From a0d20d71a57db8786a3ad50cf4edbbfc00e4f22b Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Fri, 29 Mar 2024 13:19:04 +0900
Subject: [PATCH 01/65] docs: add missing SECURITY to v4.4.7

---
 CHANGELOG.md | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 4f9393d2b215..36c47ff5e99a 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -3,6 +3,18 @@
 ## [v4.4.7](https://github.com/codeigniter4/CodeIgniter4/tree/v4.4.7) (2024-03-29)
 [Full Changelog](https://github.com/codeigniter4/CodeIgniter4/compare/v4.4.6...v4.4.7)
 
+### SECURITY
+
+* **Language:** *Language class DoS Vulnerability* was fixed. See the
+  [Security advisory](https://github.com/codeigniter4/CodeIgniter4/security/advisories/GHSA-39fp-mqmm-gxj6)
+  for more information.
+* **URI Security:** The feature to check if URIs do not contain not permitted
+  strings has been added. This check is equivalent to the URI Security found in
+  CodeIgniter 3. This is enabled by default, but upgraded users need to add
+  a setting to enable it.
+* **Filters:** A bug where URI paths processed by Filters were not URL-decoded
+  has been fixed.
+
 ### Breaking Changes
 * fix: Time::difference() DST bug by @kenjis in https://github.com/codeigniter4/CodeIgniter4/pull/8661
 

From b9179a97c07f3bce19cf6984d306b2554556d33d Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Fri, 29 Mar 2024 13:58:46 +0900
Subject: [PATCH 02/65] docs: add changelog and upgrade for v4.4.8

---
 user_guide_src/source/changelogs/index.rst    |  1 +
 user_guide_src/source/changelogs/v4.4.8.rst   | 35 ++++++++++++
 .../source/installation/upgrade_448.rst       | 54 +++++++++++++++++++
 .../source/installation/upgrading.rst         |  1 +
 4 files changed, 91 insertions(+)
 create mode 100644 user_guide_src/source/changelogs/v4.4.8.rst
 create mode 100644 user_guide_src/source/installation/upgrade_448.rst

diff --git a/user_guide_src/source/changelogs/index.rst b/user_guide_src/source/changelogs/index.rst
index 6d5e51f49210..0f18260929b1 100644
--- a/user_guide_src/source/changelogs/index.rst
+++ b/user_guide_src/source/changelogs/index.rst
@@ -12,6 +12,7 @@ See all the changes.
 .. toctree::
     :titlesonly:
 
+    v4.4.8
     v4.4.7
     v4.4.6
     v4.4.5
diff --git a/user_guide_src/source/changelogs/v4.4.8.rst b/user_guide_src/source/changelogs/v4.4.8.rst
new file mode 100644
index 000000000000..5e3eb3d16908
--- /dev/null
+++ b/user_guide_src/source/changelogs/v4.4.8.rst
@@ -0,0 +1,35 @@
+#############
+Version 4.4.8
+#############
+
+Release Date: Unreleased
+
+**4.4.8 release of CodeIgniter4**
+
+.. contents::
+    :local:
+    :depth: 3
+
+********
+BREAKING
+********
+
+***************
+Message Changes
+***************
+
+*******
+Changes
+*******
+
+************
+Deprecations
+************
+
+**********
+Bugs Fixed
+**********
+
+See the repo's
+`CHANGELOG.md <https://github.com/codeigniter4/CodeIgniter4/blob/develop/CHANGELOG.md>`_
+for a complete list of bugs fixed.
diff --git a/user_guide_src/source/installation/upgrade_448.rst b/user_guide_src/source/installation/upgrade_448.rst
new file mode 100644
index 000000000000..580a1ba8edab
--- /dev/null
+++ b/user_guide_src/source/installation/upgrade_448.rst
@@ -0,0 +1,54 @@
+#############################
+Upgrading from 4.4.7 to 4.4.8
+#############################
+
+Please refer to the upgrade instructions corresponding to your installation method.
+
+- :ref:`Composer Installation App Starter Upgrading <app-starter-upgrading>`
+- :ref:`Composer Installation Adding CodeIgniter4 to an Existing Project Upgrading <adding-codeigniter4-upgrading>`
+- :ref:`Manual Installation Upgrading <installing-manual-upgrading>`
+
+.. contents::
+    :local:
+    :depth: 2
+
+**********************
+Mandatory File Changes
+**********************
+
+****************
+Breaking Changes
+****************
+
+*********************
+Breaking Enhancements
+*********************
+
+*************
+Project Files
+*************
+
+Some files in the **project space** (root, app, public, writable) received updates. Due to
+these files being outside of the **system** scope they will not be changed without your intervention.
+
+There are some third-party CodeIgniter modules available to assist with merging changes to
+the project space: `Explore on Packagist <https://packagist.org/explore/?query=codeigniter4%20updates>`_.
+
+Content Changes
+===============
+
+The following files received significant changes (including deprecations or visual adjustments)
+and it is recommended that you merge the updated versions with your application:
+
+Config
+------
+
+- @TODO
+
+All Changes
+===========
+
+This is a list of all files in the **project space** that received changes;
+many will be simple comments or formatting that have no effect on the runtime:
+
+- @TODO
diff --git a/user_guide_src/source/installation/upgrading.rst b/user_guide_src/source/installation/upgrading.rst
index 3b29315d4eab..1ba301af1e33 100644
--- a/user_guide_src/source/installation/upgrading.rst
+++ b/user_guide_src/source/installation/upgrading.rst
@@ -16,6 +16,7 @@ See also :doc:`./backward_compatibility_notes`.
 
     backward_compatibility_notes
 
+    upgrade_448
     upgrade_447
     upgrade_446
     upgrade_445

From 5dee40ba0f5c8edcfa142ee035e073f30372298c Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Fri, 29 Mar 2024 14:06:15 +0900
Subject: [PATCH 03/65] chore: delete release branch if exists

If it exists, the git command failed, and the current branch is
not changed.
---
 admin/prepare-release.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/admin/prepare-release.php b/admin/prepare-release.php
index 374e37b313eb..c0dcab6866ce 100644
--- a/admin/prepare-release.php
+++ b/admin/prepare-release.php
@@ -26,6 +26,7 @@ function replace_file_content(string $path, string $pattern, string $replace): v
 
 // Creates a branch for release.
 system('git switch develop');
+system('git branch -D release-' . $version);
 system('git switch -c release-' . $version);
 
 // Updates version number in "CodeIgniter.php".

From 1079c807d2d9bb7c1946ab9cde549fc028e06ebf Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Fri, 29 Mar 2024 14:08:46 +0900
Subject: [PATCH 04/65] docs: small update

If you replace `4.x.x` with the real version, it will be the real
file path.
---
 admin/RELEASE.md | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/admin/RELEASE.md b/admin/RELEASE.md
index b168f7856354..37173c4e97b0 100644
--- a/admin/RELEASE.md
+++ b/admin/RELEASE.md
@@ -88,7 +88,7 @@ Work off direct clones of the repos so the release branches persist for a time.
 > generating much new content.
 
 * [ ] Replace **CHANGELOG.md** with the new version generated above
-* [ ] Update **user_guide_src/source/changelogs/{version}.rst**
+* [ ] Update **user_guide_src/source/changelogs/v4.x.x.rst**
   * Remove the section titles that have no items
 * [ ] Update **user_guide_src/source/installation/upgrade_{ver}.rst**
   * fill in the "All Changes" section, and add it to **upgrading.rst**
@@ -150,10 +150,10 @@ Work off direct clones of the repos so the release branches persist for a time.
     composer test && composer info codeigniter4/framework
     ```
 * [ ] Verify that the user guide actions succeeded:
-  * "[Deploy Distributable Repos](https://github.com/codeigniter4/CodeIgniter4/actions/workflows/deploy-distributables.yml)", the main repo
-  * "[Deploy Production](https://github.com/codeigniter4/userguide/actions/workflows/deploy.yml)", UG repo
-  * "[pages-build-deployment](https://github.com/codeigniter4/userguide/actions/workflows/pages/pages-build-deployment)", UG repo
-  * Check if "CodeIgniter4.x.x.epub" is added to UG repo. "CodeIgniter.epub" was
+  * [ ] "[Deploy Distributable Repos](https://github.com/codeigniter4/CodeIgniter4/actions/workflows/deploy-distributables.yml)", the main repo
+  * [ ] "[Deploy Production](https://github.com/codeigniter4/userguide/actions/workflows/deploy.yml)", UG repo
+  * [ ] "[pages-build-deployment](https://github.com/codeigniter4/userguide/actions/workflows/pages/pages-build-deployment)", UG repo
+  * [ ] Check if "CodeIgniter4.x.x.epub" is added to UG repo. "CodeIgniter.epub" was
     created when v4.3.8 was released.
 * [ ] Fast-forward `develop` branch to catch the merge commit from `master`
     ```console

From abdf2a881cfecafb02462ca0520be04bd68ae447 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sat, 23 Mar 2024 15:51:57 +0900
Subject: [PATCH 05/65] docs: update OWASP TOP 10 items

---
 user_guide_src/source/concepts/security.rst | 208 +++++++++++---------
 1 file changed, 110 insertions(+), 98 deletions(-)

diff --git a/user_guide_src/source/concepts/security.rst b/user_guide_src/source/concepts/security.rst
index df1bd2b34827..bb95623b70d3 100644
--- a/user_guide_src/source/concepts/security.rst
+++ b/user_guide_src/source/concepts/security.rst
@@ -19,57 +19,79 @@ the CodeIgniter provisions to address the problem.
     :local:
     :depth: 1
 
-************
-A1 Injection
-************
+******************************
+A01:2021 Broken Access Control
+******************************
 
-An injection is the inappropriate insertion of partial or complete data via
-the input data from the client to the application. Attack vectors include SQL,
-XML, ORM, code & buffer overflows.
+Insecure Direct Object References occur when an application provides direct
+access to objects based on user-supplied input. As a result of this vulnerability
+attackers can bypass authorization and access resources in the system directly,
+for example database records or files.
+
+Sensitive data must be protected when it is transmitted through the network.
+Such data can include user credentials and credit cards. As a rule of thumb,
+if data must be protected when it is stored, it must be protected also during
+transmission.
+
+CSRF is an attack that forces an end user to execute unwanted actions on a web
+application in which he/she is currently authenticated.
 
 OWASP recommendations
 =====================
 
-- Presentation: set correct content type, character set & locale
-- Submission: validate fields and provide feedback
-- Controller: sanitize input; positive input validation using correct character set
-- Model: parameterized queries
+- Presentation: don't expose internal data; use random reference maps
+- Controller: obtain data from trusted sources or random reference maps
+- Model: validate user roles before updating data
+
+- Presentation: ensure that non-web data is outside the web root; validate users and roles; send CSRF tokens
+- Controller: validate users and roles; validate CSRF tokens
+- Model: validate roles
+
+- Presentation: validate users and roles; send CSRF tokens
+- Controller: validate users and roles; validate CSRF tokens
+- Model: validate roles
 
 CodeIgniter provisions
 ======================
 
-- :ref:`urls-uri-security`
-- :ref:`invalidchars` filter
 - :doc:`../libraries/validation` library
-- :doc:`HTTP library <../incoming/incomingrequest>` provides for :ref:`input field filtering <incomingrequest-filtering-input-data>` & content metadata
+- An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
+- Easy to add third party authentication
 
-*********************************************
-A2 Weak authentication and session management
-*********************************************
+- :ref:`Public <application-structure-public>` folder, with application and system outside
+- :doc:`Security </libraries/security>` library provides for :ref:`CSRF validation <cross-site-request-forgery>`
 
-Inadequate authentication or improper session management can lead to a user
-getting more privileges than they are entitled to.
+*******************************
+A02:2021 Cryptographic Failures
+*******************************
+
+Sensitive data must be protected when it is transmitted through the network.
+Such data can include user credentials and credit cards. As a rule of thumb,
+if data must be protected when it is stored, it must be protected also during
+transmission.
 
 OWASP recommendations
 =====================
 
-- Presentation: validate authentication & role; send CSRF token with forms
-- Design: only use built-in session management
-- Controller: validate user, role, CSRF token
-- Model: validate role
-- Tip: consider the use of a request governor
+- Presentation: use TLS1.2; use strong ciphers and hashes; do not send keys or hashes to browser
+- Controller: use strong ciphers and hashes
+- Model: mandate strong encrypted communications with servers
 
 CodeIgniter provisions
 ======================
 
-- :doc:`Session <../libraries/sessions>` library
-- :doc:`Security </libraries/security>` library provides for CSRF validation
-- An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
-- Easy to add third party authentication
+- The config for global secure access (``Config\App::$forceGlobalSecureRequests``)
+- :php:func:`force_https()` function
+- :doc:`../libraries/encryption`
+- The :ref:`database config <database-config-explanation-of-values>` (``encrypt``)
+
+******************
+A03:2021 Injection
+******************
 
-*****************************
-A3 Cross Site Scripting (XSS)
-*****************************
+An injection is the inappropriate insertion of partial or complete data via
+the input data from the client to the application. Attack vectors include SQL,
+XML, ORM, code & buffer overflows.
 
 Insufficient input validation where one user can add content to a web site
 that can be malicious when viewed by other users to the web site.
@@ -77,6 +99,11 @@ that can be malicious when viewed by other users to the web site.
 OWASP recommendations
 =====================
 
+- Presentation: set correct content type, character set & locale
+- Submission: validate fields and provide feedback
+- Controller: sanitize input; positive input validation using correct character set
+- Model: parameterized queries
+
 - Presentation: output encode all user data as per output context; set input constraints
 - Controller: positive input validation
 - Tips: only process trustworthy data; do not store data HTML encoded in DB
@@ -84,36 +111,34 @@ OWASP recommendations
 CodeIgniter provisions
 ======================
 
+- :ref:`urls-uri-security`
+- :ref:`invalidchars` filter
+- :doc:`../libraries/validation` library
+- :doc:`HTTP library <../incoming/incomingrequest>` provides for :ref:`input field filtering <incomingrequest-filtering-input-data>` & content metadata
+
 - :php:func:`esc()` function
 - :doc:`../libraries/validation` library
 - Support for :ref:`content-security-policy`
 
-***********************************
-A4 Insecure Direct Object Reference
-***********************************
+************************
+A04:2021 Insecure Design
+************************
 
-Insecure Direct Object References occur when an application provides direct
-access to objects based on user-supplied input. As a result of this vulnerability
-attackers can bypass authorization and access resources in the system directly,
-for example database records or files.
+@TODO
 
 OWASP recommendations
 =====================
 
-- Presentation: don't expose internal data; use random reference maps
-- Controller: obtain data from trusted sources or random reference maps
-- Model: validate user roles before updating data
+- @TODO
 
 CodeIgniter provisions
 ======================
 
-- :doc:`../libraries/validation` library
-- An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
-- Easy to add third party authentication
+- @TODO
 
-****************************
-A5 Security Misconfiguration
-****************************
+**********************************
+A05:2021 Security Misconfiguration
+**********************************
 
 Improper configuration of an application architecture can lead to mistakes
 that might compromise the security of the whole architecture.
@@ -130,104 +155,91 @@ CodeIgniter provisions
 
 - Sanity checks during bootstrap
 
-**************************
-A6 Sensitive Data Exposure
-**************************
+*******************************************
+A06:2021 Vulnerable and Outdated Components
+*******************************************
 
-Sensitive data must be protected when it is transmitted through the network.
-Such data can include user credentials and credit cards. As a rule of thumb,
-if data must be protected when it is stored, it must be protected also during
-transmission.
+Many applications have known vulnerabilities and known attack strategies that
+can be exploited in order to gain remote control or to exploit data.
 
 OWASP recommendations
 =====================
 
-- Presentation: use TLS1.2; use strong ciphers and hashes; do not send keys or hashes to browser
-- Controller: use strong ciphers and hashes
-- Model: mandate strong encrypted communications with servers
+- Don't use any of these
 
 CodeIgniter provisions
 ======================
 
-- The config for global secure access (``Config\App::$forceGlobalSecureRequests``)
-- :php:func:`force_https()` function
-- :doc:`../libraries/encryption`
-- The :ref:`database config <database-config-explanation-of-values>` (``encrypt``)
+- Third party libraries incorporated must be vetted
 
-****************************************
-A7 Missing Function Level Access Control
-****************************************
+***************************************************
+A07:2021 Identification and Authentication Failures
+***************************************************
 
-Sensitive data must be protected when it is transmitted through the network.
-Such data can include user credentials and credit cards. As a rule of thumb,
-if data must be protected when it is stored, it must be protected also during
-transmission.
+Inadequate authentication or improper session management can lead to a user
+getting more privileges than they are entitled to.
 
 OWASP recommendations
 =====================
 
-- Presentation: ensure that non-web data is outside the web root; validate users and roles; send CSRF tokens
-- Controller: validate users and roles; validate CSRF tokens
-- Model: validate roles
+- Presentation: validate authentication & role; send CSRF token with forms
+- Design: only use built-in session management
+- Controller: validate user, role, CSRF token
+- Model: validate role
+- Tip: consider the use of a request governor
 
 CodeIgniter provisions
 ======================
 
-- :ref:`Public <application-structure-public>` folder, with application and system outside
-- :doc:`Security </libraries/security>` library provides for :ref:`CSRF validation <cross-site-request-forgery>`
+- :doc:`Session <../libraries/sessions>` library
+- :doc:`Security </libraries/security>` library provides for CSRF validation
+- An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
+- Easy to add third party authentication
 
-************************************
-A8 Cross Site Request Forgery (CSRF)
-************************************
+*********************************************
+A08:2021 Software and Data Integrity Failures
+*********************************************
 
-CSRF is an attack that forces an end user to execute unwanted actions on a web
-application in which he/she is currently authenticated.
+@TODO
 
 OWASP recommendations
 =====================
 
-- Presentation: validate users and roles; send CSRF tokens
-- Controller: validate users and roles; validate CSRF tokens
-- Model: validate roles
+- @TODO
 
 CodeIgniter provisions
 ======================
 
-- :doc:`Security </libraries/security>` library provides for :ref:`CSRF validation <cross-site-request-forgery>`
+- @TODO
 
-**********************************************
-A9 Using Components with Known Vulnerabilities
-**********************************************
+*************************************************
+A09:2021 Security Logging and Monitoring Failures
+*************************************************
 
-Many applications have known vulnerabilities and known attack strategies that
-can be exploited in order to gain remote control or to exploit data.
+@TODO
 
 OWASP recommendations
 =====================
 
-- Don't use any of these
+- @TODO
 
 CodeIgniter provisions
 ======================
 
-- Third party libraries incorporated must be vetted
+- @TODO
 
-**************************************
-A10 Unvalidated Redirects and Forwards
-**************************************
+*******************************************
+A10:2021 Server-Side Request Forgery (SSRF)
+*******************************************
 
-Faulty business logic or injected actionable code could redirect the user
-inappropriately.
+@TODO
 
 OWASP recommendations
 =====================
 
-- Presentation: don't use URL redirection; use random indirect references
-- Controller: don't use URL redirection; use random indirect references
-- Model: validate roles
+- @TODO
 
 CodeIgniter provisions
 ======================
 
-- :doc:`HTTP library <../incoming/incomingrequest>` provides for ...
-- :doc:`Session <../libraries/sessions>` library provides :ref:`sessions-flashdata`
+- @TODO

From 589cf2a808926d99a6dc0f5403ebfba3a1365f14 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 28 Mar 2024 09:48:43 +0900
Subject: [PATCH 06/65] docs: update from A01 to A03

---
 user_guide_src/source/concepts/security.rst | 206 +++++++++++++++-----
 user_guide_src/source/database/queries.rst  |   3 +
 2 files changed, 159 insertions(+), 50 deletions(-)

diff --git a/user_guide_src/source/concepts/security.rst b/user_guide_src/source/concepts/security.rst
index bb95623b70d3..930a30cf7b41 100644
--- a/user_guide_src/source/concepts/security.rst
+++ b/user_guide_src/source/concepts/security.rst
@@ -23,59 +23,140 @@ the CodeIgniter provisions to address the problem.
 A01:2021 Broken Access Control
 ******************************
 
-Insecure Direct Object References occur when an application provides direct
-access to objects based on user-supplied input. As a result of this vulnerability
-attackers can bypass authorization and access resources in the system directly,
-for example database records or files.
-
-Sensitive data must be protected when it is transmitted through the network.
-Such data can include user credentials and credit cards. As a rule of thumb,
-if data must be protected when it is stored, it must be protected also during
-transmission.
-
-CSRF is an attack that forces an end user to execute unwanted actions on a web
-application in which he/she is currently authenticated.
+Access control enforces policy such that users cannot act outside of their intended
+permissions. Failures typically lead to unauthorized information disclosure,
+modification, or destruction of all data or performing a business function outside
+the user's limits.
+
+Common access control vulnerabilities include:
+
+- Violation of the principle of least privilege or deny by default, where access
+  should only be granted for particular capabilities, roles, or users, but is
+  available to anyone.
+- Bypassing access control checks by modifying the URL (parameter tampering or
+  force browsing), internal application state, or the HTML page, or by using an
+  attack tool modifying API requests.
+- Permitting viewing or editing someone else's account, by providing its unique
+  identifier (insecure direct object references)
+- Accessing API with missing access controls for POST, PUT and DELETE.
+- Elevation of privilege. Acting as a user without being logged in or acting as
+  an admin when logged in as a user.
+- Metadata manipulation, such as replaying or tampering with a JSON Web Token (JWT)
+  access control token, or a cookie or hidden field manipulated to elevate
+  privileges or abusing JWT invalidation.
+- CORS misconfiguration allows API access from unauthorized/untrusted origins.
+- Force browsing to authenticated pages as an unauthenticated user or to privileged
+  pages as a standard user.
 
 OWASP recommendations
 =====================
 
-- Presentation: don't expose internal data; use random reference maps
-- Controller: obtain data from trusted sources or random reference maps
-- Model: validate user roles before updating data
-
-- Presentation: ensure that non-web data is outside the web root; validate users and roles; send CSRF tokens
-- Controller: validate users and roles; validate CSRF tokens
-- Model: validate roles
-
-- Presentation: validate users and roles; send CSRF tokens
-- Controller: validate users and roles; validate CSRF tokens
-- Model: validate roles
+Access control is only effective in trusted server-side code or server-less API,
+where the attacker cannot modify the access control check or metadata.
+
+- Except for public resources, deny by default.
+- Implement access control mechanisms once and re-use them throughout the application,
+  including minimizing Cross-Origin Resource Sharing (CORS) usage.
+- Model access controls should enforce record ownership rather than accepting that
+  the user can create, read, update, or delete any record.
+- Unique application business limit requirements should be enforced by domain models.
+- Disable web server directory listing and ensure file metadata (e.g., .git) and
+  backup files are not present within web roots.
+- Log access control failures, alert admins when appropriate (e.g., repeated failures).
+- Rate limit API and controller access to minimize the harm from automated attack
+  tooling.
+- Stateful session identifiers should be invalidated on the server after logout.
+  Stateless JWT tokens should rather be short-lived so that the window of opportunity
+  for an attacker is minimized. For longer lived JWTs it's highly recommended to
+  follow the OAuth standards to revoke access.
 
 CodeIgniter provisions
 ======================
 
+- :ref:`Public <application-structure-public>` folder, with application and system outside
 - :doc:`../libraries/validation` library
+- :doc:`Security </libraries/security>` library provides for :ref:`CSRF protection <cross-site-request-forgery>`
+- :doc:`../libraries/throttler` for rate limit
+- :php:func:`log_message()` function for logging
 - An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
 - Easy to add third party authentication
 
-- :ref:`Public <application-structure-public>` folder, with application and system outside
-- :doc:`Security </libraries/security>` library provides for :ref:`CSRF validation <cross-site-request-forgery>`
-
 *******************************
 A02:2021 Cryptographic Failures
 *******************************
 
-Sensitive data must be protected when it is transmitted through the network.
-Such data can include user credentials and credit cards. As a rule of thumb,
-if data must be protected when it is stored, it must be protected also during
-transmission.
+The first thing is to determine the protection needs of data in transit and at
+rest. For example, passwords, credit card numbers, health records, personal
+information, and business secrets require extra protection, mainly if that data
+falls under privacy laws, e.g., EU's General Data Protection Regulation (GDPR),
+or regulations, e.g., financial data protection such as PCI Data Security Standard
+(PCI DSS). For all such data:
+
+- Is any data transmitted in clear text? This concerns protocols such as HTTP,
+  SMTP, FTP also using TLS upgrades like STARTTLS. External internet traffic is
+  hazardous. Verify all internal traffic, e.g., between load balancers, web servers,
+  or back-end systems.
+- Are any old or weak cryptographic algorithms or protocols used either by default
+  or in older code?
+- Are default crypto keys in use, weak crypto keys generated or re-used, or is
+  proper key management or rotation missing? Are crypto keys checked into source
+  code repositories?
+- Is encryption not enforced, e.g., are any HTTP headers (browser) security
+  directives or headers missing?
+- Is the received server certificate and the trust chain properly validated?
+- Are initialization vectors ignored, reused, or not generated sufficiently secure
+  for the cryptographic mode of operation? Is an insecure mode of operation such
+  as ECB in use? Is encryption used when authenticated encryption is more appropriate?
+- Are passwords being used as cryptographic keys in absence of a password base key
+  derivation function?
+- Is randomness used for cryptographic purposes that was not designed to meet
+  cryptographic requirements? Even if the correct function is chosen, does it need
+  to be seeded by the developer, and if not, has the developer over-written the
+  strong seeding functionality built into it with a seed that lacks sufficient
+  entropy/unpredictability?
+- Are deprecated hash functions such as MD5 or SHA1 in use, or are non-cryptographic
+  hash functions used when cryptographic hash functions are needed?
+- Are deprecated cryptographic padding methods such as PKCS number 1 v1.5 in use?
+- Are cryptographic error messages or side channel information exploitable, for
+  example in the form of padding oracle attacks?
 
 OWASP recommendations
 =====================
 
-- Presentation: use TLS1.2; use strong ciphers and hashes; do not send keys or hashes to browser
-- Controller: use strong ciphers and hashes
-- Model: mandate strong encrypted communications with servers
+Do the following, at a minimum, and consult the references:
+
+- Classify data processed, stored, or transmitted by an application. Identify which
+  data is sensitive according to privacy laws, regulatory requirements, or business
+  needs.
+- Don't store sensitive data unnecessarily. Discard it as soon as possible or use
+  PCI DSS compliant tokenization or even truncation. Data that is not retained
+  cannot be stolen.
+- Make sure to encrypt all sensitive data at rest.
+- Ensure up-to-date and strong standard algorithms, protocols, and keys are in
+  place; use proper key management.
+- Encrypt all data in transit with secure protocols such as TLS with forward secrecy
+  (FS) ciphers, cipher prioritization by the server, and secure parameters. Enforce
+  encryption using directives like HTTP Strict Transport Security (HSTS).
+- Disable caching for response that contain sensitive data.
+- Apply required security controls as per the data classification.
+- Do not use legacy protocols such as FTP and SMTP for transporting sensitive data.
+- Store passwords using strong adaptive and salted hashing functions with a work
+  factor (delay factor), such as Argon2, scrypt, bcrypt or PBKDF2.
+- Initialization vectors must be chosen appropriate for the mode of operation.
+  For many modes, this means using a CSPRNG (cryptographically secure pseudo random
+  number generator). For modes that require a nonce, then the initialization vector
+  (IV) does not need a CSPRNG. In all cases, the IV should never be used twice for
+  a fixed key.
+- Always use authenticated encryption instead of just encryption.
+- Keys should be generated cryptographically randomly and stored in memory as byte
+  arrays. If a password is used, then it must be converted to a key via an
+  appropriate password base key derivation function.
+- Ensure that cryptographic randomness is used where appropriate, and that it has
+  not been seeded in a predictable way or with low entropy. Most modern APIs do
+  not require the developer to seed the CSPRNG to get security.
+- Avoid deprecated cryptographic functions and padding schemes, such as MD5, SHA1,
+  PKCS number 1 v1.5 .
+- Verify independently the effectiveness of configuration and settings.
 
 CodeIgniter provisions
 ======================
@@ -84,29 +165,52 @@ CodeIgniter provisions
 - :php:func:`force_https()` function
 - :doc:`../libraries/encryption`
 - The :ref:`database config <database-config-explanation-of-values>` (``encrypt``)
+- An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
 
 ******************
 A03:2021 Injection
 ******************
 
-An injection is the inappropriate insertion of partial or complete data via
-the input data from the client to the application. Attack vectors include SQL,
-XML, ORM, code & buffer overflows.
-
-Insufficient input validation where one user can add content to a web site
-that can be malicious when viewed by other users to the web site.
+An application is vulnerable to attack when:
+
+- User-supplied data is not validated, filtered, or sanitized by the application.
+- Dynamic queries or non-parameterized calls without context-aware escaping are
+  used directly in the interpreter.
+- Hostile data is used within object-relational mapping (ORM) search parameters
+  to extract additional, sensitive records.
+- Hostile data is directly used or concatenated. The SQL or command contains the
+  structure and malicious data in dynamic queries, commands, or stored procedures.
+
+Some of the more common injections are SQL, NoSQL, OS command, Object Relational
+Mapping (ORM), LDAP, and Expression Language (EL) or Object Graph Navigation Library
+(OGNL) injection. The concept is identical among all interpreters. Source code
+review is the best method of detecting if applications are vulnerable to injections.
+Automated testing of all parameters, headers, URL, cookies, JSON, SOAP, and XML
+data inputs is strongly encouraged. Organizations can include static (SAST),
+dynamic (DAST), and interactive (IAST) application security testing tools into
+the CI/CD pipeline to identify introduced injection flaws before production deployment.
 
 OWASP recommendations
 =====================
 
-- Presentation: set correct content type, character set & locale
-- Submission: validate fields and provide feedback
-- Controller: sanitize input; positive input validation using correct character set
-- Model: parameterized queries
-
-- Presentation: output encode all user data as per output context; set input constraints
-- Controller: positive input validation
-- Tips: only process trustworthy data; do not store data HTML encoded in DB
+Preventing injection requires keeping data separate from commands and queries:
+
+- The preferred option is to use a safe API, which avoids using the interpreter
+  entirely, provides a parameterized interface, or migrates to Object Relational
+  Mapping Tools (ORMs).
+    - Note: Even when parameterized, stored procedures can still introduce SQL
+      injection if PL/SQL or T-SQL concatenates queries and data or executes hostile
+      data with EXECUTE IMMEDIATE or exec().
+- Use positive server-side input validation. This is not a complete defense as
+  many applications require special characters, such as text areas or APIs for
+  mobile applications.
+- For any residual dynamic queries, escape special characters using the specific
+  escape syntax for that interpreter.
+    - Note: SQL structures such as table names, column names, and so on cannot be
+      escaped, and thus user-supplied structure names are dangerous. This is a
+      common issue in report-writing software.
+- Use LIMIT and other SQL controls within queries to prevent mass disclosure of
+  records in case of SQL injection.
 
 CodeIgniter provisions
 ======================
@@ -114,11 +218,13 @@ CodeIgniter provisions
 - :ref:`urls-uri-security`
 - :ref:`invalidchars` filter
 - :doc:`../libraries/validation` library
-- :doc:`HTTP library <../incoming/incomingrequest>` provides for :ref:`input field filtering <incomingrequest-filtering-input-data>` & content metadata
-
 - :php:func:`esc()` function
-- :doc:`../libraries/validation` library
+- :doc:`HTTP library <../incoming/incomingrequest>` provides for
+  :ref:`input field filtering <incomingrequest-filtering-input-data>` & content metadata
 - Support for :ref:`content-security-policy`
+- :doc:`../database/query_builder`
+- :ref:`Database escape methods <database-queries-escaping>`
+- :ref:`database-queries-query-bindings`
 
 ************************
 A04:2021 Insecure Design
diff --git a/user_guide_src/source/database/queries.rst b/user_guide_src/source/database/queries.rst
index b3904418b8a6..b0c7e6ded6a3 100644
--- a/user_guide_src/source/database/queries.rst
+++ b/user_guide_src/source/database/queries.rst
@@ -116,6 +116,7 @@ prefixing set ``true`` (boolean) via the second parameter:
 
 .. literalinclude:: queries/008.php
 
+.. _database-queries-escaping:
 
 ***************
 Escaping Values
@@ -160,6 +161,8 @@ strings are to be used in LIKE conditions so that LIKE wildcards
     yourself, it cannot automatically add the ``ESCAPE '!'``
     condition for you, and so you'll have to manually do that.
 
+.. _database-queries-query-bindings:
+
 **************
 Query Bindings
 **************

From ffce31f8411fa9bac3d24021668d9b5666c047e2 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 28 Mar 2024 10:23:05 +0900
Subject: [PATCH 07/65] docs: update from A04, A05

---
 user_guide_src/source/concepts/security.rst | 80 ++++++++++++++++++---
 1 file changed, 71 insertions(+), 9 deletions(-)

diff --git a/user_guide_src/source/concepts/security.rst b/user_guide_src/source/concepts/security.rst
index 930a30cf7b41..69c84f7f4153 100644
--- a/user_guide_src/source/concepts/security.rst
+++ b/user_guide_src/source/concepts/security.rst
@@ -230,36 +230,98 @@ CodeIgniter provisions
 A04:2021 Insecure Design
 ************************
 
-@TODO
+Insecure design is a broad category representing different weaknesses, expressed
+as “missing or ineffective control design.” Insecure design is not the source for
+all other Top 10 risk categories. There is a difference between insecure design
+and insecure implementation. We differentiate between design flaws and implementation
+defects for a reason, they have different root causes and remediation.
+
+A secure design can still have implementation defects leading to vulnerabilities
+that may be exploited. An insecure design cannot be fixed by a perfect implementation
+as by definition, needed security controls were never created to defend against
+specific attacks. One of the factors that contribute to insecure design is the
+lack of business risk profiling inherent in the software or system being developed,
+and thus the failure to determine what level of security design is required.
 
 OWASP recommendations
 =====================
 
-- @TODO
+- Establish and use a secure development lifecycle with AppSec professionals to
+  help evaluate and design security and privacy-related controls
+- Establish and use a library of secure design patterns or paved road ready to
+  use components
+- Use threat modeling for critical authentication, access control, business logic,
+  and key flows
+- Integrate security language and controls into user stories
+- Integrate plausibility checks at each tier of your application (from frontend
+  to backend)
+- Write unit and integration tests to validate that all critical flows are resistant
+  to the threat model. Compile use-cases and misuse-cases for each tier of your
+  application.
+- Segregate tier layers on the system and network layers depending on the exposure
+  and protection needs
+- Segregate tenants robustly by design throughout all tiers
+- Limit resource consumption by user or service
 
 CodeIgniter provisions
 ======================
 
-- @TODO
+- :doc:`PHPUnit testing <../testing/overview>`
+- :doc:`../libraries/throttler` for rate limit
+- An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
 
 **********************************
 A05:2021 Security Misconfiguration
 **********************************
 
-Improper configuration of an application architecture can lead to mistakes
-that might compromise the security of the whole architecture.
+The application might be vulnerable if the application is:
+
+- Missing appropriate security hardening across any part of the application stack
+  or improperly configured permissions on cloud services.
+- Unnecessary features are enabled or installed (e.g., unnecessary ports, services,
+  pages, accounts, or privileges).
+- Default accounts and their passwords are still enabled and unchanged.
+- Error handling reveals stack traces or other overly informative error messages
+  to users.
+- For upgraded systems, the latest security features are disabled or not configured
+  securely.
+- The security settings in the application servers, application frameworks (e.g.,
+  Struts, Spring, ASP.NET), libraries, databases, etc., are not set to secure values.
+- The server does not send security headers or directives, or they are not set to
+  secure values.
+- The software is out of date or vulnerable (see A06:2021-Vulnerable and Outdated
+  Components).
+
+Without a concerted, repeatable application security configuration process,
+systems are at a higher risk.
 
 OWASP recommendations
 =====================
 
-- Presentation: harden web and application servers; use HTTP strict transport security
-- Controller: harden web and application servers; protect your XML stack
-- Model: harden database servers
+Secure installation processes should be implemented, including:
+
+- A repeatable hardening process makes it fast and easy to deploy another environment
+  that is appropriately locked down. Development, QA, and production environments
+  should all be configured identically, with different credentials used in each
+  environment. This process should be automated to minimize the effort required
+  to set up a new secure environment.
+- A minimal platform without any unnecessary features, components, documentation,
+  and samples. Remove or do not install unused features and frameworks.
+- A task to review and update the configurations appropriate to all security notes,
+  updates, and patches as part of the patch management process (see A06:2021-Vulnerable
+  and Outdated Components). Review cloud storage permissions (e.g., S3 bucket permissions).
+- A segmented application architecture provides effective and secure separation
+  between components or tenants, with segmentation, containerization, or cloud
+  security groups (ACLs).
+- Sending security directives to clients, e.g., Security Headers.
+- An automated process to verify the effectiveness of the configurations and
+  settings in all environments.
 
 CodeIgniter provisions
 ======================
 
-- Sanity checks during bootstrap
+- :ref:`Production mode <environment-constant>` by default
+- :ref:`secureheaders` filter
 
 *******************************************
 A06:2021 Vulnerable and Outdated Components

From b8025ee538094adf60096010e445a7d52d200870 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 28 Mar 2024 11:04:45 +0900
Subject: [PATCH 08/65] docs: update from A06 to A10

---
 user_guide_src/source/concepts/security.rst | 213 +++++++++++++++++---
 1 file changed, 190 insertions(+), 23 deletions(-)

diff --git a/user_guide_src/source/concepts/security.rst b/user_guide_src/source/concepts/security.rst
index 69c84f7f4153..fc5efaf7f304 100644
--- a/user_guide_src/source/concepts/security.rst
+++ b/user_guide_src/source/concepts/security.rst
@@ -327,87 +327,254 @@ CodeIgniter provisions
 A06:2021 Vulnerable and Outdated Components
 *******************************************
 
-Many applications have known vulnerabilities and known attack strategies that
-can be exploited in order to gain remote control or to exploit data.
+You are likely vulnerable:
+
+- If you do not know the versions of all components you use (both client-side
+  and server-side). This includes components you directly use as well as nested
+  dependencies.
+- If the software is vulnerable, unsupported, or out of date. This includes the OS,
+  web/application server, database management system (DBMS), applications, APIs
+  and all components, runtime environments, and libraries.
+- If you do not scan for vulnerabilities regularly and subscribe to security
+  bulletins related to the components you use.
+- If you do not fix or upgrade the underlying platform, frameworks, and dependencies
+  in a risk-based, timely fashion. This commonly happens in environments when
+  patching is a monthly or quarterly task under change control, leaving organizations
+  open to days or months of unnecessary exposure to fixed vulnerabilities.
+- If software developers do not test the compatibility of updated, upgraded, or
+  patched libraries.
+- If you do not secure the components’ configurations (see A05:2021-Security
+  Misconfiguration).
 
 OWASP recommendations
 =====================
 
-- Don't use any of these
+There should be a patch management process in place to:
+
+- Remove unused dependencies, unnecessary features, components, files, and
+  documentation.
+- Continuously inventory the versions of both client-side and server-side components
+  (e.g., frameworks, libraries) and their dependencies using tools like versions,
+  OWASP Dependency Check, retire.js, etc. Continuously monitor sources like Common
+  Vulnerability and Exposures (CVE) and National Vulnerability Database (NVD) for
+  vulnerabilities in the components. Use software composition analysis tools to
+  automate the process. Subscribe to email alerts for security vulnerabilities
+  related to components you use.
+- Only obtain components from official sources over secure links. Prefer signed
+  packages to reduce the chance of including a modified, malicious component
+  (See A08:2021-Software and Data Integrity Failures).
+- Monitor for libraries and components that are unmaintained or do not create
+  security patches for older versions. If patching is not possible, consider
+  deploying a virtual patch to monitor, detect, or protect against the discovered
+  issue.
+
+Every organization must ensure an ongoing plan for monitoring, triaging, and
+applying updates or configuration changes for the lifetime of the application or
+portfolio.
 
 CodeIgniter provisions
 ======================
 
-- Third party libraries incorporated must be vetted
+- Easy :ref:`app-starter-upgrading` by Composer
 
 ***************************************************
 A07:2021 Identification and Authentication Failures
 ***************************************************
 
-Inadequate authentication or improper session management can lead to a user
-getting more privileges than they are entitled to.
+Confirmation of the user's identity, authentication, and session management is
+critical to protect against authentication-related attacks. There may be
+authentication weaknesses if the application:
+
+- Permits automated attacks such as credential stuffing, where the attacker has
+  a list of valid usernames and passwords.
+- Permits brute force or other automated attacks.
+- Permits default, weak, or well-known passwords, such as "Password1" or "admin/admin".
+- Uses weak or ineffective credential recovery and forgot-password processes,
+  such as "knowledge-based answers," which cannot be made safe.
+- Uses plain text, encrypted, or weakly hashed passwords data stores
+  (see A02:2021-Cryptographic Failures).
+- Has missing or ineffective multi-factor authentication.
+- Exposes session identifier in the URL.
+- Reuse session identifier after successful login.
+- Does not correctly invalidate Session IDs. User sessions or authentication tokens
+  (mainly single sign-on (SSO) tokens) aren't properly invalidated during logout
+  or a period of inactivity.
 
 OWASP recommendations
 =====================
 
-- Presentation: validate authentication & role; send CSRF token with forms
-- Design: only use built-in session management
-- Controller: validate user, role, CSRF token
-- Model: validate role
-- Tip: consider the use of a request governor
+- Where possible, implement multi-factor authentication to prevent automated
+  credential stuffing, brute force, and stolen credential reuse attacks.
+- Do not ship or deploy with any default credentials, particularly for admin users.
+- Implement weak password checks, such as testing new or changed passwords against
+  the top 10,000 worst passwords list.
+- Align password length, complexity, and rotation policies with National Institute
+  of Standards and Technology (NIST) 800-63b's guidelines in section 5.1.1 for
+  Memorized Secrets or other modern, evidence-based password policies.
+- Ensure registration, credential recovery, and API pathways are hardened against
+  account enumeration attacks by using the same messages for all outcomes.
+- Limit or increasingly delay failed login attempts, but be careful not to create
+  a denial of service scenario. Log all failures and alert administrators when
+  credential stuffing, brute force, or other attacks are detected.
+- Use a server-side, secure, built-in session manager that generates a new random
+  session ID with high entropy after login. Session identifier should not be in
+  the URL, be securely stored, and invalidated after logout, idle, and absolute
+  timeouts.
 
 CodeIgniter provisions
 ======================
 
 - :doc:`Session <../libraries/sessions>` library
-- :doc:`Security </libraries/security>` library provides for CSRF validation
-- An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
-- Easy to add third party authentication
+- An official authentication and authorization framework
+  :ref:`CodeIgniter Shield <shield>`
 
 *********************************************
 A08:2021 Software and Data Integrity Failures
 *********************************************
 
-@TODO
+Software and data integrity failures relate to code and infrastructure that does
+not protect against integrity violations. An example of this is where an application
+relies upon plugins, libraries, or modules from untrusted sources, repositories,
+and content delivery networks (CDNs). An insecure CI/CD pipeline can introduce
+the potential for unauthorized access, malicious code, or system compromise.
+
+Lastly, many applications now include auto-update functionality, where updates
+are downloaded without sufficient integrity verification and applied to the previously
+trusted application. Attackers could potentially upload their own updates to be
+distributed and run on all installations.
+
+Another example is where objects or data are encoded or serialized into a structure
+that an attacker can see and modify is vulnerable to insecure deserialization.
 
 OWASP recommendations
 =====================
 
-- @TODO
+- Use digital signatures or similar mechanisms to verify the software or data is
+  from the expected source and has not been altered.
+- Ensure libraries and dependencies, such as npm or Maven, are consuming trusted
+  repositories. If you have a higher risk profile, consider hosting an internal
+  known-good repository that's vetted.
+- Ensure that a software supply chain security tool, such as OWASP Dependency
+  Check or OWASP CycloneDX, is used to verify that components do not contain
+  known vulnerabilities
+- Ensure that there is a review process for code and configuration changes to
+  minimize the chance that malicious code or configuration could be introduced
+  into your software pipeline.
+- Ensure that your CI/CD pipeline has proper segregation, configuration, and
+  access control to ensure the integrity of the code flowing through the build
+  and deploy processes.
+- Ensure that unsigned or unencrypted serialized data is not sent to untrusted
+  clients without some form of integrity check or digital signature to detect
+  tampering or replay of the serialized data
 
 CodeIgniter provisions
 ======================
 
-- @TODO
+- n/a
 
 *************************************************
 A09:2021 Security Logging and Monitoring Failures
 *************************************************
 
-@TODO
+This category is to help detect, escalate, and respond to active breaches. Without
+logging and monitoring, breaches cannot be detected. Insufficient logging, detection,
+monitoring, and active response occurs any time:
+
+- Auditable events, such as logins, failed logins, and high-value transactions,
+  are not logged.
+- Warnings and errors generate no, inadequate, or unclear log messages.
+- Logs of applications and APIs are not monitored for suspicious activity.
+- Logs are only stored locally.
+- Appropriate alerting thresholds and response escalation processes are not in
+  place or effective.
+- Penetration testing and scans by dynamic application security testing (DAST)
+  tools (such as OWASP ZAP) do not trigger alerts.
+- The application cannot detect, escalate, or alert for active attacks in real-time
+  or near real-time.
+
+You are vulnerable to information leakage by making logging and alerting events
+visible to a user or an attacker (see A01:2021-Broken Access Control).
 
 OWASP recommendations
 =====================
 
-- @TODO
+Developers should implement some or all the following controls, depending on the risk of the application:
+
+- Ensure all login, access control, and server-side input validation failures can
+  be logged with sufficient user context to identify suspicious or malicious
+  accounts and held for enough time to allow delayed forensic analysis.
+- Ensure that logs are generated in a format that log management solutions can
+  easily consume.
+- Ensure log data is encoded correctly to prevent injections or attacks on the
+  logging or monitoring systems.
+- Ensure high-value transactions have an audit trail with integrity controls to
+  prevent tampering or deletion, such as append-only database tables or similar.
+- DevSecOps teams should establish effective monitoring and alerting such that
+  suspicious activities are detected and responded to quickly.
+- Establish or adopt an incident response and recovery plan, such as National
+  Institute of Standards and Technology (NIST) 800-61r2 or later.
+
+There are commercial and open-source application protection frameworks such as
+the OWASP ModSecurity Core Rule Set, and open-source log correlation software,
+such as the Elasticsearch, Logstash, Kibana (ELK) stack, that feature custom
+dashboards and alerting.
 
 CodeIgniter provisions
 ======================
 
-- @TODO
+- :doc:`Logging <../general/logging>` library
+- An official authentication and authorization framework
+  :ref:`CodeIgniter Shield <shield>`
 
 *******************************************
 A10:2021 Server-Side Request Forgery (SSRF)
 *******************************************
 
-@TODO
+SSRF flaws occur whenever a web application is fetching a remote resource without
+validating the user-supplied URL. It allows an attacker to coerce the application
+to send a crafted request to an unexpected destination, even when protected by a
+firewall, VPN, or another type of network access control list (ACL).
+
+As modern web applications provide end-users with convenient features, fetching
+a URL becomes a common scenario. As a result, the incidence of SSRF is increasing.
+Also, the severity of SSRF is becoming higher due to cloud services and the
+complexity of architectures.
 
 OWASP recommendations
 =====================
 
-- @TODO
+Developers can prevent SSRF by implementing some or all the following defense in
+depth controls:
+
+From Network layer:
+
+- Segment remote resource access functionality in separate networks to reduce the
+  impact of SSRF
+- Enforce “deny by default” firewall policies or network access control rules to
+  block all but essential intranet traffic.
+
+   - Hints:
+
+      * Establish an ownership and a lifecycle for firewall rules based on
+        applications.
+      * Log all accepted and blocked network flows on firewalls
+        (see A09:2021-Security Logging and Monitoring Failures).
+
+From Application layer:
+
+- Sanitize and validate all client-supplied input data
+- Enforce the URL schema, port, and destination with a positive allow list
+- Do not send raw responses to clients
+- Disable HTTP redirections
+- Be aware of the URL consistency to avoid attacks such as DNS rebinding and
+  “time of check, time of use” (TOCTOU) race conditions
+
+Do not mitigate SSRF via the use of a deny list or regular expression. Attackers
+have payload lists, tools, and skills to bypass deny lists.
 
 CodeIgniter provisions
 ======================
 
-- @TODO
+- :doc:`../libraries/validation` library
+- :doc:`HTTP library <../incoming/incomingrequest>` provides for
+  :ref:`input field filtering <incomingrequest-filtering-input-data>`

From d3ed47c1c165c0000516c31557394ac9ba7aaa42 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 28 Mar 2024 11:05:11 +0900
Subject: [PATCH 09/65] docs: fix RST format

---
 user_guide_src/source/concepts/security.rst | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/user_guide_src/source/concepts/security.rst b/user_guide_src/source/concepts/security.rst
index fc5efaf7f304..faada4d93cec 100644
--- a/user_guide_src/source/concepts/security.rst
+++ b/user_guide_src/source/concepts/security.rst
@@ -198,6 +198,7 @@ Preventing injection requires keeping data separate from commands and queries:
 - The preferred option is to use a safe API, which avoids using the interpreter
   entirely, provides a parameterized interface, or migrates to Object Relational
   Mapping Tools (ORMs).
+
     - Note: Even when parameterized, stored procedures can still introduce SQL
       injection if PL/SQL or T-SQL concatenates queries and data or executes hostile
       data with EXECUTE IMMEDIATE or exec().
@@ -206,6 +207,7 @@ Preventing injection requires keeping data separate from commands and queries:
   mobile applications.
 - For any residual dynamic queries, escape special characters using the specific
   escape syntax for that interpreter.
+
     - Note: SQL structures such as table names, column names, and so on cannot be
       escaped, and thus user-supplied structure names are dangerous. This is a
       common issue in report-writing software.

From 0ea008b32a4958a42c91c4ff1470f857b099bbe9 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 28 Mar 2024 11:05:58 +0900
Subject: [PATCH 10/65] docs: break long lines

---
 user_guide_src/source/concepts/security.rst | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/user_guide_src/source/concepts/security.rst b/user_guide_src/source/concepts/security.rst
index faada4d93cec..b4a522fdf293 100644
--- a/user_guide_src/source/concepts/security.rst
+++ b/user_guide_src/source/concepts/security.rst
@@ -73,9 +73,11 @@ where the attacker cannot modify the access control check or metadata.
 CodeIgniter provisions
 ======================
 
-- :ref:`Public <application-structure-public>` folder, with application and system outside
+- :ref:`Public <application-structure-public>` folder, with application and system
+  outside
 - :doc:`../libraries/validation` library
-- :doc:`Security </libraries/security>` library provides for :ref:`CSRF protection <cross-site-request-forgery>`
+- :doc:`Security </libraries/security>` library provides for
+  :ref:`CSRF protection <cross-site-request-forgery>`
 - :doc:`../libraries/throttler` for rate limit
 - :php:func:`log_message()` function for logging
 - An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
@@ -165,7 +167,8 @@ CodeIgniter provisions
 - :php:func:`force_https()` function
 - :doc:`../libraries/encryption`
 - The :ref:`database config <database-config-explanation-of-values>` (``encrypt``)
-- An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
+- An official authentication and authorization framework
+  :ref:`CodeIgniter Shield <shield>`
 
 ******************
 A03:2021 Injection

From 9c6fec3a7b99064514d0738cde0541f0a3b04744 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 28 Mar 2024 11:06:46 +0900
Subject: [PATCH 11/65] docs: remove "content metadata"

I don't know what it means in this context.
---
 user_guide_src/source/concepts/security.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/user_guide_src/source/concepts/security.rst b/user_guide_src/source/concepts/security.rst
index b4a522fdf293..327bb715404c 100644
--- a/user_guide_src/source/concepts/security.rst
+++ b/user_guide_src/source/concepts/security.rst
@@ -225,7 +225,7 @@ CodeIgniter provisions
 - :doc:`../libraries/validation` library
 - :php:func:`esc()` function
 - :doc:`HTTP library <../incoming/incomingrequest>` provides for
-  :ref:`input field filtering <incomingrequest-filtering-input-data>` & content metadata
+  :ref:`input field filtering <incomingrequest-filtering-input-data>`
 - Support for :ref:`content-security-policy`
 - :doc:`../database/query_builder`
 - :ref:`Database escape methods <database-queries-escaping>`

From c707e9a3093c506a876c5e2a4a155924dd20c8a4 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 28 Mar 2024 12:53:43 +0900
Subject: [PATCH 12/65] docs: update title of link

---
 user_guide_src/source/concepts/security.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/user_guide_src/source/concepts/security.rst b/user_guide_src/source/concepts/security.rst
index 327bb715404c..69f2221a644f 100644
--- a/user_guide_src/source/concepts/security.rst
+++ b/user_guide_src/source/concepts/security.rst
@@ -10,7 +10,7 @@ We respect the `Open Web Application Security Project (OWASP) <https://owasp.org
 and follow their recommendations as much as possible.
 
 The following comes from
-`OWASP Top Ten Cheat Sheet <https://owasp.org/www-project-top-ten/>`_,
+`OWASP Top Ten <https://owasp.org/www-project-top-ten/>`_,
 identifying the top vulnerabilities for web applications.
 For each, we provide a brief description, the OWASP recommendations, and then
 the CodeIgniter provisions to address the problem.

From f54cdde5aaf18aaed5241ae948d1f3bead39e987 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Fri, 29 Mar 2024 22:22:12 +0900
Subject: [PATCH 13/65] docs: fix PHPDoc types in BaseModel

---
 phpstan-baseline.php | 45 --------------------------------------------
 system/BaseModel.php |  9 ++++++---
 2 files changed, 6 insertions(+), 48 deletions(-)

diff --git a/phpstan-baseline.php b/phpstan-baseline.php
index 3380da0b8733..c990137c437c 100644
--- a/phpstan-baseline.php
+++ b/phpstan-baseline.php
@@ -226,11 +226,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/BaseModel.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Method CodeIgniter\\\\BaseModel\\:\\:setValidationRules\\(\\) has parameter \\$validationRules with no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Method CodeIgniter\\\\BaseModel\\:\\:transformDataToArray\\(\\) return type has no value type specified in iterable type array\\.$#',
 	'count' => 1,
@@ -11391,16 +11386,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/tests/_support/Models/UserModel.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\ValidErrorsModel\\:\\:\\$validationRules \\(array\\<int, string\\>\\|string\\) does not accept default value of type array\\<string, array\\<int\\|string, array\\<string, string\\>\\|string\\>\\|string\\>\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/ValidErrorsModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\ValidModel\\:\\:\\$validationRules \\(array\\<int, string\\>\\|string\\) does not accept default value of type array\\<string, array\\<int, string\\>\\|string\\>\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/ValidModel.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Property Tests\\\\Support\\\\SomeEntity\\:\\:\\$attributes type has no value type specified in iterable type array\\.$#',
 	'count' => 1,
@@ -16301,41 +16286,11 @@
 	'count' => 1,
 	'path' => __DIR__ . '/tests/system/Models/UpdateModelTest.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Property class@anonymous/tests/system/Models/ValidationModelRuleGroupTest\\.php\\:368\\:\\:\\$validationRules \\(array\\<int, string\\>\\|string\\) does not accept default value of type array\\<string, string\\>\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/system/Models/ValidationModelRuleGroupTest.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property class@anonymous/tests/system/Models/ValidationModelRuleGroupTest\\.php\\:406\\:\\:\\$validationRules \\(array\\<int, string\\>\\|string\\) does not accept default value of type array\\<string, string\\>\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/system/Models/ValidationModelRuleGroupTest.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property class@anonymous/tests/system/Models/ValidationModelRuleGroupTest\\.php\\:446\\:\\:\\$validationRules \\(array\\<int, string\\>\\|string\\) does not accept default value of type array\\<string, string\\>\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/system/Models/ValidationModelRuleGroupTest.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Property class@anonymous/tests/system/Models/ValidationModelTest\\.php\\:243\\:\\:\\$grouptest has no type specified\\.$#',
 	'count' => 1,
 	'path' => __DIR__ . '/tests/system/Models/ValidationModelTest.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Property class@anonymous/tests/system/Models/ValidationModelTest\\.php\\:380\\:\\:\\$validationRules \\(array\\<int, string\\>\\|string\\) does not accept default value of type array\\<string, string\\>\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/system/Models/ValidationModelTest.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property class@anonymous/tests/system/Models/ValidationModelTest\\.php\\:418\\:\\:\\$validationRules \\(array\\<int, string\\>\\|string\\) does not accept default value of type array\\<string, string\\>\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/system/Models/ValidationModelTest.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property class@anonymous/tests/system/Models/ValidationModelTest\\.php\\:458\\:\\:\\$validationRules \\(array\\<int, string\\>\\|string\\) does not accept default value of type array\\<string, string\\>\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/system/Models/ValidationModelTest.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Cannot access property \\$key on array\\.$#',
 	'count' => 7,
diff --git a/system/BaseModel.php b/system/BaseModel.php
index 24479ec69362..9b085efa8400 100644
--- a/system/BaseModel.php
+++ b/system/BaseModel.php
@@ -173,11 +173,14 @@ abstract class BaseModel
     protected $db;
 
     /**
-     * Rules used to validate data in insert, update, and save methods.
+     * Rules used to validate data in insert(), update(), and save() methods.
+     *
      * The array must match the format of data passed to the Validation
      * library.
      *
-     * @var list<string>|string
+     * @see https://codeigniter4.github.io/userguide/models/model.html#setting-validation-rules
+     *
+     * @var array<string, array<string, array<string, string>|string>|string>|string
      */
     protected $validationRules = [];
 
@@ -1448,7 +1451,7 @@ public function setValidationMessage(string $field, array $fieldMessages)
      * Allows to set (and reset) validation rules.
      * It could be used when you have to change default or override current validate rules.
      *
-     * @param array $validationRules Value
+     * @param array<string, array<string, array<string, string>|string>|string> $validationRules Value
      *
      * @return $this
      */

From d272bfe1e4060be71b3da2917bb7517eb6b06fab Mon Sep 17 00:00:00 2001
From: "John Paul E. Balandan, CPA" <paulbalandan@gmail.com>
Date: Fri, 29 Mar 2024 23:37:47 +0800
Subject: [PATCH 14/65] refactor: simplify ImageMagickHandler::getVersion()

---
 system/Images/Handlers/ImageMagickHandler.php  | 8 +++-----
 tests/system/Images/ImageMagickHandlerTest.php | 9 ++++-----
 2 files changed, 7 insertions(+), 10 deletions(-)

diff --git a/system/Images/Handlers/ImageMagickHandler.php b/system/Images/Handlers/ImageMagickHandler.php
index cb8ce9bae763..0291fe784740 100644
--- a/system/Images/Handlers/ImageMagickHandler.php
+++ b/system/Images/Handlers/ImageMagickHandler.php
@@ -167,12 +167,10 @@ protected function _flip(string $direction)
      */
     public function getVersion(): string
     {
-        $result = $this->process('-version');
+        $versionString = $this->process('-version')[0];
+        preg_match('/ImageMagick\s(?P<version>[\S]+)/', $versionString, $matches);
 
-        // The first line has the version in it...
-        preg_match('/(ImageMagick\s[\S]+)/', $result[0], $matches);
-
-        return str_replace('ImageMagick ', '', $matches[0]);
+        return $matches['version'];
     }
 
     /**
diff --git a/tests/system/Images/ImageMagickHandlerTest.php b/tests/system/Images/ImageMagickHandlerTest.php
index b313fef96275..e02836693b44 100644
--- a/tests/system/Images/ImageMagickHandlerTest.php
+++ b/tests/system/Images/ImageMagickHandlerTest.php
@@ -80,11 +80,10 @@ protected function setUp(): void
     public function testGetVersion(): void
     {
         $version = $this->handler->getVersion();
-        // make sure that the call worked
-        $this->assertNotFalse($version);
-        // we should have a numeric version, greater than 6
-        $this->assertGreaterThanOrEqual(0, version_compare($version, '6.0.0'));
-        $this->assertLessThan(0, version_compare($version, '99.0.0'));
+
+        $this->assertNotSame('', $version);
+        $this->assertTrue(version_compare($version, '6.0.0', '>'));
+        $this->assertTrue(version_compare($version, '99.0.0', '<'));
     }
 
     public function testImageProperties(): void

From 2c7d445fff5168271fe9fb301c56d02219dd7e53 Mon Sep 17 00:00:00 2001
From: "John Paul E. Balandan, CPA" <paulbalandan@gmail.com>
Date: Fri, 29 Mar 2024 23:16:09 +0800
Subject: [PATCH 15/65] fix: early terminate processing of invalid library path

---
 phpstan-baseline.php                          |  2 +-
 system/Images/Handlers/ImageMagickHandler.php | 27 ++++++++++--------
 .../system/Images/ImageMagickHandlerTest.php  | 28 +++++++++++++++++++
 3 files changed, 45 insertions(+), 12 deletions(-)

diff --git a/phpstan-baseline.php b/phpstan-baseline.php
index 3380da0b8733..356871c8f251 100644
--- a/phpstan-baseline.php
+++ b/phpstan-baseline.php
@@ -7723,7 +7723,7 @@
 ];
 $ignoreErrors[] = [
 	'message' => '#^Construct empty\\(\\) is not allowed\\. Use more strict comparison\\.$#',
-	'count' => 9,
+	'count' => 8,
 	'path' => __DIR__ . '/system/Images/Handlers/ImageMagickHandler.php',
 ];
 $ignoreErrors[] = [
diff --git a/system/Images/Handlers/ImageMagickHandler.php b/system/Images/Handlers/ImageMagickHandler.php
index cb8ce9bae763..4b5e4fe6ad20 100644
--- a/system/Images/Handlers/ImageMagickHandler.php
+++ b/system/Images/Handlers/ImageMagickHandler.php
@@ -32,8 +32,6 @@ class ImageMagickHandler extends BaseHandler
     protected $resource;
 
     /**
-     * Constructor.
-     *
      * @param Images $config
      *
      * @throws ImageException
@@ -45,6 +43,22 @@ public function __construct($config = null)
         if (! (extension_loaded('imagick') || class_exists(Imagick::class))) {
             throw ImageException::forMissingExtension('IMAGICK'); // @codeCoverageIgnore
         }
+
+        $cmd = $this->config->libraryPath;
+
+        if ($cmd === '') {
+            throw ImageException::forInvalidImageLibraryPath($cmd);
+        }
+
+        if (preg_match('/convert$/i', $cmd) !== 1) {
+            $cmd = rtrim($cmd, '\/') . '/convert';
+
+            $this->config->libraryPath = $cmd;
+        }
+
+        if (! is_file($cmd)) {
+            throw ImageException::forInvalidImageLibraryPath($cmd);
+        }
     }
 
     /**
@@ -184,19 +198,10 @@ public function getVersion(): string
      */
     protected function process(string $action, int $quality = 100): array
     {
-        // Do we have a vaild library path?
-        if (empty($this->config->libraryPath)) {
-            throw ImageException::forInvalidImageLibraryPath($this->config->libraryPath);
-        }
-
         if ($action !== '-version') {
             $this->supportedFormatCheck();
         }
 
-        if (! preg_match('/convert$/i', $this->config->libraryPath)) {
-            $this->config->libraryPath = rtrim($this->config->libraryPath, '/') . '/convert';
-        }
-
         $cmd = $this->config->libraryPath;
         $cmd .= $action === '-version' ? ' ' . $action : ' -quality ' . $quality . ' ' . $action;
 
diff --git a/tests/system/Images/ImageMagickHandlerTest.php b/tests/system/Images/ImageMagickHandlerTest.php
index b313fef96275..29ed56597175 100644
--- a/tests/system/Images/ImageMagickHandlerTest.php
+++ b/tests/system/Images/ImageMagickHandlerTest.php
@@ -14,6 +14,7 @@
 use CodeIgniter\Config\Services;
 use CodeIgniter\Images\Exceptions\ImageException;
 use CodeIgniter\Images\Handlers\BaseHandler;
+use CodeIgniter\Images\Handlers\ImageMagickHandler;
 use CodeIgniter\Test\CIUnitTestCase;
 use Config\Images;
 use Imagick;
@@ -77,6 +78,33 @@ protected function setUp(): void
         $this->handler = Services::image('imagick', $config, false);
     }
 
+    /**
+     * @dataProvider provideNonexistentLibraryPathTerminatesProcessing
+     */
+    public function testNonexistentLibraryPathTerminatesProcessing(string $path, string $invalidPath): void
+    {
+        $this->expectException(ImageException::class);
+        $this->expectExceptionMessage(lang('Images.libPathInvalid', [$invalidPath]));
+
+        $config = new Images();
+
+        $config->libraryPath = $path;
+
+        new ImageMagickHandler($config);
+    }
+
+    /**
+     * @return iterable<string, list<string>>
+     */
+    public static function provideNonexistentLibraryPathTerminatesProcessing(): iterable
+    {
+        yield 'empty string' => ['', ''];
+
+        yield 'invalid file' => ['/var/log/convert', '/var/log/convert'];
+
+        yield 'nonexistent file' => ['/var/www/file', '/var/www/file/convert'];
+    }
+
     public function testGetVersion(): void
     {
         $version = $this->handler->getVersion();

From 24b94ee6529196aa45a98fa68c39e853d717ca36 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sat, 30 Mar 2024 21:07:15 +0900
Subject: [PATCH 16/65] docs: add empty line

---
 user_guide_src/source/libraries/images.rst | 1 +
 1 file changed, 1 insertion(+)

diff --git a/user_guide_src/source/libraries/images.rst b/user_guide_src/source/libraries/images.rst
index 0507c5d36529..409e40707ec8 100644
--- a/user_guide_src/source/libraries/images.rst
+++ b/user_guide_src/source/libraries/images.rst
@@ -49,6 +49,7 @@ Regardless of the type of processing you would like to perform
 (resizing, cropping, rotation, or watermarking), the general process is
 identical. You will set some preferences corresponding to the action you
 intend to perform, then call one of the available processing functions.
+
 For example, to create an image thumbnail you'll do this:
 
 .. literalinclude:: images/003.php

From c691ecb4d3cc2b565ac7c42292aa6a008e9f1cdb Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sat, 30 Mar 2024 21:07:36 +0900
Subject: [PATCH 17/65] docs: update description

---
 user_guide_src/source/libraries/images.rst | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/user_guide_src/source/libraries/images.rst b/user_guide_src/source/libraries/images.rst
index 409e40707ec8..4afdd2acd049 100644
--- a/user_guide_src/source/libraries/images.rst
+++ b/user_guide_src/source/libraries/images.rst
@@ -55,9 +55,9 @@ For example, to create an image thumbnail you'll do this:
 .. literalinclude:: images/003.php
 
 The above code tells the library to look for an image
-called *mypic.jpg* located in the source_image folder, then create a
-new image from it that is 100 x 100pixels using the GD2 image_library,
-and save it to a new file (the thumb). Since it is using the ``fit()`` method,
+called **mypic.jpg** located in the **/path/to/image** folder, then create a
+new image from it that is 100 x 100 pixels,
+and save it to a new file **mypic_thumb.jpg**. Since it is using the ``fit()`` method,
 it will attempt to find the best portion of the image to crop based on the
 desired aspect ratio, and then crop and resize the result.
 

From fad2cde0f30e8bd319b135bdda08d35bca2fd737 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sat, 30 Mar 2024 21:08:25 +0900
Subject: [PATCH 18/65] docs: add spaces

---
 user_guide_src/source/libraries/images.rst | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/user_guide_src/source/libraries/images.rst b/user_guide_src/source/libraries/images.rst
index 4afdd2acd049..0bbb167ecc9b 100644
--- a/user_guide_src/source/libraries/images.rst
+++ b/user_guide_src/source/libraries/images.rst
@@ -69,7 +69,7 @@ previous results:
 .. literalinclude:: images/004.php
 
 This example would take the same image and first fix any mobile phone orientation issues,
-rotate the image by 90 degrees, and then crop the result into a 100x100 pixel image,
+rotate the image by 90 degrees, and then crop the result into a 100 x 100 pixel image,
 starting at the top left corner. The result would be saved as the thumbnail.
 
 .. note:: In order for the image class to be allowed to do any
@@ -136,7 +136,7 @@ thumbnail images that should match a certain size/aspect ratio. This is handled
 - ``$maintainRatio`` will, if true, adjust the final dimensions as needed to maintain the image's original aspect ratio.
 - ``$masterDim`` specifies which dimension should be left untouched when ``$maintainRatio`` is true. Values can be: ``'width'``, ``'height'``, or ``'auto'``.
 
-To take a 50x50 pixel square out of the center of an image, you would need to first calculate the appropriate x and y
+To take a 50 x 50 pixel square out of the center of an image, you would need to first calculate the appropriate x and y
 offset values:
 
 .. literalinclude:: images/008.php

From b2a1a8acf78dde2c9c6341300585254b1f911abe Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sat, 30 Mar 2024 21:10:03 +0900
Subject: [PATCH 19/65] docs: decorate argument values

---
 user_guide_src/source/libraries/images.rst | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/user_guide_src/source/libraries/images.rst b/user_guide_src/source/libraries/images.rst
index 0bbb167ecc9b..e4bbfd816467 100644
--- a/user_guide_src/source/libraries/images.rst
+++ b/user_guide_src/source/libraries/images.rst
@@ -252,17 +252,17 @@ that allow you to specify how the text should be displayed:
 
 The possible options that are recognized are as follows:
 
-- ``color``         Text Color (hex number), i.e., #ff0000
-- ``opacity``        A number between 0 and 1 that represents the opacity of the text.
+- ``color``         Text Color (hex number), i.e., ``'#ff0000'``
+- ``opacity``        A number between ``0`` and ``1`` that represents the opacity of the text.
 - ``withShadow``    Boolean value whether to display a shadow or not.
 - ``shadowColor``   Color of the shadow (hex number)
 - ``shadowOffset``    How many pixels to offset the shadow. Applies to both the vertical and horizontal values.
-- ``hAlign``        Horizontal alignment: left, center, right
-- ``vAlign``        Vertical alignment: top, middle, bottom
+- ``hAlign``        Horizontal alignment: ``'left'``, ``'center'``, ``'right'``
+- ``vAlign``        Vertical alignment: ``'top'``, ``'middle'``, ``'bottom'``
 - ``hOffset``        Additional offset on the x axis, in pixels
 - ``vOffset``        Additional offset on the y axis, in pixels
 - ``fontPath``        The full server path to the TTF font you wish to use. System font will be used if none is given.
-- ``fontSize``        The font size to use. When using the GD handler with the system font, valid values are between 1-5.
+- ``fontSize``        The font size to use. When using the GD handler with the system font, valid values are between ``1`` to ``5``.
 
 .. note:: The ImageMagick driver does not recognize full server path for fontPath. Instead, simply provide the
         name of one of the installed system fonts that you wish to use, i.e., Calibri.

From be473e2924fbba0761ec8583732a352eb49de69b Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sat, 30 Mar 2024 21:10:34 +0900
Subject: [PATCH 20/65] docs: add missing `\`

---
 user_guide_src/source/libraries/images.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/user_guide_src/source/libraries/images.rst b/user_guide_src/source/libraries/images.rst
index e4bbfd816467..30537832cadd 100644
--- a/user_guide_src/source/libraries/images.rst
+++ b/user_guide_src/source/libraries/images.rst
@@ -232,7 +232,7 @@ The ``rotate()`` method allows you to rotate an image in 90 degree increments::
 - ``$angle`` is the number of degrees to rotate. One of ``90``, ``180``, ``270``.
 
 .. note:: While the ``$angle`` parameter accepts a float, it will convert it to an integer during the process.
-        If the value is any other than the three values listed above, it will throw a CodeIgniter\Images\ImageException.
+        If the value is any other than the three values listed above, it will throw a ``CodeIgniter\Images\ImageException``.
 
 Adding a Text Watermark
 =======================

From c729ffd3ae28a1fdfcf34dbc7fe4e94ffa96fce9 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sat, 30 Mar 2024 21:11:23 +0900
Subject: [PATCH 21/65] docs: replace WEBP with WebP

---
 user_guide_src/source/libraries/images.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/user_guide_src/source/libraries/images.rst b/user_guide_src/source/libraries/images.rst
index 30537832cadd..08efccfe92f9 100644
--- a/user_guide_src/source/libraries/images.rst
+++ b/user_guide_src/source/libraries/images.rst
@@ -86,7 +86,7 @@ Image Quality
 
 ``save()`` can take an additional parameter ``$quality`` to alter the resulting image
 quality. Values range from 0 to 100 with 90 being the framework default. This parameter
-only applies to JPEG and WEBP images, will be ignored otherwise:
+only applies to JPEG and WebP images, will be ignored otherwise:
 
 .. note:: The parameter ``$quality`` for WebP can be used since v4.4.0.
 

From 4948a28e5f3b49268a39f53517eb0e2f1a7e317e Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sat, 30 Mar 2024 22:25:19 +0900
Subject: [PATCH 22/65] docs: add missing "Upgrade Image Manipulation Class"

---
 .../source/installation/upgrade_4xx.rst       |  1 +
 .../source/installation/upgrade_images.rst    | 42 +++++++++++++++++++
 .../installation/upgrade_images/001.php       |  8 ++++
 .../upgrade_images/ci3sample/001.php          | 12 ++++++
 4 files changed, 63 insertions(+)
 create mode 100644 user_guide_src/source/installation/upgrade_images.rst
 create mode 100644 user_guide_src/source/installation/upgrade_images/001.php
 create mode 100644 user_guide_src/source/installation/upgrade_images/ci3sample/001.php

diff --git a/user_guide_src/source/installation/upgrade_4xx.rst b/user_guide_src/source/installation/upgrade_4xx.rst
index 1253e783bb2f..97a7a567a79d 100644
--- a/user_guide_src/source/installation/upgrade_4xx.rst
+++ b/user_guide_src/source/installation/upgrade_4xx.rst
@@ -240,6 +240,7 @@ Upgrading Libraries
     upgrade_encryption
     upgrade_file_upload
     upgrade_html_tables
+    upgrade_images
     upgrade_localization
     upgrade_migrations
     upgrade_pagination
diff --git a/user_guide_src/source/installation/upgrade_images.rst b/user_guide_src/source/installation/upgrade_images.rst
new file mode 100644
index 000000000000..1e69bb260553
--- /dev/null
+++ b/user_guide_src/source/installation/upgrade_images.rst
@@ -0,0 +1,42 @@
+Upgrade Image Manipulation Class
+################################
+
+.. contents::
+    :local:
+    :depth: 2
+
+Documentations
+==============
+
+- `Image Manipulation Class Documentation CodeIgniter 3.X <https://www.codeigniter.com/userguide3/libraries/image_lib.html>`_
+- :doc:`Image Manipulation Class Documentation CodeIgniter 4.X <../libraries/images>`
+
+What has been changed
+=====================
+- The preferences passed to the constructor or ``initialize()`` method in CI3
+  have been changed to be specified in the new methods in CI4.
+- Some preferences like ``create_thumb`` are removed.
+- In CI4, the ``save()`` method must be called to save the manipulated image.
+- The ``display_errors()`` has been removed, and an exception will be thrown
+  if an error occurs.
+
+Upgrade Guide
+=============
+1. Within your class change the ``$this->load->library('image_lib');`` to
+   ``$image = \Config\Services::image();``.
+2. Change the preferences passed to the constructor or ``initialize()`` method
+   to be specified in the corresponding methods.
+3. Call the ``save()`` method to save the file.
+
+Code Example
+============
+
+CodeIgniter Version 3.x
+------------------------
+
+.. literalinclude:: upgrade_images/ci3sample/001.php
+
+CodeIgniter Version 4.x
+-----------------------
+
+.. literalinclude:: upgrade_images/001.php
diff --git a/user_guide_src/source/installation/upgrade_images/001.php b/user_guide_src/source/installation/upgrade_images/001.php
new file mode 100644
index 000000000000..c40e9b8076a9
--- /dev/null
+++ b/user_guide_src/source/installation/upgrade_images/001.php
@@ -0,0 +1,8 @@
+<?php
+
+$image = \Config\Services::image();
+
+$image
+    ->withFile('/path/to/image/mypic.jpg')
+    ->resize(75, 50, true)
+    ->save('/path/to/image/mypic_thumb.jpg');
diff --git a/user_guide_src/source/installation/upgrade_images/ci3sample/001.php b/user_guide_src/source/installation/upgrade_images/ci3sample/001.php
new file mode 100644
index 000000000000..94a8553a5e2a
--- /dev/null
+++ b/user_guide_src/source/installation/upgrade_images/ci3sample/001.php
@@ -0,0 +1,12 @@
+<?php
+
+$config['image_library']  = 'gd2';
+$config['source_image']   = '/path/to/image/mypic.jpg';
+$config['create_thumb']   = TRUE;
+$config['maintain_ratio'] = TRUE;
+$config['width']          = 75;
+$config['height']         = 50;
+
+$this->load->library('image_lib', $config);
+
+$this->image_lib->resize();

From dd974c85583b29fabc6470d56e87e672e16c610c Mon Sep 17 00:00:00 2001
From: "John Paul E. Balandan, CPA" <paulbalandan@gmail.com>
Date: Sat, 30 Mar 2024 23:41:10 +0800
Subject: [PATCH 23/65] chore: realign contents of .gitattributes

---
 .gitattributes | 44 +++++++++++++++++++++++---------------------
 1 file changed, 23 insertions(+), 21 deletions(-)

diff --git a/.gitattributes b/.gitattributes
index 4b9a73d9d0e7..e2219ef90a4e 100644
--- a/.gitattributes
+++ b/.gitattributes
@@ -5,31 +5,33 @@
 
 # git files
 .gitattributes export-ignore
-.gitignore export-ignore
+.gitignore     export-ignore
 
-# Don't give admin files
-.github/ export-ignore
-admin/ export-ignore
-contributing/ export-ignore
-.editorconfig export-ignore
-.nojekyll export-ignore
+# admin files
+.github/           export-ignore
+admin/             export-ignore
+contributing/      export-ignore
+.editorconfig      export-ignore
 CODE_OF_CONDUCT.md export-ignore
-CONTRIBUTING.md export-ignore
+CONTRIBUTING.md    export-ignore
 
-# They don't want our test files
-tests/AutoReview/ export-ignore
-tests/system/ export-ignore
-utils/ export-ignore
-deptrac.yaml export-ignore
-rector.php export-ignore
-phpunit.xml.dist export-ignore
-phpstan-baseline.neon.dist export-ignore
-phpstan.neon.dist export-ignore
-phpstan-bootstrap.php export-ignore
-.php-cs-fixer.dist.php export-ignore
-.php-cs-fixer.no-header.php export-ignore
+# contributor/development files
+tests/                       export-ignore
+utils/                       export-ignore
+.php-cs-fixer.dist.php       export-ignore
+.php-cs-fixer.no-header.php  export-ignore
 .php-cs-fixer.user-guide.php export-ignore
+deptrac.yaml                 export-ignore
+phpstan-baseline.neon.dist   export-ignore
+phpstan-bootstrap.php        export-ignore
+phpstan.neon.dist            export-ignore
+phpunit.xml.dist             export-ignore
+psalm_autoload.php           export-ignore
+psalm-baseline.php           export-ignore
+psalm.xml                    export-ignore
+rector.php                   export-ignore
 
-# The source user guide, either
+# source user guide
 user_guide_src/ export-ignore
+.nojekyll       export-ignore
 phpdoc.dist.xml export-ignore

From 50eafce5b64555739207c175043d1593007f28d2 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 09:25:32 +0900
Subject: [PATCH 24/65] docs: add sub section titles

---
 user_guide_src/source/general/errors.rst | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/user_guide_src/source/general/errors.rst b/user_guide_src/source/general/errors.rst
index 9e49711e7954..b84e2a299006 100644
--- a/user_guide_src/source/general/errors.rst
+++ b/user_guide_src/source/general/errors.rst
@@ -19,11 +19,17 @@ Using Exceptions
 
 This section is a quick overview for newer programmers, or for developers who are not experienced with using exceptions.
 
+What is Exceptions
+------------------
+
 Exceptions are simply events that happen when the exception is "thrown". This halts the current flow of the script, and
 execution is then sent to the error handler which displays the appropriate error page:
 
 .. literalinclude:: errors/001.php
 
+Catching Exceptions
+-------------------
+
 If you are calling a method that might throw an exception, you can catch that exception using a ``try/catch`` block:
 
 .. literalinclude:: errors/002.php
@@ -31,6 +37,9 @@ If you are calling a method that might throw an exception, you can catch that ex
 If the ``$userModel`` throws an exception, it is caught and the code within the catch block is executed. In this example,
 the scripts dies, echoing the error message that the ``UserModel`` defined.
 
