvg)Nlz*WaF8}MzYnm2E!-ujVjy9&G
zjE~*dn~uuyY3M=45DTpM0!ng_pucFo5u(s{SF9v4c`dt)%p~x&P1!Hf*{~$f7eYF6
zH@0(}$<~$~{sGH=hn#pI_gy7KZtzrx!3Ev9uf8P60vNBDEdC?-!Q2p0<?^bk?Ot3K
zOS^RSGgk>^h-j?Aepm!G?K%)0eP*b|!%0`YxtLO1EN*ur;2at<T?V}DVvtwRP%Vw7
zVG-%u(LE(lp8OS#9DkH6{Am=}U779#x~d;o07qqBFz3i3pY6)B`^Pe4$qSO4naFle
zEZ`JIGWW#GM0ORyDYKhP*GV;tx~kLf5mzWnjO)FJ(E`rbfrX}aPZw^paFvrwjhWSB
zv6%Q$Ey5h0r&qISq8u-6D&#^G2%jHz6iQf!$?kfv495xWN`9yQRBH^4mg$;a!C5fe
z+CqV-Ar-+*nx8307r#Q)bPi5<{?{x3MrGCg{yE<3CO$erhY+v4HQ8a>w~T`#m=QPk
z&CLDWJ(ZHJi%GRc(MZ4hdL<-~lckY^6HVtUR=+It@5POu!!<CMwnk1GJ^$;FO!?0t
zd0Q&VXnla9s2u*vdjZZ>4cIlDkB`LDCd1a46XL@0iraZEvsVnsb#2w)DB<DRIJt$f
zZf(fX>_Cu)4S6~>f6hZuIW4O$`H9u}OU@h}LxK?%M$wiM)u$JZNl=X*%DO+@(W_Q;
zn6c@03P!gxNIs(BVfpLt#NPT_t+oxzt>_NL<Uz0Dye$2DV3L`8n=~B>{5Mtm-C;)l
z!vpVgMgHd(Rn8FC%lU(jy7EK+1Yr}tUw}fTkmbd%1EUPjtH{oM^EoS33l=-4GP@;^
zS=&c;5S6=k))%adnb*?-SKj4K<#Mc7_r|`HF-GLU((lNhfy0TFD}jY2%D;2kPutCS
zA;4{}H!Td;mi_Ob%G1a!9jsscg0Z@?(@V{dTmUJD#`^Rw$n7&r-KlUV=bT+l?O?q(
zPH>w_Kox_JJ*3aIl#B)BIu{W<?p4KPD=$i?)I;g+-(b7dwk91(I34FsEXT#wte6WF
z*EQexDe+sB%Ho_gIm=}yN>Y#Ysvdjx-f3`d4k?>QUa9t~oio7!$o2*`=jtG#26C(~
z%rWB7ygw9%KULs7ive^*Oa!t{xi{o!r8KY?t3lhk0NRf0HhiFU``Gr_3v-dEXOlp_
zIxC;;5BnxvK;7Vc)(KF(1!VUAtQPy+bpOY537Oxb2$HvK#<p(t$E0tG6ockIAEKm%
zc^ZlW)RMlaYb<Rl%pg2xQlcv&1r?ZS{*;m50IdbKxa9aOv?$ZsMg+(sxOdJybT}~b
zZ+ktyIhVxarhHKGx-2b%>PJt(=08v_6@mT}*Fs+rMYqU_H`0Tpcioaw%=_oB!9ihu
z=%2k}QBjhcJ>>JU&5gJ9C#Ci3LB(vbouu9u&#A?IR_@LnwhlR;kj5wPiPGqKJGSJm
z1cFqpi%+T$N6$upaB1S8c8b`}Zot^1H^m=V7Y~zc)7wlzyt#8}RmX`vu`4I%O6{?1
zMy8|<PaAv3NBRcj<NkeV-dxiHbgw&<`M0wl>ry^uZkRIENze`*J>L30Pu{g3c!kMR
z8Y=ZS&y(=XJ)Zen^yg*MWt=N*95WvHCw4iEsRHdxj}@I2WSZAn#=<4nbB?dEg$vrk
z+C@1p)i|$S^=PDHC1Kan)*pK>2ua2XqiRLr{tPZ$?Y6B^7JYE9uu>nH|8;)#76b07
z&&K67Q1WB90h-KFc8r~j@{-7z`DO**T-2Uq-f@?L&5}u(9>2ugU?4oWiUFRS-cy??
ztXL@F9Xzj7#xzN+uA(V8c0ZJ=^7UUVbQ%xy0v4~wQBBi-hWr|HF7V8`k^`qaUbI3f
zvyW19zmT`864Jduw|r{wek7}|Y?EAQ@JgNRCAKUFl|>ro1fbNOiYTAi@aw=3bYuor
z*fIrsuMp8h$mB4d?GMVU0*8jKiDeluq9BpqWc7CQ&s2)c^F>q8#3v7}JvsIP6??w4
zPWdR$S(P1=lZAu4GDkb1NsK{Vr`JsnYJMkt=6W0=)z*jZN679ec+&8w&(D;>Or2JB
zg5TYKx!`rR3PdlO*GMAs4pyA+*RUzTevz~lt&!B23Mtz^wk^k-ex}&Ft=kZLkmR&p
zk_}CXvDi2KnCsOX>&#=hLZ1A9WODI>h1iiMcY^1GU1@Kam~uGCuA0){02B>qZsxqd
z`$wbpLPJ}BJo^q0ie(H$eMg=vnRA`h_&{2HjQQc8V4E8)hJ?Yp-IS%@1=>qsNv;}5
zP4*^S2U&aETv>jZddFx;buVrDS88eFm<{C{@Gk!TP#xf3k$xl4?4<TLpr;>BCL+61
zs=B-QUBeiZr?}?vH;wpo`H-OH@{hix&q%y@HgF-kk?No_0%p+6aC13PmmeQ^TxrX#
zw<>S>_cSb&sPJE*cue+*%$V1@;gB@69ldQd8AWobcnY)Iu%7Wy@IRsZi}*jLqCnTO
zgXRWL=1PGht527q#d!Pb{D)quf=7}6MC~sTLu~)uBK1Gy=>L_=kNlsH@c-}9f77ag
ze-{;^or7D$e)QUWiPW4_(ptrn{?*cEQ>_hm-K>vIKQrCjt_(Ze=5jGHa$rG3!E9cK
z;Fq(`;Gh7|z>)3H*7~lX+JcGSmdt{!x51v)**gd}Q-dF_@*(Jwfq}$HPD)-YZ4bIb
z|8m*M>cQ!=(aLgeA{QEhX7qDVQoym%9l-b!nBW7N-dZ>opO-%i)fq;(Be??XUplY9
zzBw)U$gjgzS@hC$G8pTxu?nE1vMvbbUCt$Pq(9)e{=U^ajJ|gPujlJLN7NkZaV-4x
zdSxl@Vs$KC@M>}5+<~*HUM({m(Te}+GR(r-RBE<MHPAAbJ$$7vgB5o>N&C+<1YYkL
z+TQAGWqB52PWLbBF=x@e6^kzr+u_)$x9`JlPI>)f7IZ0(4NRoB2Qp>^cKfAJ4#R6>
zZ-||BA_jwm`muX8n(hFcw#&ZnBgKxT6|i-)hky(gFdsy%&=e{7YNpbt8N;RS7f<{W
z^f5jWfC1#5KnB*Rx{n~cakJ%%c>DI~dJ*HcXw;j_BUX)RRa(E9h0?Jzh-G>4zLt%2
zoLs%p`WeycR0t16nxDO(?tKeOfRit?PWCs~Mb8e$*wI<qdCy#%jSu$w4H<)#tVJR0
z{!<MLgddZ0{K0PSBgCU;OJRS9MD^)*y;H?v;Vs81o{1<3bxTh~c6Ge&Phl0zq-x>H
zPB)hoJ~)#i%{QEpf>@{iuD`%2RA8(mDSzm@^C#Zqki@NkAcdmI-((!)m4bOUZ*WIQ
zjMkbH`HG&(+sasG)?a-H5y{C8HyJVNRq!V#rAHy1Z0#YM3tN|e;@$121JK!0?}Olv
zgS{piFtO-MW-e&O*;7cI-iRa9<HX#9L5}>sSWftJ{nTcKaq?f4%QUe{7ug6qFva8F
zNJh+Q`A@1h6^MGdkdm~bHb&#3hPhkN-qT8(K(Rsd%gEv`@@0nck11+1oq@Ec>oC{?
zL6Jx(wAL8rnOf5wVqaT*5Vs)<io32gUTkCU>Ahiy7<=pf4qkuuZ&3L;<0xQTsZY&Q
zy<=mT%mk0dUTTT;U+=$%yb`R46)(Ky$i#ooMiqL=IA9Hp85(-EW#eVN`Nk<ZB_d|L
zssl)eI_Ro)v!!;imDe$owh_zP2lqRuJF$LFTGbL)^)&7-d-ocQBMiE#=VkdVPm`|f
z(509yHk%YsmfoBy41`rB<g|V;{&$|u;^B@f?a{|}-Dux-)9F0xKr5~~3;U+cnvp~k
z|C9FHDHY5-$!J}->{r|QKn;SH9}|+MH*fK4Qba9x9udw?ZFa@RlBPGX4NPgh;TT~q
z*ETPyA9n3**P;X}8*?fw-DV?kC(6=#5(UXw^#AvDkxuuOYUUx26ScK`wCT>W9pWBi
z-N91KdwqF;r5ln)*q_X$I^RQr3g9_{V$e715SF*KWLNc6HvM6DIAao1se22;5!w*5
zjK;%fQ|Tk+dNLZaP$Mn1YU5s5#o3kJ);ub4aoeu9H9tqM5kKi#cvd%;<+Z0dcbDB`
zCJ)8d%wWyYc{Yi0{RJGaR3IOGz9CV|-MMI?7(|(!(*CqcFe2HC<|6ou=+0|Mt<ytU
z)eR%RQcnw9;?=C%EkB&IO=yTLc3k1R@sfZRT$@`!rFg}jdv~dA2B&9D9npTLK&Tnm
zrtYTLm+_6&!#f=u-;QPsonE4o#@UKBxK1(-{?o{`J@#vIe{k6KbvawUu`tKW{eRyn
z(VwObo!rhl9?pR@lSru!J{|8d7+P+Ow_5j`XMNqh@V?W5Yn#tZS1D7l9YAwE0ql)I
zB#WXIlic3!>?_w6pZMjoUG)B>Wn*A#RBLnB#hHvYV%Q0{uVHs~yF9a3%pXfG6bLMq
z(!vlu1}$ATU})>N78$Plf%oo7A2aSBHv6)0IGQ>*la|1GhA+SKwL2=iak|?W&nHs5
zO3!wG4!reHBZ@r6m<>&r-rwRO#BkntRT7k2^8A)W-s-A+CZ##&QXF&JD=^H9!6&F>
zf4F_}Lt$8`A}xnKZ(IC;vO>63abmPvmVXj6|Hm{hA=#8P>kB)9Kom;0Q=k9vL+7WK
zQaW7L`RpRzsgL>OQP0t47uVkE>hlJ{?*s=E<AvvgKJj@@c~cp$hfCGOXPn%9+RKAr
z1l1ZQ@_R$|>f(ur*XK(y2a<0`7)^DS3^cPZ`6hLzUnd;1c(5vONq|lBq;PzC5%wVk
zlOC#H<=bBwD*=^Zg$|;1cxag~UQo3QdRql*w1dIV={Xcp(m+I|83~^*1daY`q5yaR
z)plbH-uny(>vfy+>Ga`?EoZ4v!kL$As~7(&-S=Myc+O=SBg;m>`<VOhQx4*YA4(v}
zG%YdP<v5_8HR_C}(PwoQ4_f#f+d@;*HXY2gw`^EA@qG00V4rTg%3e>FOBzOqntcCF
z?uwBy$Ge}*3&rD|x|v*Vob=;Q-h{?Ny+4~(hRg3nCCKHL@WFSkNvht+=Bzzj)dpk^
zFH8wGs*8&kRCFUK#*W=}f;>VAm7V!d6BaO>2fdb2YgH4GdnXOMV;WwWu0&#kV<#iv
z%flPusv~HDceb-TZi@@66}XsEp9`n4c2-5J>;kWCLS%0*Mi&|{phE%~Si7@>y!{Ko
zd2;^8Z!Pv6j>P<#6SD2qY?K&|#%pUVi;0h4J`gEe@W;~H*5?EV1SfV0mt}RPTK`BB
z?fVc_ZXu(tMsMA_R2j4NdPh)qQN61=#?1-N7}Q;nLp)lFrYX^kM{|$NHk&Yz{s|fu
z0q&&TIfbn?#(yU=C&Zt$)<@wHI1Fod;~d^hS**T+_vXopmVN$Qc7Qfo_=;oy=Ik=W
z5M##0V~BW6j`_EqRxhm|1Di{)ryOlsf#eP@$LTXWLD#e;pS>g^^eRbk%d@}>-3++P
zrAPuATDXEII5zbR?jX)|(>Nn*N~V3CcPw6)-Mh+aY=?ulaWwn0o0&Td^~+9kYGmy(
zs`j|sK+x))iB14uAZl;7aII=Md~Ym!^Z__7iGEX1&on1NGQF?$Y#EWo6j6ynaSd$C
zpQ=xAz4>QuAcmrJplyC4o1`#u@0oye*2@SpSL}A<S7#a_o$Gs%1`*_KLzb{n-k=X>
z^I$|RUvvD6NLmwu?D1UEAF!<<<c4KzxGMjQfC5(_2R`K)ywg-sREN}emf91d`tPbP
zmKO)d^srAGGSH@1i4Mx?FFbyh!G&a9znVIHTM0BWrCsD8>Dw`w<LbPDAIOvyIo^o2
zHY9|@90A~W<@rsVycv9C`)IQ{TLv&1jNF_*h*8HewIT`iHwy8Kw2B`(iGg?E87G8C
z5#+Pq8hYn%lsW;WwUL1OPKv#)j^1gt5|qDppQUxn5FZU+x+&p$bK)UXs<!c3eI&_<
zGCFCAT}6;*vu%lVOSyP0O|7E_B`)50BKZ8PU89ZV)c^mf5o<!*%;5Cs_}Ya)n~K`a
zymdq)fi_9pTpl0wbSCl?+b3>FR+C30-$ZdrH5lFiq*+PV0wzw8{#vDwNPHG3oz+j+
zI;>vse*fRfF<`!y4SMBuV3kP>J$_qa`yHw9eGpoL@CjOchPFWtkvI#F<2TQKL9~(P
zck12DwjveoBrdPR(YC5u#msD@lYLvG`d4v*G`u0Cm7_LhebfX2cIK;VqP~y%vbEk`
z3TpIQGb+_Z71p@SErP;&EnOj<qH*_6+Om%k{DmHDzjrazv$#M6h*MlMd1*Mn5Ny<+
z@j=cLu*t~pa4RMx25gP+O31sIZyokdhy1{=vc0MoyOY9wsm)VYS=~2|lXk1K*UAxx
zxeE2+c$JvnTnL9Uc$1mUR?*|fy<9C0B!X`{Cz^*_C1fLZj`Hm(k7qumbNi?5s!j3&
z(O>s;nglO$3+%0?!~+Mg2n*?pm$os)1l|0&vr%?EHDQljJhBZikSG!LM*1_qu#>R+
zd3TtlK3_V@QEP2KueKsuTYYxn<ifM&9hB(QS$FdA_Vwtp+4E}24BRnyEXoVa?)BNj
zuMo{QQn~kueAj2L1QB#!`A$b74SxCDw)XXr<;;ja3VzA9aAUTO=+-GDtwz8n_S{=_
z_V}9C2p_ig<eB9KD|ci1fgw2h5vCL@pg$GlpYW%;nIdHgqw>OjN66HhE1MF5M3<N|
zee<=_!TX9)an^8Iw4wTj=*qY^nZ{k-SfpHf3|CJ*7Cd{|^NAyhqQCx~mp!`f_=%Ek
zU(Qs*6&X3ogVl7y4${P)NTn8zPavkR%WU0`_f@>sWu46Ol5c=fuBYeT4KC`z_cG1s
zL0<>=ZeTzrfH+GxBnPZSZ0cQSc{;SjA>OoriFK0Rko)5ZYCvxSN{S1B#Q~w6@Wrmg
z;X!LKM#D(%|J~BC+s<-7pr4=t$RA}BWOKOsBveD>+Oon7=e3%>V^I5W+<|Q2DQmRc
zl7nn}FKxE8DzBbpKAvFf(-jL`pJKEU94(A7P&GAKMtX_$h6Zi#h!Zqpu+23!<hAR4
zYBdcu>Pk0zirj)VK}rZAB-b?xv2@a-&ta9S`k@f8UF&t&VnVjwA(#?*<>YF;NJ<?k
zW3;%>8_LvxvYRZPPyLFw>jGk6qef566iJjeE5PQE$Kll#-ZZifda3_;vTD+^M4%=A
zL0_yMN0-#~EhaK8J1|Hd9xjrww`mOJ;iAzFV`Slh=k`q;A2*vRf@lU&R8J7or(#Rt
zc|m|f@)McJ6sF-)vnSD@(3V6v%3fE?sdoL<AI+qmU?+#MaV*5fX-P?0DuI_T;x2>~
zV}0L!bNZ?s4)LR522e>bh9LDTO{S*-wpg-<)AK?04>1ASpCV{D7=mkgqfvjIhKIbi
z@1NlE7bvF9XJz!B1&uA+CvSv)`Uoc8lo3Jxid=U#9X}?BUAyPXB}og^Uc1B4>TNe)
z%Xxq&wH#-d{Jkxv`K4HrMO&~oyB$Z?(>r2Iq%<YNaIrr1k+%{Rk3{<7QZKEU`a`80
z)6e^fTwhGyM5XJ8vxQvkFNowLeWy%&PP#i-;OiH5TN*V(CCM*>6Gu*iRp!g-Psu2$
z_q-ZxnrCu#2aCR1t;tp9dZaACIPK-;(4>&*2<aqC0-V}ID=uKQLFSW_K&P%lp7k?N
z;?AK2zLsT0dHTSJ7tW_ok)#?fG~lTd^(VT)0Hd&&rlI-fQf`F`JR(rT50*c2m~0MX
z3d6$^WZYD7MZSMEkrD+@%%j>7@*ye38C5~tbjTQ}MB>U_WXa<Y3D0&l*NOd!EA1aX
zHvHG`P2bhE`8Eq*HGFR1Kyz(p@20A<`wyUm$to&&&Gk3OqyfHdqTX)kg@}$KpAXpb
zb-Cr+So7m6eUC*VTfGxoo#qIBRNP?0XLF!Y_(wc(^>$+>HS+B+q{oPCK$h@jMQ|(j
zY@`uAs4*M9B?Iz57xg*+Q`t@#ZpqusuH51ldv0p8`H)2FZ)BTOlBT`V7)7B*E+HdL
zwY6v?N6EFhsd*EVmFir^Ck2e`q>2)<00JHSF1}Z+N6lzV8vZ}*-BnOs-P$jB5&{7d
zBm~#sE(>>ecbDL<3)eu9;O-8=-Q67)?(QtyZLyH9cYkN^{?6&sebG04(^vCiRE?T7
z>zO)!|7V`*aM;~h%t`qB<vgOWH{>p}<*P!G2n+!!6V1aZtQr2M$A*}mRjMWz-Yyxn
zt$WdT1r^$Uu{Ho{@}R7r=SB7IYZ^}H`A>K1YV=nZe9197!}X@Ke9>5|O7etEL|Dil
zGO+8fZ9iR0*Xpg*X7kUWsNGg6g%cMBoXvIDT7u0;cTHOTOfhep2X;29C^mKWOp4NL
zBAC4Hjc%f!+D%H#Hkuk51bQb;9^E<%xMuQw2}vK%CN{(kPFhQuk=p9t=+~XXMh3|9
zCtsuA<4A{o7L<zB*|iE5_n}LLw~j>zmvdXMWLo4jG44+cEwWKo(J3LU*F_34ilJi@
z_AtJ~ifJEncY0BLhBf{Z!xj3TJh$)RvE%nB*5J`>^?Pk_gW!*<@XSwpqY&#6QU>;<
z{beOag7v}DWpsgI&U>_SO(N1CJlRJ!-r6mu#4Go!GaYp*KE!Rlj96|?wwY~z&MiJ7
zAjy-jjqus&qz6YfLRelMpEGOk#Tb*$R8O_*pm;OVh(Xy;!EhM`*H&A2s_m|$i(W(E
z@!j#NBS^~=5HlwI?C875pW!%x_~{Wo!wfUC_`-A}dxMcWJ@;tCL*k$7+YZ|651)9O
zY>jTSzYJuwrO6NrTZ(0yn3>0Wg0%{zbWgQ%CO6ur%c}6*uyU;{YB(cyV<mPje%nP7
zs-6ah(gmF%>~{G|>Tq`O(>vZ~fXY%XUsu-0B0)XjmcQ~-DrlYBlW*q|E^lW7TmPxB
ziHs&Ea`OHWiyNXfI7QCj*sP`7eOU@_=3gFbs~#FETnQgyCkyMBzHHp9v%z^QDxOuA
zv%1X4z;8h6htPG$%a>PfetLHITei0E?jYsy2Hs{Gq8O1VAKBnatICtH&`yb`rwjd5
zLR!pLFU`%QT$%4U{>TOF+TJCY7XL=%dr7~5FZ@Z&#`1XgkA#h;PnO;ms8609_kPeP
zJ!@-xaYA?5i6va_-YB`1+dg}8y^Tm{b9X@!9?j#{wPT%Ohv!#7%e15YVJr1WM_RDT
zOvN-Yaf_!HlO%An_&}9|fZOFexM<=knrGl_yL*q$6%JaaPLtx1)RXAlm`fS-JvmQh
zbN==#Ls3jRa}iE{-w1xj=qO0c!rmairxu`N!L(j^Zpmej$Z(lm_CJKfjG9}o_V>Zb
zT)uPVe<6hg#;SAb{mnJIABXGQ#y1=|U$E0V->{fCD+6RbS(PSgO8@TUYp9A%4+fc-
zVIHwl2uP3+N#KbqVf5r49!qj(>b!gq^<VtCWlf#aG@ncTAF*&M{NKdFjU6K!hx>X_
z49dh(lZ&?YzfV_8dK*^@Iat9!?62mMYRWqvs?W;bh#8RCqpq&_0zR@wfaEZNx3hQD
zu-D&|J&E*lspx+MWim2y*{BD~uqkTK<@&15lg)Aa-fkMQ+gDl|GQ{d{Ngn!DH2_uf
z?gm1|_m5d<)6%r5-C9j*Mh$b13c^NMnc{FIq#~0w7!@pA<KA%-B$oa;ALm_2NmVZw
z^StO1==BNW0FTbLElJ`{X$zeZ{<nAyHg;3Tn37T&A6U3LtPzoiAHc)GgxnqHs2ukE
zJ&lR+6I9PfQa2pu|KS^U5&+*Lw^5wHsrB{+>}hOn#f)htplXMI#l&!s0JhqENgVi9
z;>MGT7y=CqD2Ziu-gNBM_V&j8sW!S)I&?U0JU%(%qxaGpE-C+yeZR(0LFRFxlytls
zAj%vr`ToW?Q$|+pf;+Wd6$-I`A&5?`ITvR?8lkz-8k%L?Ki6T}Oyvr|{;qL#uw31e
z9RGWFHp!|!J!v}?36J72U?_O~Dky)($?E=75%GwBdl(68<+6C2*B(;0Jl=ppjzoih
zDJyK3cW{bd`hdmhZ#e`IO{z<9xp_jC>P=E?J~a;d1GDeC&d1xT_5}i#cr~@gqmGO=
zIZlHM_sxPsI?XHv2cM<fcyHzGOU1!Mv4|!iQ(1P?1pVbOYNT`@U3PX)l%FD5B{Z2j
z0&!g#HnT4)*hehZ@cK-QKl|qOkBD<Yx6RmagHkjbbjp~W3Kq|dAYJTb;1lI{9roOp
zIGA*fThf;vdXe`kVwJA%zeZDp`Mq8{IWhdR2k&QghcVQP=~$F*l`JvXo*g;-t|@ep
z^l&$2#^F(wm~#)k%i2EZX9v<$b#J~AJJ;3UCI-MM-n}IPkeOId%Tbq!;{zru;C;ag
zLlaVN^1O?`3HNr2l`;4M%C*$;9an6j1GX?p8HhVUl+^1|lec%WCL6lyU$Th9vw7|3
zj-%Fhb>!NqIeZx|y3B1?u!Tc8xAGt}xCAncXIVwj*ukc?+dWq3gkG=xZ9JOOmKVfV
zmoJ6nzzUT-z&ZZrb`Kc)wxejU*bcwU;0i3{^TwCrVNWX(HnhFwNn5dexu&FJYQo-C
z1YmGB&>}nm;H15b^Uow>B@d?oUpBci3EO@<gc1!^3fma?6!IE&CfVWi{o4Y}hD{jy
zj@<w`krc(sJ1=Fa#S1W6yhTR&;V{2HE7@CHD=54@DDCrgCM+Azf%rY%YMXLrAGz%|
z$2jAs)-6mn4ReqN)t%lR%qmbZIqvbZnB=M3^T8%$VA|%(H@g2?q$SQXA9S{dB6Z<#
zhgDkB8CYFh_3$!<%dX|(2^Abnwi%Wx{ca<|CD^#5(o}VJUh;iFSxzA*3&A1H@2zjc
z#)31P`(H!|vZ^TT|LQ;N#+Hnq5k&gb_+EW(&gfNYZtn+a$Rcav*JVralxA`}d1cH0
z8}RU?ATK&t@l_Jryp*lRxC4j{{c4Yq%yvLz=hCdyJF>6$9^1RH&!Kua463ds<jgOS
zQWahR=k^ms@U<&r(pl)8$$=^sF%_4*xs`0ocQn-%T}=6&(dVVzb}=8`Uib?H^+b*P
zH7&uVo;55}R2kE;IP|_gPUEUtcqu1OI>YFA2CIg=pq;U7(Z7o}3Zj=GY}Y7e?|CKh
z=er%_zpP=Rib|X{rK6)M#(Te4-*}#sb+D>mzI7vlt&E9%wf2&P;VO$vdr?K@aK5$C
zdT30N)Cv*J)%T(i%SYzX8W4Hft1hVZHjZWOrLG!&ndVY0R-hn#wEt-+HFR#_u%b$%
z=$YbY>k(^`NE)T08piLJ_+!n&<DMJ4fEWF4h9u~qWm|KCM{%v@-<ai#+b0uXC}Ow`
z_F!=}mF1i<)?{|?NvgzGqS@%N;N)7wSE+@(xj6r&tld90>JdJ#f7#BvV_BJ8Y^nL|
zkQFX2v^FM!u$TlLK*j}sy1cI)#!^eSujF)31}{w>8~O4yBXk-Z)B_UQ-$?Hj))*Jo
z)z&>Uxe~y1m2^amp3(LPVJY?5sU=U)ZV%SBBF{gk;T;(G+4ftXUUxP!X`ZNM`;kc%
zY|VO$FImq^_?f!z$PbiePVau&$2ou-TI;_kz$xhO?FQ&(bN*ZJ97SA;4z~DbFA6xO
zH>+|OMQh9)yI6uIZkt&(!O&H0BS^=sAC<f2*a4&?qWQCVt@6N;Y#kBp0Z${0>iFcc
zkKWzCFUQJ@R-GP)gGKYs?teRy*ikn9TGq_tQk6#RVo}-clI~hO?75eUJ>@@-t*sdO
z(gi%>b9g{njS(&B7XO}RFgQ|=+M50`f6uX~J(-RPAhh1mC`7to$G?_4m!Y;MfN~HC
z+wsRfwsZ8fhr=o`E?7?Qn5DO3x}*K?=?n*jb3SE_`>WqqJLq(^JbUKZnN#IfFp0y$
z58LsaOr~Bea#3Tx>oRQQ4Cqh8&FpXuq!n;;9rr*)v&3Veoji6X0qvf0J9ie({E!47
z`>}794!|Dro0mzYOO$ET{zyh#*P9QoQ#__gVG#bOwTo9u$_bZ=gJIHhHOhA5iPPDp
zYZ!r$JQ5{!A(H&sLSa5Uv-@A8M@^5}0XnCoGCt^JIh$j7kbY7+-@5^4c9&;r7L`M~
z8Wmnjh>NZA=W1Han!39Ff+Fk(ZfWwrctj<j+qv&`6FCWPOn?$e6Fx#(mC=H4{P3=Q
z$9?8*>yN;}qB*#86GJ`1)z?d0pFmV+>M<DV{}YXbMc9jetPR6^N#_{uG=`&9r*=2&
zG|yS<516O&sDB5}SLl7?1*f~b2zo!_5{WOsIlc(Cub{=l1bjlUB1a>Y|MaPJ78A1+
ztL$zw0s~H1C_IZcYx=KLwM-I<O5!H$F+X`gY+L)S9|8qp#sp>V%`SvLhM1h!{cyAO
zah=z~!n~ccczrL=Oqd^tS1`qHQ231yS2iG=y+ozsM=;WwZsNA`WsdP_msXhzp~SFG
zA<fSIpL%dPo2`D#td7!U)=rOA5>Hl}a&;nEaCnPK>jD*<tN*O=AymPQH=2w^C#Jw1
zH?smJi%fm3xo9<^ypL}n1Y94po@|s{L~d6Esk3xMmOFrt>g}%EPWkEMrLa>jaH(2u
zOtY@9cXj2LRJMuR#pdCdKGB}<`I;cmp}L9tIdnJCyBJm9dfj3xdXDcNAN%kS<qHaL
zv7eC><oQR_gif>}#Qv-A)`S?#T%eOF!rtOJhRlN9pXRKO;mB3@Yd2NyL)Y2OZ|@ih
zwItBG%JPOH-F_AfAa&p{KH>4bz4FTg@osdl4@fPX!#wlSc&JnTtGH^QSCk>ic2Az1
zJ2kj^KDMn*m4GW_$9}s5B#$+~t4g0$ttK=5SJtMi1+yqt)e6teK{6`w`x$@6i0bvq
zS^6QQl8!|MX(9Le^pUIK{Um`GjG;TW=pb^>!iZ5@-`k}{GuE<<M(mry_TwO$xVI_E
zN^1_0u4gQdkJv{mK_m@NAy}l*YO9vgKmi4VK|dy2e{0}m-7i|QlshKRHZ`O8R>#~t
z88id`@%06eT&+mf?DGr0UFCARDerbKD7<ygXQ0g)zm5H_C{@%*kJevk%ABGFxXtYT
zHTkaELa*37&SWhuEe7+;3GJKy%~2JaNXH!;mxi5eHRA=>Vd&oy-prK;LfJPdkmsBQ
zJul=89*dYzr1<(4^5b6d5Csyl0Q5J}nxd(&OdI>Xyhfna8nmUCeqfwKs|>ZcGV5Y=
zdA(vaM{W@9#2!%IvLfitM|ZbnG-*6PdhUhky3kAY3Goin<DFa`$4boHiYVG>W2y1@
z;PUJpq{lzDPTZ{hME!T{mGuk6Sc2E9={?X>^b9bxxpNmy1KM<<(iDu&9U?SZ2&et}
z=7=QAE4cmW0MC3nPq?U<E@z$M)`0&=HVMZ@E(rzNr!YZ*JZ`E7+S5eZr`WCD@Ty<#
z3zuSvtxQrxmV-NOpU#mEPEuDuIFs2En$&Z?NcysvV#KaVTNZL=3k#ts*w1to8P{J1
zy--bN@Q`T`XY^Lu!(72o<<0m48Lr+TvS5g1AHf(8&A=AVWZ-B7cT%h$Zt5KOjMA^0
zO0T)f#P4qDYR0fkHSfcoXA#N)7M8aa!??b&m)+CTg_0IUjPwC^))-4M)#ibh*>{FQ
zpwkJZp&uxOD8>4k4psC|*P~3Zw0JH&m0`n!7)T4aJ)E%k+qRX3kDyX6ANFWhPSKU~
z_OS5RHb8$f=Qmv{fCpp&^vVI@lck!HoNH!Cz`B$0o{H%&_toCxir1vCq~eZJ1_CIW
z-H~uwng&z!3)=xN#m(D8Q;|gN!94`SKy>UBztIM0meraGsa>Wm2_R6{qL~?0C<;8X
zUW#!s7eTZ|KhTTQpTtk6)zFCJdq#|v$GPP$r*i2u;7)=W;%2-!7EMmEesEGvr|soK
z%}(q~j#|3|IV0oNG)pb~B~dI|JW(}A1vJ_CB=M=S$nMr1XZkOGur0=&^kW#x_1<*A
z7cpEIm6j%Jbk%sTY0rJsJGW^^!6QCsSJuc$M3G<h()zm5XaIPc36$i|4wMe5;RhM$
z1rt9b@AQwGXrHDWG;aV2B*QZG1Tyr0w=vH&Q&_9;8G-%HHZ)MZFg!a__#WQrBa2M>
zRn1~}5szA1fuG~p;jcvfInPx3xSDTu{Z`R~z75)f)TVP6j+NMQ?@JWP9&OIJ(BpO_
zxz0)#pO96e<@bDw+NW=rIn&DKkiKl<*zEWecDDo)$F$8j?J7QD1T5<gYx7wl7GDT{
zeMsA_hp<oF>S*%iZL1ZNREH27w;CQYrMWP=9xoP9RiP~65Q{nP4bXNOygCvgtWKU4
zR^43!A{Jm(JkidFccN^#50#lzSDt~okcB4>6Z5E^6`p`!bEl~+?=Um8`+OmFCidBr
zHfd?vEbfD6x*)ykH<xEO+$?120r*Vgx%AFNTa#WV+Fy8s4)vPfH2s+cQCtQ&xD$ch
zzT*uO0mtrMI@8^tsJwM5H)m^J)>|h;AXuyeA@K&&AfcWl=xK^t|2ZjB@DBBl6+a<N
zJG<!n0ok`*ZECJg!L(p`CV=sX&V^~`uLhf*Crm;_;;oe6l$>{2-3kNZf$*6{(8Uu!
z)!Sl9Q|EF8?St`5iv7zhSk^B|ya{c0E0=5T`Ba;Yi#5=w`_sWS=Ete?pP(uEU5DJk
z;&Iy|Z-+eS6aT=d8o7Zn>gp6skJD|czt5JR-x9-fCf~o(<A3;OcMN9XC@vT&w`ks#
z9+*h{QQju&-kG#is}$JJ7zqwd4YroZgV3f%x9~0*%vaXQ-%yyuKBMglDiUpA{sXqe
zZ`7@Yy_=b%bK2zxV1x731@a|D@fqo#Pe&tW1_eb;L<0gLH2ZV$7g5_i^Cr&1bU{yw
z@vYJbBrFMH|0Ll_=#Aw9(WBZ}^K=17I{4C&58$)5WBS$a_h*7<q|V|_9tn!rcYEx<
z)E0|=Q{i8<{dtrTNZ#;G?a@X4fc6P}MgF{FcuM|js((^{9kK3ri2uo!Bapm(i$D7Q
zZ(0_FwoCCN?7v6V4L<(A8Ggqr{HZSioh-8PtQ5~__VPt5Uy8|1zHktz!H&kdL=mj9
zwKd61^oMHQoD5d}UMz<Na{7q_RX-PT%{^xrrY<bLQW&ynJNjj7>MpbYd>InIE45r{
z!G1>{Onana+R5M`dY9XJ|2(8)4<@)K*l!}%Mkmf*vZx~fM_`;*(mfi@#0SjRK$~O4
zUi?)Zz250KCeDRQvFXpG`QE%c5uD@@NP?vCWSXD>_o|zPN4GMOmg`SXYlt11`-3A5
zC8NDBo>vH(`H@o^vHA=WRXS2znw9TaJhagryq?JQYbh@olp192)r5Q7xc)>Xts5Lb
z!7)Q1HSk$&;DnnnZTAZ6dzVdwMKq>=GEc`*gW3^ysIn`IMQ)C}uEmr~#kBg_V0@0G
z%F<?hZS4I^YSo;-%FxqIj&sghF$(ZSf`Dl}*4G|52~2EvvJS(xI}<4OyKA1RZ@uQM
zn5vtW)Z3r#y$$-iZ?sozoE&Yet^=^VkxQ=DooZq@)duq>(EQ%&yH)0_bt-fV{pQ2!
z&yC+?YkV4lN&n=<b#BuZ%OpA@bB*OwZ}vsde-mby-gW8O#b_r)d454#*>xJp?QD5W
zLG|74Exrf^34-r4c^LZMWCE4oc;U;rlxQrLxW3a?Rn4a{e5x{mJ}}sB)udiuw&s$U
ztmrP++L7UFG8s?q2Q-wbJvnVn|1<NDH05I8@tVVP1>>TQLmOz#^clz9*6cL0sbc|%
zV#DEJH2i>E0V(~gUJ($wW@k8?vs53gTfT(*e2f09ImUHMx13@x1Xe7*nhR&Q-E2!^
zI8CX&g4W)ZUiNh-9L}mVLG}D>Pov?3(JPAq)lj;aCA#G5b9z%_yEoFIy_C_d?gtDJ
zgg8!(LaXIm9Be;sg*#x|*eq7H47(!3=Nv_+DaM7I&hgirS~R#&yr>elcWOgD`B%-8
z5+}ceq3TbL+r>g}*$3fc8-kp5^h_D%Cz24)PA~DZ*$4jOJr!!LMm#guW`?IT*7+TA
z3;l3w^~`C#iKiGy>6PBv>eqzYzL2pfn>?rqqXjxW;t%b~m{A^n!;^RM2Wp@XL{XX8
z(G2Qb^)lD~$_pI?rUA2y*P~Uxyug}pYG$hnj`2--6=J_~-eE?Jz2GleXyf)r*ISzz
zG=cEyE3Rz;$ut|C2wU|5!KaMh<6#~s#;&Yqq>S%=HDcRQ$`#e$GBj0X1z%2B##crt
zwdt^~M!lqKYDSy%CBw`T5$hpwsPoQsJ{bDA({GA>T<S?uFF0=J<_}gc+5FLEjXn_b
zz1eXMrbK#R)4N4|-Kgu`mVGIb=PaUIqyR-9msMeB&ZzwQ%i6^LraNw}HCH+@^!j|1
zji``mc9Q<*bO-BSBk?!V3pKliEJhP3`kFUS_pq*q%GUr}h%*}073rsVQufxB^eVap
zLw6+65BBJ*k$b%;Xu7tmBEb5|D=;!PJ583XQAyOxoeMM_oFX;mMuiu?fZvyx=Md}W
zjGtjqx$EY_qNDpcb6qxGkPqv(nIzPQ2JY&vfy`3!lZ1<h2PW0iRPLP@*xJqlH^Jr>
zn~|tnkNlt3Kupx9H&G=P@7NLVQiftQkWS0hb|$;i#6Dr-!9v*bmAK__KNPxS$eich
zucE8+hU06*OZD6Q8jgTi*--6n7xvIVm1(a=^VLK}YKMZn^*Z@G)$hyi>h9*53assf
z)ELxTnVTCKss#;Xkgtyjoo<Qh^~sL(DsZ;cE4gI+0)7cd6lYQq4}0@f>hv4VVJ)FH
z3{j%uI<BW9?F+Jdrdc8t?|z4ohC?|rutU{HQUgI<^ev_^gJGOJZhQT!W;Dlo2zDaO
z7R`*NlSOpvQ}!E0T*}2x;-n~*`_bMUt{p0&*Rost`+pcPE*3)<)d^Zzicu3#$@iYk
zsl1vUggh;5;sdAZy$_5Rv!lIQmTQM5&bB_VCE6~-#GH1sFzCtq>y0#j02gNsl<!H-
zGngsLJi)nva;Ai#hj-Aw->Q>GBt?2?7AMok6}tEDtT8I2PP6T-)Ox?CkV2%8+6S@=
zf!a=#@R$q&`sS<~-gFzomy{?LI{vT7o8DaqUWJO5`t=yW3tTS>FMXL1@0JAHeBvyX
zQf?1;vMuMn^if+s)Vn23=AU=wB2kAYX&Vs3vC1WhTf28WjGD6EGlugY=k%;?3Olh=
zLOyGu%uYrum7g05l5G&mLn6T{32BNaxjKu*_1QMS*Zz}x;U~9n<3$PlbXQ9;3T*s%
zQKsv)S?&rx;N#BVpJZcpp4o2M@3j1UsJd<gxt!kmx%ti4MF)R+8!C>2e*>_(zn{*n
ztt!RYvkuJ;ZNQt|G1(4F9UanCP)~<`Q*6BFI1@}8J$gCSik*%nnxNgOXjkkxCZyM?
z35#%|rRMPHT!`8vo-eX>(w!fWvd>x_S?7i#(BE);_dEJjE?~Cn5EsK#RX2nLGx+9;
z*Bv)BV}&gRuY{zOCvW)NP!STU&qCt=I#eh6aQF7~VJ@WVu!%&JID<gswD{zX8#Z|`
z!y&@7=LECuoh@xP1Im1{v>ZBIQ1Gl|C}C|ea}8BJ#*Qc>(jRrlUF^hc>_p0o=^DGF
z1J|EPQ5VfwA-Qcj%oW-IPZAjv-WogtW0>~Fxg}f657B-n-d(GhZ=pV^AIqGcR4wx%
z?8YDq*6tfiuRgw}dI>~Z?!It!7*pP&ga{ma<L-_#@aF>aE~xmAr)xe|!LgAKe{!^k
ziuf%%f7joutvJHy4Kj#md8&bt4_ox%Ek>aVjWqVH0d&Urq4#IXH#MBhraFuNn7sUS
z3T852svHPCH?!xnzCLD2__his*RGlpppU0S>q(V^swe#?CXLJPK<qxo`&xQVre&@0
zo8JMN4R+POlH*DL0|akM-h|7binw!&CUm0q*d>dw4{A7-zq9h~t3Gznw_D&>>SgdU
zy!FGa^n8D<ITVT5mm~1e(7m6LI}+H<uvg4(5yqjl++D{n$thJk&ISIZn35I=Y7Pm0
zJeh@bmU%1}fAc&?qqBfIbDb$OjmY}w_0>u_r}EyiDD<9X+L+N2`A))YogP(&s}}gW
z^KeuJc?<tR<r>~(@2cR%OxxU=Xv9Z)5V)M~)cs-&!5HM>4zw9=s<nj>*$Z@uufab)
zpC7#$@zb_p3CSaX*VB*X-Y0~{<zA&CbYH7n9F(J2>=l;3Pn{>6rtvy(HnW2C)6CK=
z>~7IToej$Om*0u*|HuJ2edVGXw8wV`LR|c-(FfU_o(Q!kKnr<l$Eyh(jUA56VnEMF
zbU!^e9)51iUY{o8NcMVOpQ$jm%3$C7<J3Z~Zuy)^fuIV4{+6f@imO9gF|w#8HZw!|
zN85xWH%1971TQ7|AJ$vl0%U9V(iRHwqhb{Hn<cg7U&T2bnhL}pC)L`SL+2D3rq$w2
z`Vpe#ncjtMk;()DMq+;kvJzPP39$?Oprnsf;zvUtITzzJ$k9nEo3y$9GWk}n%6>o;
z_bu-DJ`90^x)md;Y^iTS8TLB4Xi_CC27!bKhL9+Xc4!_)B=C0*IeUG(znX7P7_#K`
zOD?A!YK-X$`&_dDtwPk%RyQRge)slmj)SQT!e+~j=0j-ma3gs*Y?8p4=+vS5b&V{^
z-MT|Xx0MGEZn<l5q76<n?3~b^FwLWuy@L!qMtC>-(Eh6ZyKfD{D;B?3Q(jXH*{X-X
z!nxLD{zS?jP2oMQBsX84nFeQRq*IkJ<hDM8t+a|L8_@jO;$dslFxH^dhkqWW|6r^6
zm9bR?AMVRd3cz6SmfhpY<{)WmT^-21MK<mwxwiqXU=^3&9lz5t2@nZJn?G_e+khUQ
zP9v0BT@B&oX~j;a(=uD?)24>j0AL&9rpNT2s`fIoHU1KzVMW0qt0|WdAIzXGAw-!J
z2B{-`OeM#Xxtvj0S!b^|7x<i*!PR=A4fv>oFXdA>otwm+N!Y}`fM~2y-c-(Gs+WXw
zYGqK*Ir%L1X&T=T#-ooJ7L_{^N4__jXFcGYhvJD~68df{uZP8!E@=~D|A#3gQU=m#
z7sB(|(-mtq&OnrE<JolTT~hR#>dhQ!-%M_1AU&&nky3+(rbG;$_}Cvn1uC0Lu9pL=
zzrP2ch5%dH<p6}8%A<j|f_AzV?3+A+KXrnmOY8oU_#wwvv7o1){@n<pJ|TRjWJ=2G
z!7roUr0H8#V7f=nRe5___YRM+la5Ry(d2UPdFwI|#Xr5ny0%bbil~GRi`7W|Q<)8{
zSIp61k9i7CE8uP?D;W1#xsPAP9N9=C0MjKZO>7F1LgWv$Y0Az!sN;T@Abn7<Fnucp
z**Hh<h%W8CJIdR`S<0{(FaM%`TfRds5Z(O~&8)(<x1&2-oD&axpZ01p-{xIQd+(<{
zq+C|LE+F|zG#gglY3{^>+mKCs1u1EkT4no9(*6p-^3G~{ZQm>HOxjTRz>s~(LFIUC
zJjD1#($!9COF3rs8NKUwcdy?H&e@@>@pG+Y%4gAO{)I&ypXu#84OE>=y#e=raGX-^
zN8+z1!^?S(IBZT#03rt5#rCh*U2l;N4wOc!^9jy_yJ2iF60lysi3VexMzbk2`1p!Z
z*zuLw-w<*P<zX=h@KH={+l>jbSd&XN6R1^6DLS7y|1NJ#C~9&tWbn{TayN*V9Jn`F
zhtHIVYbQ^p^^7qmp}V#*`z&jH1@vn<9~`4pb9GM~N$XQPdI09I^ub;706kZdfikRt
zA27D1D~+&-U;K^dXFr9{A5W$d?WKJ?8LpNs25?PFjhg?)S*ZS!@|HPyiF(N~ienf_
z&BcD)KaB?fLGlItH|BPZc799hJP#HXqRLpyHvLsBhyp>aso$&=I%bTRJG+kLK|N`i
z9f~MURIe{sr85ym0@y3uCIo)9?ubPnH|nD1Ak=GCd}OqS#uoztdL5dvORLBh(_CaT
zzkORXlQ#u01tA!Z8J|-HjksrOjgDwiAw9r!x?P5nj-*z|r=IZH%dYV(I6;7QuYQFr
zd*0);vQP3I4H+lA_H;KWhfFnxX|Vy7_)>pteJUBfoKCzxKoocWlmnacl1gF1#z(EU
z%oxRWVw`KDwA%tZ=0>#?`bk2)yT6WD@>;Sba2($bm&=+D(*2S+n4$t|%GiD3D4=p9
zf6var5j@30JsZEWzx0#Cvobvz=oBkKLTQ8oJe8~%pC?V{Avg`u7t6z9#sdJ^41DR9
z)2T4_P%R(cc+*hMBkn3r-!1N`BZi$K;!Ae+sYBWjEj%jvWB(!(``Tu&X=CWeE~2(y
zY|YI$Y-NIT<-v|tb1FmC;X;}hWD+QZLeSgJv{wt-R>RBvc}-#t+2mC94s-o6iX79E
zNtihkAsVRzJk0H>l{3W2HbdB*&u+lO1fzM+PPBISVg7Xq(ftcZMLA2<CLt=&v)2<n
zXD%zMZ06TDOcO?;7^MnA&qf3FOc6!kVJXjxJci9YZ#T2MrWxhE-9%iR&9$uei6}<p
z#-F9T;k2&fkhJ!<y13KEzarP}AuJbrfdr}CA)}fJ)OxktzRwyxCl~j3WVFwW-z{8<
zDkhQe@q_2n%8zp`M=c7(-|wdyBG*TQjEa`r!d1y6<X&*h`sE~iz6YIbroI&nG1D7S
ze}5!bDTgv|sxLBo_5kwPP+F3&hj`dN_=<5X5i553vw%G^%Ns%d>)r3+up~ifipof8
z#n<@K1pJP17(%t)Sw*gPPbPyO-3$>aSk5RVHRz2L2NK-%k7&C@Sz|IPGU@~7-oA;!
z8Jb-Nil4DA7MZ=~n?B;DWj4>{&C%efUVO(UR#cm2SGeF8&m~d{SGjym$9ZHj>g}=#
z5)*d>-@%(#wuV{Ux|f!~o@#Ctw1OEHC!f*^mI4tTx`&QcIaz&vX9uJYM2WU@J29lD
zdS8Fa;ps^`%J*nFWW6?mVK6|(+jfJ%NRk4z%xF=l{U^atWU5x@@tEl#(s_q_O6hJ!
zqlx1m7enICzK>I9NH>4|^xfIQ3n1Ns^c;qRAstrUA-=^IW-UU>Esa3jZUZC|mNQBy
zCou_IcR;sB_5RU>V}2l0jVIXfucycE+Yue7FU+t%|5#xU_3mXb(C-rQqpkimb>=w}
z+0T}mFt~05Qf8L$+-{Eg<9%3}<OiRd=p_2r5f=dW!W;;~DQe;{9;LojcQZ|4zllW2
zF%D)po>Q#N^{190hx#lz?rLx;?=*9@*mH8)%I@gv!CGG1FQZLO>(lFbC+8mFh*X`K
z%@lp%YZRE8U3|XH&~A7{A_2G~cGk=u2O9p{0whgPu{66@4G^2$kD080jUYW662@ZS
z7qc#um}e}?)jFQei%&+AwAK5X$2nE^zRVD>rd05FtDbTpw~2qhKgq8O)}oQw7{Ww=
zy#9P{UXxKi;i!}udn=?DaEZ7YL905`1&x_J-a1}Ql{2VSIoz5p6{6*vh_tr&lAKm!
z6dLUzQKFmc$aHUHYMQt)d(V7egbPA*d}WF@3>Rzs0neW=*c@#3*#Qj?bF7e%_lc}G
z+FLT^b{yBAloXb`(-T#*lJCmd^Ch{scsD}BA_|@#^<wawKWF9|7zKFce6h)2L~V3-
zztMBd`%m$iFLf+r)|QGVES)RShw~yWqQu!ky#U^m8v{%~LNI`P^Hn^R8LLjq?zocn
z!)VyPq5X8t&aFoo^K{Uob0xfRa-svMHZQmDL=5k@FvSI$YM@-Qit`^T+ERae<KqDQ
zpp7WXZ4eXv`ZtNvp?e0uIG>BjxQ~cbTAg=4mPGRZT)qEpTw}`hNE*@~XB`?QI7v@&
zN{@KUE=_h@u-a_-QLG6v8HW5ICHu(Tyhr8pPCc+TvDIS$ShClVVfV}lpW#hw-{s=$
zCq?Y^j5Gr_eN!)mb4ZyDREd0Mu;~vF2W@(0^Y-?x^Y{k>dy7cRW!48@&-j56)9sHf
z-cYn|L#e?9GN^k}TDAr7n<%|~b0#$B*i$_KN~P8OOx{dJipbNRrjOmj=z<#2WcY)b
z<zqLQF4wk0L~*gnGuPz37gcB%5+7lGL!zUr1afPXzgq-M)OU(-VN)e$N{13TL=tNB
z@FePIa;ID^Bk>=)VEZ3c!c40v^`k{s>q;YFwQQ_&Jf(q4uHwE4i{}a(6r+g{SKIZP
zYzBO6K-&$&p`5`)qyHK57Y!}#LPysLAHRBg;qGJ#c~F3k-n!n8BaM)D^~zFSFT%BE
zJ9B8$gl*PVnr2;;U8|lf?c}_bUcdnCxR%!)iZWnlovR^`oeG^Or9|R&>?!&jvLCuP
z@CFF2I$xbL8v9_($WZ9e{?LHm5PnLz<gUZFWiOqSI{{krikn{M>SMGuy6^qmq4AC!
zZpn63QK=L)x*icj#X<T@R`T)ILd@R4GC`HkFWV+9C1?F#Urh*t`x^08xStUUh$oxU
zcZphbg6l5bW)sA#NO0bNye8Q3t=Go1_Es)`O<^td)9Wr!s{Tu-Ln^O#q*ask_OY9u
ztIy)K+eEsb^=zXxfw0?<looTkO=(uX*MIB$YZ!XcvMy&>9h2fHDPG_DMoqhSRz@wB
z9+Gam(rJHFhv6-z9+Fmob+G<7<djCdIqbMLO-r?IX8%eq;mN@*@EBxGv1?|rZRfx!
zDr3r2qcbOO<VAyggEmOw^yk~<uW!0#993anyPw}=Ks9vt0=*=PL<MT9@luPD=;&{z
z_oi~vlnb=)dtq9qcX$kI&G`o6oCFoZ3;V@2>eRz*EBXTXVP6r(t{B>6RE$|<NXkR8
zWfdRE5}d6+1HoGaukw@nK0Ml2Qj@-`pJbmyNm74BZXHok#QoLDo1^)~PNA16)#@8T
zMXW6S6@h$AYf;YZs~8-7LS}7cLcB6T#mybMov4=7vxy99;byBi%z~rqqH#;jZ}GKp
zma}rW`8JPOeO|Y^M_X!XO8nV7?!}gc0;gl$vv&abD+)#>9Z?lp&7(qyQ@TX1KXr(6
ztH3jO4oiCo!J6R12d8Dv<lNjFY(UzHO;m=rlZyS;59-qiJno?%!N52eiF}bh7QNKs
z*vxz?KDOO!Xx#k1X?(57qotAnrlA_?BNG@r){k57NW_V9Za)05k$I&!veC|cpZ6)4
ze?`Q1dw7Bw*`bX~8_hishIx}a<*np#kENctSjR$f-Hx#2VMS%rry~p#QrSq3?d7r<
z8D!WZ^suy;3<4-)&GQ#~7?aa-vGsehpq~&+tx7U-+3aXUBWFQ@reBfCO$2BeXb?LU
zQnKm2lAlsV^>5h}7>+Liic89SX94AmiLZXR#&zi<mH53!n>5mh6GrxCYxX?rGCT>+
zP)c0Ua*}<@W^}=UIey|#E!#UtZ{DxYPqUwtY_F}aNX|D)L)-zn4Q1g~xeTiXE1+Af
z$$G`X*hukxN`=%@|By4Vx~P_8NK3YaiZdSSMKC`^MOB`J8_p%>qn!N`@BXxA?|!<J
z^2qhzZ_iF#MdF&MR(u=g&dbjPkUNVPC7^z?N()WGBB!uAo0ioa!jmtqA?S(WRo}z>
zZ<g-l6~sbXl}!uVv8Zn?3x~`1Q`^kejkki~ivSgp&<&=>)W-PZp4ZITz^5h&Q%K}T
zoQ1E~R8fK{K4U$Nct}h5BSD<($2kCsW*g~B)~d<vcikbsY?)ktoDfYGtct;UJ*#|&
z3M%D=ZIz*jdEL)IEy>fXE9c%eTPpKP`}e=(Sq$lppOI)02@D$(tqZ)b=kkjPwqEJh
z+z59h^e!%H*ob3tz&eKqRR63EdCX7`de$pz2cj^NZqK}wz?77vVcAIB;Tq5vrMBku
zt*>X@y1|o1Pg*ReO?2o~(=h1xPIfE~L*8y%Gh2#d_v{Gp;M8Od9PK8`^{JT4R@KcF
zUlaS^5RWPi@`gJ`Tg>W%C(4maGcMVHid6d@Eo!RL^5ai5aN-5vv6I>tNAlZ;p}*co
zrK$Z}!Zc6tQRV#GBLm~wL}4=~%%=RLutR5yygG^kc$~?P`I^jTcWU+ng?TLvhifa1
zAa#V_206Z+^7mwO#Gt%v^T~I8R!IvviiLGQhNHPO?L|Sgg6swYMzqK>0I(ewnY-)j
znyoH4K3}<xPbH7f8bxXE2?*ixI-{07Z{93isKIUM>WHm1yd+~g6;9_H){$Yi6$+Eh
z;6_h^{82YKj9~8E9Psw0k4<TswygjA0aG=O3fitotY4A-T-Vp9J1R%iJQM3{0l+kz
z|Gc!!RZ0w%Q7?9?PriHWf}8Nm9!SZk^R#N!fVzBCQ=T?Gfl2@BI%35qz!%-nKo6jT
zI(f+y<N`j`o|n^{f#OGHTOUg>k{agcEi&oq;!2T00|}v*w_|Pia9@hjzP{2yf%_IW
zGveyioC%p;$xoIS4(WW+s^d`aWNXvzm42rr-}d1ARPO#`UAkk{&UDpTsXU>|E;*v@
zp`FVj)>}2|FbTqiPzVcOJ40QD1rS%1-lm!0Ij7Zg;itz*XWhzh%6hf?kK!(CT65em
zgb0z+o#0S*vGlg`DI9T+AQ^x=r)|r`?+X7ZaJaYApRW-tar8@j-DX4?)^bG-<t9FF
znit=F2Z+rcT3q#5d1fq+aPW=_5Jn#gL5d}#PC>!J{Ab@up0*TveS1?HN-oFp?t6bS
z{}lTDPzuJzY|ue2OIyy-l}=f@nR|19RJeavPzVEEE!PHIO(P`YWhc%H%hCRlF?K=w
zFmrs#$i|dnBRvZ(1IT^_;1Jp6?nULvK2>xv;L*{sh2Ywrz=SU%MP1Wzuqp0Mwfd%Z
zOwAKI<FO%;XX$`y#KA20uIf2r9UtyKcth;Boz}}1!JSy=X{-6%yhRE>A;F)%AEYI#
z5{H7DlRZ~P3;yZ-6*%KDUr@Uwk3xXt-BH3K5rS?{AD}t<HAd1hd{^aV=8>J&9rk0(
zr52t;=+|<!)7dAF(odg*{!+21ky#f7#{{o^uy+20{ZO%8o|mv(xL6==Cy61-{1!k<
z;VWb2p(fGWyOxoU81QM69UUKCrp|<>qu%$^y|Qm+sZt&S$>(Or5kV5)Z$|2=q;PdB
z3blLpL+s21f<3K~QyF~f!?rjghzRhUs8s0rCVwWcwl+RnalaG74f7zEVz~Z+<#hIl
zX8$bHt66ds*E4$F?ZnTBj5&?rMqW(GI;<x6k-02)!BmQWUu(*Ra!T-6nw3qbuJf81
zpZoE+0&~plotY-->Z*O&!(%ry&tHqTefv(1j+CtI8(UgEr(*NHC>}QIIt!m}a<vPt
z47!5jQ^JC`HHaOh>NV~g*%F#+C0vwDI`!~8cN3%Jo);W<`#UPp`&BMUW~`$l(?Q%0
zz5((iMR;24mnoMl=f5X2r^3bKO2UJPOX!Q*RXOKQK=%>H59hy%i(ygw`dc37!})`2
zVl8hxJ@?Y@e*q(fJ@wu!unlM3WnRt`Y|~%4MZp^b?F(y(%_@K+<lOqnyXD-;mEe5s
z45d?<(XW`wXR>>$eL`AN81P?)P2A+7RN47rfBHJfV9AnE%BDRs_<<(kTl;P}Mi{ey
zh2&pU@r5Db>2>hcgd<R_3o$;Ylmbny^jWcPZLa}q-3P9jI`dmOMC~EW{vYS`u4wEs
z^0I8NADqY-sAFrshJ_WcF(kpfJKiMS3^DXS&9x-<u5kqZ%2i_y`Az^&G45e(*CfoI
zSfNGKehOWFlB5ok5UTC3mFlv+aXdU+(HlUE*b9QZrEGMh+f11WjQ5#>SkV2RF+M!7
zTdn*JI_CA6hrYPpuvjk?u{n+7{bc9jw3T5$U>TlFe|FXXF_AL?Y!;5#WTUhH!H`0t
z$u97NmMe9;2UziHMTdC*Jl&}iz_(vN*Nx`oGW-|7ljvB$E3ny=HePp=tC!{z6dJ-m
zY}hWpJ3DpDtyMwTiH9Nb-ttY2R3T?zstd(#(+vW>tYMKr!$Z6<xWIiV99(I9>i?^V
zS8VQ5bT4UG%k)h8#mi5u997T+cqOla{G6&$xyEW`_`G+mSbeU7fD|bN-jV5j0@X58
zGG0sXPCfnFW^LEvGUD3GrUyYMXp3X0WS0&P_pKOiw<!K~6U(!_w%5ur#`XhShFC1k
zLoJrQ`-IM;^-ICpI8YIalKFhr2^oIGJ*yP=8i=`-0MT^%SXD61zFPY8M*EzYcf4Kb
z+}5#KWEiQ;{a>AP6%0nDR1rv0X7ikv3b->p5$K*T<flu}>Eqa}NJ+`_O+D&xyQm)r
z->ul<_bi4hb>yi{CC>B%=12Fpp+PpO&YG0YZwHo~N1|ok+^Q8p*wvj79*X)dG0CX^
zRY2-+RQoCa2LW0aIY8tWX2{v&Mb{K^7ccv-7S*q5FQk-HX4UL&1RB@bxZm~v4G&2^
zW?x4b-3zlRqn=&eIZ+VjGN>gl5-$w`rs^Ax{XSWVNe-#x8Y7osFiGY0J!pZ|6oFvk
zBxs!SU#@P6^SWpZN5`JYzN88YU!Gg|)>Gml+!oiXAH5VAbM^P-EnFD+sqXx3zFNU&
zo8hM4OxV5w@O-QnhdPyn!!a6!0Sk-Am;wJc0MSyfY^K2;jxPe6+~4mr-<X#Q*E!?N
zwM1fm6fU?u)yV-<bo7wmzp2R!GWN^@D5GkwG&YY0urSuwh_9@<P*s%mQk_+s>I+U^
ziz{!iiYxxEUGXpD-!`vJ9j95YxK-P?ew>?hmyy3koyNMC5>Us)uc2?_fAfACn*4~+
zklPbgWcay#_{RU#%4YEs%=6TO(cfz7X}xqel$~j!WRM!ogcM!Po^N!ZlIU1N;opn?
zl*kxPNtv!i_ILf7Y`KXA*@njmPK!Gc{2SFqg<7`1G;zCf(yru0<5TFanP;&BuYn@p
zWLJF{_i)x(DsJ%*w0OCVDVbJ3bf#9rN`{Mj_Y6Xdth-d;!dMkepJw803tN9pp5=PL
z;bL<n4+!mRQG5H9Jt5-=?lHQ+smb+E6O?Rypue60ZQ0)NC@`b~<)b$~7q4{Cr7sB{
z_w%9->$SQ+PZtjPKAdw+z%J;u<6dobrq!cN94#Fq%kW_3|B-a%xwlc6k>y?XUV|B8
zMtOJ3ev$W@Etck9562$vv~@j6WQwP-#|aCI3_;&~!kGOPkDAh!Wof{e(PihB&5kWv
zmn}KIC-(5l)b7cSnmz85tleajpPNO$i6sunPJq;Tt8P+X1{YgcjcJyO&ZSe-N>DsM
zVpg=O$5(w9EC%k4J$bb3?C6Ju5K6GNO48U@KA8EtJh&>f*9W)qx->xkPO4rra;iAk
z8DBhzojjh4G!n#Thd1&^D@1c~V-^Nkh^OD3$rOn6X7XW1ep9;4GCh40J9)q#q(U|<
zY-p#W81E83&Fi<+ej;6acorNMBaU@R%K;M(SI!N0n7{5X|3BE_;G9TQdFfTTTeF#M
zynXI1o3DGz0X7(3<zEQP+m-*ul4Y~6&g4~z7CDu0d2JV=4hSlU(`<{=tO>oaY@FL!
z+gbEDOt~@gu$dhFDpI?l4mVNOH1I5-xzunKQ?{ki?M7S}Z&4bUgohdzQtugy`rPTy
zjts7@XLeMWz4h<U=#vC_#A#{fUS~XHYG>}~`oY{2Q5`CpY3FR-J-Gq;qh|D8U$Nb?
z{h~Bt1PV~i#}lQGyj_g8-Op*Pv&4=L`d`@mFo%h{$R(n9`^qrYab9*XlHL4zF1Nn^
zTr4GMnzMGSSWPz2Uv~nbN-Mi_)t~bwzr?-OWkM~mZU!UW?rh)TZbOz$B0Kw!2~|@&
zj}@LdeP}eb0mr;|8*3~-pNBD;6evzsIs9JsY!BPYAGvnhW06F80XAlm@#q)M_e)9i
z`~r#TitLGjs#zf&cz%Bl{L)gaDNj9C)J)0;2s6gD?0DP!n15CCVpHbq5RoiJ*FQK<
z`Y(CS7so-_-3Y=w9wgya-i`0qw{RALNOU?yH$NUYK5H=UaHg1h(lNFB1qImX`mCt8
z;rIJ{eX)N59o6b0u&tpSPWj)gAkz!*1S#x+Z-q~CK!hw=zmo|HD13Rw!3>wgD|66F
zi?K%t&a@{RkQYn_xWYJ1so0-C;sh$oU=1m`LGAO6yX`?&=kf!K(q9ey7Q}QNK4aX0
zn{LXl?S?>j0rjpQKNK$k%-%lat55&$ZEju(e5FEYe(xQ(#{Wb-)kxi^ep=^s-QnGk
z*`28%wAZ8{ckAcrW$DdZiC4fy#f^*})UU9YeEIIHn@>6T-R(_t(e6H1GVZHnqDLS^
zP=Bw{K=t@g9maQG-7kkbDM?dB+TTavw?eV+%LS?EwnmX(VV-yKq@4AIn4d2}^8*Nc
zLri<kJ(#P<`rYuxd!|8G6CR7{mx6yxY`J6_bg$`-Tx{CSoXNG&KSsNPD0b|(r67uf
z-Z&t}D{Wlr{{|(KP7D{Gr4kqaZ*?yd=Y(-DfeEM<8ANCytW@x1_dvUQf_gX{P_;}M
z>U`1ckk-U~wIl91`8s~aJ=U0ch{$?BV|v@HidPl|I^|LaW&`UZB+DrQ6s4cDB;SM_
zJ|jQ=o~*xI3#;f#{X~7Z#_;@O%RetqHfB;zU+d%AJarYZ;l!sc{vbggf3x{FT%WY+
zFZzNnk=n55N|$g>^X_=V)#g<uPZxvq_qbB;aCApG9yx!28QOJa)ct%p_P)T|3JA{4
zohPVvqsQmHzAAB|BmMJ~m4G)XG&MMVWYBC6hwue(z6JfYbBR5;DWkZ%p;UFQ({o7`
zFwbk7&K2?pb#?Y;Z>NFU04D2A;9K+5E!4eW#e<YBbeLxDYK<)?i@j(r&r&GcI+ii`
z^c1V6en{-um3K4>Ir?k*deTV~#OO)S)~DNatU3<nsO-_?y3Q}R3}+Vo&mA-ZSv9%-
zI{D41bBZCmXTC+za?J>%GJLf_x>a`jzy$Q_gWN5t<&0kGQ3*wj^xA^8$)cLGSh+oS
zG@MKWp_P#vyre;f%UO>3gKuNr`P1-EDVa%2*zGd9`+rexP@5LyDz+)Q{2>lS(fct5
zV<}WHmp3OMJ0?S6yM!u7H=RNx>X#d(PrKuPZhAcn+u{?Or*V<Z6{<%v4YL|w=!AOR
zFF0;$Wo_5Y<byglT<-F=?<?WAl_8>0IsmV4{vNIhbEJ1NTPdliM_2(6__I9}rtZ`E
zZ2kOH=V52x<=1L3{t`-aK-WPT!}f*bja4Saj{=PP3Tv#R__@b^V%mawFug6O@~`HZ
z=3S~kAO^cZq(jQ!L7?)#f!-p2&u8L-?YlQqERN2BKO{D-w=V{o<e(ZaUo<)iUDo!!
z$IOwvjgZ}Lv7u5l5!1`9u(<#5U-MAhCy0LY5%6Exg_rKxww>c55=M@Tl}${tfrwqf
zxnjehP&t>D6c^#JcAH)%jR^3GIM?g$dr+h*Nzh34z{uIizh3qHg(IeT390?x*(|C;
zou-b2S`Rxtwzz-EQ;8bh{Qcv>EuHg5bx=MZ_+W2DAn2a)=QEOcxsO;(2#225-BP_^
z2xX85qiH4*iP!_VgpLCGKcQHEVG3o#R2@Rex!zVZND{^cyn*Rbv+Od)m7XCL{eYm@
z^PS*m>L&_3R|}D5V~hrlc%1X871ufK2C9>lEdb5`G~?zBRnU{7XX`)P|7tC{n?ri}
z-zl)j3)#Pr+`n<~fUM9zyYU}8-0|uEAO5G|`u_)qWq0sDP?~>DT9!sDWu~kCSjQk^
zysy#2{VBlA1b^=@-)X@A`0Lp~x9q<PD8JS#E6>KyNRDtr)qiYj8^}?4G;X8u-skj6
z_FqPs^29zmodA^cImVG<EOq=9x7GU`=kwIlt<c0lQPIDRv{+rpf7QVs|4mu%QtBYI
z-S=2mnlg1K5g>cYTH$lOd#gW@TZ!}IR22Pqe{zv!gl1uSaq{n}QojFDJ|oD||FrXb
zryGQ?Zf=`_{$5RFu#ZT`8Ld>sPvf;9{@~R!7Is4XxSLRv<k&1r_A*AY$f!4(w>^J1
zY}Ebse}P@TxST*Ua{-t$-_1PlW~})ens8U=PfO8uCM!4m>pr<3b$r@Drlwu&^c|Wh
zlb7m){Q^-VHlbSFYbpIk+DP;2f7c>w8=RVjabLfz0npnZKzRCy&uVuZn+*hj)MWNf
zN9LhjcVm9w;r~J1TSnFKZTo^a!QCwhZowTk5Zv9}-JOjF2~KeL;O_43?(QxdcX}lM
zbMCvR`@Z+7M~~5;ckNnLv#Qow^Cxp&Zp$+3FZzLKxzU+&7!bbUO>wH`>txBYmTSlM
zv?v<}R8%dxQSg7bM2~S?Sb&b1(~dW^jsZR#4h=}Sm#cm^N>N)Y7o;ccikPK=0u#0x
zL+Rsc&6N<`I43?camYxtTbcqwj?!R<4GhKyPw-w``xqmu=2VT=7;ke>_rCKPc!iNo
z^Ouqj*z;7o2Z4N`H9&J_^Np+1%XIZ&ot(g~e2nTk_qFZa45vmR>S<>d*KQKXEcb`a
zapTc+EmFNV;q<_ZljWczwoQj{TZw%30;(yB>;7W3k-FRJ6^FC%KToJH{QEzXj^yri
ztU>#z{r2hP<Gm?5y9gh(8eOJ1qyS*V6@M~hBq^E4;WN%9)?U49FCOcJ_^rO)w?gnG
zMNpiaL#Kz|6GkEi5kc^@bxI2LgdK~gq1g51Qz)p`7Sz>&czJ&@_&Y{4SawY+5I$SJ
z%z^~4(Hh^JMNh7(7G?_hleuWo=9~0}oc2JO)(W{7tZ%?u4b#&2Y2U4pMYJoFImoM#
z%U=qI#Z`l|#7gKn>f~QipZGD9vz7mm<qyxCs4wZFgjCdM)#nz1P;&6h!^pbF9}`Q0
zt+{PME2Qwo)g%q((z`vZ1acGdd0mNzlO0bW0SN2{(<{A~Hmo38F90iP-+Od?Wy`qw
zc2;A^c-jOf9ommyCOky#;N<uzYF}9W{%2K{d^$d};m#lxfhqG&+Gpj5fm;%`U;{Xz
zlqO1;`JzGnDWjotrSX4#S|2=r<zgR7VF}1YG!}3UeFNm#1O2F;H`^rVC9^HXL_Z4|
zc8AWDKL_{HHqMw^z@8-Nbnl0Q{o!s+Udu89d8HvNq|&HaFzEAB+vNI>G7$9~(s^L~
z#1qFI_UlQsu3U>D%Wfg%KW{^oCK2yx(g<K$HR^4(SL8b^UQk{Xw?fsH)Bi)LOFp;W
z8aC8C2|EoW-uH#cE3$Yi2TZKM&nJ(yKe`(#?S@8v8WI_`yjrbJjx-}x@DJH!zXsM?
zv?-Q+9=YSJ<F;Zw@~~%!dTfQ+xeRt%wf3NKz<H>BnEu${>$}8hVV>)Srr$ntS~H_-
z`IqM5{w*a>;TWz@-xrKt*RJum<do^Nb-Q>xe4nksU3X)O<_A*P*}BLWiPI5C>{|)L
zKdabd=U;f|k>8}L{XZx(#C9Z-e`^8$MW4}_XYe^Rx@51INqO9WY^+uH8W&=<kER)B
z@!>k{{q6HiOiT-U%YU;_H`<}6Z`<+<4awM&`-Bt%0asEIn^NYVyDj7Zaf$JPx`m`}
z{EY^mX&96D1_yIu<KrWC^!t@MYfCBYz2+55A}{*o!c!f+9xAO@T>=Rl5&;dK(OrJ6
zau@GPapKa7)5p$!l6&v_ui74*M%WX(13BwwOC4z#?{LPz-gLuowEz^02U)hZ@a0?;
z6=!IhY2x{-JxZRjbETZBRsvVIN+%Zf)6l8y?foAv%d%sd>+hgWOP2=o9wMqDe_RjE
zKZUpdbo@g6JLw_}hIE7B%Pf$Hs!dte>oXQmCd_fZYXhQ)c}5gp%H1s3tYOL-7>v&r
zUqYs+%n=2xUo7EydRYpy6)*T&K4i%0+1PG&%S=ZQ$Kx3l<;QqGm6|@Ll`O_3o>S7B
zO`XyMZ?VOZmPXwmqjy#70hjgWlXKYP%S<j1qYUa-j};|ic8p4m{~NaB)t$SrKt5Yl
zj{?Ph_sVTH#e*hZI4|m?*9$K*+&fo60Q#;t+I))Ym$M~PFLnm$E>dg>Ak<yr`X5sh
zC@c1kM)6N4(s5it@unY(wE5K&w?Dle<8K15P<vR&>=lhF9PH1dBXFC8lP&4Zl@-I8
z{ugk|9ejlNu`Wk0RxmPl4F~bsJFGTB(1_?e^Dn^lGlHvO%XN{clEg$C=H34dWHh=t
z%Lf>Le!rJsAAe8Jxv||@Kd~9n0xv<sLRuO8S(#(pf4!u$IXJ-oU4j)Nj3`Rv+N3Fs
zfs&^BOAZ-NVo$66LivBgG7q^ZzM+L@MPUCkA+%xsV_CpA!i8<j>^W%fj(9C%$KqYL
zzoD5-I|rEPlXAA)QBBkQ?~t^){~gkFt2EgHFsK+CLwvm47}NM^dV6{cLr#RC(3i)Z
z@yu3uluvXvep=azpBEZ3y`@ykeh~z(_&ZzX8@eG1bwhmlX5fj5HkF}SfOoZGyhHUD
z!1IMuQ>}bAs9uz{Ogju6xnYk%9U^N+WV%ln!wSks8dIT!a^5m2*WSMebEFa-0}qM3
z4MhDLoSfvF3(s_$_C>+w90G8eKq1OC0PwpdiKSoC9kh~GsigRSz)}ReI|c->%aaFw
zW}3>j{j+QRsx_?;vp1S_xd}iF|7T;~qtFaAX3v^U{6^wz_WkAS(l7Db3<SbQQ^L;l
z2r+0(c=-+$yOspU9@#ia>n-T}56)<BCYoP;{rP&#=RRgD_sQY}lv?5uTMNtdV=S$9
zP9~;YBS!&VA3?$2__$eI4B)Jl@|t|S*f6{vP;HM{8Z_|!A68ls>x%H{=DB>W=*%W=
zbt5m-?nsQ%N6)+YL&u+KssDp-8BHH*C#uR)1PjKOGblfU<m!b3GPxbdB;^e=<J%4Y
zOu0e1vu2uDMl-@VseQ(}PeV)L{j&q81@ju+{t^|H`wYSPp0RH2Ngf#JJOkJ6W-$}~
z`5hHA-v}H_SWs9291S5X49VgvL>Rnce3ajeRneC(?GL(cZa%(b0-wMkuvs@IxiU$I
z<2l?m#!N3Z9!%fm38kgP+nZugkV(X3RwiCGXrlQSvT$&uyC!}Ijx9NzX?py&))5Ji
zEfi_qjrgaLDe6~p^3d!qf!pA;iIKPHTqq86$Hr)*@1H=GyQc*1m1$rC&s$Gm>g6e3
z(OO^sm6hbuV8wZHaW(Iu=za3reNKA6Z_w@_)GXgO{$nryuWSTMTjClEE6M(14e#vC
z`qCw?MC3n`mH5)+Jp`n7fw%z~`FY<#KlPM9{fhrJ#`jMpve)}Km<rn3UX^L8^oswL
z6a6tr-jqmQ?;q@=5&I|v|3@ETJNsHPJz-(a4DNL?AD`}aTf_RHDV_gyQc#vlE7@kg
zRMNC%{X<L2{8z01mOkz9Q`55r{fP$5u8Y&PiuARKNx`<};=V3Nz2<);R_}3ZYkX4#
z5qo=kGgSsgw=ksr{r#-gOMy*I!gZSTk@#$1xXADR{OxZ@)(}Mb%%z7&I<9mZh5vPn
z@3q&Zpbs=GHO7;Vnfq6Tzc={ccUO$`@rd$YVZg$@GnsV!(Er!38n;YixzX#VrvE;m
zNbq;=e+ya&{(t6!b722r70reD^^bw|UqNQ`Bm3|D6^g+B<0gfX{?m7A3HE2H`mg7s
z04e_e`p`T4ed)5Zs-WJ7O-8$H7I^qX8L^w`McT*Pl!hhRMs<~4$t*RTTF+(e;77}k
z2J8<d3vHOIg~rY6-c;(kSrxbP5fIKpgoIJ1c1<Elht80Z&rH^bq?=p$-+-+V#R1pB
zz63sAPH%CWBO{1CD(vspr}jrRV?4dqy<gfc5y@BG9#8B>-{r{&5Ya^}_XWR>tnBmK
z^N!oE*0bIF-x4w>zi2^knO5eJ@gzK6&7Q5-`Jdy|DtrW!Hhs4;2&hltqG(851Yp)z
z)ZtAbuTBx2wf$0BAnwPsB0!L)x2a}oZKS5D_1hi;dV^tiP8{|#2n~JkKvG<MfnLqN
zxP_nC?+WhiBe-+{UZC~+>(&BHzvrFSng$nLx;w0(2onfa+jV76lOC<FLGqAC2Rgkx
z**-NAO44*zrgBbO9+?NbS%st}_?IoAx|V5nM}J9)51L1Ocp)}86C(QL$X-ZBADgG8
zTC<bHcx}0Jr#jDfS()olusGI;d+6;yY1%e;5ub`H|HpQ`5fcXZ68N}U9B)dAhJ_`g
ztc+L;O_Qydj;Hrt%Q*x8v5f+t5JUtT(DC7OD-wEVR!JkA)O-A*Hsa9-rV%D9mLkbb
zX7o1!#;+RGh9!rE?e@P5oFYT5#J~4T0I*cr-#43K`45JtjqpAeY-dJ%%{Gj|c8Q6;
zPwKB)sh9;*EsQ636-`gp?!59z_gL~BaTJi~=2Je|uBZ5F#8x`K_7hEW&U*Aw5&Kjj
zUHCSAl6%v_IPs<F$JZi2D$3t0AVbZPzt{UN`7IwTwdFSD^=q_i(N7zLuhkj_?yMwT
zd&fd>tk8_zZbJyX{7qb$rd)jkhej%uNWBFz1_B=X^l1_L2YtG%jtjrgGK50|_;tkO
z%oNQATPuWBA_sh}$4c7{-&7)o&z?<bs~6~TLFQ?zK7YT=oe6P~KPCRpl@%Yn#_IUw
z+2bAH;<T(nHlG2rz9GAkF;NrwSVF`^!iS=nbIkM<=hqSq<vRTbPRqFU@4OxM>~B(w
zEKY)S85F$V)jlBDJ8qdfAKSWOLy<V&_Pvl_c*j0gUJNTu(L9cT9gklkRY^$-<&-$+
z!sEDFy~(qDfML>Dj5pagq@?cI-k)vR@!@M?LjbkWm#VhgUbgvzO67d@XP9$8^5}qX
zMzSzbCex*SRV*Bx<FMi6^uf^u;o*rh$>(&*4_JdUx7pP_Y)eSJK|gBxF{Qj(k#=L=
z%i)}>MaN~fc5=$g-ds_VZd95aUr(?%G*ab~(D*D4Yy$xF@$FU}#{2$cxBIK0OO`}X
zfaZ>YiuhX0I3YWBj-kQ^G4$!TS#{=Ou91{{UN#_QfsNSp*wO?im8K<<URTSuyrcaW
zQk()N>uqad`(eXVg2}6W4ZiGdKod$dU@aigr=Dri3<G%2!Cv+r0}1N)i^9g>Hxn&{
z>hN&FP=yShDHqhC3qyxnt`1}9;1LN1O&HqYuf^#CD2y+bySt_DR+!f2xgK&)Nl_ep
zF-WvC&Z-#?P<`JyI`rO&VB;id>-d9B7`#M|A$RdsHUb_iGmT`$_nk_6+ZUBLa2GMt
z>H@r8SH9jCrmj=Gn@FdpGP(Dmwy=SE1l6QH=PX=(JA;uZS?q~<lY*k3<(n?~D7>5_
z3~d;V_&pLj>aoJ2eR=}j?&AuJ2T2h&j6<wov~<&Y+$JWI291be+k>y=U%=9xJ^BbY
zduqtjn&q4MA*tA*?uiF}O?11r&J9eI#g84aoN2yb@u!bawSL1Qcm*QwZ)eiOIoAuR
z#frT4XVAUa^Buw~JAb41uz!SHTO0~sQI-FNK3sjte^}cdT6B=P_HbnnQ-{(sE-NKC
zLyl~xG0wq5I;2*4+e^_`mNAKf4e8Ma{9GSV9B8f6eR%qPs0K0nLrL!1J{wu&xT}th
zs0+2%ZB}n*m8!S=5(li{!WoY(^C!=fp;~I+arw&-E#r@IdWNObiOYnJw&!yCC1gU;
zr0063;mG~R0uwKylTlJ5*qN14Y#~qF7ggVhFvwwCFq?IDM1qAh?04HahpO+xatAZp
zGG2FgmBLsSAkQn84g8Cr64%HF9Zm7SzFKJl-jHWo7jlo*Bnu|rQv$<+dcu$z7T|He
z-MpPv);24OBrmjL@SSK0Y{Oy80e|vA`|#dR5Fk2U%5EN<!tq^*JzVG}$M#<Y%|7ly
z)wz3uGq~Ip%1sJ1&_x$`M9XqoME2RahvTRQ8O`5`0DM}Y$6s6qj5eeD*5qZ1^HuYF
z5J_f&4mw<_rm^FQof2ijajNTI8$_w+n(YXkemZweg4cXSzUfV(T|!e)ZV1vEkPz8r
z_T%99ieKS5WV%uJ9*DjW5t@A)%V_%17aZVjtWR(P<W?FLl~T|o8*KFHRnz+Bkl(7d
z&X03rBq2wk;xega{|mhz|0A>4<F}mDYexBJ4u7Xk8~y!8*bs(;M4K=aA3ufO*6FcU
z_JU`^ncZHl1`js9k4!&+BMQ$qWMk`7fOCaYvdr+u9A?p<HcywNe|AA2l;7%X2Dhb3
z?nO2_@ROG&s~h%+cif=I2prrakMel2U00IH@pSP`7+H0yr#&6&OGRl5?q`#M`Z_Yw
zFBk#&82;-NjF)c~h$V%TOw>5mYvzDGiC{J+NY<tYU~1tDdv`tSkIe_7eZ^p|J1-k5
z>Y^R+vOV6PvU`3e2*jSxaHg_n!Fhnp3<8uy@?W+CZC^4pm-C962{l_==!RkS$0)bY
z$YYVf@U?+*CJS-x<~zAx_`b%nM$(Qy%jz#6wA+`<5C1M-O)H*--L9lS%h3FhFD3LW
zn=TN|4WF&Q?#MbT>eja?D5aoDAvq=VT3Nqe{xv!wGAh;(EFpdL=W@Fh2XG>uoQ`Jp
z3CZAKZ14#CECj&xqsZE+O^d%PelauGs2tveMw36d<CTt2Cp;v4ywChpaP-S0V@n3o
z2vNUoxZSAfoZ|H-E>HiR(^Q|rLqaO*o*CL-nj#MAd{+d67&2GZ0KY?uhu-!by-%7X
z&vL$@Ae~ox#-O&gACd_Y_?C@nU86>+hDmNwm506q@0dpQJC*8ernhA{9!>2e?9dK@
zgV=@yQ~uiw?LEm9*uMkQzYJ&V<IRDQ(3@)qd~)=QHRR*&{OlzyP`vI3^G$Ouy*9n2
ztP(X^%{@1RZ@JoG&-@H@eDx{rCtFutiBctYZsSe=Bu&zg66~L<llgX9#F@`f>x5VW
z;lK}^WVQ-QnRS`rs1|AK3Otwd2xF{bD)w<aj#H2K#cmQ<Z}cQm#i`ZSZ2F;|BF-s?
z9qG*DO{kv{N@puRzc_0@d&;_}n6=JT$P4Con+=8Yu6KvsJ~~U5=~z5<4)d;$qxG+0
zOVuYU3b2u3)R=L!x{`ePx~Lxc5=4FXv$JcK?}t4z{TCLQXtT{6XV;E!e#m;CSG#9n
z?!^i6FXd3RngD0qCmNED_fL`1iV{QYhWqH!S(GGs0W!-mcnB_YNY35K&N026L|<06
zr1LU&Jsi|ObKeTvX^sRBDY8!J;63><G~AKwfnF?gFoSC@Mr{@;pTJlbOhN&X7(|1U
zdyyKm9=65|_;WK5@QHU`_S1e}p6L#2RH#DtZl4I1`_VhWP@HA&uBw&fr5KzJzJnJ*
zYjYCG7MJ9x`tiF+uU*}-3n|=u;=>W4rdc-o9>VH3zz4=(N+2~g2J!QHWHfrJT#!gS
z{3~w`s+F3PBr~n@hi2VQ3=@5|bTn!GQu>O&4(`Vp*h#|XtSwO?E#{e4<aT{=fQ9ZN
zx{V<5QxWElcy<!pvBBWexd1LSvcEIY6GWbtMot&~vl)9LNBg0L{rL@V?SKpA5U;-w
zkE;XSc$6t*roloJwmNO2d7KEXD1bjg_FeUN=Gx?C;V!iUeAhBrCmpD)z~R*#3I;<@
zlf9h$#^n!b;rq4tk5|^05c<XS?MP8f=r|}#z3z;oMg?gw+>EidlObajSY@H}6uYv*
zxo5K*;KpIkOA&4esh(gbWQAz5EakMEXe(2Q1K4Y3S4}=RGrgE2Pygny+s(1LufVU>
zb~-QWL<2{lWyK1Q`8(5SaV0W+bSiJwg1X#sq}|YvK{$4{fx3gJH3wUJYjqLl>Mftw
z`Uh~PFcgxE$Y?in6jN1QYWFBCJP0D#y@xcc1mIQ9&j$--Bm)@4?(BQz!_(jN$Jy`=
zZa{*W;V`F^`lbt)kXXid$#^%43QwoWc)W{qY<Vb@-3ZtDJ9(x|%8C#(p=^`i<fI4E
zIOUPi>s_1px<%s*NqeIs-3Ez!W@tIEj&u{WoIoR0?wfBiZn4mab2p~Ud{1XQQaCs~
z%Q<^F?}oQt#TL*CwAa@$^x(m&1M!2dBV2?}&X4YA#CX?x&^y66SUZ2J@ZU?)dwCH~
z;eJCSR&f;SY_4@8j#iL4IONFG4=?$V+uc{pQR&SZt6%vHrT!+YeUTuOrZmX?gXCax
z|BxkgFCJe$ebgua<Sv;FcS0(TTS1JZe*l`KimL^xszme^>ulvduQVLn=#}C?T2I8h
z8ad0rDTTi;+%|x_>b)HGJ2ULgfqE89g(iBy$*wFN@Bw=&zm;FGLNnJ3UtX?M(S4g0
zN2<aryf~Xpcc&E3>4__)^v00;@kL3@DY1!wrsh`r-4(`Yv7{*M$G~r5JiAGgke~eB
zchXBK=W>-k;OdIvL)S?ut!#LZnsjt^nD|(h^{1oWvYK<hZQAa3949bKs7$ewj}fMu
z?o0)&fJ6KvsdB0gHK@)x_y^J*(FHo1JCCRAVI!;3Ac>Cjd+^Tvqbm}oXb#xs*&-z=
zLRUMZb#6J$`upwz*7Wl5&MkY3Wp3n$%>$npbE!kwZ|2lw#!rX`wlXkD9c>L;4)|-w
zdOyNoY+mKs0K354`bdwRJiJ?H*8JPOue$121YGy)$<5{v<74et4zpF4x!`Q4ZrHqc
zJS8Q$RGMYnvZkQgatC<$J_)Coz!`CNx((?xt^g1|W9T9e_jU>O!3>Jj61v+ik~kBK
zNFfBi*lQYB;#-vi3wIr8yB#k)w6<2T)b9&Np%;KJVJ)3EV#(-G|L4L0G66Kz2zlcx
zGtKaD4p>!f{h+K>Kt?3QfLD#vD0f(DnovbauKAgLmC{yAi9AB;-MN2Zl$Ey*bVd*~
zX33T#xw8o2hZpzd`Q*UwcX8~FX`G}M@J9_=VbjvaNF~Lm4OV1X+y{n(eYT%X>8c@u
z(08|rnM9SjCGcSb@dN!N*On+e5CLmbgmAqV*l)E%_O(D=)b{7aK}8v}#jwdIc4-uB
zka`DO@PQ4_tnsn~^2To&(bbBjRLBACTx1)=r%Q*uJfXpaV?5;<(yv3xkXQE)J;qv|
z%T-o?fP+_qzx;_WAyS3z#Std7%oS<d%M&S<PobfeUAQB;cLBEJ*&y31u?M+@Yx%bx
zT;D_|JeneCvOY6|zSx<oT5UQg@h{)1q2?zsF*2~BA-92Us4M$uKkyOvBjtc-4(<e-
zzO5;wa0!Qbvs)`pG?me|5i%0!)5osv3wQZS5Bm4QfwMa~Xs?wqaA;P(W;**qO7Yj&
zC2MDV5Mhz9y2$v9eUA6qrprPG_gu0fCl;%H$P5gy@wB0U`d{IN-{isM)5X0~(avP1
zj#;xE`ua6~<|d+h-jZq1$m5TvAZQ?hYD(XaoA4qrGKmvSs(G9`=yLSM$@i=w27))5
zJc0V6I|;$Dt`vdEihjK4=rsyjbApAl>l$Zl$aAh!*@*>liQY!Xdl?x{Q*)MMTZ12B
zjT9Sm)eAWaBQJ8ra4n}BPWoitAKVK>(Yuo26?d$@?;OK$I4q=a{PZSw%WXAIs^yPX
z_BW1Vg++Tonfs1R0@TxAaE8352*gkr)*^s#Tv>9LvKLUW^IyI#;l!l}5H6<)y<I?l
zf-jO$mIo_{w?CQlfNzdHgE6xHRH!)WscGr;wZDYKl!Dt?B?0AF+nmQ43dI$EV0IdP
zJwd&Q+nFMJsb$+hZGk~9U6Q);idA0S9IS5c&c0t*VVKAF2g1ISbxD5^CV0U`W|Ngb
zwQau=f|gFBRzL=yD}IwBG{Fu7T4E^#xo{=|=?6GU*=du!7-WhHYb*ByLS!VuH&uAt
zTrStPwsUGTt~B%C{$dFP?a-vhhm+`qu!y03g}B`c<TQJPTr@>oaAd}%tWL~=W{RpB
zRv1%hgCysI2>dwKGWFVU<=uUImid|zk1!pt`E0eYO}qQKis<j8;f;N&8WN=kZv(KC
z+64`<BAVZppl|nzi+e3j=KOtZIuFCOq@jwZskGCmYQpwe;o)gS?<hLOnpfVfPC2)?
zO{0EfUSSlDJafxys=H=&XmS*Hj)f|jFtkh!_W#lc!|8{@AexU-T6X<bWwB5Ez4Gjn
zQ(Fu2Aqd>&lXLB$HgF$c)hBEQVQ#z3Zzo!P*EK5$nY!ZayG`1nw+O>?W<vv&>zL*!
zTjlM`+^usubGQ6p{&I!qv)&Zt!ov`w(-Fo*8i|<qLylgo49ivr=}+U<5X--H>Rure
z__m7ovNQ*C^}be0g(Vb-7-YAlhkd=iF7aUs)ciG>5R+9>ZH@4}6I;4k@=B+T-yE}8
z7&v3nCGhNK6(#pGN7_m`I$BS?Ya;?4!HTcBQVr4?3)0|p!}Q=nllOT90rBh}(XJ^l
z4=UyRJDkrlhOZFwWO9mRi*Em7-8bC}Zt+s>1koVltvk6{wRe{{TBtB;s+RjH-KXS=
ziacGb(C({4nGoMz$PX8q2Ic&sD@~g`&ElN-C_aiKX}=l8TNT1Sq70}0sHj~EmbQBG
zC!B_=qnBPX+%!hZ10g6C2RaWA50yebx^#yHOvT@+N{ug!o)@Wullw;WrC1*&Kit<R
zB{_X*;&)`}udeNc1o)gJ8GfQ;Cy1$cBw`Dm!(CT{3E>t_Xn!=w*H`(KuJ^j%>@l0$
zAKzh4BEk2N-C%CEcgD<Gs5*ODGQU+&^i<q+l|bYuKi-Y|SV;2>h2_79S4^QADWHcA
zSPg#`na)<IuoiP-WAZ5l0AF5$q&#jSv7Y_Fdv)6D)$$oTuTDPnmUSH@hUc?%8Z~Mu
zBHRtg)(Is;*6JffIz?kHIRe$h*gJhb)f)=Zi<Q<G!PYI*SFxyM*PW0uj7zqqipueP
zAn;70<Vf&fSQC{ENsSF;{}@=owt|LN&M&jXPDn2!yyem`Cg@&X!zNG?K;b4JpaW;4
zOd}LR*5DGYsu@_&gv6D%wysvdWITw~nJ0`^i+WGAOQX)clKffLrtPu|B>-r~+UUu<
zBO1GryYGoKM)rCm))K09IA#edyl`s5-q5<6Olx*zVDGEh4QC@Pecb<%Dkhx>UteO2
zVTt{d9~g=gb#FM;mFbLVDV+tnvygv5Dkw*$E#07{&&QN^=JxoE_6NcjX8uzE@pTth
zA|y(zk|vo)BL;W@H5irj=Ju+Mix$c?4^(aKwN5M!g0?iJ;!*1uy_swuyuc(4lVOzc
zqT&B>%*fUr>jUOEaecS;@WdtB-z?~z&L*P$>cIBGQerO9?Gcs5@LlEXnA4f@&ZeS(
zV`{l|%Q!##Ko}#%7OEUJ5}!MMoWW$#kK#_cD_KTbdg1P;YwfP`tc2uz9u37Kn}s}k
zR(u08xX*oK2Fi$hCO8utOZ!vJfO2l`jl%TKB2|<13qB=2hoeY9OkfcwO#zdg3wH_0
zOKweHK?+u)O1sOQ>_qbb9D|z^W_{qVtWKlLV<}-{0;bm4;TptkFCHiO8(-Nj^Lan9
zEDtaer4l?}Qcw(2d<nd&KN5%ya%y|N2!M>AFtcR7gGlpqD2q`5YgK6q#Uo^G&iO=+
z7AT5eb!#mvgo8BDg!+BvqH0zT0j5IN_6Rd!jFjLBw8iyJWIwOEX+e>VBlNcyR$V5m
zohGc!ljnj<Mzu=BZ?XbIWvsFvX$l`Bo&`}&3+y5!I6`e`m^_qYu|gHPlY_EB=)?)q
z{l&O!#COGZg<z(S?AL>e3QS~_F@{ix12ym*k<<lhtpn$mI0I|Ov7@USk0)&Va(<)h
zZ+PyMm!~R(YoIEXF4TdjOIL@T9TP<<8Cr5zOlvLvks?>*U*3tNIPg=PZbq+FFzOxZ
zoUZ@Y0;ndyR_q7)65W)(iB}`%<}|{El~A&A1-y<L^x+Gh&im=}Ks)QQ!q<o>gom~f
zMt@;TuR<gZoA@buM-PT@!f`KDShOc98movunSTYL+@G2qta~J1Wiy3pM~@pz8d8*g
z#8MC!uN@W!_fDT`sJFq0@zOF^><q>cu6?(o%;w}KcVdneQT_6?eQ1=95?&~8<+JYM
zTKW#BvUxLirfyghkzE{=N0Ex5_IwUP{T4JBquKw!s%9}>J%@$n>kOII#+`zrno$Tv
zWE&aaKy&FD7DSE>Ujz-kC<FTZXM*Mz?GX5zOC^j!5-hWQPTr{S_IR>EiPDjVO>2RI
zN~<wjknV{7sC}^bK4o-ytu4=d*o!fws%^2Coqd84DpAJjK7l&EEd+P#-9_}VU8^xg
z7H=HM@^0I54J)ja4gqOD-H)c`F+<K4&|bPYORmp(2MNP+7=A%kxR;~8qBL6JcW%c!
zSaW0WTJz4TlW8q_1G1~mmVyw)@olro*?Prp&@F2D0fMmvFT5urZ8d?lbjuinsI*sf
zu6UfAw?B<Y_K)u~j&R>yaD#Vxo1Hd3-_MZSp`lmn8<x>(n)Af<*U2>UUo=sa;rnFI
z5>Q5Jy@nB9tw~brh6*%-hZ}||I{lFr4wHLXLRRXfbxcNfs-PodvE&9Nbb`IR_~g^Z
zO4CT?U24c<(bsS0XgZE#ZGB4<@JehvQ*|?@ji(v;SZYkPHgxZgbbPsxrM7|cm3bB4
zjvt3L7}M2`TOb(T@_<WLjKD&Dl7xgj{5(mKv4jRKDNcd-s$VNF79ailtIp3}aYsXV
zn0fq{L=?uad|+|G>&LoU%?nDB3{{7VoGpMY!91oL^(C%gZ5ABf@@UX~Uw%4YT^fcE
zgoREc4huF6T8v@e#(Ki7UDn~94N%>;2v%w3h578x11hskI%<J9I$HqV$32sar>3$&
zxY~T+(QP9Km`Y9DF=0N>D|^N#S^#fpias1f<D)u`_jX{lruQ4Q#S+=d)~z$7dFXvp
z>1bszB~h-e|3?J~SLbBgb=_T_{(^}3w-X;y=uaO*x5siA7uBrP1Yt#g$?Ql5K4Ndw
zQC78;hmvTx#g-Jq*$A{e?wz7NC(HB0Hs2ij%FZ_`f4)J++bwC;^iBYhv0^2EW!oGw
z8<+oYZ7d!&l=L!I+}Qh?efw|0J#Vj$x%?PfY=@z48wGaNq#NJxBP?K-eCSZ-Q3s;R
zx7R+B`E@8erP|5tK@~xY_@fmWhg3Q7N~`y%n?7K+kfv9HyUt^4eAT(XZg?KhJ$l`D
zAY?B90-mK6bGH03(3#%iR5b(hLX-Durd1XAIc2ixwgpsNG18=S4yRpHKczw&>;xwp
z5|!H~6z%5u8%<TcCtu7NI;}aS4jm#b*j<rtQiD*H^uvtW^<Q_Am@fiIRglYJ<Oy3C
z-`d}kb(;i~J(<|SiH|T7&YC!xM^T1;SI|!2lct19V2)J%;e>bO{tbK{WEngW+&n!m
zIvJ}!&sLmz*CADiT%?d<9hf|`;7OqHh~<XD(sMs#s||XZ??m0qiiIyZ3f=z>oMO9i
z2aelmODhy(tVI+6*!OgvGcG&TM;H|HIU9%vt(1T}7OuOQlB68h2c;x8yWRGRVdD;t
zPTjgma<`!Y=~65ZG}Nv9dv_vfT*P)=!~9@sHt=Q*3?}!h{7U_6uN*nCPUd)*72Lwg
z>`Top*+@F$Yvh!6H}V!_rl)FUJTU^93uq+#W_3@^DzccB(a)ic2XsbS;xrT$?~gnu
zp?uXTD4Xhi8<uKG>w;(V5Z@<7jHa4qJ`Zh2w-+mp8*i$OE@5N_X$ZIxpRN1FW?bHE
zUySjL+~}xaj<m>eplewEFzYPDTV6|DJL&7Z;?<k<NmBtb#M*32=<{j8e?_jnSZ}7|
zQvhf$CHJMUNZ{6MvXUpkMb1FN?DTx4o-?10l^HrNN~0jMofPk37=3(}M|^UPJmP8M
z0a)-e+kvWUo=Cu{$eqtu+gdMBxAEX*JN)OI=qO&d@M4j&3oebO)1;QLV+C^RVg27-
zn56jnr$?WPEGb|CDdWIRlFxLTnZZQdv&{)43&n$6_!{o(sFyRfX&S&1C`uGDXAcKL
z-5WsG#W<B#!4|Gn(ubtFDfNP_kNXN{oR)mXiwKjMTIXa^XK<WFRZstTY!lMu73dv)
zzFLw#^`5vd0CGiM?F~aOT;4gBP4Bg*S^4UWGsM4qoa-L+VjaT3uN8(B`7=6K$|h*1
zDoeeZCt;?koNkjaKzCO%3xtBMd<-xYN8A<=hX}%Uxw>~4EMN`20WMxIoa#BW2tc!C
z=<$31th^77GdT!zvq^}*;d!!tmz2dW^7C&RC%L+4$rHxX+}*a2l324~_i6HTF)$g_
zMSmu`;a}?+7KW^ETdNuh-<fi|yy>2VQ_&`&@fcKNJnW?>44>#PtKj#~T-ZzJ83`J*
z)Rk!rpQXqB?z>ZaDHp4*_;Udg)-g+obM&x$+c0R>ee~U97MK~+cYeuYHBAvEd|JF(
zhM~j5)~iL(+l>Kg?AU<c<#eOY(nMNu@U66Et;`q<;-mF=D8<;H2Wp-`!x~Bea3()u
ztp4iS5~#b8Qit5k|LEKFHoJi9P+#6r^JVRHKlCxd(ezkM7O-RYl-gkAt1g%$$>UP<
z(lthuY8#d2haNiPHKa0McA&X`e{|JZoQA}Xg+J1!u<Nh&s2%06_qH8kJ6%swfBsX+
z+p=ynNvO0wUHPvp;p402NTpXJDVmMG9SnO-)8aT9Ti^mIm>vROPU{02y#xT1q-cNg
z3YL)(#@YBzDJvEGM>+ARG)(wM1Jc(iiFUZ)(^m*><KW=j|Gk;+Mk|zm47DTGj6~PF
zGVRMd0&A4Jx^T_iY1VQB-_u0_{9mcL%<z=Xmp<Px#D9v5|KU^YNQK;j{+AHu5hW(4
z_4_9W6ii?}S>^HPsUaKne~Un{B0S6FY`W;4m)dQIWhDNv#%qwVd;hBb9pZ}@DY0C;
z#-Ge<0{^A2T|RTKR+Ht4nB(6f5@DA;6url2hNWMBsQUjJ^8W*+#=m7g|FcM>uQNg-
z+)TaQmgd}<LvNt&7{jaC8QrGr!g@8#My!D0BUzz)g@0j4YX+V1TFEDU76G`=ur{u@
z^}J*S0`7UMj-AP#cb;=fgIYc`HuO3Yvlc41M+-IeL2l>IdcE<oEFHV2g=zYZm1&Oi
zcQz#xF82@G;l9lMLGMn9*AoGm^Y4(g+z%{&W1`^wk>2Sag!(<36J_t5VPGbEq_s9?
zFU$1$HgwfaEXymnz0)$3p`-S#RKy|u(S?7xcz{O>#6K)P(7*Y_#uw&w=Q?U>!FVC`
ztdrcs)0wn!M~t<K9Fabi+BRRw=&FZIu_v!=ffwEo=g~MUOX2H){ibs%@tR=UG{Jg-
z=nbUvup2)(M65qCdB<`L<*Y%88=|uXO00qRcfi)_7Wb>oc95TJVj};!+7RGh1rG=%
zx8U+%U4oJka_X7IdSaH-)-y#885@G;xlQ@DW8JQm$Y=*#)!Q2fi7M1^P))(DddD|L
zav+pMT_Hn6#@l?kj6D^>*E$-%u%*d7?`gkr^tXv}f@F2JU}>;=!o{l*54vx;<YLM~
zGZ%e({i|oV$vf7Z*M!}3*p2UrD3*0vBbhi3sL)pB&zqWC5c@|r^cr_`BOW<Q`{IiM
zyhfx^#S85l+}A1p#RNVjbbg<g%+kh#q%%e(&e^+=pH+3@4nt$oyRF(`JTe$fx20eF
zL*@#MA_7l<Ku>H8k&8_GHByCye*Ym}a`<cMw=vBps^Ln$VH`6gbHX&1vrx2K%afph
ziomg@n=|$IFPrIO&8pRTOVdURhQv}CgUNDod9Zcw(Kp9H6#1$Xu7Zm2-cRav-kBzo
z#a^7xq|9LR`Z9UjEbdKmEWBls;>}e_3E_#g{2)o9RO*WiQAPuIoF6*U)Db-64V6h%
z_vSR7bx;wnzlv8F+-Yk_<3wG%3(XN2<TQsxEN3l`+=)-;aZySYV<#?6&UY%83Dgut
zy6T(Ui2IZM=|OIlk!;JtgqnktSvI7(j>Xzor!Wz($xlA~Or{I$HPYJ0k4v1y$17kQ
z1V|#s)9EX9$q$Xm*F!xiyhjF6%x^sG24n_rqte>Mo<jW@1373YQQi?9^rzd|<D~Cr