+Catching Specific Exceptions
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
 In the example above, we catch any type of Exception. If we only want to watch for specific types of exceptions, like
 a ``UnknownFileException``, we can specify that in the catch parameter. Any other exceptions that are thrown and are
 not child classes of the caught exception will be passed on to the error handler:

From 0d681900441f7ea56a044f6d996fa033cc008307 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 09:26:22 +0900
Subject: [PATCH 25/65] docs: use real Exception class in sample code

---
 user_guide_src/source/general/errors.rst     | 2 +-
 user_guide_src/source/general/errors/003.php | 4 +++-
 user_guide_src/source/general/errors/004.php | 4 +++-
 3 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/user_guide_src/source/general/errors.rst b/user_guide_src/source/general/errors.rst
index b84e2a299006..2c947ae7deb7 100644
--- a/user_guide_src/source/general/errors.rst
+++ b/user_guide_src/source/general/errors.rst
@@ -41,7 +41,7 @@ Catching Specific Exceptions
 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
 In the example above, we catch any type of Exception. If we only want to watch for specific types of exceptions, like
-a ``UnknownFileException``, we can specify that in the catch parameter. Any other exceptions that are thrown and are
+a ``DataException``, we can specify that in the catch parameter. Any other exceptions that are thrown and are
 not child classes of the caught exception will be passed on to the error handler:
 
 .. literalinclude:: errors/003.php
diff --git a/user_guide_src/source/general/errors/003.php b/user_guide_src/source/general/errors/003.php
index 2d230d34f29a..07418eef5504 100644
--- a/user_guide_src/source/general/errors/003.php
+++ b/user_guide_src/source/general/errors/003.php
@@ -1,7 +1,9 @@
 <?php
 
+use CodeIgniter\Database\Exceptions\DataException;
+
 try {
     $user = $userModel->find($id);
-} catch (\CodeIgniter\UnknownFileException $e) {
+} catch (DataException $e) {
     // do something here...
 }
diff --git a/user_guide_src/source/general/errors/004.php b/user_guide_src/source/general/errors/004.php
index 752b23bdba30..4b816ece1894 100644
--- a/user_guide_src/source/general/errors/004.php
+++ b/user_guide_src/source/general/errors/004.php
@@ -1,8 +1,10 @@
 <?php
 
+use CodeIgniter\Database\Exceptions\DataException;
+
 try {
     $user = $userModel->find($id);
-} catch (\CodeIgniter\UnknownFileException $e) {
+} catch (DataException $e) {
     // do something here...
 
     throw new \RuntimeException($e->getMessage(), $e->getCode(), $e);

From 2f6402aa1060e7f35036ff6dad32937bcfeaaf6f Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 09:40:45 +0900
Subject: [PATCH 26/65] docs: update sample config class

---
 user_guide_src/source/general/errors/005.php | 4 +++-
 user_guide_src/source/general/errors/006.php | 4 +++-
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/user_guide_src/source/general/errors/005.php b/user_guide_src/source/general/errors/005.php
index 54a3276fb46f..152a08137e7b 100644
--- a/user_guide_src/source/general/errors/005.php
+++ b/user_guide_src/source/general/errors/005.php
@@ -6,5 +6,7 @@
 
 class Exceptions extends BaseConfig
 {
-    public $log = true;
+    // ...
+    public bool $log = true;
+    // ...
 }
diff --git a/user_guide_src/source/general/errors/006.php b/user_guide_src/source/general/errors/006.php
index 9d9bb636b2ff..614d61e18231 100644
--- a/user_guide_src/source/general/errors/006.php
+++ b/user_guide_src/source/general/errors/006.php
@@ -6,5 +6,7 @@
 
 class Exceptions extends BaseConfig
 {
-    public $ignoredCodes = [404];
+    // ...
+    public array $ignoreCodes = [404];
+    // ...
 }

From 042a7bd08ab7881323d68c55ae682b2dffd987d4 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 09:41:35 +0900
Subject: [PATCH 27/65] docs: update screenshot of error page

---
 user_guide_src/source/images/error.png | Bin 87299 -> 123949 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/user_guide_src/source/images/error.png b/user_guide_src/source/images/error.png
index 4c72bc4e43ffd45c9c1be60763c398fc62d34446..14fac852d48f872212fe0ba9ee1bc1e06d7c6e76 100644
GIT binary patch
literal 123949
zcmaI81z1#H*FKDtgoJ~D(nv~*bc29OcMK`r-7O^!NJ&W}NS6%Vh#(Ep-Q79Fz`%F-
zJ<l7@_u}8{LJo7zK6~%A*Is+Ad);dwN(ygrut>0wkdSbs-$|+<A)&4zA)z>9paY+*
zcNS|RAwAHsl#o!8mXM%Qa<VtGv@u0OVvKQ(9%TOI__WjD>YFqTCIb}vMauYYX6l)Q
z3bS?Yq|}0Mf9~1JP6cKipFntOD&GY*Swc_?5}gb`Up+tLi&K~n4(ah|!+Fv9hNp<I
z@OyXbk1_7ZAx2Vk^lj-=b#a}pQ9&Zf&)U9inbJIo>iizUehXHdm}F@=1^aV&EMn)W
zHss7i2CSZeFYIrltiWAyu1A{6V!Uc-HhxPNRvkY)RBKhcRoVoJ%&mP)9P58GPzrZT
zN?yFK)f=?LZgX#&cacc9U3~2)bvyfWdOq#NfLyqHxYtv2B1(=d)Tf4OPo(s3lQ8}I
zBpD5VL>fU@_?bK~q>Z8(XoRF6rx`Z3J-E)wblq9tEjBO2`F+;vr#`rzw|McOzIq#c
zOHyek2Alm8cjgP8iLGel1Lc?Nh>uiQikt-&VcGX^8Jx+V?BSE~I@Dj|PMjIG(x)wJ
z1Jc$o)si-omq%g(t}&1vgjyn@0#^@!9}?gPSd=dxksboSLBNk>Ch~vXMP188`LAmf
z=eq~RRVAdQf#0gePNt@I&KCAAZ}kPjfLBdes%g1s$;$~C+uO1kn%EnevU%7#+%-WG
z@(=(nZB1PasXT0L?3@KWgrEQOgaB}T_c8l(s(&7Fu@-)=C9gy!Vee#0#l!ZJ?d5Y3
zEGjB0Atw_v0TszN|85TaCH&mN#l=B@o!#Btoz0z-&ECnJor9mBpZ(=4_E)c1fhSm<
zJ?&f!Jy`9WY5w(+|9X$4sk5<@rGty5y&cuvdku~3U0sBqKfmkfzyJMfoTeU@|I?G5
z^S`GBOpyKV4m$_iOZNYMH_%k*?o$CJOAk{Uu%x9eAReF(5k5Xnp?{wLKX?A8$N$w*
z>wj8uyyE_krvK~K|G%lav#FDWy)DqEi^%^h&A<Eo-#7o=P>B6*>i<g=|B~}Rp8|pw
z!4hKs??n^AVizqEMnV!pl9m)#^LVhE_Rxc{gXH6F@Sn%KPe|RQma>rDq{`0&vy8;0
z&>BABpv|Zke`=zc2n@@7!tAED8#syoBswxn1@%S1EP{T(ad5qoHZ)dj-ZOo5cR*pr
z-TXZD^6b|9xcOo^Jc~{?;pqcp{0~T|R7ejn#E|~uvI{4mQ36l6a`Sw_e^B0b6#4%=
z@$Yt8e){?pPw#odKlcO3KwX1|dTMBYYmSO~93B>i^x$vzSEG^ki}-`()&DY1{0A&+
zn-BkTvy0=wdR#AuLtzjSD$_?Xaq)n$B2D(9__C^TZ7_QU3(jaAx7}<l3%DEQ0fyRR
zWY?YXs;UY729;FXAaooS(Tt4D_+=xLZ;y2cq2k4#yrFJ;)7A4{JMkqyR|D_F77+hB
z^TU{?CYB~v2okE3*kZH<ZaEI`>`RRisA;dw@oM+kh@$A!>DGvCM;Kwbv0j5)6%Nm2
zYiY}k*VWZQi}BIg6yM5c&RsytH8+T>#JsOg8*_eFdwanI3O`cp>!;S)zZ&EobBT=`
z7#bQ*U*BF1`WFMktlr8^nf@*vyW7j&QaP0UwsTDt+;Gs`uva;vP(2{9Gg-6XXHDsM
z@vVW)5tBwxrf8>r$}FYsEdN?l-?IbgfH(2Doj|dYdt8g=OOc2B&p@=Z-HJhaq1=G3
zpARW_r*-ob$R{EdMG>RTSNjcGUTG5pf(K+X=cLKrFbG3>*Qba<Rj>#hnSo;mVJSZW
zgMv#&I1wu}!~bRqP%i8d;p{(+p3d(3QNm|mXQFNdZ!T8mxIND2+*wCnWt&Q#^Uix1
z3vOlxWet@hCJg-Na^;dhGf{S%UWJcfB~c=9MlZhVmS4DnlaYe^o9Ton8-wn?8ooUl
z4T`l3epgfDI`(_$#T91#P)h&nA(!SlEP=!XR-NhU8M__$#b|-*UMQvCj~JS_W;vMk
zWz|z=qzy;ENjcdL`Zxz&5UV?7EdzXt^}$|tsm=rZXWa}LlhM=?y2smNMTxZ(TRq+D
zM{-vxwF54mr`I!f4SQ{1qZzN<O>dg%hsK!D%5OWGCE8WNIl||&&be3L8mWh1EcQw9
z{Qf*wR^a{aW9X2xU80^_c~Mz&eWR3m;dRa>j%opkg7MupK}GeDm*xd_hXxoq#Rdwo
zopw=WNO&h_HTmNkxyNFF+q~ySohahniQ)Cd(HY`=Vde{+tk07SYUEA|?_xdYe(rBy
z+fzXHw4bFHuWuR-N~B}y$G=HDWS|drCUYHCcH8_GnvDJuBprV+>pWNmhwX&Mg8P%X
zjjy1~b%$-(wnZh?PDV-X39L1<!yVEXDu1YW;Ca^UkL^$Td86V9*)(So^}PzJEJuE?
z_a&_a<5pe8sVX=wXAOS8p*5t{zUiUhyMk-}HrHy^t#>IXGHNiJnTmN!u~qA(Q14zn
zX@ng+W|~D+O=?>iBN%6y1nI%-WHo3OqPB*y>J6%C=z&Vl=DqD1pt(@cocn^W-mR|t
zoa<hSeKQAU4M}vNXmAD|2*RZ`7T!~C+?gz?D=aIJKFTq>8ed)FS9)b!Gv`(jf=ygs
zT{vj{$M0;)ytB$Rhx@t8kBfZ0f{Qm$lgc9EX9V<e4(v*C;zWHQES)N=c;y=#hMr3H
zkez;7Md;05hI*Ct7%p)V%+?>_V!!k38KPGsWN0U;#EIFMpKwl-nI^VpI9Ja9ms-Nv
zFz%ggG(<)#ZYKHtlLwXRN8#hI9L^tMI}_~VHaNL-=$0QCm;>HY`i_!&uSD<~Sxz!a
ziy27@^jc!tz?Yb1i-4(3;T&@v?hIvzlKY+xDZGpQKzH;8`78Q-l;}-ukqrViQDZk(
z&riL3b9LbE2yOm?HbN66WCUIQ5}z!Y<$ch^Yo^R#xDRY@XCim|CRhRv30J=4ifI8g
z^})%YsG?Ts_Mi9LN#^N}MxmeriYguCh(QM8;;9OA!J=AFeDU(*^l}A>wiK4pvq@vT
z^YgPA`^2r?9-Z7`uxY?koQ(|sW`fCI8lRWAwnIUIxA2{^%Ka74zS%(P7Cf#dHGZ;s
zP~_^Xq!!qyCtlWfvtm%Bg4n=^LnA&|0Q@a15j7&7aP&Yy7^cRcbhb6pd2@ZDs2RV{
znwD3yczv-FrKv&Sq+MEEaqTQlxUoUlA~bZlE)bW?epzjr{5IhO9Q)zg9<cMg2ja#G
z`E~W_XS|xbw_Qv_HetG8nA%4tW@wql$CI)?+pbk!Ia51PTfm+d@&vS(wHNUa3{W8B
zYlUETajUmQus~@?ySCp1-B#Pq2uxH0HefO>jirX`eInr}^m8Wy@5{Bsxka6E>bGQ$
z!OkUC6QyYt>BFrOY`XT%mu9ItHc#VOsJIpr2@{HGxfUsfJbo}6Ab(qiztz<fblqMJ
zQ))!*K*8l}P3E>XtFjt{9*IWQxX=4`La>_C;nt%yD7ZqcbyAl2%u8(zZg4J$h-m=L
zkTn7}UgLSPF;(lhVl(-}a9@|Le)GBY=#QASwGDpkECYYUSi0AC0jT3$yHW$Ku1C!4
z*P*%(=qS39W!Az<UTZBXB{@09Gk-(n0JC`Y;y5Z>jONF5n<`H9KGY*d<B%u972JKv
zV9|IoAjl?NsSAE9?GTd_hgWE@+?i}$x|J=r+|}rLVszEbqf$P~9oG@Nt$M4Pp_F7)
z0*~Zh|N50QN0)7FIAw=Q1XMuR(=AY1oTXbk2kB9}jk`)OR^zNvB4n@o-fPR16taBO
zNqzwTCMga9cL#1Kj-|lUh*#q@N*h3H*Hsf7b;prUIi8m?)(yxM7pXQVB+a$0V97yg
zi0vWVpok`_yzf>MfW98+DvWJ3GUl0U%=o99*Sj~S*k15cg)4$Fx8Xg<3W)MIFcLcL
zOfFXKN{6=9)mE6nmP%dWc3q))YP#|=^N{W!zp(5<-3A52`@-8IgQD9aKQv)teUBwH
z_rV=q_S!{cQW2k8O9j@s7A&tM=tjDC@+=eV(Yte@(F&D~f=VN;8U?)ucyf{a{#L!6
z7thDCh9cTy_L1f%0~!fJA}!5|E;n9g8VOXgeFlD)9m0vQU7~Z#k=&`)0F*so%Q~>v
zxUh>{uEsjbkDuaf`=g*g`lP4W^hw%H&xO_HW?N96gty#sB(Lt~1lZ6GPKXLl^@StL
zo?{=_d4z5)F}wb5^9hXXbOf9~=XI99u<1AAzLvVM!6&Zj=)|fxuBo2Og8u9LJz4Sl
zyvFnI@CcS}*L_N#L-Aq{O7<i5(*3Og&IFFim~Pjh^CCaet)x=x0&j!s(<^E5>(kc?
zgA;o0b7OO%D}GPSgV6Du26f~;za97qn{)LCr^||b_rkrjPA@btfs_88=w!HaV|w0D
zotM!ulRlUR9HHU_)JD?}!L(>~ZJvg2QEns21?wq4foQq%V>{xOpKu+<!TP}FX=}kG
zIFqnndMKU{MM$6@hP6XB{}5MavY&^QlGjlOal@+f#(-;(HN;B9LPvDnRSspAO|O2E
zP4HkDT@n;sJ!>U9qU$m5s!AlNSMOGy<~G}nlNI;IPK|^%56gS6Dv{us=`-Q&73KZ6
zl>?dyR#+s#gK50H)q5c?i66rmcp1?Ue{df{*syMD+qn^oxY&;b*v<{nI8>r77!tua
z7=$L=YbBeyl81`AgkNynxHc0H3n_Q?+aU=>KP9xN)I5^~i<jUyY1SoYgtR>`KIN4n
z06$=t<;KO<=Ut}?3N4Hr^AU-h1rpto`0`E%vEHsEHiVf;6-5Zv5r#1@BjRJXX8X2M
z4yVsW@iM@MehqN9mK>3-xuW(H*IAQO)=^HKSEWWSd~wL=!a_&3D29=ges)^FWTjrf
zV{?`B6(>sA?qr_Hk`8i(kQxqY*(&|vp9MTKj_}uWf?o8Wg7z5>NZ1m6f&Yrsgu`j&
z3gj?Z1k4?=L(leR8UiX&RdF_9sWH~|?V*z5C{|+?E4YFJ)B~daYLRfC2omnp#qYM@
zfkJZQ-=7^5s-S1F4tbd_0`$L=8x#Z6+CD$yoUO3<d5!i=7_Z~?c}u&gu>FGft#GI8
zAUCYR<fN{yC(u7<OLnb$<s>X)x^Rb@x&n&o%f8(pKcP412TtIzo#r~z%R6Aev|I}L
z;<9&&$TeQtDR7o?)jM18_jjMp@PR{in3EF~OHZ+GrjiN|F1T`hn+xrCnunYh76=4u
zrlx#1;O3drCC&odUD;$oj-rvyEu=1rjPlUt!UJL91wr@y-2s}R7Ms~vxZlWS5nf2p
zKI@z_JhE?9=$B_z$rWAfPS%1*y?MJLI}0roQjlJNwahT2fSjTKgfSwWKe<!WHsMEs
zx8AwUSM~ah=$7>YxKwV7p{~T`Lm=MB1cBav3zhLuwg910DfuD8ACyoj+l}TcJEB>A
z_(nCMAv#pmo^YrO7ASpXg7_9t9#}kgilX&8ou#Es9K{Idiz#BMgAqKl717|w*c%}&
zYUDoY`0ym*!L&wnD^-k~=sw+Z4|ka+oJ1*zE)L8LY$~nm0~^ycj&136D)T<y-|zIQ
z6<)GMSR_<Mv#4L!Stzh#dSM+jou`x1_O?l~WpxJ<&)sNiU7OA3#X2ZgW--$DSR!TB
z&18u$hX(cxAqnXzH7E*f(K2ZHoG!h^jFmkcdf%bbO(%D%_#OR`?M$`nMxiw;hmxF6
zzGh82sSi_Hur`Fm$so=(10FV+W4zTn+<FE0_s$L5#M^=`H)llz<m!>Zb-ip2ePCiQ
z$F2>%sSJ|$R`{h<$_!*Ch~<rR>`rTZHu~<@S+BTT6W_zfG!5u_iHO<vL58lZO|2vf
zRA-&!?x_UGA92Y^MB?0Zg3KUTOa=rCy(G+5gas=kAH0?IjpAEAS~4@fMFuBcY^Y}$
zwHbXweN<(z_r)WN>cLuS#h~NsAL#^M`)a*qW_Ut}V!I+E&axZpLHo*e7uGL}gs_&G
ziJix&Iao<fua!lkTUpD&;>D*dF^f-dolshUaK(6#RGx|5x;kGycfh-yltx$Q^z-pr
zVX4cYguwz3knOe8wv@dxAy1LHV3IXplBHOn_q7^$9Zwy;tBbB@e!F`HBVuE&G)EU&
zaZf|bE=_D<xE@9JDqn1ApjEk&dh5bUn6+P5jvN$m=&Fq9VOP%ezr86p0Y%ZxhZ3uG
ze?N#jyDa2aSewsJ6uCi*YIY_pbKB}j!9y{4`c$X(-Jl;t8D1KfAD3UYeWm2fHsqep
z&Z%?$-H&-QCnnwa=4JvmRw48HYpz$<snA&UurBe~P>ub<q&>ZF;&u%rw-Dp@_m}u4
zf91Rdb~tWyM_IcN8kpBxR;M49wB^jG-qLl-``H@l_Ac5`dyU*t#>-^*>rTm$0*>*c
z52?Ss+fNu;^cS+u^2d2aD|hkp4PS{aXXB?F4~U^t>>nxtrk<^b<u_bECZd!ub>Tk?
z7B#Qp)C2rJcquE)IN=RPS%V)jzAHW^@|~Wb8qo2vsa$$vclgAv2wj<^Z#&cxx`@UM
z2?Ax0QZ#|tZIyJMw8{BAV-C~Mf(35dY1&t>4LrpWQRw8v1VKj?AV`qncoP^^QKQLo
zg-To;CfYWcclZx6Q;nDn+jL~#c?@HHpU;ur&oyEeS4YW`1Ah!*1RpV4C~ZthXU4h4
zl}cq%J??1Gq!&nMRCr#>F6yNlWKbo29@NgRhXUz@zI^l$QzS`0!^O1Fz88&cBwFEp
zycTWIuZNUAFSk7Di+aNkmb0DX)T3D#eKXWV^zh~s1xo$$6zhB#K+2=Ib1gZTAPA_0
zo>`U#)-M-WynWhujN-JWe4G5rHO%|LH(%il`fDy~`mPrWzPf`?{cY7F17|ya4U$5@
z_3SQwHxv$-LH?kEF$MP27y7zmWwgb?5~HSCC{CERH_t!{DHb|J{8$C)p#p3V_^qaj
zb_!e6zOncguz32A(%L~{JgznZM2Qe_*k%3{m&RTJnLb|9RN>zp{>aAs$bTY|Ya72-
z)*wohCaQ)Q#&(jSsj-KsgZxj2Tm9WH4=7;15FL=rsAd+mm!6ORh`R+}SC-!XfWZDi
zgdAMKGNTM$s)YY=VWA11O?l>Igi{Q5wOG>Ns<?HT#<-aTs%nqS?Hv~`@K(%9l~fi^
z94#C5Yg$znd?l>7&<v<0$N8Z0S|UC@cEe$~Vw2oaVCr!G!REQr*R)w3x}GiV3%IIq
zs9NOfLchm;k;HlHqIW8&9*%@9T&z72KK>dB`57o0DTjaf8V}*X(=<2H`o<{S9Xyue
z4lW3J*f0<6-H7kXq+*V>h(?3xzEXkc-LTf6H(|-_JbdAlqWmXi&EgPc>SF}S@8ZKY
z%PeHWi?7u%2|bNh5Y!%vX|*f;zELqMq4$aLpHV+AtY5D~i-d2;eyv^By6mY_G#w>k
zQ1vGNz`$oyWRpwM?tYO04?MsldDl~=#l`_*;mWMrhwtcmPM;ZeMN``$(NfD!u&XA3
zczq7-(vmwF$$WhH2JB^9|6ISx!Q7rGXeVE=r^B^;AII3lf=qzpP+GrT7%boYy)XC~
zO$^A;r0UyFTD~97F70Ql_nUKRzK@jyes+e6{t8+*A)?qG(U%+*&NC01Egikh^3@1z
zSXW|_|I<2k-r^vF`BR?}qw{SI_op%8T~^<=PFH&?hhnaJ%IrOL?X?rw#ZQM<6GoU5
zOWwMdu+P{!doL8k1Le6SGtwZ#k|)9EoSqa+zLgP6ufEtO=CH@pDc1Tyh__WCsPhg2
zm=@cb%E}6Z6c8uq{;)F#*=f_NRE|UAg2pXug#V&;)BMyc1Wh0Zwx9>sSEn4Q(A8M#
zetlYhu@PMJ{QUCTy>Q>x-(GU&Oa4LJ`eor6Jd=Mai~2e>;_N_eaKwVY`>euKar+z+
z%mzLzVBb;|A3PpT&9k?*ES1gLh%AjLO~cbhWg@$FFSs2oKRgkR-H4Vn50Qh1$aaa|
z#oa|z0Klj5GyF{~HB!JSYNNNj3(|qJRhBKH8zg3rFnyfOdnW9Cb}Btf#U)fbmZ|m=
zkJbn?2&Y75TZ*U7Z>zHjl?);)a#1r|IEejfUR_<oO@^{`VdKP7-9C%Ii%Us{ke2OT
z<FMp06gng(5#)#|nu7@qQ~J}YpB0G*)lfZ5cqlXB5}Rv>Pjd5s&H4cv`+m2!^y}V}
zL19XB%#FE_O8mfCX9Bc30!uM!_ZbIr8B$iwzPR6b@VGakr*vN|kc!1i;gDg=RsxDo
zmM_0Gf}RsXJBA4pmNSZfLZ7uU=a?1E+9bRPP#@<u<gIoPG^PGdwL^{od>vOrH@7?y
zvB<mBFOv++5e}3wRZ)_lwV0WBR4<t2fqu@l410hQLJq|M-2X8M9<KYU;_)cE>0Z{x
z+pK^xmRVXMnO5R#$@7Ng)4n0!Qc?B~p)<tQji>CCtIOLpzbw_?s6GASQ7h3)uIu9w
zz4vf@>3VH$VAWG=T%cz-vFA%?jp87#Z%h6l?Ul%}We4|=`v*}r=J_y;n+DnQ&+U}p
zZ+Rf(Y}?boFqXJq3mG?pWBv@1C#J>*zF_fPf}>d1*`7yJjSOQ7zV=(*@6OYjMPYr1
z3;hE6$tNuRuF|KoF&>oFpH&e#m^V|g+x*`JFz#?%4R_?rq((#iIcf(#{12_$Qer3%
z`xmln5Ky*H=nx}61y%&(D5-zlj>V71ZXGdF@_ZMF!`21LiA;T?Nc3x`qd$u>dl(Nf
z#X-KO651MGpz21cfQ;LB%wOS@NAOwS^EqQXCwMulCT|@NJo7<@WWI^`eq|5m(FR1p
z<q&r132VEo6fkz7q7V^r?NQ@>I%0CYlzHjI_3i{kAuYW4Nt0~pung5uqb~@zkvnj@
z<Ydkx)<{zzXM{`?ByN%v(*s%oU|>h&5M7HbYVA_gr*&-~Sux`}8v-ofKUV-LWpB{`
zRIr_>V#4XQNGaTIp3K2^qE4X7@n&F2e~~fBZv6)QQSvtKO^`~*RY21qjWrMW6Fh`G
zPD9-Jp+N5dRYu@G1CA5j=a8W3@6qoVvGbS@s@-D*5vL=vweB+c6Udl1b>GdSig|va
zs8^|?xcJ|8Z);jME`B@Pn!UcXSil|?I6pjjLuBRUMvvv?w$(h2%y`59%{<k;OffEx
z%W=uMXVvp-q0PcWP|k~g+#`dU^*I&)B01(#c(o~f3-E&2wy#w8hn5nFw|b5c{r;iw
zQ`>X99UcPTJUG|Xh1$YcFAWTPVF3n}^%eG7Fjq0CEn{k`F;h(7O*#Lr|7w%WWUVAI
z4Ep8dTjd5gc_-^&?a(*J7ij&;hg9Zd>m*^FKd$iFrNvNXZSCpZsS!r|;mS&CIL{97
z+h<X^4$nkSP5E<v=Fk7`jd-2FIV9f96vzB!{XC{2v3U9vy;drmXn=dPL5496m8PVv
z;Ag2W7uUsT)VyT)6S-u*?h-C~=CbYp{QSy!G+EQj#RVs8Q6X@XBx7BVWor=^2zivg
zL~VToF&t&z&-=Z5-_(_UNfCDOprMTB`o#me*R$3AVVailGf}#kZ5o_1Wt5#zF%<+<
z30tS_@|de^X6B%A5B=4078jI_KoMd*zb1{Mbu?!?F*h6KR`t#EWZh1Oxfq_=o#BeO
z{vfvuna<6GUb~Jpvjkt83^U0hOFU=h&xuH2E`J+1vzBPEKmCFN>J#&_pdKN_4?^Zz
zECy%iMj*_JE81f{ihkx5zkX#}z=PihDXOO&<yEO0q$AKmn4HW%AJj4WIAx_&ay7C*
zGbB_WHCpBp)te;|WC>%2bosqxW~S0JugkF37Xhc`D;|_zQP3x@9QwRls;{Uj*$9C{
z2c*KQH_-xET<D1MMGFtE(6ruserl*Uu(hlq4h!e-I9kYyaV=QCid`$)mum8f7~p?V
z#4FrO3%4e;fUr2NSkDz!_20NwH=Rve(<vyPe`v9{gCEE%WHQI(KYHv{`l({ySGWvz
z-3@45aiIm}r(9Lhf4StCm$uq9j=rPV_(NyKyS|tW$`hVr1qVsP7}iS%Y_}`}m3#1k
z(en_v;huJt9;K>(EM1YLC3sLOq*ShVfHrNPl=WlQ7WHV&DS76BPSaQEQ@zCEK1pA7
z_TQ!T$4n{Q-U&Lhw94}~^Re*xiEAsPXH{A(d!7mF_4({T7UR+m_bsHa-T>w;Jva#c
z2o(zbG8W%$|JB435(;E~l!j0p3`#bc#Sr)(#F8*Akn(tIppr^|7S&O7asIsZ=N1^C
z8*U-j6aceq;*_xz(k`!Utj(+%(9cw$q>n9WMdu`-ACi#mg#JL^@XL8kr-JBBAZqyi
zh(xGsJip~*)wQB5L#}k|P#`YU3A3Ry_~FI;>o=yB(Nx5^tSnUGvM82g1+T7=z?QU1
zUCDBmr@yqazMyaHO;=T{F@qYGEYe?=c+ksMIZzyY$$`UY4D6dbBmyVW+~*56LE<R>
z2tG}1NCL^|)>}_Cmmw^hy_p*K@xVe==fO{T!AO)YBKpy)x|29;0tSht8I%~?v#up{
zXS7&DPTY?hr)h|#!EKgQ6)saMSI52Vb3%d5j~s`s%KEFV*HJY(WHX1D0`+TUJ5?s+
zs9DgN6@0}u@Nr9TC70VeE6Vp~9+wDeS4S2_G$V#qma5IPbAyp!QIdfl*bSBw(SL7i
zHtYKLZ79-_<<Bko3<+r~Lw_BSr+)qJt(u?@+D`X5mOd|5(yQ0JI^9|+ZK|0aYNLy#
zSA;%5L64KEJ+x)t%M<k%j&;dk%Fo#L<XKF5P;Q=t+QpFJHH_&2B0Swq=J8E#xNT(q
zy3c_*0-`yeHCEId-{i=id(A>>+ZZ!5(c*`I*Lkb8eex%|e!2fJQL~c(HUs458i>)n
z=zEae+k!Fo(E?fwd~Y!g2;vF%4FqzXvCpOJ9`5j$^2lBfGo@{%hYnenc|FPU&E(@j
z+*)`h#l^Bk6=#iYFty1H7>I&Zx7bPAwTiPhGF@)qTVL_!U(2pBmEi#ih<u?O-|M5!
zIc&PR;GJj8&B@J6If?pCQl`W1pq!(PXLdzcY7IWA``LLJp3^XPU(IbnY4&`V43G0(
zlRb?__P1+qt_quf5h0ow&0wWmL(wJP!->p>%2~RjM&&FUN&EE|0x&08_N7ywVfT;$
zoe7178Z5|#)YOZ#1NIwjvtzR3%hRo(9$bHOQve>^*dPG1!eXY+qlx>N)mHUHm{fmR
zVBgteUHoX$gj>hWo!B)<@sM5P(VKI6K4p>&9{AQ=eU>TQ1-ia7UXtRibMTPnM(ctz
zR)ABQfK~OXdzwfgrMsHtv@Ib7a@<w&7CHZRDV<TCZKW|KhSG(;P)FAkLB+ucu6LQ>
zSFUSUXL+FK4MVsf3=rHx7=x}w>MhgB`{~`^@yx!w*~o)`fw}tMK&QuK(ZNsQiP%gn
zZ=)#oDOvz?<2zjJUzqMP!MYQ#vM58N6f>dfy2GyLZvbW}t0x?WZOH9+tJ$*jdNL_i
z>OtR+3YYR*avzvwaTQD}CmXK`Zw!x0Y2Ue^@erg0r}!<aKSUT}R2!&SqGANxRIywl
z28ESQF|oa&#gg-WJGL2gOXh`6J|E?VFDl_Iws41e$(b!w{<WdjyexE4$aJc-PWy|w
zI@1)>tZGoA9&(bd_n1~pU}~9YERV_XLr&>z0Zv1j-lzTLo5YeaRfR0prW_36^YPDK
z2}i|Gq4x|>1cWuF7dB+=3<jIfpPLjq^*E&`Ids#?7rNyLXv{k+sPlCG6Y-lN_r1_e
zD#N|Yk}w5-pud^8HY%81mzjClq?cfwtZQaMomXf1FJFrg*^6S{ZN@g2A8F04_-9>u
zEHwQ^zf5XT&*iWJhFI(D0oB~blDhNKzw-Z6bigU>=BYvgsK9+0`(aSm#Fs_X|38`F
z-&6rHDtFW{bJBi2-%-^2S_5juq==+k+T;EJpg{Zw9pT?^SWOn2KWMpCuJpM))}4^`
z{Y&0IABuXcxjsCup1{O_`<I@cpdJ^g7bPse484CUz+h|$x;kCCXWqTQyKgMO2n#S*
zA5yzwMFN5B{UZU>MQ0=?jvX^T`pX0O?<A;NeniJ>j=Wrc`4^!=WsuItikH8?{EJw>
zGkjo7On?01FY}02M=owoR!@C`{ufD{q6UUgXl+po)2rMsbulV$)Z+@xCv@U}n`aWf
zSX^%~$ntMPkV5|C1P+!~zF$iCUBO62WoEA-Tz|X&{DFo+|8u#pe@GYqcN${!z-iq7
z|Lp(L)6)~o5}Eav5h4Y+pyIC$KVIhh+akyzDYNy8y}<p;LT+LF_#+|kn(WRwxMypK
zC1AdPk!YIv<PLbgM~XoATE5)m)R7YR+yt6X_5Q<?f$GwB{B;ouFn}(?aQ`s^_w?}t
zgz++OR_23D%wMGZPAZdX>}R~I&CT_t+giM4?Xu|Y^@$dDiB3(VZ7A=!wl%BuY%RpL
zZY^QFR8NqZF+bWYG^JA8CbUe#Q*m?Jx~%FW4rzSN)8qRl5x^v#`5qv_@QV%s?k`yD
z^9jzoCmT_hgLhmET>e%3hSTAFjRrSc%6{`_7_<$zri?v6{yBtElgME;;QvZBQwG#k
zrcpA@<htCOz*_N5B6RxkTQa+q&M1SNX$52IdlmtB2^DhD?sgH7n5t4pQ>Xx#BoWM*
ze_0XrFtL!@GI|=9Y0I=_Tm<6$d5VxHR6gldhgp9zp}U+QG+FSV(b;yfl~{(1Cd&pD
zAdi^a&g`ph_mSGw8Wx;H-%GAiQ%6R-yu8$Se9|KoU>y?*q(enX$Y*X>M-=zqJEc|p
z&g<>Vl^mACw4~ftaeDxv#qnr2E}|8<u-2{&xPMwdjxkm@*49cIhby#>fef1sKwqjB
zaNUk$gl*+zFg<>YdaqUj=L2(q%vy6YuF71!E6~0Dk6yMNio{cZu>hHg+Lue=>96}a
zkaUs)On;&JY<dTkIfSQjuV!H$3kxf&TehmKgZ_5}sW~?BjVaJ31R#yjTi&eoCN^}u
zXuiGiPBd$RjaT&Z%#8BPI%I$MR3VSPDxLMtQ%JL_Fdu}X<BV5E@Jvtg%vBb2<5WS>
zt6)22o%NSU6M(J>UMvQ&rtw_^>>xDH-+Y>8CG`#G^S1Jyu_1T72DXu0`Klb*L~ty<
zJn{hP^lwso8z?TTBBSh8uPUYIJ?pQ9z<6Q-8*6K8Q(x}`9E38EtzM%?x%6RJDeYCu
zEn*P;k;iX<rxXS9d_wJLmY3!RwVPwBVy&KhZb*XZ1rR*cX3GJ!sac5<oo8!aH6p!T
zi7GdaAmyz#{PnT(tg76kTcrVUrn5KFir^V)^pL68uiu$|W}a$!mlJUt`S^^}OsmB&
zYUXh1S8P4SPUC=3MMXDj?ejK~t4eN6OA#*X@xFAAtQOez*vP!c3J&F-$V}DDpw)Qs
zW8F}@v!4%Xj5}R?MG&W)-e*$}#(|tbt#gS%OTZpL{VK1V#^3oF^sw%<TWg|Fy%$&X
z8bffeQWeFpT3PqzPyswmIWP#YSN^X8y_2FcFd8p>LOWUvglTliWJHEUtlFzYA8HSp
zy<@SQn8cj7d~Yr{+?F8>lg3fP+F5c^T|G=Bw8&?>p7N<w#PZp`V9P3d|Iaw&0$c@D
zc`nHe2Y|Zb^z1%k5Zcn>diUqcyZl$G{b(0JC_7!Z;Z~(%w`D6OB{gKE0rykej1O6k
zRlF$+rXsfMTJG=<b)UOL9R9)^&r{5Z+bEQS5(#bR)9jWuz`vW6Sf96HqwIa6iTv@H
z=1uz;@%#(ft6!H>AOEj`0FGx2R1(cg-Afh1W@sd<UVWwH5V!TXi=&fHoCR#kJR|;H
zEYtE*C?&3jBl%Y*>D|drN`D(rlS)XraZ5EYQJx&JC;fM17;tAK1AlngCdVG$)0eHK
zb?e)e$m)Cti$8<*+OXLly;biz0|*wo0CA4RbxvTxMSQ<?Z-!FG=y9~#C9Q?NuPa_G
zw<-O%;=RG|HpBOrW+fN~>K!J|z{*_vL+87Fldc%y&DFv!eO2U)MRvq&s=X7Z{FD90
z6I|8Htv2=+IfbvZLZW&H^GyU{=1z6H!#PE1&I-gcj-6>TaVK|-Lsdm#@N>WAcIg4E
z;`RWl*Wm`0R%1OR+%mh7m)#7M4-;G^K&JiRRNYV63BLOH1A~h5n0WvNZ{kfxXGKEq
zHeCRzW2KF0p?*`nEkL-6JOPL#&om<!Vz}4vM4t>EZLENN6RHr9p6B--h)<pnm1^%7
zA+FBZ9mg6Mj{$;FGHSj>?Jl%;?~eo?H|vw7UtKXYbAgWyIo{6v3dO0wWk_9&&AGOj
zDAjw3H+wV=HI?NRP1B_zTpvg?2TinzBgYg&t7n~xv|Kg@(&YDQPlxTw`E0wIR65(1
zfG8CEpneY>hXi%p91qRZ?wMe2eOcr2F(|>OX5Oo4ujTdure;}$DK1Z?#cwoXUHnLy
z2H!r8&PkE0-B_M9kWKwo?s(NsodVeyOsm%68^NH8>9~-?T!VWJK&9v(H}LmmNQJ9=
z9Mta&1V1mH9xc&v=haMOzXBraYUa|~wu9dy+=+A6Wla<_idD)9XL(Ff#`hevYVycv
zP$4XA)%a&YvrjTSvJ4>fGBzrIt{sM`9=r>GB^gBYnGZO0_tL%hA%a|fZ5Oo&6Tz#!
znhe;!uk5U030C1t&*Sg49(%h@=ktz%sfw9y?`FM$2YllQl1v`tcHlj!Y_lE}P<*}s
zD6pM;3XiMhbqn`|&3k}pSLV9ukSd=cGWRw`!^#(6`|WknM1Ag{n~whR_1&ag+<2!g
zz=C=PWCB)4jPMK{xf=I+vHc7E&j6-dB*60-wGTymZpGDQby!&BC7B%*LOoq~G2dh#
zDVWQTXohe11}B6s1)Ey>^NG&fGkLLA0xdd8eh59D@M)&bY%8zO^;Eg>+ZtwOdih04
zTyg;yjDz2{ln$){bdq&RoaVoCq$_E@ZRVydhom{wlW>Q1R63*<UwjD}Q4s8JtjZYf
z;;!(51!^5jmgY5i!I-GKE+2tTC_Gn(S_KaADc3{{JlEDLvvhSovK-91jL16%>e6?(
zZ;!rEh{oQCiT~FA+u_f1D);#*1~S4LR%`)GhatlE20lj}KpVhXYVr%-H;F|`WVCow
zm^!$w%6>s)zl{Y9o%90;d~pdrpgEq&_b7>qcBw!{B8-`4OySo@99gn~b}NTic^=38
zLb_MC1m(bKSi7<Wt$Z1*q1m*V72Y@Kzj0#UV9PmT06hduNE}}!K=e%bg#EUwze2ys
z%kkvEl5QmIQGc?n=JvKu^(?hzI-bZ=@bV;eC|UBjRE=?Gtn4SJ3_rLf1e*025P#*P
zvwM!e4<9g|tfDasKOrPk$0AWC?stipw%REP^8CdnpLFN*oplgr%=9Hy0N0*B7m#&+
zy!Sh-p~5dF%I!<pT?B%}jNRz)M7p^<Ph`ROTu)b^q_nW5pLbzayT*>-x~e+OZTdwC
zOzSywLs4lxQ|Ydx;1C+eYI31<iFG<lm(jsyc9gUmpW!v2-0?3($X-k+w(v>tiOjhH
z%;7Ke(k5e!`&+L)a78jS5VY!y)>o?W-5mFL%Y|$K{=T%D9OwYOFIdkPHipSMUKzLz
zYzX5!#xp>5W!^ET$F6i)YPoIdR^VS-<&)*k*Z^!04+3E9R<Oy~)d1$%Je1r`3zL~0
zV&V4yGs7SwC+)m{<Ic~K)!M!^hR3~k-LKpDm<@&QZOky+8Wyal#_Bk8SyYX=h%aZ(
z>Q-eH;z6w*4X$jgAk4ut2PY@@I+AUu$G-%N+RpYH4k-HA&wp4d0KCD%cnc_z6yI?d
zjm@7-ab~G#W@W=Kp8($YpL9>N4+Q>SXdzOH$z0ubEr{y(<-yhB>E=d9(|@+VPdy4J
zzD?_2W~yWX3%-#6T%Rmu%yZLAA{^%p`iyh-<OJV)1V*JqfgInXvY%}2MK6@-Iu7n6
z;kB~?oK$5SsbNV>(W_lfz>^)-(05`Td;LiJrz(-XYOb8LnwrKkEq>F{Z;UJ2uVuTJ
z8|f9w*&;IhqUps|@Ux~~ENpD~a8bsK_&3=&!>Nv2f$J-(7<nan4GQ%(MSVvAwftAs
zxD%&Y-=}_#uiKI!uo7@`Y8OBq?hS@bBE)jQzUn7M<esZBYXao}?YczrM!U+2KR_0n
z#-_Z3h;E(Rdahm_A~Y2_X}Xan@9z{vCTv#edoz{yQ^?(55};Rt!dw7~x&05P?QaA9
zYR`=TM`}gm*;u1Ja2Qxsr_}Yt1INKmQt_i-;wKlEA);+ZOSX`7!wGeA0`n4W+5f^R
z{v!sfqf)ZeFkn6C?&;^OR|;+~CPv4FzKM{nXDVz4$mivaV+l+xl9cR!USvzwQ%mSW
zMSS;Js0S<^!-8-HCgWRxxT#Lv!q@bU4QE$Uu&#4rskt#I$(FBec=iDW_nqf7KvrgS
z)P2oxZ@jP?CYIx5z&a?cm~<=)+4bJ9GglE;fGl|Jlz=>;k2zd6@keIeM7rdwttY<N
zRe`nyTsGgU<|&i|`aaL#o&nImAb>@G?gK=0%aPWP!%^^rUb3;(XA2R~U(ZAW5!*Dt
z=YJw!-LroH)IRV44At7R7Wg)^+c?;q&h<)t8Gu&X*M=gW65QiEeh@1KtjgM2lE#JZ
zn1r8Sw-n|2U`EDiWv*fd1q=Go>*19({+BkB4y1x-JGIYAcx+5M$(-eMQx~S3dP}a&
zb^+Q+2N1U@zmD4(E6M}TpY;Jc-h>yG9FEJh4g2-h5*+Kpr3zWIfXz^EtJ1V9NYopj
z+i$rIsC7OU1Rd%7Be+{guY};6?Gy9~A8_u|{%9%WOVFA|Xy%wgw)jbPx3C&EWAHCL
zQ6GDT)IUFO0RPUxWxU!QcRecnqu_q+9N=*fN4PmE0(54`1wfL2MO3pADHyNSp}yg=
zo@D-YfR022zL~u^xiw_5Gg)p7skI0uQi#sfnr>lSv8ZD<HaKY|2e^QAVdH_6$p%XM
zKbKxQt-fp6%Dw%VJ$qKaQ)+$Zm_t0C-zU)4p681|##>{ljz#mNsM~25SjWhsv)mLr
z=zNp6PH%#sR*5#ZJobaW6ipSf@LsinG+=ZC6o4l3aX3stO#>RXZhj);hECC^*cgQq
zvsVL0>Ew)k%U<;_bt|?;#CcQ(@g6_`#|y6J{MBtUlqKc1U63bWUB2G0Q>$*upm5D^
zcf+3{?wm{Rb4cySyOl?z@M%1j%W<<cJ4%G;rQNfz?tU|Xuf7L3KbY<Pb&iD1hizgE
zU3Lw&74NxcOe3XTax^lQ1_ZAz<VEf~h{O~yig~bwKaF=Jx>R5fh?b%9fgJ%mo=CS`
zC6hO+RY6|)@)r;)7y<<ff~6K!#utYd{C}1~*A>oV>cTAbpCrPGZvTnIZV(xaF;amB
zS%CGeLf#`#Jgxa5TP#{#=x?RpEaD5--WV`%hhz${J3{Ioza7+cMgRc-3rWAoeQ}Uh
z0jdV+xw`UjPcELwMRa!whn~fs%mCrzuI#NZ@s}6nofOtkiXvcd{Wi^)R}{H4d7UUn
z=meB&B%wA8qt=;;+<1t}uFmTuJ25#=ulLu~1fUo&E-j}N_HWYw^)A_Ij=!H3d~v+j
z{1rbz-Wn^4SF!~-QgkvU%GqxqwNS}BryZb%TUyUI);aHdPN3#^Lu6joa`UmI<pxfN
z+6b7p8Q{_G>K*~+SSt4c00q&RslNK!UTz}3$F~|S5m@<4Za<+QkSP2qmxTk>EP2e~
zwU2&XkxZ*MY;3{?C<Qqla?F5~O6Ufv?2Z<LIoVvr#jo3%$2e=70a1l9XLAWUVN$#@
z$=7rE8S(<$%dHhI(0H*dTRvt>Fs7Pt#=sQHckibABsOo~(vL}Gpa;`5kauwkOX0CC
zjGz>y{;FC02PmSlp7B_TD9IwKQ6i<6`}$rKajN<Uz2swkj-_}gv_8H^*!g%>`X|3a
z4H`BPYSCut55RAFelb%Sd}aMgq{zB)_Dh~ZirGkzD5fJ&iNRaPY!6iVn65X~Lzf%x
z*;ie{0b}}cy}~M1!S{uVK$61>xo9lasX#G4`#!f1I1=*7P?<~=>Utc3=<hEmAfW`6
zKY(!&s&ZES1ryE;19h?QJV#NFBhJJ53-aVd&}EROsn5zwj&<*e1h67xs6Je6|39%j
zDp8DrNauTX?JffCdKGZp*x1NIEbaK0>3$GnLar^#&H8np4|XTvVpITFt_NkR(B8M3
zfRU>_?lNfh@hn^+12Pf!tO@W4RPI9v1@uwe^8L4|q9ersT(zF|Z@4P(25A65$3Gvl
zLC#^hPZ5EEey0Jl7XMFdma50}8ROrORVs1-eU^XwY2`110z~=#+d~bnu2-sIf0?M5
z4D#iRC@1{Cs11IXzyry;VwxPWzs-OifcTT~-ri?T0ntXg-a-7X-=ARoMWaUV&}DAQ
zza=WDcJA<V0TrxZF*i&W-P%9%-Uq^0cdoGdA@72ZHQ+;VtTC7<EDnm^R@OOhn5GBB
z6_E$zP~z0&WHdETrx7#!XF^Af4fzgmk1vv{L`TN|MDx=4w@bq=bpH%M>DoKqx&uXN
z=68oL;6l!QYxX^WRt#+00L0y>CICJgT6NpXnFC;2@3>E8J&*6uUBHw217O5dI^{-E
z1Im(RhEQ~qWHzwhvMPbr_4G)!$L2}_f#Z|^6t5URrrI;*{c!f?A9HRqV}Pqr<@B6J
z5EVqAbPGT5x0myI`LLYReBj4j(PHDDn^qLO=?LC=3vR1XjA_^ch*fF&E}oF|QHOW{
zf!QqQ5>Wc_Da{EeBegAGOQ;46lGe*5GZqm|(jn`w#q)9_biIl`9gnq+Hf*kTelpv1
zq*@YAU|9VpHpPS%z(msnpi!eHXcZ>i!!i%j-xT|yjsgaKrwmJw17eRgR;ccr0a#y*
z;$~dj;Ji8AhAiKf%*=X%UEO7-3q`x8dNadtKFs7nA;f3c&bed=K1BbQNkkWy9`w3h
zlPq9ugnsf^dc{UOBOHI7Y5$cH=l|Y)zyJaPgjVyNgh|@-ovIhAxszrowpN1slRe|Q
z6#>@a%ZV&t8vs#!3#mo`V>$!i-r7@{6QEWPee0}ptrvR_z^p4U3H+Sa_Npf4>5GU%
z6h(kKQNU-cK>$xpkywvn58M0$J~+a84ckz!)>G_lfFrCLSO=Yx_5Ko|j&}b-)4=yx
z9|!lu7|k~tvNsVVYi@Kt-?5=`Z~*(W1q$h^_1vcDG@6g4UtVrz<LS-;&U^(B_*%AH
zzv@r`PG5%ni<4Brb4A{k$uPp+J)oR5OugXpH{hGmTzL;YpYe?nw)us_`<Z;?_wH1M
zaq*Y<$BEQXPQVqLc^`yhb64#s2xZJah*cE9WeKmYqL)u@AB){i4#vI&N^|#CqTc>f
zxH~9(9@fAX%b-{dA@IkowK2yb<-szqa9sJFq$}u(a8*c;0r_4my-N|gB%ZO%OWPH_
zy;SV;Vk!Obo?(m|Gf$mV6bC-k4k54wU>a=r+we)))lny9P&KhmQ(r3o2;e{LWwMtM
zo(_>4OTD{zChS!iL4M`>Cp`fG!2n1_3jj*RMaf7{*Vt{cBY3bpcAqiR%)J2$P(k#T
z<2DVM@&}VyQrN7s{&Q|rujA?Zk~ll({cjOsNPX@THfgTo5W?*G(S%Lmr7Mq>-|{vy
zwlz4Vmz~u>T*6;e3BU&3b1i_fVa?jkbflw|zrLO7ip%~|bl`Kb^zbJ_f8l7}BvxMc
z1!&pDUml1__n74oaG3F6CSVI@w?_+B;HjYC8GgWBC*|J$CDvDL35?8bkVNy{>H<)Q
z8+3K5r@0T5(Aw>k)T9GNFnI&Q;CF5~*;}0Q#QmC&ub9mgpg9JOmc8bRRaOx^<s`Pa
zKdxcCY*TTIN!6>_h8h<m6B@p~<i)@3LX*~rvHO<VLt3uihZwZj_xh*VjV0Syal1`+
z9+TRW$g1#NdNW_U#f{la{2Z&}Vywuw2pJQ;G|=25<Ybs$#`~x}^rfW)&LaqpAV0?$
z-Q6yK)kYdZ@cYRiJHun|PB)DoroD$tD)yT8&7otnFl(LTBMgSVlA%4jUIX46PrdEe
z-Tw)n7k@#;GI{o#nkvz7^UpUoK&3js`CaO}fWB9|?VVKsc>I)(eUmAB6W90PS{I<S
zLx6Y`sIGm1FD+65fZ*hPHLi7Yo*U$jYb5~oem1JAI0I}s`w7$&vwoMo>e&DKE`StG
zA;&9O_NJ$CS4K*T4O9mu3Xd9&dzfbzh5N+Xv~F*1IdN9$+Gl~N@TZV!=p<}n0be%P
zv%a+PSO!R>NXTH|mrMTqU7S?08>g!1)~3(b?7UI23sgTlDud!nYnQPEPya{&+gU$6
zt@q}N68{swLEXvjWO=smNgpR$6Z#rxjmv)$0L|A>r3}u<A7H1|3>c6-p+yf<&wAz4
ztd@~HViP5{+i)@<;@EB0_jPI7cSwpD4SD%Rx!15Bfx)MB;ggN;wLtjVS#_CYjy?&5
zK|2GAx+L6ICK92z;h5mNgb;x2jiqhOd)GvadG~V*?*Zo!M9)6{g$7U&{*}PLvMjor
z`-Orfk!|*Jk!G14fN4fm+09K;c<*vBv@!y<b}jBg<GRlB-Y5Obp0mI%5N^0W?lqoJ
z+ZtT}gfC(}k{jWs7yZ%|zLjQkwA>-mGm6LFeDP({uMh_lsM29;613*B2M{Eba;OVi
zGU$j~F%5Os|CfA#*jNt`bw1F%1q$wWCE4o+dQ=8O0gR#p2%y(>t?1-nyPgpZEp#Mz
zu~0^z*Lm|45M#A0o+N0c^1NF6x;qV&r1E(DK6N|)29LwzopXtuQCr{#AfUaEq^0hG
zJFNliwH^x!da9TUOZd&9gzP&Fk>rX_$Q6ot*26^;Ri(3YLBu$|@b(1>ku(tky<d05
ztpI$@>3(oYObi(g=`CQH3D@5w#c(<R&x<Z_gsgO;8%_3VSPx2+j2oJFB-dS3-Be#R
zQQziX8CJ5A+ysw_)Mk&_c<ZvvwRL(W_Z*7P$j*~mai0qaF_u+?>%+UPt9OfHG%kAi
zbZ&Z4i8W6ZMH4Y<GTqIYwNJ~Wte1E*rkAOsbkZtHD*|)-eTMc=%9@F%kDs-)FDLl&
zzrtTj)|sogAq{8leN&P>Sdq1;uMMA?33%yVUNTg|-lhu{`||LAAK68G0mBhp6%J5;
zw0+-X_aeZ=^7u^l{(OJp><y5j(j0~>%oQ2Fkh{+wmF7}Qd~6?MWPS$DxC8HhzW2+X
zEC&SMuK?6T-NiP$KrtV*+V-3SybRl)o5}H9i=Ws9piB3eIrcq@NBeKl+r*ACfynoU
z7(;;aYkQe^5c<Qw1yTi6WkL3)Q<cO#->a3>i{tI0GJzsNDJ$3CJEaW+nD2m7D?&DL
zGXot+tPXVpV23@)X$#^^P+`}4yckTiE@TB@O)|PXdqA$BbYEzc2>cjMb+rANbHKr9
z?Qp5%lC5qP#1Kv9y<1+2FmkxLB>u{RHORN(5*wn)N6SRxBcwC4RSMaD#<hvY(AAwR
zKd}cuthnt(%(GQHvzKxc#CIk34U2);wm^RhHYa;K^Gyu|b^Fa%^IscsBc*q3rz;C~
zRGAKXn9E+(vAOR}cT^VUzP2pw{_p@rm(;b1c6STDB_I<gcs^TNS^|n4%X<P;g)7z|
zj(f}MeZfQ0(XpA%z^R9hI7f)B?(DFXvo&92wUR(RTFY*Ra(ej{qIc#IuShwT<tG&H
zA~|=3(jQ#6ZgZ}QVlS^WH$TxQhG_ATdE0oaw!Dz91va3re{5~hm1f)J&|AutVtpWh
z70`@p=Yv3aXB{LyUnUy(0Zb`OW5aI>&ePJt6RyLs;R>;Y2+$hco6G1IZ|7?ATm{B3
z?dvBNJdA@^fVAWl`tE{rTV=bxUYT(u|8K(E<#6^o1c2$xYHBX45>>;!fiFSWn{%gw
z>Mso_pZ{q2=q0j6(zC1@SU36ZoygYrNQLN;BNyr+ZXW<oOAE;<X7PO&H$Yj$lEHlQ
z)wEZ{f8rS1N^7o^7aXJ$s<mf4fSa61jNx2{+BWGkF>0E<z)G}=TvV(5Fzr3847VBY
zOmG16w|~poXV$AF&P2Pd4SPOuwz4;@nvug}vo!d=K|Zo?aBH$!h}+ZZQR@QxYp_u(
zcZzRv+#8Jj=bn8s44~31>He*;@wuqPE|Ik4eG!pHr45AD=ewrvO_r%_iNm_uL;`oI
z7wwP38Qvec%s<*N7feh|$EWw$AE9>A^kXIR8v?c5%ZC*}0q=ij7y-@&mFR?qQ-<$Z
z0Sa?X-<t?h{+c!-)*IvGxSQ2j#d1*;4tYC&5QjdHDX9&o;(Y~vOzth$7@hgxT#8ta
z%o(R)EkP%>W8f=Cww_<zRyWhTZyJkVm?pR&OjsnD?%OW)DHsMCj!wT~7pWevCmPT<
z@aM%TXt?&ctG`!gNbI*R+uNERt~r=<WDAfX#RXUiuj=5^sBwgmv#YCNmy1DoVBoVr
z@tdHf)d8tfAjK;{3?Mj}pcnoVr5ge}&%u3NYZ|55PM2}{-_Cl4|Md+B9-xN+3;D68
zU*+f8An>fTyS!RF%g0raH;|QRI2q#y41}XwH{D$759(gV5FiygR!0Ef3nO-hfg2g#
z19hc60_-f>OeLioh;vbkZB-`4EY&Cq;Z*D&?KmOBy0JhYGJ#oEukXY^24k+yt^Wxt
z2fpoK2u26PL4$GI?x>1uxM3*@4J|-QfUjb4wVR3(I?mtGxdk$|vqwM~`cLq=bo9=j
zZ$ZvGYN9dRdO#LPFWKeRWdJ%GhF<rHsSCkFW)lBmXHYJP<#IL9bJ8$Wa7p{TZ1#JH
zJMgt3IFd)2X^REUaZ)*wtrWtgPRrYbn!5XN@5x~`m`whc{F0sTJ2}pOU?Z-(69-3M
z3GH*q9^z5#2CH-)1^<7fy>(nvTN^g4C?bP|NGM3zv_VLhh;+@+9nzhWf&vPHAf<Fj
z%`kKg9U>(q3`3W6Bi-+s^M23soTGT&KfZtb4QHLb_gZ_cz1DqS_jO<QmEqzm5+gPC
zRZ;yJyiUP~kA$rk2IY;6uRc#bzI#^PH+4VjiyN+bK4UXdhYgK)-S#CILVJFgbm{&)
zz+or8e|8_eQ||9Z`%Et)4Nm;_`<`Lsw8MPn<g82GHWI1VvwV(~t<!wTJ`>HeeVw^K
zTYX%Ew~=#eRW)$cr`$x_f^$cp`zKYl1t;<2frU87w}o+<hlAm4+TD}lDpslO@#3+q
zisc#-j`*#kUukrC&0UAHR4pp=(E_v2nJ;STPqS56F5#6JtgJ@W%<!tLPP(5fMRSSp
zX{e2KaBCD3aucv%AXf7kxs8#E8J?7wsKa6^jpc1h^(~5uvL9{Ldym<)9ZkAxD=h0+
zP127vxtt>;jW+AGy1#oPjZ%#Zi2wF^00_hD{7(l@sTg;eiR1uUNOs7m{mR=xOzj>}
zPH_^A-@fhf?Ar&D@mHmBd@Kgt1waI2_tuK?m61|Ql-Seo6*{NhZme8O<Ao{v&YnZd
z#avyM*QRVdxNjd&^|z7EPKEPb*pLc_WPj+8;}MGZ*-|e43L9b4t;naptOv669Vqnd
zMYcrjT80UY&t4_c^%nTLoZve7c4E$ZGH^DQKoc`3T=b6gS|M53N=)++G^PD4-u0`o
z2c4>(%?ttM?Y7{=J0iN9(p;Y1sqGo(dh;?jRR~y&AL(b_)7X6pTcL7|Zj;G<tL1=x
zimzI(Gm+;q{*ZZRz9T+Jd#1jreu&hp=tIVrPqzIJ)h3kd!(U(b12^pRlv={a!<Q&9
zWtI;WhTAsLl;TaU5q6jtvP^p(IpwECt+bmy-W{(sV7w?8{Mza5Pz)VV6XJVZw+_^L
zSn3pa{3)|NK9O>e-(9!-{<(#XS2@J+E7{l;#gOt00OY?gxjai*zqV!kGs}WJzNc%f
z2MGB%ioc`P)+&91Hl6EVpE8AhJs^F>cOJ)(xBLDN9EXU!B=vlY?SkA_(Twau3o|y#
zXwJdwMq9U{Br^#_yLC5MYn-+3hN9khAH!_&GjNIVnD-q*g0fJv-72fTf+~5E>n?9_
z9lBb|S-j&XO}2iHnFJJSZY>`>5n_Cd$0!KQIGx$Os$XBhRIIUSKFXUy<U802_2u7q
z`vysT>29IM0fnYr?(WU%oU$i%9f8-van7!FZhCJV7p2rH$%&*SF|_hf9R3~s5r#2@
zZtzUsk~0;&t1f9K$c2l#N9(nF*|}FyqVd8q6|^nTv^g|7+g(rKR{jz|)*UH$3clb6
z5OVEeBGFB`6)U`6kESy&90M#`Z=9FAo<p)`I~*4k*;@XLEnOp<Arg_qF6MyB`o?9Y
zaga%xSm3(hP{VmKd-j7L;8nfjn-agHz9s(Zs^qf|ZQ75Yv|XfYn{h6;c=%i<zjoux
zl_MPH0xx_--=U=-2<QV_g*Y4T_SkN6dnjlm?8xo}HR60*{aI*OMbTqsBR5$i#;kEa
zqf+HSZ~O4bH;4^W5Q(dgBTXRx`u?Q5{eAQ^S4l_DD-=<;lsqSZ<#lO>mVXEpnqXW1
zR?bN71HV}jMUp~SoPCRL2bz7&cEXPmxBg%#U7UD|iOG(UifhpHhiSynnDfx&VkR#&
zmzI!W$d9i_p%I4lfe+uw7$N8U4#=4UXQv{9koA3<CpW45TDOB_UZ<!W$f_s9#`K9b
zd1q2<t2T{yqE!(gFoGE)go6=f8=|HJx%-Hu6vs}MEp3C1opBqYq&Sz>I2pa-GL5{L
zJ#)zK)FRyaf$e%!=f@>yi=tuX>+z0!LTddCR6nUH*eOUq+CC+2T*g%FCSaKuepj9j
z)i>EV;^@V1YqRF+96l0M7o7YDD(8cKB`hKy=RaI+l$;Ku655-(V)DR6RqtqXsqkDJ
zXV8=L>S>n6XqCD+1)Il;ayjn`Gy*khBTA2AC}lRZTZ)%Ad*odZ1+63UIU)9F0z6d0
zi{xiG082lbIsei&X0GH57e0H8HyafPd%V_m5!Lhuz1sud{mY#eQ7ok1DWYjaZ=&Uu
z2MeyG$#W2);r_<>)m8TH{BudJ7G#lkxyp|x##ztZwg;jfTzUHz)PhSTC;JxqZy$@B
zS__~UnZQ&ZUUwwzYbAvoU+a~=j;^%tPIAyPi7(bJqDWl}3VYHszaMq?o;Tp|`HG)6
ze~f9}>eH-|X+-B}Te9BUnY=)_&=kpFA&<;q+L5E<$W6_bBR6`Gu}DEq0|<d(^0YfB
zTm1(P$OtW}5R2@5{|fdWkhbm+-E~*M%vcc@E7Ry?xUNcGvKZ&8e*a`>uf*t!a*1Vq
zf32}oIXNx?^S6@;W`uX6*qtyr5rPN3gK66Mx7yAzmz!?|jpR}a+QpM!AP_dyDfPV*
zdp_u)rQr*UY=A8s8x(w%ru^v}=}8`SvWFn&P-EBr8R_LQ@Nvg#qR{h|TcC`uRxguH
z8uv@cKcHwI$X$id)`ynHB{}rA(%*-r_bX;%EPQzebDR)xueG}7{wHhpLp@UO3bwz0
zo+str9)4tN)~Xb$#vmd$+4-o>JaHnaWj1vJ(99si^LJ2tgB<urY0=IO%yCb9{B|?}
zb0Rx^AMVhz>7eHK{$P2aP@28fOw<FZ!HAJqP1&`1Q5b&@Q@OV-2-ixq--~^`K1*s0
zc$rmCwC-HS>f^NBGP>?Ir*BpWq$Q%cY{!K$+#Kx5DqngHC`maRL|BOU@9Rv3KW6l4
ze$=`d^Cs7~^&Q(AdLI?G$bzJwDj^fjrkd6t?cJd@vMwQjVlun$eZvP`QTDX0)A0m=
zd3L@ZS>&#u5}s>xcpvxFvvx2rcds2jZ~5u6>XlV!i=Mm%&>(`DU=Mn=*HedOQyQU9
zd=nDzCf1fq8z~ZE_>dgeOUJ5Tbg}z4&Xf>DGhWsfwSX=WW-xY^tg;snMQqtTZYC{-
z`&Y&kBl{*yV#B{g;RR6*J0&A`ou1~IFA%6KHs^GRa|+een$ysXai>&9oovPz-m|cs
zZm<^Q@z!Fld`^06k~ML^kUZq*KFMZDP@59RYN;^Cb(*ru74sLxm^XYS51lz`M(Ryg
z?Zt04BQMoQ{GF=d1A8Uxr9Pv|)S1-+TL;)<ka}Dei+X1>Csco+z<X9TJT%#`6Zgu2
z^qcNVSj&v2!zbm#@cSuPB9<Cc%|o*)xAj-|+g&J%KlCt#X<So^(vFeQ^(Hkwd~%d8
zdXpNdL0-WMax9QxH)rlN3$1^-Vh}zM{Vep3=!P?6bE|@i)Wo=Iy(J*vJ}&<@q_M6-
zAn}CN%V<O`Dv4*m=wnk?vX~|C=<LKjHrh*lZcm4$i<6NR<@vL;PYog><$)R)S84NC
zn5y>WXnDSKc!I0Lw;S+^s50wA_`sQE47Tp}yNb&|r~_Y1w<#d#l8S*RhuX_Yve|@d
zg5#=_n|AgCaSx59-r{oKs&-m({Sf;@)=aaQ$vSq%g8;AHVh3PSeyLJbM}Qnz&VNkH
z>~!|TXzj4bE&FwcZ5LB<`ExI#=8Ocl?{DXUk({p?_ZiT;>#DvBsb&7qjW$XYa_g{n
z@mz1Lllw;I?I*+ICS8>v;J!aOl95d_R4T+p(%Ts_Vl(<vUeuk-cST}L5!t*CV4udo
z-otPM6|^tQ(9D*pjRq$t1sqnoph;G9@7{g}@pLXK$IRzdV*}mW+dckTnzK8+j3n!U
zjpaAEi-mRaG&*Z~D9KoLO#OVOweKW<4YATLxSjYeFJ;gBi?Mpw4(WmW_>s!vw0>Nk
z6}>1INXC&VLE`)mDe=&@hg$y#;?y!dO`;z$e>otS2;k^O^>1-5qbTbeyUVeqdH8i6
z8Zj7I9IXoHlk)p5qR(@yw(TjNm^axq(df?1G(VJ%GADK8xT=bZd07L(w0D@Z0iO%k
zL4TR*jdS=p?m-h-gEUIo%>m@lZMGT}MOc@Iy-nr1Tb}(~Rmsk%yC$GGYkO=a-pK|E
z1{7JLwJEqHKXFu%l)7%+U-29iS|UrcMN?HY&`j@R66M3^rN2Z_f2Qc_@^Ap+7H>4?
z9}T9jc{S;E2PXQW`ksay=6%7zpKy%n^#a0zb*)KF6?-Q}6X|HKD{omQJhDnaMjiE=
zSd)InjJU}=+u$s=lHIVE9KY;s6MUOl3gryov~xMZq^2AvNgvHSL{Op!^a#$k#=N7S
zTQ1bSs9M$f%*j5q-bA^R2z)3&f++x8X$Jz{>$EKQQ*f!K?2$13V#sW_#EIq(5G>P6
zm3U7?aejVT<;w`j$zBGO!t+Oq%q9ce=DiYi!}eBjd{`zcdD&ctQ;=Wgvc@}62lCcd
zxCMqS9hb-J$jO;rgD4m^wC}*OXu>4jF0)?;kkeHa(kkG-0r||pgIE?^p~JOvO@`sJ
zF}ws1M#KO$D6#Mv-};wuEr;S~fnQwTI<nUs23ABn3g3v@57Vl2>Ui{A#sveTsMHv4
z2$111?~u@@Rv%9A+*a=(RW%Mme$hr6EUcCuZ4Y(s?|9d%|8Ra>{i>K?yXxZHB5Qlb
za4Ox4sRu6XI?n1l{X7eM$;X*oyXDf#)^{-J9MjWGR$DU_JT5&octY39qA&EB#afy8
z^>`H+k9kh07$C{B^WX|Q-xe+FXl92diFJ#Of7FyLXnb-yUR8O__R-~`+F{aHuEwCL
zsob%Cm2Yw81a2-RzR!`v^_SbcuNyMsRQo`qxu$ILB4IYDSXSystrWv<A+RCKq1w3O
zDAp5zjcb(EB3m^)7bm0dnGrC{`=&{=)TrnQxb~ZsWk&_v{0D13kBX!jbpXF(yE?RE
zjiutqvLy+c%5f9cSBb~I$6U8B;0<$4=a^84Ih%97CP%yC!mAkx9Oev(IOg=%zD;zi
zlx4l~vsyCK&*8S4-A(63n>9Kf%I)oMqI%w5C@A~6@*xm#Qifig-No++c3K-ZK;+mS
z9Bym7Y&p#y0H6q$!aEUVihs)_VPK%#aei`JIbIrWNGcG;radzZp>vxPQH^5h;>bUa
zRMnY|4TWC%2x!3Rl5@9TrbFU+<7wYKso}XS<NLvP_-f-50%uo1m9YwrV#f^ftu9@8
zW3|J>&_Nfi<_0it)ZV^P{w~;bczyB#V^&b|e&_gfj_&5l2p@^sPDrCJHOqwuu3hx*
z`|}yvagQw~d}3`@XqxE5EmCl9k-=-EJh1e5!>wkdQjqNH5jJCi7t6&}mTTj6a#{e1
zE*<uT9PJC}1F-8=VO042RQh!Z3U8~EPn7b*y?0Rd-uv@+t%<nOh5%#t6^e)t*K=BC
zIf~KfMy1IhanU65$(^@DzzGn}79j0$-(H&Dp6){?9W>zKyN#4<FQ~kXe3RX%Lw0MW
z6}}A2_@EJLYRfzyY3l0Hg6wavQ(G$mJtz)$5@6%2Pm~%Zg{$@#5I@cjBTGjItImg#
zxHZMQs3C=+%t7wCs|RoskgY+Oa65Mh1OTa7WH!POs*{O2IG3ooWF)0%9#(OsvANzh
z$?RS@!yI!E%j$I?&U{^{?<lMFur|JUyT#`*70c%MHpa}-sdLUOC}GhM8>C@=F7L2j
z*KW+YBUo=v<5518>$0-EtvXh_wY8&bH9)zFDyuBtLiVi$^nY;CEvOv-q;*~WFl^2{
zK0GJSug$usp038(TPhW%LJ(uQq~aVrjX&v|HA;FRja|MA=jv82d#s<`i-p_le~)w0
zE9_mIYX7w1K28oTY1wac=Pl6c=9j1X7=TwYVb57s1%OGMi6tDs#p<aKXe~lI#0z<g
z+*iw?zMGlJYTw?wkk>M(ln%N1$*~$zVBhBaQ3$AH$`mP?-4P)mT&nS|s4ZB6Vu9F4
zEtB7ygJD+|r0=z;gm&GOt_RV~4DyRt(2NW+6z0G{;(qJNB)=Rn{!#AUx6PPL85CC=
zj(mz`0llgu&3ni<(k4Kcqp-CI{SYq?2#SPlUv3QM&<eOcwrCH#DfEWb`LdjHpI4HH
zMyLq$Q2ONM9OlZZF|Xy}s<E1r6Ro0|=<w!GmLY<Pm<`D$#d+9sp#ElPP|kkyFl&)X
z)fwN#n1@(5O6$YzHBPJYw~|GK0dKF|#Z^gf;%R$^^o=#Uw^-a#bf}dUUST@%E)mB9
zMG>W%>RRXb+6iyx*~IHy;4<H-)BW*U(sJ)1_lc%RIIBUu&gAPXL)CAeo-^YRpnPR<
zf_QNL@$%33K<E`h<?_@%S$!~N=)R@i^?8X@!)SR*n>akJokQo9waqd`M{3Cv@rbo`
zORL;V4?0SbMK=a^*MDfKpvI!^G=E?m62Ux%>E5&QWXc8Ni`R_Xz^nTPShDx5K9RbR
z;*MB+n(E}xPT{S$Bh3{Ai959hi(;74qlLl=jzKmHp)SveIi0|$#QEy%`G@#v6XBAd
z%5(OaZAiv|plTE9HqhN9>_BQ8OJ(-lcmUDg@t_Qw(N)itjWKZWQd6-*FP>P;#}u8d
z6Hv-S*D&wik;!;5U(%A4{rb~M@Hbr-u{QREg0-<{CI9dj&R(1f748^OeI!sS&4&8Y
z4olm#pO?OK&q#xIUW#;gBEU}Wohj|NMG26N<hU|C@HK>RW*Q=ztAn{CAhIu_#F55J
zU#H8quHmF&{cR%2&|Wp9d_17%*5J(GtrXGgzr17MYwF}ZG*r}|s9{b}iRz&OvX@67
zxLg9HKr3*sF-cdbWH_7RcpRA#mBIvo+rauUVA;W9$aySV!v@)^#o?W-#Z>&$432w=
z2~PL!>Vx_PJOY6w(%~Nn<xu9OCc5_!7LvOkho_61p8@7!M3$~fZ?SrO4&Ll9df-U~
zq|G3_&EpfTsc39PxBQ1h&02E_`Zc(ep#G7$OGzBbKS%RlWRB^q&!L`<)h`R`zs>Za
zVmNz#er*nFG_XG=Lzd-!$NObs{sW7L8iH(8o(pnLf8z7#R$t$Nm7o1X@9ZV%)#iL6
zY3=dj%K!8PVx0eh@c-*KHg-&33i3?t+hPa*aH-xKd&fUrJoOQz$<ADTjQ+!@ffD)r
zxjzl+!P#L|hf8q_e|Ro7PZ<yQkG&4S_WEKh{0~>tgEzW)?hjXkZW9Ph{khv`q<QxL
z#1FHV0fYLtZtFs!=l`wSc@b?4mhe9;$Cn@@_WIF3*xrA8eLQzwrfG%vDAW95A^cR$
zRy+G|&;BdHykQ{|^7kO;-yT4sw*~u`k%O%7>*q3f|MXVz&O-ivufH<|g^BQ|$Z;70
zwiL<#(04dLSPlpe$}^|Gc;Osuy0XP&@9F8v3e)&``{t3WIA{L;)c@V8ne#7lp%zB+
zj~V*k&#So=OX+&a0rlonZjy8Zn@=sSkO4#pPMIGcCRxB6gl|sIPW=OX`|r2L<O|9M
zkc-6gp56@S0F*xD_vpm%)AO}6F9JfH#^v5Dto+6Q#`T|{Nm5s8J^#J;^sTV-P79}V
zO*6lPuj$`ApQ81zV@InZ{&nn8_Ww5azb1!?@Z}!{4><k*uh|Eq+hYUuO-`K~tt&uQ
zRqINI;OWgw@-KO&;s3Vu#;argZRw3yYfM+1Idl3}WG{P08ukC@;s1|yKb5PNpVBIJ
z=J!SMf0rpZ9dhqoL}iEm>1<Fy<AVX9-OtSaGZgioR~hO6Shq9RdB{&E5JR0nv&t52
z?cQlg_Q3jx!`91?kn=lj-JZdL#e-&86`t+!>Fqps0admmOqt=-eM1;_Hxz8RQ1mq@
zd?S&=?1KQXy0$@rLX;^6aJ^)kRMXY~(1hAhul7J$Y=iO#=3@SrS_T+DPkt(VI+d5A
zwZYn!6%5P_EZwi5Bc2Zf=rhl&y(7{pEoan=Ov3;{TrgH#iQ>1%(=+(^0>1KVJp0Rg
zKrsNDRXqWB19I-t&=-JcGyvFW*C};@e1JuFik~(hd#F^oIk_z5H4p_!r^bVNA8lAw
zV!o|jWy7Y2va^q_dmpZ+i|k`n_5rKSt{a4*3xLSa!7Y5Dp%N<#Z02Wb2yg4O`?wFD
z)aP*5lwGVjH&|>z$#)ELe)~c8DiZLP*yK_gL5hfh(D806t7gf!#`&0K@JwgmRf5zd
zw84wQd<HwC-L;7lw2G!W2y?Y+PXR*MbjK{V`Uc3*?*~ka*$y#F`^)wG=)^nn36|il
ztcqKQdmGE2!{rJ9W3t_Cb53z`7fu>xQLWELy4&cCtt|oGpdWFg)nW{XWq((`7ZBW*
z^&T91F&qEmyRo~(as@y^WIgRcKT7T<dOTEV1hhbq;GbIxENN63(61i^y1y2)@h&<n
zgw(&S1s_Y&d(F@F(^#2VLYh;|LHhbTW&=QMw;l^JBW-^Ap4JNR2D7w5uB7wH(N0s^
z&OBHM#8@>bAcx>n;yACgIE-@0>hT1va-qs!v6MHi$3Sjjc^Sm~Ln3!TF_AJ}BHp<q
zH7$e+a=7Hl8E>NeS0|RP1dVfc=!&mY7HS}+Q)?8!3WL751ePOC7|yqzf!-j|QnnJ*
zH(^=C<mwj9*)OxJ7kt6ezp%_MKoCV}8N>X)DJCe6RtLA_1PFDQxZxNes&9%gd%XYL
z%9!sAScuL?tg!N*wBgh9Ajia-bc`(JXuP0}?GgSsDVfuIX%BDk(y{^f$QdLEN0hpq
zqGlmQa<6NgLrAFRi;vcmN`Ta<AXHd2ftEmF-rGQX^H<sR0I(pn2>EhFodd9H*ttN`
ziAmT^iwA@W4f7lqg{C8v<6cgSqhxxr9^%_UNUvh~nji0#0!H!2V~@~XZky4{emgqd
zD0%g)c0lKJ9yGfftzG|;a;m=X1<)ZViU&M8F3)|(12Ch@CrcxE9+A@{C+oVR7Z`kA
zUw+#EI{3|F+n4tOeU)}BN8W273(;_7s)nisvTv(@Uu|n_P_VCW{jq{w5F{{2z$lmG
zA|Jl`t;5_^@|A`O+YfQ)-$?Fiv4<C~*o~|ne8B{*F1l!AK!Frz-uQP0Sufu?Rm2mm
z=sY>-=-pDAXbPFWTFm3}*<=@Ge!w49Ek1N-(0yVyXMSVNsv)tdT$g32u|RegwN=S>
z@Pt+@7q-XivAbqUx3^=?D=(XfhgXdiYnn@6P=)#Wa~}~hhqiTelz_nYi1%k(xs$Q3
zG5Tb!GK$X2!e`E&C;9I`+Y!R`#N^FpIqZJw@JvO{@cJ}UAL%JSCQB+F`_Et>8C4C6
z2ch(^*j)@&^&rZ@gidRoe|~=cflY?@9Cjgj&1Ert<-i*RE7b+^BZbzIdn}IE2`(f`
zB8UB)j*I=X{JH&tr~>yEbx#HbfgFXxy$loz>RINtWlra8zMBPq1=Y^j1_|w-LS8hI
ztM0xSCEH~rtD5>CZ8=<Km(K77u&Cn3u=`-aqfY*w4xtkdtf+^!+k6_A+oox(pl3PQ
zG*~#kIe<zl+aT~aM9R$qMXKiN9PdulrJW?j=*sgSzxEWIcc2q4u^Aifc>Lqi7~OJ;
zyDA!WayTn=u&A1eSnRSj*4FI0A@FL)&=ab#(Ij--jjh~*VBox^>`4H>!FlN?yZ2rY
z-3=teCx|cS6IC$;47~@W9QGt|L4}`rdCwDH2Rv(R{hrsa&r@@lhSp%~+d#Mm<{vzc
z&XI2r;H*i)F(fps25cZvG1RO0<L%O#y){WLctI~0D1NX;hhV>U?b@+>YL{d~3Mc<T
zN)Q{Ii(dJn7hvS<9pu(3iwSccYIt^y87dSrUV(iZ0lOY2k&jAaMhGZqblfv0Mo1|z
z{_-3PJA3CQ4RmZXzH3Z)XJzD7+Xl=MV6+9qGca{tgD-E)U)fz-Topg7XLK(^FmrzY
zRk}NpVK_!t4pW{H@D^`&;_~0u2#K)X82PTg)Kr{{!rOF)j2LArAWFuy9{%>h$Xohn
zP*)Xg#G*45E#khggA}fq!J?s^FW|%Pw(%UUH5{eRlq&W20$Qpzo3c+VP8mp;t@8$@
zYgYGAt7HZ=_RS1YpFYitNfU0sGLzD~GBY!qK^C6f;$Sgi3lu?7Wn_BN%{5Ztv~f15
z1lE=OV{@*%LG#|QqG?90e8T}*+`X&i0RNP!`+!47D5jOC=L3`##=m?gBddNiK|^<+
z@eF#{8Zv~Xc-B;`h!r_lJh+4_0<k2!$Mj99|L5UGXMh~_{Iz|0|GT`oOJqxoNs3!3
z{^HmGQ*t#q8QE?%V+2$<?LJI@7{u|cutMthdSNG=(Vtd=V=SRzY4pmlkde5Gj#T$7
zJzfohj<h5j5QOqN=EQvoQRk%8aP299tZdRK_NOmM<0?&zox=@|@s=B79g!zo>>c()
zv))QEe`J+mUZ|Jzl+dovsYPNUD`sX|*|i_YvaDH)d*-aB`pe*9kgJ(1h-wK)3x|;=
zhPfumEbJnowrXDH#0V8zPI7ud7JQx$1`|(!Tca-!(^mGZ>>nuf?8N$?!MRBP@_+x-
zCQv+k<Ft!O5X?W;N79R<*&(4&<BgeJ?&Uc}2~~F{+%s?@WrVfC?%u}iLDw^w)P9pY
zjCIgi<aRK87pk98D-PpxGNUqp>lcN|>OV13CXW$)j4KQABU^hyFm+?6#{$<vV^{QS
z82mh%78KhM+H?k5e-t{3nJ+3k1a`D)f|=mZ>8<%M@>QPBtD}OBifOTML@(JwW|j@r
zQ)=jF7DQg;J^Ultc$QgMpwQt2v7lPerJ%zL`ZZ*7pzM!CbvfHbC|RrNIx(wn@<K+E
zc!H)F0gUq+OG+|^*MG&Os~&v9o1X8Tg?tt6^~*72=V)3}F=eL<E5V-g%Daw{Wsd;l
z%8S}h9P)-t2^Yiu2=+OP3JOaA{IfU2$=)s}M_m1^8Y$^r&-5dzhv2&icv^aT%*rSD
zlp`yohHQ>e4Z_s2c?={i$RTRvXUwT_?I7d5MZw>Eak<H!APQuCmH~&dvTfc;*HP9a
z-YJT1CX3Lqlf0Ml5SrNZ?%I#l015*haMZi-Jk7Srgv-*FKjrj${}AmWOK$N~SudRl
z{8_M1t=g4)kh&^mL~x?>#4CL@x#Jqk^(!7ZQktB8_9DWR9$#<%b864vR4|j!wGA6q
zxPNFq;&hZpi;3hVdpj~KbU{+#G59tRVvg$yLi>0-z`mJnU~1p{tpCD%zo{JF>bqPN
z?2pbeGkxA=Fd#RS=?%XR@vo!>b+D>+od{>hZaq1E;?UXBvL0!+kSoelO#g9>9lo2E
zq+|`h3c=yAf_I5qeSLTB_`xnYZ5Ja@_usB)W$>uu>ZXO^Q=GTo*J@BRCOdEMCf}rd
zhE&=qjAB`#CscJ{L4sTf0)sxtaKBvC>|jwW=gD2vx(qDgmBcZS*XY%3l_y_jvX(%5
zbJb5rV)Q*Q{r0qd(LP(Evrx{+`tNJ2Sxii?(iz^H!zl<f?nkIbI-5g$(SaiZ1UY;c
zb+<+kIrF2qWB6O@FbngE9kq!M{t*{g=Yp6veA7voE>3MG;8>5e>1}oERg5c+F&}xF
zjdJ>_QQ7Cfc{u$d-3waomp!FXMcbES>Q3mUa_OOwF?I5`Rdt>SS#M|>^^22YZzZJ<
zLhp`s#l`+{tb#35o&Yd}&waJ8)Vr6d!bUjb@LgyV&2j0`)rVBqr8iKxvIM;Mj4l!n
z`F8p)lNH?Ke+&xY9Ch`NZ;a=cFZbT{6M;DTDoCFVi}4Tg$5W_Vhr2_IgW>%*V&N%J
zLb4*g6*#??f<l&_XrwbI=Q1LlA!|ZbB(VO1pUDKP$7lh4|GR85f-ynY946#iy8eeM
zZDVaC3t*Jr%X@psa_H1$(;l6k*qr|I-eZ%stCp!uRluM|cW&)ej2(68X3Q8X!#?^p
zJnPgGdXZ_*TEN&3{YcH>CjiO0fym*wr3?dNRcx2Iw!}Qe*h_>Y<>1*rze{`4HE5E|
z;YK=6B+gf&IdMNuu)5NWCN>KqzALjH(gt|r`Toc<fF+y4WXBAVhX@jBSwZ(yag`GP
z8loKK$bkK~mit=dp2cPmO&B?2qF!^wHs<79@8$_9)vqhvT|;m65K$hZ1D_NZo9?YY
z$w!`%6r19ZVdaldena}&6-J|y98h0wI-$BNm~XiQD&2vV!^Bgi@G^Pfy59rH(haew
zHHY4<y{VS)qntVqd$(lNHx3rXWIdxdDHFLT$2&DgdFAvRZ?e^t5~q<}`ZgSXLK>GC
z3K++gGS!p`{PE0n@=Qen{nsy`jl-J0A9X7z`Z0o?ePbl6RmLICY}c5hv)K^3qj5Hp
z|K{or@D&cNA;PZ|^2>ibIgp98+{gD{^0!eQxi4)+d0xCuu+9SJ+?P&HL9tSRS}}I@
z)7ZTLK^SMli$Q6<yJTk)9luLX#4c~m*10@|xr?MNuOvVn_Ot5cye&i;Q$nsmDK2>H
zR=Cq{OZ>7B>9yzu55+zCF<SPJK#oiD%p4blVv=;l)V7EXk&t~c4qR<GnNn>sn*LSw
z{5q(OwxPWb)Vp@1FdSna>#LJ~O5W|R$1{gt46=-omUXBzi<I)ShHLDD<Q&lko#HAL
zLs-x2lVU3oCq1VFM*8kshvg<B$_i-*8A++>>8Pe&$7KlpD>@pnjd8|MBs@z>Y6Fw?
zUB2PI(|a<~3oxH<egv;d(ax(#DOmSa4no6AGg&>NSDmaNo15A_Tez5PDPe7g-MlgS
zGna(q?<X3pB`{%neNmIXI~H!xVjYDvxRn#J6FWN5RMw|xAHh&BBA(79w^e$5AO+Ve
zY^ZmuxLyr6Aj~@el0;6$)Sqib09QVl^*+8^gs9gc%vCAVQdXb>;tl^eCBb>wE1ERQ
zJnbt^mICWHEpYW?hJ@D#koHZwIa?^hS{RMG%=5xz(e5$NbQoldI&YTdE?fBB2t&Zk
zw<P_fAz2&|+dvj*bHj`A-FJ5gfiGNC0G^@{MEZ_aV6c-geOz?N6z5niR`lYL>1ZJ!
zezeN>>%z`Bfe7e9<0X#VSc=BbcqSV1(I=WR3<bn7{JInIz8b6)$+k~6{5?SgRq*=v
zEmgE*E}4dGBG-sN?c?6+<9!Pu`D7J8SkR0*IzOc<H@R~^$9&=vt}z5L3Y2ENiC81@
z`DD4M%H7&IF}t=J)f%iY5!3r8ar|Tj@IVEEYv*MfK5^=%_}g00^7t7qXy)nWX|uf7
zxa|y5n7mdvMz}|65)Y^DD!QP%^k8jf%~)Byl?DseGLlg;rp1cXBn6SY6`QF^{D~pV
z7HTCJ$81Y{qFPjMOZ=?U?x9yct!~r;f}fL2!_ymJ4pmLE+#_U*`u#-zv^LN9XyAX5
zKsaWhFPrD*cchWi!<I>*L$6n9v->m2dC+h~1Y|6iYe>cAo1V@iTp2J8rtnrJHS+2+
zB2G<+9NjuEx8B!#a4iT^Q++2gR2ZfJA66tu?o#rJyVKwe^k_uI%*Y2@fJF{-x+g|>
z;sLCR)Q%SvaW^aJ>fEUkGSd~L&Z^(n;_m0_m)lqb2fb6Zlzj3BQEAx_?;nKR{!E}~
z1AbzmbfQ^iR*v|@haA~i<zl_Og6FVVmCUq7cawTP!DroCuOZ4%m|CQXk*@Dzm*JZF
zTINKrMwLo~+E&#ra4#mr9{IJ1=v}v@UVc2Wire{WdD<BiHgZ?>6N>pE7wJ$QP#0KV
zcik<lK@ygq^<uUN2f;J~MczY<_fJ%Z%@Ur-jG3?|BriN1;XAToGNKXmaLpT%1A$N&
zD(gP<$OB+59$T3!^0wB?wm@-X-&V%qI17GX1A8ja@|z#5&35ZBXTz>$9Ndr~G=`C<
z9;=W+zJ9;anXKOl4@IXiKn%!36YN_Vixb2iMmZD`{<;a1zHtbTwFx@JW8&CiPEwcx
zd2PkOw8HpG<(dj8TvgT3FsIVE_8Qh*qTCodvp5vbbX(RfH%TngIp0Ibm!Sy;LyIq(
z?79QnF`aSul1kO3lS=sPPX)a!^L%>8Ky)G8@M(3f!@bY=6pe2VJzR7a%OFPN$KqVb
zTIyjjm<Ur56gOT}0ETa#P}eL@bL0Kx<t=PUwH;3|+(Q&+v{v>85mRU%s@QX!=0(VO
z#T5%-3Y52%&SFK*s_8Dgws=6uUb8)*>>CWZGOIEWJnc@063YF>MJ9OzqxbQ4{VG+w
z1I7`)(x69q9*Th~Qb-3;tbHla-Q|L4nO}kTa=s(z$O1ru0q&scS)D1be76h0eOH|A
zr}l~KphmrvaMkq{W;?7JN5RkUJW;-_lMViR#(lLQI22=kFp{;R#_3sdw|a46R)KtV
zeA$7<zoygSZ?5`ZPWyI|a8)N`X$E@|<8}G)UJUf8k1VIKIwzUY?K!{>LOHJXmGebG
zHtSUdN8=6i*?*m~i@mb+9fZ`wPJ3U<X@aW$2L$~67yShvH|;qF|KmLT->%2{60$n<
z2|Uv=hXOM=zrHIhut4=u*yG$H@rcMTC(&PjCbbaU_b6@|Ghie6<*Ud3nUsvLz=-Ku
zxp;Ki#il=jCNpNr<^koK|2Z`O{ngcVJ~P6?)aCW@-~FBcG;_T0*$oT~yyG3FMStp`
z2qo#QV=V}?#5QqH>DU>cbhg?xbh=jnO7Pb?0k6*I!d=jM!9{wG<dmBWD^u$2nk&~d
zXwjY4`sxa3eN}PW@!}~DPRhc*udFfs9OBbj>+nHq-3Te~>;DY&Z-ejZ#hom*8tUuK
z4O{%xKK;LwA%cJFOJm~^J&haKc$R@idI45dR$YC7_&c6l;3>Dvvmv;3=Z*$YcV7ZE
zfPuBZhaA1{6*_?crI%}}Kt1d&=difb#&O0c=6naw?DY!3bG8_?eD9&NN+6Ia8X|1{
zewdHQ_q0dh;YO%4R>0p=tZI11-E|})R8M30n<x9<OS(vK7nm#HV^2CHEr@u2GZp_j
z*a;PrstXWqx}K5ZG*pwAV8PSw^bGs|?9!QU!K@#hGErx64&cI7#JVG@$tden7Qxx`
zIA=vs!oCuxwk=4$RLDt4;`wbC{i}aIXOgw(>wa_S{%YI0rLc;~?dx%}qdN7@RM}@D
z?FqO0x*nX;?32z!LPtr7f#wD;ik|vGia@|8M{h$Ae_FF?E6!_s*}WBet6%LS>^dV<
z0`WttDXV1V(^_TKL5M2m=g9Qn-#3^4^nvR0nFdwrf4O!7@o&$SLS1;FIY)NNGzlwH
z=*gkdJzP*+r@fC0jKXPJuPRv`A*X#$j09g)p-_(L#UH13n#9x=XFZ3rOs<>ZlzX2&
zA5$PKs$BgzXF1@?+~|V=m0b41$?pry4~B{@Oh7(#At;=FVjCZ9KLe^G_>F1<jZCYN
za?Z_i`9wjA*8@P)fuO4M%I|lkSMfPds7r|BujXR@Z0I)l0G*vn<`t3I+26=g=E79?
zd;sF;4%9Wk-JG03igus%>>K22Wp-?&)yQ+zLobmpcO%&=oR`g2wVfgXnz7F<B_*{4
z)UX1}typZ}t9RoaKX`)cOTg!^=A7jmi%s_fdW2Sh8=r?q>sqUlqcvZ;+Mk??jaEcO
zL>RTSw18Aq49xwy;FJGM>HnrV1)pPo0s*|u4Tf(i;z5@4-_z1<?=Ukn4;KH_A;j@K
z*xrI!fN~k7Do71<p3@fH*uk*<;+R0=Q{uLMV=+H<AXi*PPDwd*v@^1LuGRzy`b96B
zZ}^K200OZ3)2}(Rh;}<)EAlUlN$)IC2nVddb0Nqn=KOh6=jQKw!~+6scc@f;gxP)j
zj~2kk@bD|;<3E4e>o$_Pr3T(L3GOJ0<GkIM<CH?fSrqBXm)mu`6VH#ZWk?*%6JfQo
zb%qy9Sv?oOP0n?^vE|%c8&#5}hoEs1W{$1M?vI*|>d%rW&JQ?tNkeLAn!m-jb6zha
z;>uJdh~<AYrn6^?%%$jACt65+els9lvoqUBb79+kVuZh~g}Hb`-qhw11)0Wb4kMSr
zN!0dyk;g&Jdkk#o{WL<_@fo$ds|DXet)sMLU@1yEXvyY>>Or*%hPcL%yoQK>t+wkf
zU?tXgf*Rg}Q~Ut8#1;Y12U;)9(1~rpVj9X;FO-29HW1M~2W5EEf`J2~%3KY|w_f)a
zQX(5WEMJYR{pi?kDUB5+;`OP21dI8rAbY5^6<D#yiZxF|uA5=CQzIjz2BMX#i{^VW
zG_|zia$m<jF!To%w3|U-O&<t;`gwwAK=pf(H~m0$*4q;H@`9M06F*GedH#DNsAIYC
zs>vkLvk#oXG7V4(Q2wSpmb(<lboYY{{HqHR+6ni_X!)G8x0VKasAc0GKS=kwM}h^j
zvkjX<M&-%9EigG-+FeJL2Z1Zw=p~$!c(`;;Ki+TOFjbUrDqS^`94^zf`D=YlRguJ|
zD%om^sXrMdN=kB;!;zH+vF$pQjch_F5JJ=OVDDsmoL{Bwtb{idT7#}WsP2-Z8TdMb
z>ROa&(A0FEo$;dc({EjcW^r%l^=%KwB9^msx47EVxQyj|w5LLnkGwpZ`017e9JS>&
z<CHCxwa;LR#R}56Y-SEzzjj+4p`5Z|i&D$`g?#E}>V8#w1N%$|$qFljg@sGs6s=fo
zeyC`E(6lrpYR}tAx6Jcn4n!<T$lilYK9@<<_uSuJKN}~?Gr(lq^PXvlgJn06IVW!n
zgbkw5JZ&|(T^2yqC+foogL8O9MPSkg5*PBlXZtf>^(@B}7A(oLLy1m$@#6VhO6u!H
zHA^f9*tB^UvkRAiV_H;M$xrtMaPf_|qiYTuDOl7<76Lkoy^h=}u*L0xb`Cafht)=%
ze4kdG6&V#Z2!bEdCx;*`TZoOql%U+JTw4r)++Z|a)L?~+4OSw;3Q+A;6cqI8LeU@_
zePC5JS{JL><}}w;$AO8f=fU*?S`#kCM_p^{h}`l)dzI<kHHCvV0n?FTmxVV+8s)1N
zq{&(@>wh~3gSF_BAAnly{mhqIP2(rd@xY#C!I`4c>6d<vv95{q)vPSr2=Lw3bWnA2
zZYkT|Zm-0tm<Ve;zTb46<FR9zEbg@PtZwwcO`%mYZ%@PGt>sCax+wf=UOAr;f>mU(
ziB4y6k3?}HLT=SGe(<)shSVd>-9mB;DNoL!uZKUo);B-b`-w*nm)1s=b*+eF-luAh
z?;J-2!?thU<{8Dazmj2H!k3^?-jfeaQ-ujZ+f`v$IRRqdJF*EzewvWwF8zQNs9l+U
z!-Wb^M%#lk&fl4-R{0}XCM*2z`?>N%Km^;fIn6wGcv!2Zx#7o&j&Z40*Fb<IoCMlK
zqD;eH06-<5IQSZnv12@02a<tiART%mIc~Izhy0>>8GJwa3@EOwTLc18z1C$D7j!+j
zy^jx@#SSpuZd3Br`%6I8V<(q9hS3yDWIkL3pi&bNNQp#P+{;*aj2i;Crxx<6%-vP)
z!jxEP3d!qsWi@-5u9TPUKBjw84S0}(^p{G|slI)>g4JK5vYCjyV`qOm^Sj>QPQvEV
z{joR+K;CK)#L7MWpg`i#p!{=ZhRwE50GG}Z4lyiutJ&PTT}$|96t&wmWYxTXe$I#*
z>dhBvy6j@5(vLnd@UdPm4=q0Tll3DH`V5Sf#_j&YY4Myut5oXh!B(Av2H}Gdw7}uP
zzSi<qC)cj9Tqi+biH2sWywlOej;(xZ3aSC$&Xld2_CsqJs=lleyB|-5BA^W2K)FFQ
zwsP~kwAa;iQI=x8vdn~&<yG&VSHxwTnGByr+%3Mlc^|nPs$#}j>6#he1X_YX=P@gx
zBH<t~Z^1b<zV#aaiiZ%#CR8jErkD;d)7w&ERZ50)AHC)#bkZ&`dh4ybF<@4al)~CC
zH^#uqpRA8^GK&e4Uj|{qVyx7N>gc>v8LY@Fvp~7QmeT{~lMFwq-|2o(9TRW!f?BQe
z2?fWm$A65kuxK{SIC$ECGh2~Bz_jC`A1AsPt<TWZw>%NUG~L^0HM&42L07O*f7YUY
zn~@E<HZ+GxUq;)w9CkiD_y)_vW&M~cM?lBFt`rjcDknak`%aISgBkb1ULwU_yM2jj
zURv50%~dwW?PJwgkH!SScYW{M{USZ7hxyQgyXJ<rOebo}Le7Jam&ETU4g;PBshg@p
zvl$x~Ckk$s!_7%ZO{g)Rtsp5YCf_h5(8*R>Gd6(vTBcuprMh1al3awG$<PD>cBaaN
z(lF&T?XHK99(kg**LW-I<zQhV1PK9nzI7&UmqL)UA|%N19H0#8*2e8;PBmHXtUaw|
zU3ZW#ctIqI0@=myDnihaf$82)-ofItL(I9AlgzlB&|MHHEdYsCT6Eq2GeQ2pUrG27
zj(tB`vg#}ib6{V2^_v3)MUUGs5;F95Lc0cZZZ@!DN@5vlQ%Y7b*-Lax(jti_ejCqQ
zQ%j7gT$<WenVfkoZ5#PKfY91ZzN(-#MBsBV;le<@pnas3^7HATb!+kO&e!<nI4xBW
z5jso$?eL?vc8iSUKqdq58i$>XOTM);bFaMVEAdkPq<cTb$t^{b-T(>1y!TC^VTcmy
z-qr>6#x}&HPBs!x`mtbi1-wt`Oa_FfcxlN}NH-2%3r)j{hxs%0?{Cf<Lbf<uVwr}Z
zR+OV0mRnBT5~EwQMtkCPMG9X)zLZI{mi^mAcDW(*-6dcSO`qeVk!a9$(k*m19%{?&
z<!{oIlzf}()pLWid<X6u3li3f>z2TtJc}4C3iT6}Xb<K#S&8eazf{L*y29g!VOGt#
zgzHvkvQXNQ5vsH?nnm~HYw(7{Dp0!m7Fz|h)<#+S@BUQW=-2{L*<LzUu4INH5p+@s
ztT@eIb&+pfnR__q*9hbpoM7FgZuZSCAh)G!M?MTemSwGdPFK+Y#Q+0ch_Xr|A`Tj9
zkGK1%D#l;SP<N&J32=J_n?3M%zV@~xt!y~g8s4;)j#l4tXh;oOu4b+nq8na=5?X*c
z>tcoIM^#k!df9uVBghch<;s2|Nbk`Hl*9Pe<gg=478Y*UpjjD019sG9f)T20_FC<5
z$kGfIm7Pso^8b-z%iOAhCa%$s(1oCTIbJ_h%ZGLrKQz04OPSzyCZmVaZMD4k(F!cl
z!tawmF`k(EmY1vhQsZ^L?eR+$_3ec_b2au$Kmwrva1{oD?6h;uCtpE7dyQU^)kKGF
z9<KyWKPXU}{yCHxD4VS6O5lA2Q1n48h<cEUnoXCB*RZ;mktefJWoC^^5|yhnGUEI3
z?$Mzp{03C0A(p~fA;|^E9qd&LfLKv_BO_Lpitbz1_xqWX1Y_)nsBP8$EYwD?qbxWD
z98JTGRI5J4T{St<dX{b83a>|Z5%K?qs`y-BCz<u{Loa@|2OP73ANSw}Qqs~J`cJi)
zr*7~?ek7SaSKhp1_(B_In_|eMg-;CA@zi@+^|OWd08{Zou~Su9X!C_=;bXd1@ogmB
z>xs4Mhy}_#p%Bn(dO`V%BIUG?@E<_<#-OHF)b*JvdL6o6T<j5R<vd~7#o-b|;d;@(
z>B1^r1AOu4mW-U-=<P~^5b9;cStXbz3x>q%#B|kcJ*@c*`=Im0YKsVg+LIx9#4_!y
zO25F~*MW(Owd=nbfZM*cMP@zQ^@=WnQy~u`_-e*7br{Q9Iy=WwJ=ul?o3ylvsA$Xm
zR&x!X^5wv{0Zi_Ra1(lL4QuM1g>BvJFXei#F`f*6$<lY<;%NKDetjoGzo}aTHXB%C
zHRV2mb_h!pcSkxjx)FA7zu(p=(gU&aiPbFP?)?Xk`Ovu~2br2JQNOQwSuudSA%`fS
zx6w_vmxHBH`*S;^yiFqKzFQs_q{PFUw);>E_FA6Y9Hnvo=}#{h!&3nHs}LB;xoiQ?
z6R+Y<jtI;RGPH1T(-HnY=4xS2Xe;O2355HJitUA8PY|#b`gn>b35ue2J#oVqPx05V
z$lFDdR?Y}M5ux9<P~hHeUjxX7=ZuO&@^6Pe76uRp&_?nw{=UzDF`57QV0oPvzewa{
zqB^yBC{II_Ue*%d5>6W?KHq6}8ko4P?Xz1}R(8i>>(i%C*u-oLDNL`CH4)`$kP!*#
zvx@>2Q}Q1^e89R5!G}z9f~Oz^wbk@pM*g|mz|~-4V%qj||H^see;xksFAjU3JNaF&
zn5LkNrGU2g)Qj(rcbl7yz={i-v7vwg2i)8t%9U%FQ$fmRT&klr^vXyDaE^yq9z5s{
za44q(h+9-xSa-7x;mEJyJFIVQ3dg~R6j5!Mr!_V<da<E;d!a$^bH82HEHc%fo}QN7
zO0d&DZC--4lDc!N0g3K=7pub6==gXm0t%Kjv_mqn>uGQArSLgY(@lp~PI~F`)7xcm
zf~%F-4w*_V2MmBB{YCGf-;F@*>*IL*7ub3M!+0t#`4T`hwiY)z_Hor>e;!SoinPQe
zoq4Nur7}y4^ppt{ZlC~=X+yQp=C7e6?56>ad;p5#k3!k-fBRBEt3DP`)gPmC3pi!9
zcAdw)T0MB)hAH|~Ks68Bnzu?^bsC&%>WhO9X0;HzTwTqaYCb0)eP{7Hs2#PLA?rO7
zUP7tj?(dlDqZXws4ZZes1UeH0T>)(~+qf;N1aRSofcQj$phx_B3}D$wgH8A#SEIO<
z%VzXCuL{6hMLQ|kwEC0wX%?=^|N4oVKEc5c76?^7IoMgPQO;9SRMZDL`N$qCEC{ty
zS%lz}4=jzCa^+hvd9>gdH!_k15;UD>ZB~ke_;>L%QTAy<!yw9K405@OtM+DME8KV8
z2813kbg&5(ryebi@N3q*=nRm5Ki1zy>-nH*^w82XKF6dtQxQ-qGxj`#0s|{Ifc_^6
zgOd>vK~@1$BSEz@>*V8wgdAPn(&I&Xtn{s)5m<c}X$o`XLEiFxzO~wOo_f2We$)U+
zvnJu~&B{nH2UnGVQ==b<>yzxu`E!l`9)IYSN|I#R3=Iv{^Yilqmi^Z*c_djqmrjhP
zLB=S5Q-Z4*tiNLG1bS9Z>#&3T9X!WehLz_*M+Z+ye6dY@e^SK}z^(hi@nlrxzQcv9
z?2cdzZEI~Uz=mM4Cw9*Zm%E|LLc~Icwtzr6dQ;mAL@NJ+m%e}ht{sv=zXFPj3{QKG
z{+B}epULnk$G?>c|0c_#T3SWjr2~X}OTf%(Y-P$K&R3Xf;kB*AS-zky9mLbMD(FnN
zg0Ei{qU!$2TOwPqS@c{bFAXF}8x~{nI`vPITq|$5N_3qG+J+Qn-gCcrK21{lYCmJ3
zIeEVC5%T~U2qM9o?0-5F3YqioZ4*KzUFz}gs)4m<1=z)0UWcyCjEwnVHzoF8+Bb(X
zlz8mf3q7&_^5*h35O^B|%S=Y>Zc{Mz?9KroO9Gucvj_1?7>{0``4W5CEP<14bInpS
zM6lqkhJp%?Qt#@*uaH2dZ0{X1@8HfV)F54<6QcEgj#Jwc)fZ|8)8s>y;ewX233|~9
zz1_UU(nYF5>NZzu5RO6?j_K3cfGo_`%x7-OeBi8;e6-5<LS@2V9YNS3SFHa^Lqj9T
zRoXt%RRqx?*q;uUxHg9+bZ@fNIfF7bd7vEFi_XnWN8Mm9!>^a5<>X2x8UkYd9j#f1
z%!8s?N`Ox`wwnIZ6$GdIfTUq8r$rP1j=EJxomNLjRGa4o=RJ#U-D#wEvH+^dWzuo|
z0LW4talvOaE1Z$WMn?U>Ctf{R12skVJ4vrxIU38^mXwnExr*x(Q;i2tTKt|C1WIxB
z0_MhZAX$~2bt4bH8X_c2;|(;SE<4wr#rt?nbXVph3Dv%aw$Oqrlk=~eLXzagTO5AE
zaxN(Vyb_GiEPNhJoMB$hhg6CkAlTV_M3^5}limFA5$RHI>R|8HR)HCR8KU`k^C0^`
zE9E*B>Ot;y9S@<-PK)iPMK_H=>h1lO-uAveT(9LJsJ{{~Mr@_9(K<1U0D`m#Fp{<!
z%}!_A?}SyQb&0c<smAO`lgmP&4)*qc;XOX*@CHF`mqq3b4sNv<FHppiB`ErA15H2T
zXfl$c8Sa|=f`W&-imrgNI~2jFyyQozv(}WmfGIXH8TgbsILLw75yMLx$htYypH=#;
z1dBuV1yy{+Y0^E~A$8xKt+MQHy+Kzw;w-7k=cVQ^G_{($vO*`_S~9SXX)lsGI9Ab8
z(zoD_9I#<uG`EqrHuK(Xg78f@_w^Nf77(vJXCF0)P8_bITW#F=x%7n6b<|$OgqbBL
zkKJT?XgjWhu7c?Rp2K(u00qdD(H78h+<lM59kDnuUlUg>k3;&_@(>1Em8q~2p)9xF
zK_!(v(L=-Me2HcSsAY5bfhEwsF%jom0y46P9OZjKj==RnF4u>yYkL1ct`rnu;4v0s
z)m1f#($Q>NKJb;q8FwrwcEk`Ou&vhfeh^5H*`QFU>d95Gm26@@cjW=9F`z-$qu|wi
z$7h^&oxWZ(=~tAXnLgJ5s($ppnYalgGi^37DXk5rM+%Rh{kl%{bSa*hLMU^S5fEx9
zZhGJiTnfm2xCP}&=Bq^Rl}f&vQu3UK%u(sM^kmIPXxLYQlRhfl+uKW4o`*T>5EHG7
z8HQCrvWFleP%L1n>rRUw_lzKOaZRwUHo^~|><puxat|k*25=|SnHc?SAq+4Prvc;W
zJ;*&zHe#5#w)=ANcHfZAp71j<U0CtwKzK%?*PyDRwp}B+7g7F#D35kD4r*1~_Qj9X
zAY^Q;gFJ@c;8}TM+wyS@GLKK|%+A8ObC%%<s>=EG+Y7z|o1Kx{3r&klo!llv@$&42
zSsN}aAML(oI;SUtdJ7v5V+Cuvyj+}!`L;tH=~~Tn{j8!-tbJIu6fIB6OKY~4A}kl0
zwq_j*2Bb^+(cWrP%(GAVs}s3)5@E)x+?f;6Gfv7qlNag^J!j(_LWtRca*K-Yyfc>3
zVznvF5Vz6-a%jY0Hg39TJIELZWh~R=6!N7k`rW<`TpTe2HP*JX%O3&0vKMvy0Z60Z
z^0POG5S#!)#(p)>5RUK5QobuRtg>+jz6#lg#;2#d(~TZ)HYa+d#n<x|FI4k6U6Vp6
zDESNnS!tP#b;i(2K<7SmvH$*AGCAkT_RY<+za7v062RzNK){VOicA&fwz0J400&5(
z?|tS?{r>P#>;7r~L*xTI`$4BX>L@suU~4@NmCoK5Y1DRM58t3e>CSrca0B~P|2scF
zF7Fp%Roup@G_y=iPl;$u!=KL#z3R+;W48V(fY$9E8QDB4hAD#s3iFAJ@n?iDm+Bfn
zOS^wdjYrub4V&(8?0|d6JZ6Zcl2I+pu&A#OMgrejjxt!aA+FoxeUw@NS@U$!o~21N
ztK#L}VH3~UmqnHp)kjUMTnGntiwooi`BIj^5*)7~)|b2ZFHkQofn5i-gn(2yKl{nB
zFci-1?_aRsP`t3jT$*`YIwPf=lpdHv2i|YBy~0Ec{9-CH1TIcO=F8Okt+TVVbj<57
zZnn3sWBOVvXO)Ut_8t+sNI}%r=8$?NdL_s|`+}@~EYlRPb7pp}a+(ea1so#RVB%B*
zg;5?~S)${|CK;3%wUC}X%-lz;RHRC^4ssDL!g?mjv1hpH&bVjQWh7lP;fr5Q+FC)T
zt~piR;7S{6F3YvZC-931>o>zsOQ|y9qu-S#k33Ann%-_}Fc-k5D+2EqJA|}vzOTzw
z71Xe>@hI=`vq3J`$Svr-Kdj84aT#HuqZ$DrEXu*@GKPZXrOF4NwqvC$20BlQZpvH=
zx!jiOdlmOl`O|iWbl3wlbUuyZys#VXw+HF7gYvRLm+r|xG{B4rV&Yzy=gMi>ygy=Y
z62j!_g_NEfUem_4H#ec}>Cmx5+r`MsBP$;!7Pg|MoiC|Eufm-NSsk1qi@t_Aqt!Jf
z0}KC$w6Bhfs_WXmK~N+FZwVzWLg|)95mAv)7`l;W=#C*2P$^OA7U|BRQ$k`GM7q1X
z83w*RzVZ0zJog{(_m4ky=FHh=pS9Osd#!6-*Zi`Q?9-eQ-39-uEIRS>K6(3gh{=X?
z#(d=bcyFkGjCqu~V%XK!Ce-6uQ;GK(qqDdmeQB<fe5-q_#ohZ;s*~CHv>4GL;S`To
zHVREbuY{(2NlFs4CVbN-pY_>V4CL-vLkG)m9I`mXO_Gr4=b7WY-^{9>q#xKFyBI>V
zVz?=ornrsaZa0Nbdbr)vka$3|jrUs^?&GPP#It1jl`3EFY129WiI@bq#Q@?0)qOR^
zzEn9I3LWzU-M%JyyTGfaJ-)Bbe_1PXJ)>uTklg!Hbt=tiOh|oyhrzjwI{<R&$+Kr~
z4y4o>%2k@Ucr6>=-PFAiIXRy#EB~%o=}}p!Cg-yGIkzvv<bqT&53-#`SdmUb`oz|z
zgI|V$e4(BOaw?}7vE9V5(4DBeHr@csI<J)U#rv_(3rD$dYwAkjc_gvOQk%f|BB3hD
zy#f;=2GjAg;&s^Lr3&ZHohJFSS>Lv#X*pD$hN|&Gkd+1DhP=}yLIH`RGP~yiu^cu#
zJwiKILQJ7`hfh=-$2R-?g~$C2dDqzBpI5Z4=qr=V3g2d}zJg}C|5#4d;7gH0T@u$)
z@=lwI3ZS)nlbDa8KIUbgOxlRdBJ|n{)E!*xN%1WGJRhZ`#6Jq!xlY_Q9!uG0XWBil
zjR}-bo|tY9gmy-8_t$xO)uHcSpqmXvftH1%yCV1=mCV%p!XUG!jazOykd!6NKAU8?