zfCYN3@r@<)^j1LcXdchDMTt>Q4M~c;qu*2S=DwwWwxLw3*~Wf9aXpg>^6ASDfHOHp
zVI^g^J4f{^%x)gZb?%d9BBry6^ya|aw6TN7hb2HeL!ee+*S$)I?+nQzeYGJTMU{|T
zCg0Qhz%q`2*?q0o*=j4&ik<}?W3tA3nX-&GF-miz0%v@oinEY3`oSiu(1n^B=i&Np
zaCBL1Lk^SH_c@AW@MGmg-%Nb>wZe|8V51~ap?jo~l2i;STj&=HcK&i7k$U%OxDTn2
zN)__ac=9x)1<qEWg#t5<@8(cgWdlZH<&T}7t;Wr6yO-8LcAtoD8*h90+9t0n9&GQ9
zjG=3Q(<-}4(?sGP%3e7K3F(ry&>I&2b$sezMYEB*dq=O!;@9Ne`F(`}<a6PG7S;Fy
zor9stQuT&yIt`k6t29H|cH+Dg#@~E`6NyF8)PW>V{&LvoWG#wA(we-z*Ju`W&%>#L
z(XQl0i7|5sJR0{Pim;X_Gwn^&CM}#edq<2c`qxaBX0@FgG@WQUlk3K6+-dpNeS3<i
zW0ANP(>+llgSW6*DCyIlphH~~B~6d$rsFrdIBq`Oo%O<1eWRJ+Xb!}HnO!=<JBn6E
z+B=H=U>Fp@Fa}Cp-)u?9W1N;o^<pZV(2a-HwdGetzfcyN;OOn?i%3va(AkmFnR;!y
zUG#79yV5^1ujN0Y@y-|#t6*oX$-<k$YrzgIqz{fDY9&!r?hDc=Wm)+Y)~#urU`61I
zS7sVP_(s9E4#5U8Weqgd81nN0>73}AU@i<_N)@B%v`&%&IFCh2>p8-S^r)T|AS3b0
ztT29^dxK?^iYPlWed_kDH{oyzcGke%w2pf3lc7DhG(OUA-`6Cs+Z`O^<mai6lww{U
zzz-HD*O+{orMlFvGfM5Hw{2<cV65FaTg=%)nLPIssj_fz`J#DKUL}Z$DwAzm?TN9^
zvUZ|VMH<pJo{4fB$$cq=TB(S@Ofy}k*!wfbiS=KnEU`&w{oQOp4fL4rG2T`K?acm^
zz%0|};NLvBK1K2`@07`F6d59wfbn5MqNq%8_rwBu#nk?5v(0YLekpZt_8(6i1T9vI
z(K)rcIeHThUbiz4xwrM^+>a8ODK=umdnjB@hoqU&<NDL9;MVvbEAwA6u_k-Fqce9&
z(-I;iv&NeyD-qY*SJi*uz`J-xm~0g=xC5_o;#(fJQY_?HI!$=Ze6<J4RECdEKB93b
z<%}PX;k>+hetUW!NX8*JO0-l(PIjV@vrC0fZXKpPo!L)BX!V80*0|0e-$4nv(e1|J
zjSkH{P1(&DXX23v4yEfD8%VtrnlevZVrI2J0|r^>L8n})66NDt6e5vfQgQ{8#G&II
z<ZX8*RLuu2_OtzQ#fcvmkz&<L@6@#bc*@O{EC5EP;eEI$MQ3$@F&Lc%hb`U72zgrr
z4c>e?0!BfUnPO*c+oKSK=>EitaftS0goY|d=HltWqH@*c6{{14hr{j76EBb(L+SDb
z_iapCmo26H)<t3e@Oi<e_XfN``igSz9IuT)HKaL?<L=Zr&ajAERr69%`skJ@Yb-^&
zZ6O*qE30Sjfg9D$nLcYwT{2MyK~#ohvag#mx#^lYfg{g>q^s`OTb{$aZ_Y*mS4WfO
zEVR0=zHQ8<zr3*}>pXcf9Q)?+>|KeM|H)Ly4U4c<*6^T;`?bNG;^rHsVkrnR!ncLi
zg?T}587^|LZJ<syrtDE4|7RSgwif@`Z;RS0_c!Ro^mZFly+6y>j-H_Iz?VSOkMHoq
zXRnq-V!4V#;*rK5E$4xnk6WkO^ENs^WefG`Cdg@d(&m=J30E8flUEa}sPLT&D2fKY
zI@Z(<OGh1?*|l=UXg^74k>8Es#h$=mSXcTD1Yy%#IvL!kem$wrP6>d(=fG#HBHg*w
zsKDOYBQ_jY>vW)|4ya2u@@hS1mE_aot@GOvKNQTMdNrZ8iW-QGN%(%$VE4$ikTyZY
zH^SeBDSfWA^mvcnkOjZ%=*-=(T8_Im8s<H!R>l7{qpVK+-un&XFrC{$PhN$AO@5fW
zHk@d%M`CE`3#lOk@Vlh_jq|>&o`3dyO0J-sk1X~wo`i7v%3$ST3BOuOg@N6(M=<C-
z_mT@gLE3T++SLn0&J%g=kzI@7_SO;I8fo%0Im|cISc-xclm7h-boWXKp$fP9<f!zC
ziF#Ojqtky~A<-SklUwYXMO_$u(8bW{z)q2HmQE&n$thl!PmqbM7NzRn7Eq>pPm8mw
zBoW0uwj%RI?IqN3Huh!pg!6hF-8GORE)#utyI!xBcHgvnYG>66EOLh929(swML;Cy
zd?bOKE+Z%sKKb@$k=zg@r%L>pjwvXxYEz@yoU}L+c4k%#ST7U&i{xo1skZO;Z*-s|
zA3yQP;OJuOnFxW~TER)W5aq?`CiZSczE}0lS5Wb=F!5Vv^g`e^Up5L-WyjDCyA8{9
zj!-@;L-<&kGkQ-{?dgL(yxoih7I{pDUge>%H2iQ3?2~~QC-*F)k9JEq0;rfwcddH>
z@_4TJFsL7iNI6`tk@%6)=HSLI3N<DD`|UBk*Yo-@LCN98nUAWA7x%rTEU3bSZka$<
zQIhx2?c4V0rc))o;d~hQx(!#$H4A%I6gfFpuu>Yo$&&$(C$f3uUFTW9z~4PJ$3K{a
zopA^ycgOcPX@xH$C2-t2SaPM$s2wkc{4AM1(fK;j)kdS(?3Y|pmMWwgw2C*JRhD@4
zh0%wz3_u6{RR-%<5B{VYTe=UXzCe5SN))7ku_y92u5!Mwk1ii*XBR*}RhhD7pB6ym
z8af=DL}%(FGnpucT27OUo^qgWVcuC#!^PYUYd@bpa_O_4mZ+J*cY`J(d_!<X(aas`
zg?hT6g?<7QDWK+rx@ci3KYMqNvQ$h4Hq9a-b>iIVHEOSCV_#(yxu%MUnN{dL$2bwi
zg0iBkcRz<r)?t2smV?D5JG<S=Kz9*u$-@O0G^`v-*(?KErpA|3MaPsW@t~KswW(M~
zHwMn8QFUDd@d(mwOVfh*o?OLiC-ml)B28%prXyzxw>dMgy85)Mt}DT{#VI17k~|wW
zXENDU>w)HNBplP?UEEAhPwAVm(jXR&3<M7Yj&^t?AhBpEExyPgto0{LKUz|g0~*nV
z?l(-aKs2>&x8O&{9t7f^)n3G}U=hEC2NmsIe$oU%i%_{zn1lBcH5TL7Rk%0P3ZF-8
zX;LXO_x6g{BM+1&_7umjHkOkavgp~u8;-0on7bXQ`E0ZW5e;J4rXKbF64&mjC)U<h
z4*bIB-v{4sClb`JpIf?vB1vRRJP|J(s1{NvDd@~PJOGn$?^ODt!RFb%fF#EevVo@Y
z1(4q-Os-#~ch3+RPHEc$<*LHVU<tmRv@>;gpIZUb^WH^`{^z}UEc`3&e?=%3<$Jd5
z^qvv8w##DKU-HCXUkvvT&^@T_hE>11rX*||zgmwyB5LC}2D=#NnRVN;KR_bvI`F6j
zsfg$2B<CBX11gyt{2A(PG`EOcB6f?bmoml-1xACHl34pVUg)fhknHnSW$l{!+tlI1
zL?@r-Sv-6{?p~O&543gU=;`-cyz)f_jY3Rz*Ep7AoxT0SoM_D0v8-44hSNhY&VY6R
z5@Lz$uA;p8_<dgA(IRD;@y;QX+APCDIog&7pdTCp%*<ula@+f^iEWY+z18@*Qn>FK
zQh^)ZC@msKCS~6CK}O|@x9I8khi;0*W?e!Xmp5@zjiiD$?9IjCdBtjG$)Z!~112r5
z!u)9zd^^Y#O-UY8K&3RK_=jV-xSp0!fA-?$b^4k{T8U7OXUgGfoy_=7pIRlOs}t%u
z@YY}|J_r%en4DsFNtP2vmSj1XSJ}oiuYSH)4}nYDugP{)Oc=(~nzf#8+2*6?*`Cv*
zo!j`yAmL5$?^3fV@yC$T=NqUQFFkahFqXlamNox^yR=d5*$im}a2WJ41zAnrTzr9j
zey|FALPEfDxNzoV7nC_#8B1y+9h6W(5+>vkQLsnw<UsDSzhE_(&j4-w5^yGL0xnQ6
z&}Y=af0*oT@}3(>hkcQ~j8Mx^oS`jG0t#VE1*rAvmwk7;?%jrhkMJ`LGNP|-C7}rS
zKMN6heFTk4ztbUh3i83RgEQvh3+6R14^~KuI<q!Mbv!PsEwvUifZr+a<nG!ff1H^{
z(3rDf!4Pkn(0%-}yv6Hh{}r6+LAX+vFjc0gEU>#3(n|!jnVc#fTm5Y#({$0N$YEgo
z$rQ3OTp~iQw=9#ymV-|5yR$O7DZr;m?J;9uo`iqYIM=8&uA)7S{U7sPnhS~$p#l?)
zE;vA&C_ns1dlreT2UFjgYsdI$!f(C3#d;FPyMDIcjfCPHl{`d6y5;S^l79s^Cvkkk
zijq3i#u?;!J)JGW7t9lJs_ifk{|bQP_2Q-V3MlW+x6LROx<U$7=!<Vb-?Gx!es1Vv
z=*pN`!bSfG6wdpzgYM(^|6_g0EtvJ3&9T!u0nQB!^q>!Vg1f8Z#AK@4pVDCW$7WAF
z%#Lg(XsRBlFM_%^=hM&XB4}vJlpQC6QFo^!H~fnU`4U6Wru4W6sAZ&{>l(>#=Yp<1
zHcJF$3@!%(iZZgcp1Q}256?p4N*Ts4FXeb1(tMqZo5db2%qYf1WwxhXJLbyIL&Dui
zTaY_YHVGW@L}!#{vMWfyUGe3|?9VxWfZtsn<SBGlOK`NX-{n-alVdlyz+Jg~kINJ-
zKw~V3Nw4^lZ3E;zvo1EV@)2ULzFjk2`1!=_yrZAm!lkdanlxcFVBdL<O7M`cTDwye
zUl%WJjo*-yQcLfOypX(MLU%brbc@HvA35hm+XlJD2wCSUh)BEwii#DmoM3V#Q8{Kb
zWPNzzG*lanEC?XZOB$46`5t(_GGVd^F74R{30~o14}vf7*5WV2f>c;ta9Zmik&85s
zOv)pw=hb4`DF)}vSRacDImy?&Y?INKmLpfWD=-0)5Ly#fmGW+9qz+W_U-T}yAnvw2
z?igSCX~hXjdvX3srq|+98uuz6s3&jdX75^E#zsH@@&>dyP>p}4f2kaD#QU^an`Ryj
z9zn8(YDQp1=*`W1vdxo$B1g_ao?w_nQHSE#H?TomI<l)UN9MEYft>atc5N=jaaKlj
zWqrp;+M=4g%KSlf>MNVqZzMOxvjhzUnw>oO{D`q}TyB1%dZM9{UH33~Lf1W3I7A_P
z`3vV=(Bu8-LCBT~GkAc);`19e3R^xIf4DmGvijD(+h%dD+12=V$)RaE&2UWaV5VE8
zt^N6Xf{<;bgc)ZX;0NqHA7LcD9AUin-Vq*#r)$K{ZF9+Hn<m>Im7zg_D{fw}^xpX(
z5hKeUsxJu4YI5DO{rdzRFr(3t<Z!#%?n>WAib|Z~^$`Y8YDglnnpj1rk1pq19b1Ut
zC;_O?%r8w(-qAS^)?G~%;q#0n?k6)NaDFD-VR#*&B(Wx2`Sh!+VV{5Is(6}C8{of}
zWqNa_matP4ZPc4qI~`3l{QDtz*H}}$r`g+!+X|~wjmb@S9#MO(Dm}|v?B=zQZ)=7_
zI;+_~xixHm{m%}NYxqR2f!Sm&t;{Ps@OA8yt8aUJdBs~vCktEJTh>_bb|@&q+l=Xc
zz<I(>Z#ap6ejDzzM2)HMwXdxie;~p=eHqfyC};Ak*UMo#52EEtC7ruU?@)C#i=BfG
zos=RRUsdX2q8+6~zGtu5Wv-0nf{$vs^*}93`*6+R&GOBJFrejPt!R%}YpfLECzI`C
zsn>lv+rXH3l&w!(v~NUPKkDO%^(SIh|7k#d^-TOPJdB<S6o8T0vmT56Jn9{(UAx(E
zp8^Bu$*5p&kl1WCab4KsWo_CuEXsE>b~DqcuWS-e(eZ~|X4>S$X$h{1VgtQ#=6YO&
z?*$}r9SsGOG3=%tpWGX=S|atqPRVkc24~`+o>vy!J-(xnT<y&|hq`w`l@}h8W(KlI
z2Mo?%j5!&7Ejv_N>TBTR<kcNg+oBBEXYVU7u(Ac|jzM~~?;)Mh4IB0VFNS2jfl0$r
zB4n-(7Wn#?Ndt$<T4`@v`WR-`zxcZEkJoJkaC_~Knaz&Ne?V|AGwQzp@H-5AVrJ&t
zv{_8dhnnwXS#R$s7CCKz^pm94p9SjU3$yb-*7MincugDkqDHnPlq^!_dQ_#xh6uvx
zu$|sZhXT(__G0$h0Z6=y%prdzG_pflPPP{kqt;Z6>wSqD^1oipkPp;<`2j=t^(4M<
zcm7OSvV*9%amKxgh2yJ>;2K4ad!VG;j0lo%T*cKT(1F!bB89e4ApCFz=-F0Ygj@f;
zUQ3w&I!i_>PS45mWNm!p=gxm?0iNxa)GU@nH#`k?H>)WBBBZ|T|6vsU|GVe$|BR&n
z8`KZ^sCC<%R#1*480@S~TfY^B2!#3$7l=Ibf3fqHQE_$M)*yiZAwX~o79dz~2yVe4
zI0^3VQn(ic5*&gBEg(RE;83``yA)nn;qF#I50dA-_ZfF|kM91_J-#2``c<ROsXFJZ
zz4lsb&pG$Ouh3MHl=4%TltM;#-ympgF}a_UlKlMqxsSv%QYlq$oWL=;H&N%%c$Tv}
zngo>zmHAuWkrT2xP_xU{NOR+y<q-%6D=SM`@*nF$V%WyR`NvKWUf%xafTU2s7m@!Q
z`2YGR`~YGc48I%s9>d9xlt$El4E0z5LV%4Ei=?%{WzsRIw=~eO+*z7XM&fdXQPUW$
z+WhxUVRd;~%95};n91Ij@<~qz;*c;Fe|W!IAN}9Isa6@Ir*_uk{LL&&&&};&I93~?
z>7qp9j@~)CCsy=^K|yD*X*BP&dw@9|;lc83DuGK&WK&Swu?6(AxnuVIs(Z$L^>#od
z2Hb?z2v)#Ej7|EjnmsnrMPw}~g_Pl?U|KJfIP74ZL+DJNkPf9iAKI&X#k0D{G0IMl
zsgvP`SF1Ol^opeuE$ch^VCx#l186MMeJG$HoaV;HntyQo=;Ymq@Qw?@WjXPd5Cy~d
z9CK@;`71B29Mg?2ToC?U<(XC(`3WJ`oqxLz?H0SU6Be~y_uG=xPShhmdA)Wq7F9p|
zc6}1>y%*okZRN`alkDX!IlTt-*5nl<Er?Ff_hveKA2(7m!LJ<T|BfbBwmex_Xu68;
z4q$LHQh2hziMPl3Zac*5Op|vj(l0!%;bwnfsE8#gra8quP1Is>mOi<u@H*@J;0w_Z
zj!`|u?Qjobu3e2o9~b_1O`#4XqF{-UBZXThBo1C^5ArZZWLC?fvn{2Xg#xViJ<&?u
zTeev9%;uiX92w5j@zMT$kvKsVDWm-o3C(XYy8|`W%786><>T>at5Uyn?jC&$<HJ4E
z`h&x*luxd>IS!5ALz~$uvHja+zs(aJ?*`@6uUEv(LQZWcS|5E=Uy}_L5lB$_Bm`~>
zJsd$*BVXT9>FUO;^e^1vSRptNDJ9`0$>U^(KAEQovL7{dFD+ZcvPg<H*n-msqF^z4
z`;D>It#flZhH4AB!sfPdNIOYf!-CUxOTlb6+=!LTne&-X2RqGk)8V%Uci#MIYk0Cu
zBJA6h6Pq1_+lid<9<4DnEUf|O7t1F*9ctbgZk&o3@r%pLTR|5G#DHFNJ>S8SbNQQO
z5C4%i%m6vDMa0dLXnK~i&?fTMvxVDt+1WI69_C^}*OYlDli&2semPpU4@u?TG+ggZ
zk}yLv#N2niEgp`EqPKaf3i(@`oX|2yv^p-&?IvnjU_p$npQhLKP~Hpj?SS2yljU`L
zPx^Cj?E0DCvY8WP`d8!nJc74(FfB$9Ge`mGqa%Y5yT6nA#8an%iP~Aux#E6s%X2SA
zcxIamKwxPsttXYh5`~Ore)ok59C>a3dlscS?<;Z*lFCq?n_xj<wJ+(oJxzs2L&izw
ztA)FQ>CF&Yn&3C+u!d9Z^9Ot-zrEJTniAuV`?Ef$Bk0(1&cU1};2^7|%5gJf`h5lR
zjj_Jn9B<AjGo72}D%3kQapN-|cs6l$u~F2+99i9<<<5_|e!?TR#u2a3y(eDMFq^vg
zyZRY1hPZAm-BcNphjK>ywlJ1%6WTHKqin!4g7B+9c>uO7A(k212k6hG7ER2}y)PTL
zv_}llY1g^O1xsIRN+sr$ejohO9dMc$@3j(CJ=HhO4%)y!Y}pCnW>06Qq*sz>7#6qt
zu8l_gJi{Ax6gnLzYTy@EtC6R=Su=hV_*<xMS>#o<8RTnY25C4k;d;Q%rt}2|<(d;l
zXB+5@v`q9C`Gk9rn>+!=2>X*yV}V30O9VLlfprsja_*A2r0beA$7eZycJgG5{ke^{
zz=MZ(a&jYGgyd2x#;pAOcMpRs3`MUVnsi)lmNfAijvud=72@R&TfU8mAQ0+!?0tEJ
z-1vg2qd0kuuJIsUjhEP!ILxu*RaFOfwH^wnI`LvQJ%MOH<@}xB(NdL!RlyECF!<}G
zQiuK~!bgFp+^+QYS5fkf=_@~nI*^z?^$Rp>r7f{quC)Y{%~5SB>!3~+A~Y9EJR;8I
zyQ9~#G23~;+)>%<{Ydo%9>gdHRV3c@nj!F!t{4sQWsyh9MoXyAH;;BA-g<5Rv25Xr
zc0%^1Frj<zZ>|sYB5DdRDB8+b@2yEG#3z%vNZck#JWKT3Cia7{O5YvIY`(2oP355B
z&;RsRu`?BC$s9pq<mgN5GwI1QPm^7<jJm8jQC#uxKQotXw8~Xe5*Do1|0AaN#P>$l
z!FSuu0lh*cy)ycyOsF#-uo3mHe<*oSUO8pavy)cneBS=Kk9uroWi0Zfrira!f=}s7
zlT~?2aLv^7nzM~A%I!zE{$lwl72P9e3S)(b%a+e%J-9e|sG95Mcs);OZ1adBGtlMW
z3Jz=eF4Gf3)nOn$QOM@$KT!rtCTnt-tB)`15tg40wXMGl;|+aLr4k$8H&2;giGYBv
zk%lQDY8&=+<9)3G<G*Z`SsZX<fl<lH(Y*~X5n!+U&=4L+4@G;p`7@q!I}cm+W3+BY
zs(hdb=x-?VsR`^WB6L`YI8R-HzL!^vEm%hfg@%$@R`qH8J;Uk$x@bG}P*GF&q7f~K
zG{iGSyK(=ml1eJ6<Np*yYU;IT_~(D_?@v}lc*=_Z7{v#%zq#_sP@gL2KlZ<W@;^OB
z{~W1xR^AJCVC{Rhr0M$radSNvfVkcAR!%%L%%ogidj*sBHn8?GF;&peogRRZ(0-Rh
zMZRG5x|A?zp>Bu;h8EllYa-nai?)XvZ4Vlr_Nc4Uk5INZ?g>4lYS1fzq$DL_$>YoD
z)YQEMY)Y^B14k|Vd(-C(&*r*f&nuCnT~MMM0+kpiy^en@)IENsly#!mYoPFJxj(Y(
zI9MtWUay*Pn|j`pVIe5a?G#^Yj)tyDuVzE>Q$O8kSCl?PZ74bsSnjI(EXuYA*l-`?
z3XBELuU^#R4aN%e03{Zl0_2MbPV9PQd^II>P$JVV|J^Ej5A>c2sQwJHDJhj~XV{XE
z+vLm1iGFjn;oIVRFoXHnU~xCQFkY*9jRSY$>eoHPob;E=f`=ZgOHKs1I5Su<rda^H
zJV?V|lbqjo9ss-UBH-Xx;8u`I^c2Sf>AaGpq$I+90X?;I6S#(aC<jYlzEwpK^61~Q
zkLq%>+P{#3zct_dl?deEl}03ZKLo-8D&J<ny7DQp6euM6&d1@74$mGcg6cLl<@vd5
z7%#&WYM4{Ht70}Qo2Q=Joi_sCVJ$2h&khbcAsAshLDv;pSwZv;kKYx!<E4)Lh1fU5
zeCeWK-BRWOViALeCKD`FLtZc?ky#jGv1_v%?r0S}PW3TO#(e05^b-5`3=Y-cJN`cC
zEh-l@ql40VWcQc#;}z$@R!awjf|tDtC@4ORi2K8@KUmIXPMf6b_f=De1W~Z*mbQff
z#z@Iz{oZOyZoS7$KO`z`**Bd@=f+3~P74Oa^PF)UrZy1d|DSiN#S+i+Py+S8IW4eA
z@X^v?IBMcp>k^)wTw`g+nNzuUEi_F%_&9j&61`Ml_g&yTt`V%;ta1<L1J51r<qt77
zrjJu`5px5`l^(%fHoJ4hKK?kWGY=tLf;`<tZ&O5DeKOIwct827OiX`wF{X9z(iPgj
zLq1AO@9b+A4lO5$ud;bX*>uGMKn{r>W&XKTZvw;ATdZaI3Bh%@zYZ$P^Bp*1Oq>?}
zJu0lwERuGze9eB{;If0WBOx`9;-A48NK$lmiM0_qKhn>PprDDc6e2vpO>~i+2qe%>
z16tk&|7QNU?9$TfGLmUp_ZWe{SR<>{YK%VvnoKPCfKE^^R}8urDFfC<4cyCgJ{%|u
z-{&C~l<ZUP>uJgZE2<w!{i;nobVFR%Pt!tNR9lHV4iaJXtVSK5Cbd4HNIPkMg9?11
zx}V40A2DB;NKwe(Ou81xXXG(U-!h%@iYDbBxjJkpJptcc%vheDmr!EY-d+44l<+d|
zux4&`WH$WO@C<#`F9a~dg0wT&k+#;AIFw!!JzHT3zG<OP0ZA;~({+|Xt^&>j95Be;
zFt^<8CCu;~2PS#hJq8373_-fU?{@E3r+hNkp*-?lhhfUIecG7BWhl?8n=^kP1KK|w
zxky~1FLDCNmD=W4rRiF{Nz5sidy~u507xzOlx72dbdF1KltHFll20+rNDAp92laMC
z&3cel7OF#E+#i0`hM8w2CChm;P<NkY(WsTqf?CiIOTAJ1&XGL%V9@E58=TXWGqY@<
zCoJkP2f7yK4?JBIro`1$Uk<~@!HETi|C#scwp&<29*(cC6nvgPdX#PbqK!tXajLw(
zlFBu77RZ+x+1%5gUS9NV$oy!iOZG_v|3lYTA^4D!@0Jqm_sK~Dit9@Df;87574MZO
zSIkfkYf$lgM*|BAO+$6B?YMWkG@kcWME08*sWK7!a)*y?=3%+IwMKFN%O8HCNz1)j
z0N#aC($U4Php)hWDAo_tYAY_ke#L*b()&9{+C(XHXp+*>L>e?~Z|bmd*iP!Xo%a4m
zRBOyh;AB0c2U!lCJs)3|i=EMKGaH_hir~$}`j32)1xNZxDDhx8Mo?dT+3I11^6Fjd
zBd3={_rr##oB1`cjL!E^e(_50<wzT0m+MPvmLu#av+Kz#NN;`f9v$><S+}_VDt|pI
zt^RI+r`+g~)3L57e013->@Ke8h3Jj<gU?<w+;V+MVQyETZV{#8&#L9&_*t3AH7jkP
ze*J02xR5^(=SqkxW*@0&Z~8}3ruUb2DMPM@*cn+@p4Hr+9!{fmMumsK2=lMgY~?j1
z14}^`Tss#PO`mW-)IKiuHeczFZtC`e3oSmSNL8ofF;xU;Udh*+&7ejCw}nsl59(kU
z9E(1Cuhug3KeRtY$zI>ox;!%0D|ntNJ-n;LAtaZtqKWusj^uWc=9)UCQInJP;{oxo
zbxw21!2V`5UfIdIn+!_M8{72~sPo>XB8TkQrhBZH!rTZV17B`t>aXl|p7X;xhS}dN
z-fs>_Ja6@x5*<-2tI_+k#qXdJM3L2U@<|(r6Yy&TyGO(qXLJ7~@`e`2qpM%f=T7$a
zj<&qM$KCBBO=lTtAiRGTjvn6v{rE93(OrTPcH$F)!)t?RySpnXjj-hC{pC);ac#I)
z#MtyV+QXEfL6pF<@)lk#Yiz(-!`MJWG>DaH{N8&#Q&ZL|)8PHRK%&Cr$3_ZJh5bXM
zB6nI@4TrfTg2uew`(PMjyqB*Iip3QFB1esMCepjT?b?eLV5(G9ajlq9>jJTd&-2!n
z3qD7OvfQ2DyeG%A6`!NMg3IFC51iMW1pt(FY&bYL{Ml7HQj%Rrb?y)C9l4NnfDY`C
z*PXH<6GB?%7NMnW_H*ebX^dqH6`InLaImADYj4<5g$C|B1TYfSfO-5wEYL_H2XD&d
zEp>F-UK~obCQJIKg1^!=`{0>Bqsc{I%Bj?<6+y>yvV`}KqR&*&fCIAAONQ=E1tA(G
zRxMZYeQnhby3jjoq<-zWTsU{UV^Y$DK;H23t@^<6QSbM&FIwF9`kTe_R7_kc)h=|L
zZc^+-ulQ2}f__xamCs=;CU)cF6UKomziymq#QBD%D18G`qGTL)hVLAm4CcMBoTvp`
z-G&Se3ze&&qq)$X4QGa#S>#uoY&l-DutX-ii@{40UBAj-yY}GL<XgtK*i%s|+<*!x
zwm7rq+JDVAV466cySF4Ca~I)q^(!q6HC>4qwfG<;fu>y@g)wL%Za#^cYWt$hk(@BY
z*NAFvs&o9#q#ycKn$kx_bcSjog`DFw&${>Bi0w_S+(Hj6s^=<Ja;pjgI+`%ti|>QJ
zl9GDgw=~=huO{4k+!Z$8bz@lLjcz&mcdW56=F&MBPY)d6CmZc~b0pP7ugA-s&BbZU
z8VtM>xwoOce6Sp!Y&@hX@kvj^6zPo`zdmtc(3l7LJR|4aWZ#KT+#edEwqC+gfIBa>
z2Y#Zt9X1$w`{SW18MA*5pU}MA0m>N%&klW6QsPWU=RR+6$sUuQIGg~8*J?5RZaCvv
z4LS3-p%P?`jwICI#x)6`{UYMmF(<TT>0WgpQKo{#tm=C7dMMhBboYfjmf4CPZ#>qf
zy@{p+h4o&m<!0smGUeV;ts4iareg=+-YFNu<Bo)gZlbt>7@;okCYbWmyc1-nq<qC_
zeaff)ury}2V9uACnp!5&;yf(W6Y+}mK`Xg!dJ80dK4bXZYHuI_YEbO;sQgiZv{_e1
zrQTHVH#c2Oy}Lbq%l^Chs?%@5NS0`j-nYCCNY=dWzvM%|E>hfYCy?~Y0P!d8Q^DIy
z=cJXU4dX3lNQU(F2tip&NF?sl{O2~L(J`winMQWBj9ORzL>}>p3F0aBj+7hb1jOwI
zWYYNcNwn0d47#t;aR)BH3R;kyET~mr+9;x<+m-SE9;we@Th{H$@n{(c*($bxVu`YE
z)nb}at_>Fc@_MgoU_G>~+EQkx`7VqRwTDRRE&a6Ct<8^58V)Al`{uL{brT-38m5}+
zg6neGY^pdKeZ|_SL1Wt*&tVQUBCXPuDv50n5Q=3@bjL>s^p<{lpJ8JoA<bacE-E5S
zZ$~Z{vaK-^{xY416qT|<4)P`D8kURd1-ti{yS!r?O1VcL#Fc-|hgVSQ@4{#PxYS~U
zJyl5i;H5j40W=CX#h!2A{^?I%=W~i7edIN}rWkOgA&!VqP(X9@+a;a!eaRKs7H@%+
zZ6OfOOx+Asvy-g0QJRjvetjfHXD%ma*3fuZYu<S`ECM;s(Bs*69@&S)VGAY`8j3eh
zXqj-Ve2*;+^w=_vJRlz&xjHg4&@t^Piu!TUl-cm3*ixcj%5@LcseIDRUqAhdkX1+S
zI3;Pk%o4$6#x2k1v%uaAuaWghi|}_)x=xNyazc`(QSiPO&`!3s#1gANs-U)7&_3s&
zD$?&q4BMRMx8a$H(`zH<tdyq^>V4|*abk?(>OHA+zhP~j^BBfMVV`exAnX7|M!FVa
zH(${EJ<k!F5@8dUU&WRZ<K3=%_zGgnBe1fYa9BF727Ppva+wouwxF>?dWQxo@h~gw
zr)6pH-d&Q{X(C@G6V)-C{(5`&-geDdfYi(78wz`YA6>jxL5@dky(cbKafaL#7pn8l
zM$F0K*srF`SwZGO!8$v3j^Wf_bpQb@hH2L|*ZXD~!Kr$7=ALJt&Z30X1w0o7HeIF{
z7hMGbaJ=O)P$|kXdk^zc2k*KxSF6702&pegZL>RLkSIy-V~e6y+v!rnoucXBgUoGV
zHv-;}1PJwCpbe76q*(vYA0d=Z#nmw`Iqh55AKaqOdSWu0zd~MY7ujx#82L<Ybom)Q
zi`wR$zO(KGW_YGYxa6I|JK4%h+5&O-6EvYB)ulw^h0R2w@Qi^Q&E>v;4adq{3qGAK
zPwriysGFVT5?y?(zUd3BeTlTLX?O}q{MZl~V`m}id!a)YzQf8{LJ!MAS<xtW@iHVw
z^@4|;S&7H*mamNM-CUW$;b}H-bvRp6QZkzI3AJ0J8fw~r6B6|VJR{$BcV^RS4y`sv
zP=8Bnv9eSu%wp@CSu5$D)oe&7$EY3<Ho4Pf0-nA`?h}{%EO`LlNk1uGfaOVCooz4G
zCrmSWtZ{<1z;vKjej_=KNeDG1OOnVd1d~xCkPG<nuy-YsV%wW4Ijfu`+y=#Ro!!*s
ztsd8)?#iR};lvEtN}9M?;?~!9|AlMK;M$}Rq!ecgg0>DRdt)|J^aS4QXWce{C;FUf
zv+Qj%{jhXWap&Mi@My@fi*Z<Fo_W-7B`62El_JV-5>%8IbY60D_#xe6BDp=Pv!<c;
zwsEOd5uMFyM)zB}KlShrwMJ?kMSJd#9P;lsh$c2D@AxZgDzOgPfURYzu%nMT)Wzfn
zSULhWahd5K<z#KCS-fB{*x?;pZNW&tuaA6zTRJa{jMqPXM$}(HPl;%D|8BSeEG0SN
z>Il||&G-?dyvHLsbv-x<X+k!Rg3F(`Jy<+<%hh#78?<~Jf*_*O8KGh3K-3$jWu!Xx
zv2Khy(tK0LV+4-`k}NPwWh9`=OtW>Y8Es0!{P~&~znLE2F1S{hUg*4QI5$>_(b6NG
zsc8Q3e&4C*v&60a{RU4qwDf(P+D~&=K3eWOfD)_MuP6`|D>XIs<J%`#CZmJd<faUW
zvv~CG+c}3;wUzJ&LY*w!oDTR6!{Ypceo}xrnQr{P&i@=c)gigFiJY}f%2}NHkku04
zAn(}r1=uL2=b|J@PKlprr_%@;dqCRhG%Swvc;=w?2#;tQA#yetG=tbP6t;*MD)H3+
z_~B}I6cZQ-OhYFYVQ+|~6o2Jhd5X60{<1k06^HC~z<rzIBEQ+DPUwMXfJVF6d$iMb
z2L0}*7l6BT9$@U^ipk2l2w*jUaPslFfFti-HH`nR#?04W%p57{Ks&#nDYj=WL44OY
z%qVEZ6Q$jh>NTi`LF|ubS%XIVrVd${wK=x^;9;cKR$}xkT00UkPm`#9r-apO7rGn=
z0i?2ObS>{O5MNsb;1ySGuhWIT1V7`ugq36Bk%kSzky=(u2<2P|e|+V$ty}{XW8u+_
z^!WL4>MpG1EW)my_uX-65)aE6+FHtUA=_-5qGOsxkWo_u3(L~xt#`N8QCZp%HRnP(
zSS9u<1XnaJxC>6h$+78^jB$C!!=Z<q0aRNa?aK&FCd8f#2YTaN$78D|CF@O8Ti5J8
zUPwL48zaxv?v>WkA67k|8BpohofbYkKN3bDI%&QCs8&R^C{RT@jD+;U)<b|-e{#$g
zegJR+f)h8t>+dS3%`!ASvvs2XX5i=Di709L65Ion6i-U4e~kNqskb@t{pwSEHs+q3
zgBxp*fCbpbO~9e8-k#f*#joD#1Gesr!{%5m2Y(ZX`lFAX#DKkI^Dwi2W;MoH@q(9=
zmE$}QR*tn9M)PQE@F!gz1X6uR?+6mdW!agYR>micayjc);~$L48+s~W$`;n+VB0Cb
zj^w$~{=3*-WyM(ScI&8^;+}6yz<;y9&d-o$IQ?tWW$srT8b{dIE8P{%#9_#<%+vF!
zdb8x|vSE;DipM;(|DsG`U0Rd>Mvm#`66{sgl6`qkV6UZYVnvzCrqvBuis#c4d^EG)
zAkb5*3UJe&K8a;|@PXcNrV3Kt1)Qb-!v9se0>*0jH5c0Bi{x6d(fAuq?81em)Pzvu
z*U=dRlyM%e0py<yPC4%I+*&}>y-8D+W7eTDJm8IWfRLd`94VzYXhEDAKfl=Yfob&E
zTJMJH(v+(BihEHYo4~k5C8Ifh8f>u9Nnq}@(nJpqHIFwinm?%JI8E#q+8!}Jb2L2d
zEX>e@hSCUTjiF?qBW=we-SqoW#Y9p{1UCogsv91|a}E3XKih06Y&355u9ES8X*494
z{^Y}NP5NlG_K6alyW*5YK)IVf<N(LHt1(|0<^_11eXtv$cDFYe5_BA*-l5bI*YkJ^
z$H~XQ7M=Q(oppn5uR-p`i;3yr`Jz53X9TYX94#8;%YCR_D6KbGt=uFgne{b1T@v!Z
zmxvtj%S##M)$Z_SHzfqO1tKy+>KsifI>NL^E_#?S*Cb3EE+`YdHQ89mFf6wc<0xV&
zcb?)S51{oQj3~PW%qYgN@1O|&Vgz#Dg&4}&O_r`6c=tW<L?|!cq@YR*kDd<}G7K-b
zmvM=}w))yJnK=Ad9hDEe_i~Qb3!`Gryrl2Tem~yhFOmSdHVj4yHXVyU&Mn0j)s(**
zi9lCYHe2e6(-}FUiarV3xS*72KB~a<e6;)AtoZUrQ|CIwwti=z@w$~%;>4Yx!gf$i
zWLfK;(*xr`@;_RD&b6;g7SqLuI5@F6L)#P8TcZB_Z*gMR)fE(aP4$rxoI_fk2RvF{
zJ%W)*f9jp@-@)lONF0EUNID<fm}mL#$4M4bAIWIwyUBmrs%!rXX&*G+a&=xj5x%F&
z!yJY6`{aR3YDU(n))(j9i5;8gzh*l4g;VY}i~M|=9u=DZ6O7-H;laVdG6@ECSXaz3
zKllxz-EBMuTiVN|{UCgKiXPpePfzNTD8b*NZB4$AI)&VdYbYbWPqMz)#wL(zF@kvd
zN=KCK30Du1m-mp86be`pB^GUcp+xFNdr&)U)}gU<cD!AVE4VGtfL~^E0dWmqq;jQj
zW=fKLdvb7Em4kgAW(lY;A6Sa~y)lR9l}@Utv|1?k>}~OE-^jl6zUn;*z)$p@X46N#
z`&tb`92}fj6tyP~yaPO8JUb`^lzV}^KzMv<D|*zdlt5-pXFj5$ME<}&BlUdU_H$ek
zS#M04Z(prkh!3T1tOS31ua`Q1&E<^K%*w(Gtg2PkezUz(Mj=6SWLo+Oz!OhEw&fZn
zf^(yJa&7w$NZyC@^FJS-T&Vi<e>J_qKlcA#2ob9TGqYShIPfbj8h>NZ+kp5Vf`qy^
zr??nHz->Qtazg~7ZjC+s-?9q+55wQf3JR{ZH1oy&#Uo6W)5D4iicQvg_`U=MMY|=w
zmi%w_rO$y|qNPNacM>e4tS~7AnYO{!&-pLaMzBPP?=N$L&l(yOdxhMgPs_l+*4GOC
zDc-Uchr703YqeAQ&$pp{VOcfb9eblaNBGtiKFSY9yAhB|J_X-jgBcdJe0N-^d0wos
zS5ayaWF`GyED)S&!_0F0x2a4z>y`futcc{40JeoaN4=({S^ckv>1$Q{JgC8^?+_jy
zz5^*iRZ2=582H%WwkKy}BcM@~c(~*fmy+mLTr~gY5AV!e2QoUzcAZV@ZJ_(>!bhE7
znAeZw+=eUe6yvvW{U^T48RL2J{bAi>0QR2&i+#N~vU}v*%kkt}ew3zojdf7ft(K<5
z-=`4zmmfm^H?8$QSiL?D_PqoQ3s4-OxQObn%PIa9Z~sr(zP3Fr%@2~2yC&FUml&+g
za6P4+iEo>MgzwOu`(@{PQq5aAj;>f>_0ewRG1RuCtUkLqrPfCl>ycYtCtLb;r23(}
z<Cglpp@T|vHB#(Q3*?(d4fgx)EA2Q-iolN%e*%__{LkPoR^kF6%}wwQke-*0rOvlo
zle1I0H$rij%_D2!fuLi-?D_<;uI~WfhiQzS^ICGsyAzv_3p`YwKD<Bm)5<$<vB6bM
zp^eg5u-t9BYn}82O>MOIU^zyWf22Y5Jb&UyNjoRRY1ux1Vi85%TK?v`vrM}IjInG{
zva@*gIXlkZQgb~Y%$-gfJ~?6)LnPxlU}SpvsXi5p0vK%`>kzljvn~|5q@7m#ro$#6
zWz>;Pv`rBB!?c39F2+pvANm?uI;m8c`>UAb1GkBZ0L9)rgr~7UVAaP_9VCRNyY}h|
z0sI;G+>dWMl~3KA$t!-~e7JKdgB7CRjsG@hfR>tY;z3UD_8n8ebm%e{((g&(qR^Il
z8YvgUwSILDJ&z0ib34575}`EvLCcfz$mLmW2NSfT?rM)nGuhF+*(kq8faQH#{FQ=b
z#6o6`C5FW@iSW)?CF3g91Mx=vTStSQ;?Wj!YnzRh!W$`<o(+lmav+foFJ{*vGaVOz
zE21T%r?zq4SyBIvpZ)G^x1BtmV*Lwtd@=v1(^VBq-SKK<MSOj0X8eYua7X(0pL)FI
zSR9IePOt;B;n7TXw@bos1@zeb<)MSl(QMmKj+X}`?Yn5TXA>Q2$JYG;Or<8r0i{)F
zXWja#5+;kd{%{MPK{ci^)V#mpfR2WyOIihb%5r2e#U(rAEW}7oJ#1?+2@T>Rz=oJ>
z${0+CuS@J4OAd>d*g9^aA*=d6<2%jyUS49-Q8&&gKamb$UtPYusN@3}brVi~IV6G(
znARX3rq!Wnx?*|rEPx{+x$l`$_BoxlHdWD#8qf~Bc`QLw&po^-Qg-T}%kboMGA5mT
zxKklBg_^5}p+OIBMn5S#x%n7kC@3V6PSOV#L~}eBkUuGO6pb>zcA6Mo=VN4ekv17<
zebLdV&1?x}Cv08gXgb$LQ(UN~8FMvCg%a~I49U{8PRMD5kxoK?FlBm%8-w8N?108a
zY%;MeuF~vJM-INHLuW&as?)PNe=|H8_mhevS_Z<N%FTfgA0COZ+aME6yNl>RJcTRB
zIsqgft?Os%tEjd(zK`L`)_mdj&9IY^sRvwTwrm?2@PRCX-ubFAqOYoleShZ>AQc%k
zX5eS#sNZ?ZO?jeaKvD)@R<Ekz)8f4c80a1rRLnR-{O?#DS%!^=Z(Rozf>xego!%lL
zy|A80dIoCNsveNL)}C?lie&qy-DNmw2pgvKP+OghOjc@#Ik>Crls>s*1<%ZQxGKbJ
zz4xu2D$!XVI`2g1Xw0FX!1~#O8blG89>NRlhRKY)Z3A^WItmX&dJ-9p!J2IAvvVlF
z31$*d3iU3Wd8|4BP&`EVQzz5hVWPb0!`T3r{_(26VkUm29SbsQ>Ry`8w%O*IDSL?9
z3183(>r&_?XB()?5v&oXZobB<2-~96_+<43XBK2Y{_0x4H?cjNU%s#4J;$JX<$hV@
zZsW}D&AKC*jVP*%Wlx2tKFX_1gfHS>$}NtldohXK;qZe1(5oc@Bi=SpW8{(lyja*^
zmv(ADM6_1j@eYeCLi230>Ft0*!D96nb-^MDp$H&CiyK7}XqJNfgr^Mzj+|@FQ*%iD
zoX27e$#&Hvo)x^zEiyzRmHAV@V8mmQPkehUH~=n=*THiAjhA*T04_1|mg^V`qu^n>
zM_*EGyd`Q;3K_qVs%ux`LjciKliOFpnEgdzxwNoO)%$eg_so5q@OkG$w;90BZ&2vV
zN|%Bpl5beg9t?;B8rfsuIZj}74+9>4AFRo+PVFU%3yQ>538S{d210_$GLj{H0(@iK
zuf}L^#wZzt5ebO?l-(QDr+%RCqz^O%3I3?i#&l_R`*oU7JtcuK>GNn0_&FYKm7}1%
z(~CgDHs<^~SldQ9t6m6s)7%aZymgVI09EywRPnt7XW8R&gpjDQ2qU*+hOvg4#$nI%
z$Q2dw=pOp$g<)gzAKGGoFc%N~pt+ey!Y>j*><E+U;;O$P2Y-@i---N_zU!oq*?hQ+
zsm~>7brQ6S1?@{APsLr?Q?`<Pudh@e@YAxYCtPmz+r_?XvQgOPzWgn=15#%#!4}r8
zeEBnr9Xd!arRUu|%IEf-f(#@pEwmWBXw2i6FWP!>7528VnF9o^MJ7ekdgIjhW_8T?
zjlAp#1Z(NnIool00)7U~;}|{bB$V9q58^9{sy@6Yn^vz>x6^J+amHgdz9;e3cnkd&
z*z5&F$%G&>(W##R>=*@8-EjXn(VFa!8jLk1q4Xv}uC?oUS*+wmXmj$NL6c|e*5HF@
zB7a1jQ|_qg?fx?%jw+Vetr+8pIdwh^L7t*OV?yx5V40SI-9!L#@g2bO;LXoAMTO+V
zS!1@daRSyRt!`UhWopKHY>zE=W_#AnmPhG0JL$1%OIt*Ji>S=+i@9v@XsI9y*nXba
zdBYBJp21O9mACP)FH&X9MsnFj(f5&--K)@~oN<MhgutF8%U;fGTRbK5dx3jt^}yli
zBx56ux9ofIU(Kw=|8|CCz3+3BC1IZCgq0Qp@j|zoyv*~-9}Vh}Y8Rx;<yhqa5jWOS
z?^qGQ>BE`AgYid0CO4PN;rbfPBh;KcY@36cnXqokPqqf2vem-1>-`cot&C)udh}uo
z#vNU}emBjE)w9~<7KV()kHGo!9hsO-WM<zpRfCL7@bZK<*oiwn11>6}T^BnAf2l`^
zet0V6UYgN6A*m^RceB7U%NK2C(Rz$u=2xGrxFf}f!L~>{XJ^O}QJd)*%~qpMw(;_B
zHhmxcB+nXF#{O@4){p=#Qh>asB-wiEKOOZ6E0wWrP|alI|8HvOf9(Heb<#ycqFA<)
z`v{d!zR;R6!y+}7$akLDVd02&Q-84jF;dmMu0AhK$s6SdS0#PcyIzNngM)Lz{I`Bc
z<LT&$MmaP~M7t^G@<?-uH@bJY*NtYfHy!V}zI(=v^)?G#apCLHU9DhBF>+>H;)X~e
zH(1(mRIU~(TYg_~czH~g!y|C|YFzYH8gJlMlWbYw(#b7-_>=bWhUjU%Nlh^%WI{_i
zJeqgW52~2v6fSGoQYNlpmCW$qd3Gs`YSP|#mMB?^RmQ<pkuY&!%TU7SeBg&I|2~!o
zBg=PO;bl=Y)B$Um!zw3dHS1v<ySiG8wp+e6@9m{@whqJY(}noSZkawx!h%hWY+Xn=
zwlbBSzLR^bN>BLTeAoX?8xZJ`zh@2f7KH~PRn%27YTb$~X!fjkNY9RWST(G>y)>1c
z5a3B@a+C%)8@&)_!+LA#hdq3E(Ka*F7R#9wJZGq?;@w8%EKfAQ1RyB=weVsa$P*Z7
zz^CR<XS}K;K0+Z4E^uN_6zoqI3<NDW7uk|dBtekMergZ0Garh7<OPmK8v^sI2D+@g
zk%dFF<aE{~2GK|9%VDGssXP(kSuIs9+d8S$FM0|F-gxw*?(3yR?zQEWSJR)yk%n5$
zAvVSkSoTovr*j7_b}WJO^xP3|ML)P^mU=D}F)ZJ*oU{(*SJ@Z})(9RUii`VY2}Qxx
zxn?VzNtKwdK@W(+X~5BN#~-UG>>XiEtLowqX!qt2c-wcQ`x>==$NkEy4r~El9W<Pc
zUnL%96X`l@)ezlTj;QJE#iqas?~eU=*x@0k)mr3DS;LSD5{%OT>8?sKnx~0a-hJ8l
zT!+!5gGsm9Ar>5bZBi%CumC5~1!^n(+L8INjMJ4qflld26s_M{dDiRL$0p*mnaump
z>_ELaC31bE!@&e*(BcfV2Of0f{@{FP5=P;UIxLQeMtQ?ilCC>jjYvJR8yRzg;3ue|
zR)5K|_QP}Xa%7x+&)@y6?h8_ZSPK%a0xKVWMcw!9YqL^^lt*#pJk_^+egfETCk)vp
zsU`{e@vSB}hyH#HDJO^|-IoHp+NStbLP?t~MY9x!O?Nmz#9OFr<0tR+E!&lMv$8#9
zld?;(F=2ttSElE7)jvL8A!G|knz&fTw>rN=ljmJ8$Uit}rp%F<%FJz0`eoj$G0Xfb
z!R|Ww;7mhhwRCThjNSdRCblty6Kj7vFgP7RTGH6PvVMgAYeDw$hCI%Lkeu($uH&5q
z#n#8jhtYAaQyC3lH8DMkNPc9_XuX4b%bn=NONC?6kkXvdw~s-9T!KRpcHMlW+g=OY
ze5JPwBrezMmCocTx(->UWvscmWxbP|qEB^^%=&3QE4^>u!WBGseP<!sKX6UG4?4=a
zBj8ngcxZ&FC-XVa#9iKd;F~2GMYUuc&KSr~4v)sGVyr0k&CRUBFUTL#LD7R70qk$!
zzSLg~j3*l%KbhMr4%%kqE%g`O?A4N^jy6}gQ)f@w@F<WdGTMhyh(xn?^2Eb$CW{ry
zI%=1-yfc6}{3n#36i9XSy-?fH%Fbpq)0}3rtpRg1t}R*Lt3~1J<cnW1bC={q<Je8#
zchkPolV;K}00_1V8k!Ch={oV&2Pp9_D!U$b?kfQH4T&r%XaSk!041Ts!#qj73+98{
zGU}rw#p%(z^S50O)TDGxfs+&xQ|d7jJH?+LQfrYtwvk<%)?5d+goX?4>#@DxadcAT
zN_4N=8Dtu6F|u<3%?9DbN+QCEn4c`vEO=mEqz_srNBHtR`7srojW2zAb$2*mIvq8w
zO78WbEO75wUcWDolJ5_-9F~$&zl7-g+)DqHpv^7)aPy0tV!fmYYb^RVeR997SEf%a
z1g@^Acj6oS-W^lHzT|K7@g-Fo!W)2NFrSwtqY-Z%cbAGs-HgzzzLwGA#WxJfK5W_|
z9_=b0hOot{+8}Ct>@W#4rv{EJsV#{z>%X$1a!gHMj0skzTz=%MZIO1b$NISil}Ye>
zMY??ZRn3FXm`LPf{)+F%-Qq2O5O!;gegz#+sRFO94dV4y|CaQvzdNsXJ?lQl%=pIX
z9RPTa(daz9Yu}I_^2j?1ws5DA28+4A_NP2JeHetWM9(ky@36MDLH)1;xeU#QV^Xla
zS;=J<6$Y=lyN;~X2J3%=(Wmt-I-cF9bH0lM(yo@BBqV5^h#shVr+Yl(r}TGGSuSck
zust#bgpmTy4?bqin4Ibx2iIWbF^@)!xl`qq^!L7=P7L_M=T101`_pug>K4@q9t8-C
zk0VdxVBL>yH5W$Rn0~?})ad_oNk54_do#pTMts%qPB{Ro^={9+N)3XmiysbpK;$z1
z?i_S<Bl>#`r5NoCz~zPJ`ZFK*9@;gh&uh>#+WF?Fp$)+2`hY@wXS|7%SN0l%iZt&S
zv>F2@-r*I-^~(?SC}_)ido!+N3Hg(6JPaS#d>L;NU8Mr->olN+kQOM=nVy&ojacGU
zZZ+6I6gap1WW>ZsSo4u`<`7c9+SA$35vJ4Cxd7>1EU^_$bSd>Hxni=f?LP}Ft_)BE
zWnLSI{k#)dTwLhWt40nX9SVOwp;^*d<VOi-K@lNWqG3NHQmffm>FENsMka921)pyR
zUE%0D?B&_)jha~`A+Z*&X{y2;zBy(+gG9gITa$pEdQIEw*2hO)2%bb7eC4J64C6=J
z_NFi%4q`8KX6R=`@I^a-qFOFqnQaNSG3PlA<G#ze!`XLf6XUC7V2jF<%Y1l_;=Rf$
zmsiy{SI7AP0q`vOrB?)Ziyv0rO!w{#(K+6Tf4n^J*4fjJCu&(;{S3=JdWCTRVh4iW
z+mK?mrGcnah}%MIuW6g=w&Zb!$K``#z2E{cT^mT1*`=eWA~&g+n!fDGm|>-}m#1@R
z1GR=XVNm*tBeoSEEKZd{II-5Usdv~uekA*VY>t*zaPIi!{yVUHdit`OGGCZ0S{zK%
zK3t6Lgsa$5Q)%1n4qx!-{YLP}Q^AMFs{;L=*c&3u>LChB`zZC{Z43PaGV2p=87=S!
zz4@tCj*4O$){q*1*lKc=^DRlNWeL3;XYA~yj{8w$47q~u$q9G=Y}!oS@1a2fPyY1A
z(8A_VK?(}Bq>(z}6krS)uc(!7*Y$U7OPYB*J?|rTox0hc>v~bBbMvzG=L}3dTgbrf
zPn7afje32<+ioEmmMplOzm(BiY*5E@P4St4rjA}U-%v6>)Ci-Nv{UpY4OqH)shiLC
zE#Bb-qMnGDCkf$Dz=xqY-%Iu3+(HIQxWqB%D>s4)AoV>LAORn8T}wLozHnil@XHc!
z@XF64>>A6hZ$uX3?oE+u&OqPSnwf*vZqs{JOm`9bt^Px$W|aHSpw~5ik?}r9jFVqh
zp<&an5@u!-UC_h04DxRR26xzZy@wLK-VSHV85kQanUf_~+%K)4zwB^e%PlZl=I0%J
zSs1j^u&b>CriN-Apd1dI?w*-FH@d1-QBOBqZ&FuL{~SFmN-X=^zo3bD3yQh;nSjW|
znjoNCn%o{s9pM);pG_0weLFkz2bL|m-<u~h*$_@FqlmY@Z7S6B)m`Ykc_nDjAFVcw
z=j?aMK7z=<10|(-I}M<ukNOdFua6Wb!9IBVX`zl)L|<DE?8emDuz-4p{#k`&NvlEA
z4r2koWB;UrpeGe7UO1_YHO^tz(aqV}S5$NMAMUjiH|f}FqW;k={2NBXVXv+XfNdHf
z*K2k>n}bzz$3A)qo9o9>T@Fa^iYPe|JIfniI(<%FY4%y>9%N!_Q*BA_Lc{A9bV4>&
zly=e4^A=U)GO%2);w#ic5xMUjFH(=PXBL}<V=$CL1G`0^mxT+Z=aI?)aHP%Rci-d-
zuyj!1zoZ55Ev~488m4A5MR}HAQz`h_kInjasLHBK5$+g9Q2}PeG-;lD@E|jZWEpMb
zUuU{9fy$a<!_huDC8(=4Tw6of<jYz=((3jn-vP~-?ZmEcOhcRbGPyHZiW)J1*OuZV
zOX=NwWMZ@Tn0-t4$+e=8*NuFx!dpio$_VOp<VF>DMhJP@3hKYneN^x;!aXR1*e>4~
zl38<$vpuTV5f(TjX`Q@!*{!b;xv*NAbAWlNAW~B82MQ73b&OvKNDH1?RxEy=e);Ag
zC#n48%!85D!&K5h=ID{kX46o3ci$8xQP5+oMFK08Z$YK$KtKH#6t)2mp#%9CVJ%8a
z+t?#jZt~p-t~+0yxl<N@UUg>pv*pQ}`A_n8AR*QuB`ouMB>5)S4H0DsCss&fjh$W%
zT@CV(v~4OeIzjKy$q)zl^RImM2>JBbb2`{MI;116;b57K;#y*0u}!YnWu0$2*AV(e
zM;!a?ajx;`xM1KsYJHiDwpmP8mIjU6^*bF;D&ouREG8-Kih%I)@CFmZy<Humin~uL
zsw&|Hq3DQ+;cuF2zXv~`5Tp|3a`6W~f199!FZbeVtD%lHj^AaI|A;?@ig)xbBhs*c
z;OIjRlfaq-F9K7Ix8lhu|0W*>+r9zaubr^OPti*`Xg1^9+p+`mU%u(<8rLFFD84v=
z1cujL;MXe*m?QzR#6+pnc-y`N{xa}*?Pk*#Xiv(}E9GTCXW_&IU&L%{Bb-h{2~^Mf
zkVLq09M!Q<bb7KLy^bG4*;^k`e8Bp}2cv7W_Z6{LQ^yI~`Lm`IjEFV|?l$JU_re4r
z#+~fp{R>SLwMv~<#A~`Y?`pg~L*93J?>`)1o}m4X=|&g;GY$-(Mqmbg+RuT%d1c8C
zZO;ga?(9<i9L&P-+5>&s!(YQEy#m&yZS4eb6goiBf}b2sAT4(yYwB966C}W3D>(Sx
z+jq1ud!2}qd+aYr!U&`eir=saD`JK~{jDL^(m{hSY;l5-k!(BtgKKNP*9sEO$n`#a
zE)?Xo<YAuXD)+is8Jd#^grQ>?!slI!$?mw^Cf48omYtUdSQ&~-;PopqJm*S+U)#YO
zF4_g{(NPDK%12GhVni=ov~S93*%4zpK7SmIXk>iC|EE}YxAAa(SKD1*0n_B~C?Dp<
z+GFr$D>v!gN8R&J5@W{9vqTBO36%+7yM~pr-(2cmc1O}#D9EInn<w<J&@%BiY`$tw
zR2WG2C_jG`B&T@MV?&W^HN))A3=IvkS!0_KiL-1)@(Y=KXhEATRwAnxl+EA`TkCkI
zFI)O{B8eqm>S(LJKo_TU?K!7==`W$(KDy0^BRQtV)S7k5;-*H+{iJ<^mPY5)lfaFx
zk;`nk<@_CQ5U;fMYcE>^dUqG|v=q}Tg-ae1c`!%WI-gbmjU&?B32h>#LqJMX=)KPo
z&22`ERl0D@!DP#gZ~@=R`k69^mN}W$?MpOahhICOpcALsm3K;X9&@@~8yYK10J13E
z5F@uA>&$a9BaeCCKUtU@W^}xYS$$6d7Z~?<P>EF@hm6i9W&qCh!&xw`$AB1A?a<_C
zXEJ_LIla0_&dK2TgB%ldMyAWjwcFb5!+EK-{Ib{<H`bJ4hhLpYyebu5xTHXV=E0w8
z9Q6_O@dC%M=9fgtK63JvThpV0RPzhKyCUiMM@xaWMn1kJq<kyy0sA+><j~qNvsts(
zKH32CS+QH*c-dih!1YJ2tCIZO?&kuSFFGA8Vry-1(JG`6repk+#{02)oys;B)BBUt
zBZIzh8^(!R;gk1bbgRbp24XVxJK~(9Ub@BEGUsD+0R>Snno1e|qXig{#x^JqXrjhr
zXN+2o1Ycn$I4+K$-Q7etia@VjM3ZKZtruTk`hEQA(Dg)aIrl_D>;<e0f<yJ#Q+c9(
z@8BX_AFjC~l<JbJbtZ;RAwFnM9v;3jQ}F*fG%*Rc45Ll$6Qo<a8I*KCVioG{L2&?O
zWVsBg7pJwrx&jlYULAt0{AY$g``#0WF$#Qos!t)^y+<M?2UFwp)N1JZ4=_z`{V#on
zo3&V(?K#Y`*+{g>kPo|VM?uPvmumw<lP#B;P3-9jQbktF9_;=;qWSk-yP36XUsppO
zH0I{=Gt1_!yU~HY`FBy*`!|s#FK?bO;RkHD^RPZ-DRMt*?%}rPY4Wb~7GgF>!DNEZ
zxsN>$$eHme_nIsN?sYjwybwjh;^;pR75`DeAEwxbD!vj#2{zyA-8$zU<ZWsz#N0Zj
z{lod%1RORn{UrgZsnt;bwVUua(t9^e$y^jG`+wjr{)MMU{Kx*sssARkpFJ%^|FPYF
z?<sWq*LwtF1^%_cP?r2(?;*&2^{?HA|EpZ4c)0$egk&h?g2Hrueq=mien;rg)M7Ma
zWKV*oA|pqW;0dXVZFoYaWfdz?$5(F~y*68qxa@m~6f#d=#b-2T>UvABo2M@&alUpn
zT3JSMQXSKVR&Yl~pf1ZUYxt*c2tR%;mc;N*wdN9qtupO`WZW`GG2l7|-HN<=3Uv<`
zC%sy)Cmw$@4&7cG-#*_fe7a=p`cCFNH8pql>yOJJ8C(6aepaNbQ8c^}NY}W~Lct{I
z#!to>(?mJekE)Tc1p*?zj2!B=%7lnTwroh>R*L|?h~$W|IW+zzs1ZK9UYijb*;N?~
z(|$eS0<*_xTs5JdYPs&M<J3CsM!dXpwSch@t$Vb<+nylPK7N<dP5Q9VK2?m}tGdKi
zkJ1p;*MsRv1{+1>$aUpwMAP9bK^317jHt3MxEDE#+4NJn+d2UO_X`@w!{=q%DQeOi
z=c89%`{AEkuCIieP%(cgr>O|ZPtI0uyND#$hv|VS$U~ww4g-y~SWu8M(?&j!+1+i6
zWN3evZ+;b2f71|QO)&TUwngJ3_^Q&soyb=}^hZz#F1wE`kpnS6Sa@D)yp1%R>#EY>
zGQ?LO8gt@tnVVt!>mhU|g&T1|Q_*B<uZW?{yRN2Y@!~N4{7QK%jh@0pCmpYN90PbE
z<zVx9pz?8XSa*;7c~xV^g7o=n_BKi#|I0qPFw>>0$&^dmcS_7tjvg$v7zYyhbYh--
zr?T^vk=mJlowv*~8|MphqX7GEy$nx3QO!j+uI4nNv!$FE4%^J4j~p7=rA?`q8NZ4R
z>(bv7rF%m6fA>(Z`&vUC89Hy>sOW|$eY`{%8wt5KhU@LvPN+6_R~Ki&+~ZW3#~x*G
z*sPi4Ti^-&Y0d!9Hf_uXh15~nV~;v{DmEd0Kz>m`0y$H%up3>`1XCGyCs!Pk!|Q?S
zq^dksKaX_O$*?;wl=%D-nwcuK)};^9i?b0*ia{sUKVrd-q-P?&X_UC{%8~WEzQ^)T
z<V)aR?3=^hI&9|8aa~)O@+h^v_QNY{f%8&FB%Q1!U(K!{<g`x<-CZ73aqymACMRj@
zOcXmW4&OAL0&tq8FW0kQ7?RC3YKyEtUfY=qC>;^%30_is>z?I^98Bh0=X5$W-K2>*
zRnI;v$c$(!%3NC-w|6S>2^oL9Nuh4LuSC6p1x8dH-h4q*_LV7Y#u0X;=)Xwn!9KM8
z$tMcREfM891K;fPS($iBPMFTVK+&I%a{@AT?^G0Lh=SM%=~c{LU!SM;$*k*CI7~=x
zqCz{8_XKg84(tz;(+7_~kwqYte=`_5Ue%ne_u^~6XyORx4AmEoQO;+fshARSW=TEs
zI*3>Ej@g$9QNj8+QB!#wuY6qsy@;gnW*pwrWsuby-oMH(XZU@ZD&TdnGTWFS)mXYd
z;xIGD<;i`<iT~-TiRr`n)5M@jBY@Z(Ly}ghP5X(4psG#`*8sKeRZ(?|1BTFpVFy?k
z{ew~_B#>_cS5|06%(ZsUYh|ZG&!F|AU`#cM1Z8WCzwxiPN28q^Goh@!4?zoTC*AB#
z$7fDzn}|bdmt}@MakPW8-}PQ5Ct%AeBt)eP?`c;!V|8DcYzyyZE<&eCk=T6&Ic^QH
zoF~nPe{adsi%{Xoe0Tv_L-M?tXJkWSXACtQR+jfS*@0lB!=Gj7lU%Ggm0BGtLV66Z
z-CSO7h_P5%F?Ar<aW{tbQZ}Y!L{a&7$H1$qL&pw*>#OwN#wYIk9GF*y>mI`Z7*=?}
z`Kpq};~Zk4v<V}i&WeO1lY`BmY4<ab_kM|_-ktITcLOCk%_84-;?ako!{FP-J~r-l
z=JwU)1PdtYT%$E@t6hJ0k+sJ+VOL&1L}f5RQ4@Yy0r74U9oT;3B_w|?bpL(m9X-a|
z4n*R>b9it3qK7_F>NS1^P#L#g8e6PK?4^QJ49P%z%(6lzPy2U}tey>;h%rUN7C(E_
zg3Dbig~jZz;bRshItL({KMSjASB|o?4C)cr;YigtgJFpnjJ*03B{dCxga4zquMUdi
z`Sx7`gb+x80Kr)#KnNaOc1eN-Paq+<1b3Ik2_7uCOM-=<!C`TCcXwTE(S?P51$=+^
zy?3jw)T?^8|C!pEot~c4eNLbLe9q~iwIt)*XTN+%v9uf*uO^A9E5tojdcqWkED!MW
z%_VlGZhhC*<W}SS2CL=Ovy0Qsina~cq3S%2^>#+m(`xrQLgebq)3M(9wkY72NZ3M@
zr!#24qn?~nkiFHHk3MZ_xY3zuWKdFCZ}?z&S2_aICUy!t47)kDA!M9o;>ViBd#I<r
zi;D~HnSRHbPvFC6YH^a1k;JGjc3h7WUhP^ag(t#vO~nO&s*cGyv>__sVeS`bV*h0Y
zwt%Jl_Q>BG$f(5K48Iv5bSW-w_KhLo@B>T0HVrfT(TDSezarHpZ@kE%$!qMXZRiI@
zxkDpAd=%?@_AH@XYdw+$DX}Uwd3w6?h`3H*a=Uh*s0VdwUwvx5$pjr`Z!z=&G9!}Y
zeDI#W%GUyMCYA#ec-9_kag%V>k&uw%qi37xF`X<jKAD~nx2!q=Yeq$(ojfZ2n!~Y{
z9hh5M(bi^j-Zua7U7r0boLNl;XaHa7WZzo7V0Z3hp3{SXWIRu5?_HYU#(w>s;%*|n
zP6bRxY6r@xcoTk-s|JK9_(DgBT^|#2nyxQ?%(6vrObo3A&O}t8ojxXkFMes%yKZpr
zN$C`aP!IDwsaom@GPc%p<XSWhz19R?;#v5RFjypB3UIJ?H3btZDzY%J1F(*CKpm+%
zNeKZy?Gp)e@j6Q#lKrOhQynWQqohRKzQDBlWJC^j0H(&!xCjVBRG6tg+;XL%w0pWT
zGjOx?UUx$o_0{MrrmDzMY5Yo4G&}m`Gt)q%&f@w{X_jvO=KXDKh9$4{H?D!Iw%L8F
z2r00!b7CrEtIm=rzvQs-p<&-VoE~EA@St#w!^1!D#u}$REtL#4(Ry-b{Z6ht3{|Ms
zS)dl_us4CR_+8++`vqFQqWf_A0M7F6rf<9VO2Hm00xn#+DO56B_(`Do*>K3)`3D&$
zY}^ZolrRR}MayLbHfU=qAIGQnxst1isAscP!4*s}hdqp;tjni&1UA+grRI}}VkwTe
zCLZPC!ev>AS6phnswEhE9YE8|u9P1ty`ac(wA49k%SYCc&oTcdYo5k)M_J@p>>>4h
z$MIR~mnD*UzxNadydt0XaJu;9?VdgB;?}^Q7kNC}l47<Xdg~dkz01l_6wi_*ZLIo~
zY{aV<%@EWjsZA;nJX`Dgj?l*Fuc5}PqRL@E3I3MU@>Vxmx83Jwp8-TsNv?o0drl|l
zH4&94wfHG@bD=LgBcliaFW=V0jf4;Sqy&HFC2q2wQnfz1u<R>y-d>rf{tU(uY9&5E
zukH-TgAcBY=j8K&mWI>LWeF7map-Y0zsMnax(sHAjV@j`<HnaC1{-@i6V+O3i;WL=
z7YM(YU_Z)g=x>UR7E^G{TQd!<4@@TsL$WQ+4F<?32G)|M#>7xQ{<uf$02GR%C^C^Z
z$RKfA9ZKZfn^HU;om6TBiCNVLgQ<RDpZ(Prtc!R|;UqlOLQY_W_GLzeZ(o$?yjtcZ
zd%j43<T5p>K+tSSFj6dDO+p%5mqFy!1E`)-wHw8eA%OUW<+Sv|lVJ?L?{srLiI^Tn
z*igQ`EYb|tuow#xjH!~@!Lv0qCfi<;ztGA4atrPl<HbG2mL31Tn;o}_ETIw!@n?Ey
zt+_1vOpc(-#2d5=jf?9UM@F`l5X7vs=$Vkf_FvMA%IYKy>uuRhBif4^H9>dv6u#My
zR2~V2ZB}8~xHN434kY4H9TS#n)!rjxM5S6w)@Ay>qkllN*hO;|c3KbRcd%CU-=rBG
z-11Rfw71Iuvu`Ycp_C*T8o@!2J1@;!uydj0O!C`(uSON*Wn^W--9Kx&xZs+P(u%k!
zdbM=xu9r`$mRtd7Cq<g3s87R-mo5CTCCBycI$P^|(2@`Zo(CUqYAQv2i+4NM*=Ftg
z6I9Ag4_OHtMamh|wsp^)t&dK_|F8gRyJj^`ca<LFP>oOOmg%9(NnwUZQ;z0!HuN-6
zRsnHnuRHBfOL0?hKCa`igQ=9g{&jsO&XVEoGmQ#>7dsH-Loi?Waz-${%D9+ueB5U?
z?Sg_0uMvL0kiY~2G1XBkICzg!l{X(qnO8%WtZcsNvu9SH9P-O696u|F)1!Qv`ebf?
zKH_l!%b8~<Hy$i!GGn*8QjsZ1lP@NCkNkK-RL6Myr@oD0@k(@r7h|SO(B><7rhZ3*
z`DbM%KM469)7DhyggN2qnOn-mDfO~Bhi9eY-;?IMlrx2vo#s4cUJ4O~ui8=VI2C3f
z57%8`5aF;H7Uz#|F?FZ*E(23;0~RPHZX>V9Ft`KzDWZRK7W(P%hMNBZMPM-RpJL}7
zgfI8dapgTCWa*!&=;#EnzAd*V3BV-D3+|ShKU`U>`A(RN!wIW~QbBglgMwa6nJvwr
zaO^!*JHtWDF{+?Hey`YHkCxgbK3pi|_!YbPQ)=!3w)qD#bAi;@ZQo?5#_7Coj_>0@
z>;T{s@=xr)jj_!XLjIVKtAP$n<D*K?C>9`Q4^T*Vto12u>%}CR(y4UKZ>Fk`{%q1Y
zwLY9ETx_a6rI>z3p(wMktw_ozEBlhSd1XE9iz8-w$5cF(98-N4hWU$Bp@+cQ^gzt?
zp@0jr=Pkcl{!%bP%o|pBKhFlsv$m{2;5R*)s^5aXA2xCJPQzQ};;h3Nmc2v%O#fz~
z4`U@!C9lj?&J?RR2w<Z9iAGvPIl}#l^Y3t-z0`xJpuy+(G9~fSJqsS65*{vaS(@%V
z)n)pl#j>L&_v(x(5+*_v@SvJM!zUe$^rFJ#t*Rr+RbX0T%i(jt^mG0>g(!v3p9DD3
zWOdOWumPxftjQcdWvp*(2Pak~x2M<l_?|a*C?>MwE>1X@d~J=aiy$H)y?I-0Y$527
zYN0!yGvCHw^ufIr&4727?3B)A&Dh%>FT{vlueHdf^wr!Sytx6ILy`HJCyE>*PdGzD
zm<17cWXRfsOw^<21bGDPO3&Q~@Zv!|jvuLN_F~V;QqtuA_QzlPfV28jy6EkrrUk6Q
zf9C@TM|VB7Bfc~B780<v%+q>3S!A1!*mYR!(3;LN6yWl`-sU<JB+n6M)<Dq~cjiQH
zep@>1B^4_8mgPNgvb*0N>Cp0Gw<>+gMjv<n-PQ3_R@@7N+DAc;=r{ARAVzPg6HUpg
zgBabL(Cdaouw-xSv=i%MQvRR?viO6J7!sPbHAT$m&MSIfWOz8MPlYb(^!%O-k<x}f
zuSyk`?qhDPlAwnLbo;Csz%>~R`mcQaiui|5z8}?5R;O8RKdt+gJR;=6QasNeyO%2n
zH_|3IZD-`7)$^lFdJL%>QI7DCAeW727`?ibEQhX2FrLnJzCFjM^O!h-SLYdI8Lsen
zJle7Y(c7!*n!7Q4;p0>gJ-1!|k+j@|YoEF29XUs;E?JiLg}{(Yunzwhw=JgV9$C|(
z2A|Q^vGowdntkG7q+f?u*IqHIqa$4<YP5p?2|HEiZsg<-^&K%)dMr^ef>fvQG8|ZJ
z-dnLe316dNn|5mo+%lq7O-V%ZSTocxCL|uUtwT-J8+lt97o;4bgxR3Zf50@L>E*TT
z=#O7V`k;hWs4LT=SG-f#h-10MkEa+3L=0`w8y1QNV{i6R#x#EiIvjSNe_#-=9EKkh
z+j;fkI<;lnH9gAI0-=vab~NxX6^&*0T^DlTY0ktf57xc!>u`BofW~7+CU%s91@RpA
z;pS*C^G9rFktDZW@MRyc@h`<vb!1;_==qA)f!Fnl)|AK7BCx04wVIgNM#je}bWd-U
z-@y+;VpJY<bi8e>3(e)mX{){nimBw?HmDxylWQ95L2}PoWp8YOXN~LGo4F-6vd=3^
zHhAzHO1xUn>kzP6)<LlE;$c5!oZ{8D&(fF)Xdij-&NEJQ$%vti>-EzV(kys6vyPL)
z^e@BnI0kgTNQ~#+^v$Afg8Vg<n2$`w<&HnhmGS-MYj{LRa`oK3r{GB*kvh8RNCEA{
zFW=5Z$|jMn9>vAw<gh%VE8a}=ct+Jq_nxd8w+J~kc4;Fw3xd;G&6dyCS3`MkX@%oG
zJMz=5GBADzp^`|_Qd_>sZ>#=-j+9L@l;g25IgRtZ9(<u^+g9eGNGAD4c1Bz^e-Rd=
zuhYEGp|dfr)<_U<jz7i|(BWg)RyZRQFe<Tw%HiCr@*qM~={NmgF^#(B<?yU7vYW3O
z)!R5a&Q(?=kB@K*VX0Z(;fvw$^yT;J5q|cvMk(QZrq{jFou4cmKwf1bBSxS2nc{4<
zEz9PbNd&dwKEXiM1}YciiUbo`==2VVki@`rXY4tS5pXTa!_XHwe}V1T`H81HIPP^n
zOJ4tAUF?XDZd|F#dLZ&kXt*$zKiK}JcT=Nh(4EowNT?yDHWUOQzVPFxAE^rUWg^8j
zUU9Ait&^OssXjUw3Uhj^#+q`1-FO4;oRAnu+sm3JAFeUhxzt%8m4&-Dq$2r_l{IxY
z{=!o?T`bRJ&WJFF&PvlxU^BSs1*Zk`8t_fyjCd=94lI<u+jDVkaKdgaq-4L4|AKKH
zZ{GaUB=<8kwxdx0@K=zQ@H5mDRnaXVnKkfQy=prHh4VZTM{+cWi&yL0m;icXFC!=9
z-Iu3*9#MfgOg2%(*WzX*ReYgoCoirGWg$m5c+)PG2jA&$!O03GcjW%)jKb~6wDaL&
zRs{t@jucvoYt#18ymYDmybt4iv;zTwd}XG==Nf!0cZ^k}zDXFEfS~43;OuB`t?K6&
zefL%mE;!CWkG#LcjZ)kja>%}6b2(7;Lcb$joAAS}6T3q#KTjNq^F3$(KDfUNA*uXt
zi8SKuG)c8AbV}$wziK~B*>b9$@Uh-Or*_&lf``*5PxhsE&1$2}@-h|0vmV~lW&{L+
zgQ^y>jlJVvFWHpEvluBKBkGLhelNefM^o1vh{6&+?Nadl58|*&BvUi?2gckG<l}SE
z20VH{^K?|g7ptJLK;OHl$Sz2i$|z<~(0fbUAAY=|`m@OqYNOfz1Wb}C-$wt%_R%@@
zUByuGY6ae(N8Y=JR4fD_>(%hx+98o&Xkbd3<tnwh<Arz6WLT<fLSXHw=eW7Xy>D0{
zN66Q1f}be2Tgx18u#}~Yj?b#VxDDC-Y`f5|nVJM<>;BC0b5cpX>YzvIua)=*R_mq9
zrd@|H=>2Fp6m!lm0}~F%Jy}yx&0~>ja%rp0P03e7;6C4xF-z72IN#{R`k&qVbgHbl
z;n#9>bQR$tEpy^3{Vu6e9Shy55gyW#P~n=*9ei9sMCIJsnoBJSs;RMav9;RR_{Ru@
z)8j#er)-rZ-bN9NUE(PcV;`{zwKxHGi4|W5erz^}Z2mn8^>7!uO2##w`@yK1pVvkX
z@;mw>ta{NQzTdEEdt+^kFSZYqCW&Zt#r>zJ<(O}oFGo3e6}#SWt$>m}PM5suzzEyA
zpHzSz=G@HbPiJ4PK36Yl4Q2bTnX1GZU_aA-LOrP@c}Q-*VQYij>$9S-1HS}dR&E!U
zs|+x?ZaT|Jx(1CzF`LzwB4LDIzLF-grV06ew%s<!?)(eO_iuCM{i!DA;eOvmV|;g`
zca~I}XaAHxKxf|Hs99T8o)DT&GC}+t7k9@$U?s9Fxf)3yZQKvLhOzJ*71jcc$-DE4
z78_Yv*xD1LWz@GL<z-}hnv9BXTALE(luD1gCK(uF68K<eW>IhNLtFE>?p6t8i?aL6
z2wMUqa>mQWUj9`(yRa58p~p9npA!%ty!%@Mo+6Mcb<pV`XhRA8k+$8^zRj)m^wq!`
z_B|b;q|b9MBc2r(Y&J`NFdvdwCKUUXMAwB-b+O*g11tw0dHwQ9DBaBY`!A`>6z_f)
z*TU}Q%x-Y^_{5Yxi$|7{I9@oU`+i#BsJDgTbz1S(YCRlSGh7aGqUsN?2=PavZk%y{
z#V!or=gP60+)1c6ivt<N%+_IlfR%1*ef0J<U;p~*psx$f<<P_I<U}~~N_C&C!yY*2
zUqO?Wo~vjmxzyS=X0ZHEyEAXuDN5+K=%Dwh<K?D%K`nLxNG!ks8KGJAeYiM*Ae96?
zBO1QI`LO-X%+V24(Og*m<ezH<1bP2c)QbhLmUmDWX7@TEB<vSKv{~)Hny1AsCI7`n
z=?>*Y11C4+odWUyc{~5!j|iwHTTVEbAd-A3t^DbEmLsoLz&}Hb_V$*4%KzAF{O3fK
zQs=Y@_=Ev`z2ZTAK=K_EJzYEEa2-~Bv9s+t#&1@8&xA#mwcgo0%^}!Z2T~h!F;^||
zQGA^O2801)XQ@+nRo}H><kw?ZeavtMI=ZWWbS=`$qE9G9xH7=@C`0yewmzs`7)Kz)
z4J?a0=iz?naNIK3sXf~Mk99P>ZQ~e``AZL=YZ6pwvNa>cH&Knqb%Lqxvoq`nC!q#e
z&_F7G74dcK)QWZL?~gFGfwD^Dh^M}!9<qw?M$P^xb+VJsC6+tBb9|#RYI@A<V=ec@
zon!QEC=I#ZhsMrAWW7BobVPNd?&Ouu-peL`;>O=97{Ji%2LK$j!s6vPJ&)~?0yOGy
zbl76$H|rd){+^iEO$wW~2gg&ydG1FC5EndhnRLFNE^#@34Tm?~IqeB+j6gz9DSGG8
zTT9e&AA<Q)eFUb?hCM{eXyRR|9@-x}l8nA8r9Jg1j4?Vey#B^<;o!-Ng_rGg_Je(n
zbH&xQJmi-TKaugi;XDivQCkOGJ%CArT4k;Yin+}(Vv3X6eoub+=m{fm`!DeRnGyu*
zrgew0wR(Fb2O|LiySC&5_I2m%{?@3;(HGD*B(u0W;$FBmBZM$6{m1mltIn;3b4WoI
zlQcKbaHa2h^HAhIEipw{{dU@BBt>&*sH4&j2nl7-;dGNiV+W)Vy|AQbuX?Rl#t)5T
zO1lvDP{&$%FH3XejWs-9wCR)EX$Ki^UoYq<y}a-^!C_&5cu})AN;=dW0p~n}IRcjb
z(*vVlljz2kdR@PcV^!-2SW{}s@_Y03m&F=PZSZ@n+sh&nv4fAOwX>oHQt##2;9->O
zk7Rap1(1}`5q6@$gLfs*fla-W3J@}H>9<HTPjxt<Y?YCXW@E<3h~7?6vuM%YoBBC<
zR)j5a_deUU^W^H>WPWobwQy@#c$MhD7Q6OZ&c^b|W4fF{t-6a2@rV3QKjJ*`-CMUE
zRzbK2OWKGOxKiD(ufKJY`YK~tRMU;<OGjz;(>Z@U^60rsrs%>HzgrbFKa+F$P2B46
zgDBqRx7&d#wI)x7XxO~GUA)4IkMpFmiD_3;uJ-y_<vgjKA-&3gO#a*$XGxBG?`lN<
z*W%W6aD>9f!hkl9IYIdPq!v=dlDZ%2oOKdSp#}f|d!@zSeu|uZTj_p9tL#J>yduNr
z)#srvCpX$uQa#)NlTX{(Rg~+sVKqNn^6Cb-VyJPAlE6n=m8aFeeyw&}*?;+SOfc5p
zl08>TjAGi{2)>ZACg!uw6-cr0pFyVT5E@l2Xd-+Ihqdo$`MXy`_ce*zs>&fDhsX&*
za&K$R@?x=_EVt+{3jU^2X3Y4+X1u|Le)my~)^BWEW@%|6-zPp6nk-+lbz=>lb>Ex6
zywp2|f3$iYXEs`3^jTOIKQgS2)8<)~BbGnoQs39!%1@e>nb;v#e!`}K=kLxY*kJj9
zmoIov0Y;m;FsCbKm8@f$Kj)9Es2sSsmeE{P!^CExCDWGP{zH;_Q@GJBR1{NcN^1FP
zDt0dugh7=-@99`|FB}YESw&KyjT5}4#g>CB`)mt+w<2sKt~_Q$_2Dl%D+;I#;I*^@
zOQ*#~K)+Qxfc12idu<|lYm_!g7byIEb%@~0RLSlF#l2UH_Hl@bPKi)c&|s~aW=cl<
zlfZ-yVR-ufW70dgkH3MFnT=Tx{@HPPnX5oP@Nfxqjm_j6JF2bUypQguc?{5Z8xw8_
z5VemF6BD-mH(YEsJ)b9)XEL(lMc>M=#REQz+E@GzF|nuxW|y&_WH*{%*9Y{qkdNi|
zVCz9``9JySRiGn&^_yV3`$>90O1=KQcot)Vpv6LhxW6d_@{gV-;U2<mGj&-z{m11#
zX%XwQ=<l3=M+&se-Eo_qiC;PCsoF#)CAg10;ZR6x6|}7dw1z`xBda_kg5G~Cd{}hd
z$hjHl2%Cz27d)ORLy{5FSI(-L<Kw&=VzLg|BB*-PLSFrOe_D;KxuypCc^0(wenILx
z4lasjj=QqN>N=oDG}(zTKH<o%#F-q+jz<>%BLOw3k)VcWLN~ns?+Z$s<sypRy9GrT
z=KDK6YLV#qHi%d*m8xO?Ltj-72m6keF;^m#M27;)6A2*(3a=?P`<W_dZN9qB5AJ?E
zGN|GGB~dNBR=f<&zOqf-pRHy|F2`juDiH;BfTda;m<)GC*G{K+;F|c9o@8QypMMYy
zC3?=+3q(~W8eE?dQdoul)G+a)P9BT$lOsVR&|7mqr5R-HqUUBqCmHs`bMYog+SKjV
z8DNQyk5XnRv1i~g+_(0CERE#gdTmI2<?B$^eUkC9m-PFlNY`=5Q)IJVA1!aI57~y~
zEE;_cS9z!rsF<$jt6fX`gZpmU;dH#6^6<-Cutw7$;dmR?y4FR62LXCKC%$zc^9xHw
zG{&X($hi2l^p+MjwW*e*QIVnMn<tCM8)epIB3HQTi+%sUU<A#!KK*s!!J`>iER6Ya
z#-1T)d%A)QthTELty+s1e9U)zff!|G4eRZ!Z;zd`air)WX>3jwU1#3B)9y%|@Znnd
zK+&?DsGu%Lw&`d>68qbKocz$Xe+wM?r~JQ#yA<Z&;1kr~$4WT<ELqhp*|Jo<d%#-V
zlHF3-HpN`@#JB^)xRO+Q(EBI<N_n?S`#bf@D?Y#dL?b8Yy}SSs95R^jq1FH12kF{=
zNzRow!EbRNKXh0Af5+uyv6obAE({vMFNpWO+<}shCc!AK;yL_0yg+?2T3m=BV{{<z
z$kbf}-xnI@Z$A(h&#Dx7-;$L6cdx%wWHeX(+Qg~70=Kr5VlSDeZLl??j>h+*KVS7^
z{v4U|!DZv>Ht&sqAd>sn?Jgv*5+z^>=gh(bho%A6ECCAc-uWpk34&L=Ir}mUjeSjJ
zo-Zsp_6AFGwSV@;7+)N4Bv#)<wcHO_j5~|{PKC~Op@VAD@h3za-Cf{Ki*=dHX1)K5
z7!|AK=hGp=2V@F^aXzZ>6@=lL-EV;rZsT1fUQT%5#-6nYsk^MT`h;_2g*}(@LXwo}
z0aqxs4FLhzFv}{X(=FPl>@-775OliUeWH!RCv2FB$UYWL5PBWbZ7)LVVh@}NgnUS<
z4Z~DkFq)~I>v;;I|FLim>dFp|hS-=ri=2#D-o6sXUqK6B!S(b+sinD8iVli;kbK#{
z;198rYYGcuk+ho((k_2$oB0C5jg#xq7H?j51QUrvfuHq95CV;jexV;`?QMO5)b16F
z@Yz1JUC$+@IM7C#n{n_po=}8Y*97+_Uwnvb@IP4eN;d@il3tyI%W)iYIZdDFD0l`U
zj<UUDpJy(t5eybzWR&nbKebQ{x~7pfZ`?$IFOmuoO#2c%$XQN<zLyUjEkhew0;gi_
z5hgtmZN#Z2Zs_UHzu0%~P1;I_(9FqjPo3^MyTi95V9c+*ikE43vFggt?K&cMB%((U
zBH$Ztr&)?oRFNC0lN#XzN;QisQ=vr?JR^%H9?3>1S?6@!$v^s#lN}%~Zbn7oUlUxA
zbR-lJS|2S8yow5Sa<&^BrzHhYTh{D#A31Q`_;^J$2HFk|&}1L$USd#R$619@_i24u
zd%cUmo;x0Np57Au5vYBIm-%fHKA^u!c6H%!#!og-O)Fobq8!ZY`e?P-spK#$c+O*R
z6}dP-6EG(l#ZDa?G5hr)7c271LUQGkD(zL5a%(Ofg}P{hs?gQ4wMXx+HDeeCjL$YY
zPPU$V`}kN-LS6Rv8QT;*zCrh^BS>yGvj*FOaf8ckY+8-$pnVaIVbHXf$v(!rdULZ?
zF~y5XVwwok&?nx7PpU$##9&OQl?7WxxaqqWtw6Wb&7!KqRSLoyb7Ui;A%i~iU`ML!
zK(TZv;~*8+R-?rnFMK_%Q<Q=4>q|ws>hCnGQy<YR!bss4`X~G(M{ti!GSHE}lT_GB
z9<+AF?b}}14^I&|j7_{lVO3}KU>!Ip$Mo}P5wgFWZ*p;U_VAR0x)uGJ3MsHHP3>t4
zc1vAwAUnozuIgUOH{Rde54`D(7(fec<f@&qzu)zRg#C7#l8SKYn+XP1brLBvE3_Ky
zUbWinl*2C00&fi{_{6FtMD1Wu-`wn}+7%!7c_yNbs*I%dz5Y>ojm1>FbjQNyJ~g7i
zc}qMUuR6a}X0@z6^)_b~`$txk{+q!qtWBJ+)kGX0=C6!&%S7l;f58bpHG5YU@VrUp
z(`1NEk#=+1V^N`V6Gb>4w_3Con#<DiepY$bgO^Oag2|W7PfAFAPAJ_m8BkXVWaj75
z$?4tu{yK-PHzuyy3y(t7x;hjW_45|PLV>QtRiS&b+mi>J!VSpsj*SoFZT%=el%*^!
zw<VtJ#?8AwxzS;xxqrVZ3aNE#BnW%a6Gsm7{F#~bT>6rucohpWRm*B;Uq$7x=GJ)t
z*`I(tZD5uUZM4Qz8eF`%ps%0)fO@fw8W%Pfx+w}#I*Ssq$QRYdRZbs6Hp^mR(!DPn
z2aDa|XU+x{jp3g1Prq0#J^#_|%;D7*k$i@q9wS!cY<#J+-@G#j)?E(&^m_E{u-6!P
ztS`ySBzLDK{{S2RCG_)3S?2#nexy{|S^g{J#|gaze~$A<pFCOhVaq7aV>q6Q!gj^O
zXOvqR<$V~q?nsZ90~{^ol0yO`VL{Iaj}aA8PUh$3AD?YTVA>E_E|)pSb8Xky;s#xP
z3*3NZuatLe9O_cO5L|CM;74)x%Di+mh>G$wh|13|h_OrF{MflCCrew=BQgcAw|z0}
ze~8awK<)VLHwm!>sCXk3WkRlx=QX<$9&u&$z#aExp^(R<g7~LLhS+Yug<=L`KyAdR
zur0}bd>s|F$pv{SdE!c*&=+%YJu7}u^!(hmjM3FPgid!;!kWu}3&_e|`aggy&6I7S
zOp31w>{!H1kZ--~Ek;#7iL&q9(I%Y_B!{f?Z5$e+o-TYKB?!{^N?5e5(pO6|YCDYI
zx}w{8!sN0VpLx)>`-=I(qh7H1;gdr<K`tcuhs9CdgXW&5!x(*ZZ}i;bDRk!*AtU#2
zL)B3InYpl@!$S<&eX;-_7B^;Vkuzf3&*$bU9}?VPgt(#6bM{jO@C3DwZz1DYc*MF%
zQei~ls|p489>FchJtp+gQe(B=jmusoR|)n2*ZRRO6u6_x-7VXj!Nd7|>s3fISp%(K
znu%?7V@!062bnmJc_;<3#nlcd?sB2eOB9lBe3b=nCIm*!TuJ2AxuO@TMJFb&JurSH
z-HlH$?cD;SEX_xDv;Be1a(}zxJUiR4NJjD~b93m=?WN)sx)}?$Pay^4O5W4Kq#B&8
zXHs5{NGpi)(eiZ9#>?rwA<~PR%M7O#&RyCv0t0%aW#l^RrMc<;uof6&n=5b^<3^pu
z1F!rRYhEi$JNu6a^knuB`aUxMjmo`u)mHC7S3|qkWwhmFY)CfUYC<Q(`-c@ma3`$>
zL*_<Glg=ToYZEe<;+yxfmy29MDw{~Ed5NCy*;x)XKIU|m35eu`vy=KzO2L3D?WEqb
zw%EGsrqs~7W4#5<y2euF{yqbQb3UirLcgz=&~UXL&09VBZHMs+&1ZUO^a&06Qp4`M
zL}1m*FvNkUbVs%`_vKeFT+Lj{WYGZ(lq{L8tTQ?PBbwi)c#?}wn3eLfs)>&7=bDHK
z;02f~Ne^#c`XEjZ1M?x_^rg~6t#NW|^w10zh~18q$TUAGI#V#tW+_;gMqkQ_{?$<W
zWuz9FpcDSv*#_f}?@kK?Hkut-)z{ZXG^{eE96;_!F;lPkLR^bq5!QE3lVF<q195S)
z#1nrYS9ZJ0{`C^~J{$ObM^2495`vE>4xGtw;8sra0``JhUG{yUCC}TAk5BUY9=RtZ
z*lXq|HvDh~o41w?f@O!|xz$QsnYt0gQ+2z;B_Hi)B#7X<QF}zlwAjQo)a6q})j<2%
zuvHhtgln}h&im<#D2^%(lc@u0EA!gebEX2CNerc%PGN5L<uK@hL4Ogd6#hy7IFL+$
z&!ZQmdF|o=7xSwojw(N6xw*bkH25+=4o=eNC`)rogMVx#yIJ$XKC1YTl-iX8%qhhH
z;HW^URzFZ18*!|j=CX#?9;;|0If;tltWL!#1Eb1bFRl&BZ2BLl)T8Lq=R8Q98!id(
zYD=eU92k!$opcY=K?Zm7$+N%9Gx!N4sL|!IbS=s(A?ziC0|9sZjm*G9oQ8f^&Wl>G
zgE^tRn2xZ3Y?rLG?(RsU9D+7(Mg3Y@KfC>R)rDf2b@i%_Xp~OAIi}4jyfcT3@c?t*
z-HWA`?T$O?s`<$C^%=m&9thejrUEuzl~*cDr3VEerP-f$u<6fG^d_i`W+Rz5UBg;M
zyU5=<`1vFKkleL@?-{Bwk6R-pZpOyKR@9I<fi+ob<xGxQ1W<oM-daH`?S8HC=btbA
z3EqDBfgn=7H*4x+gsc_BFIfzE#M9F?Ulj|~zD_8P{?izI&*o?*-1@>@m;=(V+;clI
z`FPuR>`^3&8<Fk*;(Jo?SZ}f8e-$L;t`Ya;znvcdy|q6W@#w64-zDXQ+5<KOnRBgP
zo7DpDrEjhoo>a7yb(e#I?#}07--qR=)}O8{QXo41blTK{<{qWE)C})gTsPyoTW$i*
zvmC3L3iG#L-?t^}=`Ds~r~QFxW_vV7>#pJ&&O4jHD<`)OF>VgV8s>aMn{oFhV}^GI
z|3{v|K}sIw4*jYn>Er9Win6Tk>KVwhFXj`VEd4Wj&o1pezV&c6hk(0F%CB5D6hy0q
z=eBd7ir%Z&;_Y(;r4*>(R1i%nFE5pG=GxDVIvxqeNsq7Ys$E0gecq768Tm=8)r=wI
zKvhKDp|fPhJf{FBVY?uM=ZqgtQXjbOK#gcHHG5Tj*UFTtJK4XVcUn2UcyJlsUN%nr
z7-1HqSFt+1^Z3DKIB5T`zV*!gHgI+gx0x64_`Llb3Px(S+VtJ8YZ$KvTaTEe_3k%&
zNr|}aY^1~=9E2R9BYgZ>z__;M?_9@c_j90o=IsX<Ic!!atUpaIGw~K)mMH$?RSW=c
z#WjHK?_QCb^AEm(P`KU5N6qOMdr4+vHfNrbpdDC&sN+xmy}$-YZg07<+xY19#p)B3
za<My?@Wov}ZZh49(s;ZZiXeiIE98Quglz9FC|%u&F(e!>SYeDgXXv++;4nn+l9D;&
zK0)Ky=NA8N{85V-01AD%9}^8_;|^$abR+@vTKc?HbcvX|(pSs+uPd!H*L0a(FqVnO
zQ=8a*AMH;OIJ@;vI2R={k_KRteoAA?3}CtEKoI)3Qc2<MWOOk)#T$=ViG3lL^hRB!
zJ@SA!Td8{0{BiX6LyJ)~=POJ~2dda(DvC>HjJvgH<c$2C2<%D~K*zr=&0d|_f2_Pw
zeqGAablAK(awJ~<q($V1xE{>zG15AtVbY(}An`V=HbtZ-ABGf;cf8-dCWY))9$u03
z%{rDf*nuIXu(6)nId<BW06iX?eD@byrLz$W<u<~JqJwnin|v~MBQH77%&$ow)GkPl
zeFhzt_~?)77bKSgu)sW|yy<bN*H1w;-@X+GmN=R|&Z#GqPrDFpdBFCeI`#x8%II;-
z_#H>)?*)H*<LdigMK$Cc=QBSts6ZZHn$zwFowWn^Q-VmG08D;VQ%|Ex0lmle!&jP2
z3nQ%BiZd$*U9zFM<s}&LWq#lL!VInt@n<)Rnz5(UwZuGtI0@}*)><K}hta9fuIae&
zV4v*nag2$oH%DgA7$az{w(TAtKW;W^PlWoWFesL;`wlWYrTMnr?@yJtN^}z3g{pEs
zZ*&|Fr0NvioROBJToIYVcrW2yj`7In;mdik$y2>?-DgTrv#;edp3{FUe;35&Sk9bb
zeaM@&9`;O_u`<h+kLGiHXO>?%GeYb*PiTo1!){vk=Gn7HQwk#jif5<Oc$0YN+B(8q
z7c&i$#qo5D_5+~Jja@fSxW=OW(_YJV#<R~O=S}+44K-0QnS#f$ifhxkH#8hx2c3x~
z<jPzp%P`lIs<JC*6dxY=bRIdUtkYLib<VUd&VGG9DrnEp9T51s+}bUwTaHpFp)B6K
zGp^X3C9`!rYpb^j9oQA{E9tNGwS+>wtDu^*l+{gr@w&0-l^nI}%8><(jr%BiaC6Fj
zGw!N4p<;xP4GjQ@3mU>2dd{{pJa&yxDQ9^ilHx3KluK4?tFNSBv@-71ebk6hZE#-V
zu;0*}KWX@CUs;C=o-02uIytp|pN-nb-LJ2ALe;VqZ}#|izwjV)IYgiSApQF6fDF-{
z{bF3x<t9-xMXq#to@}OyEm0(H7)V{H_1JB;*l06Vj9IC>R+zf?iS@2@Px{7O1YY6P
zxsn3PLJ&ZV4*+aY?hj)PS>^vBCf=S#48sts=W88aSDM;49ixKIXEH^UH=3R&2>F@=
z<;KLY*eptff;M6%9)9@~)t{Z7rdXj~cm-lKj$^43O=-47{rIv#+P`JLIJl-IMh00n
z=^@&#-(9xY<%sH5uHjJ+30hwsTx;}1aoczBa5*`hii|pq<6-~+y0(5`Z$1sSh!v9|
zC_VbYb=ln2Q1SX$d|Dq0<SaBEf5Tkd2tR_&99>g_4)apn>yu8NZd|&7qxyZ5l|X0X
zbxs!!s|UmOiVx2hqoNl@l8%7a<^%P$^z^xmQD0>%!53*K3YcXxzS7@`lAR1kmrm^i
zl*#5qjA!l4-HEUOfH#{2mw>poKRqtT34LufWqB40LT-xz4Z@|X#tX6W=_nb-p5w%7
z&P4b{b13eY=#w0j7?#~ZF-$tLTl1pBYonqyHyK>UpS+Lyz;|=3V+ezlK~{xlU-Kod
zUF!4=rQOW1w}+ot7QWcbXSQ->bp|7L)rj$?J(LaJ006qD&n^KIp?^b>^O=IK8$WUP
zQ2rJR5M@^;MZ>k^!7=KNzx$OIbw8QN(i$RkBhwnfD#SRDiVCQu_q{1<bI4w@IfQ>`
zszBN>iKKEIXxiq0e!5i8EU>3=y7J(RQrK1?TIxnf>S+TA>gDM*ajw~OLBX-nhZ9(~
zuN7gu>pk1?005{Xeg|wydL4O0h-D9NYfdRx)I7;Xc{D~-RH`VQ)C;30-+*%m!#3we
z8zYTT`kd=svSd1qy!Gwtay(uJ>l3(On=j$1F5q}6cBa_mvTL7fM@6?CY19?!h4s}k
zlRa{Mlneo9dJSK%U3EL#nDB@&-hFfBX$}B*S2Ueqd-Lk+KU_HPo^xNkv7nrak;!Ii
z53sD+uf#Lj>}>qu5wVb-_M&FLzUI0LocdG4>b>H?W=~>>n%6<D{UGofVnw-QdQ=mu
zc|H(W2H6R4Z$H!N8M54^aNc$^b^;;V=MY`=({=h9uCA|`U9ZYKJFm$umpV%wLwfbl
z0Dy%*EBp25jxAx?fVj5(dAFI9?)5Qrrj4R_Wt@u1nKO->L*OjW)91TW#-d5T-bc|%
za1pZ@Yn#vJ@)n~50IY%ZQctx;J&jJ#006)n68uX50079qdE^0*ZCOt-_dUi101C9<
z0pBDO%NG|Y3=jeUL)(5}Zztt&p^#%t0KnnpPrM8^^|4>uOi=do52_!yuFKYgZ7Tr)
z?*ZBqG*<pS6GvMx0N~9|`@f$tla-Lj%y-U(XXxl&6DWogw)yi&gxKg34FI5$+(K8S
z!}0(5OD~-+{;7vEnPl7e*nk+9{r+<^w-z7(P%?w<0g%n9!5}_v;6<LI*IcYr^}{r1
z4IM>DbdXK~jh-1tVP6+wpYH+yfP7io^M$LPSZa(WyXks2MGetL)?Ub@aeVLC^Ua2d
zvt%u+ih*$=`LcuW0lmL-jX(1>GD?4R)*a^YFNRP70J=4lf_7U;XS<fi0)UC~UkOhg
z!+N<7n3$EbUiQSSkEusyvF4QNhy^8mWUrnX-&m`JTxmph6c@4YSIj_7>Tv;pA!a|Y
zHv<p<#`ucXs-4ypOApby1uPlcT|yAl$;zB8rY*>1wXGzvs&pLMP|HsqN8!Xy9&UPp
zp~DFP458iL{26$bQ(2xeK1p;H6|kO_@FakHb_a#`d}61&rjTRVa-rC9>^K!20LV`t
z!Wwc4E4wuFDfWa2@s0OyC2OY(dY;iwj2PBV{z)hss{Uz$9HxW!ized%02#`+Jzenf
zyCB}WNnMt+6|8q`9a`a4=2N_^|NWAr##&{Ub5bPPdSmlJWbwEK7;hN>00{XHVU@7%
ztZE;-YAq!{^&E90mfro%1ZFE}Zy#XGTtMDRK2>rH-NaX=>~bT-Lptf3&WKB@mEO$)
zU0;2ua|4#SCJ3I`j|BiYJo|~4A-@6k;Ws6|GP|0<YMkC<pVTTqv})!z@k8rBuW6LN
zMFRj>aem@uSSDp^U!T1&B}V2<8XKR)n$890n_D>J%(q$}9iRaK1uE}=Z#4Qzu5uP-
z$$b}LZlfGHn>iICy$AjN)%g-4k$3>W)~9#CH?zdb@kawB>)!?O<`bMJpLdp)s3<O`
zdg&}O0RTfaeqe9IkxMkHCvIbV8jT)ogEMYr&w(&;FaVG-itPdD{rx<80~+JJkU7Ic
z{w#jy0RS*BwuP?h)ZQ0b?{9oDtYCDA1^~?8j^(#ue@*{#U#sGBp928iR!k>o1>_PN
z=>|CfZDB4v06;a_59}RIqm2dtl$7+y;N2=9z-8ADe0$t_@D6x;bU^!gccIpM2<!H@
z)|)MKz^zizoS>QaTwGkp;N2>4(e&4waN<jEUPB8Q^530W@7uEZGaejE{SW{EXnw8`
zisa60ovdpd!YW`M?>5tRJI$KH0sxx+s1z!U-FT)JXdiRcTT<dR{c$)NX{QuDQ>wI>
zPrJF1SF5s`m%+mZ002>A``!F}P7O{HGjw!1bSG%$pBzh*mX}A#sKNCkVrT$>H^cIX
q)_?a!{=EeP002Xn|A8EuQ0Oibm9OaDN*CY$Pg+7jyy%_oxBmsQ8vW1!