z>_WJkWzpcAl(rG_-~s#J$(w>jW(iWBOhgdN_NPtISIwM!vz0&yKCEhs`nNZTgV%^h
zjgGU^z`Mc9+Htm6shphhJ}GVgsHAIumbGGE3I5*u?);B&=j?nKuSx5uiQ7h|W)Zt{
z4N(LD*%VV+ZAmF8INcae^R;uIp3|zD4+?=j58&r8?Rch8qFa&l&4@xg>DX&#Aj<d4
z=w9mn6~V8(1Y3M1JN*)zeNz^egkrvw#I0x$z^wtTiA{(GigbM9=~G!Cua<ZaYvzuA
z=>Ne@A-M<BJBg`nW6G4>5^2d{{H3u8YL=ury}ee4wnjE-`1In(#vjqc_`&9aVr7G>
zG^hLd9nWrzr6P8h2JFx#Zq@Uh^81UNZpTxVSL#Mgdq+j>6sk+w^F(t~=n8dZt*_<0
z&|Ic`#bQS!^cv327~bbrsVm&yJ*qhD<yC+{2&d&9j7?_IXBUx5$j{n$&7`GGRcEop
zi5t3^_5=b|kY0|;#hW5KLA>Y(q=bEZoN=|f!zw%VcfKeoT@`lUw>;C@$ucut0qi_W
z3txJX29V;+rQ$^Ns)<t{MD=JO%fHHgDt;d{u%YzSTZ!+^`eyO6FO%)|Zp^~`yqLuS
zZ=%xUG{a>yC_8cR<p>RmpA=SZ$R9cZW(<iKFD?T5SKXxruVUsydJk4H?M-##*C!#2
z$-a;N#L+0TlPx^(U;OwMQqyha`MEt$Y)qLko#Kh(9qI(t5!vr#{p`&eseA(Oz)6$g
zJj9U>LZ`r5WA5|H_j9~ddREAl4pi18q5q?nBF}>0Ecne=Rg=Y8^pLqUB%4b5=8UqD
zO6*jVu#TdiDuf}ch;&0XryFuHEjb5r)UKGUUecYt(`S;E(;MeKHPIJ?P}Q!3^ib0G
zL*UR&b?rKlhSRW6!aH-9VRB(3o4?zuPs?>KaL}n4?_#>#zUIg%|G!C|U*J+8Q}siJ
zg-QX^A->}|{Qz4wiu#RYitb{v&%N&?Sdwfwcm|X<N)8o}i>BDpF$C8Yt#Osx`)K%?
zu|aJllU{f$hFIfb$#?vPyT?}lfOL--vGhNu&3{{vdh$ZG=dj-LN3rAsvBdm_ctq-l
z{yLd=drJ`pvfy|zeA0M+Kn81e23dmlH^@yH2YceH?A4icC-j3vy%)QYk&%G&`e@Yp
zk9^K`gI3ax0;6o%)s+hT*LK{Qg_p66x_+I2@9onHjNY1^T@grBsq5<}r+)eJ)$%(l
z>kwrXVMX9ZG{cU#CALJFH@NyX-~L@8NGref_-F*1x&hGp9{-$_blvzP#G)g|-uOl5
zNbwCU_x;%iQ&)B2F!{iGs3;Yptc*GEI06{LFx*-<d#YT>LY6&Ox|rdZ=bi+X>+8jD
zljTcha|@Da28V{iK^aC?POh}G^BL&rQw(m<GG2Lz`WChCG<`W2ikM~(j`ps_f;l1J
z<H3nE;a@ipg0y8qN6UNWyJAg18{EE+7C5M9*HFmNzqgVQOMO-90I{24w$5<U#D=87
zbdnJAtpjWuITe+AD98t+WOA9Z6Tf^}UU=(1ms0A~*~hyU>x#c0XfLwyL@C4%OIFKU
zvJ^KMcDM`#gV6ZqgIOAn9{K10Jdb*5kL43mjd$tlSblqJ+Xrni!D>dU&wXCEh<iXF
zw&38?59DTPL|qD6dldUY#-;_YFJIGMvpTD2m?MpD5Igv9jQsIn7n<hlIwmaw%HVZK
zsprqb0IZ;8G{3z3-pVM)xAO<`rE}SVP(#=pts^&sHwm@{NS2X`!FNz=<=>qVfDS8X
zOUk28_e%S~!(9>FFS?Mwbd5FyI{<G#Mlz1(v;vw>C)Vy0Kz!}*xiN;*To+aD^fcFb
ztP2*E_p_96+|11Kv6l=10?C%Om5IOd82)YX{Y(U9NZ_bme{@~dYcvj9((x~xViz*3
zOII=ph9A=j)^<nB5Y{hbR7qA_I8MZhVVw@iq<-AncBM>)7qI#xCxz=e+4<k8)9NQz
zm1Um|I^MWc<Bas?JNr16>iPq5uoPp^bYM-fS3KrwZ(7GE;;CF!W4Eey+;_J$8g2S8
zR!v}R4O&9b4mi#A@7%fLD2~ZQ?hh`vRBi-p4759t{s4fjf;_qpE2Hq^;X-g=7I4{|
zJQk)~_`TAU^c=IC`&22Sc2|e&sa64B`VeR|cXq8StPblbiWb}I(An2L=z;?XjPvsT
zTbYtVS=f(pjWSbXUP{Vg5J<bEckfM)&hV_gL2C|Qlt?V?FmZHE0m(Jg!WcS7+OB#o
zkF&TmwtaPHDR#v!gZki__?Pg~j>jbf;_C2@GSq>5aV%oRQWwz<uO>07@~CB=Fa_=b
zb1G8N(Xj&9D5G4`F@S!+<S*CYb?DqBRJjPWQ$Kf2mCB*)@bI4dX}oCczGt$wyHkWw
z`Fp$ZqMHC^BCVpRTqu&BVXKR80or%>K{>C#9C~;j$PedW;tngI#<>Z14f$<d){C>h
zM-Jx0Kr3xTVj@E&v0o5C8}xr-{Yy8t9I<QPtx%=e@niAU`?JGtiiqtOyWJ1eN?mvm
zkn}t6Mb7dzphwFeG*;D7aseckW<&8GQ~d2dYLR7#udYeT*Nj)Y7LR#Npd+e;;rmpD
z7Y^>7BKw_Iq_r*E<8V=3O0u~bUwAx3<|2#Nl1|N>Hp0i&j;fA_uGPg@P`DRvJJx&S
zM1+S!RutED&yFJ*nFUYY)rz@v-1`G>$q%aQig^Hs7{RGaUx@@<6q?e~e!$oJjiZti
zgRXwC%KaWQB&@3K)E)+9Gl52<>jdpRje3umOW@WEl!L3ynjV4*Vp+L!P_|<AKtl9N
z2=s&H?u~2x>6-6qP8x(`MT?J@OXSx+tiE)<RLYqB)UuI^=45A5wVH^XlX_r$e`Boi
zX$O2L2w!uR!8-q<c*yaf=$&yl2TQ9X&30(+N~{i5qzd34{3fu!*}wlIJ3JXOvWq9O
z6XmqON|WuGI#QT7!QfT=4O25tty=LKk2hKWe$y)iKxz!(rt};BYb~f9Q^R=K5nY)1
zg*xjeLjntMdy1E>Wp6PEzliYYmlK?<WdK67Hx(|LwGtqq_enS9Q7{jrJre_|R8doN
zl^{P(0R3B-G^Q@PFGYqF1ro8VfPmu?-5f|kl<lvL#6HN`i~w0}P`26&j|UVNMSxu{
z=D{2TdQs*S1NhmBWdOa>;%YEJ27%t3TS2VP=4G~7xmgapYqK78URb_Bg-I0@25Rqp
zS$&nJpGOt<-ptDd<~NrYn448#JyDBES*o>$(0Qh2=6M3p0f2GNzA82DiaA;kmN7HS
zlz=3Pd$O^!cL`XHn%;U8Q~(_8AP{4pZ`uZlR}|FF-X7Zi>CR~dEc2bBJm^V}&-}o_
z&fmpUEz%Idt~n16>jQiqXj{ki&!2AsIFW~`SHdsh)z6R%Ifzf~$wCD?NB)_GOs&$v
z>{Zq$8t$(ow;ZR!huce2oxV=0^e4-G9-GQaK-{a$1^IAF!nqc@o?*%ywo86?2WL4|
zP}}h5&Fc#Xs?KoxjVP1sQSL1BEV3WS?iA8za7Ll#s@HZ36EV=5sxRew1wSHYBL<HQ
zd9q37$o+%8T#^|1vg1b9<7LhtDP?QqsxFW-l;bCBsTdb|p{G%<u)N|9g>}8-o{GQ6
zPD96{poaO0bJ-Q2_h#0ftgMAkY!DPNiE6m!G3#g;ae9>_c)tI=Dye#{zh?;Tc@m=t
ziSj?rdXY2g7eqA1pJ?kqBVq}>>KS6gVpRqbLg-rwAh<DC<Z*@@{fN+MZ{NPf5Ez^l
z8+A}>*1>ADU8elX%=_+Q3Nk-gK|lx3@pV~!6_={578(pu3aAE&G9d2MR{~xVG&kQf
z6{$iKM4TCwmW_{G6j#GWR@QwIrPDbgp{ao3rK6h%p3!`~6Y|azshf&coypgn-V@Ec
zIX!)Q=MyHP`5y@03Pd+n(Ao-c6%>K)9YF_##OYS(=@I7a#NfFbwzn}c0R#!|ji?lM
zMX>A6XD=x~7j$0NV&J$7#7|sU(vfz6rr}gZo)DD>==Om?Z|q5-b=8^x!zcg%v<3Kp
z!tHCjWRd#cfXzN>pb860(uXb>tQ><~hJFA^q1f>TWWQa;VvR~-otALPd^z3U?DSA@
zhfV1D)ZlfRsd-IQ_XUvvv8h%?=^vim>~NAJO{i(&kIm4Nn>d8C^iDXT{&g+i`DnLg
z1QBH-r`g$#ma#7dMJwAj%DC%B1Kj!PW>{6f?RCgdq5N);bCo>}gyW1Up=*1NZQHww
z*Y;&AEB->@KMz$^@u#S)`2HjGf>!gu4UR9zGo@lq!fWcSFEu`B;!Rb%&yT$0XGE}!
ztydMru2>tGR+*xa{K|dg@9x+T;%2n1fyFbs@J{LR0T4tyERdVHk8hX7fq_FbtXJ>I
z*JaO(DO042D>X-E)yo5o<hrgePd?^=L~`1)D4OLBVOFDC6~4%i+6f)~Mcs!-d#OZo
zA%pow8SkFQiXIz;cnU*{6TLXwIjXArDjh8X?d|(B+m#{i`1ttAP%DrUWe~qxjslRP
z)d^0Hao4;i_=M}o20;289CcHuiJzV9oZcH68cH_wlXxz9G;xNWfZcclM7c&CPB8jE
zRiXf4B0kt_Km&5YZiiN)zn7(xdWddk6lE21?k80x>A$8fqbBwOy*I|;L>=U9nG}@a
zsQ2u{?OAzT(DZ#~s+^1uh+O_j&5>QY`@QlsEt{WJ2in6mB#x{Mi8VI{AKFKmUH17<
zM3~LdX6K6FSc6fKWwAR#T+Q!%>&mHwEgrJ&Jk>7$q_tLY(olA`Jg;)Sk4zP$#d@if
z{h!FJCepicYDi>NMXUwnZQoCh_fJ@sA-bROnN7`RcBfln!bk$*pJ|qn2J=n3%g2tJ
z?26$_nxB9HbwuA#If%EWHol&meKSRQa<e)0F)I=O7`$7Xg~|fxWco4qXX~eCSt<EV
z5^+{fzOur1XyEGKEa14e4}JrKP6QcD_s;Mv!nGg1(&~H%ak!%Ru&k1l-}_6D%J}=E
zPydogdjCKgGPuaFPvYnk0I_gp3*lN$asZW%P5oHh$Y+A1%5po&M$UP}2wcRdW4IKA
zltD|VZpc7Tv^WnsGoK3^xG(0Mmz2G-MNXMzMt_gLD}ZXqSNdZ67_ud)?*}PVGj`Lq
zCYw;1!58LWv$L6Lre=Z!SjfX1j!?p6-!v{YIVqh!-=hUSFD<0+^_6IoghH?piSHJ>
z*c$OqUSy6Vvs_m7Ao1O16k>!e+Pu?znNr!`)wQv(?WkFYrdNeS9TU;$4KG1RGmse_
zNjsVY8H~@!`AT`eH$56pzJ+W!Lr>4YLX%sbm+K3lrl#d1p-TH>Hh$oZe$s#59!ot0
zIe%qa@P~f(^bZfyrt=lakpl-MZ1BVS2{>n7K?{4F&1<4jdD`)oQwLAZz)%*!kviwB
zc)_w7^l)x%=Jk!HeCIqnC6~Td65Ag)iNbOnJMhk;vvPlkC)R#b)z)^FkBFb5e2K&*
zU=AJSe;g<(56K^>^ke<OVG{^3eZ0=iVHuR#_aoGL^ll0dwY{2!$Y@uca|TVswITm~
z*;0-*R@L3O!!f3_t+hyp(lDvswFL>p_Rgjp8rHhm(T29z(U6j@0!&Ra9K0r-yCZQx
zoEm1j3@~8S!zK;B_-TJV-N`V+c>`vu8zGLeln9NZe2R>-)EESII&UYkQN43g%S)-k
z!DWlEjZQX{7VoL{(ik;Fe5bn~QFd*iRw-ZN9`e{ZpB9&<LU-1p%hnmwBCJ0NxNf$H
z1Wg%dlFTy9Kxc=C^hDDASC)V`szHWdeA!yrUxVy(8gN2<5`tfz!S;(2kL=Gkn8=~F
zg?>Ns21_R$Z^u5eqoCeSOAA+{F<+UxJ4s)i7O<8WZ+;f_-sH?pu-kdh+N!}<C9`XF
zen)sjlq$>A@jE+*2hni1w)cLolJFsgy4P_PJ|O2fd=^Swc{HHuKH|r$lJ|_-LuEE3
zY)H7r3mllk8)E$}#wX{UdrvF|;`_eAX6E0bIN=5+IqVq%L}iIpF9Xf;%63|fhgskS
zUx_v#m%7>SjFrhsyz+cHifoTL<~DMw_2kX3w{pA>DvZlkQmAzTyE1ZB6=kv2#;#bz
z#wuwx#pAPu(mt#4$_S@}xv?Bo75l1#p?3Y^`~12#r<2do8JSC{FU>?H!&#JOir%?4
zk2mlsbQ-vKg`FMqfPT8Fc*%EBQwE>}f2P*jvk-GjjsnO?yQb=rJ+MbCxd7I%=uCt4
zy#ZZ8{1-qHEL!5x#(0fq>BMb8-BEmm+LT4feqiFuXxu>wX}0spYo*IjGMz^wf+u2K
zIO)kLs#>;wV>V4BwRhJi&Q6_8ui!fp&XbRt(fGYB<Rg*p^Kb-7!D0a6M41j+moTwj
z;{eoLRThK!lyBechLmw`{IQgx@TNx<i|J+vSCSV1hA%Uqm@h}^WVw+8*kLdSS@zxA
z-%sp%#FZ#MX~@~X>)U_FPy0g3BqhF>qxBu}s)5)eNA&x*kNErNhqLX1N+sM4L`V$T
z*>m0ev~r6yl$FVMGC?(DtsA~uhOlzkkzmd#-Ac^g$<8#tA6P5{FTIf$^Wy$S?^$G3
z2RFr`6~`zypF<?c=jt#J%u+wlfH3S;_{Xm2o;hZGP-Gpt`=-~m<nL_CewW!Wna{fs
z@ZZn8gFCo)V}?d@zp?EWz>}R04(Iss^dNqQr5C@L_qJC0oAw|IMOw40CbFJ=-n-$F
z&w;{2t!K6_;|j&6WEEs*?O22b2f{=qI2<WHw$gvFBBVc?08Ja?td&D-s=0^RXFBE|
zO&;kYlgoVKj>*{co<qE{vh1?WQNy+QH)=uq)Xx1l|EiYO<`GO3G)(Wm_WQZp6p2aV
zHLWd8`733y4+Tq8FDJ*w;rg7vk@U100J}7S2-?ZJe87)UqL&<WzURL1Z?HJzEdFxJ
zix9=UZ(hOWl332|KEpo~k#+ESzpO65BKF@G?9UVp>VxD*HBU#~N_{O>EMJhEp|S~d
zSIJu+I^^_Y{R6Cm$zUYe5`fOXd+S$fupt6XAK-3LP*BJ%+Le=I86#-(t(AP>A=+%W
z=Njwwk{^CLrgU;=BDy+RT%oJt_qY19E%=S(gL6x*R*tuXgoXeJ#Te571V9IvXm@U5
zVWXe>paqc<U^GYvJgsAF+3@#K1NVc#V3k7X$oM^qR;+`p$Gr$>$p*9MK-9qwB)0+B
z%>dKz0{RaG?(OU3J(XYE)$KB~@l27zme|^3p4={Pk?`OLKs?np=ulBJK)=#hww0Sh
zGwX`qUd(aP^wPCOV8Md%iTbo8wh8s_t@LYxE}UG@!FOs4+Ga=;hWA)Zw2fFI;~uks
zwn{Q=ZI#PUlAZw3cP8s#sJ(r$nS2FkLmMeEQxXGAfHCt=wgjwPXsY%*<;!k(WmAwB
zPD3s2EV1PE_~d*Zfw6ONAddIfR+{dyZz6Nlc`=-RuPQa;N0^7YySs`KtmG^16cbS^
zPb?B+vlBGY*X+g|Zg@}-ac`VmAQflX-pW9%e;(8A+iK?K=C3MpKt^V*+`?qI*gCI}
zJHS{?<LSq%{G)mvO9X%Z9&!+G8e-NTg~6F`z{nc$iBvy@hx3<r#8hM;5AOJYcG1zA
zWGwGO(v$G^kA-jhEfpoxS+Js_q8!i%koFz`yn<mA{WZ3=V?xG>9CuWn7j_BEM{XeW
z2dVzd!bv8D5#0vNnre#L{c8C}Q;mM7)Bv`{CLuAwd5k2>XA~Dl?C~NVU6O-uL_!Nk
z9ZB+I@^4i3F#l=bNtvL9(U0Dj=Ch40fR2y|08p52VtGI10{MuT#2Ub>j7*FUP9>p4
zu|Y>yr7-zcbHhqid}#`&EwLRbeJ$x*x-V0>hk8}9-0a51+opScEwzJE;KEeS*S3W$
zg;*Mekq$qB1ab%cHb&UYSq^f&HdE*702W)h?ky=ras87;hO<BH_bucnWK$g=e3{%W
zD!Bd}-d{fccO_W{6gP;`*a{b>MYvlUp5gwIhL<0MW96-odj_G-1Gz2+=iJK*t^~k`
zmIm2*U$C*)9LaC=%}E!(cIhqL?X8wJ(7x0l&P{-a=u-OlKr=n{>qyUqG|gC*i^&In
z;8W{K*^#$T!-qlY8DOd6n=AA%g#=1Y9ZOJ`kSKwsh@5TS$j#Ay^topLTjlwY1CX@`
z%B=QK0P@A41jW90)2nx__0YJfKQiZyh3B-5AA8hDSUuJF5G-u(4b2`jwiZQ=S;bpy
z>TBm}o|T<mmBvrqAFnfB@822}s+2rCSIp*qwy#p2`BnU|o2~A7K-m+gRz_|18#fT+
zG1U$9hp2apB0C(vFNr;tNy69D%Ucfar^=uLRS3!mnz8VHkS?=&^5jWBkZ%$5`s_LR
zrs;fH$;_oE)<{)hkR<{jCDgv!^?^d@XEAq8YgUfTf}Qn~aTtiOl2=q+(w=_*{$U&G
z?&!(0SDd<ktXo&=OVaEphKFjt{ywsJ$Qm;FpdtwascF>~>`3rn9FP~SE=8{|(>KWc
zVXvF7fTcgJ041Mckj`fZL6D4PUsiZ(dU{n>6yDh>DHG~k!eL3u$nY+{Uw^vAyI^6K
zu^9fq;;K`VObT*{8c3&A?S2XA&(!{0bNtOM7KF<ay}*n0e|D{AtkjQi%Tv+Pn9^w-
z@{0e_fC01#%&Yn<smAs9jK`ETMC5Z6W+D1`_!~mRZa0aaf@<vS;WJqU0J^KIX_@C>
z-);@rmxb71sAZkUU0Z>JMl(_8xnbH9!8BO_XzA8QCgC<{kr`hitDFD{v{E3AGz_|4
zEvLV}#iVwBb~gj*<A|sz)20B@gH|h$_g&IbN_$oq%eiQvIcB8owsA0SlK!faN;Cfc
z^V1OT^o9Co9TRGn7WUiF$s6&|p_4t8g2J}*<qP(;8cWU_HC`81kg4J9@$hjKwxF8j
zf&tiCuF?T9>x71WMTfx92O-x}mw5NmLM!yJMsq(@z}h?n+BssdR+R>dVZNoN;V<u4
zWz3IS+gY}4u9vwWs5Of}^F(DqB^<<r0tMC1UKLrMmT1XZ4>W4PWlOEabyiVf!&wzo
z^K4YgF<nt5oloDvj}ItTomWQsh4<QQAb!RcDpp0!#jL1=QPBpsd&N%i8X8*>Jesw7
zHM#0KNAbM~y0JZ{)rhIk;?j~)V>$JySBf>s7FGj=;X5qwoA8Z;iQMfGNFS+Z6r5+m
zy4V()>_rTNl*`v0>LgTrmcbP11we~~G25tXtez(Q?{QHEsm~*Z_RJ5NpBou*Mq(SO
zN&yzQqdWiP!ZB!+hz_uoDJe@#RJxYXsinMlj==Bb*4Es9qZrx~GB_+}v_H~OIXv=F
zbC}n9c9^w}fowZ^bMgAw$=gVkA$KK#L&Y_8zQD1fynX(imnfKeA?aL}u<F32Z%#+w
z=uQ+6!!KkV8YT?|jYkGoOe*wlAB*~fhS$QL6dBF?_kBEpVni(|=n$*MuqHD-i_$YQ
zGwTP%Kqbd7zEzt?WI!+K5k_hjge2Vo_QMMR6IuquB!@xD)000nq{g6`PzmXbynkV6
z^_uR;ef0O$eCwPL>bA^t9rL-xCvqabUv*v$YpQ=!i9MQox+3=FRjK($gI;EKL3};J
zxe(FJ#M1Tm%jYtZWt`#SQo|!M`JGz>FUImOOV|zcad)+AaivZbtrcm22fQDRC@#$z
z9jkL$LDtmCxmna2Rl!P@J}r+2?lhH&I9M1x;rPp9h-qlt%T^`+IC*E6_LJFG*EIXB
zVn0SE!JSqe9`Fp%CWYmh)Be#3%_9Mk(`xiuhcnf&H*~R$zCTsLLdhr@<)+qA)+LoZ
z+NOlk-1+fvq^RPDMwyk>#kXA#l1B?>inLiG*QMIt*-`yf_1<>fS%`yx9sWF>)Mntr
zwAcxM<%%-PK$>R^FqflckwW7mW6cU1DdqJ@2{j8$;yFFYQi_EN@<#ACD_NGke*f$Z
zv{OnAq`IJDqc)gU2oz`q3#1&EZ&EwhbLx9V#BKt8TeBbFlQ13he2opDw_)f7BLPoX
zGDC}V4o%*1fLBg|l2rl}uKT@<M@xEylR<YC&gl^Dm}&LlL``G1!q>AlMpLiO!=aF5
zqAq+4V0QZNvWqL*QdwRR%>$r%kgYbB(MOQ{4;KKYR6{zaj80oFd-9R#sJ#N@!_G<p
zk@W}=griuUW`NLPK=~NBpe0cK60n<njN!nRgM1>K#e^y#_=AlkO9dPwt>@aq`*RKF
za4+e0WeHb9=2To*N42K!w!O%aIdeLN;@d>WYaSz?`Go1@+w|E_z>2<}r(H$3OUhUz
zd@ya6hIHFzm~-RX$<F7LE+ujjNsMvqq{O@QkgY6)WYShf6Lm8MCt3$24vwhivnQ1H
zLn2GJ8X(%o$ycbTB95L`BWg59J{?dFHMH)Q^sg!9x=T3MaL9VDSoeCE-dmqOXIbwP
z?@{01@AoQeJ@y3gK$rh24CGDu>PEf}%nPT`O}T11*AULCu#dmg^(;VMD=TVJSX^^n
zTL{UPv^rks@Z=IY+|29uluSK9rc|m9g-%xMJ{#o56LR5nQNAu}(L=d10zIJGAPD*P
zM-#W><;SL-K5-mseKuLJ?+-}LV^s6NW}ZA1dfMf=8Oc<VSmP2{xBXnTYq!sAOqdBZ
zK&m@n&wLqDXJ)$GUj0JQfxn_1`Amf0qO3RXRJz1I^M(A{=|TjmHMJsKN>WK{55h&<
z??tvHOJNJz&nrmiMF&ZxRLU_zc+!@oI~}0Rf)XU3Ut%_;ZqM1oaBQbFOY-GFx(9MK
z7XnJs(jk=Z%+;)Opfkhl{RlrBsBr3#hM@9`ZvK;^uO#`(r7;>RP8J=@eZ#83OOF0T
zrFM}jH7tJqIayuf;wOD|HgzSw8K>f^>_dec^N!LHQ@(Y3*@T|_<HHaRMF;(%lgtX(
z)$ILT3yG4AoI9*z$Pous618<ywcG_~xhajfY!w>k9-LFh>THi^R?n9NyCDT6*Lu1_
zYy%A}ZKXU-V1+ymH9|y!F}Sr?I7I6O<|u{*8Q2RSz=KJTM#GF@>PP6!3uC9O9VD+H
z(mGrof+xkx$Cqoh9lLjk+SyZNj9hfboIHN-O{*U#&p1)t8yA%lqjd*e<!KE35SdI0
zinXhDixY#busN!AwYck7IVx||*<C8=wTdoQ;-d7>S@(TkwiMpvbuKU0ik_FhW`ns?
zqQr6Y`6Bmlg)eE~C@!J7uoIgckr0qw{3b8D^-uy&Jv+y0TuVqs1A?+B&mIOe0*1Zm
z3Z&4qyNZzK^lppEDq32WX9r$qCh#$*Skgs1yHT!h?BVy5alcYnICauc2}^!rc4ZaR
zoJgkA{wu;%X>?PLq}y^LH8oeKOsM4g*B=TIF^yG8cV1`ZnYCrbWVNbPRm}R9m6mM7
z%qRwv%-)zB?Y}FYe4Yrkm6G9y$7vLBNkdV|o`FQH3){V-R#S2})H6|*+nOR-NWL#B
za#9|VRm=4_Rvf~R5)zTTNYBH>A(ev6!EPDB4!>X&$%;X|TiQsE330*JnROOJRu(Gd
zM!tEx_M2-ZufG_JlN0N}9dS&NSt~LHa&n<#B8(%SX(>lDzP<f}hC5HP`c!{(FxFoP
zv{Z9J9^UcpnI<iX#}_{;<JqkE#%^T;s`ercU1A3yx8x^qY%K3%R4QA<9Z*`<bOBx@
zbzotp`A$3c6Y5=@-Aft~cZakwJJ<qp-+kq+f3o>Kb1rACk{#1~=88AqdJVXk_7D&h
z4}pew%R2OaadEf!NPrt47VXutr(UM*<jq(R%Hy#KBqHf{whw9^?$6I7{tF^m=IR+X
zSH%E%54C~lv5wt5U-W%b)=wseNY1{CvC{R2leyJ6Kcv3m%tMpMIoC^cvdxNP(!z+H
zcXV?QCmL36k{Mek-z3V<r$QwD#prg`-4eQnG5OZ9)0^|Kha(m54g_*Ic9V5cdAZM|
zT=*BXBgdg9{Q;qCGgNL-JB}fq=mvwc1o3VgB57JT4{K+!uC<j=N_E8N;Qmg)qHHk`
zXYIDi`z1wJ?LnY$24i`5shX7CQ(s4$Ky_L>%d$kcwR=MXWPsGmn;K?h#H4<<en+5>
zWa5wH^rjRjYCjdiw<9$0t=KBzS@^&x3wzvq-hJJS;|+3}M76R{Db&Vigh?>Sdb^Vj
zVya}kFe11^2pS?P4=r4#YD)L#Iz2F80TJt<Y;Wox-%n4S=62YvTnrs^E#3XJX9XCo
z_<Li90UwGnkQFG()vj`ibkE$BTZ^&C<My)+72A&@olWrAep0ns)Un#mn$PEXfs#XO
z(YKJ0;j0-+$o?*sW)vV<r*j(APk!2-uG3Yj8y9P2LJLsBrv*H;z55V;KdTrCs4UFL
zZ-9`B!z}zeKdZoz>x{9yjunb-y!lb0QiYm7rC-!aW7cNcyRwfQbmp;I{A0{#f&<-6
z0v+tM+%{?vbOL4YiIP!vkEE$s-Rk0c|IihSTk`8G69a^48j92PDbB?AowT?0lLQpc
z_`I}1S2gaXF3r`9>YWRYb%dkU)*>2QrjD&5O5?hwGKurJ-A$E;41OU(BUDO{yPp+4
zQ)SP%kz>A`ay*_U6+<%~OGz!C-L3pQqpmMJuz#pts(3W3G@R%|C(0?Dl-DS8svzFY
zcre+p$g@1N&$#sQYYj*ACXMorEbGMyM|D9=y9nr3N{eAX`W=MiQv=$ZPknN{dIvOV
zcwV;AOGM7oVLCPwW#l1tB{BHlM{zGfx>D0NKaUz&H591Ou@AfRC#Iglky%xxbd?_6
z6l2g?oZQi;#WZWBZ&#e%A@Y#=Qp5>HH6ZS`^wH+l@Lb3(2HGQnzm<7dKHPukn>2g-
zsp7*Ax9|Jn-n{-MgW##Mq~yhSn-?gESqKQ;;oQHy5GOPl(rF8~K3g8Ab~j<(UGI_~
zJn9QDG!{94H#vx*l@BbZ`Yu|36%4=h$R}y2%39%Vw{b_PV5`<p?BnA3&zTh_wYsGn
z;Sq+f)*^{`yT!R!4jxdl-I|2tZ+<5n-xgj9KkaJz=5~ufMshv)2|DzCOv(p-8I>s!
z>w|7RqZ%Fez1$ayVMn3y?(<yS?oRa9WsEdiS48s2s8&KFN7Xf|%{!h`UqA5kbpFVO
zvR_a@P|aTxxl8NRV(62j7>G;AlH~o%AANZ1<uf7XHPro{5Ao)x)23cms_6BWw)%DT
zN3(YFRSJ4c9bTyFPo`7xn2A^E#P#BREvVzk9P}+=Oi-9;dCa!=%G4HW#e_#i<CK(>
zU-RCPcXJ~NT!C;wd(XpV`^ZB@FO_>W?bllpvLM%R<u10%Mf0TQ!{KnV{-&@y10{aW
zj|f?~R&k3F;!JFnyQ2E*tL(*mS74&<VP9V_6u~<+$Q31V@PGNk^n)a?uU$&awf7bu
zVvC<k`dp%%gqDg5c7Oi&+a=XMrZm-gH~Lt`VeFU7|MhEEU)QsYD-Nv>*<E3lr~P_Y
zDC3tI`qzXFb>OvzKsEi@=uL{WMy%+lp8eZ!{_FSj9ui&+qX~=c3xDzNqy71@sfmwH
zO#UBF@?V!Gx#HfMU(4R<<W-0Q_@<^S3Zj?C-BxnvFH%PJ0)Il=5==woA}|gP&GaBT
zs=+lBdV^)4^^YkQ*H%_m-Z*MH^hh@Wen4uV5>i+IX#e&!=K+xn$0+#GDd4p(0*+MG
zK_GUE+Oytcz?&7{FAVkbJQxyO1p+C#I<yP<zfC0OpGX6r@q~l~O3nx9p^x~^KrqA~
z=(|Ac>jCJ*Y0wC0b&w29kO6A1DlW6{UnJjKVF(1dEVG3RR%PfMl@C!8r}Pnk!$^hQ
ze+PnXimv#Cxb`$vEF{o~ANPb_(i<_3g*F0?jV7N9bXNf-?ikmAmc5_4aWtc4VKe19
zf2iXHp7{iqlea3I{yVDJez8zerh0J-Oa$QsdfmARQ#tjvNcN*7Bo*6LbOFVq87@(H
za1m%1BfVPIN7r`fKG&zJQF9fci{%9;HRIN(n{C~EHnHkjaZXO<01&7a0D77L(5NR;
z4N8VvsieJvb1k8sKmp@5f4|x-%Zj-O{c+a?=m~M$XDlyFQidRC`Auq0;rlC0&j<j5
z!|f0mAWjZLujmG7T2(N1^7TIRSzlAJs@`fD#B*NBExQDCA?$v3{Xs8l)Bn0A{@bX1
zm<WQV*Rta`ivr9kF~kyDumomjz?d80IG`<f=@<xGLugWs##}8{0djy={@&E<O<+=`
zmO^ob*hXl9FARQ;Y%8J<$O*BUhf%<R5Y1P?939YZR!GwwpCaK?0n|HLPe4!N+p&=)
zua}#bAM#xvkk@QBdj97tiQz<E?oxF%YXa;?THl9&HqN=TkbBc_Y`!r@e)SSrFE_jg
zRzVYJX>0`I@$|YUiqy$+wW8qv^xrZ@n0`#P<;J#<H5ieX?+e9z<|rF9fCLjD;@y@r
z^#RPqr=H5%0GiH&S}hI$jnbSs1&xHzqns+IB0Kdzf5*p)Z1GK!Rv5|FsC_s7X{jM-
zyVIWTU;$hEHyeQ8FP*tr`Rrd_;a`7~BVYWcvx^+~dgK?bqG5(Cj=g6)oz!XuzwGAj
z-UJ%lMxcdSSl*W2SHd9B^!Rwi35X35n^iXi{TP{z8r6${J|wY_w0a1YSAF!SAx3fd
zj4x4-gi-wWEC2Uz=pk`a+}zyGi@hk8xoV!JUmV$cbm!kZ|9_8L@nQY5iknX_rC?d=
zNs{OAiQD<fdY}BKOR2=jpW9u<Vt_dK)GWx$-JdKbk0Y2$(f&LB-#(`Mo9MU+p6sj-
zJRL*-?xTO+zTSo?h<g1RpWX3HYbYt8yE1WE&P;CvAe&>kN`PWLcX}ovUf%X>N{S(h
zzf*8v(WX%$k#OJy9scyykleq|z<*htk3W&avz<Pp2z90)8bOXut|nrAAVz||Zoao7
zsJ9+!9e)N|ir=6bX{;4USULGE@<Mg7&gfMgpAeTG&;X+VG!6tC0oxw0WQs~1&N<aZ
zu9assQ$EZSdB|4ze_6vXe<Kc+lo3_R%g^V;F#S>Bo9|`cdyqFnTZ|w(b90?`ugHU8
z^Ms0eF8IPXm8{AMm}<Bgs}I{}3l92;Ub7Fxi*$;nWefQS4lUiq@=iZp+?9_PF3nML
zMjtJVF!|%p)6-oVgf(yt(9-RV2d)n*=H>pm$hmy+9_{TrSvw6bJ{OznUFp8UQL~?F
zGk+!~;wzAyjqQCQ5x8^|VKb?hGH2_0+0UF$-KlH8FA&#=4Y}MHMGb0(yNzIfDf*YM
zO7HYJbw}K4D+3I4k$<&>GB6w-fNnPbi&vPG*ABkRa)!5L?#`__r~5lI9rzhh#tLbj
zZK$%67zkpwHjbYjrD+*}F4Z09EcUVm{_YNQpYY}N<4$oeN}4_6*~}ubcE)}&BeK+5
z;NHdxLl91d2m|bvmSgYhN3OzjSiikY=<sl-uhN41HIBF=a!l%K$MZj(2(ZN{n9r)M
z9o=4Dz>=<EI+pjuk|Y_3@8+r#D~-)^aqwf9ksYye?7tY&FR>d^6lWw)pnF&d>(V5{
zcT1O#zw7tsYsQR&?|D6y7~ka)b*$HVdv~dhkz#!$(;^Tk)ehg`biWFaqETRhHUZ92
z3MRQ2^2{RTx&lBY9KdbZ^7@)_)D4U_*c9mOBE{@gAMeD+V;xH~o-hb`I@pSzT@|#_
zBCZBRmz5<>cak1oUk9H5lISh#27D^Ey@Njj*PpYp#)Nt67prRk(sC-nef`>`pi%p$
zt3k0``VU-ox&)gr@)+FFUguO=E@7KS?HgQKSNcCNl_`K!$Cz}yW50USV4>kT9O3_P
zzq`oG(RR|CE@`yg5$=FFvk9a_lwOhtVA<oy6_XfoZ{1{R<((e~#AmHcd7<LRrn1-L
zGqFyDG`^b|_3)Ar*a3sAwfV0PENOn9!xGI@N+sP&xDzQL?bdtOYbV}&`WbH*dD|z9
zKKnU2H6_=BF=xZGU3en4$0aNYtk3XB%GRdL@(@yM0TOVvKU_g-)W-`@C0Is@y4tPQ
zA|DWiAMeb80FV`wl$#{5+X0BEUbcr_b_ODPDydn0`OA;@v2H_2(zv&#rAgU~?8~qY
zi1>-#!|Fx-#}@04v3_3iI0=3w;m*KK8k1~n8&rJ(!Jvnunp!;eh`kTrvQ}fPMI7sI
z69;-n+ch;VKg8<qGdL!B=dwlyWw5PHAN|W*N>=}HTg>Xy03=mdXHPL{3KK#eK8#Po
zY6^tPR9rVz|6$l&ssVm|Z?U<47Des)`RqRED%S1%|8utf@wQ3u{QP`3UDPiw>KB(M
z*@W-r?&d}<{+u}j+k5oJ?Zfxzk#eNLemxf(ZtbG}Kg@T`>E{4YHd584#{L7y2R_El
zc`@T2j+v<u<~Op7RsIZ0!Gf)nEH+S;^Fl3yGm)xi?i$uvlqABBp{O!H9#I7m?+Tz+
z6)Ab&ug?0*)Bf)haw&R8Q50qye@dv$;WK<Rw^P2|&e{al9sPRU*(sOn_U!ifY3~1i
z{g<DpFCf|^7K+LFaAP3Ho0he&C~34HQ1~3y4QW_8X^GR#ROtehELLMpyLk1J1$8Me
zwgai6UW{b#MD5*btd=;&p_irw-@wVM!}76Y@6UG{Bd%nE^_@xz5=Gq^=+c~U#Nx)t
zP2YOouZSoRQNr>_K30^Q(xhY6d)nCcYo7>$!)O0+X~B`Xpta|KHkP>n9$7#ada;TZ
zTe!7ojKe!u>AF(2j?G=LU*3$iW7l_1!}j4A8<?kmxM>Z5#X!FW{Rh`Sb{E+j8E&QR
zI-rSV%#uDTz{izREF+Y#e43OET-<P9>_j-$N%jMKxn}aZC^i>YsR3MtcFmEtE4Ekg
z|8rAGYh7Jk*7+5zw<TZH_?bY+({@$W!tz9z=RN!!ppqe?fNflP7}NNNQUBwmz%*2?
zVX8V<Zkt4bTkH7`v+RNTr%QoV`Bm;HV{s~r<~XnH{$adeY5pItJlya5&y&QZl$R}7
z$BH$9L-=$4RXPV;v2G#AQe5M9$F(%)W^7iY!KkO02iZobVw*z?j1wQQa>M#!lOVX_
zO8;;vu;bF$aSE(<9FDPL#tjc_BdSyZC)m8P-Mn&aPAVJEBTXxNHa;KQhXaJbL;dHQ
zN^XEdyC%Q&0@m0=QWdCO8KtrgjD}<1O{6i-=5lp0R%fGw6Pxd}QRdu*?U6KY>+SSW
zHi&3qTLJ47z>E*9+y}6&9uRQ--*1W>85kJ&td8}zIQW%HN$~XabdiD4(*N|lwTsEp
zn+O$brs0k;jei*RKVAw<qh@5BAFFAEd0YR}EKmI7rNFB2HY~Bdf=X3A<!lvC07jYu
z`}HO3+9Ts^%7&wPJmYAi2rjG9axS2+r8VHAs|)(SHZdpH0UdWwJ%y^>D^Y;eztNY7
z<0{~Zt%Z$soFPlJzSw$Ejh*l8Swr4CSc?8Il2e%=&<BkfGT|CYj_#PN{#T$VtdPWL
zt?LN{uMD`X5?tpm+IMoxEMx}PGbZqvy>MAdjl^xJz^7D8nx+=tZcE{QFANZK0Yk>I
zxzk)uCyDhSyGakgGGwpfW!VZ3&)jBf&0?Ca`sYiR;S@WH5T83GV_p)-zLYNK7;C(L
zr;;wF;u+#!aYGU>eoVq08GqU#TX6Y9lXt<$RHl3Fbu#p>w+n*XdFR`1-Ynko+;E>D
zpfEi#zg#{$F%v40;E52vZYbZ|5*w*dI4+>)0+*`LusCyyg&Yi|Rm$<A$cHX<Y0)pF
z{%@#*tiT0v)?FVuo>{iFJN0GyG~ra3XvgGQ^<P$p;Z$-R(*7G8<|E!hm302yo^ENY
z0@->0HRjAxFlO3c$83)e;=c<;vzA4}wIakLY2WQnUBDCIL^Kdh`s=#(lxV#?Jk2X3
ziAovKKO9XrX}2m~b{kfPn;9o+V5WcS*XdXNY325j<BZtMO)=>lW`YKM9&r?5@hIN7
zBotf#bScmLTgl_ULOV%MpR~Hg<kOo%ud!ZyOS9gjJ$Q9(Wf<GZyd)WT!4aF3a;#@1
zaP55dEq7F<6SfEi$^s%38Y^<DCs-Dz-b*47QH9lbYKvfVI0EEgHz5&x7x?9WU*EqX
zRj#6+sRrSqfdU+hgWkkbKGEaF6q2Y9AKQqkkC(r00{G2qkP6_O7}@{>lhh=z2{~S~
z&c6hJd~ZAKff|W_-PsHSw9t~{-{!=jwmxHg93dOw4q#wSK<;1;cFfz!B^70nSJ4Pg
zr!*?sj(sq6+CgXsM->~$p9-+m9!^s*?|~*=|GLw?e0^~KCuIvrEvqLH93=}8Kc<-i
z1axd9<)Aw24|p#bJ3$UF)e3fp$)-n|%AetMGXQ-)0a`ZH2vo}xg&3{?IkE&8T6iuL
zqu@Sj*TJseD<?=2Z<BDmC^K-;8qiL@jWp5$s~?;IJeWL=dlNYv4`fjUpR9{dKA=Gt
zA7R~bAH`G<FM?pFyG~NgC>+uV2#m-m)nE1$v@B;YT%Ze^z(~6k)Z-Gp&d#f>Tt1Em
zIp(PaiMrcBuutM5YhL+_zNyvZU#C4B{}E(;bX;4>X@a9__3sEBx234&%?+<Jk&`6_
zFG2u{vb+c6B8uMi-jvgP3tE+U<3KG*zllVU7*C3=5C0T3A<_sso&FZz4hwz#id6h|
z_9}t_G#~a~{W9V>&^?gzmrA0!^Fg$5Dd+iIP`imExUaVu>UCmxIJN<!65olY`@94w
z^hRwTgT_SF!+F6_65w)RQ6P6BVsHc>GzcsJ+-faGo}dr5F}&^=ayWiaO9SdQ@dZ1G
zDu=Ja4kHh&%7*5*{GY;VE@tfS?tb-Nej&?F*R6VVI<}1lg&!gS8C6x&_nW(r!&BFU
zH_H<DitSgU=5q0QuBGPufbwZ7L{s070{5EAC&0BMWXwYg#BZmpy-=De(Zk6TES{d8
zg&+Fz4Tl({{qNAEZYGAOX=iG}eD{udEyMJ;doA}4R`RMifV`tHQQT=pi5NlU?w%Zp
zE^2t7@m8oPb%feyuSW)9j<oGCt(TSY2G9JB#g&Xo`&7E`erJ6R9H02;*2LMRw$(dD
z>);MW5){$$Vfybnv-_HY80r+wL<+<}Aq-W}^N7YDQ`eDH%xe>d_i_bmM5tJ&Y#)8>
zYTJ-WeZb`oi12cLSV+R%#P^O#qx1qrFf||Uot@8tFv{AU_>D_yF+hSFCJFZlxVfTf
z7WH&&yLZk#Oy7SyR#BYc?3evmuN=R~MQedyH`l+Ylc(dWPJZpNx!HR!P)wS#Pef@w
zzQ)F9ovN-?djiP#NdXquy)yz+0&Ehj-3s1Bh-}PWSUNz1o?t>CL+{zyCNlN<N+Y0o
zrAB$3?j&;ZE2Vtv1vFLU@)B#i1)%WfmkS>kz9co@0BD^Uip@;d+l$6PJqMlU1r&|^
z0Vgb1h)jPMQ1ZS4R4_7OO|y|lfC<Uc(xA`UTL3-tmN_9vPWjt|Z;_#19_UT<Mk1!l
zsk-a|X5@9e)A*g7vf-?uvZ0&_Vfh46A&--p6+ggkFc5vTuMY}$L{vJ5#hc$0to}B&
zisMv92#oD2O@ZWbaQp^1VCO{di0cRQtAzI6+itrBQvB7=spo+0c9!+PrT~j7DWA2b
z^H^xavE%p1V1eU@TBB#<wlZdg7STLpDicQtXM^h(55}BO4_vmtF&DETNpOcUK3!2b
zajMU$E(mTz%BCjpc140BBGR<8x@^dJ<-6#;yjtLUTAu(vl4e_#w&XO-e1GAD_s&X1
z0ZamvGoOy=%>+wa=BRk7@#t^#_tPWb*%&MJ0CZ}^sI@VFQTy&{uO)LC9ZEPlgO5&u
zkxmL|u}BSqYVR}`t<1}!TA;*cR<H@QUIRc4wc>{tC^8asOPqORO6Y=;T&GJ=5u3<b
ziQ!=r18gGSEB$mU@$7^-;T9-Aj=js?1e8-IsHHI5t3h?UsWnZYm^xss<^dM%jtf0%
zu(iLdNTTjq!N%(%;P09}na(nNN=B)4J)R_axn{z>iqGOeXfyTZR>&LF4-JdlYrI`U
zx<_4K!>mp&UGeCk+DE_qb~IhRgJ9j0N7<)NymnYuIA@<Q;}I^A_d-JAmoUpTt^Up1
zHruc+dngM7xbgG?Kr_+A7TdKZCed`K-DKGh&-Y;5U+_}4yqMG@Y6YH>7*k&^zeQv~
zb}w6*ppDLTHcTHROFQotxwqC20oFB|3#meDI__%}b#)-iG6j4bq2O1-Axd?lHQ7Ru
zUZV<^7IGXR!thYQ(a^HNHi4-uy2#Tt2;jQmUB1Zl0_V&7i)}pJz~k9gimtr5u1$EU
z#b<ceOL<tmwO2tRSGPHFk}Cw{yahOfNR`ryL?)_tj7BzN)l;3(HVya-ty@>U=U=$Q
z*)+nZ%kF_quy_(tsSirjL;xKZd7y~`(V$Q@C^8R~X|rm`6Wy&Qt3B?^$H&dwoiIt{
zZ1yI<ReQ4idb8W>l-E7sNBC5r?uo&@<qYfHSe^8ft<9#;uhQtr3ldi)R-$>3VBuWl
zs5>bdB&Rt5E|dBE{Gf!=<ThY{?JUzjOCp{zH~}=xTcz)JfE-Yq(Alky_oAY4fX`xx
z_eN{;Bob(%7?8QgLd)Lv9=EGr3K_Y3+T(L}>v7?vFHsBQf?6K@4DgjnbRditjO9Yp
z@ka(gF5Ra64s#@K!fN7KR}n+qerdkHoWRg+S`eXP>f3MC!{WMG;z*-Oy}<66UTnCO
z!3C5MTD(V~a5<v9G{ZNO%-u7yN3S{q>&L8%^qgZ52z9+U?+e`?FNN`zoF>qLg%W2o
zYE1VUx!c8gCp>mcT05WLn)V~WV;1Uu7R|G1#CP?|YYbPxwCn4gi>>wGZL3#qH3eE;
z5}JJ<Rq6&PT#Xk#j?Dz#A`o_dFa#=fGxjg?tGC->fwGDbGM87&XXMe9R6}(_XZ9Q>
z5~pDE3aqQZ^b8tIIs-1y!V!REh)1WPIc(UzG;-U3uHELTP*9KFoFetQcm9>D10LgA
zw>0dEiwa{$!$!?7g&Q9gLI;N(h_AY`(>L>5Na-QNP_b$I`9p-XAdWDuKHfYF-UJMI
z(AIa9-CkgY_D(kq?vS=K13bpIviQV7?LqU_;RFatuAH;uBl_|}vW%+BB)S`{-UXcQ
zPcs}6Ln@+du@90$OfsPW{m1?Op`gywhV9FE!=@?0)0@u(@yD+Ezq>qSCwePLZ=4ji
z`D)XL)Z_Yjo<)U%u)pXim~jKmw3h~~{3M&8@G*Lqlr>-~Q8ht&er&7;xmRC*Gx<j6
z-r1wx@|9YhYx+|;VdC+R^rHHPINPe#!q$>{X0f&h$NO*vwp^xbQhcu%3qI;l+k$Gi
zpEQ*=-v}b`s~%3n#rebpr82jDq!aEJyoDFu;e>+G*F|^odI?cu6QBmd_88SP$R`F7
zU5T#UAO2#=P<fN6eDygY$Bg_uxlc?3c}Th&;^nyK6p`*56lbrFVQ^_tP_#X6bRO+1
z&gxB%&X-GHOxovy2^6(F_aIXM@6W-n%|2}h3bHN4w{aWEV{UR59{!CEvEYd$cxVlR
z4BIFLPxIcWiwA4giDU=*xYVM(>v8r75{6@Bz%*AJbDIIGA6^@dpO^n;?2tiDu$TMm
z{^`kr1QjeYxUR`W{0hj^)(*Z7%Srno8nZJ2QAIO}Y}C@6TcMQ&0(*)AYi2mqX$@VV
zYi{AIO)~}hl~8JQSr3(!-6xa0+>-B49b<D(f$6+aw~b?dF&S&mA05BiiWfT+F=}(z
z4^P9N0`^v#<9hn{6j;xuw|tfZd1itPi!3`8jMZD}SfIN8^Xhhn#gPoD_OdY#!qBn$
z*ABo2_D&!wtn1sx3;-t3zw&md0;m%MWC9KI?yc-#^t+uaMjz$GuYrSVKNowF;M#er
zv1~MxO^O9rqekytw6;fwPBz?Er_TO$=p;8Sl9UnDooh@Gl>IyE)?%Z5DZ%chlM12p
zcQblHz}Y;Aw}D`*y3H>;hZ}!k`s2m>z5O1^e?Pd+?A0KTe*lu;tYYce)kj9KlU=Yy
zm~i6HE<O?<#JN?pN-%qQR<_~m4_aVG^c{EWSX-`Z#vl&2W{PuwOZBGhQ1FX;daH}D
zSE4`s!Cy)7L{<~1@dJaoz`uq;$n=4~PlT076n0a<%wQ;U^$HRbMmGU>tbKeiMVe2m
zx(2M^Ztl$?p`)U4H-^xWSQD4$1bOJae8JWrsZ%D|MZkLCMSSwbtQ)i*sR`Xiu~6V<
z#*@Fll_A+Hbs84zQjddbW$FgV3y)nEgQt`%jQFY_noT6C439Mqi{I?r3}mA|H~VtF
z2ApNMj5~w4Z+)6cQ6fUw4PW9*Wh$4SjE}|tbdy7tvqo7oL_uWjhb4{pwbomb5x6Z5
z*O4D_?M}LEr3(^g{5^dlyE{Rfc&fJ+waH2@{4GklR(<k##aeRX#f_O=Ku{m##aX#n
z68m?xWI#O|s>eWGVEGiqKnAB8dO^Nl;UKydjZmQVTGOF-nLNGv@-{N+G>lz4A6XJU
zLFtP!8@tG|qxn#Ru)&BJXoRtH7ZV?Vkes=Li{^wIV(sdmeI_rm_P1C1dd)$?J)(Xe
z8p*i24q0GQwgmD;r0Krb1WmWCIdw&e9;VAYFOX0w&-}=l_$`F!sfIwU>X}^myK!50
zGPW_hj@;>qQ-yz>B7x%zn#Qeq?421-qz)Yix&Ssy(xk*vy+S<grozqIj<{BQYc~(W
z`#*Loo9aBhVV|t?q^of|+}~|RQJ<All=U5P;K6uoKdt$Xj8o3~)adIJpUfHYX+ha|
zJ11KI%s3`U%ByH=xJI#1Vi(yoZSeP|=nV^hHvkT4HA)1)4g=?y=B@l{(e1V-b*7#Y
zI8K@+oR4_K<Q0iPkX+)6US(hMOx#C1Jg3moz6i5V-%W~Ao1(aTd01t|Mox$*v~Za}
zy;b*K`LdDt$w+jKT72uR!dI)P=jPEbaEue#y<XY0<G#DXa#(j0ftLfw#G?+0MG_2U
z<_XogUTQd+->`Yq!aCO&$U&&^a;PjlZoBDf{b$X~R52@mdoZU&&byC#BndGrl##bx
zpH$I#!S!)rK<sc*ikr8@<0`@t?=8X2u2_DObQ{B4x~31rLG^m@?Mz@0)A)7SmfL<b
ze~F?jK)xw>$i*R>@}=9<5mh5Dk$eZaak&#))%vmD;4{yH4yRr@ueUhJrwjj&v$qVZ
zYHQp61!<I!mImoYluo5Pq*J<MNtd)rcZW)d(jeVPmx6Q&i^US@W|8k;KgWOX`+gtZ
z{o#KceBf|0oomfG=A2_(*Y7;f1isR*Q^rgb2`!dq^Cg13>9G_h^8x~!73C=ze~QfJ
zjuJ_BDx85~k@SrBS!mj2Z}fXgk2GSuK`u`)4weT;c|=89^sF4Omj)LXbH?&9v$Tcy
zIcmO3xsqnQsTS8@y=06NJ(*j&;v5`W;Q0RP$#o{4?0(>XEX``<Otp&8R$0B{(`!4>
z$iJBq>ACRvKY~Otx@jfB)68Q?^XQ?`3B1dFPYrz53)qyaenvCCZ!QUX$J<e%pod%#
z^u_P}TQ)L7aDy283A0OLU~&1$g$*bS<R~ue=N3PZ>Y*ef$=3cPg0Dtn&rK98*1T$#
zsQeV?x-W;J4kX_78jGKH;G*-zDnR2ZHA{D^z!jSoeQL%4ji*7L%aOVhjHQo-p`9sH
z<jzDY4=K~~3YhnXUp^8`jZ?6jb+$_%6Ui80t+gmE=-g8`UJQV5?W^!iCkhd}G7`kU
z#yx0)rL=X!rGYOy|H~9+<qY9U_NGm@f-OJ*4qD9E&slb?QAb=JXC6ll&~Z8_<}7%8
z!<P+j+HQQ@nzvdc-a>=+rygJOy|;(AH>fYXWU4*t#O5N*jn;D{<&`W_VoB+iDO}<T
z^wx8b@&agOPhmRP*M8FC`b>a&&2^9?5EsTzIsg|PyE1m4m{{47FUX`vxHAmK2U5s3
zM}?5ffYpd8-!Sgf$Wng_tf$|=*|lq9C2hS&P(;+4m%}&yQuw}bn(AVl!TNksOvs^u
zzGFr+YWfli?`nUzp=)=t5F@j`WA<j*-!%trUX-h;01Jx}Rlld?$<KmqEKJoU8RQa!
zdFL5a!)U0w@Yx4RcsKeK`q6ta2!E8s78U?!D@kp=oXMYD;#9aO<u7c;p5rCGbN~E&
zx3Jakm`cx$?_)l40+t@8MWG=;P<iaFfCKW~oV{*tlnbw86=9MpN3a<E_?dGBWW+tF
zBkJhiDBo!_((S!T(X1>spTM*b^$I5*ojxCS4xr2|D<nbV#tC|G9JFuczIhj+)Sy4U
z6B=ML%<DQG;Z;TvcG;G*4njEbB3h1T#d}5%+xGcwA1L`U+b^b76_aiQ@KHXbchqM@
z<oo3mfP6KoUm#Dwa|0!ZP@vKM2o2-C(Gz?4jzvg9v0UOAp~xqA=NTS_rO6|<m|sYv
z^iYn}y2Uebl3GVQy7YTq2OM*0H0-1P^yJ$O*13u;P&hy?$wOA8@7lzQ?AsVp$uMF(
zBhbspg<R~W*rdcJ@V<po&s>AmaX<b6+GLFiESFRqH~<%<3gurpq}Jdbl&D>)3&07o
zV2EUk$7`eKw(}mBtKOj~k={s{&e%)da3fYuyZFndl{fA}0X7A=y|mMT2e4W3OO`8n
z$htnmB_kf8rOASieP-F@epT+@l}CvK6raHmg5k`g!_l|!q1{btR!LCnvi1AIiu;|>
zMdp1mF_9+g7m=>5szJ_3K(UXeNAVYS-Thq5yx?+qe>ttBpKa7i!C7etSCv2#Sxm%2
z6t#Wq!t0!kE8>&(CtXc^VNi)$+24JMwCI<{#n+HO!{NM1zuVjBfAqy9derNsAJ%9)
zRPstG0>LwngiaA>xtf(|DG=SSTDH}CAfuO(o%(9mN-FqqbI<`Kca8y#)@D|E225XH
zeh*)3)!M~8+pL6B>AhY#MH<dxEnNkmFtI2Gg=774&06Sq;dytxDjun2hSE7$E)PcG
zvb7-9jU5V=k}IQmLw1OC4DmJ4UWjTMhgR+nQ1>qeoDQFc%klbpy}9NJ*ozGKqPj*1
zzh5=$bvz9YNt|1kMr~8KU?)6I7(JBfe=^5}Hj3G7l=S4pq7l?2WwHoI(>{DJN#FYU
z7M2%M*s>1HxZ0>m+H$b(8f971fixPDm!=UABsiuM_bx@57REH?tM5TG_ro?;1YeU3
z;OSbCYxZTVcC+|yf0gw!c--+76e$G*mcX)i+~Q9_>)D?{SK)Doc(}2far3X>+#YlH
zFe2@HB0CAN73F@EA+qqi-ZDK#O1*CShFxCd-~|UZ<V(JVRnIq3C4>^N`C6b(|Hdx}
z84rhs<*^M*3bQC?({K(C2vYB!*R5sPYtPq6AMd=QpIq-lM3G!m_-^v-G2B-LE@vWj
z*;y^|?jNJYc=Gz~3i|PNFZN;sDV(((n)eu!(JC|l9#OB6l}SjGbJTwx3aa+r8|O_7
zO28tb$Z2`ry{u?*rm?A%_wLu^O)=@3ku4^QzejQWm*fwT-YwM`O3y2Gn_vjgd-v{K
z#M%~N5q5+ostB>PqQ;oc0K%Fw!URnGUUo+f==t<ZWXNXVDcjiQ$QMKfDkUPW_fy;0
zm2>MFsIo*g|7^13NfNxk8XTU(9XBw<oX7u`$3jMAhDB5W3WIYqbH58kV>vt=x~_lR
z15=J4dgCjJP{`64-Ge(VhhruwIZtW^IddbO`(UMk7S?Kge1gF42`W^$_Qkd-e?5N`
zj0H|KZ<~><Q7nB>qU?Ih6u^Y7<|l4d!Ywi*jq=hP+maOlCo6E;I!oV@AsPfzxHwDf
zE5_||6pKIUy!heJ_lGEJ7;%;2%kI-=5h-hu2PTWiO4Ti35HV6I0!G<+lJF>Mj9WU(
z`(Q6#mMYycZ=19iI(-JdWfrQpc5L9mv0;q0v0G;wsOn9Q9nKvoBCh%xLd~-nBSEcK
zC#6F>@cMkwvyCKosdiLse8fCU_UXJ!7rU=#+nC)!LX<N9rIx_OZWq*Jg`%Uf`)Of?
zDx{=hq4ffG_a*-bzJ*<K+jOB{x_2vyo;qQ0&8BQ~docfj2F7u=YfpLs;|Sl|wfH+I
zLz>}SL32A+8$U1${4Ng$=M!f%$G9CLUp3<cuhWYIsB+?6oM~|!*+65Nij&3hT1w}4
zjL;1J#r@d*j)D{{ChOrN;nFxtSr0a4$w5US6XKaRGJfy1BF!t`{s7(15i}8467{!C
zCX_cbqXH%_hP%9(e#Lx_XVo_)DOX*t!2wId|K#+xz<k@%>2hZnU0Ihd2dL;<Gq{@s
zZv5IGqgAc}Ff^lj)%&qlO?ZZ*jC7EMOv_&XBHfo@tJg51_zUFy6|ASYgIc8(V0|S5
zVM%-8Sl{ugye1kr!Iqm9m+;Q?NofxQW4hFq`$u=5guJzYSH!?@cXJjkX)F4x(J`;?
zc`obufCrvO+swTP+cvVFryp}z&UriRf)$#RLN}k}ocBiF(=am$1lboW*mv!=dXKU;
zj;yaluGz1%nriNaAWCZPleWE>d%x&Yecw31TWWIt)m4DxJzilDGb;R2Ey=OHw&ZXn
z!Xktko^S!7&}{4Q8$(I`W%3mo2bsX;63L}hJvhV;#kHb>b=A&2Wix3#JgIR!a+}9V
z4wf2sFn$BixKIw}yHXRITPR$-5>0ZqqF|qaZ(Qc2s^+duT38UMjaX-=;POwmeQ}KF
zQ0ZO%r(_4ZzaN)c^<O2%Z)rXXai}0czz(>4PO{mP6qL;ei+UgL{7GInTJssF9=Sqc
zK<Jd?kv@!(a(S=++Du?=N@cvndZ5+NnH1UerWdj>@fmJdE-o3h*@mz4r<8v#FNbR`
zPg??q@1l^OruWq!)N)Lj2?OK8#}5W;9A8`-J{>OfxsJEdaK5JcBV;a^wj_#N2ySMR
z>P)Pq*qO=bdwuuaDJlMQRr2V&!FpN1pY<Z}aB3F}E*$^L`}BofPJ1wR%xI2$?ehbx
z-&useO_6dQ4^|skkMfRyCtVGWF#*Xx+>q%btf=;j#Q6GjLnc&xCJ8Gz5SA}AqPmP+
zqO_iNa~+@00X#CV@ebESJ*Y{2!8N7+kM@~9GxrwDB!}T0>stXYi8?@KZPapXpWOyw
z)EKts84mIXVgJ);`{%dsj>s*bv$0S+Qg$2F@EVze2sG>pE=Fzz1jzrQwi;bqjI96T
z)BaNm&}Rgl!olC!x9ULZu)v3&<k<1K4R@<i0$6cP)FRn!8()2SJ^HV^u6^P7=-Klh
zYl*)}!Ub0D&w!mjMVoY5xR{s%E~-0ai{oPG1k)P-pBKQh2j5@GIozl0cl@q4Qm8cK
zsGY5s`RD2ICe*{Gu=e0@@-2g@0#vr|pAY$f+}7Etp*#wb@?qUdvs4J$ZAYe8$<wQ3
z%VptT@u1X^`)AGj_iuR%r~of%a;8oFkFodnR?}~ohgQQnvhxZJQn&s0ST)rW&f2ry
z2*anhUJ9A4*Z2+ib@E2Ew`>mbAORf6zZ@EXvELju{$C#(AQjsNeK5^ikR?)Az>rY7
zX8t7l`@H=#JP2((0l89pPV9#GkAM6d{*}qPfxnjC7_i)WV2L0P;@?~A>$Y$hWahU0
z3Bkbu>iI7p9AG5>@}&X(_5b^X0ifz%_TAn3veg=9D0bVWz-I!y&cEynkbr+V*=R7C
zc}DlJ+fK)<5qJ*#+t>Zqj|`py3w3dWMSrj5{&|LQub|ujxibGUGyxsG)$D%j&<w(7
zF;#PV?xd}w@b_T<XCUQe->^Qy&XlRQsXu@~62J!d4SGf_x1CB4Vlb-zWnVC=|K+$t
zN%rtkXw_}>M3fv7xRL4jzp(v7q5N|`fRx2*;OoJp>#d_wCjT!KOm_9%*Fl9F1Jz|f
zAYhlbUHLpCUI+78tQ)ld_r`{O-(jO8-Ho~I=}~#$0`Zs2UhylQi!J9s`+=&9bI>XV
z`QGkbYe!8>mz)<HCf9b;hlSQs!>_(oyx6$BfhVZW$IU0+xaNX++%7O`p3M3Q+Ac(+
zzF-cjGQ2DxE_QVaeG*|?ms4_mqyOLSwmakz`ibfXdZAs;0SB4fpn~*X<->}XgZ1&U
z2Rm2Gp~h*yYQTd(TjkNZ9sy11Q($)Uc(vbFFdF9>``oh6o27lwT=eXls~LOa30lI-
zV4?i!r@h+3!^+X*(Ky?E-@eLcwm++QO99`+;WP!B{;A>|T{JFW7Bh88NgX~TB!6=q
zgIIy!%vU+(i^Tzus)hnpp$Hy|FzAAHeg0CWZ(H$s0VB&FG@)^U#FqX3V<6>=03CK-
zzu(WOvDz-ToV)a_vx!<kODPOgEsOZ>nSA=RT{Es?wj4%+BYv@rYu*NwCQoh{2Ua7$
z8)(4trOyoyBJeveq!VBa)6PP$KtI4GVLu)bFh2!zWy3|bD^XBc*bM~zw`DMq#zd!Z
zk<bNZp<N*6?}e+b&^G8A?gg`>`g#D1Wr?sSCTpNVRRNO1BS2%6e@QSv6-w~PoRT@j
z2zSyJl;Pe&*RDOs<e9>5TH(u}b8FcO5dbsYu21S8J5vmt^!^yz3Mz<V`z=ddAmBN;
z8~%PR$j`2w<8Ba@A@S=Av(m4VXC}R7XEMM3fVUV9Xus(_Tib<FUklt=Iut-x0HSg)
z_v*0d<5qdV(HGibC}7BNZiH~UAkq~5Nx);un^37xQ24K{Sq#ztzD|*LL?P_qpzF8S
zT?A2hMxK2zN@ksff1?i;K#G~U5vBU=C+4y%$C*x;MNkq81Qu3xVzGrf`$5Tr4oq0H
zn1D@q{VquG{05o5(UOQA6|07Ub~MNRG3{KCd;XVZ);ur%;BnXyeBR^t`v|m=-f;so
z-zYJ#gxE7Q-l7or38Tem7avi+Kx+mPpyl$wOZ#cRgJDJZ`g^5J36Aq!AUGxg7|6+s
zEEM=_pljxF0Kmy#4bE;eJNHLw?K}Ms?Mv{9bxnixLyk9k1H53#Iz3CM0q7CcF7!#>
zt`xD<;sJ8iV{Q-U?w*L_aUkxiPT@U6c5Iis>C<-tX(&O6{QWe;tZybxjVxfXbKeY{
z-1IVe9LwA<?i@XW0U*!;`=$fm`3zT-5JzOU{re|NOKDXQwzPY3Fp9fQ!EK~Q$-A#s
zE_m>zH~K4R-#xt{XAmO+e{o<o@$H|8hwDnM2PsuqP1ot1D`rA1NL}Kk?nLDgCwn0q
z-88t&^R@x^hmq;jXj_tp=RnV#h#LbCzVyAAOP$vJ<loQlgksI1kvrf43y28PQyM&(
z?sbEuGwqVy2hV*$WUXS^5>U`~fg5O^3*#9Bjb*(HzJYOrYI1xMEm(42(7O~R95Hig
zVT@A(lXC_BaT-$jWhc1F)qd(Oc)Ez8F~tHEEuYQM134(<M}MO_S`*d8c3kx^>(R&k
zub>1mX%sVd2ennL<ILGZ*0(~k0XflWP!i*+Di$wJE^J5;3yB<=6vZ6fpuYXO9bJt3
zciy}y9J(7qQV%$pmHWs}%q~vm=V0c&6eB4#LJztgujaSUL11B)m(b27Vl)s3<U6YT
z^82=1OyRfNvA1@&S6EV)6)kHNL&Kq}pV79W_H@-yYB&Be<IW>E>j(rTunZLCb^(l$
z>XgF=2^!zgC^(ouWbd^WKcA`isi7DK7!wYaH2|hW%~{`2Ox43r=i-=##X6n;aMaCf
zJYn_(UC8eB>ZN-O%n_L959XMt*{SxW>ek=r*Di(AriqC5$~Kka_dby90U4ly?H^nN
zOpO{?hLlrfh|9S8WZ<)t8hUy7Q(5!OaKpeG>;#09)$d1be!h8ae&++TofLHfW}zDn
z29zTo_SHUApnVppz?M#9@o)%$EoKGD+E^&Rm@WF%>*wUce~bd(=2QM_`teY#{$3!d
z*XRyY7<w7WL0sMUsm3iLA?iV)Kj?^e{~{oQ#`>+&7X(^3aXYk<&oCF`F%O+UeGBdt
zB%!AEDCUAhzES9uUpPjPbQOUZcnJ0eg3I7^?|bDY%ISVsBvuMKd{y$gqf9m+<EWK@
zl))xxROw4C#Zlptw5w;ud?aK=i`++NMefYJhFEvFan9*y!V!6#Bp$^d(pV>L&!W%R
ztFmARpZQf<u9V9AxTPZog;Tif&zgQ;jO`AeHZPx%cY^pjs9^NFhk9D`^?7m9(g-ll
zsGJ#HPDHa$`s5aznzoPu#7WJpRo_R$Snc*P`Y9GRXT7P2s*4y6LFK~0jo9U`TM0H1
z*)inUKRD4M)-~jV2EjbtTxB1(7a=9*3=w7Pn9IB&?XMj1x}tUMvl6~&yRMtA!yf+^
zjX<Y63y@LKy^EnM$y$U<(ucv!H6x2t?R(=mDgB>*ThnK~Qwo8x@EQW_s*IfMJd(Xi
zuDc_0sHl&dh{^b)dA#l9L#s(WYf6{wzOOH_#L61hG75H{5P$q$D+e_>h_GKdLY*3t
zRw#w3LUqm-ICza8wk=v0*uMCak_*ntJp+rh3qJJ6I7bfxdi!73{k0~kF$Sci<=ksw
zM5aTt{Iv7+B^qBhJ9*8YTnlq`n}7^1zTuCZLI4q-PH!ijaX<;LowfTi{VJ9bPb=WS
zlc`_8;N@F}{ls@mfWhJFRv3Csb^lMhwD>47tFsUf&;;pL76!({SK`bhkCBs02>Tj<
zy3w3Kg7>41h5{tZ@1Pc~RI05%4oRNd7635p?&V)8KzCfKJx%x*yEW@g1-H4$3-o$X
zdH+f}=E~`7H=kwEl{_Y$5$Btr|5dT_j;*KA>FZ?TS`dn0-+);l0tBfpa+!zPx}vB1
zN40aEKNwcR2rZP#OWAx>MK_cB*)l3F-dl50B>XZm@^MNoV<=(DGDz&j1SzySS;QUY
z85-3AV6X<h<bE<7EAg~r6~IXhV88~xA@SyGQwdX&M;>K~%WO<k@9!23M-leQ83)|h
z!_<&FeQ>dp1_2w<M81~8{xcVfJ$Bhbd6$ekY6CqM0?5ybvOV-2tmL`V&6CX&Uu&|W
znD>Q$U|}3=I5GAuGA>Z9CFt<YKqJsHy=MIK&OB3NkViT6=p*L$6axpc5s{4{(ofb+
zZYs>;$GW-Ca0K&zYGq$0Tm}u%tc_+nXB3&Mc#v<%SjM~VZ=|eci(!7Q+N8etg|1l?
zkXt=0W-!mcAM}vdW~RKK@Z)Z?Ov*=*deuZ*_I_6LwqG;0S=N}71)Z;Mh)1O1Va;pp
zfCr&g=i?%6&3<5d5PL3iF4~J#(C51J#=OQ)?=-Xh_YM6?-PB$gD?02r(<YEJekI39
z9|+lWQ+XsDf0@!*RjIl+M4J)sn)tS}v1(zA9?3>ZnwVcw{uuSR`er_`$4J;!bm`O2
zkaBOz*pnlBMeJLvc5#01W4uiZvQs0anU#C0g)qRm;m3$yod$fY9<6rB!WCrF>}!Pa
zN06ISL`sifUNUA}s#^%Zd=BvsXq!Iif5hO+Y}rb1PcBx&R2c8|nw6n<v2{Np9{P@*
z?#h+Q%DA*bX>ediu$N<s(V|bgQAU1a217AJ-MrtMQir!@e`eO!IP2W&9(r3c3YC`#
zMnJJv)kOzxK%5Wmsl~#ylZDfy-GkxQ#&0X>(jHs7s{-aSo2h)_Or*nC9o{$m8pW<0
zK{$t-Xs1i`EIduSrBg5q`t<^z-L_eOiqtl3e{}8|;_G#NzGSl4u(Wi6v(n>?vt$kC
zW2Xj)^ie-XoYV_8qc#_4MCP!Fa3V0ePqil~doR#CB|Pd<rUZYA95EldT9<lok8By9
z<*y>L<SO>EZCT#}JPTMk0yz>7$w$Nn5IX=*h=lTNna2n+8q-5swAM2cq4A-}$G%wn
z&4Qy-v)09dyG;&%DSd5PB%C)$-nXQ@rdH+rTv(KEB`%T}gI(;m%xR9L^dsBKkdRf}
zB2nFYrStWG6RSvI1PwAtCPLU+tEyjSP$y|zAo}zXjYL88y=p(&>S%27D#Le4hY68{
zpp%|NgBwJ`>7vWTIUCWW_G56VzpReJV#2kfx6N<)C8sD`oMZR#d#N5&(?;g}8BP)t
zp0val9++kLQ8WSxOW}z1D%^@_%*8FRJgCGZBe6o6)}Yl@yc0#EiKV~STvj83B9F<5
z&rT;N1G*HWC{6oeCCWoOdX~wgUKVZE-s6!>(_&f=e)lZwg3c*D+IAWmNg#rTCRu}Z
z!!V8Dr+KbCN%%e0Zu+ge7ui@ODSQo9i_?{(1ixXz=^v8l7;Sz0+-Q{;f?gALn6hf1
zP+~~9+*9A}dV{FEv{4w@U%Pw9@Y92Nx#UMN>zV;B3T;QfNPnF&U`N^Fk<z@DEy%)p
zRFGm$L32(Gb=ey}tSr=!kx037m&^_!1q(v(-b;34{ZxV-w!Qhq!C*w#<g}CIr9_I^
z^iD;wR+>1H0xRwW77@~Mke``}IrV!Mf`ZvY%>&PzQF&V3p{Lfl{i%lzeRM%r7hYYL
z*)T@ovN7)z|2O7I{wW%(_0B(e^jjAxQc=dI;nT(x=UJ+K&1<?J^DpB~iALoapczB<
zti>#Iv3Cg0@y`i@%mU1rvsA}?ssaxLkYh}aeUAf?$0=~5WX;-EPBz2Io!<<0-j8`w
zZQa7Nb%CJ8$-0a^z}K75s_3s#f`9m#yIyc4w{W^T-zgZrH2HHi*}*0y+0-{4A{F4{
z$5llsxZ^7Ffc@ixVZq>~UB7VAUc&L0GrEBR)!s1<t%P5{MI4C0{e$O9D=eB^jk<UV
z!0e~%Y6wC!BbKZ{&ps2rX#gfWffvyLpwQF6dpexzAO0E>uG)<7hmy*b5|YNi*z1(Q
zD{r;#jXin*8-@@;XqlD(v2lRqEdBF$6xOzFt3OCCv|ZWVqQ5D(@28*+mG>QCbUm@l
zHP=7Ff(IhQk`-F)qZFXuqnFAK4b&WgTMnt~{Q(cgJMMs|?>3KiO$bCBVe_Yx#YhlA
zU2|ybdj-WruL>5u!`C0*o9agC7UXh+CLU13bIGsW%td4xh*$MPHmbG$q^|~cd81(P
zD+si4J38%Zuo^*lsraoM%)o8x_Dil#Kdk*JG=FJLzialdsvEG$ka6Wz^>mN$)LwY(
z9_(aT;npz{Moi?p{Rw|{0DTp2xnoO&JGaRb<!ztthu}o6`K^@?xsl4e1oiaFcS4sj
z(C!!D<>%Q-wW`SvS_|M)tf(9?q#A1Ys8Do4%&KoHhNR-+rH9#A1SIWR#vq}dwbIZ}
z<3~Y-nBn|t?omol`HB4ZLO)T`B8~1G1^X*$^k`k2+Pld($m+SL-<T9472`tgm|o$C
zoZlgt=U;SzzJ`yw#>>Le-|-=lU?Fj`dRf@3<3ptq2Pn@K2ae4%@juaLhGA=QN(ts@
zc89L36*H<O2Y(ofl%O1CS`AL<Z2d-Q-ZRR-Q_!j0EkeY)ZTJmeL;(iq-dH{Cq0}MN
zU{gbh2fFMU(-D>QnK8nH{grRz5m&11X;umA>F<W9H90LBXj%b_YHk_xj@W54mGGE0
zM(0=uxtPKl1!Fu?n>73vn_hOY+6?qVreo5vWzMivSUfu=Yk6^!aN+hkfo8BV%4Zh7
z$VZ<f*5-YvO}IRufhcOza2AKh!H!y52dII@bcw-cC~C#u;)Y)YIGKqcTR1?I7E*Jy
zzwTT(Q6w%j^m17q;3ws2C|SN8P+_%5(a<<}F~n-QRS<Da&_~-;Nr{z?jZ(ayUiCHQ
z3wVqEHs|BOoy&p-vGX7sB!MIkajGd8T+TQ@Zscea;t&{<y>Fi4AN&g)UU=~srmGtK
z8R1=di79Xi>uF0m)^n1`3OHLYfQX;p?@;E|+lTu)(YZLu2brY2Ww+ur+vmSC)~J29
zdJ+c3H3?`M^A275;sX!eUniQ0iF&5?4w^01orQ>#SE6<4_Hi4+zmvC1N$>P9U*l)O
z!Holy5tdb5X9BxREp?A!lbVZFlj{gOuE1Cueu@P>KHoALN?Q<Nz~K0f&Su<Y?2<vu
z1R-g6<{iqmql>b_1OEoghizj_ZFQSp*zf9nu%LsK(d|kWs+VeP2q?C_K)AnbgIi%C
zEnNuKOp5GZK5QAqpI&ZG-~zmha~nI{ukFyE8@wqg#2R{*v*Mi&SI=Q>knHy8k)+F!
zuMgUu8AcXlV%#&iY8sr&ZSWY_q2A=m>P0ia_*~WII;`^k2)Xx(@%kE9Kvpkv2+wjx
z8aX@RvDvXvVV7Xj*b}A$2Ae^5D*g@Tth+PT4VW4M*@WnQSE<3dS#<*j$N6R#f5~2L
zVt_a)qCXwH5D76<)Z`glI>g8Jy_cVfDTbP18mjZqUN$$Y*)np=j6dRi*yp#5!$U$k
zPc(?GKG0iw%&(j|5co-xK};NHLt^}KFj~|zQ($CC^<4!fWKwUhp!pP;jxgYNv5opz
zw-AY;g`@xBN9yPW1T_&0rv-+?i_aygXeGM^V?NxZL=k>64`&2Ro>kc$x~-DjM`ztf
z(FThpmZ6<i__jvDlcP4MxaYTWmT^vZCYPQ_?s`oHR2o4I^}+<HNh(x(thtCt9#*<y
z7yJQfc9P~KJ}zXR^=|4{aO7wSg5(x0jqazH%9>)w3xuIB11y|fmgPFK5fE2H;||qv
z=Ckya>Kyq19|3%=L7fx~;wmb>C+1C>{cviMiIVFtdT|NZI#|gMCu6r#ku7Y`3=b1U
zQwJzL=kX&Le#Lv<)Em%I1_mg{`No)>5QshgLJRo^qzb)O-qO)^N^W9(sQ~{k=Mz~V
zi%?)D*|rsiMZkq62RjHe@E)A5C7Q=cS-xRMX>?u8tLhSr3>*?ieK*#S?-#J{msBh5
zeeDwn$$2<buT_Y_H^Dlsse9#9@cVymtSM0LAZD}ZPv1tt#c-(-hbsmIS_Bq7=&#hQ
z0i}|=u8kID1)EQT`8Mk|ty$uRl(Szw4!4D{yK&Ol3s5J~yY$qr2SNEhT8Y-vs`D}H
zIL<_75$r>W7h=|}P~k5|+O!(UQkPt@$kdX+x8(^aypD%Osk2IR^r!Wk@Yi%E_(x?b
zve5JjxqN(W-lBn~_mRE9tp6$w*=;EG0F__obohhIW;KUy>jfh1G9r)ST=HSte8NV}
zzPUv=d!$X+W?fY96S(!2t7z~2N4$BujJ)Fm&b2-9Ro4?jBh%;uQ*XC21AAODRDO)g
z>_8ma2(=Uj+xM~p4<-KOTr0ILd@bYQ=HOZv3MZfWip5{dLIJt3I*?a;XFu-Oe-6p+
z6iaC18LYTamhi3!+lV5JGoSCSVmEP$D|k(@FwJ$7px27?r!msL+pnW?_8^;#^9f~<
zQ>DE};_JP2nL7>I@*|}GWBRAh#{Eu#m82`B2OCcb>co1DA>f)S{G^=bQ!>_-A^U^f
zPsd73;RVPe;^65wU%G}MF;pvj=enu)E6_rks6Xoc%C`lx?LQirw3%<-5qm-hLflv|
zQZ$wu+E-N=m9@qx1t;Sb1anz@Uq`ZF5k2O`M%V1~_*_FZ|3h_{DBakbyZFaoyonXB
zKl8d2%TlZ<S@Qn=etQV+H!K~5f#NtS6%jwO^8615C`)=gQ8K7B*$${1f5IqI7!Sb}
zCG}0Td{K-C>|+(4wSJF^xL2ix5vuk{E`I>!9Cc8(f*EyZY&QhKZkLeD==p^W)uTbc
z>e^x{UtG^v>u?Ogwbi7=CYbCj9y9Le5*|g0>}xAN!X=A1aqHc`GW?aAnsi_Oar&xU
zJD16RGW2JQU&H!{5S;C^?eu#;jUd{`iFx*oY@@F*C=!UI)nb&CM#wft`QQvqTwAGH
z7OXFj$My@3s5Yxyb5`axYAQsIg54ZQSg$Dpj}(4DTYvQ0=yL{RQNUqgLn((@<3D4a
z5S>2Sb}w_N8LzX=5IVL?ft!213L)BOMszlv_dokBlbKS4Al9@|bnAn<l!FzBPA^Ws
zwvq@kt@d&?QZ_6<Ptn9eaS31+kKHBL4TyTsK9Kq$g=LUU+^L!a(;<H;|H3WKGI1mm
zu^nBtIxn$X-n<%OW_xwPSg=%Zv3sa0+2E!a&V@Vh<B<?5Y=3;25xrN{CxB!o3jyoH
zHP{gNQmca4LqE@UcUTqc6-+2O??|DWB2BJ(KmL??Nep(-2CVGNiG3gDxUWsqze(dl
zEG-;vjw_Iv9j&G2TAk%MB^9&@UJZ_FA~ve&7+K`BTgxFh{Y&i12THjmOryVHXK~ux
z7tru~aBJl66If13uexeyT|EA(c9I4Jsb9qDK4gnyO+`fNuy%`tM3m%S814H&)<zcZ
z&MedwR2AkRBJX4{xFSiJ##rma9*6u<hHzgZD&Y+TC_{Z0E1a%kU9{pH$i#*iKO5he
z3nlGuq9Y4xt)i1B4UV==da`;Nq7+{Ga}TQL_-kHyBK$OWgCg4rmE^nBidlAK+737A
zYi+NP<4v9ZsM4e~6>M0ht66+6xMa(X?|mxgnF)P!eH~~kbderxXMwBrneVaE*Ag<$
zvjflE27$tSOZg>CvB#Hw1S*^viQ-)o*m;CJW<m(5_6YR%si}k#Yn<Yvab}k`jL#EI
zkY!PRkKLUfZ`7I%Ksc)ArQfl~l1Ukba0lu%GOH+8u)UzOQx=X+r4El8AS502q~7!l
zX5xFhEF$yN(3`gY8G$1fk|O7s9zUyU@yfuSItzC;>u%PwaE&o+jBsA3QrGFCv8opj
zV;F}i#`)HZv}T?6d;LGg{Mf(DdL4*35ZB9jl^D7c&3eJP+g$c)=$=*Mye?f6i=_<2
z!Hu(>fznqg7DBL*=!|2qo)wQ9`a(a34j$?kSN|K4xdh>5!4*7>t2h?2?}af`Czp6C
zd_B-X9RGf#SQX56+4@U|%I{mAdI|~)D`m)f^GNg9&cm5iSh~z1;4<H;<;NW<VxyMr
z)#sQ}%gvlf_l)8`yVD{vD7e%%dvf87*R^`>)FY<j*s#AaUi-;CI-Xk0UsaN2By|F-
zjp?FiS6H%I1$ms%=>e=fd!Sd9E0!jc<JzEaM+<Aaz%|@0M;@wu&i+z^N~`2)slvjz
z^7&7t6p6=ECYy8fa^+fMKCzi!Jgi<8xNiNWm;SCB6oi0AX9wu0L`Od5U1nXF`Cx!B
zs?e9au%XH^IxT?n!XlK%RY_VA0nry%GbP9>Pw$ZN4pkeEhuIyhNky1qIM=~mKE1}}
z;ziSdOxcZ-+JSMlzEb+zEx+Uu=eL8fy3yp+qy`z!U=fR{B>r=nyl!co0^w8^DDx9{
zxp7tJDf5~BA-Yf9cgr<l$&qJ%1xfxvjO>Osg;ElXCiwZ@EMZoah+zNEYHLkJI~L#7
zk#sk%#Z_ZU1lOL`$^{tgXFCKRx?v)lvD1^G7OSNX>x62ayo&Ezl2#h?T2CyI=lnf*
zSCg-Z!SuN_xC=SsFgc5cp7SzkzIW?)fz61Z<R6p`u|3I^hwi^sM2IEsn5+ZoTC<<o
z)ut@_i7D1-<p4=7n;tddom^|+kDcaM!FLFU{XIan59#BNTsT*O(%>tS9BYNjr9ugj
z8P-kN;u*b+@1R{ooM}|Fr*Wbks4-)fjUkspQnEgB%;qzXJH<0_44WRcKHBR{@RMlu
zL!ck<!{J(ELitO1KePEirJ!SLwjK7n4qwH^;PbX1GS^^;1B}tv`Mlmo&gC&5-NYDa
zlEl%zEc_Y}_iODFq~##bm9C}V81@d&H0PU8=I6H=%faHWW?rYrX-vIdkWXP}<3~D}
zdu^UBA&b>mbhKKnp0YXTRYaa+OErHXA9nB*KDfX1Bv@d6XvI)8sk3oEia&!k5mm`F
z!8+l`zS$=v!IY58gp!$kd#a4C6!G5Z<w(O=KJ#32y+6tCjm`6iIuFS;Y{k||2hmrj
zWngUx7}QNO(?68v#g$NqHW7k1?LaA@*=H%jPQ$SgVXsog(XUkWT`D58*5VUnq5FQX
z9fRQL;~kL+w92L%v{51vaI##VGx?Tca_%Qnaeg0Iib~UdXWfH$y1d-W_kOiAl3FHX
z%_T?<GV&p86Fs9Q0kspdTF=ao)*(&j3F~i%E}3Evc0v62uRp(VvFYsSeggU|3iC76
z3hz66q(SS@QPA`i)vRK7iAJ|)dwa;HgmjFluHBizE5Z79>z01CuFOcWsyl;hXoe0v
z{^9aOrWt1sENBzsOK6UXwts2%KN>G>c9{|tbxDIW^Wbj3+DFD?t&Eao#0fC0fbdAC
zJX9v$4}%kEc&|BnIjA0sFS2Hck2GYC7@220)X+22XQ%EEn|!ZNd#B^6{`NJ0gsC8p
zf^zUaG`>aFGWwk-R`^TVU2I&Ce^hC1m|>*RU`{dl{*8P<jvsuQ4jNwAaOzSy0MQn(
z8n0eY!<|vGu&UZd2^pBmgfU?Z@K!h98(i?76en8iK0BBvc1R<hi?qI<j6OXk;K$2V
zt0@KzUEepgK2~1yJhLt89pK_BCUr0q#7L?dA+1=7msHzo?((2{_EkHa4QV2=HBe(7
z*Sl5usyUwXY)ap^)N9dv?g6{i<+P4-<9cCz>$*typv3f)HyN5FeM;&8XY%&p(6^4V
z0~ef8MQs6elQ>aTJo?FK8h)~bO#-c84J(y+Xh408dVmSWFE<KEVhBmt?uQ4w-Jq;D
zu&NrcpQv#s2z|4<r7sC8^2{{IvG3xv<;x3<Mh!$ECSO=4iO95QE@n;-Trez)K%gz*
z{s@@p%x#9OoBg)+DjeP+P`;SqLQrzLsmMW#Mt$but?aTAF|(>EO2j*odaJC<3Ob_+
zkY8-Vv)IVO$vt3_A62U68L)fcfhGd7V1ZT!hiTuGbiCi9!MTt5M{FrVWU2jM6|cKw
zaDi#MxWLY@;nx1j_OB1%f8G;P9d)#h?r_cVUcbzJuf!GIbwDtq<ITy<AAMT-Azd6k
z_-dTv{-AaIM!eM~1Y!C4*#FZMDMed}^;aeTHCgV&&iiyuwQgAlQ4M}^tT<}Rft!y}
zRzZAL>$l3@;b&!J8Z6+M-i5OU`NWvKrXDcde-JhU*G#nggMmWbP$oBJl3bXGoE2#~
z+Ex8Oy%KG}g#FxACEDGGKi@UAXQfgVKX}z$S=_!?bvNfk29=IzyHGPom8kw_w(45)
zO-P(4=P{zPfaQ)JYVqzS!<u@jR)(=Y32PcG3}#Mcn|5)^_X6}V%(pv*m)iXFldl+`
zy%tVR<`hWh_v|_#Q?z}UyryYOHooh}tMZTwHBkfR#yu!m5F2U5*@KWp&1!-o@~}sT
z>0iqP1{?ahRmy@1A%Ac>JNEF4PxXb^?KOV34Grdl3(CReT6Faiuwd2}fsn!!3wxdx
zK4oNO6o>JeKA9C9US~38B%DG?JWf>AH0lF7wlG9Ke{7}rUdo7F*Z|W;+-5@_y@X~l
zp4{rnL)_r^S`KNdpPxg_hNbQFoeC@cj~Sn(;L}&JoXiEb)n|QGBIOdlAN)zn!OP0f
zPDb7`W>bYVf{@h~WvlPo`|r7tuZG4N@$>2072=|zIM*bJNdt=zm0Se7ioHVPAE+g#
z6h>!1h=*Al;(z~Tf|XWbviIFB<!$@j(GRq0!*fs#vsv3kgwwk3nZ=U%H4UladwD!K
zZ7@bM7LnbEEy~?5L^%xdw9uG$%B{b8uT<5-F5gMG`WVypKH+kgNBY4>6{L9FcIff)
zm?*qBNjjs)7RCe`t?4u`2X@U3Tpad1HnrYSoJ0%BjJIYSV~((C4PnTs|9Auqk)VWc
zDGck6^A?TrW$&v77xTS<%@2vk*iL3H@dgvEi*!9*olnFaE3#BNkjr(j4tBGcm}pd&
zcFDSj7rcUEh=D^;^Xp>JZGS&G$u_lcxKd@3GTG_aH>GG%kT!ZyFjd1sxN2c0c6?6)
zO(Y${Zo+!uQM7~`V;`l<88GVWTlhqa*)F|SF~j4`p_bvCu#Mcd2|~51%Na=JM9-0q
z-iBRYa3FNfFvoIzdS@inLf$Q_aER8)!7V$fEnRn*H+@aq^YjqMEct~FOHw89fUqSU
z>9uWBn$b_&>zUk7#m|SaxQUMS`Ew4}O<L>c?wf_XMR)Mk<COe-NUNOdAG8GjNf)+l
z=)7y7SzZylPd+G^0KtXwlwRySnbMOUc?^R;r5NBCxTgAyIo>~74$3W4Oj+2P$INZ$
z7sLnWhNTrb6tW@1J>^eDoBqNol_DfO-cSEbSZHwga}jQDHDlBul{mt>=&y(RfvXAf
z!sb-}uH}r1zuvK;iATqn&a11hg;N}tRe35V#~%Ib`U@qPHYOhYRcm}z4l%7IdTX!E
zrjJ8rj2+<YzBcWzG|&r^Ew_#=$yACpyH(c)c_&zhB5hyjZ}0C_4LF&k80jo}s|8jY
z>oGL13FsBrwKq;YF6NV*ES`L7E~Zz#sqpc5BSo~%rhWgAoaUS!+u?|ZVo)!C^(2BF
zZ#MM>C)CD4v+!|Jg5{k<OJ|*}!C++9SI0B#Z?tVR5HJ=#sqCQX5xv@H+3(L*_Q8DL
zJ;J^Ssp^i72=3I}q;$-=4An<H%Mz|8+V4AtT^_@Wq%*0g%7vM6(Bd(~qbA8GznAJZ
zW#s2|W@OO~1Y`uPCuXh5!l6ygKZTi+a7UMpYU$x=J{ui=)k8lN5_hIb6WImpw0O7c
zq$~sZIuj6+2UfLNbCEgM1H{$qf&1s`t98sAq#Gt1b<xY=kX*$<^;HO{v?=YJiJMT5
z-rr<9!fH!S9+98u8FZpLvK)QBHI=zx8^B*pJ_cmwf}@AzW_W@3Ci7?W*^D47J>L1o
zW|yaqeN>8?&T8j3m(z&jd&zXNvkB!(iN_15W&A?v!s~hpN8zPYxlNWZXQwaxF_+IA
zuAbM991?DiOtM)>YOxm27#9R2H&$kAqP-}%+Vo9ctkM;8h)3|2(~Z;FM_EySDXrB<
zIG`PQmL4e(3|RB!I~^&Fxgb=xvl4@}OSy9u4p^yktXC%3EZ!24aVi(hB0`#$L()|;
zj0;BT&K(|>&+g}6g<M()lgv!czvmjQAlq!t5WQH@OZ-Mx(6^^!k@lgN8BWcc-Jd|8
zNQW)=t?<3xE~`~Kksc_?YYjf9g%;@(TYX)R_m+KMOgnsvrYRuvC%c-oaIDg3Criy%
z@Q>q1eRvw5=$gT*URAb*VA5uWj4pAuvyYhGEZWvZ|4y%IN?l)rzraaDhc2;bV1ey^
zR1bE5kK|D3N84AWywghxInhdJ4C%FenlOA^ixe|yE1y<E!O_(S>Y<a446RI$0{ao4
zUfm30E{B(bULqlX3H9@iZY=(e=GqxZWr8-HTph6bs^79dBk|(1pOup~tzX<1K4jRq
z;3?L%AY&SDq0^%K^pm8tM&;yQwuAwui^Et{+}aM`l0~5D(uW3*CdxV#S}${sQGyz!
z+}A1NaQO5VQ#%yb%Y!;r`xBwp!#@wkm6A!^cS*63Ar!(QwIK*1%vU(>ty=<AvD*Fm
zaX%dvXJZDpcyC}u`WJZ-e&4LhC~#e1K@G(J1xDt*k@yPVA|gvQ^J26r;B6T%<s0@`
z*LKXFvqTu;fIkJiB`_p?I5C33`JYl8kfvdXRJfc`X7E2b6+v{!<Hpx7EaYx?E0zcf
z#{g!87#|64H#4r6a89IV(edl2(71*9lnBCSH7%USSg0sVxtTNnU&yJ%Io2V7_G)&<
z8Z7?zR`ADB62N>@=9i3n@~s%G0l;8=ovBk*ZaK6m3f2wvTd!`!@L%Wce}L4WV`5<3
zxz*xtD0JIaeC8W+_y4^wfKmVDxM?i>$o!wb+~$k*eeuTau%#|m@mBm68FeU$JcxYa
z#jS|7bI@Y3W>M|QgT`04pDpen^_CXK!TVEBTmElH+2xGr@mm}R8#PRU@4XqYzr_OZ
zk<m0D@`MLWwPZOQ(K$9TnX>RWf%*wY|0T(b|9y&ovm+(s-N2HkJAf;^FH7P2ytm}0
z+;65CPirmVL~5Fy|GzJ~n)GYkdpzkXEP5L+GRvR(nE$YtxYb48Fi7QHKL||;_Ybk|
zyCskTIH9wBm**kNEXV0;T~?$FN1BkoMKs}#BE-UIelQ_KKE8PCS>x0H%cS_n_$!}V
zw==6f`^)=H#@Y8afEX+UKi+`NAEmQ%{`a>9Bi<baY^9{}y-ohW{M`o01o#B07u_}-
z@+2q$W;TgbRd?%u98C=1^JrrC+duYCe6ZF1_2%s|laDw4u>W${5VwEX6@)+N|6ITI
zWT?r4Tk>DNEbv|Ym!m$0{kb!9yW6b{_RW)m&nH9WHc17zsqHY*Sak088sB;i??nJx
z;bk@Vj9a(<!~^EBPh2(&B=CcP{fWR$5XcMk>>JZJU}r>hz1L!6HvK|dj{#&wl>KIQ
zd@|p85RGY2BJ4>j`X^9%Rj&xZqcyv30l)52V<>Wb)w<B}$|t_>1u{m%1lQ6&N<*Au
zXGWevoOPXHm1gr4A7{;j?AW`31srLe&J{k6B0HbvX&-NOSh^L(?B(b5-ou`~I-|gx
ziuU=B_CpK*{goszKJF7ekkn`TJ~u~BY~r^E>?hJde#PUz?DRwccYNba8G|i-a$~`A
zV;E+(zuLdNUX+Vd-g2z}mpebO*?<b%I|UGNcm#Doy*t}j7-Z2j<bEfxvm?O~-UOa~
zZGiO+yGey{B8mA5!p)vGU!85-4QJcAakdTxegeYV=+@cp+P31%)SQ>1Kr&eY3eOQY
zzG+Gsd@Sxx{Y*h`sVVBcbbTuIfX9~V{lK$cHnV+S{~u<+m<0!LD84stNL@EYDBx<D
z^Leno{Q^7G$aCQdo`~7C_^;P@KjX{|P$>daEK^}F0RAlly)JIx1(dpLLdRrbK-zAm
z8J_Fg<MNY)81rM5#O98ZH-jJCTJ@`gp51Voxg~%O--Q5wAcmU;+Knv?4z;meZN;?*
zcF#7G(f+IYvo%}zlK%L>Nz?DNf=)xo5FVA^{?_g+xn?JXz_|b9_^&$8-|wvNs(F{=
zWM>@PeV6p8vY6iht88EvFHMYjLpHLIK9h)%YL6abN4^8h_D$~1HiPsZ9=vB2=0T{$
z7$C{`{!NNhgRWz(RU1%=z5M>kuX4H&W%cUddRmy^^z*xF+%}2VD9E7<W=ozH>S~f5
zsM4s?uI1RQlV9~6zi5j~bA072b$51jELGev_QXfknMXw>dLHK=frnx6I`l|*G#>(S
zgX}0HV?Nru-p4+fuO3Q27|Lp}zJmK(w_Z+C1zzm^9(HZZ4ZK2(JaYmD|HsF3&U0l(
zO)J|Q{69<d#?f%8z%*QGrs#tqHzZ2b+nxl@;y%7aGGjfyk1F+tp>yK%i!bb7oj&^m
z<Fl01RCqP@0mO1mfn3z5=73uSh#X&TSC{K(^rRYjq=PK)hLW4KhgzqFM*r+me~&9~
zMaWj#7wc)VXBpE(MNg}1eB?c#UDzjj0WY)DY6&D`&fP#PkIH5XFq_&e%yg;(3ABz-
zWZLaQZ2cMMQAb<(C!c5RsY~A`E5*Beg+7&6tb#8ZImR|uedzNj#Y4jXub&_rWcgR8
zEi{BJ>Psh7NX<_=shlt%%W4A8Nt%D1&NaG!nJCumwZtiB+wl%Vr(BU$aC`T>p+)Ug
zG&#S=qC=J)h<|+wxXV7hhN28BKKCUSo#qzi+!d6kD0ii_#ZQ0T^#yhmbnBJh^W_Q1
zxlLcY|Nh>ADURXdb@Gb=zJb-r4xep+6cIS|_wFutZGDUts{*Xyx5iiND<bT<AP}(2
zemJsO)c3f?cDzuqGD;+24ZLto9p`G@J9m9|TCLw$yxs43`Yp{W+HUp<E=L8+V{8%R
zJ>+g6G7$#%XxIEv1JU()>;*2R&`)oF(2K|xnt(AitCm=H24n7&8q}2$RGWpT+KOoB
zBZUCSd1-;|%`Yz!I)|N@Cl1r!z02w1=<~s#=*3r$Ig`{20M3}<{0uKwLp>R%SGpq?
zig&MsSKiRi?<J8@#h3(Me*L1k8fm`d1-&o)=hH`rt=X?nJvMbcDW;UJ@R6B-w=BLH
z)aWr)1p0~iG|2w2cou$-XZFE2<B_250rbTH-4AYWQ)9CwFTIx+*yqS>`rAZG(~th>
zP8E*Mt&V-cxQ=)J(+4CJ)F;RxzGxfcMX>~5A$8j|2Gm9lo+c9`oZ<!P(YPX4x;k0Q
z_Zu0?PcPpo%FankpgjMNp8z40RTdqj!G}Re&UH`hu|)W)rYsD6WEy#Th-pg{Q;9>v
zez+Ez_w&5*{W7(g)2@c3uJxOp*0_TrD74~d1#?6k@5^r(sn;MCZTOU4>j3CO<h_(b
zOI9R_*)H~g2*w2&tCJWOO%s|842?X%6TZQ+xt2S04m|iq!k$2hfY89Hj35_pmb>{B
zZ_xwwPk+Ydlaa*xl`B9b?D@X_&AZ4{b`L0w^3^X%kIVa0P0ihd=(agN&&`?ILs11M
z>8qAmWW@wzr$6n~&AUYsAQw-CTHrq9`=qNL<1z^Xd<2g}-RNs+t>`p*2kGIB`|sEs
z5$|9saUhztxGA?2!7|Ld3=2(w7?GO&UgYKFr7$6-Kf_N^$syCk#gD-=?wLN{>!n_J
z0x{vzt!OXk_BU+Nch|vThp@Y^fc!6asm1vQNU871_EVc*H01sVzeA_yKUiWj^&q(a
zfDrJFA0HzW$t5|p#qeMclCh7-Bzd&OE{@tRu7EsCw=r6vSv~9lY;1hoC|w=*hCiOG
zu}y5!em-0wdf18OyLMu<xqJ8Fw6G+GhrGkYY^gRssg5cmh*kWr9|qby9+-lZE!Xxl
zCbDw6&@k9ws_aNJt9|kldFK@r6ruIyT`jJGAFi@dd*)-(IFnKhcoK2mAQj3`kEcv`
zdbc%0Jg}AL^t$c((wV9G7Yi6OED?PK9EQt#;TRE~gzt0Tyj}z@t*CX|An~q}DaWgG
zZ73beFD<rL@!ZdBvk8c6n5uFb4~xVv`@PR9DTCtiG(|Yc4x%BnD;26st^QksTy0UA
zxKcV~^8uUI(!I-4HWvpAfwhWUO+URWX{i!){%lm3b!AQWc{yY?Jqj0yrjb3RU3}@%
zv>Z-8|NgCRM}_{8T@3wl$KqhkBY0HZC~(CzB{6yx@4hiP{5I%DJN6Ab+8l3zD&W+N
z$;sHQpF!o0TMi_M21M4M%z~KhET#o8KFI{Tfg{!*kvfbQ*T96w3J9`F4`QS-y2fMN
zG2R(Mb{1Q<BDq@M7;uXHptioWiM`tRAt%NR1(DdoX589hE6Lb?P}p6`DRL^v<2C16
zPRE4H&uO_oGttZXPx7M{my_SxZ~mkwmo2X?4bquqT5_uRi0hzcG4~<a+hgbP;JcC&
zHasa7&rp+a)EhlWly8IwpM#<fZ04A<sYLV3szegDGfU&p>Dyk4EGx%MhB@pVqGlzQ
z#-hnLuQC4XM*<1Sdw{578m<_cOw0GHA*eTsU#P<ii8c?<E&NVLRMKPXkylM#<$~V?
znyr7^^gOWg^EsOrMrkgh&t)JA+<k3O*(~95AlS`@`yOql2@uaeFg=0TE#cr;YI^_u
zn>`Q&9l;&m`*1mF5f6gV(v6Y6cH!k^7VrRVl0ZYji~78GP<BfnQC-5@?$1ttkz9F{
zhIiL>7iiVoJ`f&}sn#W6x#e$3tL+mwzSVUt$D>oQVMczm+y-!E!$&B5LZu0Q5o~lb
zU^=)uO`8<PbSY8a?MFu2Ob{GZ5ko^Vi1(}^6<-q5sJq$b+oeB{mr3Jv89e^+<ec*Q
zGB>bET7;2jKuG=OlEAxO!nzzWF6(%#BMMN1U(h{kK6g>r<l%<1FFt_G9ZMvg^Gp-}
z{vyq8?`Wnv^qcaN{X(M$Wa<h~XM#bQyl<aKDyVR)V?tMmtVwW2E0E4%5gh^hj+^!@
zocA3`{`*~dx{fdRa<kZ_Z$cGUvb*7BD4IxqXD~$reHLy9&iiPbC$R2Ec%iAZzr3H-
zK%1zYN6M$HVYIJlrkbU%He-J@ST*yC#N#Cay4<S?EIhN(iGuH)@PvPVFu0p^&~vqT
zp=;;WwVd27;Qoe~bcKSB`UCg+N=F2E@<DB3j&qh<`aeC+yU$~VlrT7r_49`jpUzj2
zkSZSaT)swZyiAC!=pLk>8qs|TJR9GU&&BXelCEBJ1tJtrcNdJUHpQCz((q@<KT!5u
zu18<^z9&YDI)O*Kyfl$nKA)>b01;6(iMhq~b+UD{{qZ@t1>eMz8mGS9$1gX0HyELK
z5qSO8(Rgl+Ym@}3YolvWDbA%wJ?xq6rN<x55=Vo&ts2b4shPKT$q`2Mx!5|ZvqekY
zBt7*`D5|rwAeww88nv(E%6J!Zxg%A(PNouJeNBGV_+2BUV&ZynW+5Qp<zwGph|?S&
zF@OJe|Mz%LKxufVj!CNe4u`iB-I#pwx7@jkC|wo_Y+6O&(R<xjoO+{s7;dfAJLBK2
z5d;!7Qa?LCI;ftGX7f+^9Bo^IS8#P0Hi-;x%+wfg3jEzX|A{`d=Yh(=w8c-{E4=S`
zMV}srKIQGnCfT6Fl;)t>rrYP~N0yo9_<(Ag1w5rW4Id)i<r*qy41_iF5x~s#x$~|o
zknV3$mzS{f35X>s{MwSwE+{+sGcjm2nzQxo|Iqc;VNq^v`>-Mih?3F`5=w(~Nhl&E
zqI5`ubPp{JQX)u535cL{cgHB*-Ce`X5JSVa*!z8c@8f>IeH{KFBTn42?zOJ#yw1o0
zuEAZ{Pl1-?M@dgb^T*=;VjdEj69#8eE{RSDV{1P2{A<l6tP7nuOp^yiV~r$fAC9v+
zN;7yckn8hF+}Bf3W}@bxux4=>s>`ghp5|$5axRK4yw_y%n~=1RV*l$~rV~ljgt4AG
z&+pr4tVi|?jC#@<zxgs?q0a+*c*9wBmp_NA#C|l`x*HqRoL2jVl{T!4NnfJXrSho<
z$M%>&M;cjz(1Rpw!d-7yE$%joFy8-o0g&k2OCSBUo|3J@ZtmolNIr?r&W_vqI-#J8
zl%j1rJlXmt{6!~7?uyDlBg?_7#Og4l^wDfw5VTQl36DmgHda$OL~Y)n)c0w!2B#18
z{-`=Y1(Jz<pEiNWJFqbU=O$M>J!@d37B%wr5+0mV_P&_a#!JSRh}2?%K<u&Mngbf8
zMdxx|A9Q>*vb>0oPtAULfsO$uHG=oy52X~L!FyexLSL_Qm^m+jaM07FI-!JZ6(86C
zNR%43WAT<GxM7$P_>5s}!IBs?@SzWL?%g@PKOp5B$6(7Qep~`Z=as6Y5so2rV+1}g
z^c3QvG1CofRiZbIvg9f%buMdI9YvVYpWL9={Z!9*eEggJyGpt(=nTIkGmV90FO`sT
zbnz5YEFVXb^L2)O3QXhWxjp{;IqYFh%F-URfq*NTsvlyj-yT3~-0YsGmsdMlsMT9r
zDesV`g2fRQG4N_vFrDUz&9Gx8dT<%-)ER#O@y?iCXixE&+r{kHpiBy>wXJ@mkX*x_
zG<6TFT-PeFRj&f#<6$PbV>UEn`7O*tf9J-lOV9m`eB_>#&Zk`6rPVeA#yLA<PFv$-
ze?-4|Ckx4{kXcv0f0Bnc#ii3zb=AdQI~g&K0#$uQtX30tZa+4|(ZxOKmnLhY@HN{~
zT9W&aBoenm*WOrI0oNFDRdQwcKW@bLj4wGhKJH8<&pA4OBUkzPh|<{ZbBL-kq;v4*
z(V|TXCY%mVuaRQ@+I>aAGM?jReG!(@(~na5Nslc*5xu?8!rC{{sm49F@nS#(chn*(
z5qp5oxY$mQUR6v-Fc(rwY^PK2mEzz`bhf(L3kwNKh6TB4Ot=5Q$Owc4E^4`6T^xm|
z5NSmvn3;s+1}zox>wD;ure#aq=S$gnV_sQoe3~;UKYod?ueZZ%d_izqheGA|(jG1R
z8{|2|ZpY7CgX0lyGeB-UV{#kWRa)&Oo3pu3oQl_8o#B_W^2?BX?3>gly(@%tcv{#v
zZC#OMjagy%-kvT6raO&9Zb>B77h6hyB!aWXD$3OEx!AMRCfruN`HOBJ)M2zRs$WB6