diff --git a/internal/api/client/instance/instancepatch.go b/internal/api/client/instance/instancepatch.go
index 64263caf6..5085399eb 100644
--- a/internal/api/client/instance/instancepatch.go
+++ b/internal/api/client/instance/instancepatch.go
@@ -175,6 +175,7 @@ func validateInstanceUpdate(form *apimodel.InstanceSettingsUpdateRequest) error
 		form.ContactEmail == nil &&
 		form.ShortDescription == nil &&
 		form.Description == nil &&
+		form.CustomCSS == nil &&
 		form.Terms == nil &&
 		form.Avatar == nil &&
 		form.AvatarDescription == nil &&
diff --git a/internal/api/model/instance.go b/internal/api/model/instance.go
index 5232e8d66..d59424fa5 100644
--- a/internal/api/model/instance.go
+++ b/internal/api/model/instance.go
@@ -33,6 +33,8 @@ type InstanceSettingsUpdateRequest struct {
 	ShortDescription *string `form:"short_description" json:"short_description" xml:"short_description"`
 	// Longer description of the instance, max 5,000 chars. HTML formatting accepted.
 	Description *string `form:"description" json:"description" xml:"description"`
+	// Custom CSS for the instance.
+	CustomCSS *string `form:"custom_css" json:"custom_css,omitempty" xml:"custom_css"`
 	// Terms and conditions of the instance, max 5,000 chars. HTML formatting accepted.
 	Terms *string `form:"terms" json:"terms" xml:"terms"`
 	// Image to use as the instance thumbnail.
diff --git a/internal/api/model/instancev1.go b/internal/api/model/instancev1.go
index efa6d6faa..6dedd04cc 100644
--- a/internal/api/model/instancev1.go
+++ b/internal/api/model/instancev1.go
@@ -38,6 +38,8 @@ type InstanceV1 struct {
 	//
 	// This should be displayed on the 'about' page for an instance.
 	Description string `json:"description"`
+	// Custom CSS for the instance.
+	CustomCSS string `json:"custom_css,omitempty"`
 	// Raw (unparsed) version of description.
 	DescriptionText string `json:"description_text,omitempty"`
 	// A shorter description of the instance.
diff --git a/internal/api/model/instancev2.go b/internal/api/model/instancev2.go
index 8d6873497..982ed0c63 100644
--- a/internal/api/model/instancev2.go
+++ b/internal/api/model/instancev2.go
@@ -53,6 +53,8 @@ type InstanceV2 struct {
 	Description string `json:"description"`
 	// Raw (unparsed) version of description.
 	DescriptionText string `json:"description_text,omitempty"`
+	// Instance Custom Css
+	CustomCSS string `json:"custom_css,omitempty"`
 	// Basic anonymous usage data for this instance.
 	Usage InstanceV2Usage `json:"usage"`
 	// An image used to represent this instance.
diff --git a/internal/db/bundb/migrations/20240924222938_add_instance_custom_css.go b/internal/db/bundb/migrations/20240924222938_add_instance_custom_css.go
new file mode 100644
index 000000000..14231927a
--- /dev/null
+++ b/internal/db/bundb/migrations/20240924222938_add_instance_custom_css.go
@@ -0,0 +1,44 @@
+// GoToSocial
+// Copyright (C) GoToSocial Authors admin@gotosocial.org
+// SPDX-License-Identifier: AGPL-3.0-or-later
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package migrations
+
+import (
+	"context"
+	"strings"
+
+	"github.com/uptrace/bun"
+)
+
+func init() {
+	up := func(ctx context.Context, db *bun.DB) error {
+		_, err := db.ExecContext(ctx, "ALTER TABLE ? ADD COLUMN ? TEXT", bun.Ident("instances"), bun.Ident("custom_css"))
+		if err != nil && !(strings.Contains(err.Error(), "already exists") || strings.Contains(err.Error(), "duplicate column name") || strings.Contains(err.Error(), "SQLSTATE 42701")) {
+			return err
+		}
+		return nil
+	}
+
+	down := func(ctx context.Context, db *bun.DB) error {
+		_, err := db.ExecContext(ctx, "ALTER TABLE ? DROP COLUMN ?", bun.Ident("instances"), bun.Ident("custom_css"))
+		return err
+	}
+
+	if err := Migrations.Register(up, down); err != nil {
+		panic(err)
+	}
+}
diff --git a/internal/gtsmodel/instance.go b/internal/gtsmodel/instance.go
index 027d8fba4..97c0268ce 100644
--- a/internal/gtsmodel/instance.go
+++ b/internal/gtsmodel/instance.go
@@ -34,6 +34,7 @@ type Instance struct {
 	ShortDescriptionText   string       `bun:""`                                                            // Raw text version of short description (before parsing).
 	Description            string       `bun:""`                                                            // Longer description of this instance.
 	DescriptionText        string       `bun:""`                                                            // Raw text version of long description (before parsing).
+	CustomCSS              string       `bun:",nullzero"`                                                   // Custom CSS for the instance.
 	Terms                  string       `bun:""`                                                            // Terms and conditions of this instance.
 	TermsText              string       `bun:""`                                                            // Raw text version of terms (before parsing).
 	ContactEmail           string       `bun:""`                                                            // Contact email address for this instance
diff --git a/internal/processing/instance.go b/internal/processing/instance.go
index a9be6db1d..fab71b1de 100644
--- a/internal/processing/instance.go
+++ b/internal/processing/instance.go
@@ -227,6 +227,17 @@ func (p *Processor) InstancePatch(ctx context.Context, form *apimodel.InstanceSe
 		columns = append(columns, []string{"description", "description_text"}...)
 	}
 