zYVV06d!JQ5ZJx?MnygYLd}?g9sga|2SK<w^QH5kdSW`3>T{VFt@hm}(%x@2D$FtnG
zUB~4RNq{KW^r=OZEKgx9#v95!|4?{q5ynKYa(;;=s{awO-I^X&+0hLRhZj|{U5fRO
zVPtmRTdyjOo5HZU8!OySv?63z|G3Tl4i~9g0di=$c7nvFL1e6A7*nv4WuASmj_p*_
z49Olz2Ss+QN}f_(it3jlx1MBLp`dcUBni<F%V+CZ=FRXgWjaFeQdQqXHA4*H!gQ<7
zJYHRBzmUkRkHELEhSNa`O5rsqA&%oWXdv;Gm-z6ht9%7i&aKiZ#H?8R|5U0D*spO!
zTrsj5p|b@$0y`WPB|DC~r*U1~YJ~^Fg9Hrt={NX}c_}R+yne@?SC1<fU?a7b96I+S
zG}PbRg=@DiWwrU`bsfHG-~LKNKlJ;*dl~R|)IGnhrH46_8b?YO16ohtrW1X9u2znP
z|LW%_Iw<i{Lry8D_SkC8Gk;z8p*K^16wxnTuvon+w&Jo2W&gQX{m+Yh{e+*}n2@Ex
zhD~Cs_AkHl1idTz3HO0g#h!xR!~b*F{BQMkpZ+B`hf$1@HvJ!U{GacL2K^^|rlw46
z=*^cu{^8Hs-vP@aGeqcZxi<QvM}F7BXOQrEA>OAyUZ~f5#l*w}bMTM=11oK<BK?N*
zao&@By}HU6+ZQiBC`6y1)>m0imMZp@2ohzSPgPh|394vW_OEs)^_S-7blk-5bS<WV
zZBHO?Q4&v8=xcw-7I@BCZmZHbqWr`1n^vCd<ZOWFr}QD3ZhW%dWWlQP@^V62?L2i3
ztD$dUu!2RtS88f{m#DFm7k4w!MR#q~nSQ-8A)Q+G9=)vW%C%vko||~bOnkRRTKEc8
z)fBl>R2|fpDk|qA_hGu~r!^NGRnFd({j)f#F$$L>w!q-%wL;;W$ImxErX3dOOy6I2
zW0?vDC2~RXSd@MN{O?QjCiKbb4#w*YG(-YnZq`_%x2KF3xY2`c<{M{u`S>_QMW<n{
zrvf%pnvRa806XZ7=g={u6tq1EsZ$X-an@e%OVzPxXncJS4P*(I1BcvMpo9S-6`mlY
zaR=B6%)r7$fhApmVOy|zjxzNbaGO}!dM!_w6_pBE3PS<={^{U*lpm-ZK}z&AaPT)D
zH}Lh2vB}nxVmSqt$t9qRki)%>rI``uwVvQ+8R|`!oWDFBZ+cdl0R2l;FE1b{INo@9
zYUK&MAquL)9G6NccuhhNcP58{Ot|uS?b*8wfPh?E2wYqH))tk1MAX;ms1Px0_jI~)
ze1f%DiD+uiQlOTXI8bBeCouaL?>H#EJlv)$oDw3v&nXkS-Y<)2Wtq9aU{_wGBO$HW
zc+`{A0(LX+XqzPR5WxdgGQlpTr;)F$k<nH=(<&rEm2tK)wWxK;tI1hPQP-W~&ukh~
zAm9@Qz)*XJOIq8rfH!&i)on+41{Ylx8igP#!Hu`jYWCCx1rmLxq9rdkrmlk*GG0Cd
zLT^4#U`8=hD;02ik~}A!K;CU@<j1btCa}Y2b&j}db+-_W5?&*#`rvg5oIOg(`OGvy
z3Z&7RF=}Vh6`cEZs7*gi8hhyB?(8&Y<FV0ou!)|8_vv8zxmg-Wym&?pt!^~9IMq<T
z`>l8RXk;2JYnWTpnI3`q_E<p~Fy0skW(7n|d3r!~J636<!*XMFb+zWO+^t@y`8bk!
z{tBpgXWTBAk5Wk=0SK~OL*Kolpb3O=u#1a}mqr_W?V$mt`PKQE<eUbLGpTIqo;$<r
z(fw-5!W|U+@5*&xa0e*0`Tklj+u{C;7qBf<bJ4U;m8*-j+OD#v+mQBjrFR0g&++23
zFNa&BPOHz)?m{7B`IdZ?{O{uEJ@&j-;eL=ajrK#Nj{)IoMg7!p>7xW$_oAI?+>I~q
zG*ahg^g6}+Im-kkd$05iJAMaHPQIr(wD#`9twUvC2$=sSsiI|=1&3hhIf>qWvsd?I
zCKd~(+*KGj!k-W`e3Z>8<!ux%lr~-9>`1sNJp<N%KIowP&YHs=ojJK_jNB3Hu!DRp
z3~F(j2zRpVSjIdL^jzBiK$PLY5#uPLZz+u|bqGXE)Zr>x4*k$7`+ko`Y~s6O5}{h0
zCn(1BSaKd)c22t;BNmlEUc-Jn;7)RJ@g2;3x=XWo2E6&5SRQqXHnNX9HH12ZT80vU
zPPKe<IEO{-sY5;?O?`rZnTbjDUVd)o%<kCmY{z)MgOaD0GfTI2)ofpbXBvmzXRg|h
zbMYw!%AvDgGzR*7E?T@OJ@jd}J!L(Uc^#xOhJE%28Mb|O<*dd8deu2UcsJSh^toit
zd?6MNisFEg>hB<=F$Xa-fbj`#DZnOXcB_|hbt>L{p7oq>D4fG3<8Gz_=8ZCeOGoJ<
zAKYWeRWHC|t^~QfnzOYovz5S6UXt@(<FP9y0StKEIk#dm(4;wrs@@H2@gB_A;yWT-
z1hsu=DC4;;{V)1fZ?H^Vrz~?OfqMC^;H<M+tCttpB3yx;w@49lyR^Qty%IYM?;iB9
z<^B8{t}iXvQc+^|2F5GY%S;$cOg12^-eMc1g*dyxV{fD3`cpmAS%{XKkqSKn1?*is
z_Q2gn?=uQ%rcPeh=9`$Zvcme@FKt7p9793;Y=4^1sU<Xl)V8B!X|)*`z^n?<0vuDh
z*%O%O&IqH%d@pNE-TI*X#@X&+p-+%21$z0a7Z2(-;o&=FmM2_6UV2%|-^P?&(0-CC
zEU()94}{H@Q`RTKHfKxhaj|>e7$@hc9l!c2!w+t_rhoaiA`&OCI+@eLv`M@wn`t!H
ztjN2(GuxxhfP|t+-0i9~RougvrEZ~eveLpd4R&{GgJAsP?L}?&6fB{tBB#^2V))W7
zUZ*K!a&YnQjh#63$xxcu>o;Gwa}Ttn6lLu9JKKDPWMe{#z{ykB1mIf|LI#Kqz<F@S
z$@ie!W$y@@vm%urNVEIHptQbJn^aEO5Nt?GyfSTSA9!HKMfQgrONzZe(E<W>45l3~
z&~pHaH<lrTInI+4un&epQ(yS47!C;u5~EmC?Zre1j&I{qZ47lPn1cb4ZPGq1*aigL
zhfJ~<SMIgkiwXDMTyVNa=D&Q61$X;rMTvCjjf2V2Y-KS%O#Q)ev@(woe=FJ%QL6Rc
zWVQn7wC~l0o;e8tRdmy6o<?09K6|ap_F7biOcV<P^erTdjv3*$K_619Tu!=blp1b)
zE>6|^!G<i=tx%MO1q$xHb&36|IM`L-9Y>oumdrcSXyZ~R1baa(*oOX+?G&={*RADe
zf>v~fo2!Q)L7JsUH?#J+4!`rp%XR+tlOIq-$9~v;kwMekZ5ok*F_WSa;J7sXS*JA?
zgVK0Zt&6y=?NjNR$Pcv<#x2KsFZ-Uu^@>uM-<s<ntjyTsf%SataHTan{#K>kw53y{
zo~0hHg>Bh)_9~?en<Ry?>Do8RJMS5%Zl^hyJgwnR5*{m6lQEtz<(9STa%&C5?rQ^x
zJZ>3ijeqM&_WZyMm75_l%+hNf{!lA&P@NH^KSrMd;pw9ds3K{_2O<o^2?d<X8Ocy{
zNU5X54j2X6pE2BVyqh_~Kdx)+eR|-~WV1uWMms}U&H*e>`cpQZ&YpK0T(<6F-zy15
zb&Q8t^grBt-Vkb9tX*mnwyzG=`6wb{IrM;~{p8||W<ZdktE6vU2g{)x8*6T^o^|}I
z)U7I-o4;{h1^O{`4W=DC%C~=b>~8kf_wtv{vF>F`_DRI}vjtUG`>OyLa5}O7eS%6s
zjp#(vh#SpSl}xGa_3qy_deCG!lT6mnubGKjj-Xe{*UI|hs<a^g*woA~G?J9z*=$B5
zBYH?ANK-(h$dao{41ZU`ffG6jtJf(vL_$Bv5?(a6i^=n_EvJSHu+PD9`VY?=8O#`c
zKCuMOv7~#ICYB}TRh1{z-}rWKv2m^HqWKnHIf&Tn#D@_`u+;O>JHmIAYY@q;aLyy%
z!vxQpa9_ALO`aahfh%~W!iI&pmBuv;^0Yd!<OlD@0a9=@AzLhGlB17EiDRX06rW6;
zPncOaS{{=lou1XGDC<_SG+S=cw90Q&FPt<Zo#h$VZ_KN^Frb^cSW?08_J3IBxYH%s
zU&dm)Yn>HrKCx`P@4GBy`%B8wb?5!#I+#JY@ugWwwBld2^H(FHm&flg*l9&_#H#l{
zE^>G(Rc4!it5X)kD^*C~JWSTbOu*C=DHmJ#^^@kN81v?n(_$`>$A($^GMI^od<+~?
zAtXjL9;yyZ6;lVK%}rk87Y1lPGZ%_Me*N$f8gQN>>@*X=m8wzy2GQJtm}%Qk1hZ0?
zUHW*B?pqfhh}jr2sVor-5sA;M$%7G3wVk~-2Nnkd)^Yu@Ee9=gq8K@s2sE@A?_*~~
zd)fQY{MyV#e)V1@2CW@&cj|<kCgl-Prw}BtYsev|Y@y*@W`E>B2umdC!==>lfkH_B
z^Vq&IuA=j74z1dD_ZtMA>iUM&8oCZa`-qI;4;%i!!Y_bJn41w<H+WB^w93a90E%AQ
zlY>S{!b=oth*`Qi^1?&!1zxmJ;jxJP9>I}@7{X=Z3{}=c#a`hNYSnwZ$ie1fZ)JVR
z(m4D>_VtRyhlJ>nxUDfRES^)1fyFRV23cTNei(#NK$}xoTsiwisHhrG{}C0h;AX13
z>rPEW{!xaF_0;-P3_7t5?Q)f}0{4?8yUcBlUV-*oB84TbjLX>pPZWfE47eqS9-116
zwVgwvLUm{4u&72@`qW-Aav_eObaX~DIED`F>JlJAhF=sUD5lDhQA4J(m+m?cs`?iX
zf;j<$WB=(gK8y?xFDnfq)nm6F>x#2~BzlNNkc#@@8NI7qe?SeXGDgrI5@va~<?he8
zl{a9`md9Y>hp`jnAsot`%HM=ecp4$6LP<Du$QDuhaf}9DN3EnbY`%j>Hub3cNF;Ec
za?^Ucu!vU&w7jYBzvNyB9fo!ac+Y*8_NRg}lp@cd@T?-8d?+N1L6NK_n0J{x%r!?y
zl~cb?c@k>eQL}W>xU&BJ;0h{AI+qU$ujAQ33}3AExX7bj#kgDZW{$q}AMQ~I{dzVp
zHig|NhKG>T{)R`}3D4SvE7#DKGCtVfc_I2_svbX6zr$+0Cc#~}oo7Zy48Ai{F+8g_
zas`2TWI9Trug!ex=%(8ua0#8Sft*at&L?o6h3IP<_MbO~Q~Nx*<;jB8f_lb^GPX0D
z;y14-?!5QOy7$x{<#Ji7dv<;n>ADpYi4*47hRI)ktM;3AG_H%yUPNo#)Uos7!@v5-
zmnGQG<MQ6F%2?dB^L9tH@j<75=D!(x&=5w1Uw;ECK=YA+c;hP_$*-TBH#^m8H!{Oh
zzIFthf>|pC@&;1F`|8$FU5J^85E)(ygrS%#%^AxQV*P+{b%M49eX%{<Vy-(taH#%i
zXI+r8ZMAWPy^IjCOM=7CdgMTq+<gWrY6g+2Z_zow{4sE50v_YFM^JXioX}n!%dPWE
zi)c>Vg61S`5W)FGenQ3(-_t`NlAI*cc>WanHy}zUP9JHgo$nUWz*|<;&*73o-<*1N
zymwnb%9Kcq*jx=^$=+ro>ePxe5Vwd-ggngp`0F!Q>#NL6QF_iJi8A)x42Y8btS+Bv
z$ji;h670>dLk~gg5J99_Q(3HPN8^Q%VhJ6P_&k!i%>bh?^)qKMm6<j1Vyx$`UmV2n
zY{ezuBGk(Ccp*Wsf*+X~)F69ep)F}(efCHSYSy{pPs*@(?tL+bM(O;D)M_@ngd<50
zA<e|)R@Zwa(JgYIST#AHUp&KcV)*HDVy1U`XTRzLY2x{1_KEBYD(zzjwHuffi{dfw
z_JjEvJjgX?7P$s>3*h1Me__0W5i^raT2>Fm+Xho5F8+49T`B1m1*38&$R5KDZv7ch
zo9aGaVG+ONmSw4TZgA&%$R#w$Y0pKk$X7^ngwb6tI7fuv5{B}dH`xni{cz%$ydO(*
z26hl8qYm*815dQ<Ik(&$Hcz%c946&PhF16<)N1~9-(=j6HlL!D_O{I85&POoGV6oS
zAP<?JxQc|6%_VqTuGd{zC+NHWAcCBvE+2)FK8p~4p_g5-ESU2kenap9L7r?A7n88v
zfkar}n@{tknQXa75y&o_9NEqq3qAs<`@=TxHE~&Y!{8HhH1u&mOKBf%>6NO1Dc5|Y
zX*vUYMKsaYZx%H7OxIN7To&1zx-O${P-D|}HS_n;;j%ChuKP<DyRpniM1~FZ_H?u}
zMfJ^LM^xo?O<aqlu)E>K-cZi%kw?P#tG}N5Dc!4I;_ejCD{E|KjB|-aQ{5d%JDf2g
zm}|3DT%aFsNJSSu{&fxGd@Ut>{xhGv=)(!~w*XuTJnB&5If&+xR2nAc+`wQ-M`Svt
z4viN9Fa8Q76v}r8?>0@QQN!Vp<yP4q!Pn)MHr`lVL~s(O*=^FJw3~qmoVwKmdSth%
zhZk2{D6U62vpHAMBCDe9KB-qLEs27Q-$-qo9diT7@DdGG**xYEZh?u$!BoqE!tG%1
zCeOK(rS|()+0lp*bt)x1iEy{LtUzerpN_iGqD{>|#HL;kg6ND5iV|(5rEw1&q`y!9
z3i&<d=A<~wu9OISAYvfqfiJ}6ZAsr7Dz>gzo&s)>TVfk5rIRgzw-%FbUo>i2;mmzI
zb6Hf`>xVcnK8q;6p76Q6-;iZ|G%yB1&U>~6MVn5BYe#52ZFm^g@iV;KMsq?m7~bgh
zLj}u`%!V|TuU^ON!j)3`is@&LL>wH18Q!CgY1*jj=#mQ<@oHgDOVEvJmu4%~Sk)XW
zjr5b#wbBt`5q)JhVcPjEd+fUc<GTFOpjDZ)+-EpLtCIXv8?ixUk<ACt)cLsLS$Ak^
ze9fb)#-pQKhot=zLuCF`H1%^{-gnk{R3)x4ZMVKpAJ|ebkxN-&w3AE;`b+KlQ#US)
zfkj}G@>}Cc1JZ6X*e!kUay^OssCm7qXMNF7{NU!br@}r}!nYj)YPTc3kCoO0(~K<@
zSd%U2yWsui4C++jnD=2sMmU?hVNCBBGlvgN*T$iBc0?69=eB`YUfP#@>SryoXcL`E
zK?W4Z#$*&XOM>TRWm#pDLF+p%&ec--*oAq}?m2^cn2&*%gu;H(hHl42qdm=*#L>gF
zz;jzBUSBRgA0#lpB%S<xs2{hSO}UnS^SF1a#HLI~W6E)nZr6O5wCCzJ^SklM=y}t5
zeZ<)&^p@gCp_4)9*({5aPm{1@ryU-HL8jNS(`VEX6ML6KVaiNuyn4~s)VI`?mI^-9
zc8S`~I(=*BHZGs?<XZK|ZDtG&6#HoncqB0{xc)v1Cb90@AlasgUuT@}(LKj}%>K*4
z9YTs6h}0m&Tf(vv<ECpxQZLh|D&N5CVc&0NQ|-(6@#%_3{Vug6x+X2EL&w3cF<|p4
zU%iTvd+zZ?TY4ycqAwy_hFm~Qg_}lK;oV5bk9kEG29mi{FQ_rveyXn6N@hcOH7&vs
zc^1Fo)flkl&h4r+fq!eWhZlvf&wKZA|MBaUuqxDy4we9-gXouMKX));8Fz3&wG)#O
zF=zC~Hg0+w7o0XQC&de*YBv$Y<_H^x6MC}KyACEvMVP#V$ZAV_=dwsdI~Q*>Kc!5S
zv}@Eqfg>fvJuA<Qz4T;Pa6+O=sEfYYhXgqgJdB3;Q*AQ;%+cTZsuWo$8n#!$!Dv8c
zGh6POflVW1AaA`_w{Jah;+;Pq1A}ejt&@tFbcNv9G!H0`)$4sJ(5x;TsN6elh0El{
z7wlZn&U2~mIe&cUyNijg+s<QG<6aZvc(9F6hq$BgAm!Bif@SVYT!mz(%G(tTPLx6%
zUb?cSB!M*o)vj~Lus7Us#Ku4}Yj_1C^vHRC+DqqoXtH3tDBL}wI8u-*6CZ6Ic-pQ`
z3Bvh1Pa2SD?>%|b!2WF~W^;Rq*d^toabaF{7#FB550O(?zIcvJEjayC#T|8a!kns}
zFY1Wkf)CWsN|@|&z<8J#g2&|J-oi(a7Qnse9_mW+45BdjJ+A$O)%bErCTGW)_ru@r
z#<188-9{MaJ*ejT+f?&_#IA2#bJfh!T0B>0_?Hb+vySu)6@Zi_&~_MMgG`e=?-oH}
zUkNaQB`c^}bBqcRk!BTYB40(GNlVl(p8VdK+fP`RY&$#js#NSRT86a9=_H#~1PFAq
zd&(>&I1EBJ>;6K&pL8&Poz!4^ezL&P9zbVzuZ@OJ%=s9T{>pVGnx*s9{+JH!9-2Nx
z52HrR)EEz&o96EFLwBBAEunkSyN{ox2Mg8&V)I_!m8PMwa1L}2pb@A~+-QDzg&%~?
zM!yq+j3XPM-pBiqk`P5^M0!YMC)WAmjwIc%{K8^9ro~lpgd2IPwn#LVZX;h0rB`R;
zq8G%s(rUaftT#}b!M`MJKtsB7;@Pq3L|(YyNlJJK<dTdi>VS+k#Oav(dEgC^xNj}O
zN#evYU7lDGRKi26#BgEhRiQplhajz>1ftaNi=~n~IjTdZbAd&=YIGk@mN)J*@rqeJ
zlqpQwGhOg*jd`fD2X(vK$K8T+17&Ixq1JwKJ|Pua62Y<o{h8^VwGUmPiQriq57}28
z@_2F4oE#7(?1JVOP`Xk}xN7XKUTA|0iK2>c)Jek>t%N`BOxX5$i=&YG#aeh9M?^O-
z-nO_RDcSm}Z8}~v&J%^F$H89{oa(flUu`@SbW+@N@l=!Ph+>)Jq@<}@E*FO^O&fun
zqqj9h(59+Rg}2DzMnO1A?=Aig=PJ&oQI&`obzRKGfz_<1JDGNh-=2pA%iY;@>S>Q=
zrdZ~D#e%PjMSeh%8jZNvJ$kqsi;6(-?a3rBPWvHD@Iv|ZBc51b*@b_Wpt4YFNZ_)e
zJBnZ5if+lm5>QlJY}g=s^}bKCX};%nw|L_7IED5{ViII%chG2QoQyjo9BgRHVkNGp
z-^EP_g~zLl`^mYH2>Pz_7Krd^#@+K0<nHv+l-iU>yPK@$&_Y$dkX@x^3&gSQ_TzHj
z`cmE{CRquxvv85f5SIQ|ff}u;C|bif$2veTo#j1@od0HVlj!?-u&M@O#Wt9`ck0y7
zlkRE7ueQ1%NVlsd!d+7MVuGgChL$jBo5CO}Y8sYuM(zPmb819a2~&fw^k?=%=DAM!
zRO^&=5_5GS1W=b@{kIV4kU*y=?$qo&>HL^|)MChL)7xZ$9Qz4@={}L~@(Ag733a|F
zyZ7kf-xjKq!tdxem%^r;bf%CYkIT2OY6lYWrT-q5y*$DCrB>)4mqfahNxSQAzgocK
z8)_>iHZb{Q2P>S8c!f7E(vjiGF&4Gqe91R`eE*H00!YrP)aQYxB2f^#1u0n;)+zjA
zZfPTTdn!r8dZN~iTy7KvwI#ZNUC#@U9-LE)PcLF4R(*CFnuE4PYbXoIwvmto<j3y!
zeWAA`tYZ(JhnHV8k2v41|Jc0H3pqc=#+<kUgy<+mh88zjslE<MpVmSAB>XW%@v=va
zkH}RhubAR8#=7tjfnmM)-Of<gP-(KWQ-?1T{hryikymG2gEi-r7n=EqJ6MumW2x4k
zn<((!A`m!cD_DH!kAU<|u2*v#icr`et~1g?jE}9L;jA&NAr|YHO?c};dq-u1!Q*G9
zeIZAK9i#?3%&4!ol&}imPliwzOQcQqhgdvgo~)<KC+te%9cM97LTP?v>pA)Z$mnbK
zB+DgjQDON!dVqDh>uVy<lYn#lrwLE6uZ)?;P_qH@v{5h%cvGU}K$Bz~_<?e=`}D50
z)x3A*ucD~4B$7a`(R;0NDEO-)O}pnpuPOsyt9_4Sq{+a-@A>*$e5p5@KrXTF=p}L*
zKgG6TRh_i6S3Jm}$Ww;Bl`o=??}%a1*ypZ7`(v&y)y5ST>vF@H=^5h&k0Zx9{XnWu
zA+jfLY1vO{R@`FcrHsg32nO$#OimwI4yPUmKtg%!#eB(**kYF;`>>>|K70Z!iBK_#
zBKF}*52;^p97^fi1jRzP7ay>{e}#wSJs|Pc%jbH?wzt`)`Ovc~$F*Qfz0Qn(dy2Uu
zvHn}N{f?{+x{UxDNhTHSp+AOAE}lb_+dT6-l^O|sLi#&A5|56UjhjKwAbx!A=;@(I
zN-6%cVs@|J|13lVnrL)4{7Gt-u7w-V)=mBN^I*DGqmf|?Ros5VDX+lZrKv**%rbMH
zv`;5~RoX){f1b4K;ZARSllkCP*7UF(jeC1VZ^UMpDyqH*c_=P|VSwqHqbnp(JEw*x
zq*1?)SGf=Fx>#_q9WHeRB?z7msxSS9iCcnh2)AzkZ0V%pdC{tw{)O!>^O>QPp`VR?
z(_4m55{IyKI}?gni9nd(dU<iMR5ja@&IHBC55sHHbIb+B^EjM<!P4t9=QRV`sK2uJ
zqIy#bUw<3x(vvp=bJ__Z$Y5$ef6R>rUF%f`;TKMV*xa0Cc!6`b3cmf0WA+Mp>>a9=
zd9ZnZpIetCcp{?8!r45r{I^1ErxLrTjcX6Aq%WP-?i;iQ+@ta#%hgRrtBhmr=R6$_
z&*Rb|oAHMpTQ{gPG+~(MNd55foBQrk^^6CCQ;7P#CHaHO4fvo70oO}rudixvW=^t(
z9~GvRrfz?DBQbb_u)JC<t#m!UJcP~u-rhNkE}M;r_R*1-*d9}<{BE;_NhEfkT2rFI
z)H_crFPOvNC4Mb27w`amKj&sJ+2`ZBpWm!diV(6xMop4#Bdx#be=b*A(qD*9P|D_j
zBMy<Dfb>9h@r^CH-zQ}Ib4sp!j~|ED7r}=-@FNCHjbh@u?yaAEIukq>!#m%sd|5|{
zJFFN9D-6PRrJ@u@(wJWes&|6ne`3Yy!5XTqwHMV|muIsy;y>W6Pc{%g12F9pTo?L$
z<W!R;=KX{!NIt+Y<6LTvy+{)@nhfM6keRNT9uI3VJzsH_?8W6OcT7pv0~m%TPZy!R
zntk8MDZete+N-$XTN78$cM-3b#+1U3X9ZSviWPRh5Mj%}0A=YJdKu0#64kq-<l1`+
z2Tf)De0TDz#J!y!`p5#6oLbaDAiL*5#W@mw&d-9$a2|+xR92U+Z?<ft2xd9MIoC_#
z{602*WC=@URXJOjqvxv^4pAIjs+@hBV2BR7#7F!$MTQ_6Ac5SsfP37bwfUJ8=FbeK
z@qAm-ISKQk^>BId&iSTvrKD8j@hj6seaR+eO?T`AK+V4N(8KgZG_mb`##4a9v<8d3
zns8nG@%QgeH#zBv9tJ0=>tgvnt)cm>@bqDrzZYE>{V#X;xj%<#lk>@sUcKYZWIuaU
z`$UiQAu23cR44Uqu7866*<r^K&aM`E6%ud9oDYrQbhD~-CmbHGyn*Pa6cxs+-S6z-
zyg#Og()fD+n%@0&kKiLKX-*F+eu`}Uz|*t>u=M@4SO{(s<T9Y2KRI5+Z+hft>FG?a
z=Z}yvoBbU2#1e}e^?Lhz1^d_&WVXEA8DQ*uR+!vl4<9*i=L$SmS7)RWu!2=GEEaw~
z^oX;&rnImspnZNCH!O>1s<rh(;crBD1pPs0$1`RrP65&aCB^r}g4m8><goC9M+x3i
z;z;2vD2ZadTgObTSl$NuOJcs9uFrp$gkoqd;dSqjm6i>E{rpd^(cix$jGwEIYxzk2
zPd?3m^D_O=(SJg}1aY-oPCfW{Rz-0LV7ym_+;FM>*B6V6f8QC$#=!&oyOH{nZt?dt
z%Jcb?G)GUYmm&Yk@pxj1{Qx#oGyGE{K|n*>-n2o|bO5js@&Nl{G*`8)(r(^1DJdyF
zH5I1Z@&Cg|DEBzr(gFi(9MkJja;5!ZtMvB4(|=)|d|krFDyPGCB+d{5ij%ccKYT&E
zIWZY_o4I=T2Ub{)iSuKnrV2+5X1!mO+jXjJQ%{=iQ3_PsoT~iW6B+@SBysX|bM+lG
zidxxzU!&2qn<USmsqyMvs2!vkS>>{=o~M?hY(k0CoxsI)pl9$uB$@xx7X1ClBTm09
zh{^9qBz|DLr5$kl9z#an3MT;jao&K-Q+B3XV)Qgav8+*R*sRa0aNxE#Sf_vJQvUN}
zu08twM(vglfhEgiI-D#lIUkR%!A(%Ua|(W^(s$V&FLD#^@9lM&bMmtMG}jK|mJPwD
z%zvwqz4Hfa`oGp!AhyMm8tzE%dd1LpfMs9}#v+w(Tl}BflGzo4Aw)146dg|yeXznx
zqbk*2y)!A9&pfI(k*5vYZLws7A<RPR->zRPJ{WEUJ-kyEMJ-yZrP1b3HL0MW;AGrY
zk~XP{t*7+j1#hcvTQCbXLn<>IOYQH2>i@pW*J5aQ3<~H>Kc%GX1Xktevoi*cUM(^u
z04<T@=2IcA+G_?&Bo{Oge+TNy{C=X^!5E|Fk*UnTye&EszX$bs_|7J0@i!Q#z?$fm
zCQstGQa2eJCE?H}%lHvD4!)!r_Iz@3@}SO-jO}muN=T%0x&HszM=uw#9>{;pBQtGn
zzc-wt5}i!m8QCVo$<IIP-b(-72wcC4o*qR7d3lG7BArTWhvlvgrRS9YwoXvOe&4*)
zZkc{<M|a(wv7{8RW-XO8%s>Ap#q0n5|3{cNl@4ACcgfe>|IZTn$GXXtMt?jgL;Ofl
z@58^`>rYncUN$(IsQv3x;QRfQ`C6OK{dG(C)4vkKz=<K?xAn!l!ie;vBg?;RJueUc
z;+K8?QTY5{zMZfBL?2l-T5z6E68+l;@<4yk^`?P$l=zJU8h`B1$ps%vfu+#Sv645A
zK{eWYqeY%uG^-(xaW}Q*aW}MuQVAHJX#zb1(f3)fgmFTatKN-vfsN%eBJo3Q%(l?M
zfD8u{Q+B3V$%NO%nqX7O>ESlZ3|DQ>>A|LP?-zarh@$CK;+I#mQ9IMk6r(CrFzYI-
z7;70k%Z*D{Q37h#KR@eB`s?WfUB{~i50~wUlB~mx!8UB{**dqXXOR?79X0A)ZMMNJ
zKRs5UBbcXAq@Q8qY)e3QYz6K*lVp;gBz}J0ThpR=yXJz??@ZV6dW+kR>|Ppj;?u(#
z^QLuPz-Fz~qbLUk^rmTxtgS9;SHm4cMXq@%)cnV+bs#YXHr{mU(z9(dQ(dCxzWO<6
zHwg?jra<OJed1ZdYS*`K4@6hv)IJb@ec`0M3kT$dJWcx2$CkSV-j-0?>c!hu^NkI&
zfU_mwb&N>NiF#uObexs<s6`&HU7FUEigmH8Uw#oNG_BH|n9{#cbE{iCS1)muueSZw
zVu^z5h)icQewlQ*7-lC!7g)TU`sc-|!Fs@R_HLr?o1<yd*2-9dl$qIgo5|7+?J8TF
zYx3OAj<s8izD2U2UE1Q!5wKq;^IOHUiMH1QBHFdSEDsl7PhJttoOZZ<Y;~vjnjZnX
zyF2^S2#T_^5Y!v!V(#xL(YY%5Rk;FlP7rWhd9E?OU%57kCwcxB5Zu_2OdvXEKR8iu
zPQA=biBb$wtdzvtAz(f6k~xPlRTN%5tZr7w9(#aNXDBxg&DGM<+KmHTpR{XXTzgIv
zn5@}=lZa`~*UgPRnm7D&!oSE9jbRi{dLhjUxT1$wW}P#IpZ~FYd`@oOg^s-5-7d7R
zk$Vkz9KqbAxEGm3^5&nfSsdD_A}%w95+mDyqfwqJx*v2mJy;@-#BW7=w7}N!UNVnw
z+2~KLURU&v1{=>t?rUNYrHizhRg8YO8CPEgbWU?KkVDLhlV)&4|I)sKTCzCi5T|}}
z%y!1M=}M#V{d5kf#9+TVm1n%oS|24>SSX-RwVaKX=~HiOU)1vJYA;K4S288J+lnqa
z%b^>(Ka@%nTAN?yWrVs|#u7pfAD7?$!N2pP3MYqr@?rUtUt6Q*0(g539X@9R{sSaV
zbL!pk9DMpTbX`hmVl@LOAW|9ts<ONNuk0Xi?@<X2c<a?Tnr0Z|M<Ql`oHu&sqYQ2d
zr(Ug42K+Zmy7L)e!~F(HP4-n0U+<IDPFGl&1D}AvYyF{mzUJbPCb+d$Bs%H}0HJeN
zVy4l%PT`i_I3OdEyKC1v{{T|VKHx-31&5qGS=di2hBsX`+Dw)I&R)G@%y$8-X}8w#
zKx`rg>9-(~$h!Ic&1<>~OCUXAA2`%#Nsfs6JJq7!8U6S@THyLJ%}T(!3U~>%MM;*&
zP>(Q<eqK#sszDWvYdqW1%||zk1&5M88Nz6BIa-pFp{wH&UsrSj&IDkQ=!AM|Yk#2z
z(KRUGFfEFVB_(9P=IGmALBu8|ntXks9~?8-q0zK({kO-J{OU=IE@Bn~bZ*qwEHFHY
z<K|QreF;|D!b3o~bUs5GOjp`OIs<b)YL>JngsnQl64gEYrN;B!X??3Hg)sL!!;Y;2
z+j~c$P2*XvgBpL94}LEc>3(}!yjil!b<`>XYnk6-pm{7`i>Rh@hkr6YEoN7w(Ai^i
z!T86IAMwe_+agG+GM@{NBU0g)IB)!K7(>M+YRhcqOS(nM6)Ul&u-Kv;<@9;P5sldG
zMLc@9K<HtwP8wyXb)@x^{@0Wzb(88@!IL%6?7F62zoW_0H|}Fu-j_lK7oKBfbw$?Z
zT2@t)YxUHq=&Nm$s&l6j@AF;{QTXxQy5sim%FSnHC}z<U#50sJT_b&$o{JfdsJFfG
zHR+9{u*b#F1+J`5xp+RnPi^f^$2^j++DlVgnRV}CG$K&n8}lgF{BUcecsospM!t>9
z3pHu(I-)99Q#9y*O?A(=n{N!}?o1a%7u&@MWNR-&IPjy<L8+V~&XyY&h0yOu3?Q#*
zaASpf+ks`*^2}@c+jUAL!!&+30XFtvJLO%!Yqp#tbeTSw{)-d)(He-gNqt`Bb>euf
zuhkU^bY||tL?dLt%f!vp*36fLl@F(I3%Tv;vdH58&-C2U(Q)Tm7MkX_LRy0DmoFsq
z(epCOHl75lNX@6G<e>aZ{Fhg4VUB?>=I!+r&h|ngE7`5`TrBm@kAonnR?JQ^!xO`B
z4YM7&q?S(!IEFm;O9*bpO2UN|u_QBf8EAYc(>x$_jJFxqRMVF}lP_K+=sJd3$ryS7
z3AShySJQbZpv-@hkKLItj&^amM}HrXg?!cuZ>jc8cLO5*esK15=z{*EAFNegN{y@<
zqWFtUUGASw|0pp)O#rHY;(T`ODr0tL@TpfC3c9pSm4=dq;P>jc@aMTjjv}IEA#4n{
zQcu1sB~R^4mR)3==A)rw1&AVRX?ISh>n0~u#;0PJ@3d0%3q6{BhmrPp{n9Xs<DP7l
zlsCl$bwU+S{rXsb|Ix%$wR=da!*KqS{5(6s+lHAF{VKogTj%=WiN-){RqAkbSZs{@
zqU<-Hz*JC+fb175nqNn{qCX8T1F=JeupDW9>soBFTNT^Js-={U4)e5xU1tMutlz><
zUDvs$v@b@sDs7je5QRbUq7{AVJ#SrqDfGh;Q&vU7T*94k#xnw9PYF_U*RdQSpBjLp
zK_AgImo`=O?&2B<>~lQAU(#Y{q(;r#HC^lgdb2~_!eAwvy?HHIH=s1NL4n}DK~Pkz
z_qm;J=7>gDfK0F7tI(XV_b9O2O<Z%gRK$>hy-9pfyHXHjH-xZ%8hA~@q@;~<KqAui
z4GT;5{Ensp(bxh^j8z_RkU;$Wb7=fWL597cTRNXBCDB`u*+!}?Ce8XlGBk#%1P2W;
z`D(f^ANQMa%vhUK$J$EbNOP1__U=8c{!u0{$>x`1D*rSClLpevS-Zg?BP7FmO~g!P
zjnD1Dr#;y>JT2La5;|E3z?%Xt3)}5bSuuR*+oyU`n)jx0xa#q%ddT{tTn|7_okIv+
zA^jSCmwR|0=1H(<CjGk2Sa}kq(fd<;f!1E6BW&n9#DS=2A}hcX8IeUHYA9wNUjMa?
zy@LIZvgu9Gd)b;huRl32V5c)uy=(FJ;tAXtJbBQA%Yz$@SMP+#q%XfyL|DnCUH;4E
z0K2<&KcpO=#N<s#bFh-AwI_aIEvLCBeN3Lx@Kk)AOAgUW^^~QP)67%asXD*NiwE=5
zdvoRqb@(HAIr(ML-`8+zUC^R)ziv%TczVdvnLbwJHS^3@ZTQk~sO5K*JfGoW&uP7M
zHH6r1OLvnfY4_GE=an4c&vuQJKDh_)=1uc~+~}la#2bth>22_v2;goLf4?YSB^t~v
zL$*2cLk*T}*XSU>;HS+|y<4|i%l7HpkwBZmooLp2L~F1H)zO1sb2g(|!Pa-enEq62
z;&UFT9dhi3h|hSwUI#2`CS<Lnf6YyMJoXN^@`@<RM&=;Pk$pO_>;(M}DSV|)Bhp36
zF6^RM8c#olR|-n#+XS4Axfy5ZdA(BeT#mK&JnkTN=>ARH&(BC90m@s>a<WAP2y}4c
zqMR^y>+T7+>KEIOu-Yd?z88PSYF*Csh)>^QpwPp3Mp-(8V5<J<dcdJwJu)~i*{75`
zut9Tujw}K*X{<0x<<YKrcZ4=-yG&cC#Jly|r|93Lf>JjB>^MGNcN`dxNa{Vv!XL5!
ziV^SRl{RU^3F)KB&{ss0N@Q!LoOAKH;Z<o&xJnhA-tIfuLgoM&Lxc#8m#cEP&F&|x
zj$<@hPo%(kprxcu@6Z>s70~)?ac<$&J%LAR!r!I{N0f9F)B8cAs_rH4jUR5k9-q5<
zRH?bZVmZ-5r_EFx)V<IC@E49g<Z@!84L_A^I($H;T^RjcPjr>~6uBt!<^EcbK)o`-
z0OI5R=9zbO(USY@NeR`3ko_eYy2!3l{U*MDeKRS_DE#m5B%^F1C*9{A7oggkl=Vw4
zR}l<_nU4cWJlre`WX@TIV}-@s3J6-EWB<f+o2QeON+OqTg&3X>@Vf2RY~<H&Jgqsi
z{-#*TumI8A#4EBoyyyxN4m7`q3-4jJNi74E<0+vb=`~+?_vy1QH6@5XliTD8wu{%Z
zXcTGL{5ae*M~~{mJX?wh30VUqR@#Uo&F(pG_-x|Lv_O%~egOXdQjZe8!{|{k%W{8+
z`GgD?JD+<uv7FMMP6q%J8%T5{{?>ySl6r0|_8k!s<9q`t)`GuS&kA)z7w&8~+WGmN
zTxnJ@(wUXuek*V*`20o>E#f9L(N54{Vrnj_zR!oGXQ1oYVZN`A=XPkcIjypm9b*7;
zjgx9_r16fKIE)5@u<n{Afc!GW^!LZu=JS79cfW3D<vVBCRK?H9F8*n22kycd>=1$S
zox^EsckVIGHahFWiZBf0+73~J`a>VDf^>}5{#ZK_MKV9k4V$XjHFP{?E(Fm{FHpHv
z8lT~cZhniMNi+&IxVu5yjo+16km%6Ss&8F_>M)Kf8Nf2`kol>{U2^M)a`9`#)6Rvf
zz*<6zzKaiX#B&Za>0Z22w~pB6)FX^Ta_&P@fK(!;q~|%FL+Z!<Ph{gtrxEnOSu*lM
zZ38Qv;6w~v?iM)8Vo2HbLpe%b-%Bsjxp4fo>1fUMv!ydCQ9BC{Zc&TcdpmFXwarId
zT|&I=C`PBST@4iHE$qA-$0DgGR($EZN`{Q6X(9s?l#>N|Vg7W`lLU4xBc1(9u+=We
zCGp6Iq;oTloe&~5tL-!P--21zBSpwV{q{H}OGoQ`-Yi@y?}I_*5m^)Cq3EPCGv=O<
z{^@Jk2?&R@H(*gt+0c-aND9mbQXo$w-Ntnj6B+*?`1-mER!rQ2gtC3Lz_sS#zy7?o
zM`PM1S4V{B-kIE&PQmNm9}g6I-`q(%#~f-KN*sC@>&7{~05>+eFIlRi)+kf4a24YC
zm6|`#%;kxP88?s2Gww89?`c9v_v|Ia2kRlODN<~V1}Eybg(e>_0eUQ-*pcn!gyEHs
z)o02$nhab5KXUD4^w=A3n`-SEFOXfXuBzMw=)rE&q{9O3)K2VNzf>67vf%r0K@o?I
zGPuA*3eyRVAw)(gU1B!O0aBv6p42ch4!;%=_jZL11Yxz3*)D#x8Cy<$w(-FKcOATO
z8-3e?ODJ8?tiPRYR0Z8{W7T}Fo$nrf;Z@7U?A@GiND!wv9=Y0yr1AuFzbO#BzS`+2
z%PLd9Tn{NY+#Q|Xt6Zxo*_}vVUS17=>0;7oW7$ykC%PaYD=~62Cil(L+?nfYid_O9
zh?!!qi>>cC>0)t08$on0HimGNFF(E-=3(Kw8HV0{#VI7f-9?WkoY(mik{WuSQ4Rj;
zJDn$U%JavTN~1BL`{L+T&Le+&waxkm8I07he8n5c2-xJ44mXFP$Hvx@k{L<|?&n9K
zLAV5wupPih?G-c{j^z+>wbmA9{F&S^w<j)qJ^Sb*jwjP6WwACL+-0gkH14J2#PDhK
z%p+w_Gq2xIYx)Xap%pdKnTWR}Mj-dH4*$`65~n|@po=gkW$2&d6=A<ysQ)<<*VLWN
zFb~o(crz!KQb1Px66>DA$Rr+Z*6L5W_kF(dm@7vbDicNpbP+KF<Hf`YB-7ZUk))0k
z%6ZkRfN+aCq7>2UZcg4v!p^gqF}F(5NR!0H<Cn#oiY`7G7(mpD>wOn*w<2y4otg+1
zT9;wTs&c|(xRj+#a|o+%%sk@S6&;5K*5$gsUw-xKRZ56~Gi3~GuWUw}_44DvLq=5(
zYh!ECz!D3;p8$U#z?)#)>U>1HN1oTiY994aDQU4r*yI;}-F}p4>J9m+8Ach*$K^3?
zy!rA059%%#g9MlmFF1arI_U=Qzcy80nG6>stz~)fB^dPw!sM6EaPw-&%dN=U&QgPL
z)wL>+kV->8Q`cYZT`bmX546w#(nyPU0cZTh(M^+Yqw8OllFPDP1Z|^%K?%BXYbdhR
zq+U{twSjtoe{{F5HdX2F*8Z|FpN%~JsUC$){^hm{b%8hc$sK{?4{%0f>3C*p7~3Bu
zkR(6a=Vx&^^$+jV>3(*ShXGY+3Kyf{9^oqC(%`e}elC|69am(7PO$!l@dyvDzB`#e
z{~C+s!)PZ~r9axe+!yGN!dY{8R)4-K7_RvH=HGdP77?p4$IMe$kIm-&$FENaqW{D+
z?t&%rZRh`Esr>Jc2qGr@9_p7DEFPP+)_?r>|33Y}Q+@jdqudqA`(w}f-~FdqCGmZ$
zhHq<7k-|UhB>vyifakd1SZi1P?{7xZ5CFm#*rbh|dgvb*xq<i2Ho(_fft3a99dMfp
z-x>b-hHV?@NmlAeP&9txh6duSZU2#Qb|J0>iPu?>87_kcQ<XMWpy!Pl_52k5oZ*c{
zhU*KZyo7k8igyWDf$RMKS@D$r@dEhtv(AZWynvYgf3ZNWt9?1;pBR5$4nHGoprO^2
z^)$z1p4s>h0!Z;U0(eIRT46O_2?U;XHb6mD25`ul2veZ)G8W=I*8u2yL##t;_6x#X
zFl7L_m!_^G3t2nY>U@K%({Y}nGKb|(R}g1R@-q(@cbBJv^NZ(*tNXLOyu54I!yGdA
zf_K5W?jR8O^J%GTf_ELsZ`4+L-Sm7B+=7KRZGM-ooS{?CdGM)gJAvH9J;53L1Q7OZ
zp!d9fcGfHI)IZ=B2yhnK9{Dl6OI14_C2XR}a;=%%cChdMB^(m9V-pg+L2|N7`e}Ql
zoQO-Lx%SX%QG@AxXMm4!qNynR+giB&>}jR_It9dQ{TG0w#!GcLt!;`ff7H#|`{e!d
z;P~H#@Yjj7qk|^@#oJ|`<h^9w(c`Y3o^lSIN=-2EDRAFkyPgWU0*z<nS;{pU7&P=h
zXyCNla%ZFjdET46c=}&J(JEf5jKlC!8;wye%Grh8&MNH!(S}D-Xxx!~2q^KC436$P
z0L8UIEVKxicHN&YHk5G(-UZ*IS?7UD>I?*<zi^qGHJtyy+Pd{Vply;9;o)Rs>jrqz
zb_@8{6ynlnf6IjtMwJZHhfpnzfrkV;$3B$2Gj=T;wTm;dQeTnfJ?NDS&%bh@F3_5O
ztW#s5XX3rPW>aastGzvw^P@L4&2qYGH`F>@KUbd-VJnuKZOW-_r{h>z+pE<rs0p1T
zk1vyGqS6w!vn-@`I=m}t{G6z6X~ZmEo$I%)7bIia;4c~De;w&NqG<AUuCPb<Ju2a)
zd&3g@VBT`KrI)f*cj6Y-O(OtU?%IKisthqUX#Z6FR+`n&*0%6kg5sL+<O~G^_^au&
zv-hlmz_(0Vo*J^?7o5Pn6eC!_b}jX4EYz(j9pDM=YYV}vik3M2g|B+;Mz#fuRgu_4
zL5DZN)pqN?#z;Bz>nAw&4Zu4|5gGxPS*OG(NWmEBJ7dmn6{)scpfhqkTQ(H|f?r0J
z>$wP6%ff~a^(8u^Y3(p+y^4X21rGyav_NM(N@R;QncGl0X<h}ncN4D=L$wTm=eFdx
zFMT?7;<*QbRCDsHR6t6|(sohPu4bn(-nde-fL6MMxApH&Ou>l$5?~_bU!YaiStwcb
z*#^%!J=`|kMp);Ltl-uSu_i#Og`NUb?ExD>TN!E5EO4mG@@^#@y;&JcdS$fu{uZwN
z_%ZMetV_Ttce_@{Dcs`O1BJ#izPUA}h;uH{qZ$<ORGm859G-P|FNsS@(G7f4FY?5{
zWDg14u*juXBFOpfRCJ6?7d2f@<qp?bS@AmMo8|<^*O+)ez>Xg;m@>hn8XTLuRPkel
z;?8^34}7VxdV3MQX^|e8OfAgpvG_GhbgFP+UW2wL+PX_S{_2z2?3PlD3;WL9-Br@L
z-a8V#KJMCl+oL6gO6eNK{T~B{b|!9Gx=uHdkp9FBA{-?B$DYK?^l?SJyzB8Brb;<<
z{96={Efz$2Br^U7{FBz)e9!P09LN05QOK{cVa;jy$3W+qLid#7|KMg@Fd*-SUn6H&
zihluTGLP4UI_cZ6>Kf1Yx@~~FjIt2udAEV4lg24CVm|nJ<nvJcz;%+eOiXI$kD_VZ
zI(HX87!wpci>86e)&h^NI_{T4HK3YG#k$W%i}e~ZOMfYLaWKp&jxIdb03P4<)Vd^%
z#$0Dfp97L{nyO>a6Hfs!WJ8vFuZiuYItiE7j_jjd&)pNq4uRBS5JF|rey2}QG!^UQ
zcRTi2k=4%&D{C_X`e2dfOYSG=IMeTM-uertF`DX0;?w(Lt@0XkqR#;|c(v2MEv*>W
zaPX1;O+(n2j$H)+aD-c8M4nx^gV&BgApqpT)B4%+XlQ6CB{vk}4glTQd;-pHT34Wr
z*H%_mo)Kx5DA|*mmY?8u@$5<D*;$*K28n2{(bKQR7XQ{51&JrJH1PFDiB}~YN|Z+`
zoz*`H#kFNhMr{&qi&m%d+p71E<+CG#UCD7S6|7!Czf}IP8<x-^T<jO<dOP~*UZwS%
zc9T^`f5N<h&H6osDgvoQN6k1&iQEk80j5z8=Ul5;^ZVik8M6PJm48*ldhl8P(Ti_A
zSPS$4A$L+=pkvtOm8xsS9x(SY2KF7E9%9gt?gZfbCEQ8lp40htZQa4j;RoEodR=zO
z)uJ4x5ku`xVa4xc!$BnIJYpcT?_$@j$>}%IyT~d67g8j9d<^axpZkqW++aCM>A_jI
zd6;aH<RvnCtjIvpO#+>&zTUQWlR1Glo!S5H-0N{&r$}*RJCT5SA63(DcTxIcI@<#6
zimphP&T0rm`Gk9X!;9|J8(>=khylOO3Mb`G=Qf!~gBQ*+3#MbdS#O_sr-va83d^b_
zy79!1wvD`>tp}Vt6oe{;s``SI-&sSfBtuWn^XXu>`D=3(by8^Bb_*j6cypCj&G~eP
zIYY=QE#r5ht{w$r?E?sZD%Nj(4!B|2VD9+7FQ93hLc}jW#Wn8b02+tgrYj!}&W7FI
z^ogu$uVbs~E5EZ;?(p})i#5-ZB)}Zw|Ksbc1EN~Dw^dLFsX?SWq#LC>Rg@3~q(izv
zV33mTQbHs|5K-x_p}V`gyPF}tcg{Wc96k4UzW=sJ?Ah_YYd!0UE;-CE(Qo}2WG|An
z4i;DYDJcRXAtq6v`y(6<YSw}a%=n|~POrGaK?t{F>-|{19EmkV1eN3j^o9#DvD~Az
zWox_vrLNG$MXQq2Y2#P^Nvk}Fc)XYjLyb$nnX9z@d@abjr))_HTKCi7%wzQ1Wc{@~
z)*S`D+y&=9Tb5&S=lu8PIC+7-aJ`SNdgDUe;0AWt)+TL>Gx<NT+e&fDzzFtG<`P~-
z0uL;KNT1!_ADX$k;tSUVKKmf3nsDCw4WsM*gniewFz(<FqbZc5yJ0APtrydpXN}hT
z0{B>ZXKzLFXuqg1fPLi@Axcu6cHIvJAWgT~V8$qr7~(yCulO?a@dr8{)4s1jf406G
zG_PF)sg;5p$f&U{i$&DCs=>OGgg21}hwJ)_^B}_8E@c9Vs7Q(I`JQ}ip}UFziUqTK
zql?Yb@xhtFMbs)HrT9W<I6vx!7sH!Vq2gE-z&tiMcNgI+T4u%mXwKFNgtM1*Vm{xW
zZuhBIsc%-2hvWe9UCJzH({|$kqjKUSKY9}FS7}860q;Y5OZtaZLt1a4sd6mF2S1<C
z;?ScosGClbyWp}P@XNB6dvROj^2DG-BhyteR@bBNF?|`&$DIwNT$f&h?K3wWYY~qY
zaoO&o$lI*k*!@^f`pJmThlN|UrMBGF>iGN~&Dzgc?|;-ftdHIEK%pjiQksi2W-DSA
zBI+p*72F73eQ9pdba$@D>hC%m@N9Csk!B`tepM@hyKHsL^eioT1heW8M;OX1r*}Xb
zEfm&A*??0l!#4r!{DSCyKBUgQjS3YJ0p_9vZ9#ng93e{E98IT8p|eCwo#+AsTBrm<
z3$ADG6l*R*IfA0A?>+~PP<TJ`HpWZApGzb-Aq?*VpU`IFYb(H2oI==}OC7aO_M4?W
zxNfPAe=AB=)#&`XW@U3hO_HM0(004R#?mLhi3?TMI_b+5`8GGp5Mp<A#Obk-yLy(l
z`3|m-RC+Bx=#Dka2|_lT+dWPD_bQ9wC2ZQ^g$nnJ)P^x!Fd{jHWayTc1RdVxt?!tG
z@Tf(<B%|ESGiV+IPRc8L5-uCQ6D#{Mi^q%<Y=ze)1z+tunilKp)du6yS*vjgjtd;N
z<(BoUj1|MlnijAovCZ_D@iPlT*Ms&L9#@SaA+gxynAfVCG`}@i)QVw9@=TbG+=mC+
z{BJCXc+tgcNytp5(PVx0Q%J{&JkU}lpEN&E@3A2{{0xbDe{Je<$)saEI)z~eI~_p{
z;f{wa2hBBYDIa#~uLs-HqDE^2kB!h|F!sFUI>@}EVI7?E#CkzKG}M=h-DnE;U85eO
zK^zi+ECYSIN%CGe-4?nC(S8U5)tVVz0*&BXg70_PH*@olu2PwCv%R9G5&E#(1icfy
z|DGmMR$E)oGM)en<@LqfRiGBjb{LMplSlM(ls6dW?%`TRH9V<zcOFt1Pble^xn&R{
z?eciGsHu!mR;U}onZ#$CLNbhb1nZh@4KUVYVSXmUz?~hd_=*li{81x<K%ou^ri5BL
zt)|768+JWQ^um!z)a!$+(Oc3|od>RoWy1Z2l_(TMPG85~hOgGmwui3KkM5T^6(FT3
zeHC;50e=0=t$RPyNGvRu=*F*hihZT{!!C|K_ztB=UVg>?T*W_*MSl0`7IeTrN0edb
z8(S;?xd>~Y`Kyv*#-oN(SB2-GF8YP`{jGy(N9b_;PyOa!R5QgR)Svq{?BmC%aH#Be
z{3(V@Y@F-ecP|Nh5}`s3w;QmwcfDjIP|MtO{9fL_U5M6U5lHCIC#{8abV$&JbJ?fi
z%0Pp$gbx(y`)nq)DUFD(V<;h$jh(cOGgIB0GEyOW5O#=th;vf|YL(Vou+1dq4qeS$
zS|vPe5Zl7ECJi2DXa@U+ZI>X{E|xX@R`h3`6Z?|Hyscb7TNb2B(qum-sgt)w+Bbk1
z<{7mIdho6U6B`92JU|}wBM+KX_v=h-PXimtae}K&*tv%|t42h%wM>P_hx7Ww%$_qi
zuU*qF_sPlMzD?miLl>`0FA+Z*CWZh!bAj0)H+W;4|1|#k2hQ=29bUQT%-N-NY3ny%
z?A7vl_&mpTbg8{bz&AUP?j7I{Yq7PEWqA7H_PK4K2+moqiC*z9?C0moKk1*O42*v~
zp!#9tu+E)p8EH_BcpdoAEXHi}?N<$%^|PZ30y&!FN0EuRncw4HbT(;{VmL%p^d}MN
zs70A8ru*H$sST4oGLN9VX?gc|Vh$id4tjNMYrk9sp5n8&oY~uhznho>L@Ql0UuuL2
zR{+{o6dRnSnJpWr;(7!2opVO`*mA_x!~`~(#5VuMzvMeXeEn)3rgfi*UhB5^cQSn6
z^S3^Ux#=HtD7JBHw*e5ARtZYWE(7K%cNcTvQ`s8kZNvq3Y*A7DagH^Z1{>#iBxsqa
z$fK&E^7)kJD$%LET4vS$$h53a;-!;mAM=uIh7_qeo#eRTo`Tu6x%oG@S8l0nC7ij{
z_-*@{N`VTdMpg1k$B(Rv2UxoCgAj>SgJ)Y23~s;?4Tbm?dE}ptXf`vLyal<uns$_Y
z@-Q3G3dE`*Pd4g@C|ZHf#lL~AHC1$CqK*m{08k1vC_7rX^Tr|$mr`mFdq{gJkXalj
zKzs(28libS9x1*bNse^yOUSW^htZDWD?}K$fTP3vcndpSG#JIN3XHmFdK7Mn5hMDZ
ze7X|uoM*jKdrgmF@fxXuHt(|1Bbd_WP-dX2&0~q-z&Ee%%a(i56<EA!N|w9<UUoD3
z^IEd)9us80kSJ1`CwwxE*Bjrq;4+kdg3HPhS7}tz-OJs=yC|?5k9l-5($S*kHH%77
zUhJKvUeP&q^;7q0#f~HEKWLs&!oYYnT3DHxU7^gb<>z}a9)>_T+=*r*nN_nNNHDg`
z+1%X-l6$wia(1-2E)k0s7kVG6iVa86;LS4hVO4!-kXe=~76q(;as;|nABL2Z|I)O0
z-jP6#m%ma*VIsfE5O$3_YmXkWdRJFdfR5nt>yTPiJmAC@_gM7xZ<{CO4VPH4(Xbbl
zPW#yfzuk>r8s-48G+Lwp%P^0z{~tg7*FU4<-U%%-*{?GG>8bVCfBbb2{a%d2%Ax2<
zoUP#>jOo8fdA}YoF@uZra_GHs)jv$9|N15-*6V?G(ZwrKw!eJ*UtclLwkMRPz{u<y
zbjVG|6~J00N1NjspwY?#O>was!m%9yCxAE=%Rf|N+TZm4!w2Nlx!7WqYrNDpb$kf8
zc$iPY%Laj2yPdtgWv$oEtrItomu;T^g3*bw+#ptF!;f~$?Ltq5*aG;VAW_gs;7h0R
zO>wOKarI)0)hc^U04T5m3zk6J04K;Bu75lAAUVn(b4Hu#(FK6O#aG*@a~K1xmfSDS
zE;IJM#^KHd|0U6ejr;kN)sd!<dVKv5^;JLgUBB1=eR?m%kZjO*zRydnv}kA@0JIZ1
zVVKied=T;m$*V)x(*hKraX*M`3)7Sxpm4GsME9t~{olVUK&<h8av(XA+9=e$ZNv^%
z$*NN&^uFTdtBjD{D?()~DyxgL!$?bJl}wv<(qMnGr2pRs6*FjinVhee;s^Y;M*-ns
z;>1S8+$Y^}wXYG(F={z+q`*C#G?D@+<ye`)$9rD6Dpl=&Jq7<bU}C$DDWc-p_6^9A
ztcG3~DPU><G7*WgRaXK(+ly%1g^wMc9K#0(Z%WqBPxmM3r|baEf=-cb_-{Ajj!d#Z
zfot25@O7c7ov8M<HZGrsSN^e@+S*C&l+>ht4E{(Kt);<d^&+z}VAB;RaPQxU(M&9!
zwCp=CMo2HExPUKq5irl|!R!9?u)VXiEi;2vz0ii-F2DvnANB^#hDJujNpE}#xRyxq
z$%C^M_0On(ugU)2?5U8{P>FlqWq~BXU6h=c7d&|O<aPj^Ee1$Yz%_r>3DB-5#*)>M
z<4XOZWB(tTHMod?gi0$#=G^{rLt?KiH4`xVW~%YeXrrP<|NR-DhpyP3&VP7$p2_6@
z*W3Ni1I34sN0AxCi{CT;LaP69@LdY^0mAG)6N}-?e<Qb=AsNww46<6j|Mo!Mr&e?W
z&q*{xMcdDR`5qwValbJL@K2S~90}FGF5v$hL<hX1d;49=H!bs@7Q+8s3W34jr<E^e
zQK{JysBOMA0XQ_7PTNzQ{qj$q<O3(IF+G1WBY?<;{0*oJqFZc_6=fg*3*P;UrOQ70
zvej_*<djgF;IOs(K8f5Lz_I-U-j?0-y}kd%pWKX*kulOiJwSm{NjTKwMK9~(O9g{T
zT<LD@@`nSFOP%rHxmI5gTZ^dfre<bty|IbrJRPqhnD%W@PA*Tq=)=)TVXK3g`sTu<
zTsq5sUNb?;Z`byS$@8o3H~-4F5{WE4*W13hA&z90;lHnoPS@6fpS(e9YiqIPI1eCU
z#{qI|@5)D8O@P3M?q0XIv$Fu6Y*ze7afK?VLG<t5ffzYsjqoku%(31<i_7!VBj70{
zg(dX{aoX)c{=**Rr}$=k*s%H4-SG9*b(C9t*MYs{+apk6jw80KDMn*VX2B&0vgqpU
zEJ8wo+JL2_zs^f`j;kQln`m6`hZ*_64}(Y_nddNWRl%B{Ekq#TxM6~XqHym6I?-Q_
zi!63+V9^`}bR)B2EvLlsTS(incE^noJ-}gP%J+DcZ33+Paj)sP9S-I{b<FwtQd5}K
zlFqRt$u4O=Ot1@FXk+{3E>^oSwPUHs#3y<BJ;~yZO{>OgMQf+^3Qs`_L{qi!6u5AP
zMP`F`)igke?ZEh)<suvD*Ml^dCu`Xr1Qf1KP?|bciw8arcCw~sxCGk6T);vq0l^-z
z41rwZjxD+JD%DCste3W-Ziv<t;U`WzrotAINB9VfiH+y!$}y)5hpi6(eE^a3fEtne
zxh^>l$EGnEORYG=96qIg4gnGgd<Yhy3mgJ&Fs+$hPV*ra^YP*=Wd24Bo7S3u0a)B+
z=v_eIhLy(!{f!Dq-G!FO?65`4&H@VelUlTz**8!k9_uL!-f35R9M26voN!7JgIyu*
zw@)g7jdWdxT%iyc3D7rDeWQ};NZ{`W>rT?n$ft+qV>7khp$7FSnswf7Fq-27kT+ul
zxWH_SAey8bFt=4x3L=*O!xoOYa(fzoJ)@1G4Np};4pp$QKWU&Jnc0zcPcAChLBU5}
z<7XpsONcX0THR^~Z0aHBw%ruJa;~=rCiJ<~D_fXIpu7@bLNQ56RzUP01Oyu$flGm1
zS~y$JK39j1mdQtH6i_$kjM0C_yH9~wm~(jk$1?AEWxXvllln7X)cx+=yOam05|P?c
zFLJ*?ytHzeV;YNj28yyT*m;JEa>|d2a?G8E%Tv6_ZlbF(cu`j3zE!w?zU)%q1S8`5
zfJRG&R=t1P0e`z)v5nXwDXmVh&ql638w;rKce3}qdgQzG{ij68IU!b4&?T=~D~#7r
z@sowcMSiL<`+fk0>gJmbGN~4Vg?b1Cn*`dCe~lTJy0$F`=R9>2ivoU`7Nz9df!@cY
z7x}rlJ<g86dvpNs>*u>9?_tHD5rpM?_4FVS!h5@BK&~^(O~9)D`UAa!<7X5X3KLkg
zvr-sT;Y=_o1<p<3b`Z(DJWVFlWs+l^nsYCQG~3^J6~Mu2Kb^waRb%dNQzvBwEC+0W
z@DT@2C9H6&u^K`6v^&B#LxwVSl91dNs45^7sgnuerT${AmGjPg0DMfXLcYG;uVA*q
zLLcFqU_>xfV64!LQUwe{Y`SC5I0&h?c6JNw`b8Rg&f%^Iy$x(0+c_yGt3t;ae&6Ji
z&64Tz{gb(J7{B~S4k~yKTt)v-d2H({AP-=t{MZWw+OXQg4}EIV<`f<~D}x!aE_C27
zztOg>zC6ot!QOFPa_*nza8Ea=#08XZxQkU1qv6g#Dn)&eh-(LDbE!ZTz`8g@g~Vo0
zC+xe+mNoEu%f24_io8!s+RC0p+Vzz{3sxo7V%fAbt6Mud-grDnQ9xRAlBHUo?XS=u
z7zn+}1DQHRhrKyFt_T3(TQ&ya&3X){RK~-Z2R^8<cgnbP<&Ri<W|WdvtGv!CQAs4$
z7&?DwJ2;l_W{?q`V6rYjZmV@<rf05VQD`d4&ZZJ$Kj!$XM7ltAbi%ZK@+znN*vyif
zjxDcvvM<Y4Mi_DE?_2Ed;8?1e=}20oLnFBNPR6m>e&52)QLi*a<=2A8?3O1jn%&E7
zajpQpn&xXw<864%tf{a3+65bHu)Fy}YPr3VcqMf3-fx(ilx3kdg%BC|lfV7WOnz^8
zrw56qCKA@X1+H@z_OnJ6Yu&14RgbErPinpC)Yw!6fq^t{#lm|z486EoL8^pq(JNOq
zpB+P-WXSOTl#$Oe)sii%L>Uft)yW(>l3P?qO^{?pcq0%SQ~F)$d49X)rPnE&Kc2P-
zuy8G{ep<%5YbQM-1Tt<k6Kjv(Piw(HK`o)YIJW`8S&GaDZO@zvhT8a6iha%d6n?s&
zY1kgK<;~!<Su`xbJ_^Q}{I*!VUH+?B#1C4|j<>f*W<$Yb2_djukK`Q((mmKoa@n%o
zl#&8Y`}CX0Y?ad+y9cS2-~sv~d^n&i|21?73$@A<<rc97o<7d8*D$_>ymWwF?-?Vn
zSB>-vN2XDC+$JhDJP4;!KhF;O<iw1iO&T`%Qu-nRky^dm@rc!?i+{QFE-YfNcB=|u
zHN2fti7RA~gtLuXJwIR%7^)ReWB4X;+2x^+=$l59TXcJSaX37=?`NoJ<3PZ&$UKIS
zn5MZGy{^ozPvphbR4pB=^)`-G9o}*%DfRgBg0Xca_;Qjqia<Q_*bcnoTOv4K;X->Y
zAGhfa`{boWFIf$MjEwzm?3>BW(UR9&X6B<+kpS|>$uSrlHtk-D8Dfair)KQE!)saG
zQH;qd%-z}K`d|{zyr(d1(?!jty?gRCQP#RfV&NFi{xHjWuB>0tMo-W4wIRo2yA{Ss
ziv?y}R^IfL^1Lxyi|M9f)z}B)S(3seg3el*ORFD$DXPRC(kAZ=G9C3063$-KilJds
zS<A(;7J*KJmr}w<qu|>LJA&o$L1(h>^(cxH?ttv?o*~vBVjjlU023V52QZ-pMS8p0
zFRky$B3Hk~TiJPCcU}O1@jM5r)OX}AbEswaqtV<4PL+U^1k3xBg54vLH-W$wIt4}f
zXya9N1%~hZwx2FwWud@G!*`6@N*6d6ew%&urt{(Oi0IX+0{tDS;>F72>4HBXYlVP-
zyp55nXB#aSCA9s=%UxRU&9SS>d#qzhX|bn)sp^cKHI=InVxypIJYd2RVi%wjpbO)O
zRK}WjH_^ycoDP?D-4L1t(>XR(ziAAq=MC&1XYM=B1=5$B?`U{Y-d1SnN{(E{(t}(#
z9Ld#_m-6CFdi`|9li>v9VN_59QA5T4-Fo{zjn{%J*tZXbTL%5#NdZ*yPIo3Xi@GSL
z_WCyV)nuShz-u)Ym0D3B)OB65S`7BOFOvQO;uzw%^%)_?5YZ{LBnm$QqUze-DKsHG
zoYNgRjrC0JZ3>G(w7@XDb;zd!0;yLGhIB7?^>Qzdr?nWu*o8<^E7{LAJR$xkZ7$v|
zo1qtwS<=+XgS6ybYwU{<Cy02=j?P$UGu_+{D6MAY(>K+Gw!g8<PPI`<`jvVNQ|GKR
zG5hBvgq|L4UZEDjGUT3Q<8_HU_1J1<DHXh(O=&GMA1&=R8lB_Mu$<u+W=S=4qi?g7
z*c^C`SQrdcAzZ^n>E6P*yY^|^dOpZqRKLhTtwl0hLlDhQuSNZDv8E@nj97{$-rHoK
z8(cQ}9K0?^8#e8P4`!olb&1#sfO$x7ga&#faMSdriGk70pwWu6g(xtOKYEw@$PT}c
z9w!F4D&x>YdqmN08zyU#dm9Q_6P~yzuzp$>c2G;-o;TbFs{~&yiZv-bnL{e#Q9X0m
zF{<S2Knt2FSb#R6UNK}gZ{yf`G$!Fi)IKL{D*t7g%dicr4=-INr4vaV6|OF&`dzPp
zkIE|bsZdYUef|pwPNP?nx&`iyKqo>T_j6bYhWjo{<;nKGsvT)9bYHJ7^Fxa$p^?UO
zK|W9$R2NL$J}5?tQx<<pHUzugN>J6t&-(mal<I^1QipBqp0?G2aVD)wuN1$#_vvJ#
z25X;W=(PG3+euo57^6;rWq=keT!~#`B3$%hMd%dzC9j>W!XiU`MHx07-3WiA-G`7s
zw9>a=6hpSo<M+S-w#<nv+=5QEw&3n8W+Z;zpnu1n^|OkI+f*T-)O|_+Za>}=ijH{1
zyg9kxD)qFZx*q-+Z`5O=v27=sV(;hv2MG(cc;nD`Yn;WQ>=qtWeirtMn)edai6xJx
zJF#7wYT<e&UV$)+!}4cGlV4ds3^pjsEdR<<c|mdG?&8m$0{xkWckB!;y+WwGsDgFx
z2wUbchXH?NS-d9sQ*AIs&CE?N7(K4%9%ao;WQ3x`D;#dGFHwt1q7EGIbO0bROQrgJ
z`o6*hsO;4@?BLjh<gSFyBVK+c0jCodwFZ#ksVC)0qD!&Dl3xtykId(I>)ZK*?JW*`
zPVAJFOn_NImq93p=-Bpn7pKtj+(RiMYaxn`V0>8JP5UU@gj}7FX##jTb!UOZ`Hlmk
zI8wHQM6aqA?e%#X>G7s+;<7J;?8$vEW^Ox`Lh1GNOOetlYXcUQ-m%9Njc~%7%6n-y
zeV_8h3{0mCwz|XDK4#9P1hd&yFL!hWpYl+b-$F1Szf<%ZW|#_zyzzxuvrg4?8~yZl
zD@wqLBj|wyIU}Gt*~fiy?4v+sI4?xMnvM)y+(Z%pRH-_6_$0XmccbcsnC--Fbsm?P
zWV%)dEl*+$X}ns$d8)Bjo>r1caMn4NpZK|CaatSh;r;y5uSj~^(r8?UjnsAWXF{7<
ze)g}U97SKG#F84@zm^$=9)8a&Nf3sAB7SG~hjvuzD6Hw!=H)E`SP4|Z=h*itYH{>6
zZSe(anhBg)&mP_oA@yBi6e}aNri@N>j4Bo{uI82W154nq`ay<}ImrMv)zgiZ7HkC5
zQS#F?h1~YJrVqg*Je)i9QEL|TSyqDcZ)x82WQV_q$!tO2U{vqyn&cv!Ueh(XO)d#|
zqDE@8G(J&|NIUzy`_n|n??wWfaW+F9oG3RfM}!D%mEg$og>$@cCxAw_3^sRsgvbUQ
z!TPD9YRIq!PN>%+`mwx4r%GT4wjt(okpa-=ZRKVxvdvAWsiWAC@&)2~chcn~v|%<=
zo<0*_YY}UL^$CGNwleE)iwliQ6<HS#@R|2Ior5>hVdis;0sfTQjt39f#gzQ2+I{ZA
z>CaX66L8`yqYvakBx%=T<@!`*1;QZYYW|LPs1GGJ@GcK5gN1RS@Xme~>IbI!Ks0(R
z<Z=-@tTp|GH8Nq<<AAYF$)J)Qc8$v!b(`wyvWEh~yEs*<GbJ0=%M0Cnvfno!{si*;
zfPQaDiFfH$^m4`OC><T`h+MtEc-^A2<Gg|W`PQcTR$ti<he^TyCU=4MAwN1th{hvR
zxgQ@agwKle2HqA~&W5Bsj;U)-&5ZC56L8v|9NUdMYENM>#-DcEjLX_snF`(XYhE5v
zP!9ITCJ<HD_!X%cjC^OLlSQr2iEfJ#;ngIDZH+Ag8{trV%@H(G`wp2Q_6kZjvMs#q
z<zS+P+9vU?N@|2!pL7n(EmX)5W5l~@rkqw%QBsQX=?7@jBX(ZY2O<mYa{_?-<TRBG
zdExqKFU*O&>EU<wJ}4F>&7fHIOla2W>CU?mDHqPQ`wHWDs+zNQ9Mo?pC2sl>bOk$7
zkk&65`}!32q-XlUP`KF%_t<dpAvz6&s931z4U%?2R4LAqYLX)}d`WT(&8eCX=E)%+
z47qO6btVgGhfXo0b<@G~zN62(o=_3jq9`!hwa?;!As0jQS1cceB=@mZHaMZuE$g2!
z4Dnb5U9;9Ji}0|+OzHmD8LISoFO=A(+=-np`qWPM<<`<+fr(rz_vqnN<+F_&m<o?j
zRqSrtVeS#VRbm?xtQB?zR6w@d@z{^QiJ<bFJ?N&W4HMatwv}RsW5<crFSpjCa6ONz
z@5fYngDee9f)A@G3llj{Fpd*eofd8_kTZl|TSagnVAh;ltu8ZVWLJneG7?TZAM|!<
z!i6d*p?4<eHEQ3U3%Hd%$cX=>Tk${+NUhtpw?iz;9~6}zDofysKVYM48$?61l}#-3
zH}4B-T;E()(s=$%s+jwvY0KlatP@OG{7WdpwfLs+7Ipj05|W`T!^cH;H)h<3pG2X1
z^_Kr#-3>r*pnVY^H)=>|<GOVVgUc+Rlg3b*P}>$(htsuidqqePRTvJ1Zp~pD{|q?#
z(e+7o25G3RtpzW^vpg`ob$Z`9M7qL}W5Ld)D^R5ve)J&&U5};DoFnNdwg|HWLd+<1
zCb08e!bDm#@WF{a%N}pT6=KH2p1M7{FqEEPDsaN-Ra;~Q_Vttp><umER_3CijZAyQ
z7P1ESgi7F_O*47s^aA<tM{~S3(XwNQc(SG4BD+J}>nn(|bZ+L%4m0A8#-4Llvt$Wh
z!eKE#if|`Q)11|slnIt+Mq@_5MY1LoacO>?Myv2MQhb)bE%HgvCsoGo&Syfk$MQcG
z=^RfuX&bUM%WLg;EH-gS_}nsHZkaF8Om1GP;*a?o6c-w1;1>OAk&sMyUDQ@LFVS%1
zJIf|hD|TsH4^LvbH)Q5;ZvWtfj)OrL+9*qRWAWJx$nj;~W=b8B)nN;!l$E|8C>Kc(
zu$<7swOC1(&_J!`BwffFW8?Mc?lT5YkH^h(IOONTNY`n$^Jp7Yp`UHfV+8ilc`Cwl
z*ryhYkNVXzpOia3kg2tAN5nOm(P*a`=Jk!?Z>r~=Ju6&~9f+mwX3Y|gTy7p?W9RJB
zK?yHTrd&SOXt}Vw_>_O;5>N1nG9}ZCblCM^46FFf%PKdK>=qQh39PJNckuzpjYWcW
zB^sL*y8rZ@U|0C?6dKn4^+BYE*vOE;OL^3vcRcx(V_!Yriy?YBZ%Ux|b0KkjD3Hug
zn72Cy%(qd^e+7`mI%z1CvX_LFCnNvBNuW2}k9x@LY_(pXGJULpn=-e#-n2WoICyyg
zw@-UnYVvBdPD?IBq50P#5YYNJ<ogl4%v#EL`0E<>+p*#WgdtrM&)LX)DDww3s}lFG
zee>VPy3M#IBe}C-)>1c%lTFI=@4(;v#Q$}O^!qV`yx43;qcf0w|NSd|N7I=SkmE1X
zJhuOVmH#@uMl@PFTH1Tlsaa%Ck^#bnL`)2bOo7xoPxyF(do2%(Oh5|1w-{nU;E9Yz
zJpzI6ch?^QY#EUHx{+h~ae%AUE%zuK1F7W>4>RdBko!!eE2YXbhHYYyAfrqh<I%qW
zpc_b)3%;wZ4Q3c$AdbV|!iBJD>FCPM0aw(iA|tK(L<G9QZkSaH+Ur}Xn?*ru=^*f-
z1O<z)#>BWs|IpK9yAR~wRt#3Y^<!ZyNo7$HUA*Mx=5~6~|3>S#fys9sRL6;{l?=?3
zHd6+a24w1qntnWwWxmJ7x{f2D0`TE%0UWUeDQG9tsCKW^0s)&m0LXI+u>)OKxL~n<
z;~hb8WZ4$QXr-Y;oy&>}?dk$SkL#nU>Gx^D)>D0D1>ObKQYNVq<UIclIy#aF&SN&f
z5D(Hv1>KPam0q04S{6Xqi?1$0+~yjv*3Sjt!wALC-gcmpFFlStKI@gGC_-AmBIB4V
zTx1IQ03{2PT-+NFVlUU+vAqx%Z^0O06EL7lfP3^9aKt&^y7P($$iB5Ql9Ouygi@e2
z%m<Xr8(%-jb4f{`^#jRa$+JUbgh{ju$oDmf@c;<KWRVxWmiy^qc6ELZ^%>)K2Vgzx
z@0=kcL(j>Z*H8*+hAJBDlR%=`#XQB;%nRcQQ7;NooU?P6<?vV_Z*f1_#;$ORn+Fr&
zKQ!$CWC?yR&t9C9d2x^GIJ2OOtD$wYz<B)Pc-k82&!Cdd^N%Mo2slQ3UlQ%jCzE@(
z{4RGF@ODQ4?`b2cV%yQ%`IaLH|NWdu=>)<wN8rx;A@?b6l_Bv6+y!Lb2V&NrVgqoB
zaw{YafyTCh%tf;NZ4n&@kc)ui%c8}FCB9vt7awfgx-E{vxdn)&j&+(lGa&iY1k5dJ
zwT{47%DX}AxQ2ztv#A-ULuBqNaG-IDM^*&-0oBXEGG?U46Q$(t;`y#g`|f=6IJjGC
zvtU75F1wlr0iA#q&8KcZH+2QFG>9pDI8oEuasf<AG*M|el3Saj?tI)2{@logd^JD^
zkkLsM$0>y(Vg~w^a+3a74=*9Og&NkCgTOvv14RBnw!+G=tQ#Cq^`zhcu^izy{%kPq
zapm^I>(wg+<5kRV$nL@)7R=Qz?_bC_Sma{;Hv6fOm!N#?r8x-eL&s;~xTP_rlJjaF
z&YE9Ppv7=cf~=0j5hS#X18TLV+H9-0d@+DcJ27365@Dx=onb(BA4hVYi>suPGf@Q`
z))r7_fN94#FjEL}emt11H4dV#EWxA2<{Bo>mn06kdD~y8Iv0dZjsfUkeQ5r4Z7eN=
z%)Mb&hEJHf4Vg_qfxfa_eZCirbV)J6t$Qfp#aqYM-`}68isjXg)OL-%(|xo;aY)HP
z<~X7!@AC>wZ)P9*G~-jHfJpMP3&7H@D!0?(v6>ih&YwF3x_#u^*Ig$;jIm2w2YtG?
zzfUHqrhg8qt`6ZHcMtIKtVD%!;cy}P^U}~OH(OE2AshkgsSPwHXy2KuGtZ($=2T-S
z@NWRy6fSm?-r~L_IY2DeG~vE@4VIxUNe<w;^tHXz&F4|Qr|1)1z;(`WnbKCAkK4sC
zAN;wvCT+1VLos4KeZgXG8nb_S=S~YShjMbO`P`llM=(0v4GX5{PFV4t(m%Z36?nvk
zY?H#SFWclC%)?mmvCry3k}@V65O$>R_wAEM+^>`qTF*aHp7!4zS|WyxB-zxVHI~ji
zl%qff7eB$fIbUg=_`BT>sDbNLGiH?kh~>I9tnFhE0T}-6HgdaSH7%?CaA$iGPJN$!
zvpNz_Pj(c&TY+~M>skt*%iQoOnyvMA{^H|shKFJ)#V5gq6UswiRczlaIP83jN+QBI
zn<a(xMuWq!*0RI}^vl&=Y&9?t5MB~G2opY1oA;*liKwX%pM)VM-t<3{FV!W(2|M<3
zx^C-P+}i}^Vr55oR%~ymYd{aYR(HqV-agUB0ZBnaAV8>A>t=KYPI-Va^JX)Y4}Nj6
z?E!++9+W)(c;64^Z_MI%O&WnyD9^umkA4gpBri|73c43uYBbS<8xTX?0RK4!(TjzK
zLJ%RIEBG@qd}Arz+K~m2QlAmf5eX61LO5+fY?jkp62UeD!FpMOZ4;4SvTOjY$5S!a
zQ(*6)@Av9%U0~@Ng82AR3wH`>we0~vDnA_6J0-q)2q?O>sygejggdfJ_kwH!m@sxu
z8lYSNYgga8xTh2w@$xJR``Hnx!J((x_FXq$Cp1T)d6;yWiIA(y`TOOd)176o163YR
zX)L+739f{S@=*Pxux-F;lq&O<oD<$Q2liqmYfe>}F@No?$b(#N<g^&irOhXC%BCLE
zisMND6LPjF815BGBU>(BLZL`Cz^SNJ;h41_WzZAIAq!zf(TsywFkhD<hA)JX!wM6f
zm*V`?{7&9o^NWyPnE*pQL!UKg$#*cokkj;N=x5ZfH^<b&R!|aZYWXak0<-(37r^mH
z7BtfwA%FJH&pBf2%EOrbu)Q1p)pXQk{LN63DfeYd`o7siU%q!EJ`8>>4T!!9C+pz*
zZB%=wu3=T~F|Zk&8$|6pcd2Db>xO{!i8V0a$z^?&-%vRZtD`E#nQN<%BY$kYL&#(C
zaURng71lsBWr@n{PUGblAeqFuCZi~gfks?S#IavYw-DIQ@AK__Du#GCVz!JXMK{3x
zd`SwOpKY~lCNO}~-$~V!f7(^!iN<@?P(<qVuIz0I8qOnI*1Z@iqq|0dF#lmP@@PWx
zSFRkW&(GAHkCms;rF4aQpwDSo)hPlF*=Bp2(pf$nH_UmeGW)>-6dzMiXA*OMIA$2D
zkP>AEH9Op6%0NnWO7M)|587E7$^MVnaY63uzBwvi(!-rPK+@2PL}hmQ+E1JI9ih@0
zFZ79PN#dP=cxKJZU<_>$OY%8`HB*V5h+}I@bK#7T-#FmD)dlu``?|Ycx2IxZS-sm(
zZ=CAl;g6#qTvewGLe9LjwS7>i9Z#^AX=-%AJgZ1U#+|AS7S8082Aqhx6X)6^Kd_oW
zh{baXW;o$dPd+X7xe(p#4%L*ElHkzq!)GVnt*YxmHx7`BJlba$^%rjE%lSI`(c92O
zaP9&Oa<}Sk;v{RoT}{g^VHw8gx)n6zZQ=(#?vcbUE2biTUwt>vkB26=G5>uMy0)bn
z2mFBw*)A!KMck2$U-j9j#dwLe^;4gDOl)pzm`oLr!Mod6#N?eZT8h7BZcRD7erE4n
zCAYg%6C7P7{xR#gkk*HYc~y%k-2Dj|q1(t6qG9`1_lw`dF$D#Y*E5p5=G`JlDYs2R
z5f|^`4WCeT<$!DC#&H{$Uw=Su4=kJtNTLu1y|)6glfhnuf%=g#8Vzmd+mC<<6I9Ly
zDx>!pcMP;4=s`M{rJo<wVV^wKq$o`8S@gXY=7JN6df=XTQKdaZgQ;}a`pY9pmifxy
zVd(AM4eEruU%GX0#f6{SP#^SbJf2d$RI_>9B>*SbJxAspPQHdN#4QM1I#I!@bm)x<
zH>s^j^e>SG$n%^0Z7~O$=U-7fpzRIZyTsHv1pO=66W+Xg7;inJi>X<t&SonEcPm;j
z2Bw5mi}eU5j+QOjxzt6|*xapmhgdqP5n`sxv5PPka+tb)hff=Yy_d>Z#loqjx#;3F
zy^!c`SJXe)Z1?EF@M2ELaRk52yM?n+?5eO|9=*g{=sCutaF88HVAVWx8t!qPN)kmK
z0pC9obUek2tq^~3>eD5#&Jus`4#7{zF6{(E)_}>40Bo27PK-YRX39MoksMg4qLRcJ
z)XHm)U=b&cPsW|S;X9I>4HEs9>2xR)LWPte7^$-1VQ=~27A@v79<mQs#!GSphtZvT
z?}U*EcKPPc@%t0tO&P#Yn(jz0R>|!N9a29kG@q??0I7$5zJgO)dttLbd`_LBXip}1
z^~!vbn#=>f286?ksUV5KoLL@{>b^#2@gbu2Q7yZg=;r!(dJd~j-h?lv?7oe`9%OCT
z5_<?oGhG;x`IN7A8{blLLy`|YC>UaMa2?LdkB!4s;QX!qi_9xJgB=OdvZEHv7VCLr
z>U|aICe@qh9(^g!GhDs81C2{vobYH_(Zx6*AM5P&dNz%zT~R0kRUp~T^}#zm^}=8b
zJ_$5Ii&ql@T}0nh8el)1$3VFR&5ttmOWp!SP`QYgF(0nP?{p+x<NL_D(%wR4iI+n1
zR=l)3y;KMgBGma}yq63U$0*CqrB8CLJ0l+$b}r{wkwq;tT~XB0l*3`*zAnWkR0DNe
zv4+qsSOp(cN$E1RLa#w9kl~o+isqvB-$e<ohhm=&u1s&k_ruUt58WtieYpxzu;UXp
z<_a92i}L3)w7;Y14TnlgnM$1SZHZofVj1P#JU0EKmgP{`(^M*ckQXUr>Dp#y;~htU
zLH{h_HGB1*-H5$85LU_)zUDEc8?5n0^Yn+mjr5|hJYFip^=j|Pq@9<YkXRwMn}rhG
z!Qicv^Imjyu9o5u-<aj4{Y2;wk<vQ<a&5Z;3|tyq*#@4mJ$3(l{xq-fdK2W$6!g;y
zMSz3P=v{%pQa@vg8@RY4(BdFY=No!O=bZW=Np4H~!i{Pz!WtTR+dv;fN}J{VmvN$#
zl(4;(^cR6O?G*CJluHo&IbJs*w~kW9e;IdXS^YJ9hN#8g6&9JY0(i8W@`g9=b%i#1
z<I0uGXF3IXC=?fcwyU)7;%~0}P{?euz$+ytYZ1*rK%46DOVj6>7%C=VGE)&(U8owv
z`JKA;&9h>1;kQwzM^Df<_2zED1t5(EJ;bIk1T8(iV0dVY!5F@$<$baDZbti=A?FGK
zQWyi?v)|H+D!xXP_qCnOFF+)1zGKi(Od}hr=wZs?rK(e@x8j!O6{YN`^irK<rb2Qe
z+G4@!ta(ZF4$=lbvXsqC^GT_P%J4bp6C9M*VZU_aTz1f0?dCGJ^N-ij;JajN#kjY<
zCOMCU=uzMYoQbEpJ*AXjt9frXdb4}*7tkx9rt4YFvOF8J?<QHjN{nMP^pl>g{VQuL
zm#&;llJO)SE9=o9=wflnGp0ZDG4fDboSR>h00z<<+}Mo}ZC!{}x6nmM=STi}G`ss3
z#sF2&+X{cWAb@cv77y{}#eV_}{=?r9bD#wvNW$k&Qf2QwW0n|I?HD)l{sT04u1O~Y
z)-oH5$fsq4!*Y@$m0ysCWNNg5H%juj!Y^KLD^31Y^E5&tc%T2i9Z=8oHP8lm|BdSX
z3hE$_#qI--)&}#{=bR9W3^}6^CWn7DmJGW4D09J?{3pY$hyNegBV0^hLPBCu>zV35
zXzss~{W$JNDbxS@h2M@npU{EJ^4@dZ?yryb&jUa@{rQOE(bK1eNGdOgAqKMb_B(g(
zumGvCO19>z`p399)78~gnNnLI)$L3Y9tVxgBxjfPaCRay0tC>+?V+kf`u{Zg=k@sW
z#@xHH7ZrTtTfP%w!X09ZG?c5WlQ8d1@imtLd@&Xpn)(=a4Xgd-?h+6TD~J>3?XWh0
zq=%H<pG){pGTrZJ5V9vvUc-G<m(hkU@v^$?VTmt5MeOtws_Oyq*t{p%bKC;(&-N2E
z-WN4k7E}W-zL=<}1^60ZYMJr#^CKf>kqg{!*Xb`v%9H6S;CjE@nH|Vb?GCgOd4o55
zubbZ*5caI_*vkNvLz0ppp(0Gi`YU?&H%x#$vG=i>gKr-#MA4Lx>W>3>Kyw~qdf%8d
z$z~xb1K8b-D-dS<>*qSdi2w-OTO(KvxC*UE#weZL&NHM#FsoW_&Ek8S*U@l0HSItr
z?WJqiC=MP=iNDZJ5|#efPh%z}Rsd>3|G_*1*;v7_xR*4R;Py7%rfDXXnd1KyMf}g*
z`tzP0(nNgMeEo9%OWL<@#7TBY2So|Bi)Md<c`E-%Yc_7~{%0GCii$Hwwqc^|rCV5Q
z|MnCox8W$tmoe=<g3jgwheSN{UeLfy(qbV?O*yHO^K)0EgRfu?lB@-sZf)YWCMzlq
zTR+ef#FJ9Hdi}=C`THu1p*r$`+H7k_R&n6nL-U~#;2)P#Y&2GA>c>mwyZ|ii>XvWT
ztJez_{VT&a4UHD3YE6<N<BgotUK3T5slI<A9CzjD|Gcec7}q<i)D6hfto}8Myd3%{
zDpu3M`GwgZe&+wjyCC+Aic+EM(;lq@#Xn!c|Kgg1eq#E1dU{2snZ!*0LQST;@z7ID
zzs0Q1ZH4^T3-a4>@)$INTGf&~`d@#IqB4@<{7vZbr2oGxXktZFpl~qT|309I^Ih`>
z=GtJs0fHy+ZSTTYRKeGuWgI20z76F$m<{YxWBYt_EuI`3E=on*%c%gFtpM6fZt1Td
z2UPuHBvlj`7vfAIos9LzNs*XqwpK;CLWW9K-LgtrG*;Gg%g<J(G3qYk3DN6cY0LM#
zv7VK5d~1EVIy8X)Kd-4L9~y0=bCP_9?u~^bq(N-j*RN_or<)0o#Qgkx3&6qLYC{@%
z0|Fx&l{gK^?l$U9vOGOKRRJu0N!WMb_pJmZZAqPpg2UiRVJdC>S@jKfq(J$TmWL5D
zLT^t%qnN3BWb<gXw`L3eJ(N?SW9=~B;^bpAkG=S+TeepF3zvmYSVIi7C(q(zEh&84
zdef2mwDtb<aNGfaM7>4^R$Bl~#MUQF;s?1JR%ML<i<(5_8g&xK19TF&$LjeL=}#d&
zFRZ4o-zL>Xxs6o_esBaJ%Nsy;icOKh#O&hmtbkeGboSGJjXApI$x6zx(9}^SS7ydT
zE5-J2-Q9T(Bs`<<@iOLEfA0Tw^Z!^ae?mNIjdTWIV+&rIQa;s%*p7~l76X2RS};Cq
z0;Cu4BHLS9at-BTU&&jA&5{iOtSVl_tsIvVI>+E&1e6<rZ@^0ZX8i0fs4sRl8;Tr<
za;Hn~E_}D%!C3_}+XD~fESvqMQZ`T7VRT-ne8UX%jShtIm{(d^_5_kY1F-QDKsV#B
zbq44&Ri1TwW>2Ndv7^@nQjoi~eCdTWb;HfS;A!tom96LoK=!uO`b^%>{L3SP_RabT
zDDOddR^m?F3+CD>k|OHtrP(hZrx;qbuilgiA9l@^wyn_q@1yZk_CJUs0}>`rj_~8~
z_lFJvN$oO!39WhHxRD27IVV#3^F|&s%u$j%zWs*vp{h9Y+H9Jnyv5d&<t6K40)GOu
zswx2qw)M23{MG^<K=wu*zt`8jhyH|M$%?O{2+xA6Vy0`_((MSp7ZY3QY!iubpPlc_
z)?cJ0+-A^D0myM7(8W|(N|^vk(R%KExtI~)kyUT_L}T`Xf9a!vCK*zn{Olt~Egt_u
zgrvpk-r~@AC7N;jZeb)|`G*hV(p6v>SRxC+)B+gH9wxv}04QAn9R)m1H6*tX@WACC
zY=B0m5>PRbIR9}NG9TNyRz68+6d6_Tl%vT(pVMRI;+Qn)AuU+3@bxLl?j%!5PT^6#
zfS?n4bzj%;|7v_Ze?F!Ryq<pC_w&=UiBt8)WQyKUap5NJJ8!Y>(-SO4Pzzauv(gib
z>*NkKKqp|s*zOO4SfG2#m_9B(&Nhu1r5)8ivoReZ37fEGpP1mM&9>y(O9^%T>hj$K
zxX+p@@tGEyrwyVlilO^jh#ZTnaEgcRHv<MGDES^p<pC6xU-M?Q8~~qlaEnJyOR6tA
z$?6TldMu}K+K||_l~S0~dhxiG{UXjOa*&~lbhCA$)+sRR#PCdj+V}`&?}J2|5hYo&
z#bW2_9Ytx_AMVYKvL}3oChbdgJr(6;J;3M25X5cg{gF2h5J>Q_e4^@7+5&zvkZBs`
z@T#&A?F%^&fubsjSnxloQ;f}SD|k!w?SF+uo@;WH3-^@o@w{@g{$f;=kYESH0<)4S
z0K_j?h4s9!YXY7PLu54Jq)j5$zzVoH#E7WNoPlBBbY4A342}wst=wL`c~q035nQnl
zD!5h7=y!XvB2{G!jrVCDu64q5vq4L)U^*{Cf;I&LQ-})i{7cyv8P8bOM#hwvD??MQ
zfq_B%1KanwpZu}N%v@cw8<Au`-ybqV1m^L9)G+JPDI^vIpG6M5Y;dHCkT#p-?k9Tm
zLAVlKrx3HkeIz<*SbtN38P+BYfCZ~zSqhJZy~)8Go$1O9h-0cuX#VnNk13fD!r48E
zxkZ8pbub)$!A8zkP1&1kV|eLBg~e1!%FC~BXZ$+y{&NEqdq{(<FMCkx+e2xOG4|qG
zYDuWak#VH&lH7b+BkjXDL_%zY_Bv)crA`u`qB6a&8S81daq|nbZEzhOP@xos%t(hg
z7M%TW)~k3o?nFpt3V>YrjTV~lH%VWR{A=8`eEa;wW@3=gL9A^)0;YH>nM_yBXc8us
z>5O`L0SgfOr&SWAW{-~mFWOJC1t9!#h<b|48TtBkECa4PB2zG(N`lPk5|Q*C;z9O{
z<rBC;{OI+`^$Pvz5S{s8^Zx|7{&$N;ZrzHQXh0OtbkGCz5i5JoZr<ddhJ(Q%5k-f~
zScDT66*jhjk!dvLvZ?8-K}bh8)29Kw*d@kUG;-?k0OJXeK%S*#a`yw6o)M;KI>!?n
zee8U=qSRKD_cEizC;a^~);{?U5vO?(#K!y)g1t_+()mk*r3Wi~fetwADWENX-xq9|
zZMG;Zz>gMj*$fTu=9KWfa&zJpyefU_auS+VN#s_k{@bYKkE-s4B~oA$B=mV;V8BL%
z4{i_VY?0*v+p(P&8Gqg**Uuk5%oo3E-hrdVw0E-J6?YX@52`7?JCb28+^!x+@$zYK
z`jmA0o`r#lomasvqY<YML-@>I!^BfxU@mi7GLTh(=)T-YP$TgPdX8_~fv$Jyy4Pjf
zp%CD;A`4juA_grrM!o3{wT=diUW~{D9;ElS^Y^(<f9E_lb$+^_8R3Jn)t%yTFn8Sm
zKxIz6-e|1gQ8JyC!`uO;yK2Y%DL*;YrB_cZ)5rtRp4|Rtp_UwktN3k)Y4068Sq6&<
z?sI;dGYp$s6wr#dtd3;gw{-(c+oB0{6i}03#ZsZF(A^l9(>0J+GFg*UEh<^>HY<AR
zKq5&MyG!i6mgMdfxH(mojVbV;QY{ZSN0bpM>|T>@IGbx{58>!Zmd1_4NyiyNTGaEd
zO5|d!`()UKB-jv2j3UQGM$aliu-PUU2VpDF)_%nrAb5}++&mEwNuwFYhstADKWo^`
zl0~}gJ#5x<?rzsf^;HK<Zmpi9ZE^CM%C(1#SuG8sar2Bsjgol3Y|ykGrXDn6f4@VH
z`~LR<8n~-sc=QoaVoIx{(<r9YEFe-S2KBRQQ<~$*Ly)$iv^6Z_S|5+qUG``;d4m1h
z9qD8*$ob)1@lcL23gXR%nakCBG>_>L{x*jZ%Y6@|PDn>wm0g>)fIv3Lw6U9^YO(TV
z@OG#*^Pc)M61vemxA?JFC|nksXU}*Rl2(iDER{+vOdsCeI$JfE+-x>o-;9gs2_(>W
zY(ZE0NAHY$Yov5R%>1}-N`4`8XH~gY_>a9iG)*{O^y1ljAJ?BOD$ER}FOOa1uoS9v
znvFm7*1)f*0UIatvxxaRL!1S^>E(|Gm6`a?S<2Y$x&7D**qyo+bzQ_ftXAS->vIk#
z9f()OPO%SMW|z7gm)@nI-ESMCOZ?x!m|O!iTA#gWJVO9KJHCh+Q+r&ZJZH#Mr<~n@
zZVGDm8u@3}a`>eL{<k-(!M`!sq--Vkq3F+CxJ1aKhzxlJIm<tRhQFK0Ii%~XE&15L
z_U)c`=s{mzhqL~#Wj?iHf|&mO^eAR`2g`q;t$#NcHS);V8^Kx0;eQIE|N5Q{wHser
z5qBLe(BJ$DHT`w2e;kaof`~gSdY74Uz(Mc~qOt+}D-940^CVM<k+Bu*9oB+iJf8^`
zxmkN;j0>o*XDwBLdX)H5QU3q9)!b+%4XV;f=KA_6Mb^_(z(_F@bbl&}in>6#RBX5S
zWLV<X7Qhtzj1B(A6tV!>0vU^=>W9l~HDLnk&rE8kG$SC4#d#$EB$tZbXpH1DOF^_b
zI@6X!+Q0;8X_4^}2_s0mBcMle)dz!c?AS3d2HXH#1KvHSY_J!D_g_#0*qI87z;<-w
z1sr}>g0cVXKA6BunS)#kq{SDQxmE3y&EgjRZ?~vO14jOeFCgn-9x<0hlnsW)#^Y=i
z8~R9PX^Q55@e5WhBmOde(7>9T15o4-w@@cAXe|NyLv^6qO&op(3QtQQ4;H-qHgE&y
zyVwoJRy4;mz15?}(m}zeQS+6^lR|o*ZOMxwHn=rFs6bwY2(WNZP;+l*E#cE+gYAH`
zbZquQK<7U3Sek(uwu?>4&_5SJF;p``Ac(y+n2Y%7SW*BuDEj195POk(Vb=wc?B()f
zN)h^^btGRbVN*M`I|=ov+45#&fp%d5RX<TYLz-G07p{kH?&oD}3;@f@eYPJ*tJoQv
z-o4V=Da}Wg`WMGmCg`zCqwN&Nqd^aE`o(I_-)h}DA|6&K9vCYt{$W$FNMKQ19LLC$
z>}23_HkopqW?By-K6>7`%zCq+R~k9aqIGU=vd511x_ufE(dxGtEWd$hx8DbUj@zQQ
zPg4%NDE&$sb7R?*WTObDJ(J_WKiI@iR>REf=f0!lqbo3Q3=XsdSJiPU2h@D|3k$EA
zSy<j|+m%>NW&%lJ_85}%0H_x!TKX9mpwvk|+!*ag^F-S5c?nhH0Nzc`#a=tRALQeo
zA|tiRD9M=|)tn^UOW6=YJ(OD*xi``Akr6GJ;*mVFk%%0Ri*~dC5P^{o8rd=)8=(<-
zzN=Gg*3Hr50*khdP>mvG!T)W)^l`zo)IvmXfx+8IssxW&rF4D1vqg7`#M>nku#<|d
zCI#rHX79@qHB>G##~_r8?s+mPBpbf9tXMf&+A4T$SY>XVGr1<Hv=!8^KE~+(pa{7k
zTu%0HG`K(8Xdp=+F-$Kkq;Yv@w>;(YN~5HsbJ{{y`!vJB<YjXg9~TWvTT#a&+i`36
z;trnI1Y>cshNaz26Lk?ivE~&;>}@Dcb>g9xu||yY6Oylq@0#IKPse}8cdm^F3OhRq
zrEtDEh|@=oH`WVb6-Yr7q*>r}p2y#(KI76g+LnBK9k^C5Pi-cT0K>FG(g!9HhuhQB
zz;Htk;^KxlD2lf(8wI*Wqdy$kX87eG=h3R#ro%cOmAJ!dvbq{@SRSHtr7tZwl=xvA
zGFrol$ep*v(ElWSq?^-ShplYkF4A!xJ+2yQ-G-z%q2bb%a#bFi=(_kzbxIz0Ml-1P
z)%S_~vjJrA6{GeF&s>92rjwQ}?zn3dnnaotQf0v=3jZj>hwn9sV080~U^EbE7DNS#
zIncb@aXjl(-i$SsPWt@i$CpIPV+7oy;wW;|vAy43^2?Eto6Cd3+d5h%9_7^xPIH^x
zT?M#SANA8G&ow4W;8yb>8=`4?V=%JuriD9}{{(kEn}==;t9GRIrpDJO_2qhO(G8(R
zzFj~^F9NF93a$VL-pMx~_H{2n(QUEP^F>~4erBQd!zSS4I6Bizw%WSR4u(+rzdHt2
zkOH18RGhU(Kw@XJ3SQ(<;QgY99DpO-#AccinBrUDw->r>l{HTRaDV4C^C<|AAv3rD
zB44{3nn0kBtgiwCfHhjR@J<bieC{}qd-8RTR*Py_@rpj|PI9Skq3PWoe*Oy>{vV)~
zQUr<EhAXEf_}(V<UIsm9X&~vj^sXOGLr5+cviD?LMr!rPmk9j`{g0o5{z<cnzeHJw
zTJafV;;2J&xX(pLT^C~aj0EpO$iY;(S;WQSct`8?gD1raaEbU5+U8A-eClqM9Q4LC
znY;+AqG;ihG3s_K=Qg*~elwE8{h0G$1G?;@IP{>k#7e&AwX_&E8}8jZ)T4k0vnDjO
z6IL<nN0JcGSP>Fy&e7qT(bQ0e(k&2jOtRZSg4i{xhn{ixxMD<p4rJh<`^eBLa&>M`
za3oLUE(bm0th2+pfbPL@ve!d%r+RUVbN3NNzlBNsu^|S8zq4y=Z2s}QOMmC-2_bie
z46(PB=nkF7J(;PpWX_K=s5?n-Y7Nv0Jb%hl(mMqYvw3x&MevdwZ4EPT_VNb7Wk!$q
zr+6;dQz{rrCSsgCBa~T+98++&<u`N=s!9{D5b71S?G{;8B3Oo5Om{vTR?c`F=91^&
z90l@{a8oyvyeGDvymX@wep`3}7%6B3_2WdG<dT#P@Z6?yY$szQBV<mEt=v^3E$2eY
zK^fzPyVPZxT<jQ<*^w#Yk#K*`G(u<R<NvWk=;H#2*+L}R@m|ioTirhJ*~vLfYrb2P
z3(gX`G^C-|-^j~{jnj36Tv#ZRi?i9;Y_9h`NBxO=U1$`dC2V#j!{Y*CG1QZc5sq^9
zNtO$)^L$j_(kZ3}vP#gN3GK8VXIPwmqSo8o@a$yCvSJl{^O+jEAgI(yq74}RKaB@|
zP#NUnSb7-NL$FXARihW$`L6?AV!ao467E|>Pv2aVUNMlkEiv9oRsteVh;gMGxayQ!
zon=J?+~q*yz9@gJuT_};lvtd<P7PSpngN*2zM9)-PXFR9PoW^2nL$p7CNL*4ffnif
z^TF1KKB6vU`j{ZpR3`Ak6Y1k5agxkQc$CD!LX^zizJ}z0nZi0F6}l)4X1cCv(*dZp
z<}kdwxLRv!Dw}AcZ?bEkZ1hV+KP%OTZoj=aE%ztrE(>c%pbqwQyJ$Cy7cfo@jW3_-
zB972AAF|FL7S*!y4u4cK0q>*=&xs&-Ws>jvp5_15b>-nuuThu@4L!P+gj~xYl_jFZ
z(jrT;P4<0DNw$_5QBjO8*_(0=8h0#Zn`y>AQc09#E*d>j(I|ThvScZ$d*-IiX#V;=
z-}8Jk-}8On@60*xd(L~*H(MKpv=aF3wZZp!U*eS9SHqYajNaJoI8i;mldmPLgm<Pi
zIlYxfDEt9y(6H^(DWsnSsuY5AsJJ{b5zWqC9m&!Qr4f&d?Z2(qR~41v*|h&j!9Lj`
zQ*(563R<^G=>2%%6^~BwK!uStJHxMU@o#^?kB!B~MuJ#?@vNrcBme3@BVzLzD&qHZ
z#TFaUSRzo6V@~1kB|_VR^e)!zpBZIUQIBoe(7<)`R+6doSpHpXGB=hvmOCkfsdIKY
zHw48CWG!w3YvGpMXtNGe)8KAQU6`t$=h(?p#acyo!5wqhKqAk}$X!nz7?SGQwf<H^
z*q3<}SFvu^T}`Latf~<D2Xo8_oq14-17ayu=25apFLAdlQXMhtp>$29D;H}l>%GL+
zP{E}xIbqObl$|f)<$d01&-#F?sTJxInG?@fqGPQ{Qv^H5iWgCrTBqjd#`r6$^`53r
zZoZtg2w<r;jGiq$oGTfz6o=ER0HF7*_G{Juw*|+A`x1V;dG;DhNblY@D<cXgaL<h}
zWvmm=&awYG;W~0}V#10P^kT;!SI8rBMW*dnulpAU3MYWV7shcb|3y(=98P?n1>a)O
zM!^sg%uJSZIvoom*$AYfW;yA16cd|0n?SO&rR};O2d`ax{6DS9c9^XDJ6#^o{m{fI
zDxJ3Ss5Z-|{Trt*ri6D`*Ty&P=l@KH$S(UEwT&iH@|TEQ^eYwdio0q4+qaPnLGc&*
z-8Fzxwhu2aFCjJ62a<Dx1)D)c2=rtWo@@U=?;F;<0Fc@o*aJzeL#w)q1%=nIz*XF+
zy!MVXMLj^VqsY4K@_A+FN++N6R53rJ>$v#!XK#;J00{Q5E;p@w)`y)#-D?4zg)uJ>
z+=vb^|K`j8;3B0EZcOb0aQjA`j@5P;Lz*cRT2)bGF8d6zbXa1na@(3Rhnz`H9~^$k
z428cpOo9Fh18&kZeZ&GmX%rGdXLq{_VoMI3YE^4;>7_q=0rJE{V&_eyyN`p|M6dx#
zy*LjUsE)fomEtC*B|aE<)P8{={~3dVXQAD|?d{<z5+Fj>FgBO?hr6+M1Gd!_gDG>R
z+7=|cicH5BLW4o&h<Jj035!RQ2#q1Gc@!`okHi!SEOCG2q99pQA#(VYC5C}2`vzoQ
zHr%U%qJSdLiN-e_)VI^+7fL$X+wIa095JbKe^Ttsqx7)bizu+IOIjRM(53_I%8#H!
ze=d>xwrst0=&K_=&lQ!{xQqs^O6kDNddqhKEffekQ0R08JK#1YM0aR#^O$28d3kx&
z8NvKMQy#%}A1gN^d{8CcmbmfP!i)_w1u2?p{SK~#-lb1jjt`f6)p`?}nZr<EekVSY
zn0B%xvt*q_XD2Kse&USqM7)>DS^bXj3I%mQ9_gufWKf%E&V2`^K3=HadZ@QEh`MKB
ziCu!jm3wKVV>xYw$S~_RMk<pq0EKThaH<&?7?6Cpybg?{(DSim!$iZsi92f!$5^yB
z8q(N>1k)c*SFFO7i4>;T^zSwQ4GWwd&abHEexn^cXouUCWV)v4n1LH`W$~#HgpfrC
zV7mqhP&Y)=^=-}c9`ZBfVG!@IX%|K^_3hJrwN&+YZ|t*{AoYf!8!*HEVq@)B8p@`<
z13b4D%U6*@nSVGZZO@29&G!pkY^+d&t!B#C(52fbr7AWm*46!tdh`${o*1jYo#)a6
z&yJd~(6j_q5<=IvQAj_rPeBwHuf*J{)!=cXCLyR<t>S2eyKk*UN}8Lomg6T*1F9#B
zyULE*Afu~ll2twG1op`Yflcf0M5TT9kIr$6;rLTv+b94j@NA_E2a6UmNE~H%is0oO
zgJl0%vylT)u@XdT6#2@NFrZ&`0{SPM+e(S!T*tzQ)d;_0OmmE&)F6f-wtBV0oYW)1
z?^w#>2Yvgsk)H{8yjNU!k6I`M>JkXJNlV@t_F%R*GP^cOW=ChHz<G_C`W5O=L1~t(
x(GlN6by?Diz@!ixL_dB~n0(-VVkz6d`?5?0;mcP~jX%i+A5&wr5zW9W>OXAA9o_%{