+	// validate & update site custom css if it's set on the form
+	if form.CustomCSS != nil {
+		customCSS := *form.CustomCSS
+		if err := validate.InstanceCustomCSS(customCSS); err != nil {
+			return nil, gtserror.NewErrorBadRequest(err, err.Error())
+		}
+
+		instance.CustomCSS = text.SanitizeToPlaintext(customCSS)
+		columns = append(columns, []string{"custom_css"}...)
+	}
+
 	// Validate & update site
 	// terms if set on the form.
 	if form.Terms != nil {
diff --git a/internal/typeutils/internaltofrontend.go b/internal/typeutils/internaltofrontend.go
index 750d4eec4..fda59610b 100644
--- a/internal/typeutils/internaltofrontend.go
+++ b/internal/typeutils/internaltofrontend.go
@@ -1534,6 +1534,7 @@ func (c *Converter) InstanceToAPIV1Instance(ctx context.Context, i *gtsmodel.Ins
 		Title:                i.Title,
 		Description:          i.Description,
 		DescriptionText:      i.DescriptionText,
+		CustomCSS:            i.CustomCSS,
 		ShortDescription:     i.ShortDescription,
 		ShortDescriptionText: i.ShortDescriptionText,
 		Email:                i.ContactEmail,
@@ -1674,6 +1675,7 @@ func (c *Converter) InstanceToAPIV2Instance(ctx context.Context, i *gtsmodel.Ins
 		SourceURL:       instanceSourceURL,
 		Description:     i.Description,
 		DescriptionText: i.DescriptionText,
+		CustomCSS:       i.CustomCSS,
 		Usage:           apimodel.InstanceV2Usage{}, // todo: not implemented
 		Languages:       config.GetInstanceLanguages().TagStrs(),
 		Rules:           c.InstanceRulesToAPIRules(i.Rules),
diff --git a/internal/validate/formvalidation.go b/internal/validate/formvalidation.go
index 207e8e05e..4de7636a5 100644
--- a/internal/validate/formvalidation.go
+++ b/internal/validate/formvalidation.go
@@ -189,6 +189,16 @@ func CustomCSS(customCSS string) error {
 	return nil
 }
 
+func InstanceCustomCSS(customCSS string) error {
+
+	maximumCustomCSSLength := config.GetAccountsCustomCSSLength()
+	if length := len([]rune(customCSS)); length > maximumCustomCSSLength {
+		return fmt.Errorf("custom_css must be less than %d characters, but submitted custom_css was %d characters", maximumCustomCSSLength, length)
+	}
+
+	return nil
+}
+
 // EmojiShortcode just runs the given shortcode through the regular expression
 // for emoji shortcodes, to figure out whether it's a valid shortcode, ie., 1-30 characters,
 // a-zA-Z, numbers, and underscores.
diff --git a/internal/web/about.go b/internal/web/about.go
index 2bc558962..843dda652 100644
--- a/internal/web/about.go
+++ b/internal/web/about.go
@@ -54,7 +54,7 @@ func (m *Module) aboutGETHandler(c *gin.Context) {
 		Template:    "about.tmpl",
 		Instance:    instance,
 		OGMeta:      apiutil.OGBase(instance),
-		Stylesheets: []string{cssAbout},
+		Stylesheets: []string{cssAbout, instanceCustomCSSPath},
 		Extra: map[string]any{
 			"showStrap":        true,
 			"blocklistExposed": config.GetInstanceExposeSuspendedWeb(),
diff --git a/internal/web/confirmemail.go b/internal/web/confirmemail.go
index e512761f4..21028c6c4 100644
--- a/internal/web/confirmemail.go
+++ b/internal/web/confirmemail.go
@@ -127,8 +127,9 @@ func (m *Module) confirmEmailPOSTHandler(c *gin.Context) {
 	// Serve page informing user that their
 	// email address is now confirmed.
 	page := apiutil.WebPage{
-		Template: "confirmed_email.tmpl",
-		Instance: instance,
+		Template:    "confirmed_email.tmpl",
+		Instance:    instance,
+		Stylesheets: []string{instanceCustomCSSPath},
 		Extra: map[string]any{
 			"email":    user.Email,
 			"username": user.Account.Username,
diff --git a/internal/web/customcss.go b/internal/web/customcss.go
index b4072f2a7..36ae9de55 100644
--- a/internal/web/customcss.go
+++ b/internal/web/customcss.go
@@ -55,3 +55,22 @@ func (m *Module) customCSSGETHandler(c *gin.Context) {
 	c.Header(cacheControlHeader, cacheControlNoCache)
 	c.Data(http.StatusOK, textCSSUTF8, []byte(customCSS))
 }
+
+func (m *Module) instanceCustomCSSGETHandler(c *gin.Context) {
+
+	if _, err := apiutil.NegotiateAccept(c, apiutil.TextCSS); err != nil {
+		apiutil.WebErrorHandler(c, gtserror.NewErrorNotAcceptable(err, err.Error()), m.processor.InstanceGetV1)
+		return
+	}
+
+	instanceV1, errWithCode := m.processor.InstanceGetV1(c.Request.Context())
+	if errWithCode != nil {
+		apiutil.WebErrorHandler(c, errWithCode, m.processor.InstanceGetV1)
+		return
+	}
+
+	instanceCustomCSS := instanceV1.CustomCSS
+
+	c.Header(cacheControlHeader, cacheControlNoCache)
+	c.Data(http.StatusOK, textCSSUTF8, []byte(instanceCustomCSS))
+}
diff --git a/internal/web/domain-blocklist.go b/internal/web/domain-blocklist.go
index 5d631e0f7..7b6710049 100644
--- a/internal/web/domain-blocklist.go
+++ b/internal/web/domain-blocklist.go
@@ -67,7 +67,7 @@ func (m *Module) domainBlockListGETHandler(c *gin.Context) {
 		Template:    "domain-blocklist.tmpl",
 		Instance:    instance,
 		OGMeta:      apiutil.OGBase(instance),
-		Stylesheets: []string{cssFA},
+		Stylesheets: []string{cssFA, instanceCustomCSSPath},
 		Javascript:  []string{jsFrontend},
 		Extra:       map[string]any{"blocklist": domainBlocks},
 	}
diff --git a/internal/web/index.go b/internal/web/index.go
index 25960cf7f..dd9d80561 100644
--- a/internal/web/index.go
+++ b/internal/web/index.go
@@ -59,7 +59,7 @@ func (m *Module) indexHandler(c *gin.Context) {
 		Template:    "index.tmpl",
 		Instance:    instance,
 		OGMeta:      apiutil.OGBase(instance),
-		Stylesheets: []string{cssAbout, cssIndex},
+		Stylesheets: []string{cssAbout, cssIndex, instanceCustomCSSPath},
 		Extra:       map[string]any{"showStrap": true},
 	}
 