literal 87299
zcmeEuXIN8d*RC^T!#ZL?L0~LMhZ&_vS5T0S^o~derS}l9AgBnaG^KY!Xi`H*MWqR$
z2M9%^mk?Tr5CUgy9N+Idzt44keCIm;@Pd$JKl^#sy4St#wbp*7p{8*70P}%eyLKH`
zymdo!*RI_uyLSEYc>i8_#d0@e<gQ(R?NYpPUE4c;erR1w+beZzi9F(p#eCn_%!A!v
zEHD?C6&C+;n)Ayaj$BU}E!_WJIAU)spXQ>M`sMJmR9oj~O3u$%Qb|gy@}EsaZbo0S
zuzvj_BVvjsH+8mZrmOug1><4$o*ZjO>P#`Eqk{fJENNxiuXgWmaC!LWxDi0A`Qzu$
z-t^nDKVN?D5vlR>HD^|i6F+}4R$$ok^C!ap18*xeVko_Dlo)jA4CAZrZu3}4pXbqn
zW+@SzAw+t5jbmGq4EvH-N2Gau=jx)lY8Cs@om=-_FEL^e_E|o0Ca8mFX=!Po(!;1K
zshaS4VF+bNHxbgkeY=05;pcXmN*7o%Se+5JkHqG%m(djcdVXyiuBMYC()={DwBL=Y
zq)&RkcG#JytRs7vB|39`Wr{f2N;5uwNkwC%7Jc&g@#AGb`resaR3$a)z13nk$<AJ&
z7;&kzF_K$LM@x(NUsn{=Vet6&{=>T#89)8Bn<1yTd3bon-B`ulHPAH$L+X<`&Dnvm
z!VbDsWTv0@gRZ{J5ov`_bYfMIBN1_R$a|hMBF4IFS2-z)Hw7#uBRxIP&$Br)+dQTq
zFRv?H#`Lzic}j2Yx)QH$Zg(_)g}D2)^QYr+db+yVsi~d1dU{TEUQ2hMEiacjP-c6Y
zTZabbF}V(ee7mVO6T`B56|Qc$+3}{kQBhI24P(<9U)3j1_Lcb4_wpN+857GUvN4!j
zQBgX_(8H~aSmCL>+F_>Ex9@#2XJ==1w6)XY<Im=q)@1fOWTvKS-n@CUxrLZN(V}Nd
z8t~xZ;%YxCW9&*fy>kQC-su$uHa9gftk1tZCnp=7gTZtUR;-+L8ZEwY^QK+n%X5|P
zGp>Ck9i1Vs_~6;u9*0>X&Z!Zl_PKXytf41|fO;MlcBD#>-EZ-sTGE=l`;pl>^gu1T
z%6DzPf4tDj^2Pn-K0j%y5~ep1=TtYuvOFBctLHJ@ZtgMP_s=v%z@$>#kv8A&#w_LQ
z9x;N>QcEbY@8Oa1)*#J#{WK`k4o29D?=SId(;XLV-=b-2q6R;%8r1ne9$SO6lZ#G}
z38<B13m@}kW;$kIV8A~R4ks__v#Fy)6~6QS{Zj(d$&(qIn+fKGDP4x1ft511sr;AJ
z_~#AI9NNlwFSw-pM6-@wEox^+zEPE;HG+?@9$CLf9wrmXNs<PG<NM!a&JWjcTB6i$
z-q4ym%6I<q<u7ISGP-$&6W;T1ov4>D+p!*w!_}W%5(J9^pO06IMQMym6UqZ)h3qtQ
z+Em@$O9YI|+cQU`b}r&Q8O4_ZpFX+V|LTIm06CZ?gYo$BG{npPHka)q_DQm-H&#ol
z-3&aQ6Yu@woxF6?cJ$v_6TTE*b;P3D5~@lZhkPm19rZ31>;ct`uJgw^)eae@9%2@{
zH8V3aJ6Pe?N3Zgy%QuRfSu&h#@^Rxy`H0R(Q5V+MVmFMFq|rj2^ZFTCSvhjSN5Wbz
zUc89O%q&w4`-yG4Q4>m-*jU5Q4GqD5p2OAni521L##d?Q$Z&GkVZ)9X=v}}5&?3co
z@mosrL@dww*RMBn-o4X+t$?@oZO^O-+pf)vooi7~k{((r&s2HKTr{s|mUq}N6N71V
zVV`VEVA6~?sq$1UEG#_Na)c%NRMGt`MjinHHCR2r>*Uvd5iuv#D8;vLyWE#83#G)$
zg_E?btfIz9G2p80pF=pV({zlCvMSuB#PS2SHrMaF9@^R2zxsIfWLw|-Q(yS!yGtW&
zU*k_L4>v`8hO^g}&o!;NWc$|n=8d~|?>08Ry_O~)dSLx)4azF4rMIUiIFc*$;Ds#8
z6W&trXp>6!{=zqQ#?e=!H1Y~P=E`6_qe_@32bqHCDr#+nuq3<LDs@%XQ$>FF?%j(!
z`xDUiuPH@pcz966eTwvJd?~JcyWzy}rfXl{78}<1hVpZAW;M~Tdd_<{ZZMBLKb8NK
zOHk0sbtp|C{K&eBzrTOq1a)DEse}ynS2mK9mv@jm5|E>P-p91u*}T}QBSau2R>Db*
zLt9o>HX_NzS955#Cns)G1$O59_wTaOUYkFbrlgUuxog*-^BFuT@M?Fljk-}do77q5
zN7ruOzAYZG<(ETED=87OOh`hn8MI#pn{EhWjWeNs|Ew%4%>;G`Fo*L#5!#jK4O?X2
zGnJ`EH)_B9AHzO##v*R>Mc0<LuC8!Z-b`0kuwPqc>59*PtS1}Xy%E8*GVt%*JR=-8
zFR${-Bs!m4E7N{;x`X+$<<qfg>@6isNy%udBlY8xgR0Rsf9yTf4NGvJ?_09wENR2z
zj~XbzMhICpzPxmpSqRgQ_TotaT*>|%5>wI$FhbmMvpIs({whBM1E0p_P^X-OHZ9SE
zmkt*6vi&-d=4g$7{`rT8Px4PsdW?Wc?>lq5Ft_u<oUa+}zrLxHcaI;v^xm@*=VUf9
zK7RF-rkeWhdwIh(BS#IXA%5bf7pGdY1MRW*Bw^bcmlYN17X}ovI8Prr{r5Z7e-UHx
zE12Bp&!1;P1Z&$9B)sbLQ5~r_@j9I)Rt$*a<P`J*PVsyvc}=&UOTXiw__imWP0Dw7
z9!*CuB|h=#RnL1}II;l`Z;q@qF-NaJgtoBbh7U#{*jZVtX*n+R{wd)(uW|eKE62g|
z{(0X7M<WNmOPAzbTwG>*^WrMK$P2zZm+H+U8rJ$f0nBE0F*xzV5|^8s`;uy5VbKGJ
za4HV4sJ*skmLsz3emH%D5@O4aj~8QEHjw|xY1-FJv5Y)}T}$V6^z_JAzjH}Tn;PL9
zyGk7hveIs(fl?+-**!eGyo5xl5uPhox(as}yDtp(Z>g9Luf3$kp*D=tO(~4n>S~Ic
z?8LYq>vI3(WMFFG?}#-fPnhN~HrqKSgGFE~H_ZF+<5Oh6Q4Vbjoa0b$U!etS2xi|=
zEV5tI9Tw-vhuNi5Rm--qF&fflk1f{qfi=vRUA}TfPFfV)ooQ`o=Xe)0z4MeX5blCI
zWF2BRzfO0gnQ*7DNn(!p_zrfYHN<YJfN9H>xlMjGSob@O&G$d8S@P-27c78XlZP}g
z01oBoy`+YjuHj@W(_ls(?(Bd@n`nNc;c=Vh7TyyqEG)|v?}>kLry%#R%a)};hoRK2
zEAx^<sgUPvw_U?Aq5HRGhpK&e$FBg_QT4Ze|KQ=dr1jBY<uzJ;P{xyLnS1)N5E9J^
z6?Z>3TZdE-QUV8xI0!Bm5#Tp+ua#m`|1a<`jM4}`8o*xEhQV;1WJ)?<P?nth*ZlFh
zfmu(<tlJ_Xr}$m@Lc`9A&6djm$gEuk@9-QPaT)vaWYAaF$Y|>7+Y0m3m4N!~MQR+~
zi=!6+J6%G&YitI_t4lKjvDnIjH*em&#DD(uDR5rTgCeIIC(^n!$Y)qm{$J1!8ybAn
z;cUqM`oAOJyurM9QHZ!Jz|gmH6{8r95GFwv;{d=DA=KJgD;paJuyrLxMHgcM=STNK
zx=4?s;e_o0hnR)!wfijYZCXku;VS~|^WI;czZs33W-Z;*sgFK8TvMf~sVU^Wc;}{q
zLa<aoX{pEk<)6p;;129Fn1b!tmr#Bl)eXwrlp%wT30<Scw}ybd%qb$G3s!T)z~<)7
z3~`UyZmfs@;)i|M+}r~OQ*)ZKaMH2j6sNoa^7OQAROIG2@7jM4(A&SjWao>CWz|og
z2ZI-4Qd2LFi<FmvtDBhAShvOwrOKvjWvNyAQVjb%bai#b+HATb!AgQmM&`7UuQn{6
z%sEAJn`%qYG4vgBG5I$QC<*oCP03VGVp|@ot;lL9{gfgX+yki6U{r9|!lKk?<rJ#_
zOUu^;2|-&E2$OQX|CoOaJVjCmp183_B97-h0O;tA6*k+``bSUXP!$#9G*YX2if@Nm
zC5R7=`yM!OU?3Mc#O=YU`y;jVb4e|Dyi><|t#{!K;KBPP$T8-p5j-d=E{4ted){~8
zd)2-j!zJm<*4&cWbXEicpk+S#+fXe!Ylxban`;dAR^Tz$%PZ=YbL8w*Oq{4wsV|zk
z5H$nrb7E@B0VpFv=fLQgFB`1KVJbILfXF1*ps04lGRcWa#~yGq_pvXno+F|=mm0q4
zbmQMF=)u~}|CjQiU%AQup7||4=N6F87#z&YcbfY6Bm}5Dwz6`=Q)V*LxYFHVeSIB^
z!Q7*weRO)dyJr_i$#637hNyc4V`ghuv};hRRb=FdOpiutyyvz4{^{A}L-iCAc%*)i
z`83cxlK<CU7xlN7b-;0eFhZiSwY<)ZqylGx&ei`d<iGjjB_2`;Wic_cmMMpJKtN%K
z-ds<a=$KX}Ge3CC0BNvfRpNjbe=;dbeI~C+y{eSv510H#S(J~`U=g{et*srIZ&KB}
zKzl@pYZ&Xm+)gt#@Ji?CZhUp&Boh;1mQ;O@L%YC~oDFOaE-qx%tPL(pBm+k>fQV>y
zI!G;%@5n~H`RQ1o;y|7}76uI-?>p*9wXjoHBTNF)_0*uePM%`3jX~Sbcy)J|J}8^;
zWYCEcHa!|nwxf>i-nHv}$Pz5aq1TV2{_oX*ZK_2T`Jky2L~dpgzSbxY1w&c5cMP!A
zyy3Q-9Y^Hh<AW4&pu|qAeJ)bt!(g?DQ3&Jg1oFkv9XG84RNL$8iA1_S1k-P|;G6)%
z;=ZeIbn}g~g&k@;dvfsdoRBT?2s%{>nDV)7&OiKPUnvT=ZKj4#k|_XhY?^Y=u$%F?
zKTx7*=C}03lRRvJx6(2rYx(=v%7?RE0Dz2&nke6bm~97s0(qNH<0hA0fhqC^K*6&`
zGJq0#@QdS6<<PuKOmwt;eNbp~b8{!;uX4jjB@?@{Y7DErpMl55p#`1IkhOs~?n~&p
z)yvLMKz)H;V4-c%E{Oa6Kq2ufCx;NmD&aoUX@yu5jT}CWaE^h}xz(|7y^s0ZkVx%h
zkFKun^o`JDDnQ0635SxC)&i~!DG;FeJA~X;>)&M`YmLK2CM4tmrA1QB9s=zw&Y|_0
zg^7e}tDv@_uStJ@KeDzXY?A2^nMu^Pc(I)7YSQ!P&ou%5BV%wTVBP%UZPx&c%Wzf+
z#7QL#i>M>ApTJ1+0edGV?(3Njdk$6U^`<&-7&CZKW`&X0fQE*I&3yYH2j`*RUZ$6;
zf2JtWIhL2raikV@wZxY)n@k{L1AP+;T2a(y<Wi!JgCzx3aCsg<K|LRzC!Py~8L){C
zEz!nNF?v@WtBQ)6O$B5Evh3~cJys_98ypG>MKc0@^*0k13gYscC(dBSm^Y}8&_l+{
zvs;xj*bUc5_G$|UtBi*d<|^wZ4(jl;=IxWv#VlAaj^ud|{M+fR2erMXD(#h@>y%n!
zd6+^Y3(D5|%LGs!0rfUm<HVF%Cqho`<sVfC_)_cz;up!=MK46+II)x3qs8ZEX{@9z
zR<OMHCL~Q+NaJ$=%`YF4gF9dI6JTIqsB{_21cqUGI%rIi9pb@B$WcFix`Bi)&{<Mb
zQ%lV2<xx`63qw_NA0FH5=;}VHwmBViO2C*aso=WT!k~_ypI;*lT(C6Yff)z{@XgEK
zlGkPC7lv!HVDEh-*&t~@iuww1b&VwZkdcw`k-xTK!xjHcZ`9ki1PM{vFlA13e92q3
zcLXdrnSS4%_0?$+K2`9!Ffs>Zgn9+kd2-X=hguUP)Dy%#4)hm%Iqncl-0nzIAhxK)
z3MmGe+tN1<Ur$0Z@I&>89X<+k0R`ha0V2`!(9j+*u}9Ko`rdz8ie()W9<7xNZ?Ir`
z-j%6(&_{-c2Ya)@?(JnO`$ktl5n<2yzDvrOM~{AQm>c3jov+c2SHc`*65s-!i|}{u
z^^}_pkuP5+0|F|ks~<J+>`Yf|HAS_aJPNzv0Y`m2zZF0S)?0OFxCRw|s9po|v~$Gp
zXU`b8+uhu7LAg~H4Pk~=o(YF8te$H661x$GAZnr%YA^kd_rT$M2sy6)vCUhtfAXb;
zV5#^0%8Xm(qSVncmKDoOWK8Y6b^AthR>1VT+P3Q#p0nLE!xq(D!nlqqTyN>o)A@m;
z;G|RLP7{SOKZ=wv%~oepXu=s@8Yw-7!k_n?xDAl&^wg6(W%BEK6>Qd*P!=745+Gqf
z%}rq^e=HtbUf;wqo(W1>US3Yd8_IZ=IZ?M|1|m4s3j<Uj;v>8Pk$0{?-n)nXZfX7F
zNEo5OOokS00z3#H=DvD&+^c^?EQz26l$a?)a@rBj=WwETbA81FP6a+{4-N=ch;Rz2
z1LqgLL1qHhWNc+Mp;`-GX%}M)4%`hHF%N%@<MuALzwg|+F&BPAS((d$2Dy{2k55JI
zhJ9XYTG~lg*1YCso^`*iV<*6z5l{e}1Lmy@h#7ijg^)~s2V4QzSvrte)OcHe@znf%
zecCba7gwymwnIwcPFrKmGp^7KGRHuY;kzSp)M-D1FETcchk&9Bd<@LA0B#J<lvUEZ
z(Uc6KX^Ttc(p+;?P9=((2(XFx%@I~{Oj%i*Y41#Q)~)caDU?V*U^RITP)$cqrhB-C
z)}11^k5(;0H4z&MBfNIVaAEL(i~xcdB7dwUr9_|Al9hdA^5VqFli9Fp02eDVzR;o}
zPBJky^*jyV4<IQ!DOe;gi(dN7biIH)RE1|lQ|VNNaZ2K|AHD%v`K``~V7WmXnVMZA
zNdSF}wQh^&uK#=f_eKcIAVI8A4fVaR_4FJ?ju0fh{yn;G0Wu;KR*#uZognkwp?&uj
z488lc$wUldR(Ev+0)EprD+qoPM>^lUwIb&504y^Zn~|pDHC8m+;)u1UXa|g5S(jR$
zrKh3tWHH~#P1qXO>y!yE%3ofu0?@zV+6*|f`^}DPSJ<Z82VBjlByP<W-?a|d7N0z#
z)B5B%wrVM$vTn54hNeBn&R{H^fuj#RPRP+V(@B{{_wyvJ<|9|6Ib0!*pY4g4$t)@~
z;Z8-!iW^`W8W=aC{rRlYK-rx)GR*Bb8>(>XA_qke#4fsA>&9)IdHt8<2_@x%mcI{C
zNJN4^zcG?MT_W|b+;8;vm1G0z&OKcU8UWZNLPR$=H(#<3sO6&1h&mcKqI$zC0RZ;0
z;vub-jXq2@RZ|Na+y7@$!3Q>B3p&QZp8m?#j$vZSd!F2Umwu;Aeo~)SXQ8loG<?H1
z350?(Ld~NfW_pTgX=&vI2JVKmXLo3CVc1eyxb%Vk27_X2Ff5vQ@mfa7s&Bii7kO9<
zs1WGg%MD)oJoSH{Rp<c82tl9gGJy&H)41`g67JK<eSLi|8Ot!3=?W!Gv@!2Pj&9_1
zpVqxMq8hrYfW-L2^D6*f<KKy)D);h0Mgs-5pK!;>`=^mm!he4V@?QJ2bk0*JNpZ-7
zE>{VKu0|_!PT`XXps+rYpQ*9ui3wYZ;cf8TSF^R)?m0Aa)u=W$7+W(>iIFYd_r%}-
z!~X55kh%ywA$is$$31{l^78hrlSv%d`2q%P)hN5Lb(F@*;ztAnR8w8vavl25qC9Mm
z7X3oWT5c4c3R#4}em1n8o6tyI*bF^ZaxFL*m-D?i{b{7lTB&kztkx6KRt-e2WKyXz
z14J+2WRbDrDxW`RosG%P$<b3$dEra-AMwwtu9mcPe@#hivpW*|<A*m0hQw{J^y3jR
zF?!SBq@JTEf0zO|K?Zb^g(U~V5=fR8(p4P3^5h^X#d4w!kA65OF08?BIL4W5fa^85
z5c0c0+KJzt_8q`&-6|;wboG@r_TN%F6J(B8xMKcsH*DsUNFC{sVugl%{&l?+i_rbt
zTwKnQ>S|LoxFT2*2u+S=7e<vrj!OTy#um;wE#c0?n{buh9=>{&Jj5FTG*!|^sc&U)
zfDy|<c&;N$8m?(zd)4&=Z=hUT1$IL7+snhdvR#n~T5L{!)3siH8$@(0yYGXqsTG|V
zIHV_gf4G`se5E(uvUgBpM}=wi`98~V{F0;>14SIeJuoGB@6u}fV^YifZTW|}uT(-?
z*dT28?89v+u-=a+m2Yh{U+yto!`e4-Zv8$LPMpbQoc&PtIgIH04sB3ObBxmH<;uNg
zb;d+ndS>X7%r-c5vozgon=8vYG91+)kb<S&l-4_kI3p`KBS6Z)cC*vzAV6keP#l1&
zv6L8FTW21sf5*95Hi<s4c^y2)Z9ol_-$(M7pYWyttmZ-aL#)kYT!;WnUx7qTxa98m
zm6_BX`Sq(^E1P;b)pvC|rLRxF0WayT!KytdT)J~22*w5Rd4Wuq%!pM8XKPJNszE*G
zoFetiNu3E=F;;3lc^}vav!wSsHtAeD&niH8099$){1u384ush4TD0^O`^GCa8%RaZ
z1ReAI=<T4EF}d~ul(weQyHOgavSbT6Mohj@I^IAHNXFkUr$AX*vFYe+R~CeI8TS5_
ze6nhVNPU#XNI<|vIETEriHQkB-B}x0TxXsaOBr5eY@Tx1|5hv8ud~YcC2qW*7VyH;
zUTI>}95NUL;jomXe%vSF-ts_u<7w^9!n^_Y`0Zm{8d~ZNyzJXy&6n2hMXYF<>6qh#
z5yD5>LL+RBm9*wA2`5R&Ur&;^Y2CIw{Q);(Qto^k0{BF86a?@L2w%qS;)%FGYymYJ
zWP;0wwn=;-Qffe^ua+R5=TF}di`Hm~=EqTSOS_3`x$G-Bx_L<SOe?m*3!@}QhY#YC
zz`%W6GgTdG$DiNO;?M@o-B3rCGDpBCx^bSJ%Qlft3P_Ljh*O6@JW9NK+WUoC+E^|-
z74%w7bPe8LQ(udi50xm;Q-NaArGy)1g8kDQ>_Trr_Tg$weel~KMkcbQ<A#O#L|9P&
zN~S?tx}mR%^hgMI3do08a8)ZStDCDO&6CyK1ZxLngm!jxbj%X)>(RMBE7Dnk2Q<t)
zwWy+k8lUH{^R!IQ*XcM0aVL=t6m?4Ni`d2mT(#Xk2IN>zRG$bK6)Mca>b~fC>{PV6
z_)P@3HtTH$ozlCx+iSIBZR+BOSI;Y9Hj3hS;udWVaP8XlK=fKww8lfkM&G<S{hv}1
z7Kp;y(eW=Uf>KTlR`kADF*obRsXT?jeYMuDwAYD=`S1xS=qY7nWT>(cA)mV-kZY(V
z+Zrou1QC{gx=i2AK{&CorgS7i_)*@{(M>>Ss8eDYn_~}hc6PpxjcJMf>H~GWuqmVx
zcP>c^J>b9u6!tL^PBia{i~0Say-SM#p3@82$741*@~WIn=h!_*cSR@z<R~KnL6-qi
zxclIeSfHDiUwkuaGF%?2FhQI&i1lH&p;L3|x+I4-FcjWPm%c1T-<;#dL~5kW=J3oL
z4b5(mU$D&^Ox4|7n9EdH>=~;5E|`32Q*6BExlH1Ff-!@YYUG0Uk8Zu_?8$NIo}pFz
z&?F?hUgT4Ipa}h*W&BADQh=BpqM;iUim0=cM1TZRmKzYY1~--<^O0CW`J$a7LsZ0y
zNBdEJI8+I*h1ceRYR~V5$}{k#fXCkU^Q(pmiMFX}eh3qok9>Qzj@r*$<@?x}+~oKE
zcjjrZA9mZf98?*sqW1OP_#8bu8@$FPI9I)MFy)St$ErPYEDKC)##c&n0|%h=XW^q^
zM(+Cb>^M?11QAORE)A7Th`{`YCAYxbjk<uxopntV_nbfNPSgVShtBEF*2<b#k*b;~
zUK$joF5LWnoAp;OKomE3b{*Qm5K14w^zYrvg}jHUBv<F_9_gXhu_dl^=g!$yM4!!~
z)CebD;dee^>NXNpYW6T94mWOSx9MK393#LBmI5ZdmS@H<b_u79ft}bJb@l!zKuc0q
zV3GXYJ#9TxaP^bnjM(cZ-GZ@x%cw2Ru|3tMK&VWZdq!$T>r|ZvC9u3z$4dt39$h*j
zqj+C$=eXGgW2&HNhFAM#kBpf4tQKL&Euw~&m<%kcunS+d_mJmo6t`|`K8c%HsW6j`
zQk_@)4f+Na_u9q0(x?v(f2ZJk;=~CIXusc%jeVGi6t;8u#uayspF1VDLmLt?O<mn+
zM1*_(T!|J;$u%f0wP-j3Hs0c2;&X=~>a7@m`X|G3=M<^slx&N()*+xW-4$*&;Lmno
zn9QP%@vvhE-$g`WfWvtYj!T#9TVo4K?tWH6xsHQ6V(-bSTXF1%Mb9&xYKXXY-I&`@
zB`)Nw3JVK!+|g#aF4S*ZmVJ1<kC$`GA<wMt`i>HWzmzM$Uy~1%A6RWq;-Ol|E`UGH
zwx>L%rwxmLDKEbYnWb%i(S%{CeH8tI%$1e?3!iha3&e?*bj66sq@)7ST6v_Ur7hX>
z7?LF*eSje40ICThLc_B0iBha};XuvzN<I7g_1Nk<vpW<TVTs(3Cw6726DC`Y=4CFt
zQd6mgO*s>^?O8cLf3HgA`KqCvG03-grCcP!+gZJ0>k8q4^2_GbMR9TQ>6y2q)eMBm
zl}HT=MVfZ10~QL^Q6lZWlo%PR&$<BxueOF(FIUw$R!aHKTwge^13bO?Gdry%eTm%H
zBK5;}n7zP5uLt|gcabu+Wkk)L*m`qzkXcOoAJoeQC)00rHIDc6qO9DXVPMM>Rn<(T
z7g%)!TH3*ElB5y@?nFirIkeYTk9q`j#d~gtL1bUNTcXTB`F6dO-p!qJ2e@``yjXyj
zU+3Vr5061}b9Hr<9gc(axsQDuisFZPQv9U1FOK$l=5?rZs-NN&5NI2YfrH>TtCa;E
zy;vDD)<FNPI7ZaBcbJ=JH*S^kaDwc8wll+_-BUj7>>2kQ6|IJ@ZWO>r^VhG3#KQsu
z17G?)`IuMFvzG;LK9-)GyhEp|h(#QFHK;nLm_xl632GdXlpF8gvv<J9Vv%Itmx<pn
zePBQwq>Q!d8=>rboI<UO<#Y69Rt2FLh$KF9As`JvW5#3o0eDlT&q_3K?o^04sQ&Wu
z^5mk9*AWpGOd`ErS3$0O+0c+Ag=#YuSaex?b=Kya&q9B(O}nd@m{{zUDe|!>q~=U=
z{mWTMDV^|K3&edX-aVaNT}JLIpx_-bk_FR{0#XM0*cMkxuTWJk<zl6n+t%=Wk<-Ug
zyP-}h3AZH{yi=24Y~~sML!l3369QHzryEl1&rm7?;YQr~Te3;54E`1-dJ~KwXJgjM
zQ_)ggEwNwE1NWFSvaZfEwwZHvzhVCO;v2NJs{n1FAnkt}Sq)hnaCeFFz=6WlCeGHO
zk-wEE0!|p>d#_xhMB%qYvu7BwsABb<ewg1&Y4I9_d=t0$q)QsW(;ykO8d+PeMw&Wq
z-#)Yam<*|cNsTZ6xJMFxyMQh%TpC91fx<N!uju3Bb3?tyA&-b7V{&t=Zzeqp57&e5
zFkF2LF;ijlMt(FG_$B-~u-eqfh)J_sAA~Xzl{tJ3^yzLWrd}9W%TSJybA0Qr2^Z_|
z`tj|$$1R5TL6;y?!IK~d49~8tLz_=uR$=L+p<SyN^?WX(TZ~GMXj=3(ri?WhiBwJk
zavG%q*Mn$rc7*mlM9}i|7dMl-y!EOXD_yUZ=k|E^QU&2BCJSvIJ;ql%#xGN%tguo6
z+LWV-<N%gANNUT{DQP`m{10xGq8NJ4I$Zql;>?u+w3(?M=vYARm81FYQ_*$@@e<^d
zru<BT(OgneCcrj9fH-ibV#2a5z7Al$*=0N<&a}ayD;DRpHvi2C+m<Lb_2b>MXz!sd
zN2DG(>@Ikp!2`^n=6No>;dsYU<q|}pIP1jWt5XvuvwF<baX}Yqx)5XnKH<=ZPyej}
z+LHe$ZA08N4sv*sPcyWf>^;hMZ=~`xD=W!c*(}`@R~Lt@Ty#j;NOlO?p2ix&3Ck0_
z=lvzc4M7O5y1sIyW)`7<{6?-sw9MkNxa&9uq-UQ|BHE;&6}SjMG`FzFn@W$l%-{al
zYrin)b8N)^blcpT*Kq_8GEsKQz>biA)zVxkKY#iruJrF~<zfG}CGE;j`&o6}^<eJ*
zzYW=@|7#nvm9+m{;GeQT|8o(G)cDUY=RQ$1WRLy(7kCdrj^XBiz1R3C$BF;;L8<@$
z!T&*<L-~Dqbw&&NMKGX$05gAnV5rJVy>5F8B{6R>r)gr62Zi;SEjsOWI?zmRPELjG
zb$oznpR{qc_w5mX8tEX>6vYWIGYOjBBM;eLRtP)W0j*3I6=mqF5lGQyyeYzSm^UC%
z8jbDj?2NGv_}6mARaN3*G*%{CBkW><Rhu=UK(&gpi@gr*V^ObOrM!O4h^m10onSsu
z=Wo}ntgW%NwY8sH46+LfV(em-)YOjnN<rwflnUMBSWr^Zz0?QVnDE_CPhS!QO{=-O
zgrLxHNpWLJW;+|?F}rW?A6}m_AN}|w|AZLaUKNyxlOdjzHf;c)^1{2dwJ$0{M)}$<
z)_3!VOI)tZYro|t&RB5|ELs&bl75$pJqJ%!FQVNpWZKy`z2+d5(E&%Br&fe3ROID@
zCh<vvO=hugGqYP_1gmPD!r5iY>Za6X=t9#qoa%|tL)NdPqEfOQ4|g(4FbnWN*Zp##
z-C3&2m@M@q9&T>MOgo+n7cPv`fxtHksfIEOE5Ww+yyj4jeEs_F_SI@Mt?VMVprAUe
z;meCNhL!HwldW-CfUxlHjLgj07&Cvn4p-f>d;ND~q-C~#q|rBm4zrYaFWu!gt=5Nb
z0N7#XE7mXQv6Qiq0n>6u9uAJ1c6N5>3JO5Le!Tba>v6$AARSh*nL$Tbv5=<oii+yN
z8!oGAffj%7^IIozsGY*MKzEK$Ty8;)G6u{*71jg&UTeZp5fNkM^B~i6rwrKAAnd3L
z9M_knFSiInGW2FHZESXKjwGY57C`1RDEhP|VFN9%Ad6J1baj7yd&Oi(@E6LY*mWVz
zk`bO2cVjb|nVBCAAJseUM<d~2As|IWjT^5?qBpcbXNb0o1y*w{B)a(W-B0_Wz3LV$
z=EI{sVGSCZn&-QON^S6oFR6w`vXDyK!7;o}hsq3`)3FQk)6ns?b{USU_su^Rma&=8
z_Bd0%b?dvkk=aG)sC3+SZ;lb0fjggg)kQYb4qH}MHl&1MLenhA7_m}iBd-}}Z+_+}
zEG{mF?#u_tjI+2Af33TBQ}-S@Ya6hQSQ-88mjIbx$mt?_-w?W>ta<+Vr=ymBk63p9
zIysp45SxsDF4W7a-ZSW}8Q1z5!0N$F`3=>U@inlf-duyU7cUM$+<xy8DGzNch-1Na
zjn)T~+)j8qnBGxRR*s5{Ooy}DS0myvtIff|VfX&QZ@_#@6kaHHLSLP*>-a5J3D2)=
zs!{Rr_ngR!qxGIk(a;hzK5of+)%lvt_GU3KRZ6Sqh%NNHfT4C5S+!hLgyLu?^j{($
z8WHe;Hdj>Kt4NJ~N7+i0OS`+Zp)+?tKrME_)5WDw{>ABYT|!Z>U#D8NM9;uR928ey
znZoNSDLqeLBxrvt3Z?RQy7?}CyI!Ty+SsTeC->OZ&5cCl0>H=yze^?wdkm@-mg#6}
z-VF%2ApfFWbj0s?NxY6MKN!mJ795baiOGGz2!IC2qd?P0U>34{Ngpy;5qi=Bo+#ur
zEJ?d^K_LvGfEU-Ne2N_PSpUBB0Pf3U?91T>%I;_l#3A5!lGvL|>WR6~v}p&9yhi!a
z#F-QrUk9J<n-b*U$mm~z`gSHbi=yT&q|&Pc)&elN2W<`33ib!S>bP9}D^%JMOAHt&
z<bZ9XXV0D?cyZCLJ^A{^bXxeMXa>F0l0M5f6crUc3;)cY=jP`J&)L{q!5fvtU(7Qo
zmd~^U)f_bdjg5WmDfdle4K5^Y0l*Hl2qi}F7%z;}6{M$ML~>d%gV=v8f~1Pl%F1+K
z3wbRVSKR^8C=)GV4i=Xv>66;oshOu=2zJT?Jd#&0zq=<#ucy8J&d5h0+xEX&6Qzt0
zYz8JrS!!S>;`R#Yzk4rm7(u`6b;f4qV=-`cz?%m$J~l`3a&XU=<&pXM`Qg6rcS2$g
zmRM9&^r%hQ)wSr9pebMW1UN{Wou=k%03aK3olbLWoT&PlGiN-_Ei)>{Je9stMXkS{
z=0`4qK5+0LX(E@dsHWBn4U#0I_Q|hrEd;N)PixRT`@VivK?$UT2Q+kQEpPWLD=T-k
zr^r!AxDhO*Y3u=;g%A-aD|nfl%*-!rK4rcX`-H15A8VsoINt>#J)rGA>hPKO5C0H`
z3nJ!>h>)-_Xkl^;7_Q8Ri={zdDl{w{ZcVIv|ES1?K}TO7A_P><-X`M*%U$GP(*y+t
z=Y1LeB{C&w=uay0Uo^PjoLixv%ZX7OJ@^>xMHnS93`I;K=)$vhYH$M|Wn$88LKa7K
zQxsMM&;WY}_>|M%qjbmm>l^bJ7xhHRS9Y<W)4T4r(cYLZ#=}nf{}|mz6D}Y?+##{k
zbe|pjkzNiJqvY4EGoF$;`<cbvZQBP8dh=dE<HDMQhlj^?4s$mSZP<DMWoDuE6%d~Q
zq5an<V%`zUl!D*iR;=<Q9bi7Q1_^btMR9&M2!`VRoVwf=BqQavY!80rqPh{pz6%UE
zw9*?$Cmf6*@)n!XX0nom06Y($z1r^ID*h#4bBuk>A<1v~+3VM@=Z~R#F?mo{>~Gmz
ztUv0>JrSAYzo7^fc3r4k&<E%=Dl9@R{_3$3dh}q}l(sAfC+EJ<TP+~3v}iV&wTmR?
zG*w2kga^4PjWN#V6x2d+z20zXo&8X|clyO&oRQjP%@OHg6h*nP0)}^4^$O<Ny91A*
ztG6{?ObaTk?-cqE0r+hd+D1tsc?iS_7|O7u&FCVwu|+2b;B3Vl0zox$m`67?HtruV
z;{}w0n1%H1?ayMg2QY-5<<g7WmaPD;&}MTip(`@-L_-$oFspdCKv^#1g?Hoco-;dC
zsYYppD!kQKKU3V6aB?m?7(#<%5g5WZh<PS}t7U*K%|faGw}C@t9xPK&k6qB#*FUXY
zuHRp1p`cM=ZlVP-)OAxW_t|XTgpsRSp6iX*&_>AYYLukoDkLOy!+i(jbaYOxR+dW5
zoxK{B33cic1*$>ApZdlIXa2bx2uD0yPJiFs-8~KMg5q8a@nHX@Zc}Qsnli4G-xV$?
zbpkDdod<<DBVe000*C~suW4nKL26(Rh_s6Z)myWeHc}o~)Q0}XAM$$s{+_V&7yhO5
z-~9*D1EC!93a#A1ndEo3SpKj<;ekKq*0R865H^q$u;tTElGW{xh>Wxpq;@E<L(elW
z=H4@RF$Zm3u<shD-fHoOX(s7qHLPUt{>!c3IF}&qHo7dkX1&R@8yP<R28fR~px*0E
z4tWq@+iAUBW6+_%0V07tC^*-XSb>A=J#_ldqE={meVZB3xtghj0jkrF8xZRUg|F|v
zawpt9>3j#zY4Tu&MV*Yx_fN^GDH*u2(zSTQ42^G_H*^`g+uQ%_aFO`Tlfpa|=TytU
zW2SOtb;i4QzwF%RAy#p1Fl5EX%3LF%daJqKyfyv@y-BTKXoIIXB6Xe{LiMk>AbXBb
zAnLOPZHt8QvW#}X!5%{SE<Rq~gJ(zz{}QxM^b$n|tD(y)$W~mqP;WiN=04ZUuh`18
zS2vayWmq&wuG`K>c8{Bz+jb;Z41Gy0{&b0-QM3m5?{%EABHj@XJAS)yDu7PWyH6}r
zh5BgBcwLRdc;l;cEx=3qiFR|0_E76Om-gVI9fbe2r#YEQTsivs!0`N}&7L-dvx^$Y
zDsDZSg+6DC@Y<p<3UC)BP{RR`tc(n0VOvD>WN*5HeJNooD=U);d2aTtS|_2bEHu&w
zWwH7;IcpO#bkyBeRSl*4YHD^K<WI?cW!YP8k*7EYiqT${ZG*DOa_D5T&B6W3VbUk;
zBA}+wSiW@h{+!6wxh5OZZCL}EAVQuI)ADdul0Q$E5Tzi1-r}FfuZ&TbUcYF$l?8g$
zzy&|%hDvlJbAm8JNiJR5+iGVq^buNZ?<w;0rsU#pjVg1^dE&^mv^IYd5MmubHxo-C
zQBG}uZeSBB5M>AExcK>X93AuR9UST%t3b)Lb>vlyl|q%FjbbT7yTe}C+rb=++ki0)
zhPWti8GXo|$h$8r%>;gnSgO=z<>%Fb_I`7*6z#?@Ryk3*xqQe{SYte-nPU(l<8B-r
zHN~BBahvPImlYu?-_=`t_UsA6S&OIvVofCl=t6LXSn?<g&z!Li;A%}!{MRbdNy~#A
z+OU->S2iUTnwpvrI+DHy$~I%#Qrfo+8})o*sY49i&?rhn_t>~QOK*u?7hu19D02pw
zfZg^MRI7c8RJsCMl7(HHV~=u*i5Wmb)7;k9n|%E-(y$E3aO-()AUM%A*b`7mwG9l;
zl<nVWkl8Yq*&_gx2r$8fR6HNIDMEOFeF9zxM}h?rm0LoBSlgPD{YnEYKf-Q<6C;CK
z%Y}B3GeYM!0B7YUC4cT6vm!&!po=p8`FV%#S30slbv}nM&4D)+D!+ce(gm{x0G|Wz
z%pb$`=ZW(lTNSNB4;bPc6QG4}g5pcU?>4PMuofIT->i=9vQk^~O0<UV^*CtAqfyCo
z-#>>ylM?}M>7(P7zeAO|X8OG@gGsPT`}MKS5W0_3f8{~t5mN#wB2L3+wQmW9>1ZHa
z7*fJeOdz!FqHb_#yS31_Xk;ZNr2`WCx(e#H!19oYPZOTAyBn%7exs=7y<$Pg^XHG6
zgWgN}Z|XyCP{!F>rV=N@Kiy>iy6)mFW#!@+MP=m(!d&S{lBknuA0yAALI6}V>FMQ8
zwd?Xgt+o1mTwugu{`@DNd%rt9ggh)BHnk~&lS9$Wf89!B^e-d;mQ9@k)P;ar((>Aw
zxCLD0k<yv2RrSA}q|E;T(o}5SdSFAvjSwl^;rp$&bTVGRsEjW?5Y85|l?@2G=fxeH
z0vwFNx=f4>p6HpHCQ32s!XcmHH#|{-p3|*+4^vu3zz(5n4$i+D=&umCZZf%T#;|Oe
zMy?~eWddxfVZfBQ!D?WW>H_M}bl9|h7ZadihVSk?OmAnj|Mc|O^`m=Vrf+QczMU*4
zdT<03+DPTTpV<^XnZ-Cu9SI=Bi@80TJQFAGVSgjz)W1RbWtnQ66l?fy8_1)MNxhnf
z?j_YQfx=~Qbl&N*5540u+w0*7{YXBak*%K=oyb{QT53KecOYhab4muApMPXyP-bf>
z{HY^@gW|yV_#ox-u`N1v<Z<oX``daziEaa_`81+F1}NPvU=BJ0?xjy=Y%`QSV8-#d
zP{7-++U+$WG`{1aGxPKFKND27e3r+b`EM>Yyv&kj{5MPVaY+eu<p$q7w?cf`n+0QA
zuw&r0j${+NuB$^EgaIJ^zhtb&mQzYxF-1^IiHeEAQ5~yADqJU?BdzEt(E&+_1A4x`
zzHzw@(7B8-bfTrnuTS1G3TAx%i|(HbEN4^V`jw^z{`uXPE9I93|0(-)E+z2%ug~p2
zm;XQZgNY)%DbUxF8ZNV?&ldi(_kLGFIr1x{5q3GVnEOhYlf1emv}e#w0ROHLjY{ox
zjJg%@X0p)AR!VEyd3o0Z6zIe~TO8W3yH!d1f4*4GDJ4}ySH?hH##83l&)1yQVHAuO
zqd`J5{(Rw^^#3?H_~XG>(ANnWooJOY)Sjg`7v-QxSVEKDH``a3hA1j9OM%p3u9J7#
z$jAv^!**2k&ZzY_t5w5j4S?<*NY6pY+7E+6#sTXsW&`vaby#bBB7XrP2Uy{hAs+H0
zfL>u3IBB4ceg9tKI-%rKV@d?*-!LYs0NO%+KpdA;iNAU~_$a$Bq~{<AF|H0n^5yYk
z(H!0jGDI28YiGRfeamzy-_A4|^pDP}2W&)aP{{>|I+BMQwx>qWc|e{^sx~cv{4Wt@
zVirIzt)(qUfVT6bS`?CQ_%?*8Lw2NNZ$Il69%NW#3FE-a1FL?JVvD2)7R6t6dGu4y
zfAF_y3nPyP(sT_i4l?u^byWdsjA_E^M7-%Nb&J@%y(}oc=^>M`y3J0b2mZKf)#|Uu
zQs=E+(K4*pJMTsD$Eyvz`zF<TmSEC=i)FsIrHCR>dV=<l`;%z4w;mlRrp;bk3qChz
zB%YQPHnG+<S|HQC{FdAdW%L=rrGX!xQI~1ec|#7;?OrT0k^NJoOVoPbf+-2sC|qiI
z+k#3byxjdMd>hwKw^f2}@cG+{Fm{D1%MX|CL?WwseUKgGkw{J2<TQG%-v;Rof}zk<
z$bKD`$D2H7y7P=gVb;I_<hkp_XCWb4$nHB1&6cwVY^@}f!ck33P9h4=^YHMPhOyiB
z_KDn64}bLnU|}#!*s}3YC_|e<V~rLR(V#1E6`*jgMX;_LTIP3tCgGA2>S5-`7Ot|f
zlC+%*U7b82)Ioj(-&sd;ggMfIBC8NMvToo}$!I%O2E<(QOsaHYHd_Zc`3>4Jm@J3n
z8yO0K*@<?bCy#o?q{diTTS!^?3EX-+eq9hmC<~nJFV2D_MA+|#^UnC<#FZegj<na>
zQap-1q4kg5r>5`pB%Vpd4KFjvMBQxi)qaglmDC~}Ii%gc^np3*`?gB`ddkL(Y%}}z
z&~}nj%|u7vs0jsgQO7InNN*H*@APd&?4^M3f<eo=tGDadPmtDU{~#HRO~IYx{ux?@
zH<sE2O%E4-z%Cu>d8{Qjz7#leG`u0r(PUUN)C<GhmNoq`aZ9}FiXvy(+hy<A;qXkP
zsoS(b4`Ox(n664!UG00~<QjRT078rdl(eA397YIU!ruU%G9Z<0nWNZ)6tE_4(-xoo
z{rlZ2K6r~Sb;t|xG+^&9(bEH^IZ&K)2YDEJw6e>~^<f4n3by-j+Z<(fb*5`$GR_HR
zKK}u^*nnKUqSk&N9Sv<CV0<yMy$&O2Y69Xo$QiJOE1=fqJAlF?4G$pAslX|fDGP>Y
zO>lI-Gp`?~_<}@%kwUFC!m=PsXkBOk5m?*U7{(y^jK2AX;5cVt(=G>j*-`6m?BM0o
zPYy;%2F?ro0~wqisjC~~zw<Dc5zB>_(X`sU72wiUGiNkVg2AyxrSnk2kKJgIo;#xr
zjlejWx$dwVQdfm<WYf15!j&|8N>_|3-(}VLSH4VzP3}w@-V$7I%a{h=LN>1S!fiMZ
zTVr2BGX0$rrrwMi0n;{tueNg(II@}BMWyHcy(QTu1W;zkcaiBhxv;!!a44WT$PvJZ
zPBYvV*yyr%Vw465D$xyNf-0aSKm`+`2NM%<#TgA-zp*h_K=SzV`Exdeb`YY9%vi2E
zC&QV6h$pvZzA#v^>|3*zKFN+=eFd*d`ND3^It9?;YS>|*@HKpCLG9Lt18J~g2cE#0
zdLT{rk;FH%JB;@L3oi8}8PYr)*s_rZfr@NHLs?Q^p&WFgX@b5;0k6v`FYgnG{YVOi
z`-5Rh_wSz=0G0<`jE1UePr8zJHh%Fk>b^3UGJGN`F>!c)d>k5QS6BmXcfgG!MjkNJ
zqd4Ws(QgIiSwq<xO0<H42(^n4f|?uh5+C5`F8$*VQio3TLDWVIz*On>He%_B4=o>W
zij|qb?`%?lFRczH99Eaw+mJuq<~I4b0E>D>jk}=}zn|X)`fwv?$J&Tabx4>1>2D4~
z%Wc3O(B3ANezd#>(Hmuu!-d2l=uS$9-jqHvvN2U&<RgYSVa4^A=eCZSs)h!_SV5kN
zv%yG~&I5kqat+8laU(nPwnd|pfkn+p?>qFNPZa6Bfh`|KQ~UYD_8mE^;pyqwzEzSQ
zI8f!~)c7<PY+9&-9qb%b0CDd{<j~-<-PXr*cg9`YO-*Tx2r7fbIIq>ur^^uaCt2{f
zt<IbX6Iqi1f>{jp=u6mhBPSniW@m|EbtcX6r60<e+<x-jC=J5V!`d?sAI`3hY-a%I
z^!<*L5brS)K;Y=kin=F*RZZRfo9ytb4q0Z~tB=0uEy?qB!NCc)RCu$9JroTrG7MKz
zLtCgatZ>bMl;fUYRlv4CstuXS>c9Cy__ZwzqMe(=x3%d)b^xR2(1;0gwOq6j#5Tmz
zvbuuV{cXczkw5?@?Ib7x^UTSN_Ao+vootl5%;}uS72dEdRP&zmH$$2*$hD}q(a{=^
z5D|bKAXZ4z&r9VV^xq9)9|oc&csyk^xHa5#XM4U`QGg3TDUJa1V*y|mh&BRglpYjW
zU`Sqzqq}mQJOcm_twPS$lGt=x(oSOQyvI;FdT^WM#&W7U3k;;hwYMr(CL?&*w<XQ3
z>UD|VWR()jo8*ZrBRzoKp{&C_0x9wt?j2#db(qmjjgwB)k@Ke=Wh4`Aa3r5P#qL2x
zDIo|4p=uO7(+NkJSaEhB$plCl3Lp$YN8mPoxJE`n=h6@MZ8Oc5Xqj@|3XjeN-UOkF
zk;a6;iwW@;hb|rq-TV6i#$&R(U&TGR_7}!DGW4&f$$!QCsdDuX`|v9x2CQFLZ6dQ>
zs*~5sg{!pM=HW>;#C_sk7gd8N>Dj(IZ>7;b%khpaTi%JB3|K7owUq(Xohl%nVnNXb
zC5|*wXBKVM&tg-z(k1~9Xvu-GB3rXPLb^WRJ*$L;gwheg?(ai+hNVi;R-pJOL#k@;
z=%@?*_voH(AUxfjovFy7KOtChL=xtrtPJd(ob=q>ikVqhtWJ-`$bhE9eD-WNObYc3
z4A=`wRQtFs4-cEN%J{>ui51dbgxdV}ExF8TB)_QWGKxLB-HdKjY#l1e77i-Rd`|2a
zmf-qPU~Ivw;}Pm`4@w}Cr1P~DH9(W|2JYnCM$}#@%gmc}v-3M>qH<Fu8qydjEM`|!
z7(fWq(K#+Cb>&dKsi7!5;G|VW!_@kb|B9}&BGG9Wt2<KsWMk{`UjBP3IMKraZtBkx
zO`_APzwSnFUw^C_@mP<wro)J_Y;^sK^5Y5oXStIbvrKHXKIedUwg;j#eyhtS4?DHL
zMO&?PRxf=yR*ALK(#x-{&~%d7YL)uX+Q!M;;JtV6-jC5e(C-ZSv^^9+%vmCi9yx-|
z%4(=px3zF>DT1~&1Jv<_LP<)u7F6mq4GrJjVlbhc=o}svfPTH6o{W@~bBB)}b+~iq
z8r)CNF+Oj|Ebhvf!LT$)UKZQ&z?p&f_T!lby6jVVUxL~LbC+VsN4&lJ{8er_ITg_T
zE=<`tJGV<uuB=0=vMhH=A<Fgw6|@R<@i6%C6RDBLoKLcPwG^i~@3-7LTX_Z9%AjM_
z*ony+&rCT?a;1)1mN}E+g^I3tC8cT?K5f|{KVn{3eZu5fw~C<~W928IB-{g?fTYk`
zr?oZ-GSUfc!N#HtAl8RxU|@&^J>bpfui8m&xecmi|IpoQdcDscX$Wjt_##CRAiS|q
zR1MR6?}V*#`+j*Rt$FbFytOi>s;5yZ#X9vBN_J>|QYz(7G4|@)8QbD|SNJo29=g}>
z9NmW^COijFVy)W1tjD%WKS0Kg@?kxnby3FdW6s3R4ZX4Z)dTaV%dclPJ-zxXOS*CP
z*VCKM|EGQC*std}J$U-7k>=W`&+a=<6@m+ZkbMK4`ZIxBu=)o&dv$c0!1AzIp4sDv
zcdqFy7}C!OMQJ(dBz09))nAvreJX+@vVK$pJO!Sk08d%?b)i44{xOhkO_DJS4Gjf~
zoAqz|&YR!v<_E@Ju?h2&PJ&u_0hITJMMQpT>5Vh)^5~EMuHq(qyr;K!AT}-zCPSh9
z&JYy4|Ndt^+0aj}k~?dAF#X?d%J0{#_J4cv*P!!X-~W#`F7{FEvNpd^S82P7o~gBL
zcf;et3eB_j4!6QLt~y4+E+{G@gRg1Q(XYVmp~S6YX2$M`g2q%d3IM0OfdN_WoAtXz
zf$(4$U3iMcn@5ixCDHx%iJY8S`5?Y$GgCw+ilsCHp6B!%K-$Pw|I|uT5ue!EFihR6
zOnaA>vw3LA%T~%>Hqo^kPo~Ne>x=jdq7lEUq4XL7VujE9@tNk1j+)avykLOW2(Jh9
z5t_GETl(M$H91#o+NL4-E8^pw*SE3B0<TMh&qA&2uURrLvbOhMnIbr}b#$Tt_K*^+
zvU(kz*AlK}1Eb8WtgK!p3?9?#6_tLLrZ*B%l}Z>WLCh64uysKh8ho|lY3t4V_w)E#
zI$??z9<*=>nlG^F>EmUISF}~srmo77iwnajYipW6AJ36_(OQ`+d}=D{7_Y=-566It
zAQ~^F)9s0C#vqsX7v2<}$xAs-CJ#kCChSLoWceN6TCf|HUR8D?@pl1)`TEGcdd)ay
zb^1ewMO>w;u=6`(o3$vrmgZ{31`z{>QmB5w>eSI_G$Mi_!;@-ZNELl;&9i26xdqI%
z>!4tDG7OgoO5q`^$_-@^g@=H+DXm1tyiKkrhENt#4)CLG!{`zublEj^sc5SaCk3zC
zQ>Eq5tg0C?Mv-@VHY_8ep53&hq#AY<)wa;aXX2e9TOch%FkRD+Pf91{tmv3V=E8S*
zSesQaW37qdib^jCnfb=ZHwIK|u;|K$ic*gk@+q5`m_Rci{9nYU3<zWH)-yDe2iar}
z0IamGnOOm>ZWfg1foh-P<z>fsJa`1`Bo>F$gK?%c5)j?a_wTRutpvlPkKnmjrO*uV
zpzJ;|6S{ErPDu%>t4mQLfdrOXwVa|*DE;`iP|dG{5rNJ~<Ofl(Tj;#ZKpwOOIVVWs
z-KjT2<_RowHCL9=BE5d0dPvWLJtU)u!f0q{I8Wqc+0ldk^89>{0kR`d?9v7Yv&|~p
zo!wsj?yr@USkUuXE^1@!iD6G<)<8o8PfF}$)hY=^*_c$S8TK#K4q(Q1%}G2*PS6Ho
z(8|7+o;rU0zQE@%<?#3(99ej}FQ1W>ct)uI2hyj56mKC}Kt}RK90zS<G*SZmS6W3q
zfQ*9^eEA{|6T&DT1KWN=d;3dzIW$7F6!F2Br3R;3eEZ_!yFo{4;8^1=uh|?kZ+Ft&
z1b>fI!;xCOf_mcPx)q{eG|x9t$}O$Rjoy=7-$W;Jl(itj{_gJ<d6?I=esZhRA*#|h
zQ+}joB$*GVMQWW{Ll-1wcaZV>LM~->z3j4^_Oh`*u^0!wkqF;BAdqq?miA0PIs@FV
zX>4hFzQ5Q!V+4YVl|ghEn-unseMcIL_$r1Rk$x0!Z+)0M>Op#RfPlh*!W035i$#1j
z^fe;VGXqRP`R#`f*I{ZF{nh0xq>3=Usu>Va2XPt3=Q-e60?_+|ni+m}oD<Oo9Gsms
zjs(j=(@SailX>uiAeS*LZ%ff?uaVOXC_0)DOb^wcrq&#1Zpn+@DU$-dflg!!BwG%)
zwzrJR?!9$Ci-5v|J^*>7tN;zRkb3|{h0}&+5Xn&sW9}mWT55ILA`9p*JSqO@B11Fd
z<-R=)?E%`5()4Dnz>W-bM@e9JomnX8)~j2@)Qh@|x)sCS+rmvhe*73%RY~1fP7V$L
zI?_-Tp_U9PJ519GR0Sdm5)A8O9zOgH=_-h};)a%nXsa0z#*}W|f;DIJwP-3RGz5<I
z^+yyu80nV1VxstLsnQ#xX=eB#G$%n#jy);XiAkX<v7(SkFPfPBL63K}WlX2pRU&G_
zlZX2sQ?;y=2P2W&p-}Psl9MT^17-+bToqX9&E;K+Pd$YLLpE^ClBx?A+7n|qTz%Fl
zwIZppk+DHY6&c_ggX9swKuXUMX9P45e7B~iChb7=)|Nle7NXvz!-o%NgNwpRL|Z*E
zd3B1B$6j1Q;xSn@Mj37dkQ2JtHN++<zV*%T5RO{J2Tgd5B+r%!*C$d_yam;a@kx0`
zJwzgmdj`6UNTeh=l?Eb{25{$SbPdeFBL;K$$Pu-xVYjwJjv(jtCmLes(ANo9B!pL1
z`hKMO@I3z95E1^O?(BVdb{dbmW9{>qNyg@cN#xGq0BdWF3;u|EKJLDkY@^%S%f8qC
z<YL^$y?1I3?D)5<UT2)dO#S`0Fw3^!{)iSrTK+WZYzy7nNC60>DlqBiAt4G;0?}4>
zJy@ONVPlqNGjH^SpZMeUu*IN>jlbLGN~IidV{GuNO^{mmWQd}5Emtq6TEexTuSB?S
z-KnT8cehv{YUSv@;U;serKsdSQRHo=o!R=hXBEkn6L?3^F;iJ!pG>CS9}?@}X)Oa(
z33yZpW}QSvo)S~(Jo@pCp6rvhxmM*3M9P6jg>(p{$l}eQF7G+Av=(?EN=7us5)J}7
z%g1WH<il)o*O_wy2LK=6ka>ga|5><to=)CjAJ<kt`!N72aUkW1<HK28qKaS_az;~O
zsH9gM+M0K(!75Nm{O^*+;&>^Z3@0^BVpByuqX0G(Nc56+6+#qYiu;?Wj?pXe(bEmQ
zDS)z;2GP9*zy^@^i^j1f#Q0&t4z>`Q;fs_pFwy}S1{mKw>fCoJ4&UBcG5B>i%3!c{
zkNPx~;fE?KYvI?$Z<FUuq_mEE8cp+*Aj|Qs)nGU|5SMdRrb!?L37$>;EO-x!N-HK5
zdKPJggVmhcU?mWbAMH6<0?z_^M^Ay6Ac9qKsT%Ty0+h$n_nQbp!lPM0D;D?PEC-8{
zZ(RbzyF8hwk#e5f{bV$xEdZzxIxS)}APs`&xd^<Hg*u#@Ti?=4jrA+b&)>J}=vvfx
z$=Bk)#1=r^c`6arCeSRu)ixHolgIu^1ImMp+r*p$$qdXA%95!6#ol`cRk<$RqAVjK
z3Zh^lECYyuU;-s8ASiJnIg5x0f*?_{fnWrcC<sWNWRRTAND|4CRgz@M8SZ$&wZFaV
zepUCJd(NMG>+G_2>0&bHJD<=!dUW^bni6Mg6BKi5r|eYiH9qGU!<S5{S2kJCBjjM9
z_P~Vm;?Ttp%aVReM@b2p-bMpH>2DVw$WQqpj4Mn_kl-<Azj)m_NOPbT7G{c`UrjeG
z_6X;A-N}yVBb@hSN|?<;ZyC2s?Db*cx0E3Ikm1fUoMtVFXriwsdb>Y~J3t1kc*C1F
zw{as;N70a^6^poRQ^~fxn!eU0OW_*d<l!%-ljfTl%)^~uHSejZFHTa&L7*SnJ!K$X
z-luANCGLH1maEb7UX{6@&!uo#st?HZ5x4}7j*Tn4fu~&Yjk(D{t^J<U>dCh|GGxf3
zJua`OZyRc?#Hd{AuV5$~jkS<I#vTzVd|_X)bGm?Lgy-(*xe6TKhibe!NK?YhAaycm
zXa_O{Fk$L=et*9S&P-8}2%HFB7>A0m|A<oKp~C=!0<jCb8afVT4*XLduAi`~)CNDt
zj0&c|e4cJ9upgIPoGkjUSavFAD!dW&4cJm;gl3>cg!)bsc7-DC2=puvF3dWKfbE}k
zD!Pzzm#VZ<_UlH`BR{BS<Q6}Ukqdr(3g}L8`H|-BzO<$t%aLcBCg0)u_0@^_GMl;R
z<Bqu+BPZ79P2C7t3`FP?315oC_cQ!qYVY3Rl$X{{z-y?3^Io)abj;TgGrV#I@@bJM
zWqFPjlHn<gLbDV6{1$5J&qt{VmJa<Bis%c5I!zSH7_k({D4#Zs`-bnu##HV>pPT0r
zeHOcRedmC+soDc+7moXLp+|i6*QH#YtAAjkQ(SXtnYG|M^F{ipk;NLTxARwX&AGxh
z&&U<Jnub=yH<?`Dl~2UmPX#OEroA?>jF&cPGPS5gRBaq!3z>hQonvtpRuA45nd2B{
z`>t*93p_>{TrzOI^(ddj#Rt@^|MrcX4F)FkJ$!h5V`GbV3$oeYuKtAj*j7Q$@Fzcy
zl-GbyK}`F)2ep=an3)>@SsIdcIN#@_ovQy#$B`jab@Z;<e)lQr%{tX56=zShJ07wY
zQWkUP+g?1I2EQ|v2K&*REjs#P`_zaHqH!dJ&1!D0Y~5uoA_mqc>W{%yFlKTYa{xOJ
z)fjNRls9-+nWA%eYrfm=(vY5l=qKriPSms78~}&BoLG`u%f@5-DY!Fj>YB71^Ze8U
zS?go~n=pfjX+mMbd40QjuVKVbR>(e96ic7BjB8ISpt&)bCOTbs;z#aoBaxMlpAHQ?
z629^`ilbJfRrF8szZi`XT`$Nteoz#9vXAG)Ss9j~NFX&o-(4(|qpKg)I&?Y9t?cvX
zr^Z1bi17y|=tWKE*zxTXiyOBPS2jR5p|0SkFFEYs%5U7x*TFI&R2!Rhicd;X(bNnA
zCx>E{!NbB?nIdvHMjr8TZ7i#A@AIgX4mob(PKgervCdw=70Bd`l3MIq{rQK7fn4E;
zUkM6-VZjNd<)6DP<z~|WQSeHetS=AdN>`)Z`}FYGxK+HTP9=ct!3{^04P59WGW@`O
zw}5M^7y&z<FGP{URuCD*ZS`${WY<oN&CGn)%Yw!&NlB?T%6lGPi8$&b4d)g={CSAy
zcnCyuL<#7!HtHQy8U>?E=KAmM_2DtO`Jc~<`rEGYS)w+FpK&W#Gt>_`NPBM?+BEq=
zZ0er?o*R#fAHRq>99DG*95bvGD$eEm(s;Y$@U>I|VkG`!0mO(9BQ*5J$QEAuO!~KU
z@rdZk9zE~2mRvr#`t7kzd2VyLUj{jq-k1Y~1A0H2yS4iG!?wPp?cX_8`+;uvo&6`c
z|2G=re>k|W)A<n6qbz6NA6UW=)Rz_YVMeh85b?VImGY3Dmkq}Zb3-)K4{EiAXp~th
zj94ku*Le1j^G<eq6{u=xyeQBesd8~b3<;zYYbMl<{MJ?DEL<WLIDhx6c^7@8!dzD#
zI)X5hpiThbJ&dniyFYiOBe~IT$3UAny#ez)Y|f%FS^lqL{;P_92s8m(%e*R#_f~Og
z^$-zAY`DOp{kO=TJ!%pzBT*l24YiQStrc#^yqED?hvub6KJ!Cd(i5=XWvUZ}F-h(1
z?JdlnoFBudy;T4@CVTb00n3y0LL)~+uYI)}IYrJtG2m6Pn!8t`$GJggepz|B8A{o6
zbNTyyAci;0wL9Al@#n|c3!N)=LU(jR=SY|J9_(m{LmJo5;%u0|+a1c{^@GQ}dkxth
z+fS+;jEah4KX9PaNYn)#Td}oY4;fvbnCx~qVsg`yNk-1AaW$sO9DXn;c>K`H(yXwW
zr)18bf7&=u4>K1j(zFlPp?Ti)j!BtP=5*5<9U<kot$L}lfod-!3ac2tO;?u7er-3}
z?CZPBJb>iQmybyL#a2@eDlOepx|=d@o=ct*(RzhfvLA4sc%B<G%UzfoD-qybp|qU!
z^Flxtf5_XL8x~?hwL%l>x^CfL1}$p63C2rLI3pT_pCx@fVl{Y^%jD+uq0T164Py9V
zi}zl0Mm$t}U~nS7v1e5helg#|#9ThxH6@KIezM&1<cx_sj;or{z{}Lxz-x>KrRC*H
z3JTtE&~@$Y%(fLL<<O+6{U^N#zus-z!R`s5Oa%3aZOUFJrqZF0KowTIe`rVrHJj82
za=KCw>n}BRTgJu4O1ZncV?V%a0Euf}i}4n0zjLp9?oqeCF*C7}mp<J`wRY!dMNafB
zjp6Tp!npQ4-1ZYqmn?Sc+;n;FFZ>dLO~%Lo!dP6Y@}auw5Z0+qm-#PF1SKqAY~3jx
zHHt2Vym6aRQZ(>vQC>!>0oHejRp<Sp-(00uJrTG4m^mftcisCy*TUQH^qOH?8r+53
z0m^hcwzaP9>r@&i;)JQf4LTyn75*wV?yxJkSx~KYygw6^krY%i0FS&!bhT*tKB<M#
zaMLf$OgI6+M&iszRt{e%ITi}OfzW|M+Yr&o@ZO6c9}pPTM9Vk~Wj3BXdh`{MlRZjJ
z&%n@+5;B5U*3%1Xx9?@jcQY|H^)=LRK+zDPrvNDA@6UiTi(hCL*|TdG37~+;aG^`2
zw42J`G3;ehefNQJHb!%M#nc?f{<J<VmlZzl&Cq@HtRjsIQW^xWV%V=>cWH7*Sc(dO
zeqpQW`-iQE{YV1=-2fa+4lc<$pLc!wP(BI*sDvw=SWumO^;3O*XAbZ-<^YRoR)@v`
z)Fkilq&66%>z}9DGdQ|9Ec*m^?1cp*xFVAv7N?{`3|HC9hZr;env;s{@$@5Ic<{Dk
z5}<QFt0N??TI=P{dw^W4GXfmT*_cYM0G*z?u_@EE={SNQf(t@k@0tECBB$oz;o<w7
zt{`u)r~B68;v%4fDjXMbqcGuDSWt#toj+29&>u*IXioy3pthXvU${`>uqb^`*CqLA
z|A^hn?W8{7Awxz*G{9YVufmeyqWoq*Qn;Z>_~jqby;M?uq|HLfsdW9|IR*`!2dD_(
zJ(dxsB!(!?YbZ$bFRS#{Fg}4|`@RtU$K2sA_Cf`20_iEOBDSFR3S;XeIs;7=$OxdW
zG2du^Isbd=va?mROU+H$s|9rZpe3iOfaR)@M1jUj%55s9{9HF8BGEbSJ~2JrGQH(U
zhoEKGedl19Ivk+p5-T>Qfy_rX4xL6XwN{>g|2~lHWo6R5yu9a}@0QSUgo_zgM=(q)
zxaM-pgd|xJ53DN!`fxMUV%h^2`d{o>w4a$ub|avGnmI>Sj0v8k_)Gn-H!=IM%+D7N
zI?wAmt8cOaqvhOD%j4J7T_w>;NzW7RoG!UXL(E+|;p=HgpINv@i#Vm5{P`+~q^7Ds
zmg=+CK@;s>r)B>8DK~+eKi#}oM3Vtu;XQ-(*G=ESAx$lhL&-*S)iM$F7?yu<eChtM
z5@AfllFN#{eslCP<Xo;@Bgs`J1#sGlk=-0@HN3J!LSjX?)b~}rX9jIio*0yb^$4|D
zFECMCBzY=;R4k&AG}UA6=p7p@<3ZXq**d0OuNviX#0=Z174}8R?BkQ?920v|M%Wu3
zPEmtWmijpB!=uNT;+8iyC*<tpP^8N9r3Th~sF&~YgYvM_Pow!Kc=ybCOJ_F3_PvO1
z(%*Z-6|oz5pP1%{%JcE5G#!aGVV=T-`-I7wY@6RQb^KGyk??kxc{8wCO~Kv@%3_5x
zKOYI8`V`^T5N8-7NLWmOdKBz~RU-03U%q_#?!+h%g@z$cK|w8o5yQz%c=_`C3=ebs
zOY7QEBmb-3_Jr0a1;u@TKuQ8#>FP31ZelL4-0QP(A!ezg)WmNmYfFjv`dZ>_^yLz#
zQ~R)2>XXu9*d*sFkCEx^I2bpU%I!h^An%oWs%tB~GXCC~FEhEg@swAR?n~aj5n7IL
z$tBi8tRvyBi3lcJkE?#Zq^HTfDn(xTdR5+DHLehsxC-67r<zWOIvuQSf3xVl)8ze>
zyTh`&-=d%=RTe_{#bTfOsqrn0T-lrBAACCYLM1`9N$n7Lh0>#U4Qnc8dZ5){-BYm}
z#|>SV(8551(ij|{L${wAL4rUO)$@Hgi0qasI}n{j`yN6De?tx6Q$PJ(K(}9UV;1*>
z7c-pJy{Y;<EJ~Ed(Yi0Qj9lEf0<S0^G|`!`Vdsl98*}#F_2iplmLbc&ke83$rmESN
z947dw^wY8Gg2&TN*?D~qAde3|cC7ee!OqV=>mO?V{^55$cBheRexd4tkX|L2ai+G}
zxjD;1A}(*O7}X>CxG8Q6KB42Fk{sT&eu1%)mpi0IFB#sbOZw(77!CrFOqsD4biZDq
zr*5B*bbGia_C(I^S=k)1Rao*}{?#9RN#OZaSol8?9&nTa@eqj_7kjUVmOc?8D?Sn}
z_xGDtEIV>gK>tA~^{qSPAmqA>yh1K78jMfW8N5*ZGw0*X!4Fq9@dEt9{1I*I=w<~9
zM~lycxhvj)9|XZDQ$;W7%td@-3W{et0HsjMf;s>cMRi*X5Ugl$@ZQN%=5jqQbVIMa
z>c0IdUj75^fw_=z>EA9K+EJjAv}E>Ck!5uS&K&%R$sxNu(8bq1J_{J`8xXK_@&R)x
zZuh<5M=)Le!xditz~cRf0Wn)!wGlJGGXe*E?j5hp>AuxVqY4rVPPy#7ouu<>c5L-Q
z4Gbc|G!2FY2L&l3D}{$duvdpW>o7T+tH`o><zZJI0)=L%Plqs0x5a7H8AjpP$O=>H
zF5?YOg+=#-!&hHvir|OnFheeIHMW8`M%R;c-62OVB3O~rIdMJi@0HiSu_j*oq1&?Z
z+ZcFl{t%C3J>##l_qyW`EBJAK+%|b^b;BjZWCKWc_vCbPiSq?WlHbT6@vkp&W)rXY
z>5yuc6+(&POw|8U6zQI?D<kuWK=O<B>8<if*Q!X0H=a9dl?_T%mddMGn!Ga;b=8!7
z*mEV;MBX-@(QAfWWsqoDd4ZX?gh?bDnVj;z$4fKB*ZZzZgktDgK)w$rpuV*=@!h+3
zWQB<~cJRydd^<Q!jZbY3I8Su&pzfYOsj6v}MjBAtQ`hkHM#s|3+=j`C%s9gf-Dbs~
z;&njODI_?|HT&ub9O@t6m7qGL`6{%C&v0i<Q+9|b!6Vhdvc)Hze=@g=Sh(-Hw8+64
z2N4~yJr$rVGm%?GohZ{}X;Di~?Mpy-UggTc-13SFWwCb?^oAvN0SGiQ2VUG&R4Wt8
zNR$?KHseUBeBs|1<P##jiC$mfhH*`ha8l$Ao-(-_R2MWLh`6SEQ~FN=GmRU%xPS>b
ze7GmrQHbQBYz`{X0{uQrN8I@zG-q)roXfo+kdu3!h_HiLo2EwpD><fSFRC+1T&Rb+
zr9>b+(~9(&+QrKj{7OaxnDg?|P_!s%pH7Qvx7?iOUbQY0#YbA;)*6uWYc3LSt?4ES
z3kxHsclMi^xA0UTa#1+11oW=0jVvpxR%1inn8=F}l*lOPDs+xYfcj{9ZD?X_oVH8=
z>{X^e;M9&M{GsumoUr^&<)bynFV_9Gcz{gdSq+c);LUfJp@|#uP<CE~CWYJ}UY_84
zT=3Z7EE`9-_V5+qi~{LLVWXe3bF_yOztanTS?9^X756oQ*JkSaUXOj_&*%)hW8<6+
zpIG+hskCXo$~x53RDwDRb*i!x%BsN!6k4=1x#E;fG$WY%f>Q3jrk)q!EfTY_ZhXSg
zjZ;^aPu70aP*>Wh5uWkbH?`OKnuec1-ay?q-91^d-2A*}w`_h?KX)rSNU%&<+mD`a
zsi&muZV5A|lI_{%sLrF*;!FwGGfjH$9&;^03<-o9JME=<ZqaIG%FoIMf-J)Z=C%!|
zh7Al1AP}p5{igHcN&pTTd5^PYmSn6h7qkV5T|{&tlcLfOz~nsba_@DkJjzKfi?Veg
zlLj?5K-=nkPmaOfj>46!reNQ7XD5>)+~AI)##iN1JqSxP<2dc!rH!CYXYJaxmZuqy
zKfY9Y8ihIVheUx3I#>b>HTs8#w>oOWQ~?&Cge?hjW5^0YPxBfg0`zzmfSo3iT_Mnc
z0c+T1*HI6e&l(x&xtjRw&DqZ`*3#9d<uxqvXS3_zR7=a+n#{&XCN<S^c%IPpPBH)b
zo-^K03%qXI5zWl&cS76K&a~xgsgPVEKkQC%qY_Sbv`YwWt%<77*Q~?pGJd%wTzDYo
z@kpGRF3w2b=p^(9NeX(wsv}e)J@}6{BR3TBPwep_rV@2#=RC;-TcibyK8{!Rx3@)f
z2M1w!7^ZL4)gtMeM7%t+<cGzF1V_6^sv{=VueUsLa45OEw_97o12=x6jxWXE%(N~(
zWb>dH&jF(>;x)L4qQXXx{1dmh+>nV+ADUGkbxOyJ>sl50ew-GQ?lmgUCp)!vSRsPN
zZOXsBQbjHyS>Xr1j~pI;7S0bHX^KipKCla5f{3lA<M2pqysNgBsZAq7iO0XR?<5?|
zSg~R>4$C~pE8Nv+wvq&6m)|!PxGG3UoN;B>x-49Qf_fu1ZWCbAmiWUoy4B;rg#vl$
zSKg&H*3}`MnVFr9U`?2)0AgnLFYkUmVueO>MOI}bDm^?s{m@U1bN44H1`vdV83a)g
z#l7Y#=T6k-4oEH#Q9$sXA3dv+9;*^Pevh>j3lKj_Z_;g>V&dekSrn&;9UDq;#@Z<M
zHt%)+b&FM*e9MyU^t&788k)OXJATC`-0s)xF{unyWsN>aj!ls(=i_UZ+3<+tM5cq<
zBNK)laspmyLUYzn2qUZZQ+0Zn!NzPdem3p6aN&ES0P`eK9pn1cRCVG2-DKq`w*Hbc
ze>GG1n8Nj`3=f?jJ6@ZLTRi5rv$WXCcdCh%*ezn?=$_vld0St2#AKK~*n&|>*fpGU
z2{e<E%gPv^?+tM8D6@$g8?z*swTK8Yq}ze)!465ukatn}o%hiH+(*qFve!Nn5xa?z
zLJ_sWf^fK`KgqG-2`co8{Pow#kinu4wNwr95NNVswkOyD32^vnqV@`LwD91JIxCSZ
z7<zs<s<>DW4M1370!Kr-V<p#v2_eY2f>}_js{2(@R9a%4j<Y`TEnd@RI_p<yrJQD7
z(OE38@3RwH3AP(jG&KtoJ{FY`2YSi?nXEj!>}%CQd5S5S6HObEnr#e>HN>7PVWp0<
z942l;kLuMj*epMu88F#$x!3<|v7N()+mhl<IG)a)e-PUKBfUIyxSe6XKY=ugOq<wY
zYr}?jhZ2Uy%0v9(W9?>$3xhZ5G7jE5CD@_;7!i5K;~ltz?mCq_IKtWXmMC{!Wdqj9
zjBxJvUcnEod0;vvk)zIwopz(57mq9bAycuMpx$a0!Wmne`b4Pxhn1&rva42_hzPG9
zO2U>A<RGp+pjUqME^FP}%2QLC0*e=$e5J{#5&@%tJR`UoMb{w<$eI3EhOEotv?)9a
zvg82ksP$|vbj;Qv0m5T@tdV{@QaLgvCr4O-Lwtca5a|I=@WWU;uCG2?L0w;@GoxeL
za-@w4=u9S)8H97Ajq9!-86G9WDlDc8a?Z?9DTESd(=Uuo&&XYe8DAb4-Crs!xq3|Q
zEhlBZU3NTqe=T=-kK^WgEL2U<%hcWid)L^P5!QI0YdHBwG<Lews~9?m`kPTRsK8lZ
zkvYpWS!i^H{d}LlsxN%oeJdREdFF+?8KSS_7kKS_<%}79M(a0pq%ZibAjkWOSWvp{
z_w<rGJ39#(m9VOvSxy7GClrr$xkgGO(SL2Iliwlgunv)ot6kV@HTj=mBHVi8=7e#A
zY}agh7WZRGdi}yx2^n?-GzjsC;tX`S6UWv2Itp5mB}reF*8RT+g^<b(C(1mL8}IIJ
zDj!2eit9b)jZo&_!TMH5UwnO?+2eIQx3#pt?|N;mAW|fmDT##HjK9H6aw-V7zglGC
zbV@pdv`K{&8a^|#w`zBDFS)P!cyxula^Hff;m#=I(A}-O7Q+qSR(=dfOv>Jz@?d4f
z+edhHH~IaPR-PVKJ<{@xz47H0!>$U|^5@d5v25hL+%uc~l|SRWf`qSm_tj71hzti|
zH!d9B1jiE(S5jEgpwv>JncJ4ontKELd;u2)7woOeV)VdXW#wmaDuO#(1A{kxI#xe!
zhYF#h+~Z3kmk3mOyN^JX$O|I6z#mxdhYvq3$rw#PeDE+F^wQF)_`&E~BP_v(#$&qe
z6hxlKRc#m;j5u6Aq>QSS!qOS@_MjAleCa{XNH&Kgy%0>Rvsph?6|2Wlo2IjUWE1^s
z=qG6Sv(}!JVj373$qs1s^II=-#Phwrx#kTGf7IZIqoxwJoM7kRv0*WgFGY#%dOuXU
zpjK^hDrD9&`gF|6EDz6nGCz8*Y)px=cPLqNq=lBt9DdW$So2zw`hc8k8aGl@Zc8RQ
z*CNM*z1{sIg$p9)K8+9E*pmO8{X`XO$4|?7j(C-P2J$Dh)5E9fd_p+lD;R4d6&kNK
zeF~E%w=>ZD8Z9V`tq)kM%1i$(*gvJIHr}tL5T?1zDe8kRLpI=Y!=Q1!lX>cI&5W2Y
zA`E+^ex)qcXMV{H<H<-orW}(g!rUqo4@bb%mWfMg!qW|gSBc-QocRmsjd`<c+e(cl
zEk7bPKv_;iH87l0bX>Ary!;}jhuhB^&>vSiVjNNWCoE<*K#|1G0HL|}XObF3LWQq}
z+a_Gpeo*%Lg>$*LjJzCaxOGCYyqxa&%d#WVH2Dtwy^kZK1hm=;j~E2?TlFwRm;YcC
zmg2U14cs7QmV9HE$MJFPvWmUVnHra0D<$*)=;Z{$ORx3u4e}@ZHa*}-E_*#)98`At
zQw@n%3$%?Y97ImB<-6&X?Aj#<1g`5_lW{CcZ2f*Ue-t1JiJgU}U%zf<Bw!1G%8`~`
z3!5Dj%*NX-|FTQh3rlQ(<;&DRccac#lsIoWYKW%-tABQG@%vKM0F;zT&X>1IvMMRa
zTY-#6)Bn4$+|Fzhx-?b;*xQ1S{}F5ZZ>vp-G#y%#a&vPPMfnd1|9-R9VWL{99(C7)
zgM;Kht%aB3hfC=Qg^szf<yjVIP`mm*$51uzyg1o7b=?WSFqiE*pG^*ndJ3hG!igFg
zf>7cre_q@7crK9mA`}!cKSMdgbsdLz=lS70i<c%-CbNqd<p?Ph)ZDXPn4cPYG<RW7
zX`eML%8QuYlWD8JC;L%YO^nEqS5{W`kBrc8hPU3xKG;{Url$h^evqsOFLbyrJJ%`H
zoJT)D{3^O@{t2AlD7RX%D*xKaqJhro!xvV*SyR*D3v(UIi+UG=6lKQHJfN(lMHFC-
zEH91x*YA<U7ALHbW<MAg87Yq82aRYbAY&-z`RA=S?CKQiDjBzWqPs$eC|TqxT@8Ni
z)=QJaT#})HwWDCJ4`L5QaaJKuooxQfz(MFt0Z|Fqk3}tY>n*YNcdmxlft0Lu3ZnVi
z-1E754t=aBFYY^4JX`s=b$dM8YETwW#BT<FUi;87+08P)4SCSKTcZ)^x0OP$fI?h$
zZtj`J(Syd24LLEF(utgA>Y-JlBPRh%K*-xl3OAzk4(B2kQZ&xMCsRYki$mr{T^9?0
z{oquQ5F~rApj3)W9K*SECLBH&ks>9c=CGG(2U%JBpiF~k06LEM{~<hL?$Y&hKlk@%
zL!J53f<5XRWtQhsmiPR_9muX{t<&)+c3VA*!;=5hC;wYnbSt)Z_1k?P{(s6Nx?EHW
zjYl>)^YsB4`xl%3MG<l3LJ=87azraeR@Rii*Av4FEsTYB8Pa-s$&D;LvO~vK4^v=J
zewG_XlOoUM*EpbJV9@F7EqB#W${#^duJ)GIZ-3NmxPPUl8h*{dpVY||T#=<>k9viD
z{fAaZ9{%m$n#rpCS>jx6)!}fWOMqrA*Pl_df%3kj146UsWAKhJ3H~YENBR$~_SOE)
zKoWcMUHaxK6(rE4wr6ttx|Qdm-OL^?`3+H8hjtw5;dW2@tez-Z&dU*Q1a#^)=;Tk0
zJMUWXCiKrR;M%_ABjKov0VVa$E!iRH*S9O78U*94Y+~tDr?5ilQJhK4xh_LKPv(}Z
zUM+p<mcIEf>Lv|)cc|(}mC76Q{@U?Ofz&wmf6nB6R$tPon*x!dt6%rF`oAV^{l7`@
z{ux@le>j;toM@CqYhZJ8b85>t`fC2ETa;p2JtA*HY#RMZP<gN|t^4+Emu(^j&?4gw
z`b`OgK;duE5gsAZw7Q$q@%ec~ApyzWewIwve-%|^NESheRWZzT<rTLb>vgom++|gX
znssDVHRNMY^!xm&oKJa({L<^!7x63H0i6F)P#>R>;k#ya^6n*%`(Vi+<^a+W?ng1~
z(&}e_IKK(^ZilUwj!p<Fa!gF(j}ZF9|9bO0EIg9UsKz-O&KZFOnIuy}TpT#d)tzlk
z7;gT@F5A)kPxlD?cUJ$uxm*9EEeHP#Z?|)juB_Yg+&^96wES4hIac4Q-bZs1t1I=l
zB_vWNWXL~${2(i=o_C7<Mz?OA#>);0FE5NMhOLfNrI0N~8KJ&Fe`FstKl+e|HZe1M
zGWVxq;`>x)Ru(aDwpN8nPVe6(E<fM;kFNf0|DkyK;MTtj0G$8uAL5w%|3fQ)ZuH-E
zG@su84|M<up?_D-JoxkfeB}SOg{@T;Tm1c=CeL;#C|S4g;qLFvnb+r9I+pmNt?U-(
zvI(s=o7pjXo!l|zPZs!#^F(#Y+<@M4*~@m;-aA%DPyBAuzi~BBOPFRw+M%o0NK=|z
zywJ@vH&LrF`JP7f7ku$cuh@gx&!9=AD7x_bo(QBw2p_n;eY#db)URV%2HoPlb7SQx
zm}i!~>pg@TqpL*bwOy8ZY=)Y7d#pXeHhy_q@z%&Q_eI~0ZlM*qiKi{)W~g?5-5Ca1
z4eQ6AvIc}WTtD8BY5E~~ps{%6eHSNBDK67lWY5eEn0HMtTedD6e0eFkEM&3uDw~L4
zMWyViCi}lv9y~j&g*zPGw=pa(Gx`Fb#P&b^db~7k47x@G=~W`$bFMQTW*BZ^MSTB?
zK5Ai_m-k*gs@iIGqE^nDc}3*n^H6V=3>gY2mh^ShU!Vp-{N2lb5aPfKVUuA$&`wc<
z`P_lEyB(NMZ#=OxjH%~pOz^LNzD`w!FX_rvqX;^V=H<7p*+IX`FK3k4@_>SSIF(~@
zz4!6>r`C#tf9}Dv&8&68w9;h3X;ydsCrkF<87oYkYy*Q|c&(~&9JCB~%iAcn$)>j`
z>S%1WDDkvUR-RUIRjpQn+m|$bhCO_^HDE{2$vI*t(?^M&MAZr*;PLdcJ6%6B&{4?z
z^LKw%jBjPdq*iY~T`oziZ7n{<O7CJ|?XQ&``n0k`f3E!gozi5-zkNw|!!lG>dltvv
z@CP={3?4mo0%P6@DV6hGcsv?6y8bWD7xd*LU5Pc>yRs&ct1=-EwDEX%@F}@GhbxRH
zs@C>iy4sokzO};Im();h{rR6-fR*k0->@LlS2hu?bvn70BMVYJAspdFbN$x~mzOrq
z&2)B1F3Lz`6h-|uJhr-4=jPML=Q~`9j)i_=V<!hXF!%92CSh6Ep%kcM3!BKF3o&)V
zK$?6g^cJD~p^v;##?4O2#ZH#xK>tR{=)yuBXbyz@7D11D0}x{Dq)nvX`2doh)96ls
zOW@I_;rtPip$^x-`}Np{Cjxx?f@&dgBWfyQR2dYFhIax3D=xR0W4i5#?7+_c^Zq0>
z;z0%ojmQp|-eef`WNvXp^vRrdd(!ZPQSa3bCo3JOClT|vi17lrDJp0hK*lvfgvZY0
z27oAAK~=3n3h{z=XFK-(@nf}L)~<-(<Stf_=?MK$hmpeRiFU^k%n$V;gjS&n#CGKI
z4PK?g;rJ`G+)gH?>`ju$Bg#>T_pu%7uRj#F5Fj%1CZ*?U3UI%5*XIGnWwD!wilbzE
z13pTzI4j306i3#^c2uLxx63kj2e2|0S8{QBIT!84nNG7l+k|OqZMI^9TsTx~n|i-L
zIpu}v*@U1FA!%4N^OHw0tSY}cWM(iUTQnXzn~rWun3JpJyfn+p#6OmYe)qjP#V#X$
z#4sO#0_O1<h-*b|WWIF<{{fi(a$T=MOvuI+0UOKt7ocd3jC#o}ghc?{kS)LNcASZ|
zZh5g|S#BV3{|hWN6hEGzggiPl)JT%aDpwl{0HX7`#j`yQ5=EC}OUBzD@I0y#Ew-r}
z!kD60W8<46mRN^+^ID|IXs|Y~8{#RNi6B;ExOJ9X)q7?C<nEwhE89aNf}OcLWr#WC
zUiJ&0pEV98e7bshlTB=U)j#*Y{4q~B(dvuJj`?1~u<{iAz8i!*rlKOWMp65dmRhnf
z?Yf*DYTvUPtZE#v7W&DFjT`JdAVVfXK!;!9o*C!}LoKvCcxQwb7%Gy9BWev@&qas_
zssUa>-Y7OJiw{A~FP!h^QK#B(iPMNKq+*|y(cH9UFW)a%V54t=x=y1XQ;!wT^(W|;
zxI)Bna$*A0<|R?-&_6g>=epF3iO!n}4?p7yU;6DSN(_O=BfldXz*l(c%LovIgEFyg
z8(Ex4#E#lbE~G9WSZ=kd>iglzQr%zQ=J5T_M(gFp>FZD(0VLf!*=^96tecD2trs_k
zkaoZ>mQ__XzP*?7t%NuZAZQ4U7nJrn*Q*{ZijtUnG_hTQt2R+1Jw_<DF~v0jMEkY&
z0uBfy$`BhwtSDBaY5k88muV!uzIw7OaSYz%DK0Qq{=r)<q*uI@1mPMr<PNIwCKGSg
z()=Qx4lXXSV`(ZLMLGctdpyGN9_PBsFGtCcvH3C3W`pd-$D$!DAi89evEja8z3UV5
z-?yhXCNEwvGc(IuUYbYO9hbdOXewO-s^FZR9W!rsvJsrXR4!xg!G5?AP~%^r{SXTS
zpeH9+IoHi2n&BPBZ>0(v3e{q$VZ4L)CY}m2mF4uS#(RPf4UPvwycBITgvex3^mKjO
zRMVzh#IN{vdP`%`$$Bh0VshPfuEV)okb)9*-bxi?_F^z3Fc_(HVqL;qUCio6LD55-
z#fu}HTd!z8Vh9{x1sb8>w-HNB^u@YTIxbI54HF8cHqi3ugO*3F|B))fa|TrP66<Y^
z|4gvLkxM#7E{hJ)vH3(W4Etr)=Fr*tWO8H}st8zCVs`Ns$52R^N#aXEfZ@Tne>v#g
zI%3Yy)k1l3!&rCuPz%wVfb&ntnu3iZ<O*;oiB#By8VGFB2t%2ZcrDS!2z_QUY%NUi
z9Ka4M#^>BQa|UU8VnyvboMU;47cL?PfGhA71?MMEpC;qdpCuF|F_a-39|ApJO=w@#
z7=<~<pktKCRltbW{poH;m5NzgUOn?TZp*T$WA9R3U1rY6GV6(onYEpdPaN(h3rFY;
zL^m`y4}Ul)@#ahpyQk*X=p6|RRDKb+k{+r)<!B%E+J9eJ;^Or*ho=rnRLvK8!gWoK
z+#7Ro{hsdMR4PyDwvIe<V!YxS-Sd#lhW4g`w(Ch-&MBr|{z!#-gug{aSsq5b%E(a8
ztYmo9z06RWBnB-wS+?!XEiG%gTP`V-1RpclfcYN}phZ-An0vTA-;M<WqHi#3k)&Pl
z7mDIbAaX;?%<Kh?%iZ!u8=+Pxvtb8x)y|&#sJk#@u-#gK$;8Afq1_xJVE4ThZr3*5
zDJXFIWi0@;>UH$=j>pV(Iq(|vrX3VKzJDR`6c0V#Rn4Z=)5J(I;lSeCjVzb&t1bb3
zRiev}p`mnXVP+FFE<U2x=~d&vw%xlAcl1J_%tJmFsPUzWGsa|JKWb9PKD*prHoLUA
zk&=d{WTJ26`>$#a2t+f1{q`umBI!6k@~wE8V*h~y`f2K^uFHQdjJQ^w?c>@Y=mx#v
zzXU?Iq6^dm4;v|!(Dm!Nup`HBuvceeYxQv&$IKBDKT(X7)QA4bY3pA{AAi!=#cz2K
z=9nI9fB~(vyLUghf1eU+O$@<&ewUzvLp%nq(+_Lg?={io#J^@nw?j_*E==KN*xj!K
zla@~iTu_#ofZkF?-J&fxFmCd(;#TA5PKPkf{P0Zw+GqXw^XD^WLz^&OgIQl+|MmEY
zLjE4Fd9UB!(oC?X{2?{GZezXqDfnD`1!5cIDsOVBr&8cwPo8+`EAmAYwcVS6^aZ|3
zc!5(ehg+UyHwSk3uy`+?WU1qRg|X$$X^e((^YlC*Ag~9UA!TiS5?cfbPRhue3@E&K
zkdZ+n%&p$l<MLOCyeCB5FJbb|=Zb}O_!Mx1cWe6=zd>lnR5nCFC3Eqzs5MRP#@DN8
z_xyM2INGvnC-)yYvIWfnmM3eVY(5IX{MkHcJ)CCTTHo=oT8e_Cql06LMzr;_3&?Lg
zd-?J)%Kj;M#M!r<0lN8t0@wIy>oBiFV(g>LaA12dr<%;Hm1D8bly5J^ccAFo5$xz&
zN$=+cwJ^rJ|1%U2e5xSWNUfSc4?X$m$O)(IgS7p1aT^{p3u}7ioxgD5Ed)nZQlOO@
zE4A^*mk_=1#(`&klZRh^38j^et^EN@8ehzG>INgBK{o5UEr?OrVMp<T<ywJ|F9rw2
zv|AY;vxuIpe|AA;-r`J=Ia%OQGE*Ox<1&O#j;|ZbmQ_+(zK2<QKQV=9j8{&smzIH{
zA(pl*%u)ozYsuYDy;XW=pp7#4o2Iw#*7S(zo9alFKt8iQVDq}p2SG0501Vw^_Q#KV
zU)A<q`Fs+BW?VXXvLeeZ=0i|5eL*cAiIc~`5JT0Ithc-#vHQ$Sr#DXA-$#bTA2agP
zL7cy=Q9Iw331Z-HV03?27f}=PkcrL1si{ZtUdj#E)zt${B+Br~mRBB#4w;Zg1UKCK
z3+F}U@bK+kPU3J$NlA6yqY)uFUj+cvwlX0H$U#K2rbc8!{gw9PGw@1E?j+d3eYjks
zc(k!hd{;bi*G&-)4l2|k`0d;W4MuO=<uhn{ko@+9*nl@XN_I4EbH6Mov3N_+cBCbn
zMIc0eLx#LjRhm3w?Ol~sSbWgJLz&VrQ!~w^o+D8+lL{30@%xrEE)?H!B63_71%PFq
zzI@3gB?IB^HEC&SBBJo{TR<{fuJd)ISbvKKlfDOdJI3KD-hrUD00D||T5nAG)>2^n
zA<o?InNfq3mUM`Uefae0Csb_F$A02jP*DGP{)~94ID2e*Y$QenLztRXA4-t8l7T|@
z$2Bz_Bx#6y2J`Z1d8skc65T<8B8yC?LxlJFHiQIYc(?oS-xf{Ax><?mmx^D%ro&x9
zTa!v*O3vDb#d(@5QlEr(?d=aacWlkyTwJorwa1OT<TmVG^6i72cp4fyJh}vXFsMY?
zt-$~28L6{G;Z3M8y``WI(~W(;s!Z74i&@bfF4sL_2TygFUi6c3b{591m48XTSKD-g
zjzdU@5i!F@l*|i@U<wYEWG9z*NpEGar*Un}+rGiwi?J#Jw)spzddx4s1njFrVYEuh
z11~RFOW47EQae9=`V^5oEa+YRXelEhyl4al!T^SiBj5-pZoD9IH1J@6M%1??x-a<>
zhvLi2S;CaYDx7-P=al=my~|R7WnLU*I84cXR6Thg-_36sMg0NC_UVh+2mR@=qp3|l
zRlK94o!QGrzlOiZ@?JADQz?vz?lzj8ZTD(Jm&SWYM0fovoS$a7gbh$nzbZ!>xU&-6
zulw?pDm<gX4gLBQJI=jD`!)pyN;b~R%X>tyTeh*CQ@lb6L8;_fk>vY*7^MB?YI=Bj
zdTl3fyBIJhTm1lF$x{q8?WnqT^4+zQWwb<({?R>8M6w~SsIyd<ubNQb+c783F2=6b
z(&Ab&H~Eor^XB*P_j*nHMr~WH3w3E?(+|1PG2Kvu2~G}re#&KG9TbxpUVhn{sGe3c
zFyC)2umCB{*9SU9qRq*63`!R-k`&W+5{}TSM;1$(AbDU$DJHo#Q5%~6zgD(eFhn@=
zXN-cYl*o<aFH{VVw~CQ*T{SiapE94?mHWfOX(V0y!{;=Zn*9))7Gb8RcZYmS`838Q
z*Dx9qP#y0(pIE-Iz+))<fVOOrSGd-(a%>sBSkLUVs5fsGmz3N9i}7*9mbY#?WJ$hc
zyf;5Pd)W&DSG%*kVK^ZF?th@u!=dRuAHQ+U!HVF3c#~6@Wj{_CuDw>>4qxKRd}ZaL
z*rW!VkA?^jeCaZ$IH6@}B5!9SAc)HkPxo{D+ah=oeQ5ew2<XXw++KU}-hW+dCrX4H
z>+ik2-CZ8giMDkt`)5?yIp4q}5bAJv#O{-)%%h^C-`>cM%+1~XFyik+he|qmmpn*u
zadG#bJoyL}CGX^9Zi+Vu1g}s+K4s%MMP((bHVl9zw0^71wz^&NAT_2eukq}3tn7uo
z@(p>syfj_>`u%q~^L@U**kf?&Ql39D>p;(Bym(x<#g=ew!5UcQ+w!qWZSG&gjxz~6
zWL(YBKmI~kjD7lCY5<qU{`Xs4%bM!7vNh9euJcQJGe5yC=Vvv_aVHIjT*+_qf|dJR
zy*DW-Y55dyU2&ZH&`@zFpvZ1p0vy4$$QLw(9IVB75aB0Gf~x7<y_GV4^G}NR`KIE?
zb7`r%5pPg69jmj&I%K_7$IV7H%KCtjrSEsPW4!4Gu-mvI>X21TW#7Avm?giDi;Ftj
zyyH&w>CG5lXdxgdB*va*QJ6A4q(GTzq~LB+7EjW)CMPG4+7B{BZsE}@x@$jvQ8?!O
zhRA<;=vi8#L1awc8p3^dBG}{eKOxSGW8e{mykE(j^qHzXPyjYt^GY|c0EX;g#3hs*
z#5Zz2yh{|BEnjyhVO$L9$Wd-=pzppqXl{kGQxW|m4wdk*U3`zKb!nJ|NQE(RaTjdV
zikIjrXr*Oq>1qYE<z(h*34lh}n`hb>Tt5kW-ie33Ll~Imyi7(owG{zxh1hY!+ZPqn
z)F$UxTut8regCjtIw8ic7z$WqDG(rPxQ8X|HhgA+q%o+DEsu8{6Z6;`;e>;vGI9b}
zZMWF0(icpxIDq4l?65S^C#m9T3nBZndcmB5`+V6qHvVmf!G^FJKQOO36`Kn=vIn?w
z;faZ|nf^ZNv3-b)?$*v)>Kip?<~O&vN=ZnpyQs9hHa2}NdS94r4mWUu0+Kx)vgD3A
zbR`yp>Y4qshUE{tbapNptGzetxLL18*<EGF!_&d`UOfEmrKd{!J#oco;|mw<@VsmE
zoSwx}U2GF4BR?x~?p$1qnaHj0A3!!L?=#U8XHTQen?EL=7~9Zbo8M?)Cn4cRt=QIa
zXxHSK6<%?T(Rp_ggnV->eyjmwa~q-_iQ2hzfIo2PLqkI|7_oqTK_}Hs4D-;=v%Vmo
zwEfN(h&gWCyY~?$`+|=74#9Z!OcVMY=gvZ3pTdT6Jp};;+JtE+fU_<tDczhMGqkp`
zv1i(3nBGLYefvG=rEUTOP*1zOe#g0I`*u)p=@#t52LertX=&|+up7-e#is!Q8!3p-
z-?n}G+TcnL*k0raHX?O*+-b8fZYcqN5MmH<#ZZeKxaEPFj^!Z35;h(l765Ebtrh}c
z1Eki~F-id+Cu-KGf6dB~@kyb@#F*ypW})QGLV_VofhS5lU@8ZjGdDxx;~gC4u49+i
z{ruVU`AdW7J~yz}0svQ6?sqD@cqo{Qfqp-M2bI+tFTqB|yO)N12|etEskzSwK3*|0
z5|6Eo8}@3{g8SW+o2&P|AxRb5(CbG>H^B+`FfCP7C>+I982tLH%*-R~leB~RorZ?a
zR3Y+*8U<T&M)wjyk4_%-PM)mqGozZ2lHG>)em7Fw;TPfzV6Ca?B6<CKg7%f7tf_Ty
z!JB;)g88=a@|Gy->Crs;co$!UU#{lI3<3NDg&p|-WE9n=nTXf}GY+(aKZnsG`%DXe
z3&Z|4M6md0#S50BH(F2222W*m44LE%2`0}`g)htw14u~Vu*!#+ydhrp{jE6h4nhrE
zCSTty%zabBV&ov3ZcP&|k^jhB;mwN^qTlgOU3E1CVU*QT<Ux`*@)Qy=ZF)^Fx@e8Q
z8CKY!*CGyrw!Pim<sIu?rHnUR{5QPTUBvwS<K?q(GMZXi-2+f;p^B_#*Yol5xknVn
z&{9z#+yumm*NinrxG^@1NfiKPpO;0!{VWR@vk5s&P*PYxW_Ol<C%5+RJz^MisKWg!
znVkxqS&EvP@l@e?d3nEQd&A17Pwb-pTw1D_bk3&t3sXgipjwgl+e>d^<br?0q}?v(
z`*vLnv8+z}2Hjl@3?A@s^#eh{JeQj@vQ<)ML3VV}PbDTQ7)q(j<hOCh>g9;Ew=d<t
zWMge_xshG|>`=r3tA$%;Uj+}ZZPKXIT$XC(mu@Xg$UY7)m+CyfRYFoSzO2Vb;kEL<
zI>11#5estdWUFSIjX<bq_aNZ*jSu6`o;@Qc%*%^_lQN>+whbXvZ?(vVc;*e<Zkj2(
zF&wb|A-4M4knOCxzWzRl+p`u=gD^GR*ann#;XqL~5FQ{<>dnqmW3#ve1njix`POwE
z-e>68SRza^W*(050wR(!ubc0yLtXC`%1I#c^D^_K%;GPB$HX)BW^0o@T8a)N!V$oU
z?{pd&%FoVNNYtF>f&*bey5hFm-{G6Wi~N?C`(nqj!Isswu(_1o0>aa8?%cE7a%`J?
zezGwi0dPjoh4!b*vYkM8W~>9(fdgwn5j<VS_sfqD)*#|Y#2*?Bg-rRFXm$q??d8iq
zZ~H2k|I1K)b|X1=qo5>c^TYg_rltqbbex_)k(Zx8I@olgSa<&S5AiU&H`_<-riXQ`
z?d%+#<zBTUo+C4`nVT;&0bKt4`O#ljuh-%F(4DcjYY(|B&G!D)$4+BwlqPD}q4fe|
zMdi3ni!QxgQ`z#OBj=_PFKc3Px6@=lZ`gql#Ox~VLl&<F^i%ua^bKm<ZdKb=-Q3(W
zIehE#!BX?$%<Dy;>a((1u3gV(`kM97VIuRD?a`_F@T`%E=@pO!;=}$-^Qgt)U^s_3
zvEDm%&QwvNe0%~M7S`NLaac_g-8o?@&i+$0yhyM;;X7%BYbqw2)+C3&PK>-1&l}Pg
z)^E{ar_Oh81jgXwXlLdwQI|DrazQ&@|MTnbY5VDK@2h(w*edu4D1K5s#qji;!lv*+
z+k6v;cG0FEMI))EC^s~!Dl>jxS-DeO^`HB<ORR9sQMWy}nlu>qEGdbR)h-MRas`KT
z1H=;fn(uE{-dXvVz+tZ1w<#MN-hTC;-&%f^Tu!^9&wlXMQ8$P6mniA;<f+Q7e-GTT
zIhxU3^#1kk{^P6ZmQBpm;ktkA5_3=Xd3T&?!Qm1UwOKA6#v_k<RmA=7Msczlg$F5o
zASzXMV==S(MscnGpFTpec5cLBLB2aS7u93#rKk$0ZuQ7&#lDK`;H)2x_Pr>*w#s$a
zzt4RPJG#1xt3v|LdhYwTxsRI!{;c4NJ3s$bpYopxB1m1`-MYGgs~Y-r*8l#lPhY)X
z-Mp0)m)klfkAErlQ|>$X>;HV@|F;+Ro`j>LASM;LgS%h1pzFH4cnSyaE=tv?-}n~>
zK}F>+!1a5DyD4s?i<?ovn*Cr{eS5nX_%#?$ns1KyU3&D?uAOqZL(<jt!VJErPLO5T
z4KFM{rjdL)MBcQ$V0TDJ$i8J$HCW-B<2`c414a4yj%QlhF4dwd-**nKSqP3?;QL66
znr^|ZJCI^pXV}qR<UIdsP;lvJt5*pDxWIO8ut?b8Ph$2-h>!n`EW3MGy3@8qXQNkT
z$9I(k0)MYX%<`+he+@-lL&HxL?Cp9wT?7f~&r_vp&rod-v~Bve>M$i9WtZ6G9UvEQ
zHSe#ToSGL#)`jZcTZ(gvQHaug^r7U<h!I;Smu*4Hl6I^|c)I?p)w>`}eQ`($4BQ2*
zwwuBNQ-<oTG_PK{LO}r~_kyCUkd2COgnBWHZgB?^RCqg*re?p*UXb9&j~_p&5V|xs
zz_W{bL$1ympVF>z$NK_Js8Fw(!{oJ3&<_`4uKN7>4Jc=2Z=$dgpNmf)pK~et_3PIe
zC<%oL?f^bQd^*$!MMXUR8O0q!n6P%HeFRek@p5cmwo`>x$do&b_f!Hi^@g=59-CXt
zbv~=O<0ND+y3)0cZ`=TZaSJNxpGCFsc<}<sA3uDU8DxB5@S-8@%MS};O|BeYZ{@Sm
z4H@D6p!HP~RBX63i(M9PJAcB{UCM5mpE$+lvkCZWZ>kxE!@Dhw27(mOzN1EY)%R(6
zY3X;sNKQo_B?ikgm<gkQbk~($y+>-@fiE$c3&b^^!zny-gnHdt75_!yPqzeF28M?v
zacV%cAmK<s0X8?NSJyc@KYuS@@D`}PZkZ`uikq<Oux34ccoP<3ZN@pw_ShuOE_#@o
z+n?z%LU$xqumsR&xQ1y&h!cV3IPS5(>Maph+~Ljn0yBp^s;^1hxWRopl;v`I6Losi
zV}vo7M6(Mx@OI_ZdlBpw0wFU<Z2hn}9fb<Cqr0f%OFqz`!kz(*q$*XL&?UvA7s*Zq
zmUD1Y@L}V9mK3<@vcCrgWs{d7HomG0(3F17)KtR7MFgwQ#qdaKV-M7Y$0R=4Txo=+
zS=ZEHTmH_~Fn25s!3xD2By5};6fRz*8yg>2@fLPnVnmDsxpF08ZUKLSUd9QawdqSZ
z@#>?+z(fuNd>`VC;+e-)W1aW$^XKYKzM<uqVMGdwc_*e-KE_2=Pf`u6yjr={6}KCY
zfj=wX04fe5-#bmozlMkXcm4&j{I4}NcL4#y$z)29AkYdrBNAK8^a0{Jf6Y3bwX-`V
zA1V~r>`8y_thl)Nn-Lvt?Z=?n!cu;WeiKEzI5xJ+Jc1#m?3g{-jifpM<;>A<`-tA#
zlG&f2P-tEqdX<up;ImVGBZpgjV&Wk073ccCk)l3nadG0An4t)DMhlL}WS7|N9ZGNX
zeWrnIa<TJ*9)dR}Sb7r|pUS87prEOShQ`t0%J}Mo`_IrtK1FZgEB1#aq;cZXV=-}0
zn8P|bUzL`X^-so=DFYK#6MDvfre}(=A9IlTJDD09s7jN!G&T1iM8#8+kWriEZ*Nb}
z9-+MENzClrPQBq?{|7zmK`Tqk0^1nJPL*F1IRP>#>no{0;o6^Z%0t}q&{x{{VkL`K
zaWYBari_BZ^l97s+n#BbOifH!fB5j>70Pw##fC5#h}o#Tyxh}?l9=Yf{_rjos6KV_
z->km;cTC_GKU(QWcPPUNQwWha{Iqy!PG+1}h<V<VJpjQ9nCP;B0bM@>%UApANMYPU
zSW!K%V{7RN)m|2m&wmwrbBY&+7XC2H-?-lmsq(vsNx+4yabOXn9NmB`L5_=i7E+F6
z=0v^~Y8X5*MZ&v8P(a`}M*Ng>N`m%u$FHEs>MsgZHhUtu0pXg3U?eDEP{6{z?_5L!
zKX2?iY6(i{Nm3(uf<7kiUW^l=j;y{P7#OH4j*C?`g-j&daz}ObUodoPYM!{d4u!`>
zzV53-O~Vr`O1%LFJg_3Vcfnw_$`KTWXfvYIX;K~0d!i~Qv(PPqp)3E<&+zD6{exWF
zp*^spmrm{hDV7R^ospGQ)|)9HjQf86{COl{&dbV9oSq%%?|+Af?>?V{to9%}7bo|`
z);>T+k5Mvm8?FxKExl&SwRJ$227w^eIYnA<5QN&NPso=q^0*rC4j?zz<J=(CMB&iD
zrnKXn{KoYTDYaOFzxVC?YnaF<f&%@3KBF#5N;rmu`iC$n^E%wahx!WrgukA6E#>6;
z=wn0>_vVSjk+iFodvbNa9a=WWU8f{QlFn*eP2Y_NiBEWl>ebKX<?k_Sy+B@cdx|lP
zgQ;oa%Xd8j7cW|W<<ZG=n;q|cf9dF(YbP(yj&)n+qZRy8dehg22DV}?S=q<&H!^<>
z4t{__xs&b|ogycG#Og2;PBXMfw<1eFnRCsYIKa5h%KOlovW0Q$Mv6<Y&Eg`&L@P<u
zzVzg|;G5oSGF8o#O4Hj-y<zt|q|{_5?NCyGUO~b0?WNmIrjo|ShgDN_hpNwV9X|YQ
z-T?#JN*uU{nLZFS4Dx0;C%A#^oSg4rundjl2OD9de15p$C?RE<+$@PTf<43HmQ9%-
ze{m^OvwLI)!y}%Cg@JL{AM1pE(a+OgO{Ux0+Ca#jMjiZBjqzKp*_}7-?fFglg0E_9
zEitep`XQgdP=l%kJ&4)~Nf54Fu^9Ji??zfQ4laD==huDnWv$qtU~-rh1erg4{8-wV
zHh+$~@%6DiPw;ir*0&@ZVtABv<<mphOsLF0U8ZR`_9+CCSlIpDb9tVm!g_ax{k!_i
zgjdERPqu?(%RxbcQ@fTh&<G>;UU@MqJ1c8H#I5By2Zz+xQoMNaf=ni#K}mmNKC(SO
zao|26@6~N?jl$%Tk(3n6oyDD4&_I+|^xxY0rnji6p}_+;T4My#mN|~o$yJsZ{v)NT
z>R;7}+A~*u%6h3ah>B->_QDLHx&afD>w2%BGHX7V5)~U0<6v$3;pseT^G}{SH9tAK
zcAFTgh<cG*tS+D<(pJ!%`DU7ht9UHrC?SfVs;kTGsSze%L-jD?+S2*0)|7_XEh>L?
zVDI!#?&-F}9U_?>qEP2z@a9#MQ2z!Phw8wxx#Xmzj~I3G*TlNVaO(Kqw_;aOlrhkv
zg(RV#Ln=4d&H;4}pukhHsMz1jXxS$1IG4$Gch});n*mj5gy@g{{1{J)N=Vp@l|1@F
zmN+KJq7gkJ_&k+ZDeVVUm6acnMY$pfE|&LpsO=$n3lvo;s;ICEQUhpAvCp^nPr#4`
zO=7<I9SjjhI%PY6sD!L6HPDmASl5NtBIlM7%bUU%reg=ML-ckc9_Opf=GuqpjSlit
z^yl6_q~}Do_X)~I?0+6An@4vgjx3Rl1$czb{|n3){FnVjU5pb~*a2!gIrpfGqT)6f
zqsNj5;D2sHvFOUxt73{f_=nEAkw9=_i6n8Upu?<^LJT)&`dv^UgnEZdxU0Y$7~eNO
zqkV^+CaGGah}QK`Kh>`nq56EmiX_tC#liE|LT@c7!zG?}(QNgEqxzeZb2CyC?6_bd
z#?_mQ&CNZluenuTeGjagicvE-p2Tu(RDArJm{vm=ReTrkZ5NW6KEQgyMC?CyY#aE`
zcSt7cXKLb4caZkwV!q(Y&s9}Y=u30zfCnv|R@t#0@^?6N-0<LsTf75JCKhI`qGDp+
zT}~sc9!k?!t22BCg&eO>!@JI42)J;WS4n3Pi}yM9<V@Nr3qiIHFsZPpI6+coW=9}S
zh5`rWlC7h{u+!k7-3hBol5r#5$&k|nb#!KfUQq+%_Ia-v#%=AY%F35uAplq1n@s&v
zitR?2E3Te^GXQVv4dIjne0&USJ{Lko^ZdIZ0(!FQ$79Jz#!9+GgU1Y)yTa95n^Arc
z%bh`6Y=e}<*jx}2GT%)3;Ak-{el0mMQNq&lIJ`FFk-?<U&B*C2v3lLP942JdLw&p5
zo0kGM^wRMcPhY%vK$PJJn`O5=3k~%`dcUi;*HK%0IH^^~wM0f*+M?_8HspeUkii?5
z3>3}&{J1$#mJMqK&hrGZP^PA)DZL9Q6^Q4<c*(V!#K|Ib=PB!}tM9<a+1CW(xWZAG
zwBL!q1Pj|8JI;-&r%>MFmm_H#!(QiBy&gQ`cKn6x=d!XfQli1%Vnkm6`@@JmOx1OD
z>&_{{()XxQs%U6zLXt@>1HJUA7C*#h7oSK*_K1ZRx|48jPMkoYTQ!*~JXFYjf40`&
z^4DDFhfYxl+X-9g-Fp+ZeOpo=%k1nd0g)yhU&<fCQVy!;*gAaJQG%u=vWU#f!ADt2
z=oOWEmUAOg{rVupJ8^o6L8n!Awzg#nsS&l?;U>YMCbT1!EQ}xG|9wK3r~jt;^+L6u
zS$;}2w$SF*y5aZbi$``g`dGV`6=CADfkPQ#1j%b+Yd4)6)xN~X!=q4NiYy5a`1r`6
zi=53v=slu1lgwm2(k|>h!b6*KlZpRpTiX-hyIi@SA6lJ*Q83oE$MR=aeW6b=DpO$$
zG4Wh!d^}9Z{w_v6<?_skOG$0S;bDL>t3$!7R}@#%HRN;meA(ywjpl>gUWWs0Y@ZA=
zqECz5U&QCr;HNg)NE`s=JY|xo9&VFb1Ij%?G9|~B7Vz#8&ae$vd!w+MWn1s<P|hEO
zu;g+wlkuo)qgNayi;j0J;VtV;{N_`#ZHrx(T`J?+g_x&DZkeX3lQcB?MrUv}vNJMX
zL7dDcln{Dmf4KksF8Duq@&pkz-!#hbHSkpXBnuxtBC-`@ffxIj#STBbi&{+;5gvbb
z+5@%{O<<zW7sV77GU0g}uIq`D?}&V=0LBAg;P}Y&+sU1@ROils$&I8PAA5hb5l|P_
zMyW7+*V)68nkMz*ICQVrsff`g4x-!EP4c=~7FuxKwN9vyH`$4D1<R;sqTSpsB|5R6
z3vZ3C*>LY{CQbfG@a1`JsUW;-cvRGfUZ&re6B^F`u(5a3zJs)gil3bkV}FaUL3o$l
zM>V(@X4m$X!8_nJRkI_Q4EGM@7GRzCt&Jn*yeB(WYf&2V1wRW89tb~Oy?vkW>6`T8
zx9^0qNT;>?sZ#odgggN+-UW5xk&w_(?(FoWq{>Kfg02U6^ER72<W@7seEC|&z$Qmn
zS;R~I!mSEf!|jEfDX%uqwe+R63|St$&q=5ega|jvdtX~Syg4W<JDUjV6fJ02L_VPK
z68FdrezM8dpGPk_H@Ottv0<!~Y-~%u9nX!9q9gSCO7N8oV@sUp=)YQtbvsygDTGXA
zzwb29%?XW~SDGR~_-0s{cf`wXt(o9zh+}^kZ$MF?9VzEVLL~zM<tz)F=lO67A#zXo
zs#oG$i|_6`IhO~#C~xNH<y~29EwERb3__mzv%t<nDZ?er5bHmqm=W7J<q6n%kd5t~
zNoIW6FO&_&%io^4@s=taOP_|j<}x5~SLP91AiPece39Vg;+mk>25IVDIzM0wPR7>a
zQ0UnL#O_6k4MSX$P1JtMD@W9J?h$J;<wF*zuG6`;rUtp$=}E)Z#xt-sC`4qvY+xYV
z><qQN1?S%l!-!o+s*i2FB{V!TdK&$nylqUo+Dp1%Q{hziqAd5g8}Rab@CGMal4rQK
ziA`pkWo2gCGqSYCs!|cT7V;^0PiPy@zI3FFR#}#eR2<H3FZ;AOKgsI0=a<3b(kpi>
zuPPn>ve|j{;9}@?f9=RSz-A(`M~o<spRCI0&xJB8y(!g)rG`dY>2+W3!i0KnJ^|Y`
zHb18{{L`-0*}(}99Y5SQEq9DgTDH<UY{T%Dw5-lEJY)sReH1XhCusNiazd;kRWm6_
zfAd$XpFdq<h0Lw3tv_=LX)=Z03G&)VfhvRNYDpjGcz#|v&*>%&f(5l<$3T{J_4Gub
z5V?Lgt(pv0t!n_o_PV@ZbFSrQQgBnci~T6&AHOX4L6akSz<x5j*5K%_lb)$NccSUK
zBC|FfV;WLAq!f49A8-AJ&hvqbJI*D$?iUc&d?dA&N1-58)Rp_*8gpg=>+`k_ts?~o
z1)g4(Tlc0|V94CFq~i~CX=!fmqBlEdZy&(7P0W72m52c8#Q@7wy4k0~QSqlcLJ98~
zl`HZ{{c~<+X8l0hC?uSa5?%Y<kTTk)zV^~la)Wgr4^rc2kO_mam%8s082IZL9Xry^
zfz5S#i!VHIf}FUQxM=778jhqZDJgZ6cbE@ZL9pfZy&QatuzB+7sT>bdd;2u1Qzt0H
zTc-ygG%Mmxx*V0_|8x4CTE6#_|BJo%fT}9%x<pGw1j#CjlEHupL<A&Dv`l~jK_#Pt
zil87liCl6rf|7#*f(QtbgTyOI1SBUF5s;iSym_#y{_pkwy?*`18$G&5kDuYNEa2XI
z&OUpuFy~xr`Kooic|h)7X7_gvqd72qYX=?KU>w!9#F=LCRpL8Y!)JCj45n6kMj*I)
zw|v}kdNpz=Yc|f3yK3IpT$et*jZSTs=Sy_>aP$3ic2{;?6XQM&GRwigtQ&%w$y=ds
z(GmG|qtfBvYJ`={a#?`|8Pf~!P>v8j)VB*AJ}eo-v<)O4p>IQwJ^bUxk6GHt`(ZTK
z^lyuS0)F%;GOH$&=lao1oqN2bhtBu8FL3soQZ<170T|LS$>z*5{);31k52hGe4r7(
zH2sGG%@Jo>w22%NwHeRBa=_z@RW*nATMv6ooj@9tSZ8#^w!PyzmpmWRyzB@2l%69q
zKlz?r|K*G4b^0k9k})!&GEVt0NzX<4m5~)l?ll{l^l-h|k)-K)Ll66?6u~Ky*+(y4
zylxFd1ba0$HX`Df`D7ttH^Mxf`Lg5Lp3%mBF-!y@KhttrjeY?-1zELBG<+M2)%;`X
zM7GSe@Sq?sFzEK6z}|I2V6YnjKl_Iz^U@P>RK)DFWF()arBokQ7*7toykbno<LQ7B
z(BYsjX2ZcuW+^Fi!TuKN9<n~bzkp|rBtI+PQ}y0H%qEreyDRS?&ha_bX)gO_0s7iy
zIqj>cyz%@kBGHyhp1!_{XU{$&-vVlKZNu3wIZ1oB-0%I9FOiA)GH>Ksx=0jb{;;zx
zR?iXGx9^<mvsEWa`-ju=+@39pQuB9@ay%&&7Xxx>_SEZWC(KE?!ShC=Lro*hMs0(>
zuz32YS4OrlUUv8``3Jb*%h5O5?=nQTANMCbme;u1{KaHH!OOE?nqSi#TztVnbm~HU
z0GprCC@usw6{HJgp$l=GiH}tC*l*2mh7x1gnWXvv_a2R7{#M}UfO5$4X{Vi}hs#Bb
z@&1#dq)mHBZ_hVV==<(UR8&BCg=CLZYxHHY(96@aR`aU`9(hFXOCAXcRupu`y9O`p
zkn=pte);@^{KfH8{{3cvVmx0{zum)5pp<*uzx&DQKk9_6!hdr<DyyrN{WWx%|JW*^
z?SrSLcKpvbu3RxyL@4&<3F5v6Lr)9YFlmQ<+mbAX7OgBS3a=h6SFRzjZayh*^^GO1
za#8i`CPQ?y1kxA#YI!eQy!ai7l(vKvpr827*PR9~9B3XC_kD%r2qw7U8_^oo)qVLX
zO@#D`k;K7L>YN4Y>oB0SktMC0h8JG;@p&>5bMKN{jN^l;0oq5$#3*&v)^#zSJp1Jq
z`46djwG!s;e3I%gjSuJ1J0Av8Vg)?*uUwv50#o|**)yBxK!9NRf%rGDGdq7{lJgXv
zOEb|s*!rH2A%!b<zo<z&pc%6-4M2l_)=G0q+f#v&m+;WP`DEeGL@3nbVwQ=(%iLV5
z(K*X;Df?%T>JoJ%R5rU;1X`aAc>EdB>y^z%qchYA@LBiJ$8IKn@{$Ax4bi>NbnK4g
z?sZZHEyDv+p2^CZ9-B{5XYv$LHQhP*FumW`&yOC$ex=Sa<L)xwAknb?TU1kE?hy|v
zS@_LB35;B>;zl*#0JPO;$X}QH#{90&#zsLU8XfMZG8U1pEHAnT-kL=5Yr1S^x(q=>
z$(MUGT`P!eUd!=0`3d7X7x!8@$@9%POrRuitXZIR$JKlj;|qZGn?4H3QS~#>M$UU=
zF#dwL1)0v2Sd=bi$BrK##u*2ij4Xw~N03+uuasS(+9iGnu>>^#fZqjC#c*JxC~``^
z^9mI@5RuRj*M?6#ZWsn!{Of!-&7>4*)2(46t=mlM&o#GQ=Zs^#i53a*5=9<<)nQV0
zM^;3Hh1D9LWTtAII6;lDz>nz2yH_LXKnZheR1}YxR6jxum=mNOa^~hjpTcGQ;cH>F
zZ34w+as-L#xcDiNM-f612KkWBp7$Y7-Hhk?;nk_YAMEE9VtXN;Gix<8FyJK$Gm-d;
z?NAKK^zyR+RzzTWM}&o;p)1x;i9qI)TF+~eG;C{k1AFx8S!n+ug7pRFBGys%zBm=}
zBp~S!DZ7h)j(v%L**1aU_z4g>k%@_P`!BwE7;R1Qee3jhb4A_nICC}ggQ+!lP<;u&
zfEfW8Qj&tjahgAdHh)7k1X95)-FS`76~-db>FHaEpP(y$!Y_@<U8KW1e4FzfR(UN9
z4}|6W*spte)?Bj<Y|G$a7N<n6ZzF~6uX~yNr}-JllgKfMkFXkUCroos=&AL@<k+N~
zyWNz?o~aWWHo~_ZCwp0xBJBla&eOzXHpI17$~noX31BLLYQWB`-P(|C$ymz%5jL5i
z!p;PX6dH@%>SRw!;(l6vUH<0HeR$+PaEgoAq8^@}&iE##sRNpJ0r=AZ1=n$%_Nn(M
z5+@r>j#v*?U{77!4sPXLX0bNXZ%}G#7W@4K^bg`A^bu}uMnhd9<9np)oPNd>78_0s
zY}=*Id$QgzrU1pCh$a(tHV0Un7|Y%tD7AHk#@Xn`jY0(UJx`B}U11`U?R;$YUve~p
zLt3|%1e{rFiR!?#jEv%McRrepGRv)zS`!e(hp!J%RRDb3wQ`Z9y39t{+BJEBIZzia
z<nR5&1cb;PMz<TkWTrDEJPxUIy}=GCZW8U5)g$syUNdscBI70Qp9onE@}6V1O41$y
zuP9VgL<iLn=-?C^>3V9*E%(}{D8IJ@Uo-bRW~RP-cR?l!fzHEQ7MY-Jel+a7n_#44
zUUO#mlb?)tolEu4YBh{ah2<U8#N@04$30)g#u}gv#kkmAo`KF6+cN!j^bZbRNW7&h
z5`4GsGq-=jJt8z5P^Uu6H9fpv*Y2G=<HVVebj2&HsH<;-;XWY22Ota~Y5Z9c(1y=y
zphiSPY^cvPEb6S6<}IMtE^peoXHR9$mrQM`gFtgKc3s@E9;W#4(b`{=9{X>;-6Q1i
zx*nZ7E-B##QG--WRPAK%{{r^wM|p(C$Chw2LGVjcwYK{g2o$b{=^Bg*#76{0xLslI
z$(prk`rpnsaSfw)M|{mYjRWznS%CsN!%WiNSCVu51NI#}_$=J;@C#K<%>ye+nnRZ1
zN?%+3O3H7^%e!cD0#D|WkZ9{Y5hp_yZW=dhTKc5@b_+AJP3Yrq`CQYgg!>?FaH$l(
zC?nGqtyx)7abe&oA&Tw47q5L@ODj=4ruWAWBFANJw6L_)hh2+bav=Wh4zSxW2IDdd
z@i71)04;Zb!yeGd&xKVTNGmFKXQ&(^q=NUuUVn#KQ+q}RANa%Zb;GdMiBqSFK~~yG
zF3Zf@N?I!3lMaXc%-Fvi{9FKc*ik>P+U~cvY6$+*ESQdR9ReN#Lv6^ujXi!48IxUT
zHf7ulyJ<MmpBvA78*Zv;>E08lB)YeEQKu|F!G`F#dk`U}Rhk@M(~UwPy`m5oN-5=K
z)pc|nJkIDn(*fH6f=DuO>f$oM==ihQ@U58+3+elyJJ)#f@Zo(TzUY+T<t;YI0kWjV
zeZjPce|XC;BFx)Is%sTh>{84%1vXEnx}{!1=dqZ#?f^GwlG#mlokt^ke;W9;GEBz0
zi>(qqk+ReSD{6$Pre}n>^7~i$n$bDlK?Z`Y)yXh#6hGlGKl%D+vV%@0gN{`%4p3eg
zqYSX%TjWpAAYWRrFw479zdQU^_iQDyDdDEm<~`_j5~MzEw||=z_76bv>B~wOKEuKN
zU@KDe@q}EhF7>arrPD}frDM5gi<UP20$8vptv$DptsaV|j@?L+^WKI-)mwY(g_myW
zHmrk@sp-i3`bNOQ&}G_4a%|hS$CQDC3O@<5x`G1A5;&NJMMo$r^E!p=SS2|Un4&Le
z6_4Z}dg@p1v@{i{LvDlNoXS?2%(zXzRV7SvY=Qn7k)znz*(LP`th4c<CgnG}K9~C3
zmhRnk$|)lc{4OEFdmhB!C~mH!Qrl&423>&7np#CUC9S!R^Up`UeM?X2QrN9*Phvc*
z3bjenPPk8wfjtkG32fQlV#~)5j34E)-deMksVvWVlwLb^>eO8zO#}j^0ibzHsrgb^
z<b9U@3h#aE<bl246ldcuW`~#>H3{^y3z%Nb4ImP@J>ip)0z<GmFk#}cq5vhrn&9e~
zEVqNdZP>^C<#?t`*>n>9p-7Y*{XcW(?-dZ3(fFJ#6C&fp0pNUHvf|auT3}nS{jX!3
zgHP{<TJ%=3X!U+Vg?8%;O@AnYO{2~ij~;$I39nmY5jkIp>v#xVLD0Fdpdj%#O4W1}
zI0{ONitCTdZkBtnaaEf0gZV397g{Sw7c_DcRr>siJQZH^40931c)q-r9MyK(|5EMz
zzi5*#c)U(bR0L=|X)8tOr&dK&{SSr3#I^$tTNmJYh_sO#&SA$SrNZjZh`(C5!Hr6A
zWl_n;F+w{l)935<*DLqFN|Qk#FaFh-#C^ddxoya$Q<o2~s8T1F{jCM~{TU0<9VQG%
zS@o!xdC+)Xw2$sz-@=bol>hfzund;T{qwmyJe-Rd_bJd?%18cvse9>4juG!cnG>n{
z`;GD2l=>04Y$lfuRpPUMe|w#vDl~K+g(iG|e`oJ2XBIx%NVyVS(JlYHwC)(~7B^LH
z{bbgS|Ge}D7v)CWsbDjm>p!=7gmIlK?vQ2B?Y}PXe`xh;yEZxwBxW2!)gs!q6NEC%
z?0D7-AwwQ%X~Ir;`1_O5L4ROuhNu}~0!5DylHS(fpU2QYD!lp#moJV=jO4lyuSAuV
zX~B}nprr)SyuWYC76p;aU`0z=O>>>mjDQ;-gF>|IUn9L$FV?}n0e1g)Z|NL2h+<M)
z*H=uc7_&BkIvso0y4zRuhXJSks59H%Qbw<Tp8a3j=GX;G)NP{oxLR~*jB+TXQuk+P
ztwB}ISzoxY1=qA&C9LXSUbcpn*lh|C%(oA*JcK_*RlsYGjLV5gLh)hGg>P-;;o%u=
zy_KYgS+@vbQLsuI`OgO4k-WP1DbAHc<Mf3#LX(*{oanWdivo4xT7iU&q4NWA$6(n}
zWWYH|dFt<zQ}^x0>WNrN{CeWaZe%AIxhsLXfWAJX)8W$WcoOHZH~^okAZ7Z@df=Zm
zcaL5D)X9toi5K@Hh950sHT`pCD#=MUX@okiqyWJ!173+YwaMKO+kN)$b96*?^?3A|
zt|yn36`5otY@vBbE-l3;S4w=fVeNm4``>#$hW6h)UR~k)DF$TyA`-PrC*$8YaBjXv
z<iF1Ef6w}T4*V1*#R@(ij5f>UZ6+lpCGhmSzs?Zn3iDjm{K;f;baL{Y59z3Kr5-^m
zfQZ0LT=-88s)!Vz0>bVi>b+6i<}W>O^f}`o%k(R{&(0Qj65#kp=YsIS;-+8Ypu9vn
z0ZEKY{?gJI<TISf-2=y`sXaocOmmlQSC*F(MR^~I&8+CP7@ilL*GZzYZCSO=^j3dw
zih`-eD@26_pnT#aU>nZ0gI8qY<n+hPkrFaFL0oXF_j;m5{2WT%>^`#&>S8E~0!a13
zZ+E_ae8dZN4mrZ~$svAzdXUH{iyCU`ihYIY(vfTM|7g>)esVs{&lviC4A@-nUhE78
zSPy0H<EC2=UVeE~W!Z!vZ!zUkrtey#&dgBT2K)}*CK72gm>irv=xRvC-#(x)V1one
zhKkPCKj_|~K0}ZgEGvk*EwP}aw#>V{BF4>JD=Xloi@x3A0%g$GW&~38(Idf#kt~xA
zaa=LoN4rqIl|TGHm436#W3H`Wb(n9<==3Qmj?qXH{iM`wvd(8@dSv$Z(b3tlY9yTY
z&%zQF5^I9zftD$(z(@#F2R98{;{`kR-B+~p1Arc40U<47x6R|gdO0`TEVUcS+q2YE
zuq@n1XL(2~*IE$bml&0B>Atq_CS2TT`7yzXI&i>Pua~94y<@$I;vocAkhmSvE25ZN
zgfbx6s5VO4lpJiDzt<)BTMQU^EC%{%4323kD3m-jW_519!WvOHfxhOh_(`G5hP(5V
zH$W)@_%O<Elp@s)Og$GgQ2H}HH7?HR!@4;<FnXirxldneGp$QVkmL=WfB2Mbv+MER
z?~D=y4f%h_6Ng>=;cs8d_>7&2$r+m=cjA)-N6ncq$?e1n<kp(Mvc}q5ql%U?&zYW?
z?6chkggf!r@bpUYi9gKG$DA%iI&~I!Ls603_75n<fsBs<inHAW0!iQsR1w&7#?8rV
zSVfHQ7wW1ybWZlyKMD+VNB&KeE5lCpqJIp*<?ErX2~llD7~Ad33dfHd^i(`+PP_4h
zY<CmYfu5LcjpIe`&O&v61hyYUk|-Apjc51WE<_2KSL5AP>N210yp_dGmXPIeLpzEj
zGpJ1jybFYA-RK>!C@U+QB->CjmSoW0OjX@`z3RC$s__ZaOeihx-c6zPn7<-`T}23!
zu-edL3KW>5AZ<|_)e%`YC6Kwe;}v2DE0DT^ZFbBM?XurYsI>wPUU>+4hpG)#{dclK
zaiFOIIevR{?mh9R+ojs(I@4-rW4_)F>Ad!#&{t^eQQpj<@++*^{j=y2_6R!*bJ6Y5
z*;FIV=ut=z-!BPK(QT;rC+-P5$`2yCs$fwDEFw|u{^<F05A4ycrg>8r3o7M(J}&%t
zqLK_A0f6IlHv79bb#+8P2CP4%WD3JM`RUO~^EYGj7tzb?>z$)0T5~6O5=r7TeaBGt
z50L-j`zWpHj}5PwW?^Q2H6M&5j~Bryun6$R!bBzvKVLo_iWlRJ2}-;53QDic%*=>S
zei{%^F=|uwTo8@Ml2S0Jx#8}y=TJWomx&5XIq+ObZDSZSU4FZ1M=A5i<-@R7#4$CT
zsUFXv?+g~%fpg2f%hLYX?fa_%K>m?cKZJ+@I|!DlvR2vFp~i^sxA$*QvlLu!it)27
zGRqCpYy3St9-eQ|#0UWK-KU@5$9xBSOeBWw+JH7kcSgU;_DxBJijTDd6G4B4udp@m
z?AhrzK=<v1ypjN$lpAowG1B%vq8dH)nvH`l342@3NgXm6D6aHZmX|($`V{cZAKL<$
z_}$6Avmuf;pz@jyBNV{dR*J6e&VoF9E(~Ig@iCi;pEgf%VpU!BF1HZ|7xB?$;T{!O
zEl7N!eTH1<qAmpAd2al>bn@tW8B&_F7uipH*lJB_0>6YU0siNS!}g81T;8rO+m>vL
z1hUmKS|Kpu%wkBwHyG$UN7>>JhvUX^r^$9RCSsxIeRiN=x(IpyT?nlS#V_bejV!Zk
z*egj*21DEGNBcC{T9q%K&APFhBh*{IF?VG{p0<Bw!}YYVG=1`~?MKt+91hG~J()Dp
zn@ERfk4@5=5qF5UA(j+Z20>C}QvsW>#`*IufGe<oT-YlFaOu>2=ji9=W)C+vN)Tm}
zIg&t4aKCq8v!K3YL6gk4)jhW*U|vzcN-P9~JP?U|#T%P_iOU%3^UrU6EdW#CjfV*9
z8G_+QQ|&Ms$bbCtrpB#l)DSTpCS8WTO*d{?i(@KiwogVzC!hfZrK&nQ0+lE2n;t*j
z6ms<LT7VM)PU>h0HPesp5PQO`B0L9zqt63&N`HEuy%(ija!<~*P4HU97JHyRaY;!t
zRAn3Voi2@+UzHT!=AO|xDe#$nDXEEAvcr#8bP5K-SGQ+89g)89eD)Gyp+zJxsu9<C
z^L^3vR773|*p~0sNue|sMvM>|!JtAB;nJzGp`M7i>SN9{LmPmN$`!j4fX3^XK2Hnh
znA0zKis=PyF?3wfjUD`T5pYt%DG3^s!Q9DO^1ykzV*|H%5_5uSBk4J%eb6P{j&zD=
z5t=xf$@#!<=S<JXD(vaFqVeo8CJ*E<pjC=5^q(%;U7IV;JU_ICP_&^j#{rxds)F?H
zuZ1og++Sc(u6caxw6Qm+x;5*6JGY{C#g;Cq;O+5mvFGnBJY{A#G)Q)6pgqmDlHG0s
z?+tuGHp!{w1UfN6lq!I|h=bvVV{yea&y{-f?znU{d#jmu_vnT&+l>Es8}`8mY>?f%
zDPdTf-(B-=r`PHERxMhV>*kl564w>^k*q+43G=r1LVQb0d3Qg*K7G3)<{~TOR5Lab
z(hs?$CeUe{V4?$hriU`RDw?w0R1pyq;TE<KJSY$0Vqh<q`28UgK)vrr;UPaZu?H|e
zjlGsW>=IkCeZdAz&gSQ*7Y7G0bRO$AadDrLptUv_yrtcC!<48cq&y0-ui4A9P=w+z
zUA<x!?k9S^iY1);3o0(JwV;&nIQT*wIKnKWCy3gRBvLADY4eU)-1k?)!ze1cN)pAB
z6%KD+zEsFh2MtL1qBC7SH$5Wa121WZ$CBa;K}y&<J#EdAZ5QADJX7Lnw%%!x#d{{k
zceq}9)j6Nc`<=pYJ%ga^boCz<4XBPp9c6V+K=pIMb(T3=$}eoxnCq1_Iop!;T;g4J
zFf$Xe7u-Y((`H_QN!vVHz7oDo>Q+Oou6WcqM+8%~?0bu<XE{Wbf=i$M8Fp8t^2?-=
zG;kwWuvvTGzOQ0z^iU{NkR1}Kdu~aj$;Bac(t{icw~Ui<oY*-D{)3zEtep0#VCb|F
z8|s~En$pO>vkz9Jm{X=K%D6@1Flke$C0Gkw4qV7gf_BM(Lc~kvRvVf~>`?C)y}iAa
z<dTnUR=hks_5tpq-Pe~`iI6QdO|-}0EpOyTna~FdhWf;LTUNjEK&o{`BKF36XO|5O
z6%SRg5njHefE#=`a2<G<igfP|Ih>$!OF=v*qDRp`djN2Ac@5fGeE_*>Zvy!+N6p-M
zfzArUI#SbEL+p9Us)gAeo~g@2U&7x33!RZ_jbd4|OS?Xh@fR2Yjv;BZQ=5<gh<0hF
zbM5U!;mA(gfrAYmM_?y`qE|3!;hDxU%h8oAAD*iI)8C;ac*r-^ZtD@5Yg2YIzfqIF
z9-`BJ>$;aGkUBaZ9KV^`A~|ds(=;#!H)%%~r@f0P66jGNu}2jfy}x{|8M?LZF>RQw
zG6Z^P2}Sf?dOgd^bn*0y!|Tz1>oNBQ^rX8P<n!4<_D(G|)HXy1;-%04nym*uxY4oR
zfrM1eZ~~3iG}4VPg=fg`CvD1~>9jMe=)|=5#rVLgtQCepzZYZ4d$%q$7P!AQRjOdD
z$O}UX-JWF2R5OE~A8VfXae3$T9z+)%O3TaP4Nc>W-hAFux1>+mooANopOUKgHd~gU
z7FAa0E@TjN>`K>8pd&m4fZJzDOtK!gzV=?e&O<`W0DlNZng*^>HFS-m^+7=WA7o!v
zBK}9TH`nfmGzWGeu4sRxOxw4!GpWnIr^r<t+LHQZeNK5l--phhpB^b#kw%e0G6>X`
ze4NQ2=_;^d^zOwYj5pzsIl{S>ByeVJ><v>y)G&Ga=QOVROZW4gzami&A)O9=F#P>&
zJALFuDq+S2Zz)?gY}JVcejCeMHPX+*N=j!}Gv5srtKioBl|qPa(M69yBwl{!w|cVs
z%;Oc5wMY^u!<it8ynI87O6(8VyfsinW}9~=#9yS^)mVk8E2aqlNT_@Gc*T2RqeRKQ
zr(i6rkSY@Dv3f0Z(Q$z<=jP>=e=D?e>!+=H6$mc`O*?Z}YC1z@-dpqx6s^Rj@7k`g
zv$BfPr&RaDCb@__sUv&R?tUoSc}zbdGUW!_X=5(RwPgbC6y0SM#+2T&`WCx?wM%P_
zWT|CMg<TQV>X?~)c*Lo2VmTr;@R9H#<A?e)6N&Q|w%?{ZWp|KzKre9@PCA#U=nSeP
zP{qSV@@Q7Qa(0W4zrO)ym4BkID~LQL)7jSM{p!^&>pX3uR6$0@sf+u|=;$FR{D0KF
zaCTk;7QcANvT{^+W<#@){WjxS#~!&a3{$p*h}08<=PA~%fw=IaY5`xxvK*g3nK#g|
z)mUV9$r1W<UWBz6EcHA%*aeEM%AUuk0&=wlP*YIb)MV8+@yKkP!f`%*<CXBh@1h6A
zX2*i}4I10kUJQ4pDZODWcF8Awp7ugOjGo?0Dv7pEDbXrFQA&MRRb;S8Ellntj;ve&
zi6%-CADq*;eED(GhP=@EX0HbNyd~(@P?;r<RMez1m)g5@QwDp=(ZTDQE2aH${1?kO
zV#iSLp>JlkDLOiuktfamf(|i*(d*eWX2O~DvK=I0OqeXH(VJ)ewl0J1e3O*a4HJrO
z?G_*3H!$FW8m{7R$G8|j6cw#SgAHe-E4es$<LUE{+u*flF;;7&zN(5=JKx@usCq){
zmqJ}el)(76(QBdDY3sIaXCVwX)MYOnxMq{f;<V7p>r$B4XD2sAZw52q@sTCElyRS|
zMKgWl%)Qn#D+8HL1FkVQM(6AiLph#$97U4W7|f?D*eft8YdEufI2-CCJPQgJS**R7
z!LjfZ#)E@|-bG+qjwG_!Ak&PQhHu`y(Y<wxhLAF1vV4ex{^1v+<$J=3@8OrM^KGZ%
z+YNfBMh#_zz5?lBq@pO2ezVW(0gBhMTIO3@cc5JXk4Q(OC<gjok+-mz%5N2vk~$ck
zvHYA+G*(o2<=W#s)hxZ?u<R{eR84YMwY@VA^OS6wDsj4i?<60|>%INiF7@NkHYdUE
z6^+bPzDl0oVCi6r3F5oA`{4>dz6x*`Lw~=ovc20EXU{M%&p+D`o)%uXa>>fzYvcAG
zS2adue#+~dEl3?ImB~*ia`_}=*Qt{$7$J~YpClnEd7y0t?RvNwsXjh5w6WQa7B<g=
zg5+RF+rL~sE60sJ(-c|bo-df?7~Ihnv^9YpnrA5~b|T};9cpb2qGd36-+k!2Z@o3q
zek3JD5DRJyg|EZJb*LYpx})c&C?k`{X2-gdMS@Q6#*)u*M9y5w9gWS+WkWTVSy?Ah
zt;AW=W9Ax)))LojBp_-T8@p?BdZZG%h^kMYDrVyG#@oe5U||<z`elP0vmP~7Ry&;_
ze@fprBi*|4ZX9Qzxn-Keno}4E5|3B4ks#@$Dtpr(P$CM-w1=Ve0%@{Y`j*m+F1nXi
zLN87;>D+p&!!fcv>7eQt)qz?@$Y7`_)@E7^Y<-tnTp*kXHKb#*kFcBHFSg5xjd8u*
z5tEF+4moT}((ya>CSS5@uK8Agd$CF9%;DT6KW8I)yI}@f>41O$h{m^0j7{HkFV*)H
zbMyZtd>ti+jwNBIj^FiTupOS7;2e=W9?YE?-s3|Sla8<GEPS%yifiXNs%0CIGO~}_
zRh1!ULRIsj?bjwc*it6N!<T6zH(e;_;G49>g%c%5i;IiS#ctuzO*5pZjHY3!NDu9q
z1%b-3B`+E)>5pPxh62g*r_`;|^FFsvzm(y`ibRQq*6LF|i#R!bjNA6fQ8vH0%AvlY
z?lEiK3?a6N?$S%D04NlW7q70{F1rY{tXTcpu9wClw=3?klqycy>X*-<zb}V)1@WcC
zau7pv<F7JoA=aMw;`P}oA4j3~Zo|gE-sTaLk~jB-2m4yqA>>;9`bf2UVxJ8<%l&>A
zg{!20uJHG}@Ek7s|93ej{mf#Sr9@L<B-f;h%?;IRy-6$76Xl$rzMlFZXd|mhUf_1i
zteReV6&02Cw(Ew5fF@O!jWgPiPlZpKn`sb5j&{<fK}(Y@AZ!s%|ENI_rK%>}e_Q6{
zRM0xLYa?v)7D2&!g;P2qWuXja56#9E>cSa_yRN<ad!gKizM@hDYB4!AwYd0=ft9=b
z#X^-~^6)>H4>cy6iFPj1;S51B=)Uv3+MR*D@2lg=H8IQdyjhh38YkLJClSum_2*P{
z4cokJtMA6O1xh5&>J|Hj-WJGTxQ)tO=klv^Dk=;jqN3cS4}*gT>M+)^)6v?R1*M_m
zy%>HgN97DlVc;|z6a#GX+n*!m78cBC&h)2k0mm2Fd1I)E4)EnVtw=9AI?1)Rz;aFJ
zTWM-5Z#BS2a*DLydG?aMFFkAf*2V6eeTy~;n+P9dA1U0AzSsD=$F};o8}uYHQ30SF
zyBRqh3adUJp~K(M20<Z&W-YQncfrmUJ%|Aw78mb@oD)hR;9OrzJj0Jujn{m*GEI-0
z?lTcz*6oS#A*rqx+e>&k`vS8yrR!ghkHh3qagU-|NL5u;M07N-@y{v~*v#LG5Ney@
zyu3WvF7djBs*fM<m+GJReRqRXj1@QEm(jlQYlZiLUV8Jm2Jz0ta$<0&zmCb)UGry`
zXw$y%Ebqyr<1S+Bi7T(})?a+$ZC4NDso)|N*dW7r5Od?tQ#4EKb?_}_=3Nf=mxWG>
z*{o&vy@c~yr1sb??aO98a+ygl?@=wUScXro4xg8%s*N@Il;y8DP--g&=o-Xd;D1qB
zo&43?S<YDb+1GgiWp^p<@|FvdgP)2`FPj~5+`~DdWose1r})8Z|C;X!FD5it_R1Ca
z)I$Ys`mrRo!=^c8U*QIe1)41)F(*d@yVR5p^sw&OA;-md432WRtAO)v4)8L_grZUN
zB}YX|M+YGzQL%+m|5<3gc}?n@o2gKj3CHW>>#L`)zg8spOlKDa3{X`%BT#ki;721o
zw=?K@i_$wDw1t8~ijtD@kdzcr8}c$He`D=|tu*j%qtHRN=U6d-^X^Dx$GDF40!Tul
zmiPl{u=iMY?C?73h?+}UdU}0(dp7757U)x2Sq}@gKXdQ5b7h&c2n*4gp-Eyt&lz6Y
z*!${vzPg9G;koJDq`dhzQBi9NFNto+T%=>@a)^?&9`m=jr<{E3ca)t#xC>kBhUQnv
z+x5pj9Z!>nb^P<pnNk!*)iyLR*BU}R(l;_f{_$fchMl79u{#|HoDu7w_w7Z82|8RJ
zZ(fQCk#xoupS_-L+?6zkPfv!Ud=`KHgwqQ5f3p{Q%nExaTn{E-K)ftucJ|VoaCv_y
zQdghDR>z)4g*%jmD4)Dqw_!lW`$Iv1zF`~d&nD4Slm{#)t2#T`tGk+phmpe{Jewt3
zsU=@JgVV7xeIU(#B-S)xw4urd5#3qq-Rt{ft7a=l_Kg+0v91{8v&lGi7j9b@`6^JD
zS!8k6cLTy7m(sI)mRas}moI%znLK}eF>v%N*))E1sQ$3MusO%Tii#&~Bw;}eKKMG>
zU37!3;NL>ldGI4SI0g5&XULGp4?+?uZZ6V?uU~bWQ-Ir|n2L*$ifFM(#E0BpfV2C!
zx~`|<MzL0riKvj!I&O*wg<LT)F?b-T)<@Xi*wmEr?j6yTf_No_5KxJ8&`_*>9u`)H
z5iIcgKsC7AGOj>PhYkWD1XJF>ckS=L@jFN;SLMAZfn~(r!dpU%qS2O+kN_k0{W}i`
z{Ed)zR316w!nhWJC&I{LRG8(<#U<9rcmL`tI1p%Xpk7aDey<P_6&I|$WAh&gD=oXw
zpC9m~bRZRgh#b|Lf-Zj)dk_&Ditd2KlzsT{hlq&CXz6HlYv<oufNeUYjxzm}j|&qE
zOTc9d=jZ3cdU-E~V=|4>P%5kyAOb9o?(N%jQ0pT|K#1<$Mi1)p7}tH^dgUTk_wHc<
z6hc<svPLqBi5fV4)2%4~d@KIjc)x>IIN|U5&Rkn{q&}ASuyrn|Jrk0>XOh7RognrO
zh5{q@MAP5<F*i^m?%Xt>h(>Hj&J@2szqsFl=Xv$U`OD^4J)ZU-;_dlCt@$QR4|W+J
zwaeBvF4}ZB(OnfA<EnVo_%wrf4dEs(kL-PkeeL`D95%+WvvLc{OEwATK6y|t-g-?N
zxqD$FHaXoDkyyT@fbOLc;ce%X!yXQ0&Iybe$~RnS{?0FkcEKAP8yl1Hw4mg*nZprU
z>wKTqLR-hLcgnWgO%<06;N$S(9AI-U(tUC_^nQgUB_vu2l=aYYD}3p30IGyBh*(hP
z;&1oyr&Qm$vgZM#+%Pk`$YI|#B&c_%%NKM(`RKuT)7EweLVlbg6l-IN$Hh>_b&SgS
z=g*%GHTSd6S?oLTN3LoJB=+hj`nqb4dq3<y+MI7%J70D6u%3ehJ9;a=Q^D0Wb#$-`
zkuGa#xq^cN7;&|rM1nJg_$_dDy7)yYDXDiglP{EWOruBk2ZV;QXRyO>G`F@sp6Q-h
z7(<JY;~{~MQ(un@XEcc!$DbirmTy{|yxow0Jz_PM$tz!VcF!IuTZ)ICT^HAZV{qh*
zJm8;2D>b!elEYKB$b=qEu34!0?vhQ516`bdBO#CbJmsnRYb#x+w!y8+Bd~tT!L`?m
z$8@1b-ms)99_RDixh?qRvB^R)o8S)ar?a_RRt!7XYel3;^9@t#3u;RU?qNH-rDJWY
znS{Tzo?*}+F(O>O7<XnxYTe0#PqJt;wd^>T>bMAa<gDRGXikY98VIok+qT_SiNm(`
z(CtSY!@|z)i@Yk0@g`1jlmnJd^{MK|snTsaSa4roy2;5&h4$V7>8xkoxGuA0yX&8Z
zp-JCTMOUzcH(_(>xb4E2ZFs1Z-BvlO)ih3g12xh5o$c=1@1g#A^9NePRAK%PYn*%f
zc_Ex}?e9De(1z|IkIqhQv}h5#uKVJNULm4)&M(&nZI+jF)wZ{Owig<IuS5hClj(x1
zF(yJMpms(<=}BkqqpJ9;Sr)XSkvA?k=kJGyF%gy7x$9&a<FC9^u`p_ip#n#8ij3)9
zWf*egS*usj-PhhyVtieSboAam#cNY9J(}EgjJJTkBcE%}dLn_8k1MTJJv27Ie5O`p
z_sW2Jn3R0n_Xl63M2`@dm*9~jB(&c7n7oIPDk38TjX^%XP*|WNTF~)u$cKwP2@9h~
z|BJmR`9c`wN@$HuyYhWOsU=rV_T1G@+UB)s;{lwQknLL%*t3nezbr0FVk@J-k*AfY
zbP3V?G=u&tWT_d%`f`QcPBqqc^ItVJs9vF0Bl~s9zN0P$jy<w>#LfKUm!>bF5SqjY
zLxE<ty%Xh9k&|sDG?9`VDkTQk-F8zgcz1}EH(OpZH5DK+nhEU5t2W7yFp+@kc5;$g
z>-+}{HE);;+h+dY_WIj0y{hK!BD)JL`|oreJ+ZprF@MLZXdy$F)Z`5>exj>uFN#~2
z7a()RN56Ox$yL}r77-Ie326tAp!j&V>dA<1=7Xenm(Hwus}Y@m=-1On!rBE&KBcRh
zD0A#5)dh|vDsSoT2s&?M`mty-PxW)!QrqFh*e=(%td{_etR;NZc;sfU@qLq<!ULnC
z1!=G&A{y;}edd1J!WJ|&HuYqJi3~>~c=RZrVJ@;q)ZC+X#>dZ3|Jt?nU|q(o(-<qd
z$4J#DJ(-vLDtnQMf5jODBLcjIuOi`CKjx)oqJsrdMOQ?nrp8S=rlrLWw*&SCW!fqE
z`F<@em#{0hFD)%G%6+UZpV=%&$G{Mc0cZS41A~Jk#<ggqMCkEPo$}Tk7Cm(6{_wC#
zW(V<yiu-eY{pOkW0dDeSp4{oF@Mo!E<Ebi914<%c(nsCV3l(|Ba<}68<?gx8RF3W`
zBD#)=jU@^r;gaG2pMU2e;3Lsrr8G{f$L9@p8?=(6wt3*$6fvKoy@r@vR0`?;Az|V5
z1ziP(c(BxMoP!n5_Mc5kmDKhra2R?N*`+;sEc11Mo!n~n(e_sgobEEU6k=H~$~9w~
zhsTISBR)Rr&0s@@7)lh8f~cwCKvgkZy(cLhSNWl<;H_8YqW&v7q#a}R8EUirZTozN
zHiiO70>toXgV^jslUn388CDZXcG`o5b{RjnI5ywu=Im0_11uv@=7k_8;b9+vPqj61
zY`-kIFv$kz@_|4eN-NZbR0w!tq#$ReE_yiTvs<-Pb&Fo0sE9}fT~t$J<L8EkU542h
zfAJMoicwA%F(VY0^lfa}xw)EdYayV097v{dLbq68E$|>jvB8qCsHlOt`T5S?VN=Ic
zjRP#4oPp%Y1*<Gg4J|FjLo5m?rLb$ylZ!*tVdFF}dJY(bSmg;S=eao>AQ%wGYh1eY
zhzx}3+QZG>EpK!!qBN$RMmC6<Ila}HXPb2_-L)`_F^L7Etuup_)(+FqH<ecxp|BL!
zpo#&NrU@gJyGX~dHS9k*ALIIEcP4itMLoO+P=0k4Zfdp3J@r9eT8gz)lrEzSOR8!X
zHI{uuJ1uZ^ag|)A%csO~3^HeGm*wpoY_4Y2XOFb4=HGdqzZ0vwbZB$3V`AMK1ipx5
z+w)%XiA_rsf44{yNId^k{nW&CcE|9gOG>#c`-@;x&5M<d-j1fAIr284<d%`$?Hia(
zjoXaVpW7YmuPpM*@kMbz|8~33hMT@N2Y#BrE9;av*>!a};<itNVQl~-NAFy7Ld~S_
zkni*hY42YUM(PEsKg;7a+(Q|Aieb{WR@B|8In*7dlGiSA)h8~s|APQTMStmh=xTbs
zauj&Plg_PCOCU!Ah2l{izlq6mX}QwOzTkTiGG%&;mC9~KGm)U5op!r-tZv!hkN=VG
zFA1TeyCM=(4EXc6cWW{US+7V~DpR5V`LMxX=)?aS6l2nIV$Qy=zu(g?l#qdJ-C7Yo
zWGMj@_(|uqlM-@Ws9u4mN_-jera3p3FmUNlF&jDUpLdQP5)v|x5Y$a$H;t~pbmPv|
zm|a6Dzl1jcU~+B=Su~ejwe#YC!=#_8s}-+Z+jT+BH9r0hMiV`+?<dvtx}bgAoV^|=
zf1b7gtYh)hz`#8YAL?q+BLSCG`19v(665pGP(^IQF9Y-p3<enJy=;$eNmShEsBSSh
z^yLUFGTjLoo#O`~F+sw&Azur1uq4K~ganDtL&g_3=Q~^`vXSL2Z%EZQA4KsP85^Uk
z)nO8&hK9y50wXQ^pw~8*?zbkGmpPOnDZ*j)UG88Yr}hW;83Cm{#{ns3U#&2Qjtr>|
zujy}<ajFvr(kOx<@Nc{;Y*De=<L8Hbh>+W;;Qs?G5fQ%+1>{?HZBfPO8BCO9fcpK<
z`TMV;G24lPn*wEBZZBSJM<p{@8HK#zfi)zYMc{gXOF#)AW_=l+6diM82Z_-=dkEYf
z!##)8ONBH0w~aO>NoHF1t8s4Iig3v}D@*LR4<p+r7D!Xl*ZXBS(55ly$PGxTEgPQ@
zjCSbT^!7-of2N7!U2$>gJf8=3K2jqY{eIgx?FYRVG_oIrY+2Nc#3-ICt`n|}FT*#l
z?$+Pnp19X1kr$^`)tDjwVIrd>D&oct6h*C=IYMC&7hkapeXS!SxdD8Gr|3ox7A7)E
zct4}A0JT3<+=q@Fp?FeGLQVWVOUv(=v*MF^1}6|rD?l?HLX$dAPiiqsqT>rXw4OeF
z8Y50l>1CkZR-kP0*RNds+O*XiCy;+5$AX7LhbJ$f1vY41@c?g6boWIAaT*$hsQ0`m
zW<wSZK_8Xf;Pmu#@{9Y&_cqQUcUMHBPhtcgh=045ZwYz<ftV|>dPr)bV`Dd<I|1Rz
zkxGK#?3v4G8ydeW$-zKyB=z+!kn$Jz-_tiXrj6gRaj#?jV;5|Rn|ZNCt+5%A(b4PB
z1--qA#iNNHO|d}7pn+R7AZSbnA_@!uO<fJQxOYz%JO^qHk~I#DTjI2#M=lc-jEBH?
zARm$<qo9%)KtUkdsKOL8`TjmSG4Y`O-Ww?LD0wdFldf{)NUliE>+y<9c&ctvQimCD
z&Z_N_UR3b53*YrDt8aGlu-QiCp*fB0r%(2bBEj#f3UJkO%>V3F{d&`v3!_UR#NORh
z^BcfcG{pE}V1;6BC(g>HMq;v+!KZtu#>Oe-+qduJyzZ;$-Z5(=V2o>l*65MZs19lh
zxS{)?3-oW?IN_#B$OX4<-O5FJSm<eT{W_%_6*l1MGiPL}oPkS%I0su}fKUomA+lg-
z00W_;gydE#3IgtV{dzA5u*x3oB*fo1t=99Cd(lY}KcYiwjXT#!Y|I=&K3x3$dz5if
z+mIV0kMZkYXT2Ky(DBiuS6Et_UXeQQ;#4IrAvrmjt2i9<!mxLaQ87&i4Xwsj&c}{*
zUX%$(e6hg1EkDRJ#Mb~(SxU+pZVEt}Gs2YL-y2w6A&`gISbUpXo-=RcxRTQ7c+aUS
zwAKkpfG79y@j-fiyGHPHTibraiRzjfc`EL}&1E;q=w}1WVOL-na0?!U^3l=7cbwE$
z>O9Y>n3VJ!T-s;S>8bhC$f0*<tGj?~-bJ<vX&Ku)OzJXTY~d*!r<yEyX#fuXxSqRl
ze*Ut&-jC=mg=N79#53y4+)m)$`=Z&k0Bu@`JZT#u`Vk=+goZ{Tg4kl10{oKUg1EH$
zTg^hmeOS37X_AVvGA`t!YVXu54ecaR6DssEq;xOlmJfvFl}e7vT9O0$ZLATIu3}YC
z`N$}zpw-z68!s*G2Qvgb0)OyJ+rRWJP#}(@;=Y6NGnqp;`f^la1J{g=4;*;v^;7Qd
zj&x}O-(*3x9qCzCM^ak#GTLez8!5Rdpiv^w?1A%6CPe$iC_dn13=%W2V}cldQculI
z!69W!g31VeqCXg4BrvfLi9%=FtkG_6`&X>?#}`U=zRpHN%^d-FpeXzXEBd9Wi8xSl
zROl67h{{t;^$lYH#N8OauzejG$)#T^7)Gt`-gONcLpb7yh7MEYp_G%vC>R*U;TrPb
zJaIa__M7wgH7vfP8Y&LdeIM#`blN-knh|F<#VN135B`_TM1=LHgInH2d>g;<@>LmU
z2I1Ef$c3xtWqbeC*!rwqGx3}b`ZM)K0XzFSo2M8eCZ|DAJ`y^OmZ<9$&;A(PwnSvC
z^9u_-HS=S@hZJBw!R=ut%mD!bvawFu(*4P6SF^H`u0KE*Pd1=WciRBr{p{@}T2+fx
z#(<3)o-4oid~6`Ng-LwJOy^T6Z3+D$>R0ZnIr5J>GQ2@lb(w6VrTjK!JBAsJ`g(e6
zL=vd6k?wVT^lSNqD&Uqq^MkMR%8unS-n2@N&B%j^{Kdj2AP{J9=py5m+qBS{$Wbw+
zrws#DGgDH3V~I5;2xJ#oJo*Ft{4jHa%{qqaGG^ZzzwSbpd7C%4k0}~h&DM$AWizvf
zYr8Fsf1B>8C{HE;A%<Vmo#tM|uH|F;+bbT06%L9iT`WuOfSeeMHO4x&Y(q%-0o)dW
zHu$k&35En2JDTVijt+_vEe*Y_X&utf+uDks-u>hyUu52EJUo{=)UCN6Y&-W<eT^S@
z*C^6jw~kZs`tOma5owhi72rOKwa&>7o>5}~c`hr~XPLe+&@e9qQ8Op7&ku$-xoAs~
zY#l~;wcaqE3}@OxOL_L(IUadF%;^EZ{e7&XSx*Tm@S>v(p4qj6VVDG0RcMKQ=j_p?
zZ;K%1r0UtO;+rzyahDqF>v;w2Ci@=Ib`uvMXZH|xp>Sk|bHJ>sqiXBsR(Jky+e9mQ
z{Cb#OMfM6vhVK=~X}Q9lvVBh0h@Ta4I8)bSLlMrAiJgRF^(y^shtpj;Ohm!PV*uvM
zCwt^iNu%#VPk{<l-Dm1C)aKW^hw<^$3)4a;{Xkq2aJPwx@^EN<dplY*629XvuDrXJ
zApJLsDC@iO+a|-4u0^hmQ#Ls@C3{wT{Yjj~GSo{Vt)TJmZFs}zKn=I@?^4xEZhPi`
z{unFbMC-TAOe$^)X(%71YMvCEl!1xzyP3o=Io2BK&W8wW)LPO^snJnB4sJ9{r%jvt
zOWB3J%SmxQ8g31(tzPBjCy+}cGHGZ~gUuPdMXPYjy)(e*n}4SvmRQlkLimE3qK*zH
z`h!8-2rL1X{0?SGKmhSQZ>G~*f^u?V0k#+ur|94~ajM}UZQCvTR#9D#Y_<s}ezmXe
zbfRq2E&?vzWQVx}h-+w%U;hz!EVt>BC&P%l$VGuEk_c~2MJnffN&wk=EF(!uPxeOl
zvw8w1XBn=*e3sSdKaKM@F_X-$siuadFX~I(il+jMcr|t%Z%Y8;aq?tEzM*Pua6(E7
z({H>MT`lF+)dNFbU=-*Bbk?e*OXY<2n}BZHel0BYEim*Wuhc?b`J=35|Ni}YGfnO7
zKGoG{Y{GL25^K<y&E8&<qkg2T$4n2*8E{Het`FXw*%*m-NUY|Z@zH7O1n%iOHDy7?
z{ew0vPmT|Pl<pxuQO>4<6jd2R#{xocZ4FVNAi7uls#)pe?3**14WuRdI2#xkm>JB3
zg>i@p-AWQ<Ol0@kB(sPDM)GQ044vPHzX@_Zc=YLs;ax!~Wyf#^!C1n#tp~wgR`#PR
z9iJ+-=#$Pip;CB~kcQlun|$Q&$sj!)IVbuk_-Sm+rO(p#)Z183-nlip$#G8aN1)<h
z(?2Zw#;(lVJnqe~QHx0p#a*JSDVg4?i;M5x@yEr4DGkx?SEBORkyQ~_lV06)XEJp{
zD6%!B#MJ6a6uX2G>unKMf<c^K)5`Fq{N91yISVUkDhHuf(bQ{3@pKH&CnhF%r!`MD
zvJk91r%)qHb6%Qh0UUF3cJ_`b%YsQUI2uJ+<%&l#Rxn~c`F%o<J{?tw{_<qqOi${e
zEA-R$c)n^a64qt~jJQyW*i+G;zAVfLRHhvLB{@Cz8$A4-;}FF1qzK=E10~Q|gv>pA
zG**+Lmpbx*4glut#Km34jV|tNrY`6esX4s<)s4#~V?;cLjW?>Ybx&U6hN*w}bdSZY
z(m2JF36hIb`&CM$&#rnLPu+ir@lHy>))12duJO(K;@jzn3Jl`kIqjM6CWmNm)Tz99
z<oL^ICTlfRZx#4IIfMQ0v)%5P!;;(<5Ev-0rUqpRuZ)aLzsobiE#a$E^Pj`5s`>|l
z5Y%)*CT0}mhQHzcQ0Nb}EXrF5z66mDU`RwqkhvllMmT}ijn47$;89L+Ca*pr;K<j1
zODB%kwjh)T?iCTi^<4v9qY<MaWZSaq2u*x;_GJzOs#WWPSN$bri0(5EtXv;nv&T?k
z?@1$(3;(cvTmr~B@Yz6k@ph<H`%jl&VRSq&AOKuHI)Elu!fU{{A`K&$@9PqX^yKP~
z#KrG3{BspJ!C&ldtEz{?b>(Q$ee;j^!5t><F*nT2$H8J^l~A=11;{l%9zDu-JABym
z`(?Gk<$wDnGzN)8mRDatlWT(LQ<Hz2GJ=7vf4+M8@>u<mqoJQ(GH9&sJ02ceq2H&u
z*b>X-29oLW<)C|L-U*>mMBR$RuP=MC)&Si3yw<9zp>PFx(!+oN$}{zMepbEscW-lN
zm8GJIHa!N`16Kh|6~5xqr5Cwcva)MHa<!XS)os}S*RAGd{R^4}2`tmZEJR|(`DY-w
zUj4#^&HpWABY!Q||04Wn`fxDwy(8D5Qz7RnXVrU!1-BR_)ZA~$U0LAg|Fbmdts!^M
z56_n}H7<nq03sCicx6|u;fXl_(WyxbNL=CZ@ds4&2`A+-M2nD1?95{?zc`#0)o8cz
z#%q}s!GSwRQPfhzpU}h>x6iKkSW<n5nb3jEW$*gT3E5AqbJ>IrA}U<;e*`XqjeSZ+
zETek<{5tF#1T15+?wuTvix5ueVmQ;(>`1`@LaMdWZ}rW8%}l=Z^VT=J?HAH$31_oc
zgF3h&t@k$0B);m1ZpOIZ68|o1BI~%L&hc*rF5R6fXjKkN!bC*@6+-k&nIsML4N1w(
zrRAnTgaXtxbW&v3DHU^(<uNU0f+8NGdvU^4<p^|O8k(BG^yR1sdTjUkKH+JzcPzxE
zB!6>D*g14;CK!Sq0<jLy*q1V8v-i`s%TJay37KKvkp8OGr*A6+#DW#ZK_W^BVs3n_
zq;ZJ*1Yv-(GChJsRit!kYUnom=<(yf4wHNFnxrP0@S4EM!jt4ZjqYbmTO=SGiOSh~
zt83<($bNziA<*$A{vny%!J(m2fG2e|iUSP<hnO;*x$}S|k%Kd?h332%T1iMSr`bQz
z)6p#%%g2GF27V(d>JEwxjeQVRaQ6?LjDa3SgUy1&dT>ugNeKnwXK>0W+hX9RK%e#>
zWB-9ASwwL4za#qrF9BY7V&0qxexov;teU2Ok1Exv!bq#B_2@JLLV|&VJmZP9Zoko#
z<3pE6I=y;7nr!}*Va{h00Ar2q491#9{X}bi;GU(JT^q32Uu;zr*(R(d`*5dVmqAYc
zcz*Iffk(j@0-ctYhK?z$Aa2p{ss!ONShUYAE!2>(0IEXFN^*Vm-zq(3jE`58Zzj|a
zLtO!iX%0q4RL;l#Ks21`wBlGYhL&0F1x}oZ4k0U`2@YX7{I?b$_!7&0(!0xv=*1&z
zXt)PK9sAauL=PgsE1(vRLt}GbYh}J4`-N4c3iBU607okJ>p;^Vcm$N*f%C>N%V#4r
z5K00A1#^TBBT9H3qEvFXEM5lm^v=q%114}le*<|D-$^4+eF$21@7Yt^-p<xIt+7<s
z+6twZE2=Vdq0a$<+Lg*~H+3r4vTyN8>1;vNxZ(RFHP=&t;a~&<8ssA7KnM@Dzem#u
z1FMO>5UW^#ftc0q^^gL4?223UhsXcQW&XyLo>wOoxxuNTJgo?<VhaQ6Ngr{tFe^S1
ziUT9{n0T5Fb&iy*=U-u;%9*zn`>kIVzBgx5kpCjD*TE4uzPeB^FF!mYf_}ilrO@ge
zf`ka!?bWMSKVDPJfxJQXtX%iS0@T2+LBAFxmJf=*Jq%n}ay)SG;BN#92I}94E6~|~
z=<z!26YJ<IiZN@+@iEE`8;bqFX;fMgP$H3<n470ca)5rkoCpfXnQ<+lHUJWZ%r$~9
z@|C9?6%w1Mq$GyTn>Qcc>1j212+gD+{s3`=Bhs7#D3%JkR|<ku<0jc_BdUP#pt-%h
z<nw37i|XpNU0wdzU^c8v_UqTKfj}GStfb921vU~dFR%67_$~kfGlSdmOkE1O@K5lH
z4h|0OmV*rfDXl42?#k{%HffZ%!{PPK!+k<c=-UlQ2*?V!SZ)#(%}<1~O}?rgA;BpH
zV}!Vy`0Y%4@&1}8gg5N`twH;L4kw_>x%0h*8Wdhen=h6eQHB2=JAn14PDwEdli)=r
z-@9EGW)3?c8&jOy>!=FNBhELaNvP*h2>&S{u6bz5X?~Oq+nQWe<<o9_iQyt7u3$@{
zN&*$Cx5`bT@oNZo9oS0fK!Eb2Wjr3uZ^VC9JTcQoC{9?-&-bFxlaR<<xpD=k;$dJ-
zO$}hhT|5+@6=?|89Lqj85&7XQP$4%}qOIwujg+pJ)nGD8#`hP8K6=C?w)wV+2|ZqK
zc7BSOxlSpWnwkp2>>VALzl}7J0HR5Z){}iqz<X1YlkcO{67(zPi2`B96Wz{MHV_CH
z3h=g=_YG_~?1#H;Oi4Q5-*-=$Ps}7GjJ6CdX7-N!2Q20V7W%BegS4v03zd!0963|k
zgL!e2O)ix^1pa}&%x##Ox4f(k(CO!!k|yDXnC_md)PytX{q%C@;F3G>q?WT**{^-P
zp@a9tqbXH$T81o*f_BUN05FFFix1sngdG6a7eYN1;KfXI8)o=*_`BQTq|{4i2oErz
zG`anJxc#_i2s>=)rt}o6H=y_#I&xg7p)io=bLf9oe)Vx-5w<1vPR|thASgdplWfU+
zyRA+u+53jgzsN^)oQlHttwyw~+7xIakyc&pd&&2WXmM7&O~;;qQ$<7&B=EXCwI=&~
zmgnLog}euw?hdH9Vt_zU!RCYwbkx{bQN41i)IP*QY8og-Hw<s6z)(W27&?VU_8b{H
zgvc2%E9Whs$#_DmYdn3EY$9WvIo4Kaez!&|rr1ZPtIF?l?Q_?Py0kd*4*qbZ^F#e{
zWQfo@RTmMnn@ykRVuUK_;euSAG`-pK!l@0?acy?Ho8WWhS%XZo>HJrvm{A)4cerY3
z?w~fND?kc5*fwzw!m}S?s-`K?w2|NhbR5+^$yPOGlEZh7j(&6JM4#PtU<}5`0Z$#*
z+C+eJGoE!L$HVVpR1BCe#<iHB1ph;q<I9np*)g0s)R+ATvRc!2(+RtOk$`-z8ksqM
zJBR-=m9UVI3qBKysx_^{J=WQ1p{1v*`v+t&K+P7UEgvq|Vb~4Ors#qK9m*Y$loQRX
zazCL&#LdkOehV@;c$F=?(pDOO{zNB8h!tR~7~@e6=cWqQNsbC5I;p|Ww%)Rbg)F~z
zZ{8;ZyaxI9@m$9i6^Y4-Oaw(8>9Zpao$sthIR*CdfDKy9nbD&ll`g4GYViCXM+Wn;
zc_IaUv}mg*rApvcc&AC{wyY1T+&y!zt%l`ud!%nU!?^3(Rj;t&x4;__4diG@YtTBg
z4%M-de3AE0uFRmsAHMytkbLE_$x331@uf@Urer(se(nn^?paKn7a2Co-9G(HsiP_j
zt`GbUfEd8v+rgLZp1E=E=_q4)?*vZ&4zG7sR1K(D1PFy;gca8=L3V@j6?^$HWdkI`
z?9#GS+u7kX2qwKZus^D#MxO{m@iB9vuHc07*)7{`r)Fk|Zh~MJ^&*FG5}>B}!J&bz
zkeA0UM@979!=pAE;X$VUpY$22y@F`wZryW)2nF48#-|%}h&l&E6McPrU>>!!FldQl
zi=yXt;&2M&&#onUV<Em=<xM`IyzaXjF>wIZIRpU$W;8N>A0ig?SNlF)Sy%U1GGl(O
z$?$sFO*|#fCclo}pXyEWcKaGGl!Ph9^KE3a6neYz{oaLZpT5Ke7F;pk*h`am*8iDA
zw^MWnJ{X4<r6eKi0mtpQo7Xd@zc_TOCaluPVm?gu%=`AutGKP7`|n`Pc!Ro{nrwaA
zp?S(5cw9j-(4@+$H6%-gPgY`2*Yvi{sMpp9lZ`KqLcam?@*TR+qP4LwIn$b9)8Y=C
zLA}x6Dn%i*y!K~=z@BmV)=X&kW@j@cJ7G%|TO>$z)u_3UioiBC=4YhhVxc7pPpYS9
zZjyf~2re&Ms3~wYp~teQn9g6onv}smr7@>WN*o~hwP^#<IA=Zo?j6L)k`D7*5N+dc
zuzrx*Jt)6QjAj23(=(s1K7Z>_C-HbXA9}()EjRsgb(m_xz#0&al&c(5VzTKbd!(t&
zo$AHK#b!3auu2sb8$qUwf`X$33w`tEM!fNO+qxx388Be0h`XibR<BL1{x@uFF7fYK
zM88Tx|2yrCLKeogfcP@+^*=T~|K_)|j_exA652a^KA8}<?_Ls~&qmk@<X<!F2^bNN
z7n-6gy9kMR`-0JmkcPmPSVXfqhE%I?(>;yfs6{5_edsB69C}fG9T824cxlqF7?+$0
zStI!gs3AUIV9nohp-Vxs@%BN4kJCr%<cSz7v&sLxjnx}VR9h_;)a)Pa7FA=JSL4`d
zRwQ}@Qs*aYS_V$<KHuKEwR-p~Z)-|ZamEtc-*A_z1a38YxSZL){Hplm&%TsT=hGZ7
zUA~L~yjQBotqJU7^F33Q=E&;094VcaDqL13a~`JFm<F73gTT+@RU?WQzLqb^A-iA-
z;g|Y+KuP@sAIbK&vP1shz;FDUyoxgr1tIKD{{hdgwMzxi4@^l#`aN!W^YvTO#F$Lr
zzC-C`(deai+NFIA__Wj!hx?rrIWr`26N8M2u~^+*Wg|a0D>J1`2&HaUQs$jrm*$0&
zrBE-CU~#J)z7ww0<6nwPWQaj#@$nqxqQ!Y<Rw1;CkV#9nUH;^CIib#f^4#6Jg#Z@V
zH~gOkr}=rISe$5S(G58{K{bPPL8ymu0+>~YB7RCBu9h88K7l5*mJE9-y(h4exi-D~
z=PCfOc}5)gHp>1V%3#_&?7~a`HR96q15oaL&`;Spc=x<=*s;8yA0Tko3k?5s(uG%O
z=pzT&Qk*$9wNCeN=%4dh(zJlC;n=wM@4wZR0X|<5y%p_cBu${_1+htOmm7T*&1G=l
zCM^}7gopbhav;gP1tS+z<aTA`nwwUBco%ohlBQ$V?z+4A;T&oOxru)ZQS6fqIKRA#
z{$YGmuFdvBLGQUYTbtS3O&89t<nQ{s>LQsv1o~>+;i@|An^_jmTXO`uxZe;7D`oBL
z?=NFC&3YgW=g*r*tQ^{0S_i*^x-lwl5X|?9ir8*MC5&=kF){<D{n<)?C6v{x&VD?b
z=>82@9b7&aso9DZkpC)q4oDwB8fN3PHQg3o1tOZS;pj8UL2tS12OBhFI5WED=9}fH
zP>;rgT=bU(WNSo61*iOfEu5KJ`gvyCZQ4b&zZj>0jm10k-`o8|u<e)7Shpw#4jYOe
z_6TH%ovWQ2-3ZFLveI$x+j@KJ75zy;a}`Ac^+kqEPC9Lc-s1fqD>7JbredZtA|=MP
zNIP&_<4b&)yo-v?e3d?I2#k8`sliWh@#9k<E!ge`dvDW`YC>_Pz@X!X4I7|~*nF2Y
z6a;TyAC;ZtlEdzc5||RTft#Wgz3#iGr>68Ej(`1nOr{-qAZRQ8!KJfj<wnFD3uNBh
z_V)HxeVW&$GBqKI;?!vk;$tjPF3PffJGF#15JGN+X7@3ysiKq$SW<wm7(w<hFwc5S
zZn@xE68Yp)NNB+W&#7ie4KCaOnuSse!YAc)1(YwhkBl&O=s9&QhhXqabWYB~u?(@d
zGxgEG0yA1F%k{BVL;=Lx$7v4iLc!0HCw?Ud`{#w$I@YjXbjXqTIYL%Qcli%G^WW4S
z={4=$zaQX?-pXB6{X<zV3(^F67{oqkAM#>y%_-Bj{~0-v<&eSHOA;fLNj|m<n7g2q
zmz$rztjhf~KAz}&^8Gsxk@#7(ff<F4!c{AvkMX4G3Vsn1EEhjNzvLF>oIDP>ONou7
zrC3WOA_z84a9SNd*vc}SRSsH7gQ~$+m`HBlNbx&Y?+`POahTn7c_c5$!SLTIfSOYk
zI}5J3_^J4=?78C9fvI*FOMc}yiUnE;%g%T3U@7V~4!FETqjO;8Ad|qk0?z$i=Q=qv
zgXH!9>g`LQsoeXvJE<sRQIaGil4wF1Ya^*lp+SZ;k})YWM{N{kQ%WPDB0|a(p^``g
zBJ(Vn$BcV#dw<uxb<TOG?^*BnuJwLroz?TKleFFUfB5~b-!)(?Pf+DysC)hU8BA$U
z?d|o~#S;Om<Sg9V@e&F<Mu;$YJ`&*?{q;2fF0e39oS3(Y!am!I0bM-X01@jo;-^SH
z09wv*EFTc)y`pXqbrTkh%ZJcarHCg%YX(=>=tzc6QeLwGQEtphr{$eShlg&C1hFv+
zDD;Gc?e1B%`(7jM0k1zpVS`TqV$vvO301UwY|e93cktHz0E}f50u_lBg^#ZpWEkY3
zv7towEv3bzjdqh$TF!mxj#WS0O8R)Hw23aQ%5=?)nS>StN}N^mfq%qaMBPPGpMc=V
zuQ~BO)AF45gAM1aESYL<hjx(?;_TUt#Ak_&!2fT2oQER@SyA#JI02C-qWi=mAY*u9
zyY0M8`ZGjTEP<Tv(W5mzY`2=tseYD3jvu^tpC5<hnjq=%&4pIb+ApoZ<JVg3(+WUV
zxoR#Gn$MU5M`V|QO7@#-<Z|F9LsV_XlNuyAlll|y6I*o$e8CY!2uxi-axCUNdJM4i
z!HK%*P^Ix1O&~TK8(<AAN43mf+dx&vpdOrLfLa>u?l93Jf@485FS*bO%ZhW^UW#{O
z$<2a*43Ws-PcU%w_1mEm7|lkfi((qh$q)9k7M`9tTql9E5c!9{gO)(VMQ-aNm4iUD
z0Kx$lK-sKiU_haVtx6&kPmrT>(dO8JSW;1u*7Z5G5C!Ewm|obud%|v9Sdjk}jyK``
z3{q*pU_?wASX=mkTx?H+E{LgW2)Jfwg>;*DMK6WX1~*_nVr5$Ijc@m{8THH~bh@5i
zUeI|3K)U3Co`MIU4Ds18=<UCEXaKaxxgas8%{0_*S=gXnQ9fMX|D<&N=?Zmkp$S*J
z_v6C8rdN11DvlLU8eQ7r*n^k`Ir@H0y{V=^6R^7B46kF^1#c5R5_v<$0N9V1Bho!Q
zJ<S5IV+6W*$RP)Pi_mIq700XwiBtOH6BEY>8uF88&-P_*w^SLcV==EVnSGw0FGt%P
zh1sz8NRi;;$Ud>Ez9Es|7n8J}H*fxgOsi})F1$jp=J2lT{d^{>(NVl^8r-xZ$%+Uz
z0P<9@!p*^9^HhCb8V}(T08Ej9LDZ*z@K5Vp22#-uyM)vao+l*<Soho+2Zw9ZIeDJr
zGI*DpKpDcyI3#;Zt;L`t&(D6}%~tt>q^q~NU(^hR*$nlKjtfeW6X9TjL{e-?Agk+&
z9iB~A9x9vOMwNt<eP)wmmIVGcik8=$+mRQI<<|k<Y)vPpRP!@;a8*}VAHdns0iudK
zVl``rz7~#s0zVHu5?m<=$`YX@O5-2!nZX+*PEf2kd{6>KBFJUGMEiWyEDQR_bGxMd
z3c3lp_$-7u?X|W!4GLZylw1rM`Sx0)kO?ojTVwrhtxq?Q#~<9tu00g|NokL@?!s&H
z)yR9weAzRGA`9IzcFU<1JnWR{ddBuOSe8C2A-JgQ^kA+Cc0a_EJN2}WWnEhxJX_g{
z{DX$ZD5+r6N0$ZR2nDlWh(u7heU1az#!rHtukAuEfpC8z68`>Trxk{(d5%dRyAq%-
zkqFaYxtFzS=k^HpX%zit)0LEPz|&wIQ<+H(dh+(|P9SKYMFM^XNM-Nncnr8SPDYTg
zB0v3MRZ~^9M&t7$F-*f{B7IlZ$O?cfl6n91WZJ(Jvx%#p=oQ^K-tgt~XBJ~@^vp7_
z@qP>F=mxP(j>S}}GQ=qKIk4mj#l4@<l?WXq;rb&i3~odrCJnWlAApoqXAcAv2vU^&
zIpEQA{okbZd!X1`%(Vctg%BJl1R9M~?JRhZukZGVYuP;Qfv6V8$Aq`4524QZn^@@K
zd+@-4ABXZ0bSKdHoqY_03GnoU6niIy`ZRAa-g?7q01{*rHj(l{r<V3?F@RS<D0cm8
z6c1lxuYC`-i(H9P;oXr5{m)$oXZA|%QG2yGGHWa;+aq4N-K9@O3R`($Z$^8<WY@Ej
zV2}RQmb@__@CslO|1lce42(hv&6*If$LE=ufhcKpsRLNNC;67xHR66Iau%%LmJZI5
zw1l1_d}ckFBUd#l*KG($I%>b?l2cSW+<M09@-z3}dubrJ4=fItL6BR9is3EQIevj%
zlbT({EWZg*6lm&mODDf{--UR9=lgEaUqQc0;(-0M`rvVqY6x^@QL~V?Hfy2h05gss
zJ4Uih&C9d+`ZIVk=lkiNf52+ul4b2xw1q?wq)WSVIkT81vZT+)LSt3m<N)R+WR4AD
zm44AGD?@J&#g9b&Iy?3W74!S;Rnaw;LrrPT2IG^TLG1xSQUdKe;ye1rOKJC_ql>XJ
z@C=aS%F`rI-CVb0^=jJTXj8#HpP7%$mgWcQMQ1yE+L=}yBzXbHAkFX-X}S+Dk~m(P
zrfH@Lm^_vgx~I6=Y=f--j&d{Ey`;^n%TwNNp1Uw^{vV_rMyKls+9sS*j^~^n9O$0b
zn{14V%FpB5v_(Eg>gOx@GouOD%}l})_FRv4dN1`ZMPYr}Q`yeK?NY@bew-uoVTcdK
z3$DJ)?&g##xp3<6E@u9`-tEuX)_;=wQFoE1^N4oJDWbimInr-%$)KBD1oh`JWMEx8
z9@$(t;&0KN^ZE#*?eVz#24(gOY6X7IN)zK$&Bvkg&4uCT99?+_!YjWeHBK8j6xSKJ
z9XnYUa4&jk3T?|0hpjK+9J1?VW(<UKZ6oenOq-;XlwIIGBW9dS%tTlB3Re<1#)zQA
zXp<Yw)+Eo~)GPq*)4Y**nI5sRiHUShPavZ}+}cFrs0)v$i$&x|!6lLR`i&dhsmak>
zMbtb6tbE3As@53^6m4wMHlnxPRxc_#lhKY7k;sC?A8p*_(*Vpi?EZZ;R9qa3J#vDI
zV&6=fdh9k06{H-h1*aUS+5((UpbEa?g;mtquCF4~ksrTTj^HLN3^c@I#a~*CuR6hT
z9=}Hbhy^RX@+_w*zu?>#u<|hqU(7&Iy`BZ0@+x&KT;IQ}!eA|MN(sken2ELin*P!E
z`OB9!+<x+pDYqgbpa{f251;b2QU8op)d;UJNH2@lD0sq`i24Wd;}eyvxxkN$*+?e|
zqjdl}#A_VY8iR~DkiW=KO3#xvUtM2A7oRMMMN;0`AZV*1C*mi#{!_|%J-6D!*&-H^
zZgJ_3r^|ixG-Th7ytUX}=I&wqMl*m2%GhGQRm_}2lKckZ;Y$;T;nYxmC53^yv}EXv
zbPOp0`*j6rQ{ET&aq^#48LRo_nFsZ;W#!xss;dInbrcOot@BlmF&MY(Fp9WbZ0r-9
z(J=4<4nJId`}OwiBQ{3HlerXQ>PLH&9z;wxD13#ADUO0ZG@g~)R*M=F!xDPsJc+y-
zPqd`?o*<41UEDR}CAyBhXfn^i$tm(JsnyBqQHSlL4jtq33l7|}u;Jk63!-uxMGP08
zw@7FqTyE;vamrNgPCj7wzQZ=VjJ~;E68gG{B(SiFOea4}*M6S!s^1GLQQYm;*S{5w
zfHBiRLr)EY!RPlZ%Ytyy#S2nYbswICE}!CVE-EaHQSep!XakKI0T9`@!4d6!hv%aU
z3u}U`J`C-B_#$@eGuhno{`&kUG*4bCTVk?p>em3--g_YxYU%7j8o!u}pZv@tVSDTh
zRNzi7wj=&?F4HTA+MHsxGWQ2>f^z;ayMZ=S&0?ljQg4BY{IN7?n}!GDdj{CWXE)B1
za1kCI!#SXPgOEpvoj}_`S(j}t2W~mMMbT3{OibLfzyMb6ElKNR%Rj|2<4icLr`8uR
z1X~QH_StdApc)`C#<THdQCkrmbj;oT5KnFm(@1Dr``V4<{ShU0q#h~z;C5ybJw)Ht
z*Hv2Sk&WQDDrSr{fv3l-_AF`)%^(|6tz^f2z+SfwZ~yLafi~fQ(kZAZ-_Y(h7Z=xZ
zhX2!OcckrUv|qsU#^z{)vu$mjm)rXrkFF8L$h1dLP!PBAABD*aA4iwWi?Y!^H|hte
zgQjR@H2=2ilHhob%Fp<xE_RPy)%!@7civo0K_9<J{NPRTA?YGn8uIUk3TzKe`Z5v<
zuY6@#?B25|f5;|Us@Lyms!jr5FAAhU?WDp0L+m$~D(j=Ws~}py6cUrWo=L<$+kcUW
zL7LBsvujMU2g<KeD8f&wcO?-j#JQG-53eh@2PW&z==F^wCM}|#8g%%Yu73Y3Jc1~j
z_oVo8l}97;MvWMb!p|Y}BKQ5^yr^))wr0CL<hsi1OoUP>aXCQZm#idV?jb}<aBgY9
zNyB1)GTVDF*Vx+M<!na^Q1MMa!!Qc=x8q69q$+6{S$doEj(Z7j8#gk#Di#q-)`$Wz
z&*?<2^qwh&nAug^ly+RFqyt0jAg-9PvZs`O9HvLyatRVUhDz$EU`B%FxtP)it|R)1
z>qF7EZUqvBD`757=?kxyG#B+1Dv<Z5G}!L_Q2K&X$LwMa=T+C1@MX-q0V<kTuLnos
zymz%|zE<VRRP3xv?p{@Y>08bN8#T+2P)1k5A7)2{lxZ`?pNRusN2E+%fB0kF+LZ&G
z8s{H$o1V^GPAW>MZg>MLlJcz^Y&Nx{A3@{sao|GS)29nzS;F!w`SM&YA$s-AzqkM<
za4i6XzrESIXZ#?Tqj*)g&zpylzQ+~Q=$NJ2cG!oM?Mb~X=UjRvcB)3s%-nn{os9{>
z?9PzeL1wqT&riKHJF{nrucE2Q{zp&s{E3PkOYtZGYji7{8!Ky`f1BKyE@qMt<^kOa
z@g^OvznR&#aU-9rcsBKwe_x+;u*RDT=B8(ppm{>UDgnE`DTBe+mQJ<j?G*1q<PO(N
zLRcZVji-iPpmX}lXS158Ik-~5GPvkiqq7D*I{N_a&HT{ua5sOu%VcF+RI0PHufU-O
ztVtw<a*An{6eUSG=#=@J<Gdir?Ow&b_eF3ATkbF;rgdC(bT2(5BFJp=n8Y)l7~CM<
z>d|z@`qGg24vTE(x8<iLk{6yw1eQYT!t+oX72Y-Um+}nH)XZvzY&^;;d<+B~J2QTn
zauk~7A0Ml~TjLzu_~XZ;`<_XZpNBULZ(EjVfiYDazGOJ>^F$01L%rcANyu`b%S81}
zjELixCnW}BRJnqbu)F1m_DE{iV*|}9oqIhEc~tjA={Ab!;{Zm5ShCqvK=MImpmb>n
zr7y<UX?!s<SijSbA5GvNbYIcKTDPUYTHb%}i_7b-73p<PqzrDyu~~lBh&N_zvLZS<
zGBRuM!kyc<-(dLl<2cbm;dP8;t3v=qBsddFcp;Lua*EEGNN1m^ll1&~-|jOOpGZo*
zJ{e1+8vN*>w4^Y3CFL*qDL4PhNWH7^bd*9a-NR{iyRpga;#dDJv8q8fMn=)~>jFgm
z!X_2RM11YT2R0i%gZ{SsyQgqA23-)igW7SEWYH<-tZa#-b#rzZSf-=n4%`uJqozJH
zX55%_o)gLve?EroL4UtZp=)6g;}qGa+dbwdaL~l0L~N?3r{^|mJ|xV*c9w%ud<h^G
zyg4P>bt^IXLbX8{sNk8BIIOo_sSNrK&xJSG5@~5?EwIt2Qk!2eXP&LDYmlIja{xsX
ziV11SnLU?++eICS>Vt4L1gTd{GXZH#z(Ta5R%<Qt8~gMI@p&KTUl><V94nA%L5wMG
zOoFb_rhsdjn4rGtbcq2Gz;gaR4u4=f$8piSr2Q0h0QoCW;ZC*7$@Me)YvU>N3}}lU
zBZ3TKyg#9?0i7V9LA5LF?9?3pL%VK@Z;xLdN-$hCFsN(CRM}8~c?B$kF3@OXX**jd
zNg70k;~YeEqVhp8mX@BrMzFW0W?{vp0JItqw-6Cm;OBgZ(F{W6wGtIXfK@^FBFmOF
zW*NC5<>x(=o^5|C#V6`kqwVwf;e*T*^ggSakDneCTxR5{xecx)OwWpnv|$K1od*Ug
zI79JVFUNbN{M!t`FvXCPu*ksypBf6C)|wgK9aMofOvZ2l!4c|Rk2mAs0DwjH*c0dk
zaX}KbAnLcZsiA_7Dq~%#lH~oSO9}CLQW6n+ED;GF=?}MGzsfWsqxTL?wuQ!firT}w
z&&B1%{WEbvbN%0j<vS6tX}$~!)=t+h^jt*zZT^J>C@Wli;DCwX8%|t6f&5d3LmAEa
zuq1ZwEL{qc)k7c`DVJ^{iaSn+0!C2G<Hy=5Hv|w^LTd(290OT8KH(^t0n6o4HBAu%
z2@wt1W%CP0zPH^=YfUoTMdkLWIIC7Q<NzKjnQxod#520)B|b(`kA#SU)z}@S7Zw7Y
z9yZ^gmxScu)!+%7d#xiTMs%hnXgiumjtHY;LnUj3`SB*QnNu#AGe%sbMk2s4JoMk(
z5KmGg+nK(`l&Xl<o)c|@FAoXOE4{n5KNY^xI9lw+o1|o4Z+7Z}GS35Bt&<(UT6U|E
zU#v;8u|L~7)#~Uy>T!cf8^6fcJ5zYG#6yXnT|cK>EnTYp<_Wfeh8qDIGkR<byet{w
z16mcEk8s5tGwE|^g|YJXL|wr%TXl~T_6!KRT*pj%YHL<*ns&K55#-#1sg^~6-f<|l
zmD&Wi^TyzGF6l~43<ep6qs=O5&9K&9rcN3kLtA^iAqgC1sOQA!nx&~0xfsQ{V(kW+
zpW9(X_j`LEW+`P|g}_H}>~I^WV#yLwRnxxIyT<C#WzM8m&z}!}O9{(zYEgfcFp1qv
z@Hr-n3FuewCO|4!$0*nb<ufj>>h7Uc_l*Z~`I(q1m^Ynqarw5fX^5~sH8+o#WM`Nb
zJbbuA?i2%hCXa84R{FlSwhOT;M#VXBZYwD$1b|VepjTHeSeD=7MClztQ@#050n$-l
z-{$9fG3W)z8sY1trGZnP<C{4bq;kbXfVnWAL79d;ZM*5#;ZkeN3U(e8_-5egO8w{w
zG~u;ns;Ur5^IOK=P@i?)RrkEtBbC#ZscA&#EMPG11%~+rgjS<hd!@eXVS4h%ZR**a
zW(^^N;c~u8OVI=3UW&c@Ez!>@U|62)N3=e|2?h=pdZwljvkIr|i8lzc1O4dLT9cy<
zSj{Cf*;Lwf(3hjjPIJTv6p60vqrd{;MT=HF&rBxRMw%R0>Z@MJLt{vwTPgC7E904D
zGyXli2i}Poj1Mg23Ldll2D|d*!opkj8C0=d0>No{Xh(2+^b7u}hKE6Q{;A1{iEVQQ
z39JW$6L>PvEU7bg11flS_(L}ebiwGr<~0=XJCqWAzXe8FILN|c_C6YNz&T+((vMS9
zXxEYem8f0HzTJIo_f_xPWvhL2x*V&eo)SdO1HBp(@6mH2%C67_LX54W`n&Y%MxcZw
zb4Oe%bD0B22G#vchFNF2f*9TS`+6CfA1n4HX-cbwSsLVa8~2SB^YHMLb~tBuP=Q7f
z0HLTe9tWvsMzZm&+WuUv-a`3~No^y6mDJV3c+TeC9G1>1-+bKU1dgLk&Kd3YyT`E3
zS=%q()o0ZCRcEq%RbiEjkDhcB-qndiGd`&qmA2W+&vG-~Zxk```-=X}*=KoEfh`z0
zBbh7l+J*~GUn*l>ZZERmL=HA8iaQ78BG~Z>as&GWk}qDo7-rY|TGsBtg&4|;D`U%j
zJk3-mkHY|?<OapLu<lE_JpU?N(IBrf=VD5RoK{k_`vN)jmC5}Bw-k7_YXt8oHLwHH
z0?fE-&0XzJY?Dr{Obw4wE&Us2efgK4I0f0gG^7>YwSC*7mhwT=_uHTT{L|8ncXEC@
zlz!Id%_*e}TIek6H&u!Cd~oD6=SWh~L8eR!wMa15#~Y&&tW-VuW;g<BP86XnoUTW<
z352)xVLfL?9?Cc7Rd*$44UttQw5e{!k1n9yptwJ?=qo6Gl5*=P9^RFm>|5j0^a^JJ
zUw6MuKHVUWL(}KyHAg}1D}zeD8$cAUrr)!BVo_ZmA6s{@BJ)#-ub1NJ<l`6@;SX}t
zmmWP<=?rWc-aVNy@b%(Qk_(>Y#<94JWRW{}ucr_8bhgzdU05wS;Bh$-1;+CyAJ50c
z#^C>bwrts6$MiM~&^c)N)%4z#>cZIvpBu-wxJVP}W-I>yxnkMm@Q^8Awp?-2n`2P7
z#LcDCbrn*gJUuu+=)|USy7W4`R?1y*b@FW4-kiy%A(Z;QMcqBGdi+H0YtLiT4ZpH@
z6Nd{<-4~1h7L@B`XSRef<-nFNlyo_J@PKNvCBKZBza1(0`<pA?^uglsC%a_%e<LkR
zheAnO0=(d=)@C`0VqCj?$4nM3gu?IdN<_(~0_Upal0|4=ldcSm_O>}uJX98KZmT<z
z^Rw%fdb&ix8ZV2XJ9$l`@5XmsIrinBpKDfQaL1Ze=(jf+vDgIo<?}|?F+MUV{aX{F
zb?P=$yPFc--Tro~+`_86Okb<~?N%vt3T~BG&*X964-4Dz`wymDFDK=-A%f}mx3-+m
z71KO?>~HBv>fAs>C-+U{-|B(bgMVlyD82q1Xb7e_GCD7N=}6YYiJtK3nP5Pb+;NFl
z9llvRj~x>y5@--x0qJ!I9NZOEtC8Fa$ga)#J;J2TFwVjFD9*DVQH_?_6tEyOomy7i
zaLB5&Pe@Fx53Bjs&;oBOIOjjH)ERQ>8-GEy#WzKc%0t`wyVM;CL*Iy~DvR6;0sW%0
zL;OuWY%yBB@fhdB#H;qT$GOH#mIx#2ILCNkji>MwqCBQ3%qiY!<pSo+5L|M&A0Q$d
z`O&|kHz_DcI?>+p`u>RxL9g+f5ri(gqxo&mmvV^aFcX1C<9Lk~l)#P7OcuY2m{lP7
z_(TGVFaUiZ9Hn6!!K(2cZcQ@ZS(Lxm@#BMQi-HV*Q$>Z5X6tKQaWGjFiZTY3UThv5
z#*?3?s$jqh9JlDl7El3rzyWRwtD*KLrDE{PCiXsuEdmV&3u0d}au#WXe5B>~)qTvG
znVYFSP*IQk_{a~IJSdi?qPur<Ff9_{wZ=CW%4GEmAk`Be2<Rx$fsbc`XZCRh(#p#K
z?d|JcNG5irWJG78Jns4h5#Bm!EjYA`$JYM!yikx8!}Y=Fz=1$O!)!asbp!L6b2SsJ
z7^9I>pR5>j=WxZ?Xxf8K4puT8rE%NBSs>inwHd>B5QlM%mUNvybt>?+4@%*dB)-JQ
zkLQEd29i1vev2p^E-3~GZrC!>ZQCozhKY%HSLmh_DJRu|`hwM(j}8SGVoR04)&q16
zvCq1@YioV)BIp3cDTaN=8ZsS>CjED}JVqQg$k}A?g8ck^g&;#<O|!;EoWQ5SC%%#p
zl^f-o<MHbhG^yIE`h*XSk^M%pXQ7=$H5uLT+&TD-j}5T<l5LULNX~(N8!;!tAy)K@
zVge4AK|BD75$==6FI=d0Zo!fzayQ^1__B`6*wJ^YP&5`J-GPAt_pS$S7cG?<KhEH5
zoPU%oCP?-ely5$YnLQ4v_3%}bvwTe$h7~UK1~P|`-4Qqy6Gjf;((cyP-HCx!qoWc&
z2^XyRPz&KZH$7*KixJxPFtK-U0|kU^6g-HU2(tdMADcqasrf4Uopx0HSoSX)Db$ZX
zP!<zmA~3!bQ&KwE96w|=ley#WlQ#PFujQ*&eL#P0x!fcV2|(7GWUQ}gOAP#+TSDq_
zWr7saimkE@d;!S3xKeYK$@S^B{P?KcsTIx5jvPl(((;HXlfgh0CP|x`61c1RE0_8D
z@y6;HSCI4;Hgx;mMZ^u-7-046dPAHw?BYI=fC4%vL{!~3+P5rPN(yKYg)|1v7kBAQ
zq6pcQ9YB>!&Wc{JV&%&Bjg9wXL=+wB$qa_C_wZYG`GH&=;>ar7gqQZoo|RzTLjS2W
zRT<4#V*uCb(&1?4bTo(>Z`@jZP#d{oX~w-q7?umQ{N1~YZTXlsEzmpnO-H#OZlWka
zFab5Mk;R)jXyp@t^#nEn-tID>6$tkr_^d4S9-I)u;PEV)2_jn$Sx2BJg7Z%pH$tw0
z$Y~&hFoT9(7fbEOm;~s@D}d`l&_Rd>FxF3qmrTA%P=dSh=tnOAYES14;H%B|$yI$N
zNFqj07#O|5C<RXk9((>}>NGAAhxh15sldrZc#X5*Wn%UWPJ!ieQU(^`*|Up5RNC35
zi_jQ#TK^WJ<NG9Eu(eU}sYSC#mx!v@1Q$39VCgEt`}_*QS!^^Et3qB8SC-`3wU`6}
zxLvbmDt=xsO*8tyEe!A6nmyRj^AZ-9cpmcs2j7q~5EpCn;5Z3d6zoa>ExpoE%!$sQ
znSgP_QCRW+z4H**vIx8QMN5irlcAW&qnR{ivghcJg_shH`$kqb7_ep8VyA+C@${)~
z^DRU=>zI9@9U|W6n9m!&UT*m<VpY7p!)$bVmqu{`lU5+SjEzz3N7tcGWEB(<zY}OE
zz)zg6w{K&#hH-tM(F$T$aS+)eV*Ob3zwYV}5<NTlO+}ne8scjU?fR^XdHtp|iRi)i
zSNI9oWyunHUpEMwCi#=FY2+3&0Uv<~8i!HZ_Rb!pg5lh>@|~8%x?5uqD3N^R1`cpI
zw+9G(iFkp_95V#)Qi%v2_$b=fT|^rS7t@tTGVR|ISx~ocOB)OVYz+@<6<xZHym8)1
zaP@bJnV<(G^X-&y9aCJlVS@tlt@!b(N8YlF9)&$5mXnnJeU24ERTUMB70HXf%V7?W
zBmT*w`DS(;8A$f3)0i6_jaLN1F62;x%A(l5I2Xdg_&oKbbDJ3ZskRu?kom-P<_7e!
zRd`2&`BEc5(yk}A7qKC**H2`BNBcFBdm=Ns7vR%bbj*bgSe!d6C0Giu&ZD>@Bk%C_
z#%s*1V+^z~zC7nh&sVPkBNcM&kuD9U5OY+Xc@cJFg|5gQPOq?6yr=5VOe&zR_wd5s
zQ+uN$BdXC$H7YD_0~nm3g<Ju!I9&?`!}fYCI3z2U&<+F{Ub%7wb76SY2APxV&twF8
zr#c%)&23SN_#PMZu7XWmY#t7lHBOZD>QLW(<vQ2rrT7cTkUf!;HPRVrRa#+(5SYjT
zW4MrjzJKXWnDnMiiwQRy@SV-fHqTqoMoKUoxQ?TzuO>B!>*IM`DhQ*3?<>2g_Z+c#
zs7<-b48S;%cywUzzI_oeti1bdFiE)10PI<b1y14A9gl{-nQ12MrfG`qd}0t@#rA4<
zi{#50lSy2&-k7b*cP?kiYUMv*;iir&4#Oj8PAhDMwz@8dWChhj55<oz!I+L_3gPv`
zB08J`C9d$7Q!m>f4Bd9VH=^x?J8T+*gBNj#wYn;wJoK=@5slOR(MKA7zP^@$0#s##
zb?er_IVw!7>f1MzQA^4p+5x{sh{R$b5f|FS$wjA88xg{<-I!osJ);54QxF#eQI=rS
zuXDm#2=C;qwzMQcZ=MW3H$Wu-^(Eu`2byw~5(myHKfoVWhqx6@*U8(fR>~1;4`HD$
zn|hu9upoeyuLp4Pljkw(4|sB9K!8!$hqNuTL0+G#o3YY62ZU_(60Qx#d(Oezc=c2L
zc{pq9dn#KVW%5i~Y;G{%UlJ8$UNNCf)Q<J;L|tj-#KtVtptGTVC}@TI-_5OhoV`1e
z;yW;B*;%<2=Xt@~GT(_UHg}hef81mw4fM4TI~AOHm_eY}`f*od;lhdlLyQbC)eoeN
z-Jn68Rm#_%oYnjedxEfYf_}yX_J6>25CwGM{qqi-jPFstjKG=lQ;&An*9RfXNj-4^
zQR+Uy7*9M*PZvP;lqPt8?`L4pF*m+aXiZgYwSQnx&{+oEgWz%)?ZRO*>g%)O2#O@I
zKb|`@WF}}P0O?2k)5mot(LNJGp&}}Q?d``f8q(zO|N8ao<%USGNMYj~)^;NWw>!ZK
z_;Tuoak6+uNWS8CL};a<gh12;3gVLD-smnYAu_&T=M_LDFh%@vSyl~A&*un<^Z3?l
zhxUT9iaVV=Y#<1k5fMZfgd$?i8ZA+hgO&zHe(#BEs;@d(Vbb4*lz=hsL!$#&570pc
z;oFAv>C}s2bFdckRxz<Zye9hn`Q8nS7z@nDxruA;3N0-ZO+Yv8Pq8XtOCUr<mA5l>
zsr$G%f(U(r2ww>%vuVgzaO^d(&i8q7m3>L5o*^M5<O5hpsOPy48rj*{!0Gr{Nf!ot
zE0)dURee=$Fc`oG5>rGL#=D@k@6ngc^`72L#Ot7>>Oid+*wy!kJ)SLU?vw5WPm54K
zAoIwwVhA%^Ael(qz$hK({1ya&iN`1RRB~AzuxUVPeox8iUEeq;o;-jZ6#Bv2<!a3H
z5(K05%a<4!Eb2>{`?!cM=j%CmnV(cLrxRci0oP<{xDU4maHeEsWd(6ZyHb@kJ&(p|
z$eZWlx_F2QrJQ|%a(TH1MPIbd74#p%n#S6CCnHOJ!(q`n1r?R`HF4jvUI9y#Q`JEF
zh0bud^`UIOGZM6?&DE$B)6<_l<<+9f_4FAo6uY=ftw-W3nGa@j;aNcqqIfHWG10Vo
zTmIftG+Q95IAbrpOMRoxHxO}v*ezxnMAvoaFn@5j=?g5jus9XVTNzPdc%=Emi=5l+
zn_o`{7>_6hHw@h3v<q6YeE1G39j5?p%VT<?k^%!A<3-;JGir8Ch`fwmUo`-_DwM$>
zv~u75IT@?Ym*l`Db$4ig`V2P8%5BbbP|x7lFe+)uLbswXDuquFy!fxakLv4*L`Y}M
z9Whh;;B%zC6J;i0mxn{Vq%{$MoBqeElbM8u-$#@vsYAp-VK=hDNssi?tF#M5vF&5^
z_wTTJ+Pp>oRojW<fuHr;ix=lD`oFZVGR-1?hb?fiX0@!=d$yfD5m<MOV`*Hln-0t6
z96!hAe}fXte(V2-ZhBnN88<7M`PLD4;$K(gORH`m@&}~=robLY5Cwut7&HnHt`Wbu
zWb*5t+0UVsD$n|88O;miWM#=ni8*y@Ev`i{AMq<U<>|9$WRNePJ&VY?85v2~x1&DN
zL`w|0I7;qD71_TYL)7f_WY^YA>;QLFX{ge(PM$ukS-Ewqf&!+UJCN~l_lX#&+k+yv
z{_5ckW*dEp6%9SE?*=X)HWWB)Oax{P$T`EfO*4=P&_OE+06xU)G)t0(zON>d_4GD3
zl%wauUk2;$uq<d(F*#YRtE-E72za3wOKeqCB$<BCc4IA7JY!FvI|TS3v*lX9^R|m~
z@ngw?ql;8FJS2SWJMdo-`We0-^I5QuBbWxiA5yyI-+;u88*H!~dhoy@TMe<P=p$Tm
zn{1#9uk6u6jav#1%Z1!<Ofn|*|9-+6e?8$84E{j)1b6r`Ojg4vocD>TgrSj<wfn00
zAHN@Dg(vGXCgPPs0ku_c3z)A9JsW%Z&WxYKLq|&Je|qTu89Mp@x%U1WNY4N6#}Pis
zq#aIhc@&gaP#PY3Bgo}!`u7DPlGK_nX=cukB!vT1jJdOL+=4)>^5Y!FrxSxs1ZfgO
zAePle8Y%|#<jYqbft)~6N~+jLBhUqZ?xePDpReyt2@#zm4%_O_gwRg2_G+vWg|+%{
z1|Tjc2FzE`v+*zdL%KI%^}%p8sL3%h3(l1o<`MJ@yg)@^gFUv#>GelK*fm4LCT9jN
z$q>lwr|nX{1IgNF_Ut!F_2?pP0&`_*Mv1$&^0`QG`%oduGCmRz88D6t&k-FQYKzmS
zH$gL+m?(qKe(wvQ89>Th6oQF@=n*oX^EQ%`pXy=RMZOt^AvaG7GJg6>KD%>EL5;b4
zZ)W3Uh{Q>|MRSNs`ts%2S+ovgc}z6{L=h3tzP{>MWH3E$+k{F7hQ;`GG!twqWQE`v
z5!tqYX3h>h8#`6<QZk4u()?z_^B4W3p|>J-o_WAq@e_1wgv(#zH#H?b=PaEM1laV9
zjE`NQ?}*KVFBK{O6dK5Ghq6yzCpD#;Xes;X9}WijdH*yw4%=FFk8<<m!N#oUO%sQc
z=FAb;udB7wg!O@&&Hp+sj+mN4k3zV!HUJ{VVTE%IWU+@RRS6-f+X2tKjO?uAQ##Yj
z8Aj?WWU_<?_v-1AYVt)69lr4PaOTn@m9fHqm>TC0lMQnf3!7{;U=N|bOGrnHL%ZJI
zN=yXG46g@vo|QXr>p|ETE4|INn=dCfx1y=(8WDgp86rT+z}T}s!w$5ct1GwPM*1wl
z0|MSSMgLVs7?`8No4!wsn2-jNn=6crJQ6??Fj@)TG^7E9XBQ&kkn$00y(Y4<=RHWs
zcsyLG@kuU^J{^^-pQxDhOOGpK{q&csOIdiUgVu4C2l`;h9+G9)D#Muu6Jyx^VKx}Z
zR|?xdR65Z8<5aZP3FOmGGJV<3_)`QwCfCIB!o@?8op=I5^lrmJPOEc2%oqEv@6}u&
z<!?OVaxS`{8mzI-fgFPFig^S`b0C$WjU{XZQibHm${wR@Sf2OGz!tzPcOIe?k*Cvg
z9NY<r3f=)4fd33(jCJZ1qy?xPi9{1Xk|3Dx<beGKk=-`kLgGOD3@AzfDu3sfkT@_E
zU2k*bG>c$ZpU@Crmw}I*qF~TL;C#5`Z~glNKd|T)c)Jx49zA;W=pmnsg2Ga{$h|3?
zOSgFjms~CIG8Yj*2eRm^Zw^0xa)E+-!7Gy_6Blo9xoX;4?6#iN9EmY28ZT79m_s99
zri2D;4eDU@**GA+RYuE4MBTcT`2@{Hy%G%MK#72?5SohmdKt|G_(JS362J-su$Ey4
zjSr$ZWMt?Keki~+IWhp965IfQim+J4^MmC{_PH(|z%F5k9fr5NdtP%`<svU$s*Ylw
zjY(Z~`kIwa4gN!`4s=BSjN?uIcdz@7?Fo4G2<(780vZpvHWfN%5%(Mj3aC3nBfhcZ
z?t!Si?$q;$YcCWbG_(>M6mh&%r-xRw7}Ol4dg{I}?v@BgKiz3MfDHrxgYEOrCyP~~
zV86KQz(TR|iV87J>6u<{EM7hm0Ui--{=0Xtr@mAsM&Ll90PNfhd3^fB2>?Oj-FYm(
zd%wYS?fmOjdOZh-Ap;gxn{R<y`|;W1<u~+?`W)9G`XtvYRNS}!j`f4)F|gQ7cA3rH
zQ_FQp>6XGmBt0wnw=D+jLE8Q>($Be{@B3|6pdok^(363ygfzMR0@{Iw)ZOc6rokB^
z=Jfz?9!fJRO#CZH@Pr}MLqEg<|6;I8i3JGPs)v)DRes{4eso1D=OS}uhFp9H>$<Jj
zd-5-867~;_m}?PVo34D~o2Z~WDIbu=8p-MSk#32n2Pk3UW)v)}YfqCToo_iP?0a>@
zfaCnn%YKWjjL!$QP2l7~5|4r0J~?uj-KKSWT*XYV)%WbV8ux6Bujh?F8`ufqsl-wO
z+JM9GEf^T+{BXQ3)=WUthn1)q#M6e_0GO4d<6wZ833_64R~S?B0Im&O&s-Pm=h>n0
zrKVk~BSv14FF1d#N$Aa%bFBU0x&3eM3Qp*|PlU)T+7_dEgcSKzlVi$4ZQ-8{UN>Dv
z&YrG2;6V#tChW`98<TJYAE0*hm(=%?-G1sTq@gcC;MO~Q7=TlN1-T@q$M{Med82%v
zBqmz#9DZZ8%k%Q1%J^)v<O8U%S3D^;1<U2>`6SJR{(gI05U-w35mc9^CT_4~XHh74
zqY#REw8umUVOiIWgQHM!Z;^FpAn8L`z3>5N5tdC%inm=AZL~jLWh5xNsyNS&Wxrl=
z@6+snDefF>xK>n$i+e78C6m>rl&?&8`FbUaP37XU_EqQ_A^iQA*)3LK7R8?}O*O;m
zf<0E~;E?;Wl~(Ha_-%}6vIDh$`nU)FDr?jVm_M$VyfEu;@cS|+3USYyorgAL*EkiY
zE;}=lzkbVL13&MP%Im|$PQt@q4$U{q$Ov+*-p85mb!dam)8vz8YgkLjXzM@qzmLWt
z*+p#9v#(^`KmUEUv<sgdYyIyQL%%E5|NfNifBtcd`mwg|t9oqipTU^E7TPD2BA7A3
zSOrZ4lD@bpd-e5q!EpzMA+Wn`XS`yaY~8evtoNFn<^OAR)bQXzc4&(6FYt`9+bG=O
zV~aD6y(!C~K@mkf2z14HFP9X(E6#mUe(tD_c@{i-@YgN@aLfuRQ0-RP2A^ZGc_376
zgiZoyH55;?laT(}5&9NvH|tpdQwj42n)+Je1;q|Y{Z*I$>&}PE(-&-XI5(mF?`S@J
z<(M^bZF*;kr!+Vty?u7vMyPK<th@-4&?LBDsM)|(o394109-C)?<QoE2C^dlv;>s?
zRS|QMlrSrQ!Q~QYI95Mh5o2Bz;aF60Ksc&drtsbF?a%Hk!%wGrWb-asaN4&0fipv=
zKX%#c?R_`%hf03lLH}f1-P*gi)(rLac?;@&7aC=H@eaNz&ZU<%p{QiP_p&wR;~RYG
z`-7b}iC=e&<UZ}j7d{TKT|Th>!`S%#ttO6MZJE4WTp(u0;()@5u(>f3q<HLXprc5Q
zdjv4nh~6@UqK>dJM>x8*m68buLWPE>yP`XgS5TW_7x{XoJVp~m2$D?;Q3#Cm#7CFf
z`oS*(<q2@(ZQfHG!8JnVMwo}g2NfWGJN(R1hQf?NMs*dXk%6k0xJEHAx+RhAn)P*A
zyRYAH!oJzvH8a~KU9+)=Qz1fALW=yvQxat`kU|e;bmWK~M+`h-@%=CK*S_Tow%n^R
zld}l50DYuk0e#AGKI&9y5L@aRHcZtNq!bcco~d`BjaTDov5nQHQTvZLE9P(adEYY0
zWKNrTS2O5d&%Fzl9FGi!6LFxg$?BFqoTyVxl)kgCH?VIQ92h;%@Xc9J;NJVbfN@?#
z_Et%QrIi(&zJR6-4JkFc{rU+zQ}|i=z`hXBUSVMnL@OJ~+Bq0RV7ovRunE&uI2(h@
z=FOPyf(Z~NJkT!#GlB$^#6d*VgZQ_zXWTOlgHfy~NTJ&?s_7mayj50_Rn|A&jwOl+
zu>4{eo)D-Z6exug^foDO{4hducg#MyEvx~&%u8+y2#CQ+yn3}uVmtIzv(?lZ@Nxhg
zpgcpV0nsWJp&85)p7e74IJ99inHo#8KxF|&duUa}8riE69a*ufpiL}3^OkOPv(0ax
ziFomuouS_^RtfkmU!uoxK5dJEy5dH%+46PZ7S`r|3Pw-j^6ZwNBNIG3B1{nO>JY|$
zY%nz~LiLGR?5vW*dTaQnPBUYU?-dnr&cPx<Q+<{2<MQ=gMR2^p_A>uWBrOrcKY^lx
zwcjy_^Bw}owt^%LuQ#!I#6SsMo~rj0pQ))SW;!si2g(^(7UN`qily-Kmf7cVZuWWn
zOH3dR*egqIIuBN(==CrGwXV4%=DBoctWQR036i9AMAeqNkXMd8Y7uqROZYBU#k{>S
z&=AXk%Tr#BTyOh}T>+bHGgrvZE$9Y5RcK)@HaY=<;`5!AK=C2o6}LHYlR-y0ipao^
z#XRuUfb29e5t|Mv%_THUvx#QPNC3=v6c24cVc%m7RRDJ%&12D|t!7Wx&Mkj2=YH2+
zCzJnU-319*APs(KpE?)4a^7B%)EjSgu&w@SYwK8b9Z87muxzk^I}?@TJhdUevg+2K
zry1i_{X<XMu{)H=hAnDbJp0G^WF(qIIhGdO%Xz}rd&5BeEfG6_19<ahai^9NzFx4f
zQAwhvfT{q?cHw#WTTa(voDTx_>h0U%N{!P43k*iv$IhNL3N%EG38og|#=cfl8arBS
z-i3ksrDK+?8*S|8-#-<?i*YO1H|3b_0jxC*t3Cesj*32MbB=LK3qt#GJI^SX_g-d)
zdjn77t6}f=5$Y!gZR~i=6xRE8Pgva?yqC6!ZlAc~foNB&-<NG^FZw-g#j0>d!Ej8z
z<^=Ar>%R*)z@O#aMc8QI(LY4CI}ohkcB}RJ9RB~F^%^k@wyyMY5fOL>3J|(}WfLp!
z5$*SUGDzwLW(`H(sujY*P&YZlzr9fUOSHz*4>)l;#YcbtaI-9#S+XOFVMAkn)zS`a
zF%w5e$3~U)6=tAfg3i?=p)x{qqH`W)o{3pDIXC6QPb;a!efpKT)RxqW_U2G4FT0WW
z0^2un>v_DrQs-uUrRwYo;Eb8rO6G|f>+xvoZ^$C*dI*HzBQFGkI+wpO8Xgv1vbPTq
z@TU3ANLN}tq=JU_^-SyAOD<v~1flSYqrLs-=c~TAwmy7~oM3AhPk~y8VcK#Gz`<%m
zTim&H28$V{gn#mC(D?vdxX^%+qmYC?5w;lw(Q<kf^Yl|5oWbb>UxTw*gqO?R<H!G|
z3^i+o?`nATWKF>9;0O7J9)$5A_N>&YA;E3p>sBNtu2`nsa(R*()1a{=+4;1q@iJDQ
z(LMfeNJo~LIF;xvPQ9DllC};ukXVmbxNNqJWbv;^7Sq+)PHe1-EN><2D*m5WK(lq-
z;{OMr_J0*DyYoF$g)^RK=>6NDvUrX~K3=n(q;%$A-N80=b^teVFXLa>3+$v|GEYK<
z)_)=QbuzfL;F&G}!W-fh^th(xX`#vpK{F!?;PI1Qjae+ewab@}&DQ0p-+;%Xup_!!
zsK5cG;@86Chz!ELi(fk(@a-Tt4geem>u;8jV{-hY3d1&Eaj=1vh@+*IHrs(I#-^E?
z27r%+B)``iaBSeX1#%!wUbIq3JKYH7iu;9J+5h5CJ<ylJrH?#RkSh0}AO%emMpcT^
z<TLj6T41abWUa~2Jx-xks^^c<ITzfYt&m%0%dk>=&B(||fOM-RBs7~3SXf-c&9_EU
za(;jzs9F%F0PO+__7~<wbO%Ge=9Im~E!rrZ&bF*#-67(^+^kyi<i8YSZQs8KrQtll
z$B~hOgo;t)%N>6Lq8n4<?xt^(8f?&<{cLG}19L3B3^(|!fekNTya22(iODU@*WfGs
zaDK^#Wt;%(5Md5PIFE5_=pb6do4fUNgK3$p25PZU|18-KSTYPBFagMPY?2AcDQ)WQ
zaYv_5guK900~ked$HEn2+Uct_(BP)+<=Q&i!RI^uwQdesRjxAx3}4=X$@nTt@$gE^
zbri)?)QjGe&t?AOTWPP@j;D@*&Sfq?1S-tXRiV^;LzG3n6WPlD{Ft+Eo?r`p_S|NE
zk$4ncmt<Djrv1m2O90#zyPh9vFW{biLIR@y!=3A(#rVaXbIS2p?%-q2Kj+{dU2T1>
J6w=X){|DY{%{Tx6