diff --git a/internal/web/profile.go b/internal/web/profile.go
index 60157fd19..741dc2a83 100644
--- a/internal/web/profile.go
+++ b/internal/web/profile.go
@@ -132,7 +132,7 @@ func (m *Module) profileGETHandler(c *gin.Context) {
 	}
 
 	// Prepare stylesheets for profile.
-	stylesheets := make([]string, 0, 6)
+	stylesheets := make([]string, 0, 7)
 
 	// Basic profile stylesheets.
 	stylesheets = append(
@@ -142,6 +142,7 @@ func (m *Module) profileGETHandler(c *gin.Context) {
 			cssStatus,
 			cssThread,
 			cssProfile,
+			instanceCustomCSSPath,
 		}...,
 	)
 
diff --git a/internal/web/settings-panel.go b/internal/web/settings-panel.go
index ec8166e95..41cd8666e 100644
--- a/internal/web/settings-panel.go
+++ b/internal/web/settings-panel.go
@@ -53,6 +53,7 @@ func (m *Module) SettingsPanelHandler(c *gin.Context) {
 			cssProfile, // Used for rendering stub/fake profiles.
 			cssStatus,  // Used for rendering stub/fake statuses.
 			cssSettings,
+			instanceCustomCSSPath,
 		},
 		Javascript: []string{jsSettings},
 	}
diff --git a/internal/web/signup.go b/internal/web/signup.go
index a943f3680..64b9f4e2d 100644
--- a/internal/web/signup.go
+++ b/internal/web/signup.go
@@ -126,9 +126,10 @@ func (m *Module) signupPOSTHandler(c *gin.Context) {
 	// Serve a page informing the
 	// user that they've signed up.
 	page := apiutil.WebPage{
-		Template: "signed-up.tmpl",
-		Instance: instance,
-		OGMeta:   apiutil.OGBase(instance),
+		Template:    "signed-up.tmpl",
+		Instance:    instance,
+		Stylesheets: []string{instanceCustomCSSPath},
+		OGMeta:      apiutil.OGBase(instance),
 		Extra: map[string]any{
 			"email":    user.UnconfirmedEmail,
 			"username": user.Account.Username,
diff --git a/internal/web/tag.go b/internal/web/tag.go
index 5c3cd31a6..423000f99 100644
--- a/internal/web/tag.go
+++ b/internal/web/tag.go
@@ -59,7 +59,7 @@ func (m *Module) tagGETHandler(c *gin.Context) {
 		Template:    "tag.tmpl",
 		Instance:    instance,
 		OGMeta:      apiutil.OGBase(instance),
-		Stylesheets: []string{cssFA, cssThread, cssTag},
+		Stylesheets: []string{cssFA, cssThread, cssTag, instanceCustomCSSPath},
 		Extra:       map[string]any{"tagName": tagName},
 	}
 
diff --git a/internal/web/thread.go b/internal/web/thread.go
index d3ba6ea5e..246c05b97 100644
--- a/internal/web/thread.go
+++ b/internal/web/thread.go
@@ -115,7 +115,7 @@ func (m *Module) threadGETHandler(c *gin.Context) {
 	}
 
 	// Prepare stylesheets for thread.
-	stylesheets := make([]string, 0, 5)
+	stylesheets := make([]string, 0, 6)
 
 	// Basic thread stylesheets.
 	stylesheets = append(
@@ -131,6 +131,7 @@ func (m *Module) threadGETHandler(c *gin.Context) {
 	if theme := targetAccount.Theme; theme != "" {
 		stylesheets = append(
 			stylesheets,
+			instanceCustomCSSPath,
 			themesPathPrefix+"/"+theme,
 		)
 	}
diff --git a/internal/web/web.go b/internal/web/web.go
index 185bf7120..35f8f21b0 100644
--- a/internal/web/web.go
+++ b/internal/web/web.go
@@ -36,20 +36,21 @@ import (
 )
 
 const (
-	confirmEmailPath   = "/" + uris.ConfirmEmailPath
-	profileGroupPath   = "/@:username"
-	statusPath         = "/statuses/:" + apiutil.WebStatusIDKey // leave out the '/@:username' prefix as this will be served within the profile group
-	tagsPath           = "/tags/:" + apiutil.TagNameKey
-	customCSSPath      = profileGroupPath + "/custom.css"
-	rssFeedPath        = profileGroupPath + "/feed.rss"
-	assetsPathPrefix   = "/assets"
-	distPathPrefix     = assetsPathPrefix + "/dist"
-	themesPathPrefix   = assetsPathPrefix + "/themes"
-	settingsPathPrefix = "/settings"
-	settingsPanelGlob  = settingsPathPrefix + "/*panel"
-	userPanelPath      = settingsPathPrefix + "/user"
-	adminPanelPath     = settingsPathPrefix + "/admin"
-	signupPath         = "/signup"
+	confirmEmailPath      = "/" + uris.ConfirmEmailPath
+	profileGroupPath      = "/@:username"
+	statusPath            = "/statuses/:" + apiutil.WebStatusIDKey // leave out the '/@:username' prefix as this will be served within the profile group
+	tagsPath              = "/tags/:" + apiutil.TagNameKey
+	customCSSPath         = profileGroupPath + "/custom.css"
+	instanceCustomCSSPath = "/custom.css"
+	rssFeedPath           = profileGroupPath + "/feed.rss"
+	assetsPathPrefix      = "/assets"
+	distPathPrefix        = assetsPathPrefix + "/dist"
+	themesPathPrefix      = assetsPathPrefix + "/themes"
+	settingsPathPrefix    = "/settings"
+	settingsPanelGlob     = settingsPathPrefix + "/*panel"
+	userPanelPath         = settingsPathPrefix + "/user"
+	adminPanelPath        = settingsPathPrefix + "/admin"
+	signupPath            = "/signup"
 
 	cacheControlHeader    = "Cache-Control"     // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cache-Control
 	cacheControlNoCache   = "no-cache"          // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cache-Control#response_directives
@@ -114,6 +115,7 @@ func (m *Module) Route(r *router.Router, mi ...gin.HandlerFunc) {
 	r.AttachHandler(http.MethodGet, settingsPathPrefix, m.SettingsPanelHandler)
 	r.AttachHandler(http.MethodGet, settingsPanelGlob, m.SettingsPanelHandler)
 	r.AttachHandler(http.MethodGet, customCSSPath, m.customCSSGETHandler)
+	r.AttachHandler(http.MethodGet, instanceCustomCSSPath, m.instanceCustomCSSGETHandler)
 	r.AttachHandler(http.MethodGet, rssFeedPath, m.rssFeedGETHandler)
 	r.AttachHandler(http.MethodGet, confirmEmailPath, m.confirmEmailGETHandler)
 	r.AttachHandler(http.MethodPost, confirmEmailPath, m.confirmEmailPOSTHandler)
diff --git a/web/source/settings/lib/types/instance.ts b/web/source/settings/lib/types/instance.ts
index 11f75032c..9abdc6a96 100644
--- a/web/source/settings/lib/types/instance.ts
+++ b/web/source/settings/lib/types/instance.ts
@@ -25,6 +25,7 @@ export interface InstanceV1 {
     description_text?:       string;
     short_description:      string;
     short_description_text?: string;
+    custom_css:             string;
     email:                  string;
     version:                string;
     debug?:                 boolean;
diff --git a/web/source/settings/views/admin/instance/settings.tsx b/web/source/settings/views/admin/instance/settings.tsx
index c769b11ec..fd5ceb1ee 100644
--- a/web/source/settings/views/admin/instance/settings.tsx
+++ b/web/source/settings/views/admin/instance/settings.tsx
@@ -46,7 +46,7 @@ function InstanceSettingsForm({ data: instance }: InstanceSettingsFormProps) {
 	const shortDescLimit = 500;
 	const descLimit = 5000;
 	const termsLimit = 5000;
-	
+
 	const form = {
 		title: useTextInput("title", {
 			source: instance,
@@ -66,6 +66,10 @@ function InstanceSettingsForm({ data: instance }: InstanceSettingsFormProps) {
 			valueSelector: (s: InstanceV1) => s.description_text,
 			validator: (val: string) => val.length <= descLimit ? "" : `Instance description is ${val.length} characters; must be ${descLimit} characters or less`
 		}),
+		customCSS: useTextInput("custom_css", {
+			source: instance,
+			valueSelector: (s: InstanceV1) => s.custom_css
+		}),
 		terms: useTextInput("terms", {
 			source: instance,
 			// Select "raw" text version of parsed field for editing.
@@ -191,7 +195,16 @@ function InstanceSettingsForm({ data: instance }: InstanceSettingsFormProps) {
 				type="email"
 			/>
 
+			<TextArea
+				field={form.customCSS}
+				label={"Custom CSS"}
+				className="monospace"
+				rows={8}
+				autoCapitalize="none"
+				spellCheck="false"
+			/>
+
 			<MutationButton label="Save" result={result} disabled={false} />
 		</form>
 	);
-}
\ No newline at end of file
+}

From a597e1ed85bcab24e735c3dec2e50a1167ea1cc3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 2 Dec 2024 12:54:14 +0000
Subject: [PATCH 22/26] [chore]: Bump codeberg.org/gruf/go-ffmpreg from 0.6.0
 to 0.6.1 (#3591)

Bumps codeberg.org/gruf/go-ffmpreg from 0.6.0 to 0.6.1.

---
updated-dependencies:
- dependency-name: codeberg.org/gruf/go-ffmpreg
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod             | 2 +-
 go.sum             | 4 ++--
 vendor/modules.txt | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index ed2811b19..b75da3c1b 100644
--- a/go.mod
+++ b/go.mod
@@ -31,7 +31,7 @@ require (
 	codeberg.org/gruf/go-debug v1.3.0
 	codeberg.org/gruf/go-errors/v2 v2.3.2
 	codeberg.org/gruf/go-fastcopy v1.1.3
-	codeberg.org/gruf/go-ffmpreg v0.6.0
+	codeberg.org/gruf/go-ffmpreg v0.6.1
 	codeberg.org/gruf/go-iotools v0.0.0-20240710125620-934ae9c654cf
 	codeberg.org/gruf/go-kv v1.6.5
 	codeberg.org/gruf/go-list v0.0.0-20240425093752-494db03d641f
diff --git a/go.sum b/go.sum
index 4e33f2d61..06b73145e 100644
--- a/go.sum
+++ b/go.sum
@@ -46,8 +46,8 @@ codeberg.org/gruf/go-fastcopy v1.1.3 h1:Jo9VTQjI6KYimlw25PPc7YLA3Xm+XMQhaHwKnM7x
 codeberg.org/gruf/go-fastcopy v1.1.3/go.mod h1:GDDYR0Cnb3U/AIfGM3983V/L+GN+vuwVMvrmVABo21s=
 codeberg.org/gruf/go-fastpath/v2 v2.0.0 h1:iAS9GZahFhyWEH0KLhFEJR+txx1ZhMXxYzu2q5Qo9c0=
 codeberg.org/gruf/go-fastpath/v2 v2.0.0/go.mod h1:3pPqu5nZjpbRrOqvLyAK7puS1OfEtQvjd6342Cwz56Q=
-codeberg.org/gruf/go-ffmpreg v0.6.0 h1:/cfUJ9bFKEoXT9LDYZy3eZ0HF60YWcO+0nGciepJKMw=
-codeberg.org/gruf/go-ffmpreg v0.6.0/go.mod h1:Ar5nbt3tB2Wr0uoaqV3wDBNwAx+H+AB/mV7Kw7NlZTI=
+codeberg.org/gruf/go-ffmpreg v0.6.1 h1:HitxOKPhbwARV469h6jY9a3IlROiwAN6QTbTxLRBnC8=
+codeberg.org/gruf/go-ffmpreg v0.6.1/go.mod h1:HQmEaBF83rHOt2Jo1yJv9D0JApoSLFtVR9Uzu7aVglk=
 codeberg.org/gruf/go-iotools v0.0.0-20240710125620-934ae9c654cf h1:84s/ii8N6lYlskZjHH+DG6jyia8w2mXMZlRwFn8Gs3A=
 codeberg.org/gruf/go-iotools v0.0.0-20240710125620-934ae9c654cf/go.mod h1:zZAICsp5rY7+hxnws2V0ePrWxE0Z2Z/KXcN3p/RQCfk=
 codeberg.org/gruf/go-kv v1.6.5 h1:ttPf0NA8F79pDqBttSudPTVCZmGncumeNIxmeM9ztz0=
diff --git a/vendor/modules.txt b/vendor/modules.txt
index c5f13d968..3c925770e 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -24,7 +24,7 @@ codeberg.org/gruf/go-fastcopy
 # codeberg.org/gruf/go-fastpath/v2 v2.0.0
 ## explicit; go 1.14
 codeberg.org/gruf/go-fastpath/v2
-# codeberg.org/gruf/go-ffmpreg v0.6.0
+# codeberg.org/gruf/go-ffmpreg v0.6.1
 ## explicit; go 1.22.0
 codeberg.org/gruf/go-ffmpreg/embed
 codeberg.org/gruf/go-ffmpreg/wasm

From 732b03a742c59d425fcfbb726ddf529c9d3417e2 Mon Sep 17 00:00:00 2001
From: CDN <cardinal@codeword.info>
Date: Tue, 3 Dec 2024 22:21:47 +0800
Subject: [PATCH 23/26] [bugfix] Load instance-wide custom css unconditionally
 in thread details page (#3595)

---
 internal/web/thread.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/internal/web/thread.go b/internal/web/thread.go
index 246c05b97..557e00381 100644
--- a/internal/web/thread.go
+++ b/internal/web/thread.go
@@ -124,6 +124,7 @@ func (m *Module) threadGETHandler(c *gin.Context) {
 			cssFA,
 			cssStatus,
 			cssThread,
+			instanceCustomCSSPath,
 		}...,
 	)
 
@@ -131,7 +132,6 @@ func (m *Module) threadGETHandler(c *gin.Context) {
 	if theme := targetAccount.Theme; theme != "" {
 		stylesheets = append(
 			stylesheets,
-			instanceCustomCSSPath,
 			themesPathPrefix+"/"+theme,
 		)
 	}

From 55d67314973dac0149eb54c78f8a81a543c86d7a Mon Sep 17 00:00:00 2001
From: CDN <cardinal@codeword.info>
Date: Tue, 3 Dec 2024 22:22:19 +0800
Subject: [PATCH 24/26] [chore] Update frontend bug report issue title prefix
 (#3596)

---
 .github/ISSUE_TEMPLATE/bug_frontend.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/ISSUE_TEMPLATE/bug_frontend.yaml b/.github/ISSUE_TEMPLATE/bug_frontend.yaml
index 7a6591763..23ddb4d31 100644
--- a/.github/ISSUE_TEMPLATE/bug_frontend.yaml
+++ b/.github/ISSUE_TEMPLATE/bug_frontend.yaml
@@ -1,6 +1,6 @@
 name: Frontend Bug Report
 description: Report an issue related to the web frontend
-title: "[bug] Issue Title"
+title: "[bug/frontend] Issue Title"
 labels: ["bug", "frontend"]
 assignees: []
 

From 79f2e85f517db67ae4d0c261a5d7481351b2ac80 Mon Sep 17 00:00:00 2001
From: kim <89579420+NyaaaWhatsUpDoc@users.noreply.github.com>
Date: Wed, 4 Dec 2024 09:33:09 +0000
Subject: [PATCH 25/26] [chore] bumps modernc/sqlite version to v1.34.2 on our
 custom fork (#3599)

---
 go.mod                                        |   2 +-
 go.sum                                        |   4 +-
 vendor/modernc.org/sqlite/CONTRIBUTORS        |   1 +
 vendor/modernc.org/sqlite/Makefile            |   2 +-
 vendor/modernc.org/sqlite/README.md           |  84 +-------
 vendor/modernc.org/sqlite/doc.go              | 201 ++++++------------
 .../sqlite/lib/sqlite_darwin_amd64.go         |   1 -
 .../sqlite/lib/sqlite_darwin_arm64.go         |   1 -
 .../sqlite/lib/sqlite_freebsd_amd64.go        |   1 -
 .../sqlite/lib/sqlite_freebsd_arm64.go        |   1 -
 .../sqlite/lib/sqlite_linux_386.go            |   1 -
 .../sqlite/lib/sqlite_linux_amd64.go          |   1 -
 .../sqlite/lib/sqlite_linux_arm.go            |   1 -
 .../sqlite/lib/sqlite_linux_arm64.go          |   1 -
 .../sqlite/lib/sqlite_linux_loong64.go        |   1 -
 .../sqlite/lib/sqlite_linux_ppc64le.go        |   1 -
 .../sqlite/lib/sqlite_linux_riscv64.go        |   1 -
 .../sqlite/lib/sqlite_linux_s390x.go          |   1 -
 .../modernc.org/sqlite/lib/sqlite_windows.go  |  55 +++--
 .../sqlite/lib/sqlite_windows_386.go          |  53 +++--
 vendor/modernc.org/sqlite/logo.png            | Bin 0 -> 40058 bytes
 vendor/modernc.org/sqlite/sqlite.go           |  40 ++++
 vendor/modules.txt                            |   6 +-
 23 files changed, 172 insertions(+), 288 deletions(-)
 create mode 100644 vendor/modernc.org/sqlite/logo.png

diff --git a/go.mod b/go.mod
index b75da3c1b..6b81958e7 100644
--- a/go.mod
+++ b/go.mod
@@ -6,7 +6,7 @@ go 1.23
 replace github.com/go-swagger/go-swagger => github.com/superseriousbusiness/go-swagger v0.31.0-gts-go1.23-fix
 
 // Replace modernc/sqlite with our version that fixes the concurrency INTERRUPT issue
-replace modernc.org/sqlite => gitlab.com/NyaaaWhatsUpDoc/sqlite v1.33.1-concurrency-workaround
+replace modernc.org/sqlite => gitlab.com/NyaaaWhatsUpDoc/sqlite v1.34.2-concurrency-workaround
 
 // Below pin otel libraries to v1.29.0 until we can figure out issues
 replace go.opentelemetry.io/otel => go.opentelemetry.io/otel v1.29.0
diff --git a/go.sum b/go.sum
index 06b73145e..e2e671e54 100644
--- a/go.sum
+++ b/go.sum
@@ -630,8 +630,8 @@ github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9de
 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 github.com/yuin/goldmark v1.7.8 h1:iERMLn0/QJeHFhxSt3p6PeN9mGnvIKSpG9YYorDMnic=
 github.com/yuin/goldmark v1.7.8/go.mod h1:uzxRWxtg69N339t3louHJ7+O03ezfj6PlliRlaOzY1E=
-gitlab.com/NyaaaWhatsUpDoc/sqlite v1.33.1-concurrency-workaround h1:pFMJnlc1PuH+jcVz4vz53vcpnoZG+NqFBr3qikDmEB4=
-gitlab.com/NyaaaWhatsUpDoc/sqlite v1.33.1-concurrency-workaround/go.mod h1:pXV2xHxhzXZsgT/RtTFAPY6JJDEvOTcTdwADQCCWD4k=
+gitlab.com/NyaaaWhatsUpDoc/sqlite v1.34.2-concurrency-workaround h1:Z/9vgdPNZm8ZDANnIJ7ZGeYKJ5biqPY1OQbN+DLCtec=
+gitlab.com/NyaaaWhatsUpDoc/sqlite v1.34.2-concurrency-workaround/go.mod h1:dnR723UrTtjKpoHCAMN0Q/gZ9MT4r+iRvIBb9umWFkU=
 go.mongodb.org/mongo-driver v1.14.0 h1:P98w8egYRjYe3XDjxhYJagTokP/H6HzlsnojRgZRd80=
 go.mongodb.org/mongo-driver v1.14.0/go.mod h1:Vzb0Mk/pa7e6cWw85R4F/endUC3u0U9jGcNU603k65c=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
diff --git a/vendor/modernc.org/sqlite/CONTRIBUTORS b/vendor/modernc.org/sqlite/CONTRIBUTORS
index 853cbb56e..e9ea3aff5 100644
--- a/vendor/modernc.org/sqlite/CONTRIBUTORS
+++ b/vendor/modernc.org/sqlite/CONTRIBUTORS
@@ -37,3 +37,4 @@ Steffen Butzer <steffen(dot)butzer@outlook.com>
 Toni Spets <toni.spets@beeper.com>
 W. Michael Petullo <mike@flyn.org>
 Yaacov Akiba Slama <ya@slamail.org>
+Prathyush PV <prathyush.pv@temporal.io>
diff --git a/vendor/modernc.org/sqlite/Makefile b/vendor/modernc.org/sqlite/Makefile
index 67a56d389..8b7472ddd 100644
--- a/vendor/modernc.org/sqlite/Makefile
+++ b/vendor/modernc.org/sqlite/Makefile
@@ -57,7 +57,7 @@ clean:
 
 edit:
 	@touch log
-	@if [ -f "Session.vim" ]; then novim -S & else novim -p Makefile go.mod builder.json all_test.go vendor_libsqlite3.go & fi
+	@if [ -f "Session.vim" ]; then gvim -S & else gvim -p Makefile go.mod builder.json all_test.go vendor_libsqlite3.go & fi
 
 editor:
 	gofmt -l -s -w . 2>&1 | tee log-editor
diff --git a/vendor/modernc.org/sqlite/README.md b/vendor/modernc.org/sqlite/README.md
index f47ad3240..8f4acdb3b 100644
--- a/vendor/modernc.org/sqlite/README.md
+++ b/vendor/modernc.org/sqlite/README.md
@@ -1,81 +1,7 @@
-# sqlite
+![logo](logo.png)
 
-Package sqlite is a cgo-free port of SQLite. Although you could see mattn's driver (`github.com/mattn/go-sqlite3`) in go.mod file, we import it for tests only.
+[![Go Reference](https://pkg.go.dev/badge/modernc.org/sqlite.svg)](https://pkg.go.dev/modernc.org/sqlite)
 
-SQLite is an in-process implementation of a self-contained, serverless,
-zero-configuration, transactional SQL database engine.
-
-## Thanks
-
-This project is sponsored by Schleibinger Geräte Teubert u. Greim GmbH by
-allowing one of the maintainers to work on it also in office hours.
-
-## Installation
-
-    $ go get modernc.org/sqlite
-
-## Documentation
-
-[pkg.go.dev/modernc.org/sqlite](https://pkg.go.dev/modernc.org/sqlite)
-
-## Builders
-
-[modern-c.appspot.com/-/builder/?importpath=modernc.org%2fsqlite](https://modern-c.appspot.com/-/builder/?importpath=modernc.org%2fsqlite)
-
-## Speedtest1
-
-Numbers for the pure Go version were produced by
-
-     ~/src/modernc.org/sqlite/speedtest1$ go build && ./speedtest1
-
-Numbers for the pure C version were produced by
-
-     ~/src/modernc.org/sqlite/testdata/sqlite-src-3410200/test$ gcc speedtest1.c ../../sqlite-amalgamation-3410200/sqlite3.c -lpthread -ldl && ./a.out
-
-The results are from Go version 1.20.4 and GCC version 10.2.1 on a
-Linux/amd64 machine, CPU: AMD Ryzen 9 3900X 12-Core Processor × 24, 128GB
-RAM. Shown are the best of 3 runs.
-
-     Go											C
-
-     -- Speedtest1 for SQLite 3.41.2 2023-03-22 11:56:21 0d1fc92f94cb6b76bffe3ec34d69	-- Speedtest1 for SQLite 3.41.2 2023-03-22 11:56:21 0d1fc92f94cb6b76bffe3ec34d69
-      100 - 50000 INSERTs into table with no index......................    0.071s            100 - 50000 INSERTs into table with no index......................    0.077s
-      110 - 50000 ordered INSERTS with one index/PK.....................    0.114s            110 - 50000 ordered INSERTS with one index/PK.....................    0.082s
-      120 - 50000 unordered INSERTS with one index/PK...................    0.137s            120 - 50000 unordered INSERTS with one index/PK...................    0.099s
-      130 - 25 SELECTS, numeric BETWEEN, unindexed......................    0.083s            130 - 25 SELECTS, numeric BETWEEN, unindexed......................    0.091s
-      140 - 10 SELECTS, LIKE, unindexed.................................    0.210s            140 - 10 SELECTS, LIKE, unindexed.................................    0.120s
-      142 - 10 SELECTS w/ORDER BY, unindexed............................    0.276s            142 - 10 SELECTS w/ORDER BY, unindexed............................    0.182s
-      145 - 10 SELECTS w/ORDER BY and LIMIT, unindexed..................    0.183s            145 - 10 SELECTS w/ORDER BY and LIMIT, unindexed..................    0.099s
-      150 - CREATE INDEX five times.....................................    0.172s            150 - CREATE INDEX five times.....................................    0.127s
-      160 - 10000 SELECTS, numeric BETWEEN, indexed.....................    0.080s            160 - 10000 SELECTS, numeric BETWEEN, indexed.....................    0.078s
-      161 - 10000 SELECTS, numeric BETWEEN, PK..........................    0.080s            161 - 10000 SELECTS, numeric BETWEEN, PK..........................    0.078s
-      170 - 10000 SELECTS, text BETWEEN, indexed........................    0.187s            170 - 10000 SELECTS, text BETWEEN, indexed........................    0.169s
-      180 - 50000 INSERTS with three indexes............................    0.196s            180 - 50000 INSERTS with three indexes............................    0.154s
-      190 - DELETE and REFILL one table.................................    0.200s            190 - DELETE and REFILL one table.................................    0.155s
-      200 - VACUUM......................................................    0.180s            200 - VACUUM......................................................    0.142s
-      210 - ALTER TABLE ADD COLUMN, and query...........................    0.004s            210 - ALTER TABLE ADD COLUMN, and query...........................    0.005s
-      230 - 10000 UPDATES, numeric BETWEEN, indexed.....................    0.093s            230 - 10000 UPDATES, numeric BETWEEN, indexed.....................    0.080s
-      240 - 50000 UPDATES of individual rows............................    0.153s            240 - 50000 UPDATES of individual rows............................    0.137s
-      250 - One big UPDATE of the whole 50000-row table.................    0.024s            250 - One big UPDATE of the whole 50000-row table.................    0.019s
-      260 - Query added column after filling............................    0.004s            260 - Query added column after filling............................    0.005s
-      270 - 10000 DELETEs, numeric BETWEEN, indexed.....................    0.278s            270 - 10000 DELETEs, numeric BETWEEN, indexed.....................    0.263s
-      280 - 50000 DELETEs of individual rows............................    0.188s            280 - 50000 DELETEs of individual rows............................    0.180s
-      290 - Refill two 50000-row tables using REPLACE...................    0.411s            290 - Refill two 50000-row tables using REPLACE...................    0.359s
-      300 - Refill a 50000-row table using (b&1)==(a&1).................    0.175s            300 - Refill a 50000-row table using (b&1)==(a&1).................    0.151s
-      310 - 10000 four-ways joins.......................................    0.427s            310 - 10000 four-ways joins.......................................    0.365s
-      320 - subquery in result set......................................    0.440s            320 - subquery in result set......................................    0.521s
-      400 - 70000 REPLACE ops on an IPK.................................    0.125s            400 - 70000 REPLACE ops on an IPK.................................    0.106s
-      410 - 70000 SELECTS on an IPK.....................................    0.081s            410 - 70000 SELECTS on an IPK.....................................    0.078s
-      500 - 70000 REPLACE on TEXT PK....................................    0.174s            500 - 70000 REPLACE on TEXT PK....................................    0.116s
-      510 - 70000 SELECTS on a TEXT PK..................................    0.153s            510 - 70000 SELECTS on a TEXT PK..................................    0.117s
-      520 - 70000 SELECT DISTINCT.......................................    0.083s            520 - 70000 SELECT DISTINCT.......................................    0.067s
-      980 - PRAGMA integrity_check......................................    0.436s            980 - PRAGMA integrity_check......................................    0.377s
-      990 - ANALYZE.....................................................    0.107s            990 - ANALYZE.....................................................    0.038s
-            TOTAL.......................................................    5.525s                  TOTAL.......................................................    4.637s
-
-This particular test executes 16.1% faster in the C version.
-
-## Troubleshooting
-
-* Q: **How can I write to a database concurrently without getting the `database is locked` error (or `SQLITE_BUSY`)?**
-     * A: You can't. The C sqlite implementation does not allow concurrent writes, and this libary does not modify that behaviour. You can, however, use [DB.SetMaxOpenConns(1)](https://pkg.go.dev/database/sql#DB.SetMaxOpenConns) so that only 1 connection is ever used by the `DB`, allowing concurrent access to DB without making the writes concurrent. More information on issues [#65](https://gitlab.com/cznic/sqlite/-/issues/65) and [#106](https://gitlab.com/cznic/sqlite/-/issues/106).
+[![LiberaPay](https://liberapay.com/assets/widgets/donate.svg)](https://liberapay.com/jnml/donate)
+[![receives](https://img.shields.io/liberapay/receives/jnml.svg?logo=liberapay)](https://liberapay.com/jnml/donate)
+[![patrons](https://img.shields.io/liberapay/patrons/jnml.svg?logo=liberapay)](https://liberapay.com/jnml/donate)
diff --git a/vendor/modernc.org/sqlite/doc.go b/vendor/modernc.org/sqlite/doc.go
index c09d18590..02820b86b 100644
--- a/vendor/modernc.org/sqlite/doc.go
+++ b/vendor/modernc.org/sqlite/doc.go
@@ -8,6 +8,14 @@
 // SQLite is an in-process implementation of a self-contained, serverless,
 // zero-configuration, transactional SQL database engine.
 //
+// # Fragile modernc.org/libc dependency
+//
+// When you import this package you should use in your go.mod file the exact
+// same version of modernc.org/libc as seen in the go.mod file of this
+// repository.
+//
+// See the discussion at https://gitlab.com/cznic/sqlite/-/issues/177 for more details.
+//
 // # Thanks
 //
 // This project is sponsored by Schleibinger Geräte Teubert u. Greim GmbH by
@@ -41,175 +49,98 @@
 //
 // https://modern-c.appspot.com/-/builder/?importpath=modernc.org%2fsqlite
 //
-// # Fragile modernc.org/libc dependency
-//
-// When you import this package you should use in your go.mod file the exact
-// same version of modernc.org/libc as seen in the go.mod file of this
-// repository.
-//
-// See the discussion at https://gitlab.com/cznic/sqlite/-/issues/177 for more details.
-//
 // # Changelog
 //
-// 2024-07-22: v1.31.0
+//   - 2024-11-16 v1.34.0: Implement ResetSession and IsValid methods in connection
 //
-// Support windows/386.
+//   - 2024-07-22 v1.31.0: Support windows/386.
 //
-// 2024-06-04: v1.30.0
+//   - 2024-06-04 v1.30.0: Upgrade to SQLite 3.46.0, release notes at
+//     https://sqlite.org/releaselog/3_46_0.html.
 //
-// Upgrade to SQLite 3.46.0, release notes at https://sqlite.org/releaselog/3_46_0.html.
+//   - 2024-02-13 v1.29.0: Upgrade to SQLite 3.45.1, release notes at
+//     https://sqlite.org/releaselog/3_45_1.html.
 //
-// 2024-02-13: v1.29.0
+//   - 2023-12-14: v1.28.0: Add (*Driver).RegisterConnectionHook,
+//     ConnectionHookFn, ExecQuerierContext, RegisterConnectionHook.
 //
-// Upgrade to SQLite 3.45.1, release notes at https://sqlite.org/releaselog/3_45_1.html.
+//   - 2023-08-03 v1.25.0: enable SQLITE_ENABLE_DBSTAT_VTAB.
 //
-// 2023-12-14 v1.28.0:
+//   - 2023-07-11 v1.24.0: Add
+//     (*conn).{Serialize,Deserialize,NewBackup,NewRestore} methods, add Backup
+//     type.
 //
-//	(*Driver).RegisterConnectionHook: added
-//	ConnectionHookFn: added
-//	ExecQuerierContext: added
-//	RegisterConnectionHook: added
+//   - 2023-06-01 v1.23.0: Allow registering aggregate functions.
 //
-// 2023-08-03 v1.25.0: enable SQLITE_ENABLE_DBSTAT_VTAB.
+//   - 2023-04-22 v1.22.0: Support linux/s390x.
 //
-// 2023-07-11 v1.24.0:
+//   - 2023-02-23 v1.21.0: Upgrade to SQLite 3.41.0, release notes at
+//     https://sqlite.org/releaselog/3_41_0.html.
 //
-// Add (*conn).{Serialize,Deserialize,NewBackup,NewRestore} methods, add Backup type.
+//   - 2022-11-28 v1.20.0: Support linux/ppc64le.
 //
-// 2023-06-01 v1.23.0:
+//   - 2022-09-16 v1.19.0: Support frebsd/arm64.
 //
-// Allow registering aggregate functions.
+//   - 2022-07-26 v1.18.0: Add support for Go fs.FS based SQLite virtual
+//     filesystems, see function New in modernc.org/sqlite/vfs and/or TestVFS in
+//     all_test.go
 //
-// 2023-04-22 v1.22.0:
+//   - 2022-04-24 v1.17.0: Support windows/arm64.
 //
-// Support linux/s390x.
+//   - 2022-04-04 v1.16.0: Support scalar application defined functions written
+//     in Go. See https://www.sqlite.org/appfunc.html
 //
-// 2023-02-23 v1.21.0:
+//   - 2022-03-13 v1.15.0: Support linux/riscv64.
 //
-// Upgrade to SQLite 3.41.0, release notes at https://sqlite.org/releaselog/3_41_0.html.
+//   - 2021-11-13 v1.14.0: Support windows/amd64. This target had previously
+//     only experimental status because of a now resolved memory leak.
 //
-// 2022-11-28 v1.20.0
+//   - 2021-09-07 v1.13.0: Support freebsd/amd64.
 //
-// Support linux/ppc64le.
+//   - 2021-06-23 v1.11.0: Upgrade to use sqlite 3.36.0, release notes at
+//     https://www.sqlite.org/releaselog/3_36_0.html.
 //
-// 2022-09-16 v1.19.0:
+//   - 2021-05-06 v1.10.6: Fixes a memory corruption issue
+//     (https://gitlab.com/cznic/sqlite/-/issues/53).  Versions since v1.8.6 were
+//     affected and should be updated to v1.10.6.
 //
-// Support frebsd/arm64.
+//   - 2021-03-14 v1.10.0: Update to use sqlite 3.35.0, release notes at
+//     https://www.sqlite.org/releaselog/3_35_0.html.
 //
-// 2022-07-26 v1.18.0:
+//   - 2021-03-11 v1.9.0: Support darwin/arm64.
 //
-// Adds support for Go fs.FS based SQLite virtual filesystems, see function New
-// in modernc.org/sqlite/vfs and/or TestVFS in all_test.go
+//   - 2021-01-08 v1.8.0: Support darwin/amd64.
 //
-// 2022-04-24 v1.17.0:
+//   - 2020-09-13 v1.7.0: Support linux/arm and linux/arm64.
 //
-// Support windows/arm64.
+//   - 2020-09-08 v1.6.0: Support linux/386.
 //
-// 2022-04-04 v1.16.0:
+//   - 2020-09-03 v1.5.0: This project is now completely CGo-free, including
+//     the Tcl tests.
 //
-// Support scalar application defined functions written in Go.
+//   - 2020-08-26 v1.4.0: First stable release for linux/amd64.  The
+//     database/sql driver and its tests are CGo free.  Tests of the translated
+//     sqlite3.c library still require CGo.
 //
-//	https://www.sqlite.org/appfunc.html
+//   - 2020-07-26 v1.4.0-beta1: The project has reached beta status while
+//     supporting linux/amd64 only at the moment. The 'extraquick' Tcl testsuite
+//     reports
 //
-// 2022-03-13 v1.15.0:
+//   - 2019-12-28 v1.2.0-alpha.3: Third alpha fixes issue #19.
 //
-// Support linux/riscv64.
+//   - 2019-12-26 v1.1.0-alpha.2: Second alpha release adds support for
+//     accessing a database concurrently by multiple goroutines and/or processes.
+//     v1.1.0 is now considered feature-complete. Next planed release should be a
+//     beta with a proper test suite.
 //
-// 2021-11-13 v1.14.0:
+//   - 2019-12-18 v1.1.0-alpha.1: First alpha release using the new cc/v3,
+//     gocc, qbe toolchain. Some primitive tests pass on linux_{amd64,386}. Not
+//     yet safe for concurrent access by multiple goroutines. Next alpha release
+//     is planed to arrive before the end of this year.
 //
-// Support windows/amd64. This target had previously only experimental status
-// because of a now resolved memory leak.
+//   - 2017-06-10: Windows/Intel no more uses the VM (thanks Steffen Butzer).
 //
-// 2021-09-07 v1.13.0:
-//
-// Support freebsd/amd64.
-//
-// 2021-06-23 v1.11.0:
-//
-// Upgrade to use sqlite 3.36.0, release notes at https://www.sqlite.org/releaselog/3_36_0.html.
-//
-// 2021-05-06 v1.10.6:
-//
-// Fixes a memory corruption issue
-// (https://gitlab.com/cznic/sqlite/-/issues/53).  Versions since v1.8.6 were
-// affected and should be updated to v1.10.6.
-//
-// 2021-03-14 v1.10.0:
-//
-// Update to use sqlite 3.35.0, release notes at https://www.sqlite.org/releaselog/3_35_0.html.
-//
-// 2021-03-11 v1.9.0:
-//
-// Support darwin/arm64.
-//
-// 2021-01-08 v1.8.0:
-//
-// Support darwin/amd64.
-//
-// 2020-09-13 v1.7.0:
-//
-// Support linux/arm and linux/arm64.
-//
-// 2020-09-08 v1.6.0:
-//
-// Support linux/386.
-//
-// 2020-09-03 v1.5.0:
-//
-// This project is now completely CGo-free, including the Tcl tests.
-//
-// 2020-08-26 v1.4.0:
-//
-// First stable release for linux/amd64.  The database/sql driver and its tests
-// are CGo free.  Tests of the translated sqlite3.c library still require CGo.
-//
-//	$ make full
-//
-//	...
-//
-//	SQLite 2020-08-14 13:23:32 fca8dc8b578f215a969cd899336378966156154710873e68b3d9ac5881b0ff3f
-//	0 errors out of 928271 tests on 3900x Linux 64-bit little-endian
-//	WARNING: Multi-threaded tests skipped: Linked against a non-threadsafe Tcl build
-//	All memory allocations freed - no leaks
-//	Maximum memory usage: 9156360 bytes
-//	Current memory usage: 0 bytes
-//	Number of malloc()  : -1 calls
-//	--- PASS: TestTclTest (1785.04s)
-//	PASS
-//	ok  	modernc.org/sqlite	1785.041s
-//	$
-//
-// 2020-07-26 v1.4.0-beta1:
-//
-// The project has reached beta status while supporting linux/amd64 only at the
-// moment. The 'extraquick' Tcl testsuite reports
-//
-//	630 errors out of 200177 tests on  Linux 64-bit little-endian
-//
-// and some memory leaks
-//
-//	Unfreed memory: 698816 bytes in 322 allocations
-//
-// 2019-12-28 v1.2.0-alpha.3: Third alpha fixes issue #19.
-//
-// It also bumps the minor version as the repository was wrongly already tagged
-// with v1.1.0 before.  Even though the tag was deleted there are proxies that
-// cached that tag. Thanks /u/garaktailor for detecting the problem and
-// suggesting this solution.
-//
-// 2019-12-26 v1.1.0-alpha.2: Second alpha release adds support for accessing a
-// database concurrently by multiple goroutines and/or processes. v1.1.0 is now
-// considered feature-complete. Next planed release should be a beta with a
-// proper test suite.
-//
-// 2019-12-18 v1.1.0-alpha.1: First alpha release using the new cc/v3, gocc,
-// qbe toolchain. Some primitive tests pass on linux_{amd64,386}. Not yet safe
-// for concurrent access by multiple goroutines. Next alpha release is planed
-// to arrive before the end of this year.
-//
-// 2017-06-10 Windows/Intel no more uses the VM (thanks Steffen Butzer).
-//
-// 2017-06-05 Linux/Intel no more uses the VM (cznic/virtual).
+//   - 2017-06-05 Linux/Intel no more uses the VM (cznic/virtual).
 //
 // # Connecting to a database
 //
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_darwin_amd64.go b/vendor/modernc.org/sqlite/lib/sqlite_darwin_amd64.go
index 827d9b06d..e856b001a 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_darwin_amd64.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_darwin_amd64.go
@@ -230897,4 +230897,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_darwin_arm64.go b/vendor/modernc.org/sqlite/lib/sqlite_darwin_arm64.go
index 97211c806..78f2aeb3e 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_darwin_arm64.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_darwin_arm64.go
@@ -230452,4 +230452,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_freebsd_amd64.go b/vendor/modernc.org/sqlite/lib/sqlite_freebsd_amd64.go
index 5b7a72932..695a5b8c9 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_freebsd_amd64.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_freebsd_amd64.go
@@ -225512,4 +225512,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_freebsd_arm64.go b/vendor/modernc.org/sqlite/lib/sqlite_freebsd_arm64.go
index ce9ed9ccb..1883ce6b3 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_freebsd_arm64.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_freebsd_arm64.go
@@ -225523,4 +225523,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_linux_386.go b/vendor/modernc.org/sqlite/lib/sqlite_linux_386.go
index a454f2371..a099d0369 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_linux_386.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_linux_386.go
@@ -231929,4 +231929,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_linux_amd64.go b/vendor/modernc.org/sqlite/lib/sqlite_linux_amd64.go
index 172b9f296..e52d6a899 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_linux_amd64.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_linux_amd64.go
@@ -225728,4 +225728,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_linux_arm.go b/vendor/modernc.org/sqlite/lib/sqlite_linux_arm.go
index 49eb1ec10..964a2676c 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_linux_arm.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_linux_arm.go
@@ -232454,4 +232454,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_linux_arm64.go b/vendor/modernc.org/sqlite/lib/sqlite_linux_arm64.go
index 57386d724..15ba9a251 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_linux_arm64.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_linux_arm64.go
@@ -231974,4 +231974,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_linux_loong64.go b/vendor/modernc.org/sqlite/lib/sqlite_linux_loong64.go
index 2888a1c36..83675cadf 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_linux_loong64.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_linux_loong64.go
@@ -225817,4 +225817,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_linux_ppc64le.go b/vendor/modernc.org/sqlite/lib/sqlite_linux_ppc64le.go
index e4915c3b1..a851859b8 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_linux_ppc64le.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_linux_ppc64le.go
@@ -231955,4 +231955,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_linux_riscv64.go b/vendor/modernc.org/sqlite/lib/sqlite_linux_riscv64.go
index 3aedd92be..dd2bf77e1 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_linux_riscv64.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_linux_riscv64.go
@@ -231918,4 +231918,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_linux_s390x.go b/vendor/modernc.org/sqlite/lib/sqlite_linux_s390x.go
index 2c276e6c3..81f1426a6 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_linux_s390x.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_linux_s390x.go
@@ -231852,4 +231852,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_windows.go b/vendor/modernc.org/sqlite/lib/sqlite_windows.go
index 49ff6d6d0..6afacb327 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_windows.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_windows.go
@@ -94277,7 +94277,7 @@ func Xsqlite3_str_vappendf(tls *libc.TLS, pAccum uintptr, fmt uintptr, ap Tva_li
 	_, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _ = bArgList, base, bufpt, c, cThousand, ch, ch1, cset, done, e2, escarg, exp, flag_alternateform, flag_altform2, flag_dp, flag_leftjustify, flag_long, flag_prefix, flag_rtz, flag_zeropad, i, i1, iRound, idx, ii, infop, isnull, ix, j, j1, k, length, longvalue, n, n1, nCopyBytes, nOut, nPad, nPrior, needQuote, nn, pArgList, pExpr, pItem, pSel, pToken, pre, precision, prefix, px, q, realvalue, szBufNeeded, v, width, wx, x, x1, xtype, z, zExtra, zOut, v10, v100, v101, v102, v103, v104, v106, v107, v108, v109, v11, v110, v111, v12, v14, v15, v16, v17, v18, v19, v2, v20, v21, v22, v23, v24, v3, v4, v45, v46, v47, v48, v49, v5, v51, v52, v54, v55, v56, v57, v58, v59, v6, v60, v61, v62, v64, v65, v66, v67, v68, v7, v70, v71, v72, v73, v74, v75, v76, v77, v78, v79, v8, v80, v81, v82, v83, v85, v86, v87, v88, v89, v9, v90, v91, v93, v94, v96, v97, v98, p92 /* Thousands separator for %d and %u */
 	xtype = uint8(etINVALID)                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              /* Size of the rendering buffer */
 	zExtra = uintptr(0)                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /* True if trailing zeros should be removed */
-	pArgList = uintptr(0) /* Conversion buffer */
+	pArgList = uintptr(0)                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 /* Conversion buffer */
 	/* pAccum never starts out with an empty buffer that was obtained from
 	 ** malloc().  This precondition is required by the mprintf("%z...")
 	 ** optimization. */
@@ -97796,14 +97796,14 @@ func _sqlite3AtoF(tls *libc.TLS, z uintptr, pResult uintptr, length int32, enc T
 	var _ /* rr at bp+0 */ [2]float64
 	_, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _ = d, e, eType, eValid, esign, i, incr, nDigit, r, s, s2, sign, zEnd, v2, v3, v4
 	/* sign * significand * (10 ^ (esign * exponent)) */
-	sign = int32(1)   /* sign of significand */
-	s = uint64(0)     /* significand */
-	d = 0             /* adjust exponent for shifting decimal point */
-	esign = int32(1)  /* sign of exponent */
-	e = 0             /* exponent */
-	eValid = int32(1) /* True exponent is either not used or is well-formed */
-	nDigit = 0        /* Number of digits processed */
-	eType = int32(1)  /* 1: pure integer,  2+: fractional  -1 or less: bad UTF16 */
+	sign = int32(1)                                   /* sign of significand */
+	s = uint64(0)                                     /* significand */
+	d = 0                                             /* adjust exponent for shifting decimal point */
+	esign = int32(1)                                  /* sign of exponent */
+	e = 0                                             /* exponent */
+	eValid = int32(1)                                 /* True exponent is either not used or is well-formed */
+	nDigit = 0                                        /* Number of digits processed */
+	eType = int32(1)                                  /* 1: pure integer,  2+: fractional  -1 or less: bad UTF16 */
 	*(*float64)(unsafe.Pointer(pResult)) = float64(0) /* Default return value, in case of an error */
 	if length == 0 {
 		return 0
@@ -103328,7 +103328,7 @@ func _winOpen(tls *libc.TLS, pVfs uintptr, zName uintptr, id uintptr, flags int3
 	 ** a temporary file. Use this buffer to store the file name in.
 	 */
 	*(*uintptr)(unsafe.Pointer(bp + 8)) = uintptr(0) /* For temporary filename, if necessary. */
-	rc = SQLITE_OK /* Function Return Code */
+	rc = SQLITE_OK                                   /* Function Return Code */
 	isExclusive = flags & int32(SQLITE_OPEN_EXCLUSIVE)
 	isDelete = flags & int32(SQLITE_OPEN_DELETEONCLOSE)
 	isCreate = flags & int32(SQLITE_OPEN_CREATE)
@@ -111336,7 +111336,7 @@ func _readDbPage(tls *libc.TLS, pPg uintptr) (r int32) {
 	_, _, _, _ = dbFileVers, iOffset, pPager, rc
 	pPager = (*TPgHdr)(unsafe.Pointer(pPg)).FpPager /* Pager object associated with page pPg */
 	rc = SQLITE_OK                                  /* Return code */
-	*(*Tu32)(unsafe.Pointer(bp)) = uint32(0) /* Frame of WAL containing pgno */
+	*(*Tu32)(unsafe.Pointer(bp)) = uint32(0)        /* Frame of WAL containing pgno */
 	if (*TPager)(unsafe.Pointer(pPager)).FpWal != uintptr(0) {
 		rc = _sqlite3WalFindFrame(tls, (*TPager)(unsafe.Pointer(pPager)).FpWal, (*TPgHdr)(unsafe.Pointer(pPg)).Fpgno, bp)
 		if rc != 0 {
@@ -130461,7 +130461,7 @@ func _btreeCreateTable(tls *libc.TLS, p uintptr, piTable uintptr, createTabFlags
 	var _ /* pgnoRoot at bp+8 */ TPgno
 	var _ /* rc at bp+12 */ int32
 	_, _ = pBt, ptfFlags
-	pBt = (*TBtree)(unsafe.Pointer(p)).FpBt /* Page-type flags for the root page of new table */
+	pBt = (*TBtree)(unsafe.Pointer(p)).FpBt                 /* Page-type flags for the root page of new table */
 	if (*TBtShared)(unsafe.Pointer(pBt)).FautoVacuum != 0 { /* The page to move to. */
 		/* Creating a new table may probably require moving an existing database
 		 ** to make room for the new tables root page. In case this page turns
@@ -136679,8 +136679,8 @@ func _sqlite3VdbeMakeReady(tls *libc.TLS, p uintptr, pParse uintptr) {
 	 ** opcode array.  This extra memory will be reallocated for other elements
 	 ** of the prepared statement.
 	 */
-	n = int32(libc.Uint64FromInt64(24) * uint64((*TVdbe)(unsafe.Pointer(p)).FnOp))                       /* Bytes of opcode memory used */
-	(*(*TReusableSpace)(unsafe.Pointer(bp + 8))).FpSpace = (*TVdbe)(unsafe.Pointer(p)).FaOp + uintptr(n) /* Unused opcode memory */
+	n = int32(libc.Uint64FromInt64(24) * uint64((*TVdbe)(unsafe.Pointer(p)).FnOp))                                                            /* Bytes of opcode memory used */
+	(*(*TReusableSpace)(unsafe.Pointer(bp + 8))).FpSpace = (*TVdbe)(unsafe.Pointer(p)).FaOp + uintptr(n)                                      /* Unused opcode memory */
 	(*(*TReusableSpace)(unsafe.Pointer(bp + 8))).FnFree = int64(((*TParse)(unsafe.Pointer(pParse)).FszOpAlloc - n) & ^libc.Int32FromInt32(7)) /* Bytes of unused memory */
 	_resolveP2Values(tls, p, bp)
 	libc.SetBitFieldPtr16Uint32(p+200, uint32(libc.BoolUint8((*TParse)(unsafe.Pointer(pParse)).FisMultiWrite != 0 && (*TParse)(unsafe.Pointer(pParse)).FmayAbort != 0)), 5, 0x20)
@@ -167288,7 +167288,7 @@ func _statInit(tls *libc.TLS, context uintptr, argc int32, argv uintptr) {
 	nColUp = nCol
 	nKeyCol = Xsqlite3_value_int(tls, *(*uintptr)(unsafe.Pointer(argv + 1*8)))
 	/* Allocate the space required for the StatAccum object */
-	n = int32(uint64(136) + uint64(8)*uint64(uint64(nColUp))) /* StatAccum.anDLt */
+	n = int32(uint64(136) + uint64(8)*uint64(uint64(nColUp)))             /* StatAccum.anDLt */
 	n = int32(uint64(n) + libc.Uint64FromInt64(8)*uint64(uint64(nColUp))) /* StatAccum.anEq */
 	if mxSample != 0 {
 		n = int32(uint64(n) + (libc.Uint64FromInt64(8)*uint64(uint64(nColUp)) + libc.Uint64FromInt64(48)*uint64(nCol+mxSample) + libc.Uint64FromInt64(8)*libc.Uint64FromInt32(3)*uint64(uint64(nColUp))*uint64(nCol+mxSample)))
@@ -174242,7 +174242,7 @@ func _sqlite3RefillIndex(tls *libc.TLS, pParse uintptr, pIndex uintptr, memRootP
 func _sqlite3AllocateIndexObject(tls *libc.TLS, db uintptr, nCol Ti16, nExtra int32, ppExtra uintptr) (r uintptr) {
 	var nByte int32
 	var p, pExtra uintptr
-	_, _, _ = nByte, p, pExtra /* Bytes of space for Index object + arrays */
+	_, _, _ = nByte, p, pExtra                                                                                                                                                                                                                                                                                                                              /* Bytes of space for Index object + arrays */
 	nByte = int32((libc.Uint64FromInt64(160)+libc.Uint64FromInt32(7))&uint64(^libc.Int32FromInt32(7)) + (uint64(8)*uint64(uint64(nCol))+uint64(7))&uint64(^libc.Int32FromInt32(7)) + (uint64(2)*uint64(int32(int32(nCol))+libc.Int32FromInt32(1))+uint64(2)*uint64(uint64(nCol))+uint64(1)*uint64(uint64(nCol))+uint64(7))&uint64(^libc.Int32FromInt32(7))) /* Index.aSortOrder */
 	p = _sqlite3DbMallocZero(tls, db, uint64(nByte+nExtra))
 	if p != 0 {
@@ -183673,7 +183673,7 @@ func _autoIncBegin(tls *libc.TLS, pParse uintptr, iDb int32, pTab uintptr) (r in
 			v3 = pToplevel + 56
 			*(*int32)(unsafe.Pointer(v3))++
 			v2 = *(*int32)(unsafe.Pointer(v3))
-			(*TAutoincInfo)(unsafe.Pointer(pInfo)).FregCtr = v2 /* Max rowid register */
+			(*TAutoincInfo)(unsafe.Pointer(pInfo)).FregCtr = v2   /* Max rowid register */
 			*(*int32)(unsafe.Pointer(pToplevel + 56)) += int32(2) /* Rowid in sqlite_sequence + orig max val */
 		}
 		memId = (*TAutoincInfo)(unsafe.Pointer(pInfo)).FregCtr
@@ -209650,7 +209650,7 @@ func _sqlite3WhereCodeOneLoopStart(tls *libc.TLS, pParse uintptr, v uintptr, pWI
 							iCovCur = v44
 							v47 = pParse + 56
 							*(*int32)(unsafe.Pointer(v47))++
-							v46 = *(*int32)(unsafe.Pointer(v47)) /* Cursor used for index scans (if any) */
+							v46 = *(*int32)(unsafe.Pointer(v47))           /* Cursor used for index scans (if any) */
 							regReturn = v46                                /* Register used with OP_Gosub */
 							regRowset = 0                                  /* Register for RowSet object */
 							regRowid = 0                                   /* Register holding rowid */
@@ -232092,14 +232092,14 @@ _137:
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*24 + 8)) = _sqlite3SrcListAppend(tls, pParse, uintptr(0), yymsp+uintptr(-libc.Int32FromInt32(2))*24+8, yymsp+8) /*A-overwrites-X*/
 	goto _346
 _138:
-	; /* xfullname ::= nm DOT nm AS nm */
+	;                                                                                                                                                                                                                       /* xfullname ::= nm DOT nm AS nm */
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*24 + 8)) = _sqlite3SrcListAppend(tls, pParse, uintptr(0), yymsp+uintptr(-libc.Int32FromInt32(4))*24+8, yymsp+uintptr(-libc.Int32FromInt32(2))*24+8) /*A-overwrites-X*/
 	if *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*24 + 8)) != 0 {
 		(*(*TSrcItem)(unsafe.Pointer(*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*24 + 8)) + 8))).FzAlias = _sqlite3NameFromToken(tls, (*TParse)(unsafe.Pointer(pParse)).Fdb, yymsp+8)
 	}
 	goto _346
 _139:
-	; /* xfullname ::= nm AS nm */
+	;                                                                                                                                                                                      /* xfullname ::= nm AS nm */
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*24 + 8)) = _sqlite3SrcListAppend(tls, pParse, uintptr(0), yymsp+uintptr(-libc.Int32FromInt32(2))*24+8, uintptr(0)) /*A-overwrites-X*/
 	if *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*24 + 8)) != 0 {
 		(*(*TSrcItem)(unsafe.Pointer(*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*24 + 8)) + 8))).FzAlias = _sqlite3NameFromToken(tls, (*TParse)(unsafe.Pointer(pParse)).Fdb, yymsp+8)
@@ -232157,7 +232157,7 @@ _151:
 	_sqlite3ExprListSetSortOrder(tls, *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*24 + 8)), *(*int32)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*24 + 8)), *(*int32)(unsafe.Pointer(yymsp + 8)))
 	goto _346
 _152:
-	; /* sortlist ::= expr sortorder nulls */
+	;                                                                                                                                                                                                            /* sortlist ::= expr sortorder nulls */
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*24 + 8)) = _sqlite3ExprListAppend(tls, pParse, uintptr(0), *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*24 + 8))) /*A-overwrites-Y*/
 	_sqlite3ExprListSetSortOrder(tls, *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*24 + 8)), *(*int32)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*24 + 8)), *(*int32)(unsafe.Pointer(yymsp + 8)))
 	goto _346
@@ -232736,7 +232736,7 @@ _253:
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*24 + 8)) = _parserAddExprIdListTerm(tls, pParse, *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*24 + 8)), yymsp+uintptr(-libc.Int32FromInt32(2))*24+8, *(*int32)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*24 + 8)), *(*int32)(unsafe.Pointer(yymsp + 8)))
 	goto _346
 _254:
-	; /* eidlist ::= nm collate sortorder */
+	;                                                                                                                                                                                                                                                                                               /* eidlist ::= nm collate sortorder */
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*24 + 8)) = _parserAddExprIdListTerm(tls, pParse, uintptr(0), yymsp+uintptr(-libc.Int32FromInt32(2))*24+8, *(*int32)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*24 + 8)), *(*int32)(unsafe.Pointer(yymsp + 8))) /*A-overwrites-Y*/
 	goto _346
 _255:
@@ -232851,7 +232851,7 @@ _280:
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(8))*24 + 8)) = *(*uintptr)(unsafe.Pointer(&*(*TYYMINORTYPE)(unsafe.Pointer(bp))))
 	goto _346
 _281:
-	; /* trigger_cmd ::= scanpt insert_cmd INTO trnm idlist_opt select upsert scanpt */
+	;                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           /* trigger_cmd ::= scanpt insert_cmd INTO trnm idlist_opt select upsert scanpt */
 	*(*uintptr)(unsafe.Pointer(&*(*TYYMINORTYPE)(unsafe.Pointer(bp)))) = _sqlite3TriggerInsertStep(tls, pParse, yymsp+uintptr(-libc.Int32FromInt32(4))*24+8, *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(3))*24 + 8)), *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*24 + 8)), uint8(*(*int32)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(6))*24 + 8))), *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*24 + 8)), *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(7))*24 + 8)), *(*uintptr)(unsafe.Pointer(yymsp + 8))) /*yylhsminor.yy427-overwrites-yymsp[-6].minor.yy144*/
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(7))*24 + 8)) = *(*uintptr)(unsafe.Pointer(&*(*TYYMINORTYPE)(unsafe.Pointer(bp))))
 	goto _346
@@ -232980,7 +232980,7 @@ _311:
 	*(*Tu8)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*24 + 8)) = uint8(M10d_No)
 	goto _346
 _312:
-	; /* wqitem ::= withnm eidlist_opt wqas LP select RP */
+	;                                                                                                                                                                                                                                                                                                                                                                                             /* wqitem ::= withnm eidlist_opt wqas LP select RP */
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(5))*24 + 8)) = _sqlite3CteNew(tls, pParse, yymsp+uintptr(-libc.Int32FromInt32(5))*24+8, *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*24 + 8)), *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*24 + 8)), *(*Tu8)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(3))*24 + 8))) /*A-overwrites-X*/
 	goto _346
 _313:
@@ -232988,7 +232988,7 @@ _313:
 	(*TParse)(unsafe.Pointer(pParse)).FbHasWith = uint8(1)
 	goto _346
 _314:
-	; /* wqlist ::= wqitem */
+	;                                                                                                                         /* wqlist ::= wqitem */
 	*(*uintptr)(unsafe.Pointer(yymsp + 8)) = _sqlite3WithAdd(tls, pParse, uintptr(0), *(*uintptr)(unsafe.Pointer(yymsp + 8))) /*A-overwrites-X*/
 	goto _346
 _315:
@@ -263572,7 +263572,7 @@ func _sessionSerializeValue(tls *libc.TLS, aBuf uintptr, pValue uintptr, pnWrite
 	var _ /* i at bp+0 */ Tu64
 	var _ /* r at bp+8 */ float64
 	_, _, _, _, _ = eType, n, nByte, nVarint, z /* Size of serialized value in bytes */
-	if pValue != 0 { /* Value type (SQLITE_NULL, TEXT etc.) */
+	if pValue != 0 {                            /* Value type (SQLITE_NULL, TEXT etc.) */
 		eType = Xsqlite3_value_type(tls, pValue)
 		if aBuf != 0 {
 			*(*Tu8)(unsafe.Pointer(aBuf)) = uint8(uint8(eType))
@@ -291297,7 +291297,7 @@ func _sqlite3Fts5StorageOpen(tls *libc.TLS, pConfig uintptr, pIndex uintptr, bCr
 	var nByte Tsqlite3_int64
 	var p, zCols, zDefn, v1 uintptr
 	_, _, _, _, _, _, _, _, _ = i, iOff, nByte, nDefn, p, rc, zCols, zDefn, v1
-	rc = SQLITE_OK /* Bytes of space to allocate */
+	rc = SQLITE_OK                                                                               /* Bytes of space to allocate */
 	nByte = int64(uint64(128) + uint64((*TFts5Config)(unsafe.Pointer(pConfig)).FnCol)*uint64(8)) /* Fts5Storage.aTotalSize[] */
 	v1 = Xsqlite3_malloc64(tls, uint64(uint64(nByte)))
 	p = v1
@@ -300917,4 +300917,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/lib/sqlite_windows_386.go b/vendor/modernc.org/sqlite/lib/sqlite_windows_386.go
index 2b71621cd..c0d66b916 100644
--- a/vendor/modernc.org/sqlite/lib/sqlite_windows_386.go
+++ b/vendor/modernc.org/sqlite/lib/sqlite_windows_386.go
@@ -94062,7 +94062,7 @@ func Xsqlite3_str_vappendf(tls *libc.TLS, pAccum uintptr, fmt uintptr, ap Tva_li
 	_, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _ = bArgList, base, bufpt, c, cThousand, ch, ch1, cset, done, e2, escarg, exp, flag_alternateform, flag_altform2, flag_dp, flag_leftjustify, flag_long, flag_prefix, flag_rtz, flag_zeropad, i, i1, iRound, idx, ii, infop, isnull, ix, j, j1, k, length, longvalue, n, n1, nCopyBytes, nOut, nPad, nPrior, needQuote, nn, pArgList, pExpr, pItem, pSel, pToken, pre, precision, prefix, px, q, realvalue, szBufNeeded, v, width, wx, x, x1, xtype, z, zExtra, zOut, v10, v100, v101, v102, v103, v104, v106, v107, v108, v109, v11, v110, v111, v12, v14, v15, v16, v17, v18, v19, v2, v20, v21, v22, v23, v24, v3, v4, v45, v46, v47, v48, v49, v5, v51, v52, v54, v55, v56, v57, v58, v59, v6, v60, v61, v62, v64, v65, v66, v67, v68, v7, v70, v71, v72, v73, v74, v75, v76, v77, v78, v79, v8, v80, v81, v82, v83, v85, v86, v87, v88, v89, v9, v90, v91, v93, v94, v96, v97, v98, p92 /* Thousands separator for %d and %u */
 	xtype = uint8(etINVALID)                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              /* Size of the rendering buffer */
 	zExtra = uintptr(0)                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /* True if trailing zeros should be removed */
-	pArgList = uintptr(0) /* Conversion buffer */
+	pArgList = uintptr(0)                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 /* Conversion buffer */
 	/* pAccum never starts out with an empty buffer that was obtained from
 	 ** malloc().  This precondition is required by the mprintf("%z...")
 	 ** optimization. */
@@ -97585,14 +97585,14 @@ func _sqlite3AtoF(tls *libc.TLS, z uintptr, pResult uintptr, length int32, enc T
 	var _ /* rr at bp+0 */ [2]float64
 	_, _, _, _, _, _, _, _, _, _, _, _, _, _, _, _ = d, e, eType, eValid, esign, i, incr, nDigit, r, s, s2, sign, zEnd, v2, v3, v4
 	/* sign * significand * (10 ^ (esign * exponent)) */
-	sign = int32(1)   /* sign of significand */
-	s = uint64(0)     /* significand */
-	d = 0             /* adjust exponent for shifting decimal point */
-	esign = int32(1)  /* sign of exponent */
-	e = 0             /* exponent */
-	eValid = int32(1) /* True exponent is either not used or is well-formed */
-	nDigit = 0        /* Number of digits processed */
-	eType = int32(1)  /* 1: pure integer,  2+: fractional  -1 or less: bad UTF16 */
+	sign = int32(1)                                   /* sign of significand */
+	s = uint64(0)                                     /* significand */
+	d = 0                                             /* adjust exponent for shifting decimal point */
+	esign = int32(1)                                  /* sign of exponent */
+	e = 0                                             /* exponent */
+	eValid = int32(1)                                 /* True exponent is either not used or is well-formed */
+	nDigit = 0                                        /* Number of digits processed */
+	eType = int32(1)                                  /* 1: pure integer,  2+: fractional  -1 or less: bad UTF16 */
 	*(*float64)(unsafe.Pointer(pResult)) = float64(0) /* Default return value, in case of an error */
 	if length == 0 {
 		return 0
@@ -103121,7 +103121,7 @@ func _winOpen(tls *libc.TLS, pVfs uintptr, zName uintptr, id uintptr, flags int3
 	 ** a temporary file. Use this buffer to store the file name in.
 	 */
 	*(*uintptr)(unsafe.Pointer(bp + 8)) = uintptr(0) /* For temporary filename, if necessary. */
-	rc = SQLITE_OK /* Function Return Code */
+	rc = SQLITE_OK                                   /* Function Return Code */
 	isExclusive = flags & int32(SQLITE_OPEN_EXCLUSIVE)
 	isDelete = flags & int32(SQLITE_OPEN_DELETEONCLOSE)
 	isCreate = flags & int32(SQLITE_OPEN_CREATE)
@@ -111142,7 +111142,7 @@ func _readDbPage(tls *libc.TLS, pPg uintptr) (r int32) {
 	_, _, _, _ = dbFileVers, iOffset, pPager, rc
 	pPager = (*TPgHdr)(unsafe.Pointer(pPg)).FpPager /* Pager object associated with page pPg */
 	rc = SQLITE_OK                                  /* Return code */
-	*(*Tu32)(unsafe.Pointer(bp)) = uint32(0) /* Frame of WAL containing pgno */
+	*(*Tu32)(unsafe.Pointer(bp)) = uint32(0)        /* Frame of WAL containing pgno */
 	if (*TPager)(unsafe.Pointer(pPager)).FpWal != uintptr(0) {
 		rc = _sqlite3WalFindFrame(tls, (*TPager)(unsafe.Pointer(pPager)).FpWal, (*TPgHdr)(unsafe.Pointer(pPg)).Fpgno, bp)
 		if rc != 0 {
@@ -130278,7 +130278,7 @@ func _btreeCreateTable(tls *libc.TLS, p uintptr, piTable uintptr, createTabFlags
 	var _ /* pgnoRoot at bp+4 */ TPgno
 	var _ /* rc at bp+8 */ int32
 	_, _ = pBt, ptfFlags
-	pBt = (*TBtree)(unsafe.Pointer(p)).FpBt /* Page-type flags for the root page of new table */
+	pBt = (*TBtree)(unsafe.Pointer(p)).FpBt                 /* Page-type flags for the root page of new table */
 	if (*TBtShared)(unsafe.Pointer(pBt)).FautoVacuum != 0 { /* The page to move to. */
 		/* Creating a new table may probably require moving an existing database
 		 ** to make room for the new tables root page. In case this page turns
@@ -136500,7 +136500,7 @@ func _sqlite3VdbeMakeReady(tls *libc.TLS, p uintptr, pParse uintptr) {
 	 */
 	n = int32((libc.Uint32FromInt64(20)*uint32((*TVdbe)(unsafe.Pointer(p)).FnOp) + libc.Uint32FromInt32(7)) & uint32(^libc.Int32FromInt32(7))) /* Bytes of opcode memory used */
 	(*(*TReusableSpace)(unsafe.Pointer(bp + 8))).FpSpace = (*TVdbe)(unsafe.Pointer(p)).FaOp + uintptr(n)                                       /* Unused opcode memory */
-	(*(*TReusableSpace)(unsafe.Pointer(bp + 8))).FnFree = int64(((*TParse)(unsafe.Pointer(pParse)).FszOpAlloc - n) & ^libc.Int32FromInt32(7)) /* Bytes of unused memory */
+	(*(*TReusableSpace)(unsafe.Pointer(bp + 8))).FnFree = int64(((*TParse)(unsafe.Pointer(pParse)).FszOpAlloc - n) & ^libc.Int32FromInt32(7))  /* Bytes of unused memory */
 	_resolveP2Values(tls, p, bp)
 	libc.SetBitFieldPtr16Uint32(p+152, uint32(libc.BoolUint8((*TParse)(unsafe.Pointer(pParse)).FisMultiWrite != 0 && (*TParse)(unsafe.Pointer(pParse)).FmayAbort != 0)), 5, 0x20)
 	if (*TParse)(unsafe.Pointer(pParse)).Fexplain != 0 {
@@ -167158,7 +167158,7 @@ func _statInit(tls *libc.TLS, context uintptr, argc int32, argv uintptr) {
 	nColUp = nCol
 	nKeyCol = Xsqlite3_value_int(tls, *(*uintptr)(unsafe.Pointer(argv + 1*4)))
 	/* Allocate the space required for the StatAccum object */
-	n = int32(uint32(120) + uint32(8)*uint32(uint32(nColUp))) /* StatAccum.anDLt */
+	n = int32(uint32(120) + uint32(8)*uint32(uint32(nColUp)))             /* StatAccum.anDLt */
 	n = int32(uint32(n) + libc.Uint32FromInt64(8)*uint32(uint32(nColUp))) /* StatAccum.anEq */
 	if mxSample != 0 {
 		n = int32(uint32(n) + (libc.Uint32FromInt64(8)*uint32(uint32(nColUp)) + libc.Uint32FromInt64(40)*uint32(nCol+mxSample) + libc.Uint32FromInt64(8)*libc.Uint32FromInt32(3)*uint32(uint32(nColUp))*uint32(nCol+mxSample)))
@@ -174112,7 +174112,7 @@ func _sqlite3RefillIndex(tls *libc.TLS, pParse uintptr, pIndex uintptr, memRootP
 func _sqlite3AllocateIndexObject(tls *libc.TLS, db uintptr, nCol Ti16, nExtra int32, ppExtra uintptr) (r uintptr) {
 	var nByte int32
 	var p, pExtra uintptr
-	_, _, _ = nByte, p, pExtra /* Bytes of space for Index object + arrays */
+	_, _, _ = nByte, p, pExtra                                                                                                                                                                                                                                                                                                                              /* Bytes of space for Index object + arrays */
 	nByte = int32((libc.Uint32FromInt64(104)+libc.Uint32FromInt32(7))&uint32(^libc.Int32FromInt32(7)) + (uint32(4)*uint32(uint32(nCol))+uint32(7))&uint32(^libc.Int32FromInt32(7)) + (uint32(2)*uint32(int32(int32(nCol))+libc.Int32FromInt32(1))+uint32(2)*uint32(uint32(nCol))+uint32(1)*uint32(uint32(nCol))+uint32(7))&uint32(^libc.Int32FromInt32(7))) /* Index.aSortOrder */
 	p = _sqlite3DbMallocZero(tls, db, uint64(nByte+nExtra))
 	if p != 0 {
@@ -183549,7 +183549,7 @@ func _autoIncBegin(tls *libc.TLS, pParse uintptr, iDb int32, pTab uintptr) (r in
 			v3 = pToplevel + 44
 			*(*int32)(unsafe.Pointer(v3))++
 			v2 = *(*int32)(unsafe.Pointer(v3))
-			(*TAutoincInfo)(unsafe.Pointer(pInfo)).FregCtr = v2 /* Max rowid register */
+			(*TAutoincInfo)(unsafe.Pointer(pInfo)).FregCtr = v2   /* Max rowid register */
 			*(*int32)(unsafe.Pointer(pToplevel + 44)) += int32(2) /* Rowid in sqlite_sequence + orig max val */
 		}
 		memId = (*TAutoincInfo)(unsafe.Pointer(pInfo)).FregCtr
@@ -209563,7 +209563,7 @@ func _sqlite3WhereCodeOneLoopStart(tls *libc.TLS, pParse uintptr, v uintptr, pWI
 							iCovCur = v44
 							v47 = pParse + 44
 							*(*int32)(unsafe.Pointer(v47))++
-							v46 = *(*int32)(unsafe.Pointer(v47)) /* Cursor used for index scans (if any) */
+							v46 = *(*int32)(unsafe.Pointer(v47))           /* Cursor used for index scans (if any) */
 							regReturn = v46                                /* Register used with OP_Gosub */
 							regRowset = 0                                  /* Register for RowSet object */
 							regRowid = 0                                   /* Register holding rowid */
@@ -232009,14 +232009,14 @@ _137:
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*12 + 4)) = _sqlite3SrcListAppend(tls, pParse, uintptr(0), yymsp+uintptr(-libc.Int32FromInt32(2))*12+4, yymsp+4) /*A-overwrites-X*/
 	goto _346
 _138:
-	; /* xfullname ::= nm DOT nm AS nm */
+	;                                                                                                                                                                                                                       /* xfullname ::= nm DOT nm AS nm */
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*12 + 4)) = _sqlite3SrcListAppend(tls, pParse, uintptr(0), yymsp+uintptr(-libc.Int32FromInt32(4))*12+4, yymsp+uintptr(-libc.Int32FromInt32(2))*12+4) /*A-overwrites-X*/
 	if *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*12 + 4)) != 0 {
 		(*(*TSrcItem)(unsafe.Pointer(*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*12 + 4)) + 8))).FzAlias = _sqlite3NameFromToken(tls, (*TParse)(unsafe.Pointer(pParse)).Fdb, yymsp+4)
 	}
 	goto _346
 _139:
-	; /* xfullname ::= nm AS nm */
+	;                                                                                                                                                                                      /* xfullname ::= nm AS nm */
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*12 + 4)) = _sqlite3SrcListAppend(tls, pParse, uintptr(0), yymsp+uintptr(-libc.Int32FromInt32(2))*12+4, uintptr(0)) /*A-overwrites-X*/
 	if *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*12 + 4)) != 0 {
 		(*(*TSrcItem)(unsafe.Pointer(*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*12 + 4)) + 8))).FzAlias = _sqlite3NameFromToken(tls, (*TParse)(unsafe.Pointer(pParse)).Fdb, yymsp+4)
@@ -232074,7 +232074,7 @@ _151:
 	_sqlite3ExprListSetSortOrder(tls, *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*12 + 4)), *(*int32)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*12 + 4)), *(*int32)(unsafe.Pointer(yymsp + 4)))
 	goto _346
 _152:
-	; /* sortlist ::= expr sortorder nulls */
+	;                                                                                                                                                                                                            /* sortlist ::= expr sortorder nulls */
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*12 + 4)) = _sqlite3ExprListAppend(tls, pParse, uintptr(0), *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*12 + 4))) /*A-overwrites-Y*/
 	_sqlite3ExprListSetSortOrder(tls, *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*12 + 4)), *(*int32)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*12 + 4)), *(*int32)(unsafe.Pointer(yymsp + 4)))
 	goto _346
@@ -232653,7 +232653,7 @@ _253:
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*12 + 4)) = _parserAddExprIdListTerm(tls, pParse, *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*12 + 4)), yymsp+uintptr(-libc.Int32FromInt32(2))*12+4, *(*int32)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*12 + 4)), *(*int32)(unsafe.Pointer(yymsp + 4)))
 	goto _346
 _254:
-	; /* eidlist ::= nm collate sortorder */
+	;                                                                                                                                                                                                                                                                                               /* eidlist ::= nm collate sortorder */
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*12 + 4)) = _parserAddExprIdListTerm(tls, pParse, uintptr(0), yymsp+uintptr(-libc.Int32FromInt32(2))*12+4, *(*int32)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*12 + 4)), *(*int32)(unsafe.Pointer(yymsp + 4))) /*A-overwrites-Y*/
 	goto _346
 _255:
@@ -232768,7 +232768,7 @@ _280:
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(8))*12 + 4)) = *(*uintptr)(unsafe.Pointer(&*(*TYYMINORTYPE)(unsafe.Pointer(bp))))
 	goto _346
 _281:
-	; /* trigger_cmd ::= scanpt insert_cmd INTO trnm idlist_opt select upsert scanpt */
+	;                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           /* trigger_cmd ::= scanpt insert_cmd INTO trnm idlist_opt select upsert scanpt */
 	*(*uintptr)(unsafe.Pointer(&*(*TYYMINORTYPE)(unsafe.Pointer(bp)))) = _sqlite3TriggerInsertStep(tls, pParse, yymsp+uintptr(-libc.Int32FromInt32(4))*12+4, *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(3))*12 + 4)), *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*12 + 4)), uint8(*(*int32)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(6))*12 + 4))), *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*12 + 4)), *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(7))*12 + 4)), *(*uintptr)(unsafe.Pointer(yymsp + 4))) /*yylhsminor.yy427-overwrites-yymsp[-6].minor.yy144*/
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(7))*12 + 4)) = *(*uintptr)(unsafe.Pointer(&*(*TYYMINORTYPE)(unsafe.Pointer(bp))))
 	goto _346
@@ -232897,7 +232897,7 @@ _311:
 	*(*Tu8)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(2))*12 + 4)) = uint8(M10d_No)
 	goto _346
 _312:
-	; /* wqitem ::= withnm eidlist_opt wqas LP select RP */
+	;                                                                                                                                                                                                                                                                                                                                                                                             /* wqitem ::= withnm eidlist_opt wqas LP select RP */
 	*(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(5))*12 + 4)) = _sqlite3CteNew(tls, pParse, yymsp+uintptr(-libc.Int32FromInt32(5))*12+4, *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(4))*12 + 4)), *(*uintptr)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(1))*12 + 4)), *(*Tu8)(unsafe.Pointer(yymsp + uintptr(-libc.Int32FromInt32(3))*12 + 4))) /*A-overwrites-X*/
 	goto _346
 _313:
@@ -232905,7 +232905,7 @@ _313:
 	(*TParse)(unsafe.Pointer(pParse)).FbHasWith = uint8(1)
 	goto _346
 _314:
-	; /* wqlist ::= wqitem */
+	;                                                                                                                         /* wqlist ::= wqitem */
 	*(*uintptr)(unsafe.Pointer(yymsp + 4)) = _sqlite3WithAdd(tls, pParse, uintptr(0), *(*uintptr)(unsafe.Pointer(yymsp + 4))) /*A-overwrites-X*/
 	goto _346
 _315:
@@ -263543,7 +263543,7 @@ func _sessionSerializeValue(tls *libc.TLS, aBuf uintptr, pValue uintptr, pnWrite
 	var _ /* i at bp+0 */ Tu64
 	var _ /* r at bp+8 */ float64
 	_, _, _, _, _ = eType, n, nByte, nVarint, z /* Size of serialized value in bytes */
-	if pValue != 0 { /* Value type (SQLITE_NULL, TEXT etc.) */
+	if pValue != 0 {                            /* Value type (SQLITE_NULL, TEXT etc.) */
 		eType = Xsqlite3_value_type(tls, pValue)
 		if aBuf != 0 {
 			*(*Tu8)(unsafe.Pointer(aBuf)) = uint8(uint8(eType))
@@ -291384,7 +291384,7 @@ func _sqlite3Fts5StorageOpen(tls *libc.TLS, pConfig uintptr, pIndex uintptr, bCr
 	var nByte Tsqlite3_int64
 	var p, zCols, zDefn, v1 uintptr
 	_, _, _, _, _, _, _, _, _ = i, iOff, nByte, nDefn, p, rc, zCols, zDefn, v1
-	rc = SQLITE_OK /* Bytes of space to allocate */
+	rc = SQLITE_OK                                                                              /* Bytes of space to allocate */
 	nByte = int64(uint32(72) + uint32((*TFts5Config)(unsafe.Pointer(pConfig)).FnCol)*uint32(8)) /* Fts5Storage.aTotalSize[] */
 	v1 = Xsqlite3_malloc64(tls, uint64(uint64(nByte)))
 	p = v1
@@ -301017,4 +301017,3 @@ type Sqlite3_index_info = sqlite3_index_info
 type Sqlite3_module = sqlite3_module
 type Sqlite3_vtab = sqlite3_vtab
 type Sqlite3_vtab_cursor = sqlite3_vtab_cursor
-
diff --git a/vendor/modernc.org/sqlite/logo.png b/vendor/modernc.org/sqlite/logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..bdac02dff88538f459db935f783066e7e9637948
GIT binary patch
literal 40058
zcmeFXbx_>j@+OSCORx}Na0u>hgS!(n0}SpuxCJt}ySrPkpn>2XT!Rzb0|ehnzE|u0
zy}Na*cK^FwHC6LDr~B#dr~CAonVN7l6<JI)QZyJC7)*INpau*K%m54w%n%A33=E9$
z6{`2|1#c}qHw};{rIU-Jg|!`+(#^{WObLcqTfo3TmhIJ6FncL69&ZWAVZ|sdUQ23}
zles;T9&5=bCGwNy3Ut>6h&e(qanR(98)r2VBr3FQQmkAWhtte2fo%DkO;}I-KpoS_
zV}odT$n1sVM*h1LRheZey;{lS^My=YuZ@d>ct?;{FLW3YBjm@rLh+%?^Vhag=2;?)
zf;aY4zU!l=Gb^9I_X35e>CG%Ikk9qtR+YMk`$?xF#xp)STVQgL4b5a>bz_(8yqgP4
zHQa@PfqDNwW@PQ;X7)QH5vUMWAUj6?O;#}V&K1OZGEpNuI_M$tYhb5d%2k_Ub8H?k
zq|l5ZMQpxm)~gB)gS6*6PohZAkBA*Zx}zs{H!m2WRlM0K<#AdV7}yWiQc`O2Qc{0s
z4+aL3<rgm^*DL<I-$YZooDflnz<Ee5`?vtGrB$i+0WDw0YOZHzn$2oDuIMvAS`8wy
z*sDq`)`>R3&uGCL$k2w6#Dd7AUtfy80p>%t{X5!kKl>n~TyxG;)ez?$G^Z={^(%R3
zAA3ntAmMhu{mR)8B_OX*u>Gs;V{EObdd}S4YHp#)_&bdA@IDTUG~NrOi=QR-PHXg7
z^#xUUx%jb}ZW3FvHOz0mIJ16!dp;JIt}>4Q5!x?F#%w<pQ6eKO{aT$T`!Y0YkZF%)
zLcet+<93G)<HyfraLvqX3AjkTU<6#W3Wj_PGIf1-jkiTsVrxBO$M>`@j5|z0@n*1u
zR&hpRzbGD0=SNgkAo4x@-=4PkDGJ3WS-+JDOx)IQbF09-a5)vXJSGdWU&(t{7fZ(k
z2H9_HwG}h^bnjx}_;Z?TdeDj~Q{^JBP3~uY>i))pqj%+Pd%FD-R!&oQm~3MMhnQLI
z#`~k^ZS(ETS-M4l*dVFP(2lteBMc1Ik+qhdo1U_gpqZmRE6Ci@6wC^-cY^sX!eS67
zkeMymjnWisY3(2aIBWj`ptLp@0qF85vnxAEfvv3Nyj{SW-YQyV-nM1}<^VBKG+~G!
z#NNps>;|HQ*xNa{3PMBxe{cmITm^qGvjHgosJPjR0Q8jAD5V@-z?9sq+^p;@(hzG8
zPJk#HrLc>+g`fsd=5G)#<`yCVD>pYMK{hr|Pfu1)E>=euOEwMx0Rc94PBu<X78i31
z7FRC^HxPuy!Ik<q#9tUdu&bGiwUe8*qXXq{OpvLgyPF6AfJRA4`S<wjos^aT0q@}Y
zHx|qs?b#q8CpHdNb~bx^wtuy7b(8jR``=r*YI!+<*)+hej_xjIU}+DqgB$g~LYSNV
z!`{i=#qLi!=4NbQJFq?2!OfM8gO%goT*}HTtNp{`HwBi~_D+ASAofoGruqBWN<;n`
z-tXr>imq<vZ1PTSX50{aCuxWq8z(zEKMOl23#Y)p**jS|x;eU9IXeBr-M>-tkL^Fi
z{A)^X))xP)(!bgK-ueHiL+t;5Jp7&XKiGeYBM5XfbN|hYJWvGiJ8?mCM>A`4!9Q==
zE%?A79szb10UiMk7H$q6b`}9M5Ic(*yBWVJpM?MyKaa(~K*>9}x`7<bz`vm&_D-zU
z*5-m17Mvhn3vN>uGY~Ha3%7+Chy}#Q&&^`W!N<j8Zo$dR!Oi_I5UMWLmevj+yMK-9
zH<Y=xxgZE^YQ}GFCct89%EQUR&CA8h0y5*|WC8Q>nwoO+3YeR7vj2fHHxra`bg>7y
zi2$taL6%@PCkM+v8^0?pD4`}V0^nr*OZCr+njOf^!qLTE1fXQ?;12nxs+P4qSkn#k
zn@tWrE)G5(UI88fer{e)9{ztS>405atsNbHV{)*wa{ZOf-#SGQXl-fj2C~!q)2cGo
zcHrN=`;Y3Id9ePYg&e@1u4azrU{^Ntzij?$@81_7o0|*B+5v1XVQ1;+V(n&SZ*8Uw
zHn#@-iQ#|r^ncyUKUz~z$^~q0?Ir?H2AP8?J+0lWC}kZTE$zUR67qlI`Q4De%LsOG
z1N|NiA^?s*>k#`twjei07cECeI}yNd>M4J7_K$64up7u6<OTwQ+`u9LPIgXiK@JW<
z4qhz|PC+gnK^}f)b`C-If6;d|x3=*5KWYD-SCqnkHM^X(tDB>X*Po@ohL|SU`LCzH
z9__6EOfO2xKXXVBWcF7It{@Mv`JXudv1Mija<BxOiva$1Q2%aX{XZN6b6y@ZGgDJ8
z7BJYHn}wUtjE_Ztor9Cbf|s9z4-6LIVHe=~cXU@r3pY=Y3s}Mu?BFH>khQjV`ok3^
z!=Dyq{C90nEAa3BW9Q^%;oxBTCt(7ABaH2D3A6nk(|^xc`1g2IR{mE`{!;jtx&HgQ
z_+z92lo3S}X8Xte^Eb}^AIslr@&8u->*PO@|I+mz$$#nkkL15}{YUa&y8a{iFJ1qU
z{O{;O`{y@Uu!Fe>z!M-Qx|}GM1_J|w>LmBh6$XZt`u7VKQY_{H0|SHXCa)}wypN89
zPA!D@L<5F_p@fkKN@zirk2^h+z?Sax_bU$%6Ro#8hlgbjP5R}8YT}ZTf$)n`X(THf
z93Tu{tfM=T*g^m1)IrC`^9~*hfk2T_R5D?Vm=H|PG|EvL_<{ErG5`iDD*f!lwmEGh
zZKKT+*NNMcr{`Z20=KJbbK2kG^c#LmE4t}^Z*%`DD)e~c_`*BR#zsa*XIj7?Lv7Xs
zfrSz8XZ8(+IvsQZi-cz{Bj*|zCU-M^-|tGJ6V-WZv+W)UxS_!@$jKTFJQj`2)Q_2m
z_mIlQ^XO=+x1x{v9^`slH)F17{wk>OubePl%&8cRvg}r@yy3n?h)jfoAqzr*+OxFK
zQ!Z*<V}(9ATjvCP)`tH`lr`V~Pzp=mGBEf0u0b1F>`{FZ!AC<JmM+EVS7A&#Q)yv^
zO*li0nXUbtpNQt0ym(n3V<F-v^?u~I8_~@U3Z4zS3TzNhw+PosxiIb*m0Z#s3V)du
zP5up>>`^wX_Oi&kbIeXJbGZAlCVChk3~F6aX_8L+>q!(Jed;y)p9BhQJXsgw+R5VY
zL-FMDix8Nu8aNkN1I|cq+=ep=2$6~?VT<Gv=6z;8qERj}Mh4lsK9Tv?C{!Yf<7hj>
zbl?mIe#)WWWfF7Rc+YyrT$Su=$ZT?4th~ojemVR`1tmw~ZYE5l4D>KF_o(SCK#~wN
z**NWOURo|Sz%JVxrh&8-<b6d#c-DBX3YI*8MRLog>z}jrJowl#cX@%XI4sqHUsi!(
z5E#KQTUi!?!{+`NqRQ&O-(zO4If;<Xt$o%Ap{xvoJS{yHTdC5(Ltt?ohuD9mCyR-6
z-e`%s3ldaEAk0W*>5esiUr=RRz8HQ;UHwQQvdRC-ig`Fg{xGX@S?xO1a;*~TP0coQ
zC~tq=54LwXpx^H0JJ>oiEW<&zD>&@oY*MZMJgCA#*Ng@G?rJ#wSOl9wL^fVr?~_W)
zihP?fA~&E>#1%sk)}&9U8Ym*-*u}rBXmoEWdR%~19fjj?ct;Vt^`K!Pys3C67E%~o
zA$Y#jEaYU-FUw=09gJ5M{c;fXu<}v0DlM#34w~(m?ZGV1mCHvVxg1Y1$kk_txwBoC
z!q^WsS$MaoxGIfFv?p=~Hy$ko3;0GV64E88j$WxzzN5N%rtiy}*LOu8@ZRE`Ek^^M
zToNp=Qd9i^(L`fDz41d9GnuG158TLfR6`Z6tTRCn451o!*5^iB8+DXwQx16YPAX(>
zh@kJm%8b)BH!*TL%F(CNLmreRH>|`PDmVl}D%a+tn@L_jEwexgN{9vybS`doV0&`n
z&QlEHl1^RNcNh(Y*n2kYTC`-+z|y{EMU~3xG&f9T>iCK+^n~tz!G#-qXnPP+A-?Mc
zF!nd$$WkLRL52YdEjS}v801vbg5b&}rG$*bljPIBK~IP#noqrc>M_T3s>4=R5Givm
z*wF8#=x6uI`#%=eFDZ6cz>U7|mDo<V)Y#3g(ZNPT;eLe04Uxlr#6M_@Vtm;FVXLZ@
zB?MEASqk~DD{+NT0Zao!^(52+wNNQdZOdL=%r4G8H7s?;=7`&8Md8As>d9+yCHH&y
z__r<%bE>PO4YP&KtT`qRY7mCvB%c%p#YsyA%o8@<;oYkG%?IXWhsJ%%FZ({q&4D(d
zqfIC)yfA?^)+{1BMhTY$TS%#mH-$6tb=NYu-sWigg?)SNDw*2e3?rVJZD&-~<6FPQ
z(eb4MJz?qF%GAnr!=DncRP)n*Del99wL7GY{3crijYtSh%_5lVIq@dtS}_?xs<lNA
zmO8IF8t`sy_;8phN#Ux(&@G`DwtX6r1*+rw>!LU2nMahUAU#4gusU4i`Lv6VS8=jn
zZ8F`4&GiP~S_J`3g(v}_u&xaK<ELL5TqQQPRa?1~L*y9SkK)U6?YInS-6DN~l2fHH
zG}_tL4<QZqgDC<Xp*>YaXoO{W@xib-_({<8p+F33-m--)Rk8Hdho;2zY)UD$&|s}R
zAes)b#h$rydF!m5&|I7`ti~e=ccEjTwmJncX0vAheHz&{s$T$9W-+!C;iw(=4wAzc
zGJldT%TNC`FHuvxvy6W$z4>*PJucZ{XEk=X`kWJP)ATU_0ADsmJQDp&lZ$mUCg7!^
zHY2G-Jlbi=m{lUqA;Y7gQ9W|dhNm|w>zcn{@X?J+-JQ_s(b|7Waa;_f<tdkoWk!CX
z8d_mtH`(|}s)4zVr^48|;*GfRXIu$MIjK`wlGhUH$=Y*i0m3t(qIVGno~q`fZ_sun
zGFtHhJ?IbUtgBx|&mE=+cm_WaZ5}i;kssu;PWx6qT`JO^U#DIaUX-fMB!j<uD|Emr
zV#+9xI+b1;6pW#hdqSG!c`Y<pNwwYwCoq*u!l7f@hy!-GyD{Mi;nLEUh%L<CQ|Dw6
zzw9j?hnR@e%i+J*DT|1cTS~`b=Lyj+pBaDkN;hT2h(g>m_(vdhb(ovsKK`7gs#LDb
z5f)5kzb2Crr3rwwg8L3O;s-k}SOi<M$@}mLdgJuAjGmBv+<muu49!k`T>{y#&?bf@
z5)VGfLu0SqxHF>c!%tpSW++P}IGprH?%vb7$ny^15O97@BBurHkn5NKuoKssSmdfW
z%6t-|5bi8D#X3F5z(?k#Ll_sGz{R&;v7d0R(Mz}*C{n#dvKUyb6QHhQj!W3wV80Y#
z(Vr<u<rzYC$Chh1Zj^2Tc=sbpwb|g(`bW0K8)JEGg%N5Fj7nM)v+SsX$!z5_uN^%u
z(uRs-E=c@W-Q8wm`8tAGl~19?$qrituLE0{c--8~e2nTv&$WH)rsj?>w|Z@39dB6>
zoRDiKtX{O}z8>9-%?YX92)g2<2B=^3xf+S^uejNvjwmTaJO&iCM(&I3rw1F}HZwOv
zH(Q>1sb$?i=|tM3n1zAxoj#qbux$bH=vB(TD;c*nTvQl%E_`|wDl`JL<EH@w_3w>n
z#gmhI!phWR$(k5|)anvzZ;PhznF_1&T|kI5h@){ZOo1VyT#yVGo-+SPC7WN)<y+jH
zFRvEPJJM&m-=Q#_WN@mZlk*Z{i_YB05-q<O8-thD`L!foeT7Cr3=#FZAvCDTst6wn
z_qdsl6>(!))2QWx8uq>aA^f26IZ!^5Kc9QXqva|g`&xJX(_j$`lneHT@54EKUXc9o
zC4ji(!rL&i@UomTlv1?-enh=GSa)+SiBans6HPceh1+~<-8WHRND3`_?lIT!ei}1P
zOI~mIBhE-1EW{c0mlCrO=R!%@z~M)uLXEX!&3GkwttHyYrH0*zVdxxloVVD_uBY#1
z&(l=N(7f5D-69SN9In^+73Cf+ei38B+lNyY$lQr;bW<u~&inUJ$<qOmu4T$OxC%i0
zrc9?!WMTZBYqx~ehjyk%9MrA@v$A!&M1A`*U+$z1i9|FpCFw1L46R=^;+p*jIvzWA
znbqS5wc6`+Xk`QxG=Oq|%kYV=l8NXXyBci0H*TO;b9U!7KK3c!jGeMMgDG#|W|l>z
zTCLNTX6%@A3LV?(tIqoY5jr6vMkwqL9E5Tk?fz};wM?8!YQ<<7YR;50{j0s8?E5<`
z&|22z$Q02<?)kWBmanF=jUK^!?U%;*tolc#DYTG^y)16kyfjr7dgO^_fe6TF7cIh2
zJTF2#sLhXl@G!X#uL+m7t_G5%2WA~COqR9fm)rW<*NvG~)pIOlg|C3XuS3-eK!i2h
zg-q_zE<Z{CjV0Y^@F*^DSYHP$6&B9F*mA&@%`}BmVagKALmJOhA<$C(-XD|4Z5UIe
z(Uv1iM*@cJ8`7P@Zf@9#HH^Jbt;jBeiu-d65}R^7$cL6|A*B$Vv7aN>hFoF73s?Mg
zT!mZ1&W}+(BMxoqzzyw&l%c6sT0*wNe1FT{$I>&O=QZ=zba$b0)edtnY2BZQ>6nQ;
z(CFnM|L50FC)9(f5Ww}C?V)s^(6zC)0-m-uTam_Y5Hx$ib$ouyWkyJ%r<<S6rYRqy
zTQ0{`zF2InL5&*(>*K9|9{hN=3oMn)H!WCd7GiG)jLFC<wIdga=e@y^U8|(YUhz~u
z`7ZoMN&?49^CUHfrDL1o%X8DrsDg}KQe9_{*h_>^t^K%1Teia?7n@2)1wsr%NZK$b
zppZw0%i_#n;`uq8t9seO1?LRd0b!d!HbV=e1u$_&J>fxn()U*{6&mK$F?*trhWu>B
z-Hxi3z5SnqDRr)Fzuefa^ONaUFLgDGWG@scJd!1Am9J~>(Y}FI5MJ;=wpdx)nS1X3
zNVJ44w-K86?QN^yZHa9&cY!#u_6ftwXb+c3w)~{^Q*M{XW7sHNi!!fV|5xs}Iez1W
z4_*FFI?)->WDNW~CCVBaSpt{R<@)5t8N2UwuC~gWESiB^5e&#q`JO=$X9%1^97A>T
zeVz$G?dm450n8l+x5A}rcryNl7pf|u6UdFr@_nCslf?wzNKr+N&raM<T@&W4=-vVB
zPgs?Zael;5VIgh7xiPHqrnxlO{Hh#zYm$er4W|z4BJR5-G6=6U)E9If?xZZ=<O~;l
zZcYN13J2U>;Om|)a*N=;b4eL5np&x8eH^Byx0vIU&Tx$#HPB<f3+@3<ZCY5&>?~&+
z410EX>m;rhbYG61h*C@tKSkl<4hb#Dx5Gs&vLp9tp$2zMj7JB`sHaS(%2j`#DCAi?
zkLE1D{?M_>dN8o8AZS;mzuQ}6KEd74YiR&I#K4&udamCIB+R;HwO+6H@t*vdM#~^4
z*H)J+0=ciBsV?JqV_<wh7m3AE;dd}at$Uib#v$-39&bu(e9is)X)iK%){V?iAU`CF
zlbuk6N_z^r1<y>ru6%3U{M{lv0!OZ#cyuURKbN2fMxu~g01=#iRD#+aUl0CdY)DJa
zUOrcIRkq*EI|`mFIw7;tpk}dvneM3D33uVEMm%0soD9*W`Gw)umQJ2+>r6nzVMQ4U
zC*G6OQ3jvj@KEx7X2F4^rIiCx>h==!y9sQgWyVY~a*v9b(*qf!$*@H|epZkt3eg><
z%;N9?Rz0o>Wn)DI5*d{Umb)=9%Pdf&B`JdwEXgSJ6?l|u)?4R(eMo|{C`if##?;>W
zls}K6U><YC1!pBXB;b(Qnla@H6!hrF$&dnh%BBR{hNzVf$#NB|XT*%uKnbbZyYNOE
z+f-|)i(`$u8-|%xo9gl05Jzo7D0~*BvOb?t*FjjdCWn?>QU`w5+5T8B7kN#8Jcuri
zL(ypAvY@YS=WrYQSg77-bVqw85dpgiKfcv{G6r7t^*fx2s?b|Q%I~vB-3%e{>bJIv
z<c%{&9uArd+9;tYaw4n;Fb`ep&G)bx0QK=K8tZ|1VqWgAx*#6UVltW{zXs*QjvF`U
zPzTu9)SxOh5dyH#$|bU;!5T2EaYXoa+7=U1jMnriOM6Lf6BuAh8(d~?b0#Ew)vdH5
zgE@+~qZB^gs<P~s1FMLOp=ju{A8w|r6nnNPh}(k-S<Nu0U1|+j&*x%wp@SRRA@B6<
zuC`)FR4Q+FEU!M9xNdLGY$QSJ$3Y0c@0dNGJ%e&rrpfNpSZ4_E4mh!IJ+@LaCEPw!
zRISFN_Z4*2AKckQpKiW-!&}zR4z;`9i%5{#acic2m~8Igpc_-Xt^``u0_oVck{J{o
z);qn<Qc&S(O|=)ao(JhwL|jT{%I1d4c<6G4X)|o;?bYGpaivTbZG@k9>0?Yd1e$%0
zfJHGwv(aDfDvUnn^7B(4+wX5${}S6t7DE8w&<52%OwvxD7`E7cbbc2bB$cn4^(A0K
zGCCpz>=KG2BV@hR*+R#^_%&KBIX+^u)TfYe@toW@L%AaMk~c{Va|4~sU4=TZ6>!K1
z)Z%>Ke1er_?}bl7XG+fCafv`eN=iopHFBAmP+m}q<tWD!_}qNCm&^aOpYGvjH>TeV
z>|rHT`?2J)%ruJ)MZr;>AB?Vj<Lk0gQeT}(4^UnL;)gl5dQ9S*JlzKmkS<i;@FaV8
zybnz3zPad6Ir6wUU99OshiG7}!WMt+LQ^%oX_eI@E*tBHi&jIB&+ukTVbMf1SQMv=
znd{OHFY<GQEGya25Xov+RzIV&UC3;u`*lN^(w96utZJxVb20By#UkU1l}RETcS2Qj
zJ6#W#S<EolXx{E5i9PfU%UY~1?i7V0&@dy1rc3xX&)Gi&;_j_;26BQgei3!~o3~kb
zI%Zekl1Xj9<ueJm&ab7=+ZaMr@WDFMIx)zD)7ZN2Dz0jRoVH~PZC6#|$b3;Hk+hts
zG?7O95a*@Lx!0*@7Rf7+%(L5n9wIB)Tsl}3mRNfEVN~ZOOr~UFW$fTVh;eAF`Fs9d
za~-XQ1ua%5>|tgVnoSAi9=D>94;$HfyF2FyvhrroLrj*J8?SBD97{M41|mNMO(!&P
zqRK6Eq7pkIi82_Oqw?#ovWs1KRR^-zTf0nX_<IP`*OP@)(Z;h4xc(gLMVZD&xNys>
zK2srk&zhy?C7Y3bDzrJy>f`7b8$>LlX~O|nNvAbW&C)mXF1XjMYDErK!Hs7sBA9ed
zVSrs5+BKOIMg|)k{Cnc195}?36Q$9UTzfBGrJn2$@6{Pk#o>YzbRo6xQjA;t9!pL%
z)j1dv8T~H0%aJXoKO6HYh2b{7V!$v$^#awp9j;DmFgqK=hM|3&)Ikg3DT@_z+L-+j
zw$y3Q6sB)hvb8^PR0G+HuN9$<-%g8E5>QQ%+RK?mpbp=vovd|gZ}PmI7%HXA&pXYh
zt}CAVN%~M#4YS$`4Np&{aYy4BK+rX?NUOAM_^HtU>=qh!a$tR~LG)ggjGb{rGZ*$l
zOM-1=h+oA4_Jn6>)Fv8F<6C6(Dh2JVPej_OMqdgqs!lX{aN@6=($9&ov%TK)M%uXZ
zf~`~Nhv07DZVr-$ZyX|SW9pStC*AQT>&2lc0=MDe%CA&~-OhJX+FCsx%z-dw!V#w(
z7bEo8Zv<#x*(6IY%P`Or!Nj2j5!;M)h4%4fE*!7ow#OuJqG{P{>4<U~kb8MW66Ab{
z6F4Y|p^WF~g&DQ+x5C`h8n!zq7-G?u-rxLK@;DM`^Akxy_;B=A`u=A?UIvV6b&>2I
zeiLr|9-aplZT5~ROdv`}8AIZcVZhR_wedvU4m>F%&AYA;%Qv~o<;Ir5#d+IwNs};f
zo|5nOTHE=)H~T1>e?Vj$qaL(;zI^Vzx}f7VXTguB$IGQ%E6K(fZ#D6qx@PmA-^I0-
zYx%Lfl(~Mp<kwWKRXLbaEnRj_c&tsZ1I(7&qLq*1)$MZJ>$7$E&XvMKD#f0X9$ilr
z&k&vmpQ2TaUvuhCz@$I`2~M%<Fs>ck#raYd&w}~AWy+h1>_$T*xx}9&ii&ip-{#3i
zMTL}eJ{T@JNR_2j_LZPHOCqN;M>L_K5-NN=oC=U2>yFGL#;6569f!j~Y1FfaH73fN
z*%w_8?NKUOUPl%PEm^wqP+e=Xv{lxul-#0D7BMLCP>x-{?L#%ObuuB5v8#$5{L=BV
z12*&BZDzrs`jOE;?&B%;_|439^?ZO7kLj1|CUSBfRTuuy><wFE@k|?d@>H&!X@m0&
zpkYeNSsp)CHyxdimiCo^IFJ&qI9-twd25Imt?!|WvYn}~ZkeU)yj!;)4oS50QDOMG
z6~^aqPb{DBd!Fb%C`(@@Hd}EhEXMjm%|<T&vs3>aaiT6&eCNucPm2oaNa-f|MQUu$
z(}<lZS@h?|QsX^}ilL4u+xr4C&*+}Y52#g6SCG-!U-^j*swIK>>=U|cl2pnz7pXb?
zO+KTGHOe5)9wk}Ge3R~R!109+H=?b;7;G2~{U9+~7YzR31^#IIN#o7wssyVxW==73
zIQB#797@mALT=avIrg}3N)cl{$jrJ<SIRbXw*Rs?4EKDFJG?UR3~_6_H?X||jwF4C
z`5^v|caf7r4ywHw$sLI7ZyktLv!?L{v;stsWdf=dY+Fu>xRktWxE?~^C04s8ri_@q
z3zxBbhiJ^molc9=M*KPR#%^4Y9HJc`*oMa#Pb!t7#M^xBdFpo_uDJ*7q@pdc<%{jS
zXku%X$y}?{h2xjQ!9_8Lu>jceb3!o&oloFZo6h_m<rfx<wz5NRjXPu|D)C6N3Q31E
zNCiywJ2jDjBU@gr>2G;f(i1DjtCiD9pI@2OxsD8ml?ir-@(hg6uWckwF2f}-YvF`x
zJY>1b39ny#+|#d1(Sy@T8@0N*zfG3HOi$g1uzcFp6^HS#%jmFaGnQJw;Yw2c&`NBg
zj>8DB&<Mh@K4*qW3MUp^E2A16dhj)8UZtW#>S0j2S*<K>aa;jXYERnOn)C8)jq)nj
z395FEPy=lzc*3CRLrkV>g%?5e?E$yHG#y+Nfl3AE6Op5{4<pC>Hk1?IZ<YaF9JpL$
zXZ5RxtbF);JVnc}k*Pfy<O252ay21*HmXl7@vk@MOcw*1ezi3RrPkFH&<~*<+76UM
z%8;*ob+IS7LECF}UdBRGHnj9XX=B@^uT&c~F)<u*Lg>sM3dq=UE0(6UP-gi^(Rc=`
z+_D*>?m2<DNm>YQmtz8^ngfe(q`L#5x7=fsom+S9Hhp#^G;%+(ANxz+bObDgb0DQi
zO6V$yYnAvw2~&pH(=UGcm8PD09lN#H55pUysLXjW8f#B#vDEYNOXv@1BJmHKJGVAW
zD|HYfrov_UQ72HtAj0vQYS>PmGF1ELRZg;EF&JZ*q)NW1<TIIDt~jix7mxJ`M{o*i
zs8tC2sa`CouukxD1)&1O!>5l;ZCkUGz9)zVg}r}2h8~`4TS*LWT8Bthhx;wP+27&i
zfb-~N$#ddxr=KR%$fiCT<rqrDb!AD>{!+-5V>gEM-XtNj5yI;I!J7_1JP*a~H@nSJ
zSi9Yq*Uhycq-X3azY@s*d|B~ofo${Fjn$9N%gENudsoG3i_)XeJb`eW5mMlrMi{Kd
zGi=A9oUpeU^QfBHsj}LldEjh=3snU)FxP_fgQb3qecwoj{$OmFlnuY31r3yf-~H5%
z@2V($WO(;ROw@T`sSQM0)s3DP7tT=Q2U;&*`tTu|J(6Q>(UsimtdzpA@tPq*vPag-
z^A#m0M(=F7^7E-B*0ISx)MjP#d#=w81(6m#{bHT8`4D@3O7GQX{Rn0xu`~jAAmOaj
zS^4P$g;<j*{VWN8=<Q*rE<Io``CM#WIUn?^BJO_MVe3_D=7~c^h9~ir^Y;#;Wuki6
z68E-2_magUsv3;m{m@q*bX++B39kioskqkNA11lUWygw-n8c!ymyNZF7&@nr2nlNi
z9exVvs<dSLANNpOb6Zr0r(uvK-Os|RP$zUxXo{OF2(_H7by!!OW@TlhKg@2^$CUCo
zQkyOH;Yz32sf|c2zTfL8QCYTjDU=U5SYLHsU%=|T3P<D;wKt8xKwhQ#{OvrF04JHU
zJ`eA+ArnBQU&y&&!nq~!abx#-VYP!<B{M!~ml#Qcx8(CuqsQbMB0;8t!}Lbu$fKsk
z4?Q+cu|L<v{L79w;;++Y1;f?g>9jWxXA=n$CGAkvuFEeC2gx&Ry=vYueCBJ?)x)lh
z&r)czLV^3Fps9W{tMQ;UIE&GbB=S|Cql|1ICZzT!nmXK&*UMu3c1%?q&p@CYzge^0
z+jpY_{J2E^k=>OR#(1?`s}|-gdu<mVXrsS=Q#wbez!U#ydaf8u+^!MiS4MPUoE0&;
zp<zRJLb3Yl%jtwI{j`@EW<w~)z~XdKh4}uEg70>iw19$~+I3i&&hOuunTCSlN#c!S
z<BbD3Kz@pJ4?8E!bNT{mKcJHyk39`6i%=@!JdtE;)m^p8BhU0zjR*qgXg`9AhPvVM
z*}9sYkFbvxc(pWRWwBhcRd}nuQF7^Nu3BW2Yz082A{?_unf>5bO)5I3bnL`*-!_xr
zW?B_CN#*2yv<ak^7~WC1p7@ncF5M67t~dG!8^lDhWlr^^RctrG<BWw))P39rhjK<$
zcnDgzWU9pQYz=AnKa8kn@hDd~LhZ=8e^p#mJO7;Po_!$fR3<4(imikcq^F3nw<`sS
z#h9McepxjnyfKV6!r!>*2*R$D9O7&ruJ_&&N<cTV)iz?9v_|7K6i-U$hl`D#du_Ma
zkvEqV+3SXaoF3gBjE+z`M2rna7~#C-Tn^?Uo(ChER426Xgalg}%Oh2V_2`(Xre*n0
z#(Sl@nY^r$*|njlccXGp3MZLiot3S9mY0X+S1%r~Vm|3}64a^fug9FG*~~g#-YIqW
z&Ip>?yvELng;-Lt?+s^Jx578DET)xBFB{CrEQH05zE`DGEHjw7j!>WJ3_Tm-2%0{O
z0^=lpnub=)<MgNarO1n_T3)Uw-B~#WDi(bSVeI!yj2Ifj@dmzLMd(ITQd#w@koMlV
zo^1CQe&;fR6waqkSr%<`BT;1OM8w#tJ}r^GuhDL#IHuR>V878dGE+F`)gy`2TSF@j
z%sG)<p~$f9T{Z?7P-$ra^=18`HOkmDb?VjcCOR0d=khBDlnb1CUC{V6<IS~(X-LVS
zYJ<oV7f{t1;oii8Sa}VosQgk-)f;SY(C8;B6g_IXj5Nr?!R~%#sY$>B;i}<>R3<0#
zgo?*N#kVCCg(UJ#MkaYhYa_HyTQt_qTMVSNgDD?7X2bN9;V0~#251oXLkz9h*>YTo
zuyfAZ{45RFL3vz`jZp(xI*zXhKg#+Iy{k9P-*&H=i?*r9EsJ~ACa_GV2l)95L+uhT
z3!y$CrSY>y^cw^`VhQSqj*@U9Hk2s(Q~Rf>f`akb!al68g1A92JMhv$a!fqhwZ@ix
zDdHNLi*C1x%A<oOK7(`34SB{|{VQ@PVQD~kKeIq9?v3Szq3{I^&AZlyuvhSSx!`JR
zi_i~$|1UtJ19iK4-3DOyb;Z*L+*@?te8YR}5m$20b34sw#&*s^3~;X*uYMGMQG^Ba
zJ7+62b^6Sj1q|T)=dL8niHN4<%S~=#gsBUDhvw<1p|1>DWs{h?PTEZU;p*{f<A@KJ
zgF)ZUc+=7;W#lmvWKJek8c_$0y;ii<_p*Y3Ikc~tk>3zi|M-wI@QdKHalx|lngf9^
zQ+NfDnrsw~BV!~FTsegE&u9A#Q`e3>wXu!swCnw-2!%RLa!7G@4NZ6jp;?xBx^C|h
zaGXF<a9)8@Zb~;7t4UD+BMx7OGoWN?iXp>c_MM1}bD!jQ9>Y!reEG_)QwDDG@@|EQ
zAClOhAK#K@<@~10o|fv9Jv@H$OtxBdw2M0x9ar1zOND%NoF5{WC(=K=tu%;VzUDRv
z3mDA%X!wy*r~IAXeRfucrf&jr?mPJy*2X!#MD*`Yi~?&Wy0yvl$<pq|3Hb4nP=j&<
zn<hM-JoXYw4BD>>e1yQnc+d&0kk;&#fQ8O$cTu#|)R#F|`oan&quQ%+56wLF#;m)V
z#!`R~E=gJGr)=HV4s`{_UQ<Gak5a`r-D4{}p_176Non#+5WF+83zOF-A70<xdK&Yb
zWHRM+Fb$ExF^1oKddt*LdXKcTK$1G|&4tVOcF~xIf9*lJEk-Ge39#gqK?-<-3$dUT
zfi(BiS?K)u6fJDJy|jFjO~lVY#+?-SLr3sLDQ$@$aSN1?mG^!|A<L6fyOso^6Tb!{
z@4OT0D=T++36D(@Yl9Q05~#yxbXbyuNd`P5oYtObJ5bQ2KXRt#MCvMXCLGYi%V4Ie
zv7_G!OE!C};VXj7pC-4I097Zq?b!Y$V0+*`*~)av3J-J&#CwaY$KS#<-u@tX2-`_q
zs*QHCbS*nSt&N2fpzEquxCwx}kCH;&SsH6vjlbiy%Z|Kze6~2h%an#E2v@rn`k}*T
zv~QjRjRrGF5mbfp8>?e$E>PQg4s4e>VD2TLiwwoPNN48_Wy)@S+r2i&s~!Dbl<h^O
zgSA{E3A)GH3SZ81D76(zdsDfPP9lk>;Z7(iTgN^=^K&f}EuM481aVbjM7}#%SrR8A
zZGi7-Y6`p`PvQUEG&K_3{fVCq#}=a!7i;Udzeo_XCi=5l+pq4E=A&EH%9z~Pgz2{m
zyEbPvO8A%PbWA`6^9kMt`iWN$1d-p^cZeoqvs2K7F&NYrh99?Fn2^lhqSdhI!7I$N
zy#Ul;*-E>z@4d}!kYL*xGX1Hhc3*1)V9IR<TP+S(%JF$AH8CVm7<bJEg1*)q5-^s{
z9LJDlILz9N<u7Aam(>LTAX1?=zs5rkphz!Cir4bEDDeFHCFi0euld$Is)ld+j!r)d
zI<VqUIw6FD<3PMPv@#srePqf$^Z0$o-iI$uL<m-hBvsyphD`F|Oylj-7(kJ{5#fde
za{iUeEXQ{``(;?v3JXni)mqvTV=4!R4V|mQ&;l3d{2Rp%%o5q8BOeR2R10MWscMdR
zj<GQ{I7^^WD891M@}(&5xTMdL-sx0h2-#>TUolS7FyTiO#RBH>`42q!P5QvPK=og%
z<m!5C8gxgYQX^Aw??d3wj$kg&n7n9%*l`;?$f8@04I+N^F*~#gpRy9ysWa~+<NnZG
z+A|EP<FqbX-esS!<IVVXd)C9yjHGz#yP7PzUnQv@goPd{F-yO}r8pek-&fB;)4Nk`
zgWH&qO8Ob_W_Dt=RfirvXau&Rs}~=IQpKu18%2F6D+y`pEn;XZgutPp($}q+kpPuu
z$TCUAt`0{B@`LL{WvlpSuz)3xTAW0Ypo5oY^*j{Aw-qc?oXXYnaXc~N5nCZFIHCdx
zRei3nk{ViuZ*IJ~$jTS+<M4vQ_p~W9LHbh)W_|rY8s+1p)Yc;P3V$zj+gmvOdzpa&
z7x?J9*e4~hr?a+)i7QQ0arokn6(Cgv-)ov&Of16IBy)}l_A;<?XkEHi7$BzGnF>Lw
zK%hMt7yKF4=$$6Tx}Je-l~R|_u&Qo4%y*0$gaj1*CgeHwt>P`fuRs1Pe1UP`?2Jak
z9J_}rbxb-*1t7ywgEjd5ToD1HC9EWlHvJ)jWER^rEsj)FTlhr_#k--!$3=48Sj)Y)
z(h8!&!eOn;StRUvb8VzYu~8mUH{2W8O}e=Rqi>)-4_RULVOs^I-NXG8^}fax8)CQY
zh_suAtTtA+bK+v`Fgz;k>xXY!xb&pLl#Hv8<Jvz@N;kc`ETb`bjX$sD^sBKuEHURJ
zOXi3<u^KFDd9WUB-zbx3UB~PE0<)kbb}4Kh4TKvrHJ~2ux{b$Cl=8KHuRb9KCu&f|
zS4IEj0yRdR7TgX1p?i<`l?oTCt-p*~cFuERuWS8KY{v#^V&jHLIBwAgXu7twISY@W
zdNd7x^=8ZQy>0)TETQ*Vl}d!p%Nmy;)Y9kDaBp8ylFk%uIw9!{v08XH)M4WN7d=Hi
zX10Cn)}vQCf+QIAEb6J3Fg{m+&G}cwt(tOa-?mJxG4kKi7wIu*qV6Ejs%wBkcVJ>~
z=BYoRP<ZtG>b?d;6EDwsc9f)lp&x?b;sDg+;)*8@MXjKI8l1CULzT^3V7~+*jbyn3
zl1oriX+_>673wMk-gKMK-uq#AmtXLvaI$@^`4#6x)JG-~GsR1YcB3h#F86B+ofTrM
zNnNRGE&`2uE!Pi<l_iroCkMNy`FFhOP}l`{Yo=x?+VXc5uj_)=PpQJwT6c8}fWuB!
z5urKy{3~Bee8Tjbm&8@LH5qm@&%DRug26Lf7p9BCn&v1CMl@3P7S#;GXyWJTHX1U<
z<C^Zne3!{zV?esq?tnK|6>poDajiy{!}a^rphVrwSrH7vLqVF?tm|(jY1im0x~xPJ
z!(b{MsxEG*73beP+)lP87+m2{9|z*LN%mInZZ`T6x0Ccd5U1zF(i!WtRfx#W-7?(L
z)8+-e4viA2pZ4=D$^P-n9gEBcdzG5yz)Asw^ry0#4getQTQg^LT*Rn!y3erQz#S2{
zb~J_~2LtccG2xl$yN?~jm5^HuQ!#gxFqtFR{~YQXW5*v8mvlG65Ej<y(|^#?VAqvt
z4XbCnSx~g>d6L{sHO}1asvgW+MN-+XgmU<#5(mA?5K{l3-aBojU1`e*W2z1g&YQP;
z+OxC|xF%ni6;wp4<CrJ@G!XWHgA_Y@{qsXk35WMr4ny1@l{&%jVNI+$mh0PPILWZ5
zE8S@$RxR?v4by%*KQ-WNhin7=(c6sfoOCUs;7{Ts;zyl=x56{iCs_FKDMl=6%c@xB
zyXwgp<%Ym8EFUT)RE8pdGJr*Mdl|n`V#&RNNuXRmlr~D>H!o61vK-exM{wz-AppIJ
zmz%X_CN>{Y4!rB;RG+M3kew|P&x|OFWRNJG13=KCl)?Biui(=QTcm=-&xb~}Sc*Aa
zmP9lZ1AYyG+%jr?Cz=M_tML*+Y?ArNEYg%iutKI`3iXRDMCtj@%RW3L>$t`?d174r
zl?r<x>QJzFM1Jz8zCj|Llzw&`!iQe1rBG?4{>h|vbu>M6wCiu|(dcS}55+25hzJqs
zZzamsW3`i%njDjrV&(e2&DtLNsS>n73K?(7KE@K}2SfL?E%nK1o4=J=NlAuAmI^!V
zpa7XFoW!@JlP<}vD=3|Y;F?@w;IB(=@+}Kco+JP`dp0N<0>zg$LF%mNWnV*8Hv7ET
z+^<_4*4&nWET3@6Sf>z@x>PnhA!l5B**5O=20RyAfF@$bOAafIPJh1p)Q6<{#PW)7
zx>%Lpm>5KuBH|K8J8rvePfVCf_g4@Nin&vR*F+r)!!nVPgpqj1r{rE&KC=IeX+;aY
zPPTut9gc8#9rvnc=;zC#T$IT}*BbrOO6h53=c$+1vjpCk9W>qRu}U!RHH&Jcq5O#-
z?fM=P4-7m~&ev^5>BBPpsRtBwU7_!8txFE{@(yDJpE-d*kO)zjjI)eSx#*3w1O{pV
z#bOx5xXScBf(>E8Ss8A|)eWnnL<%6Sx)fDgK%#=TPF8=dY-Itxg4PG}VKwH4{{Y^w
zI><6s2Dh#3YXF6)H)-g7%2}nbp4LvF;23e?<NYOjyDyF<or8Nq!xj1#B8Xg94@>1q
z?Vy`s0(v*Apj!kqLP{|(-Oe1>d6!v4P2o`G{KdMngs(gGurs%@c68?DJ4hu|$8fKX
zeCD1Y$33nqG<e-Lr_lJsash%RZ+&g~*-*SLrczd|+e^gnhh2MO9LIbHPMH#`TR(M`
zf_HNBE9^8KIYGZ?>ufIe%2%<K8Cve~#$f;VKLhGVu1Wn@`o9q|>OKVO45@1w7d&Um
zJP8%ZeBPYmORqajx7h{CF<1SJSLw<SyfuSx@AoosT=^1&h;OSabBTCdY8`g)#5eUb
z*ra8?M|)vL<nX2=)JG;@N>@MwNA(B}sPNAA-mTXvJ{KoLnF^B3pU<c8*Qh`7MnpBG
zq%WmWR%v4f8wR0PRJY-dG!cC}y<4xfJgzM5!!wsUjQ{SwbW^lqP5)hG+I=D%3T2x!
z8%eDuxC?#TdGqZs8g0#l80{shW9Q{4XIagrEC{^;?0xCh*}QrRnPgfnTZq<g?i}D!
zfc=`UM)*@>7jRO(y!&i2Sy{c1gJ#e7lQGb{J5e+win;9ZTXS{hv;+M?8;$#kLx#Xv
z=VW0P5nl0OBL}8s(h<~qk7D}J_S=qhN)@$$ZwZ;9N|0`C!LBB)*I5E;K@p5d$OK~d
z?5tMHO7zxiX|-fQ8$>|=`yZU=n8Lc>v|UT0(E{b_^+Z3b5@M=W9bCL;{dT84*@_mL
z6w++#liH+B#`>uP1*8s~7-I`HLpN9j_7Sgjx$6TlYu#m1wV-U6y~}bPH1c1S#;Vj5
z@+z*qjnchawHSY-dREWxgvHRXUw_dgcun^yRX-cQG)M4mR#R~=MJT%lKODd%(rJAQ
zUa4Jk?Vlgl3{$cyBZ%7P$ug=nW-SGC?xpHvT)AGMD=L0>AU&KJR!$UZc3cq@(T=6A
znSbyiikH3DMa=Ur&!&@4jYcIu8jFm`%_63#ly03qYh#IpYNkH*sXiY|Hjp*yLNR?k
z7RdQtdK|x$(|o+v8*AN{0izpQeeyl>BO!_=0E{-jYFbH;?uQJ9anYk8kEn&viZkJJ
z`bmb7rFy;XVh9wxK#s|J9NRm6__g=t*X-k`O@>BF*Ap6TMNR>WT-U3$fa|YB9UC=!
z4(VBx&Iq);m5!o>aZsr4jDq<~Pj9TB-^&xW@AbyTOu6e?I9ghi<YG6eU3S%%b1zTd
zm8;W^ivhA`rRaAk@zw9osAG)!0xl^;uT#E20_=T-IqQQ|XR21LpVn%hrd!tCg_u}k
zuGi3h5WH0nNvBn7SX8Tl`##8jeK^Tl!@ZIXO;6W~7dY!!abIc<*N>jJ)Lf5>2<i^Y
zzFPCyGsIZ}6uceP^6S*0SM+Eq3!l4{smfp5Oa76P8E_TkbM`zW7GEyG_{nS@DWzDU
zr}Nd+u9n!txBN+8=k;dgfUAtum&&t;7PfY~qm(k5H&N%ES>+yF_m@(!k8>sg8_XtR
zIuyC@@fjI-F%8f~QodzghmYnMDy%<TOn$k_Q8jF`KYV$-Sm@koH)*u~sxOoOiRaS#
zTp<f07gnQNSY(<-jQN3a-v-O4$w!_NzkdL|fl5dHqI{H-$nBw`^g!a)e+S?3siB<=
zAAeq7+dbVjTgd0k=jE})wpPDX-p}=GafSC;!&|PfXy?sgT-?1lO4>Sd;`=unlvON|
zi<VwY0B=)|=kYI3^B=Ls`<lwL3?-cUqQn=mR)UfiE5EV_jr;1p4El)Obz%D*mij+7
zt-pw{kwkiHoNA46NJ>knW*d1A=044dt-h2+lWNWg1<TUlAa0%-j;9a|=+QYVG=q*T
z@n13ne%8eLZ{@zMn>-#E+#0_-Ev0xrf`^}oSf3%MoIS+UK@4zYZa4>h^EZl-2vVYT
zEg$``#2yayv~F2B;h#z~??yEsTPXDaUJH`Jm(hjW7iq=swIjfUcKEUY7dmfq(mQVl
zi0SaAXylKFG6F<U?OuwtYTN3j@2XoKV+Ug<2d_DJQ<f0Ob`ls#Ug6>3+HC|A_p0#>
zOt=d=dLNlcCQ#f5=_d6z$I-*Qhkdi;xxWywccRMDY-5(F)ZDUyOZiEQ#EHHxgEXDE
zwJ~madGWb4#s3uZ%SDOF^B0p}k3wE?B5KAw7G}0hf-BH)k^yEP6}0BK7^|h4d=Ax$
z3Q@%&^m16#NZI9PwK9q{Bu-${5UK4Fa6n(1N5?J+-PuHvoe&lQ_j*leFZyE4E(#a7
z4)re2Xgi4PpjZdpSK)C})&G7ogv+o}GdC*j_OQ>AM&WflC@@b{wV~W_MOOEC^)Z1c
zz*9nu@g}bFc0=}t{C=13i@gAdlZVq;0x`+dV*a)XH%S2#W`eI)3L{1EK5X54B{Sfl
z)a3E2W1-=v>VVirfD;srNx2oP+~n!vG4`FPf;!jZ$Cne`>TuV?vWi=cSmi#_iVt0-
zo=%?BTl`px=7j5?;GD{WQOP(vp^&o<zMh<~%ueXXGE$c|?`FSh9CZfVUVPU12*M@A
zMdaX?yj;z!={g-5Eu|~T@{Al+M8+Z)b+XA%HaB*~h=aKtCi8!`Y*C(PPT)rXYrpof
z`Jo$d8=Hzxt6`zoR{_|fRSYL)DylJVa5kr!9ygpGPr|InWJF(qqF^-5qeweGK8ZaQ
zj?YZC-XRH5%7iB1FD$s}7%gCu8^4vw8(MC6Xb)XV!q+#JIHwU+0^a%>Ppnmhp|HAs
zQ%7C3k@NIor>!n>5pkx<)UTA>+N1`~`Y^r_Bs_aLF4oW)HE{$eE(V;Rw|czdBLxu_
z&O~(!4U9W>Y!W%PZIbo|?zHcA+*(dd1pK&qak+gE6JAi_uV{VyFuc(9csJR}(pYu%
zj1&Kr5C7#x%x~dX18?rIzj!PZ)KDd4z00%y@`*_J?8ZpQQ<-}JhTGtzcQ7X4<mln~
z&ZMj3Y|+l%_bXmQxHxnxEP^PX@9A{qWrxMF%kGNbSt6E&cz<m#k#lxsDLlBg;}x%f
z8)kVPeFOBzqPQMq0)90CPHn||R`dPVRU8GNc|^#NtV5h?f_xnG4MNt`ic=C~;n1y3
zzF?$@KZn>Bn4<jw2Pt}7#z+e^NUB#j;bS0o@Udxnc?ONz$C$D4ii}f>;A1TLEud3f
zJ}&uq@41$u?WCkqI~%Wu9r;_V^X|mB*yCYpz~mSIgF&&o1F<g;A$)6)xubydWcL)|
zLblf*iM%!{V*`$JyM#NpFEtWXv?;Mzy`Gr69^7la`){i8H$B)%;-YxynjPBj?mR^v
zWc|;1UM~BQpEp$3v!M|T&Xkqxa<{ozerF;9w+&)<h4nvXwg_$9CmLDgXlIcH?bO&;
zBi{&muRi2iD}pd8*PykZ?QDmHRK|0jrs1)rd24tEy8QR~Lm|otaAbweH+O8JzWd#q
z4jG7R_j)4!OP+qRYPkn<>^p>8BJP@BUcSY%`5!RHo(Q>Jj;(IFDEjiQL2Fh!uYQo#
zemSZU%JmzKPK?&)j!<Y7y_y!UqIh-22Dy&FR3@th4HXCmIH+qeb23X7=^D3wgxTUx
z`XJ%Mpa-%$_%yyPcC)P8wQ=V;S77Dcf%L<_4ZBIxYZ6)1+)jxw$*@B+_wgfzcYkc>
z4?><^1zI@;H8Xy+2-s-nhs)Hi^ZU+)#{ftFQO!sr#1Oj;V<&>nqYw(O>)U`cZ6Q8v
zD)}crMsgNOx3wrHsE}LYj_h+U8$^#cY$z^5;U<Ad^o%dy`ir>qurLqTi|v<((s=Sp
zWfjT@fe2`N1j|relbHXcERB5DBnDUbs&j8ms{exL&qV`)bgc5h5EH+xfUXC}H;|us
z(F01aaq%<5TsqT-w?A4^e1F+#7d^jS_ZU<byVw?c4BlH+ARBB69vNqd)x<z1Z0?8e
zVZD8?1+u9{$3pF;(`Nx`?EQE(5zd*!7?-0yF}*|E2wL?$$?5d*SZ41cr+bQwGF|WK
z#TIq8von1ihIpv`iTl7qr)w{?<;(LNTkSh-eybGOiY(S2Qqd%k-N`nKTe6qj7ieQ*
zbA}o%FUD+P+v30zwlG`-npU3fw9j6IyCSR!c@wgq-|)x4g3rd8i?382DwXY{>0A1?
z4f=u7A*x%Sb!?TE2R=vJ%n#U^0y596sd}3&Y_~mpD@0ob-elHYhm}WLw|=1N#wnVZ
z`uOt9CHBJn<#vB6bl_*q{cOqdFW@S1?7)ESHhxq1@bZq9nfGYljZrLl_EYG~y->jO
z0)-N%?(4i69x|GzVq*M2NjOb;LgPN7M|Z64$|zjUG%|-Fvad1KndNX&?3thEAuG9$
zyFuIZexl>ql|?uo8>t>idh{9a=Via#01X{K%+1}+wp#79i`_5l#w;DuL=gnsr%ZpS
zuU>I%+msF10KZE?f`PZ=|I{?lS1RUd!pH2kU&*~d*{Z1mGDPs-mqq~2e~M;^z?CK?
zVbSo1d#5?Jq*ZFie5FTA!UwTB^PL*U;L<xpID7dv81N9g?pT0IHV6G*01ZI$zpaAB
zBjn4)cpMWM!^T80$Mtu-``)|XcTeKWc|+M)DOOyQ@ag>-P(QilVp^mOy85a;D%I7o
zq{K(hwtwagZ~E_l@va9SKX7)X-SWu9cu$oTLaXVqAj{mBAAT&LMLne<)t7wdb1&by
zef5RA1xQK)5`{AK#V`JL?-B|ldc<JEw)XIWlQVM*gINWYRbN>LhS{SHrco$F>zF|d
z=91siqqqQ(wN$R$9T<cR>OorUMiUj0%%xN&d4LB#_r-_a_Rf1ut*$1Y7*a)+b$!w?
zSvT^DblX|CCEkYyrx1~?|KU47_}MRf(JSS%IUCz#q^hWH{TWE7Y%hHFl%n(D#SOXo
zYp=eFTvxpl!wkb@0p-YcwD#`5zyIAI{_JEUx^B;9x88K)EjK^w+AFWvxnpZ1vQ&({
zYmP0MqID|GBs+R)MwFQ?=c{1Er`;F5=sPS6V4+OCt}qqus#@)W03qFV*^cXW@0{&~
zzAr^K3Ui((Pd#<z&dtU6X)#_$VHpRQ$QLuyl+SmqpOd2;J}F;>87fN7CC5Mlwa}X3
z-P`IaR3D2MQmiDNK*ktV74_m}$E0bPNR?Hr%gprTn5e1>fuVYKsrCDBf2TLKkf^2J
zF%ye>$@8v%#lQaU%XjUn)oLrP<^vBsdiVQ2y6lVqhAh{tVe^N7{LW|JddtquV<5Yc
z&Sg)r7usvdSL37YC$(I7-)HOQ>6d-you7U9u$M>~mWt(S8rhmbRPTs?^yvJ<2R<wJ
ze99WVY3~&;e$fl=xaH;>uDhmT14zT=fTxHqEG{iKJ5-w>=0Yl54eM1`?%^K)hSrfS
zqh5>eyzQ2cfAR4g{V~RSPoO7HKc&yTSw&!YXh~#V%ySMug4SR1_0@>geH)?VmRu+Z
zdgT>6-}^uRJ1Gg#pTFmxcYWxy#@0iab1p;L{=Gl=%`3NWVNwaJZk3`Og-{Rv^k+Wz
z<k_X##3lqCq0C#+|M(;S_J?2jeK9GB6|`f^#I;xKy5re5{qk@8;e4A!Gh#!`r{|aN
zyZ=kCdihI18yfr2@`RX%E64u8M;FnCBtk^;Q$P9RTgSjIgLkDKAqQ#{Sz^nPjmE~J
ziAf)g?K`>f_Pam)<G=7Lzwm}%{mR!4v^{$$$meAR(YeKy)VrPr8~|W?YGTXuv?0><
z&*u<XrXAb2=2%c=q2lS8IWK`dK_$rq<;u`rFe;atZlobrp~#k6z^dxKE1UXEG#1-N
z%{F3dATCK!X7}pFCym&Q#kL+tjW`-_#1oA;kTn$APW(Oh{yp26426L`mF&gOyYYu#
z_40ZYkufj?12SYR-*o-npZST`rO9#tBtfuI<0BvcROUC9ENU^~QdEW7w+=|rSMl{Z
zw~eoCv&>iR-2S_7`mcL;G<<i(rJc0f&bqBM>9{mg@1P(uMAmQ|M>RGvo3YyX)`yRs
z{i$F2jd%X_`&YV|2oy{Z1EVV9e7Vn(00!0LsBZ1R?Jef)ibc2sLLgAfylHYGJhi2k
z6*0G4ZB+@8t$?2b^a8DnftIqKw7$#|J(cV}iH36NTdr`Q<1cwG<0T(9Df5sl>3XjU
zs%BS(Z{X82XOEm-uyLG+b0+cK@B23|u3HN*QN&~|S&P`f66pDN-8tPbUL;tpvC&ue
zA3ZZOyP^HoK~9azSumwyOg`UY*PotW6yYHRQN8iXU2plVU-{|Reeaf<hg<QkD?Wv$
zP#;858O&tZSYsm-MYdMwxDiim`s4R}<gfnvp48`x0Swe@Q4~exLS`y&cpgirnv0_t
z5>yyyKk2HJge{@)YJlpW3l6RIiku6WSu28>8)?h*u8b-wJAv~R!UbU_7Z~#*#i~$n
zzOymsah3Tm5xBS%$Bv(fYK>gi0ANtec52Jk<xY30)mm&eS6ZEwc4wv2Ug@-(ofZgJ
zU9n3G9|=Iz%+D`uu<)Q#3#7*p>UB10)lFCHBmwuolK`$+-LYxnCtm;RSN*&1-GA`#
z=kNQ{r@!#!vrA1faa^ynS7Mgp?&i0fnAk+Mv3J~k?_GD^{+)N+8oo8rs2jst))b@w
zTHS6p%~UN7RcQhw-hcEHpZKm9y=d!1gDVxG087g&#i(nZI~ZdoCnpN~R0>Q~kz59b
z3NB-1N7_a}DN(>M*l>>Egf_KEUsb1pC>mNXWK6mIlZhy@b|if*MDr6TP6Yv@96%z1
zvH$76{5tt0b>4d+A|`dt6TsG(TD_ZbNoNYLxpPY!!;Fe;5fxCh*F+jh&o7RcmH&cV
zLs+&<y*Vk&001BWNkl<Z*1qkITb_IS&Hu-bzV_tlr;Z#xcKGnI{l`unKQrHPj!Z*9
z>K(J;qO(<>n0)tp-+$L_H`Ofzn4FxbN4DiW2{CbqL`y5}v-9(pZN35(f#Fa@wY|LW
zgCG5)zx><p{QLuN{N-QRzG)(8Mw5~%PCR)Ug|aV1M7@Z=eCKv!tcs_~gI4tRip5El
zbrKu#=2d#KmiU1VrY^a?26?pJCK=6f*-$VJr#oJ8cHx{d(39C@*mybfDm6_Lz!bj3
z=AeV~P)E#CY_!jk_PNC+(Ls1{wfh^UuS-Ow*TB|3t+Nqpi7v>Vv?Sa11daehx@D@d
zd1~)%&$@vC@BRGZ^4Iq5`<MG3`shD@Szx02n2jQUjExxe2lpL6aq7$sSM3Jr_*mo0
zUE2<vItQPssS$}X3(VvD_TPNnRR&cqC3T(L{r(UC$$LLi8=Lyl<Hz6hJ8%8vU;Mc}
zJ2r<~bZ)8j;G>VLjw5Vd7ZLU9{k3~`SL9!NT117mOaKn3*Le(UV^;y1`)is)3P7~f
z_@i=}Wrh2YZ?()5Mk+U=5a6Bf)7z@NL@7yqSXY{BoI$N2fqDoclqv+JI#?kDiA+2R
ziKH4>1fiS1?mD(lN1{|bDOLXm((~aJTN{TxIjE&kp_>*OF-9G$j}2Y6W%8vjeBK*>
z>1TfbjXxi=>nSpTh}pv)I({---+FAHcl#~Q6>E6_CbDt-cOU!IawkJYzpCrxeINSx
zpS<^DQEi-U6pu}Qao?%`{42kH{Ha+83Gn#AL#O7K%9KRBvSL%sUUStR&PQT{1bEn&
z+;dD?x~=}FZdj#l^cB;gzxD5sDDy2L*2)r8z>9k4o$6psP;?k{Vr(q0D$4jT3YQ^i
zyLKyUwOp%}wOX#-mTud3yP7%jLf(^0)g><Jq*=$gbX{s2Jy7}rMXKq7ll9CA5p3YH
zgy_NLmK{~739=oAzT^4N`FAgS;l2O#P-uQIf#EXoXXh5Y!jh2UwrAg%ec<C1$HayV
z|Nqs!d6;EqSugqy-&(u&uA!@{=P?7B69@^A5XKNDMUen1Gm-;%u7IE-cvKY8gTuK8
z9~3=YAE)E>0A5bigF)0d5tYM~izFBVnFo?|y1Ki%hFyDD-}k=vk8fDt+Iv@ZXF$F6
z<bm$$s$IL*de{5C!*4)DW^?QPOE-SyrWZf!vb3Q6#y4;O=<j`8VTwQr1<0T=cODzO
z_ve23SKj}gJ-c^*`Y->sXw9U1YHdX@e99%~&P{hT4*a2^B?*vft^nECLOy7#feYsI
z4&8*ZhA2P^pyFb35mo1$6E7@1_KifkbH}{6iVUZBFz9dm%KP4V)`8vqp>^V%6A@Q~
ze8B^-)QMBkYB;c}dv@=nE&YE)wTe=;#;aaw)4pXaY)oT<g3+_^5kp8(K{u-E_y5Ny
zAA0!ce|Y0-4({1$C~=fTbE|FuL~1ddar!}|n*yE~6~L1ET!jV@fG#}myxp_>;POUi
zx*#?xT9DzH#b5ockDY$n!E+AoLjX{E;sxh_@MnJXeZTnYl`WBtI3YF$i~CpHJKz6*
zzVOOt|HD7uZQ5;QFJz~#>RY?<;ul_tpdx}u-W0(n!dea1BU?nQbL!Vllf}?9LOyH$
zlthymB963T0(4&G1cJ$oiiG-!07`?R-Y?epN5eWd91dU-)Rq*UaQY!T>~qly_fDLu
zTU%W@<G>{;#j0~L9)ookB6;I$5eo`Lw3WaRXm?nB<(6-NnJSDa44a}@?NzEt>|gTE
z8=^be=!EW39D1T+MgHoupa0!!ufP6_w_fv(pZdc;{?z@)mMaxhuaT9BrXi?QJ*!{1
z@h0ZvI1);+T{{*jE`aCfW`5wcuhd~LR+@^4fV?)OpZbOWdh;E34gnpAqCDs6PyLnm
zzk9w7q5=r)t?|G-yoMjU?sLkm(2|G6nO<<(?x$RQVY-~Y#Hkl*nu=f*R8erE&IOc^
zh_!Z@{a1-tRZ+DnRzyZcSmSEiV=bLX?Q9vpfB|OOZ4oCbniNJ&>*%rLv7GSFttg0q
z1BBC0J5W-sJu9lr?dv}M_iMdDyuE%`%!Zj5kidbSSYLCl0=3M{L4)@sAFCU7W2ghi
zR?AAMUsZMEGU?k*y3<bOQTKbIaML&M{Ka4WEiUI&X+z+{zxByK`Sjns@l{t}@zhIp
z?N}_y0H{O%^lNXRpZbfxzTr!^w&v!&k|hc#05cujzlXp97yvb(FMR&9KmJF5y0jra
z2_uq!G`@9w@U|cSg}1!%70-FrGxshoBE#iRx#UB?@SlF=*M8^jBWt2aMimv5R2`ra
zkc(vxfqUKey=<mkPAGd4g9_ul#^P`O;fr_Qdp`v(B6<K?(C73k7fSGT5j(u<%IECc
zvm>B)m?bN16~KuT86Ex`h3$(A;w)(0A(rjgPhbDpi!ZuxW~zwiA@%#c&h#`W?Ao#Y
zic8P`{4L*7EkjpG^!57>|KYWtddq8GQ5g2N?HGI_p>N>}U%u%>ANufn-u;eeU3Lj0
zpNfSd5t)LRu`pyxHjD++Ky~6CFF^2g)Us#v;M*EB?0fiQtLwk{yMHJ=T@)oT3uvb-
zj`j3IzjrPD&L^ID&S@84c;3Ffd)n<O=iJiLu^T>j<1Kf7t35l<MS+N@V(pL-o_O~D
z)AsF2Kv+b#V|MnZ-utc}`I-OfhJ?s!nArdTQsGSJH~;&me&=I<cG20V@7=#=er~qY
znK}Kev+p?kWillIdW$qKJ0ha!*K2P0@~bX?;d7sD&|9*kCQg~iFcXBsPyBGU)&A=*
z{LA&9yUACFse{2}Z4wpMDrZTh+E~Bj(o6U4+2wIq#EeP=q~Przh)sz};WP{AefxF~
zHrA&)GoI(bQ&Tim-td*%dcXARFMi$?)6>({aB%a@H}74Xf6c4DR}l%_E3ba(-+%E}
zhzzqqgt9CE;N#c*!_twZtH0+vPv5_{GgT^Jx7WMp{s;f;GuMCWFaE(4t@nQ5S3mHd
z-tmIxJky+l{0Vx4EF>moP`_A{5urki^1Y;rVkW>5A0hDEiGJ*luKnt*4*()Fs=xGH
zA^>6m-1?V0mu~vzLta~hn2{Kf%+zdnPCSKJ1fja-b>G`5jjD@)Ixq;&xb#Us`S#cU
z@<;!OT5}){NIWkPs8w(&Dqp?h$W3=H0V)y!pef2+{W;dNAi@mp%ma%*{DW_7w~Vio
z#?j(Vtaqmm^8+GmwLF+O_Op5G7bc^s%1EqMiV~ST^{2K8P*0p!MD)&C+R(EE0X=Z=
zz~W3{#i=+9IgpX@%U{3u3pd>X;KWuq?7jDgULPQ`U@yJoiQoT{=ltd8zNSR=z6a<t
z|9JDK|Nh3kyB7ECToBbG$4?wvUK62mdO@VBhVcGh`skoHc*%>dD(ECWpiZo)7KBI<
zvy^qcnLk0Dl?Wc&htJYae$qudX4JWXvlc|qhh_*~03vRcrrk1AEh<W2MrI;L4>=I4
z>ckDNe!(*?zw}91uPy+Q6^Ie9{>~Tu^gCXU)f%XP3W!4$)DWapAR0nuK=$S5MEM~C
zRn_Ga-P`ZFPyAS`L0SY6vDQ~bE*T0XfwwT9ii5uT)A6_TJ*^dIReecLX{4nRwix1^
zwPP$7MTCXv&a1C}iK_<W#k*C}!&MOq!(~ylTBQ&sbTA=Lm*(wn`GNBf?EtZ=E{)^~
z$&~G*E4^FpeCXD@9zMF<7ckxp1wfG05r5#n{KlXBuRlZ7$=yBHnKU#f7%>P6TccOZ
z$U&IqW~Uxig!tSmo_5w*Px#C0|K<~)`s=m6C>MTCjYNoE))DJ{m#RYLw_74sL94;W
z%U^K$Td#S2$-aFuzC9#w^a@}IUiRYWFU&9e@<)F6$VwN9K*1D+0wFOFL6m<_8}VfI
zs$ObAohSgA<-Yv*Fa73Ey!BPz^@8V8h7(sHLS-grT{RpKTEFS5Jr7j;%}k5u&@+T`
zUMpK6imm$A`w9UdVl^1_og*@csLt8J#<1VF&KUw##>fyw6-IdF)!+S<n{K)3?jt~K
zh>0iw2ZHmh4*ET3D}Nmc2m!Xw&wk)1f8>K7`i(E%au1o7iUR=R0x6(+!>fycfH-Tb
z{;=N@J9y=HKmUc#ziLwyWLOR(f}h?5oodWX8^!~{zZ(DS`+s(`J@95Kos*CY(rHg!
z^u!CE|C}p!Zfieq|GgXifv-%xm=YlXLU2NjV`)MdZmjK^F+cJ4H@)`zUN+M<;rR#3
zRZ~5yfJhG<*n7q0mui3I>)*UhRE+U*I^ykR(R){^H+~XCGzcISsE7iABC=N^sFZH_
z^37QF&pP|8R#`F<`1b{P%WZdj;pT6!|4Yzmm%xca@3Br8ZAyX%TdbTxfI-Q*m%Zfq
zdv+``;GnV}|Kq<9WkU8c_2BH@-SaPg(UpYWRuoe!Cjgyx=aP#rdf@Kc?|tY9850DQ
z!_W>v)m6i1Uw-k0=bwk!0%vxnec5GCVHy0(*S}F!7P;U8iNorWkO-NOP?<sPpnJxi
zh4;PZov(Y<E9R%Cw;Ww6AP%iQaOAitTct6E4G|tWe0b378Dp5)6vj7|9?;Cp%w|)z
z@gpjy5Y-Tn>gjv7zv<Plc*S>r=dHKh`NbQ*a>M`r()|yg=qs`*(G(Q=DM8VK<btyf
zedkrLeCFj(*}kn!=wpH=J^_M=>Ja4gecRvtjvu`GrQdzS=RW_p|M;Z`mrf`c01_1d
zjLMPXtSt!6IJEbLS6*??J@@?8=WYU1LXB-vi^WGi@#(wnx%<8EeA~|1>D2SJ3%=y+
z14U7aQ@|j7>-`m?|AM5Yif`VDj3*~LTLD=VZMRBNZ&XcBI`5zrDhxA&9a;d{zi*d{
z!?M-9d*mOy)A#TG<q!PSUw`&<e|+8bcYN#N%BcW4YYCxc_~LU9o%Mt>GB9A6HtpCp
z^MlvC?nN(r!QcMfXRrUe&n>SHopYkW0*Me+?R1MTz4)A~p7ZplKKV)8w@q`?g>|yH
zgTin)6jAbHnal}CGhqIR&>>bC+9A5~sEQz>G3JzGOY4P<hKJWFtZnp<9$#5nI(GEv
z(Y3X8>l_<1H#@s;_s%_gcJ0_cUoe3<jOcRk%yXnkKR|*ww1S8_gpFSR@R6klA3XfP
z;iZ+;)wQ)XMx5?+W@ly(9XxQ_!F_vn?`V}~qd)xZKlr2n@#!0=?D&_mY7t~G=<8tP
zU9WrDe|*#H<FHnp2CrZh^%%LDbQPck@p&T*Xp@9J5Vh(UnbV9{(Si4D1VnIF02GNB
zRmp1tVOla{G-Uu00UT8B#L7x{qc^Oq02F00Gd(juJKZU0MD-=bmU9k}dV|5z((xll
zj~-uM84iZVnAy46-Me<|SX`K&on}gdS%#B1s)Hijclg*h?mav;Jv&vFQ>_*;-2BzA
ztR6ewYPHI;oSJHtt)eW;vMdW@ilQjXq7JEsf&C*6sqwu;l2b<wmpvFuP{5l&^jjlM
zC%2yb^(X4m2J=>b3<a(CdN0?j+$aC+GavbbKUHpf^$QXh4%c4%v<rXwJ?~nWX+_(h
zhE?g-zq?|Zkxs~~<BX+oli<mUa9AtIQNZYlAF_I<jjg_SOnyh|_|S3F&6DT=stDlC
zx8J+8(ra~Qrb;u_Y9Yhd{`o5_$Cg{IR;yLET4mWPTCG-56s6&!D2k#mTN45w9aA(C
z6O!K&MuxSHj1^P2f2vLklSe7yE4I`<jf_HC46l8~cWvK3|G^LcUSEs~xN7k1C!h5b
z?|%EXnKEJqaQyWr-h<I68&CD!PV}>zK<#Nd=X!!ejV0V{I+(p$?GO~EZgpGn2oeNh
z<>c6jRWhZg`2^ZYQ^RuPDMZAHq^rkEC!_}LV%-!_u&ip{kjJJ5O9)KBNQ{2<kZj}p
zPbV@U-|^fl{>#t3YoSyf_Md##-uL~)k1Wo$0dsF6+(PT;5f+#DsGf~YzBr7zbSr4`
zSiA<^am7=0Mrn+%K>;3KIyP|515E3b8STLu#*nosq0*_GHSqX;1duX~OvN6%#;||H
z^8#N104Zo10$g$Ng&+RKpStQPXaB;_zGv6`G@&6d2_k}9ew<>sY$1yG_?-Zc6nXmy
zX4lbIL^p=j?e`rn$|=Lf5HKo|ckQK2Z5tb)EFwihYi(|^CnCO<A|hkVqj*679e#L{
zpcm&x<jQJkNWFTe!vBAN$5YWLeB>`GqFPz_>aDk*=vA$$cB|EDl|{j9%F+qk`1$`m
z*yy%eQ>|9nnramV7lp6TO;MCZQ5wYBj&ZYv%p=wY`uBI~eRrnF2v8P&>Bjn)$cz6T
z9+k&C7a~;Z)_eAAU%#toT`|=ui_(vvh=`aJz*;vVH82v~M#o0w$vbTe0K+EOML3nB
zb@I31slD(d7W7G8%!@XlYAvjUBX!fi_A_&8wARP^`i&ov8(3!2qxE!41)vgn@W}Ev
z@3;@SUA8)9Q5eHsu^pL+$pd>L>ld*RPhk}{@n}OpQ9$eY-(yv4l2r@H$Hs(y5?H_C
zEY=Vy#7Q@Jr0g0+4rZQsBR{D5<1ly&#=Qh(wStbgnIUY=slw)MY7!f8%&Bd{AM3F~
zq%CC#_xe_6>#!|s;zpD)FtX7!l}=+4Avj)9C5DBFbO(cDD{BuNKDxFsC|aGOD9R#a
zC}Y@9#sOg1>kkHlsiI7**W9Mo|JjVR%6>fvpp~`vK5)c}q`gk9A~gDIYmyF1w_Qgr
z1m-l8XpkHb#Qq^^T5EcWbZ(tlUwIva<3w&$tu<EHjOjx9p-w~QBE(nn-D^C~b*4rf
z$$y!|M3Q=n#01re$5L$Obt2A|04I{c5$jp2YIdUFgpkL~{&(EdG|R*hgAa&=*1F+f
zSXl>1#ARn@))+R13>U`u9ZT4^fa>z`;}HEz@^&QuFyliPK)+xui=tfbRU#BL!Lyzw
zjY*Qt@<`LxG(N;E+JX(B&l<^wUbD-wiMeP{!Ap-GM&^NxReqqs;5~C*#zcfCtx?O0
zk)xb`1ZbiHYfeH>3}TFec8T$#4fGh+nCtw&(WKas33SFt5Y35QnJI1Z_l({~T0gT9
z4qMYs!?r#m335g4ERN%HUHk<y)GDW@fRPZvQwfR4FYlNGO_h)U^q#x#E=@tTYWIYu
z*yMBb_|C}VFm~_QHe6a6I)<chp#Dy#6$Oq?-VsJ*2pi98oy7!#6*<<%?(rKoQ%KQV
ziq)H$Cz@QmY3V0=gii=xrO?d6_#qm#V<H4nf}?w_QKI$j%O^2mdPs<kT;;!Aqi9cz
zq!DIw9Q}9>xWB$58gX?hB^=f4pUC}+-BtKzq|BN+ePd?bn%yr2K#vmh$RHwO#+08B
zu^?VrTH09e8V=UR$xF62ccfTLjn0S_2tZH_!Opqq<K2N%@(Q@QqS=VQPYOqvY?NJp
zNd(;_I(;rjfe~4u0fHZS<eB1seN2VF(*!S<Fr14r!K$cDBy`#l)%g=grdsjs2-G2i
z+W5V6^i)J7jF?ZX^*J;<`a(#>?K6txua^~<u~EeoQX@9D;mX(52sAt+G}9KY_2}|5
zE5BkK&={D6x_yW+At4S1{jc48bHN-kn2)NlEQPhLiU!>p^|uq06rD(`fZ0yjubk8)
z<|xApjYl@TU&S$uOjdJX{6a7NqqWdM*lyJUmudl302IvSqQiJM15Ij8G_P9>s!IoK
zs9j*Q42(wxVhwN$;JRqE9u`K}s7)p<NffhXWgY_c6WFL7k~~bhsJS9^!?wn6L&r`4
ztU394mEg0WQY{&yLLoM3>@2L4O%(bFq-#Pd2>ZSMjbHlGpx0w$HhFzjn`TplDH=?_
zPd<f?jTs}f8A))UY8AB>t02s72xXy>9a6Q<<w)18wM}Vy{5&QpT9?LaCjPon5+skw
zD<j^iGBnEi5M(1uEeu%-)mz(#dzSSSb&Z%26tJ$XG<3k3r?^jmsNr$JS}HAWIx(#w
z8*_e*GLsq+7??+DT}n4(h=@kOj~X9Q)J6~M1?a#NtUTSh-h<WDy4adD&h_wy6;M>v
zEiWIx`KFtO{Xt<&1Vzz=s0tDxIe~p#x*L&@42cq`v%|sADgha0j*nNkv~fBg1l2^<
zdP{@Ycn~o~`%F~;<zZ!Ah#jh*3IBBfqM`yK9{n0R&3gI~R8NA}x2UTDqnXUh$Y_KS
ze8%>~CJ~pmoT}=gxj_AkK{{@L0GUV$MP1NYRLK)hu9;iAo2M}{MBy`q2z5zZ`C!Wu
zeocQpi89Gjpt{e~$P*;ZlvU$RO-C(S=bQ>E5Gs)}ArV<;{fnp6-8=!~F)8Xq`u)Mt
zrK1nrfB&%8EqrPsB4!W8GljQw!I6~J==dgh(R)RA1VtUH7OGWmeWO2IUOq7x46G9;
zfzztuf_g>7m=JO(y+OT#xrzq7Fn}Q4b?>*1tgHhSg(>_MbmF|-O;uGAG}OKDxT<RK
zsRZ&0mRRFU>dq`gc$98V>BqkfBw{vIHSG8MDk_jjNhq2iW$MKFB<a+J6E$9YAztqd
zjVaL6I<t3Bi=8QeZwJ)t$piqqqSl31l9yG@Ck&py)i}`e913;FN)YISthGq0NIng#
zSc`TzOYX(bdd5u2z*LD-1g~yIL}8|ZK*?<rBm2U6-zZ|HR#B4Y4srZ2R1}3VrXH+k
zChVq0|0s+nRp+HTn2eaRP;r6^gH{1*3x{ISf?5?vBqEI9!hlIZ9n__xQqVAsx0%ct
z2liS#y1Zd4_89~%k)k3an5p1=<20|;!s+0-n}OFFU_j9dH5?-%NytoH+;1Y11)#En
zX0YDv2I;#f5#+Cc_|_{_B3PSdAUYt+#eK3y<f}kwWcH|ss)$K3I9X@v$iW{ADMSIK
zG;2k`05psxg+!fyjlD`ehR}L=70W6T!jvqT_@J%6`+3i3vDnIiMI|q5g|Pul>@gWB
zv9Ty3KPb!;{E_ElC@@ZqF~-E~L<v!2V!<$Jc^>93#LQ*%H$lYKR7(+@bz;R@YhCaW
z0TG*bFS*w2$mfwn^_(*f-u>|Ll|iM%Ajq2Fjgh{is6iXRYR)TwW@X$MjQBx7Vj!Vw
zPN)H(>`b?2=DPiXIPtG22vQr+QxslIeJBB-AoY}>QVnWjkmkQ}>a9V6MNz}+)zjU^
zNI3Lk3L4a!B%7XxFNr~?0217r0$^4eQrsHb2$WdjqOFwpG~0X2OP)I8`iKg|K!NX-
z%5cc=Rij|v7+VzQ1^&awkO_iwML?j3txbOL<?UW`KZ7--OThp_2}rH7C8|OqEX-`2
zb6)IA#AP<aBjc|858i{k6usck?t6|bFAqeN#uphFt*R8%T05+qQ+27L)Os<3W4ng*
zn^-5&!lR}U8&kAeQ|rCHbK-B6qu9wx94{iqI$8n10a#@<2E0dJ){kK$v4o;M){?Bv
zwMhNH>ZL<TgXnZ<L{h;GbwtO>R)i({(%X;o6hTlWh|__JP|5p;gEu|v;#uf1S|K82
zW#YU+i(D0KwtICvQ8=t(sg@@yGDV%G!r2!C&(vdY9bGSCdj1fRlmJPoD5=#dtT;g@
zB+O_Xxp1xtCwO+UfXG3NwN5An-T~qnd$-HO%j*>YGKA+l{Dz`wcmt*=%9dCs!>aN@
zi-1WLDpUyR6bMhauLYe`AfNKW<1YR=nVsqM`U5Kphz8=3A*eMBEtF^e)eI0C1~fq(
zJDfjh?BP|?K{V87`6j6`GLHhY>AZ|sb&wH(vS4zWY7?qwdkJM2o!Qh0A&A-?Yb$Sl
z?xhPfKx=^wA%S1}GS?#|%7;pnjVqJ;Ly}PAJW=^tDplnskbNmlKAQ`frUQ>gR)q6p
zBT`^QgrX=~BEsG_(y@q(0u}iImqt~Zk>Mb;6d1n)O2Bgt?7i#Z<7*ax7*&GoJdub*
z50Y@hN`N-BMbuW#IVX^L_dyWBj0H#d7b&%0Ip0_M(p5qH+hNgZQ}nH~&Jm^(1=H*>
z(`{8pR0&bhQZ%t?OH~6V#dr^ckAuv{TqRK2Q^(+?jG-|<##kWM>&}rGQX1OCVOc~}
z3JR#&Jsaz9x%{FXFyLWdnShCq5sBmWHzlhOR}|-)zQb>xfuUayUk^y3#Y?+n|8kRe
zd?WkC;N=1!==JSmCC6%vDMXb;ojB)Q7E%evCz2X1jY>Ni`Pnya-j%{x!+7rgUH2SW
zUUPt8Y8nvKNv`?!2->Ksm9v$#-hoj^Av#`v7ZuTx4N)1jB^1!9vZ{i%TWI}213~ih
zIyrHK-XB>A$bcyXv!(!|1V5@Oh*O6_&rYHd9%jW~p0*pitn6%zgjGnXEbWao_Ig@l
zD7>~G5ZLXj$KP<t*?Zc`ZlEO-8H()O(6JdNu0=t^J~+@m1514r&Z_aOq!3c|VV9kE
zlS67Es0y>=oDd8W8!FU*sIrFA+)ofx1(HEUTJonYM0N;z1#l5@A`V&92%f!f$9>1w
z)~X;wp5gi->G))SLj^TZv=N7uwbqJ=#HChh*Zl#}BJ4YV4w6O=F-h7Y0~zBrcsP0{
z<wv$C00;x2GPDZC0w_Cbqf3Eb#8%=Ux^hds3dJ#imga=Gk&vo)@L3s=ue4o_=T}uh
z0<<u<zWkQUp18jwWGgO835?gs+ccDC7ymh8A|xb@v+{HZ2J2Lxn$q$mL=ZOqZ!}Ad
z1Eoh-e%aiG3B8g!`xA+j$mg3FQYZl6oC6mx7G#i*7+d0{!<-XRWg{X^)QFzFf5%-9
zFRxah-c&R9sn*5<J}29^jq$HGbk2J;)=!1MJVj}T*6$(|(F?XfK>KSL<A8GHq+<xI
zm>LuW6_pJ#l&xUKI3mod0HA~6P?#W&-_kHsn^M?uw2}!HYvL@AwkeH`lg8)6001BW
zNkl<ZeEcWLcFZINs@pSMebdvQbfD#EPyv(18y<=tM&JG$j$;5X7S0^fPpY6|rJjZe
zBS~wd6ia`tQJs_ayOYUA{*yjKGKcYQm|sgQ4p3Cp7=s#m9?71?B<SxHRn-uKK|g`=
zU<<2o_MXMNmsVCPFQJ1YLxHrS$gC4UKnaiwQvmr%sdFw=A%0^;R00iEJvqmFu!ON_
zn9D2GE6JJx8h;8BDk?D<H3oo!U~23}{gGy^b!;THfT1j>gpo@%s^q7h)<c|_5u32H
zd{LU#>L8$s0w74vZSNg@+tV)CGo@8`Rm%dA&?g{_r4N(g(GO(Ir`{=~h&V}RO=NcX
z02+z5Mo4V|m7g$H2pu3sMt``rp{LV&SnbzWoH^^J7Epj=?S(;nPE}P4=ZwhNdlzpz
zyt1l9WYQ9*zL;4&`M*&O07U~_mW6K&opYfWKx(zPvQB{nl)ODc>`8s#PzJv7UZPPf
zT0y~~k}{J4Hll<SHfT_<zG+xhzzosWC}|VNph*^q2oi9YY5pD{E?M3R88ib`X^v@7
zP;dYM;<k5>z3UlI+{;7g^_f~gpea<?mr%qe4k>+`=0}vqZ@}1><sQ31F+Yuj)OdJ}
zj2=cqYBM3>@pQ$h7eNBbO(78!Ol|OoN@KZuq?90)=mqLO;Sj;O4%##K%-_DW(gk4T
zfF#3gi`#^EWwOs<)nSOaC{%Sg96DzKu{6v8L#5^<TjNYx(+FB4jw)?>AfP6Q(IBA$
zAtj#(kC(!3e^7a6l?b8M0H#VSm$VA^F5p@E(Rx{2qf-EqPg4V}sfwbiNS4qI7Edg_
z{plC(rh)5kC>cK-&xS}8&%3xv36msZW+Y%@B15q{A3;Hl50XdddlT7+lgsmwFdF%5
zLFBBheR$J`2%@Hm)_&g;<0*xNWY7x{AwnV~tFx%*>|D5Gd94?gs5KTBYOF#N0g4Uu
zun)MlF-~1&orrc?T=lIs1u9d%!y1Vjq6;%aBt#))Kvwqtdfq`K-0q=u14Lm1nVpz#
z^%W@ZKtudc7#-9odP(D_ktiBN%lak+D-b)oeE9#k^!)uTaDy&Vft2d!FzIfDluuQL
zDGUO9ATecA0LpBS$3ti2Gvid3(Ye$q^H61WdYZ7`uPUuynntG99-T1;*K6#=yn<A4
zL<SOXqe4i?;3|W9?#{W}kF58>0CQt3t~oHdjw?#_NrY|yf<ZDxDWd3P-KtfOcT5-*
zfpG2-WL`7@u$S@%vY%KxP$g7C4pMyT0K0Y|L`fh$I+J5&X;g2pL;h+C(rbn)93eA=
zI1F<x7oyd{_LU=Vd+Pc7rW6MoNCm~+S!2vyhg3NCjA3GkAUZ-nQ9v3$(Kbs|n^6dx
z5WLMfha<`mfya+-X1Xk^V!hjQBHqBNUKC^xC61APu%@Age`ODA^g>htGVK%z(M>xz
zclX>K$GTl0BCb(Xgqq{go85VYMEM0-911X$MX?R(_{PxXASz%C&dBOv4smnWL{OoE
zpeO<mkWoTGKoCJ%>s8`4)==X)ia{4Y;0ZnKBqDqj6Z0ZMoE819+aKFCvL8Jr9rLlL
zB8uC-w*0osF4%8|WGhATB?!cN9GIBVFfx%LHf+)&g&3KAax(RDrXHD3IMK$#Yr>={
z`x<j9q{?QN3V$sMnwx8HYz(W)C3BqInK)#r%s3UBqtrZP#ly&gS9bVd5JP(Q&bhmf
zcQ=4sC<6m!ARZ}%Ibahrj0q%gbyzR8TdjF8#|J$ZF>g4+-oaG9XfsR|5XB}DMf4Dz
z{?J+kWr|E6sL?nH2n?>KNkxgqdOhg%u|=UlKJaH8<QEM@K@@GZtGD{YPdj%XxvCl>
zk@p`0k3S(|W;ARVnT?6q0UuBPKO|x@L_9JAm>5zyRd|cTE>Ak<R1Ui)&b6j$6i9P3
z?f#(J=vRJuQh)u3ITS*M=fMdts~Uyv>klDCb>#Hy9W%EdU0Z`P@KQAD(uMObZhSLR
zQBY&Sgr*JB?`6x(QG2c1vk@(j!Gf`FDq~&kUrRweFd`sB5CG8%^c^@%a1%`DEl3z>
zktnKD^b*+-b504PN}8nj{Ss1hj8w!wselu3iniL`UH+jbowd(c>8~N7BIR@NIEC`8
zsXC;XDIIx)g|E0q@>8w%(#$=1z-<;%`K_c=ucGQ*ntI`7|5rEF;@O!t5sHWdb*KWP
zE-NEPvLbpsiLXmMj)wu$0y4mH3TDHF!D)iC7H4O`CA<{^kr(;ZQRYva)Da*jz?mXB
zC8uhwodtW@p*gMkLnlK52j~JgBxv}1H)17HB0;o(L#qR8ovQ|eLBARf236&xJLo%*
zXe}9Csr>s>K@kwa-rA3xyYQwx1#hh5z@iO+Vg=F~C(VGKFcKVh5I8=(3ZSTh>Tu9+
zKYafWo`3L+j=J8uAQ5mJ=ujR~VG8AY9YSU_#+Ob^$SI!2M@{4Pcph`(|C+>r@*Dk#
z%kw7iQ~V*uB(pP9z5ZY@umE9vJRZU+h3Z762LXz&Xh=sD``iranTs=bE^n+WI|?@>
z_ZtpwElGnVjOo2`HK>4y3>8h)eg1iSp1gnOt`h&BuRSC*<83qvBg$4IFj7E3t-??p
zfSBRNPOUDH-aWnk%JjC%TCu^Rj56j4B7itW1u|vT{qc+TzU_sVIxGCKzxurgy3(2#
z$~F=sRH6|Eboh0IEa<?_96$VyOU^lS3WnVifL@C;Zto&Mz%ZL4gq0!m^*D2A>-?iS
zaVB1Gb;nBbk=f*C1Izl99Amegy2eAA+lYcFkOEc1YJH;*#4r}xzMsZObsHlOHXwW9
z^P*k@&Wd%FR03-bZ$Gxa24xNx$qG2q9MA7jouDFMoeac5zx%u=?7ZTPy$H}({mXy3
z=QDRKxv6aeuJAnuVLa*l3|1;<rRrb0jbD83fdkuTD&@P6ul~koZn*A*Y!n?NBczB7
z#C|sg0OEwKD{TKg=Pdm2cRYPohXnYL#h?4{fAaCe>SpG(DAbVmxP~~~1Mr;Oz$Nf7
zV-%;>(y;0rf9QwK-hcLDiw9k0QshQn^2eQ_2;Mb@$z;ghxYzR~6y){O#8z(n^P3I8
z$8}lw{qKMOqm@I+PeVi{1Tc)PR%wUUrP)+G4{G}@tXVxHl%=tAy6(Ar!DUoBWwG8H
z4v{tF71E^3MNqfykzk4nPEkeC4zD_E=hIK$W1vDsMt5-6b`iaOsVkI_-{?zgQBaUd
z)LDDQBE8{?i%u)0BW{jx|IF0o7e3*x+wS~^<&c~*P)H#DiGBOIJAU*#o<6O8AOMva
zqfb5m{N+1tyLm&fXaOn(tpIG|Gvgx1Lm3>9y6Kgp@4Vo&v*rv9yFg6DfJj-ac;$jn
ziL?KcF`<6)%i;7Njh|=}XW})IriphMIY8=+5Y^uwtCW5mN>RexGvVB9r(G5(s!qMx
z*0@l|c#ze!ob=mbV!m>$F=3A7?8WJh4n@@>y0GqwgMh}|0zG_IKu8Byp1FA0p<M<+
zfs_Q)y2>sO`V|2PYu1f=e55FdIPR~#=!s`7xFLBL5I4YTxX0iRz33TpYsVo8*pE<P
zE4lHm!#6FhD0d1qe%E+t+WhBhUh(>!2*V)=s#wU^OpOCTRE4c0(fPF#Z$JOg8FK|y
z17?GSny60{(~|L{r}$@%^Krx!Pt1Pl2U`oWrJ^eJtrOh_$HOZFb3J|<P84h^l+ewz
z%em<(1QprZi4@15fSN^=6^U`5P_zurQFYEjd)f}YDJKGh5-6qRYbIoYD9EDoW%0y=
zdkh3;Botg7nqU6Yzx&&Jy8@-6YaF<dN&uh-I=ruA3bBa5p(k`kh8OJLacKvsXA>YQ
z@}bmI{J*%WKlb6@zxnXt3YC!xWK`MN;cH%UWzjp1)~R=mYig|2TI%9dZD;l2|9I~1
z^X3f=SAa<YkxiOsn))Mkb{zjoq0{ku8RGn6ZZ<U-`TTg7mluDV$&J$E6;GkztfBt4
zRp7$5>7t-)^%77-IbS{gH!^7kFQ7|#R1q^06$O{Hjpdx}Go>9s1ZLHMy=;oF3J#$n
zUh3P=-Foj(4Fr1_=oIGCvkt7RJUnm%5vKtlfN@Y74Zw?%fP^T(_Yi<V3``O2oS9Z8
zr2Ode78w;(4tg7x9@w>aW|q}4p#oXNJC1ih^zlC*wq}(H93~Tl9D1c7AcCTEE35B5
z@AM015PItX1$$rx5+ZR*N!gK?2%GGY1W2)XngAIXA2MyR=bac&;ouupywJxjOEsbk
zNR?E9QMb*s+f&9lE2<J)p}qV{+&61bVF<{bCLT856?j@12QV4VvYfkprnG%0qG6qk
z0-5(pGQ<TCGxhnUjlciKy*8Q>mLM;E^7(Ig;=$!3-|AOtm7S7PwBp~6Z|m{FjozyB
z8JL9#xg;uxTMw=Gzj|at4Mz}z2FnR?V1)-8Z#>xkr8j^7>D$_d3kO&M-L~BSkzfDV
zUu+mHjE53O%zu2>BH)y)BPVkwj=k-yy=Qi$>UAxkB6<QG5~g#Ff(cdRXNE)0gENUJ
zm^5Hy-fn>=m?)Hxe|{64i=1p2_Y{x1Jl|S_EmXQ72wE1VD2w56IHFlTQO&d|Ffd`6
zgtcj+wnXOI<x00_k(5cG2BB-so%bdMV4=8otylHdPTR2vD2iI3p0RsJVf$aW_i#Bi
z6A;nyA}N4FUAL}n`{(T2#m-`(z$(V9O8Fbt{nKBp70@z56n<M!sD^3>ywQE#9`pV;
zzVtwcJ!_r_?>x5g-v9Q=&&oF2ZbMOe<ztLbl!sBFI1oW+XI78D^W44X%wScm0GLS3
zh&7Qv;EHC73Prk4QN~x|+(cb&F=U!ti%gmqj11Ew;=dmKf4f4;v&y3QnlfUmEUmLn
zq!uO_|4wX*Er-^v4!>mLg+PjctR?E))YNKkI0VwXv#iCfJXytqY57~Ly?(E|Z|C+F
z0wEVDXYbqFw!JUi^Psk;8KXwKe;QOA6n7n8l|g^^uI)<bOmY88_3QuZhTptrwQ6_7
z%bNJ?Di#Kg`rX%TgP-|<@7dcy159WH;G0X`AN}p?{#x3$Xv5SLu+eBK99Ku)!Anr=
z!piZtoxS(0S*?Z}089W#wY^im503GaDypz=Au8+PXLAIV&kkU7t?UsO5byOkZa1Ha
zy44}|=;u;fj;x#~HjM&W0Qy7i_6CuTj<mV^w5qy9Y|>aTOTe}}5i8C*Yn`i{t~>Mf
zV;k$-QUv2WHX>gh34#cSf^%A_8#wKE*PeZF_Noidm<@bR830}T<y$`b&kxLQ-_<V4
zg3yqcC&Ws`fnvWm?|Nr#pI$n0^s{#@-P4)tl~c%mfUo4xf<V7V-L+RN^3PxM(nHf^
zpkQzcblZ{jAO3IG-cT%PYf24=s=S^XcxyEQrzmc2ZS}2Z?zm{7<+{s4q@V=k&#%zp
z6_nO?i9#NTP^5^4sNT0Qj`OP~z@8><bvKhM9$o6?8YG?<`}l@blrr=?&q>`ivJ+h0
z=sE!fpZz!WuCOZkS&kYTNL5eEvCdg%MVxiC;`r91>l<81F#8BZJVEe~coC_@4IB)u
z_WP^PIWYUei_V+@N2ug@1NGV)Z~f?3?w;AXzl}v{{9%R;zzI0#h6+d5*Y8|DHY^GN
zLgvsKii%XOs_@v#%XZigzWMvkoMs|KAgA^l4|jk3x3Bvw&e={&iNO~)xqg~A78C$i
z&8{uK<;-0d&l}rY10`Vu-=k0s#f<sMFmq89etDM(T{MSJ7~~HoR!-yRT^=+iIq$NQ
zgfd_p=;L2YiC=Lw6kqc}1Asx8DvUa{R_e4lvPn!;Wq!ct-u98R0SE|;AOyP5Zmq6w
z43Tp|%Y=cz1PTUFEbd)8!RpS~zQCw}WKhrEyNfqgzIfMzFg@+J*uEMQ1OXi)tcorT
z9Wo<RTwtrHm4R)o9KU*AfBvoC`-Hhxfeb)a^y?3=|Jbj6;vaCED~*-~k_qtY8Z{;;
zqUy+1Q_Dx*bYSk%owGPtS15vdSmH{hf~nv<OEI&LG@>vZ&$q~_@!JfXIdN#752d!~
z5Tn{-JzDdurpGO$>arg-skSw4K4v`vNLd&|G_cl1%<V*XpZxjA<1e2+#6hbXl(}}f
z+8gu~gYP3~aQX~iN=fPjc<PR$Yo!cN+df|aD5?Q>=Ar#%)%(Xg?x*%Nq92n2h*}UQ
z+7(&uZzvIZaZM0)R))i3ZS|Eqil2YWE6<oM3QzzTs=NKj+PgmT$$u&r+}t#_+M)l4
zOgmVE3>Mm9aqRG0PTzUS?pf-shiR+l6-2kYxJOU(IW7v$|25A~G*&;2pLbh?)W`sH
z;yhCWmp&*-<jZ^WIG%R^I;O6MO@>;26iQjpLeW|8_J+<XF^v@GV*tPe;q(5WfpZ$z
zEkPH54)mg3+irPy<%F;!Lnv75CVDM0Wdg&VCOG@&cOO^O=bv-HfJ2~plvh9FNksb5
zuRP#(A8aETRRWDpS|WZ#sQ}`@sdX0DPJI8K>7RSUcOGgpA*iAS_~t|F@A<7i{wJD-
z*;zFVOrt_3s-S|-g1D*UN8b8`-A`JWrrt(GAw!}Vcv%ZJY?z2sAw?ekOKdW1@K|%F
z6F@1O;WNjl&G|5MQzs^A^yT`v9DMOjNa%)fE23$>9|QnKZIuNf4l4)Il`nsZ(Z?k!
zS7Md}fdGO)9}++TZu@L!b*(!@lP{>eK~aw0QUnX-ZA-@u*u9I3h7^zrfV21SnUUe=
z@4C-)W*wm4iVMI%b*Z}%v^&I!v%G%dbvs)hc;ib?n=S~-3Pl8OJ-qVn5C7q3VNPe~
zV5);;AR6>VAhUo9s-mmftH-a|zwnfObH;8EQg8vJdgW`3XC=hl9S63HsaL{=xdG8k
zX^AEsTRv8{#%fLs#1VF6k_p5Nr-t~L557#9M|1MoNhhLlp{xK<7N#_&s)nL9FFUa&
zDISZBj-&Z=YE=XTR4vracczc6bq4?pj5QHTo8S>e0OHmyODjgJgWG3IMI>rLb>6|f
zi==;d+kG<C5m2XufEMxLjdc+~Yjrq;?&@oH6hHr_s}FSyAdspBcgI7kKl+jXd4t*J
zIy2Os0cH>2O^*pFs9F#pwVn0jZ$7a7lD)G<zl%zWB)*)EdIQD~$90Q`)D^}9e<NeK
z2Ch&pwwb!=JU&L)3R~=3nh(Eb&u^~1SPO2W)^!y<9_O88BZEikY7)>ch0$#@Q>7sg
z5tUH^op@U3^N27}4OJ+Sw@#z5e(zv)?qa)D^{rZm{x!p@1`!xN+>Z<2p_|Tiw=RA5
zj)%Lb2#&zafWGpn=e_eO2iFhZv0+_LbtrD=2(4me-O$0>>dP18eQ$W_!44rRLZzs8
zAM3y8x30Ybr)6dqI&Gm^G&U7~f=W(ErM<EC1ABK|vU3i5T?LOxj1-r&t}9HDmcm}p
zfXJVK=-WTyaSD087TaVZHSqu$cc9D$(mLXWG4i=w_4lzKd}HPmj}XO>kl%>VDho!e
zDw~(=$#4NiDnyEM6XT~OBC2bl&Q7&XZ1e_6FDFaw4Y~~>Q2W*gmKF>gTAXJDB{d*V
z*t5H1dw>7UyP-29L_MM7t1I9vbyu$5$sf4p6=%&(5qgHJx%*i6y&w6+^{{B$9c`6h
z7>RN8XQ?;#Zf~r<`M|cz_RmRgnSd2hJuk9GX0pdU6#-M1@Z(H162Xk%Rl=VqtyvnB
z@n*Uju{Is)^`gXD?%o(^Ml@+8@#sUUF3BI0y$&|S7t|TXR#`f6L68NSNjP)7sF?wn
z#gi|t6o?oAra(Ha*71#viVP$#?g-e5G7J9i0;ag-!DDkRI<Pox{E>+6oCEu|>F~36
zerwR0v*Ol{u9!jpHG7H=T=P9=&M+g8GJxKDeB;MH`p19eI#pRhQD9L-3D;Q0g`t{|
z*qQE$w;ot{+U_art`M*U{#`&^n0mXyrZC175dh^k=bQ!$9`&1vV|XFmOvH06o+kEv
zBjc#Ceo(V?6_yJVOR=ywdUPQb$z=|(p@Q@n0xOAtDI=6+3qWk;JZCc9nSkS^#D$90
zA%@x<lj6As>6a39VWx9@y*mJ-nyYsx)Fo`F*@TK)zjb7Gig(V>7!XBhDV%+1-%hfB
z^^H4wiq(l@uineQ@Wz*&Hf;<LAUTjbj&1zJM?Ucx>DbORlr1RBAaGc}Wfc{2j?}fg
zYj55+|Fk`G&|MV;LDcxPhs+ad@Gydklqr9%N197G?;<M!YU#0w@l->!GY%3oy`ndX
zCm&LjNRycq$K;#-=t4>n^Oeiv<pLHGwwFOI4V!|8RW%~p4_KQZjPik?k%!ewY$3E2
z<~ywu>l;I0$?e@W7M9t1u}8&M?>jnG$lk?S1IPp|br<g6yUq5l|JpZRzGv!#*S!3+
zPU%PMqVA5P-JkyTPksirRnr|POEm_vg#dcNT2*o)3a#}M|6$+UGY&4ejUy^7eu0M>
z;@40LrmV$76ZpaP{HY#6jU7N+aPGE-|KjBImidUpb7KpyIrFG8l!KrE80XXYczO*c
z9&pLHux)z1HyjKs#ZCbR5&7;yA+!A&xh_~k6Gen0LkkOCwDxJcXTJQ<+6qhs>3dHv
z44hOjeyBmzVji|<uf6G8hKnmt-&3FiEKrB9d)6hhMxS}{1qa)KXrQXMA0PhYZ(RH5
zw$$ksno`MN@@q=WbW{)lH<(&J{<?kBm+hI6)g=`bLIsTR<Rze(xZbx!;4k^A%-2~&
zhLDk<A-B?ur-{h8@osJe|1^%vYYr5XmBGodO{c!&3!+P?kDs6RmL-3ttuUyx+v`hk
zDyB$?1DK??kVHEq?U<dj)>?rT!LK~nU8R;3l$1bS)RL+|D$&Yn<=ntJ>7Kaesb^eq
z+AaohV9`kzp$%kMK??=A`^3gOfAwS6<D9hHTDH_Mj9}7KQ54joQ$F_48xG7}amKE4
zZ6)!*G~!n|lf=k^sbE8f!4Lr&qI#+cl+6oZQ*7PD5qZKCq{x$K<TQDUR}=J_{tp2o
zKKdifDF+jL`y**nUPD;|o2m8np>;9>FyD+7G;-~XF=%xb+>>@s|Gy8eu0z`^zShiQ
zMMhErFag0goL&6*P4^XqPd%`MP?TK<3@Ulxzyqt*&;0Inf5VHeGY!Tlv!^X&V`TvV
zR0~zbYb&qb)q3W^9lUx%$#~tH)TV{~ouQ;B9?4PxZHGX}CZIQ(!2F46qp@ori?F<Y
zO1@bLlbN6Oz;W_+Ul6f5?a@;|_#~j9{#8Eei9C?Uo)Y1<*{N=?>JMyP2sL3no6%vJ
z834gZ>10mqrF-VSy0o@VZ9%^$kyM-+1f^jAB?#5j?Eih^okM}A9okXQ08|yNh#uaM
z_y56lpIlXFm0B2LlXQb>rBelPPSs6qth{zd@vJj<nvHcWSVaLDk~U#IgrYn}dG1E=
zEh9p%6?-58w8lefv#L2i3iDDu6`d0^Mo`(CR4(UGsuAnKtq(rUyhi+yC#PJD>mx7T
zw=gNLUu|Gzt=ktRKa_?<TvAXBIXou`CaGf)vCb<I>#7w0{P6lQY<V|{c<B&8Eua$>
z(Mo0L#8y^&tFOQ0&=sfcEYvx~`&N7J`@jC@wS#Hf=^%&mE~#<{Mvz(%Kvxy(Ctkn1
z^}N&eQ1^rbbV0qBgPd;!t1xja#>vF_I5CFF6EZPvF|<U5iF1L?_Q9jo)i`uEJ{1V#
zSji^hD1rSmw&p3+Phmc;r$}meEcMe#zpOMgKRaC-L~$yThOL_+WSV*bAp<O+K6&@H
zZL&dD)FKI|U9M-O5u)*UTVrf{{`bFh$ITBObI1?%><9nwx=*eeH$9_8DFx>{iIn|8
z95`2QtiEAy=c<Fdp}Q(T5~mf3^phZTrZA0<#w0Vu)26T|z=`MD)?FSnMG407kEc?T
z)DmsAR<xcxO94nQ*lBnRZ1ux33Jg5*thRNQN>efF4XSQ$pu`$h5CEh8nWG<m+3T#J
zm7&53;2R%YKB`l})DjT@98zFCiCEQvxS`Xb9d?G@H$45^KmFT(`n7K^+t!TEOal`j
zqGV(@@fIb5ZrEB|`TiaBqO<qW+OiW8^rEo@LCKeWa?0>38N`6t6Jb2R#h;I`Ifs*A
zlv+MMm)dL%3}XiL>8}Jh>T)=?!%aI0^3ZBLDNq<)l-7})Ot5wEZb{sGj9Ch5Gf||<
z>gw7?6`uRJ+}WHI?}gUIiL+j@T~9dr(&3dQodQ%sgP;yE5yY%&rBaCwEr`11%KqhT
z_Y7%Dji0w-R3r`40+0%vlC5~<$oJ0|FFI$p>2^WUA_`}s&Y{1nsZtR_9_?SzU{bpu
zbLSk*#P$5>Bwfzdnq%=|Wt*)D^T@IIYZ6;^%eApaKNLuVS@^g9sE1Do0JdOV+}4>Y
zP+bMl7-BQNN4f!V--<*q&+d}l^V7ELL@lxaCCyh=K~Pd)gp#CSrgF-*JJ2%d>!&cd
z4vjR5ptC5>bXQ(IKlOsM_Uih&068M%D6#4(oneI+Mo_7QiuF_N^osc$a}(Sg-~`!{
z&4_!O?1md@C<zWs0z^(|3Deq76CQGWlo|Ds<<x7Y@gw}()Co2)eW*yfZKm8dGezQH
zi~>7Ojc+>aut8YB>hiq{^R6duC@C8&<WN#VU;u*z#6S$lz?5W+>PAMewYvK1?d>bi
zJpda=kr{{tgCuJ%5S{D$#x=2L=@m(zZX#c5Tv2ng_3#Mfck_MAD2{FH3j{!LvuSoy
z{csfA5`9gg|J$S%Z0m5DC@b~t$W~!17quALEweD+F`Q{#BIQ>(!O{X<m&mU@s3^)3
zcNO-see*L_*SShk?vJJ(o@!zc3nZ*_HrAQn3-hZjdnaDIr!2_yEdT%tBuPX;RQ<d|
z^JeWRQ(FKX0B~($kg`!To+#!g^nNcBH4C-?&B2I~aPyxMJ~O@Hc#CTr9Nc8$u=QXf
zfSqfrUl_+rX<P<703Dmk<F_IG=m-{P%NQE5&43)x!vx!A%65xT1*7X-ekr{kTKEr;
zL*^jErYLyP$mRRz+rtejULGpY*a?t836V)nt-qf=vku5PbWm)pzjmQ><-zULJ)uZ0
z+Ia@g4MsMU{%gpK5ivv1&*aJCPn+qFXL)E;g*?~E$SzlGB2eq&QoRKYj_-pvt+;}r
zO&v+m@+Kp&PgWp#{A!@h7M71OO!EVtP^a6)+{_fIkO)q~Sz}W+E}Vc|Ofl~*-1E-Z
zxgdQM=QLQH5+H*&<RL%+XR|dUqNuOoTI(lXv%PrU=?lDem^|1Q2{KrCrh$=<3L>yz
zjN-CcJv4DHkZSaiOtV@2G_jCqj*B5k3{HI7v2oH(8jU`}%yH7W#l(!gMdf(Xh0K=k
zB)c4nsA5>Q&9#joufZ_!y`?pNtZ1+-s8tlZOm*d<g?Z_zbDsJKssvuZ5L6thU~LB{
zDgxqK{ngj+nR@Y|MYDE{gcS`0tAnvfYEU{&D#^Wa1~(~F<AbP)&moQlQ(ioc)lax}
z2b2Bl<S?iu5SoFN0++_{bd6zwPWpH(+qz8vE%ew9&8Aot0HVxJw`SWVsgqz4kAmPl
zH!r!YA~J-LCNd)<5-gy5)}h6D?SZoj=sY_HLD8E}7Ft6k99e7Dj=p+(`Mg8hb@hY*
zJ2F8HnW$hU1~$khVxgD}p&>L3hQavBI2z^xGmC`iu?Q5^J_s=VHJrPm{xeahWV9Hc
z2y5{oC|)C#WaJ1>gFqR(s-qWPqnd-%wUhv<u$rV!p2_Jx4vXH$zB3*HX`K2yi!&N2
zOERXj+8tOcN}S@>N3kEsc^C{4kpf3~>K!<E=Ap%Zx_^0D$kq^jR3u~y(%S;)wAfgA
z)egRD-#ndIazx@0gPG$7F{E5%3ge;iQL`rs9n|$ZHD=<I0GT6o_r%6_oQpSU7QMwS
z!-;29ZDN4Qg-}z}AO!<3Z;v1t>(Osp`~O(Obkfcpw;H_y5+D;U%uaRM1*l7oraJcQ
zdW)VUGh~o=l3aP(&IRousExB;iK;QE3Qk(<%dehuFF0dY(OUz+KyFFJQS-<vOkwib
zK@`oPz{R7nF#&8*KTM2_alIa#q?nr0+aoP(G^!1be+@<lNN;<J5n`bE!TNaM2p%!;
zZUiPZsm06BJ82p+XV(!J)Bv#OYE8Gy{7j1xM7$xTO7!gz1kcC9z?q@ou|m2C!)NZ_
zF*{sWv4Rf4fug7YDmq)NpZMMddf{37TN@h+D4yKx$vO<atuux)8H^xCPRxF5j5#<n
zJ~H7XQboY6`<SiqDwAt@J!!VrEFU#C5YlAGM154RT&X}BN1aF>VlYwr>=6alsFKwq
zDZCzaeYVAW9QlWWX?|{csxaVP;`6~Q)q^WS42%K8Y-k4$pLJ;0wrVI2MTym+ICNCl
z!Rz)+zx2%AQ-iL0T6~y#Q({OZ`ld0aC<+s8T)d`O&cCA?Hck!k_Aw~j#NKUO4`cH~
zO;4pn8EF;s$<xG}<>edVfe4iH)5QCF>QS|sEZ^faiKx?6Vkg#o*GX+ltiv+#WYBHX
zo%xv#;-tJirVGl1QwH`H?%9VH=Uf*+OkqT*81!DXU|xFe?v8Xbia{nOHVP?7<MITM
zGWom!n!|CJL}eLIJpNlI>Z?pRA~%upIq6*<>F)$;mzy*tjoQ1LOwS)RWMxuLI{6H<
zF|R+R?`@ujUWz5r(G@|x`(k}WHhd*OS_Lo8%@m9xE{VNjbBCBj9Fa|nbzkY8d&bV~
zGAJr*x@#}rVP1LO&TYLF!jg&oVVPVxvoIoNie&Ssff&(r6dvt5Ic<HwO~et5#uKQ2
z)mp65>q{nkK^UjLXtS0`;Zy%{q(aR=Kwh~NlR1k2q!}AVZ<>T2VZPC=kGYg=R3BYx
z3?$?leOGfxF-!6gsAqxWp-5@~7iT*g{c3%qN5rXi3yTZ?WD1~P?12ivE~%b%U}5Fn
zhrerHUvuI9ZQT`%>=~Uzz7MD7Xp<63Gt}!|mnULYf|qM{*qsz9kXqmoLAqqK*-$5l
z?zb32WYP;l^Fl!b5I#1~#B2l@ZXRLgDHx|XP6nqw7uY<ibPF8j#13}r$QwD-Hu;&D
zoLa|l^*RQzini3?5^u{oU0v^0R)K=3CIrD_kAzWCan7lgp$x6)QeOrGyUq4gY-MHW
ztW$N8*Z`1#zgg!8#uOaaKlvClKfhoTp^NcZz&LI*8!Dt%kcM%vj8KP9e&PUtG}%w}
zA3O^L0SI$F`?P2`q7y|{0XFdoc`UG}$52;IWS{11N8F@^jMmpM`a}Y#VO-cYv(_DK
z^ag$-te{@DHtt+VRmA{F!9%xTtSAb%oFgG;9HIz_H@PMv-~e%A@=OH3+9NOM$rJtW
z#@jd8#OH1#o<@uD29-bhfoX6Q$qIAa^7+rOzY}jC22-wpsL{q2(7zc2x#9QbuXVD6
z@05zIEx+-k&8?0(JkS;gb@sd^0-#N+)A;Ksg3NV_l5u6d7Y24os0aWRga|-MQ4Jd?
zEm%Mh6*9mGC_-V}6)J6Sf{>*vlkb1FsKHNq?vI02>H{%R_#s1(h}RW^Xy7$Iz#P5!
z+O+nC<bCL^>Z2gMQjikB$ga&_+SKd%EpySgAFnbYh{v8M%+7f_<simU$Qoj^p^>u0
z#rfIQwXSulb+zl6+X!Jut$<#Z*ej_M68R-y2+js1tClt#S5`T7$jZc=G+{T4W8F<7
z*__fbqgx~>|AK@-P@9$Egfx(ou1*?M|Jom8Tz#seO6inkj5KH<HZTi12LIB+$m0A=
zuQy!V7)Vx3_z5OZ$ZbJYjSwA$a^8h3m1^e^>9Fy5+PaS$Uq+3bce%bwbX}Vqc`+qF
z4tK+gfsMRYeQ;>4sgITGBPLi@Fzo>SHwd9Evwa2^Q_2_Hn;m?Uw6Dfn1a0!s5CE;k
z<<<4d`2}-$c)gupU~Y+X;`|(5M4U=KjEI?uw}3sJw0;@~rcRh=#(78MxAT+tjIp_8
znjr8JYABMWC><d&sDohQ8hh$|>=J8smoVj(>yJpvVRM-EZyQph;nm1bxOHMn+@5j&
z-PF0H`<H<pL6lZjHa7Z0AVTCca`Rh4D^65Y)Va9c@g0CdChWvp$J1u{X=EilZUS9L
z|JYr^S_$J6`znOMY)MDAP6G0V4o<NST#RQc>ZnM)>Gy|IQ!R`n%YWsX>6AYN;u`6s
zr*q0c-m7sup0dt-(s}`aQ5LsNO|{JOYS(#bG^kBA83C0P#lsoW&><U{;yBoMi-r!y
zDCgtvdGd&1^0Iu?MD8Syafm^!aYCu#^_SkakIk96CWG<jdJz%-KN}hLv^Ng+82|tP
M07*qoM6N<$f;^CP_W%F@

literal 0
HcmV?d00001

diff --git a/vendor/modernc.org/sqlite/sqlite.go b/vendor/modernc.org/sqlite/sqlite.go
index a785c6af9..1af3eea7b 100644
--- a/vendor/modernc.org/sqlite/sqlite.go
+++ b/vendor/modernc.org/sqlite/sqlite.go
@@ -18,6 +18,7 @@ import (
 	"net/url"
 	"reflect"
 	"runtime"
+	"sort"
 	"strconv"
 	"strings"
 	"sync"
@@ -819,7 +820,25 @@ func applyQueryParams(c *conn, query string) error {
 		return err
 	}
 
+	var a []string
 	for _, v := range q["_pragma"] {
+		a = append(a, v)
+	}
+	// Push 'busy_timeout' first, the rest in lexicographic order, case insenstive.
+	// See https://gitlab.com/cznic/sqlite/-/issues/198#note_2233423463 for
+	// discussion.
+	sort.Slice(a, func(i, j int) bool {
+		x, y := strings.TrimSpace(strings.ToLower(a[i])), strings.TrimSpace(strings.ToLower(a[j]))
+		if strings.HasPrefix(x, "busy_timeout") {
+			return true
+		}
+		if strings.HasPrefix(y, "busy_timeout") {
+			return false
+		}
+
+		return x < y
+	})
+	for _, v := range a {
 		cmd := "pragma " + v
 		_, err := c.exec(context.Background(), cmd, nil)
 		if err != nil {
@@ -1390,6 +1409,27 @@ func (c *conn) closeV2(db uintptr) error {
 	return nil
 }
 
+// ResetSession is called prior to executing a query on the connection if the
+// connection has been used before. If the driver returns ErrBadConn the
+// connection is discarded.
+func (c *conn) ResetSession(ctx context.Context) error {
+	if !c.usable() {
+		return driver.ErrBadConn
+	}
+
+	return nil
+}
+
+// IsValid is called prior to placing the connection into the connection pool.
+// The connection will be discarded if false is returned.
+func (c *conn) IsValid() bool {
+	return c.usable()
+}
+
+func (c *conn) usable() bool {
+	return c.db != 0 && sqlite3.Xsqlite3_is_interrupted(c.tls, c.db) == 0
+}
+
 // FunctionImpl describes an [application-defined SQL function]. If Scalar is
 // set, it is treated as a scalar function; otherwise, it is treated as an
 // aggregate function using MakeAggregate.
diff --git a/vendor/modules.txt b/vendor/modules.txt
index 3c925770e..ed9a35bd1 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -1341,8 +1341,8 @@ modernc.org/mathutil
 # modernc.org/memory v1.8.0
 ## explicit; go 1.18
 modernc.org/memory
-# modernc.org/sqlite v0.0.0-00010101000000-000000000000 => gitlab.com/NyaaaWhatsUpDoc/sqlite v1.33.1-concurrency-workaround
-## explicit; go 1.20
+# modernc.org/sqlite v0.0.0-00010101000000-000000000000 => gitlab.com/NyaaaWhatsUpDoc/sqlite v1.34.2-concurrency-workaround
+## explicit; go 1.21
 modernc.org/sqlite
 modernc.org/sqlite/lib
 # modernc.org/strutil v1.2.0
@@ -1355,7 +1355,7 @@ modernc.org/token
 ## explicit; go 1.19
 mvdan.cc/xurls/v2
 # github.com/go-swagger/go-swagger => github.com/superseriousbusiness/go-swagger v0.31.0-gts-go1.23-fix
-# modernc.org/sqlite => gitlab.com/NyaaaWhatsUpDoc/sqlite v1.33.1-concurrency-workaround
+# modernc.org/sqlite => gitlab.com/NyaaaWhatsUpDoc/sqlite v1.34.2-concurrency-workaround
 # go.opentelemetry.io/otel => go.opentelemetry.io/otel v1.29.0
 # go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc => go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.29.0
 # go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp => go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp v1.29.0

From 3e18d97a6eb2a823af952392f1dd344abbe0addf Mon Sep 17 00:00:00 2001
From: kim <89579420+NyaaaWhatsUpDoc@users.noreply.github.com>
Date: Wed, 4 Dec 2024 09:35:48 +0000
Subject: [PATCH 26/26] [feature] unending polls (#3592)

* adds support for unending polls to be created locally

* remove unused argument
---
 internal/db/bundb/poll.go            |  5 +-
 internal/processing/status/create.go | 74 ++++++++++++++++++----------
 internal/typeutils/internaltoas.go   |  4 +-
 3 files changed, 53 insertions(+), 30 deletions(-)

diff --git a/internal/db/bundb/poll.go b/internal/db/bundb/poll.go
index b9384774b..e8c3e7e54 100644
--- a/internal/db/bundb/poll.go
+++ b/internal/db/bundb/poll.go
@@ -88,12 +88,15 @@ func (p *pollDB) getPoll(ctx context.Context, lookup string, dbQuery func(*gtsmo
 func (p *pollDB) GetOpenPolls(ctx context.Context) ([]*gtsmodel.Poll, error) {
 	var pollIDs []string
 
-	// Select all polls with unset `closed_at` time.
+	// Select all polls with:
+	// - UNSET `closed_at`
+	// - SET   `expires_at`
 	if err := p.db.NewSelect().
 		Table("polls").
 		Column("polls.id").
 		Join("JOIN ? ON ? = ?", bun.Ident("statuses"), bun.Ident("polls.id"), bun.Ident("statuses.poll_id")).
 		Where("? = true", bun.Ident("statuses.local")).
+		Where("? IS NOT NULL", bun.Ident("polls.expires_at")).
 		Where("? IS NULL", bun.Ident("polls.closed_at")).
 		Scan(ctx, &pollIDs); err != nil {
 		return nil, err
diff --git a/internal/processing/status/create.go b/internal/processing/status/create.go
index ef8f8aa56..340cf9ff3 100644
--- a/internal/processing/status/create.go
+++ b/internal/processing/status/create.go
@@ -85,25 +85,8 @@ func (p *Processor) Create(
 		PendingApproval: util.Ptr(false),
 	}
 
-	if form.Poll != nil {
-		// Update the status AS type to "Question".
-		status.ActivityStreamsType = ap.ActivityQuestion
-
-		// Create new poll for status from form.
-		secs := time.Duration(form.Poll.ExpiresIn)
-		status.Poll = &gtsmodel.Poll{
-			ID:         id.NewULID(),
-			Multiple:   &form.Poll.Multiple,
-			HideCounts: &form.Poll.HideTotals,
-			Options:    form.Poll.Options,
-			StatusID:   statusID,
-			Status:     status,
-			ExpiresAt:  now.Add(secs * time.Second),
-		}
-
-		// Set poll ID on the status.
-		status.PollID = status.Poll.ID
-	}
+	// Process any attached poll.
+	p.processPoll(status, form.Poll)
 
 	// Check + attach in-reply-to status.
 	if errWithCode := p.processInReplyTo(ctx,
@@ -153,6 +136,14 @@ func (p *Processor) Create(
 		return nil, gtserror.NewErrorInternalError(err)
 	}
 
+	if status.Poll != nil && !status.Poll.ExpiresAt.IsZero() {
+		// Now that the status is inserted, and side effects queued,
+		// attempt to schedule an expiry handler for the status poll.
+		if err := p.polls.ScheduleExpiry(ctx, status.Poll); err != nil {
+			log.Errorf(ctx, "error scheduling poll expiry: %v", err)
+		}
+	}
+
 	// send it back to the client API worker for async side-effects.
 	p.state.Workers.Client.Queue.Push(&messages.FromClientAPI{
 		APObjectType:   ap.ObjectNote,
@@ -161,14 +152,6 @@ func (p *Processor) Create(
 		Origin:         requester,
 	})
 
-	if status.Poll != nil {
-		// Now that the status is inserted, and side effects queued,
-		// attempt to schedule an expiry handler for the status poll.
-		if err := p.polls.ScheduleExpiry(ctx, status.Poll); err != nil {
-			log.Errorf(ctx, "error scheduling poll expiry: %v", err)
-		}
-	}
-
 	// If the new status replies to a status that
 	// replies to us, use our reply as an implicit
 	// accept of any pending interaction.
@@ -189,6 +172,43 @@ func (p *Processor) Create(
 	return p.c.GetAPIStatus(ctx, requester, status)
 }
 
+func (p *Processor) processPoll(status *gtsmodel.Status, poll *apimodel.PollRequest) {
+	if poll == nil {
+		// No poll set.
+		// Nothing to do.
+		return
+	}
+
+	var expiresAt time.Time
+
+	// Now will have been set
+	// as the status creation.
+	now := status.CreatedAt
+
+	// Update the status AS type to "Question".
+	status.ActivityStreamsType = ap.ActivityQuestion
+
+	// Set an expiry time if one given.
+	if in := poll.ExpiresIn; in > 0 {
+		expiresIn := time.Duration(in)
+		expiresAt = now.Add(expiresIn * time.Second)
+	}
+
+	// Create new poll for status.
+	status.Poll = &gtsmodel.Poll{
+		ID:         id.NewULID(),
+		Multiple:   &poll.Multiple,
+		HideCounts: &poll.HideTotals,
+		Options:    poll.Options,
+		StatusID:   status.ID,
+		Status:     status,
+		ExpiresAt:  expiresAt,
+	}
+
+	// Set poll ID on the status.
+	status.PollID = status.Poll.ID
+}
+
 func (p *Processor) processInReplyTo(ctx context.Context, requester *gtsmodel.Account, status *gtsmodel.Status, inReplyToID string) gtserror.WithCode {
 	if inReplyToID == "" {
 		// Not a reply.
diff --git a/internal/typeutils/internaltoas.go b/internal/typeutils/internaltoas.go
index a81e5d2c0..d46ce64e2 100644
--- a/internal/typeutils/internaltoas.go
+++ b/internal/typeutils/internaltoas.go
@@ -444,7 +444,7 @@ func (c *Converter) StatusToAS(ctx context.Context, s *gtsmodel.Status) (ap.Stat
 		poll := streams.NewActivityStreamsQuestion()
 
 		// Add required status poll data to AS Question.
-		if err := c.addPollToAS(ctx, s.Poll, poll); err != nil {
+		if err := c.addPollToAS(s.Poll, poll); err != nil {
 			return nil, gtserror.Newf("error converting poll: %w", err)
 		}
 
@@ -708,7 +708,7 @@ func (c *Converter) StatusToAS(ctx context.Context, s *gtsmodel.Status) (ap.Stat
 	return status, nil
 }
 
-func (c *Converter) addPollToAS(ctx context.Context, poll *gtsmodel.Poll, dst ap.Pollable) error {
+func (c *Converter) addPollToAS(poll *gtsmodel.Poll, dst ap.Pollable) error {
 	var optionsProp interface {
 		// the minimum interface for appending AS Notes
 		// to an AS type options property of some kind.