From 3ccc5b0717fc253f3caf5d57442edeee02cfffcd Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 09:42:12 +0900
Subject: [PATCH 28/65] docs: add link to Logging page

---
 user_guide_src/source/general/errors.rst | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/user_guide_src/source/general/errors.rst b/user_guide_src/source/general/errors.rst
index 2c947ae7deb7..4b86f21f56dc 100644
--- a/user_guide_src/source/general/errors.rst
+++ b/user_guide_src/source/general/errors.rst
@@ -83,8 +83,9 @@ To ignore logging on other status codes, you can set the status code to ignore i
 
 .. literalinclude:: errors/006.php
 
-.. note:: It is possible that logging still will not happen for exceptions if your current Log settings
-    are not set up to log **critical** errors, which all exceptions are logged as.
+.. note:: It is possible that logging still will not happen for exceptions if your current
+    :ref:`Log settings <logging-configuration>`
+    are not set up to log ``critical`` errors, which all exceptions are logged as.
 
 Framework Exceptions
 ====================

From 55f26cdcd09a3c9c277c57432f6113d43480cf94 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 09:53:21 +0900
Subject: [PATCH 29/65] docs: improve sample code

---
 user_guide_src/source/general/errors/007.php | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/user_guide_src/source/general/errors/007.php b/user_guide_src/source/general/errors/007.php
index a06e5000737a..585f4aa6b68a 100644
--- a/user_guide_src/source/general/errors/007.php
+++ b/user_guide_src/source/general/errors/007.php
@@ -1,5 +1,9 @@
 <?php
 
-if (! $page = $pageModel->find($id)) {
-    throw \CodeIgniter\Exceptions\PageNotFoundException::forPageNotFound();
+use CodeIgniter\Exceptions\PageNotFoundException;
+
+$page = $pageModel->find($id);
+
+if ($page === null) {
+    throw PageNotFoundException::forPageNotFound();
 }

From 83ea16fd4c606ec7f75cf976308bb4368a6d3c3b Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 09:55:47 +0900
Subject: [PATCH 30/65] docs: add "" for readability

---
 user_guide_src/source/general/errors.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/user_guide_src/source/general/errors.rst b/user_guide_src/source/general/errors.rst
index 4b86f21f56dc..b84defe7b432 100644
--- a/user_guide_src/source/general/errors.rst
+++ b/user_guide_src/source/general/errors.rst
@@ -74,7 +74,7 @@ See :ref:`setting-environment`.
 Logging Exceptions
 ------------------
 
-By default, all Exceptions other than 404 - Page Not Found exceptions are logged. This can be turned on and off
+By default, all Exceptions other than "404 - Page Not Found" exceptions are logged. This can be turned on and off
 by setting the ``$log`` value of **app/Config/Exceptions.php**:
 
 .. literalinclude:: errors/005.php

From 0d493d180e42dd497595ced637bb53506653dec8 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 09:56:22 +0900
Subject: [PATCH 31/65] docs: add link and change paragraph order for
 readability

---
 user_guide_src/source/general/errors.rst   | 11 +++++++----
 user_guide_src/source/incoming/routing.rst |  2 ++
 2 files changed, 9 insertions(+), 4 deletions(-)

diff --git a/user_guide_src/source/general/errors.rst b/user_guide_src/source/general/errors.rst
index b84defe7b432..ef6f30abe4ed 100644
--- a/user_guide_src/source/general/errors.rst
+++ b/user_guide_src/source/general/errors.rst
@@ -95,15 +95,18 @@ The following framework exceptions are available:
 PageNotFoundException
 ---------------------
 
-This is used to signal a 404, Page Not Found error. When thrown, the system will show the view found at
-**app/Views/errors/html/error_404.php**. You should customize all of the error views for your site.
-If, in **app/Config/Routes.php**, you have specified a 404 Override, that will be called instead of the standard
-404 page:
+This is used to signal a 404, Page Not Found error:
 
 .. literalinclude:: errors/007.php
 
 You can pass a message into the exception that will be displayed in place of the default message on the 404 page.
 
+When thrown, the system will show the view found at
+**app/Views/errors/html/error_404.php**. You should customize all of the error views for your site.
+
+If, in **app/Config/Routing.php** or **app/Config/Routes.php**, you have specified
+a :ref:`404-override`, that will be called instead of the standard 404 page.
+
 ConfigException
 ---------------
 
diff --git a/user_guide_src/source/incoming/routing.rst b/user_guide_src/source/incoming/routing.rst
index a9aa28602822..f05ac3298467 100644
--- a/user_guide_src/source/incoming/routing.rst
+++ b/user_guide_src/source/incoming/routing.rst
@@ -664,6 +664,8 @@ to only those defined by you, by setting the ``$autoRoute`` property to false:
 .. warning:: If you use the :doc:`CSRF protection </libraries/security>`, it does not protect **GET**
     requests. If the URI is accessible by the GET method, the CSRF protection will not work.
 
+.. _404-override:
+
 404 Override
 ============
 

From 37931d07d000d606ff3f77b7a9ad364d30f1088b Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 10:42:53 +0900
Subject: [PATCH 32/65] docs: add missing "HTTP Status Code and Error Views"

---
 user_guide_src/source/general/errors.rst | 28 ++++++++++++++++++++++--
 1 file changed, 26 insertions(+), 2 deletions(-)

diff --git a/user_guide_src/source/general/errors.rst b/user_guide_src/source/general/errors.rst
index ef6f30abe4ed..0f6ebd178145 100644
--- a/user_guide_src/source/general/errors.rst
+++ b/user_guide_src/source/general/errors.rst
@@ -101,8 +101,7 @@ This is used to signal a 404, Page Not Found error:
 
 You can pass a message into the exception that will be displayed in place of the default message on the 404 page.
 
-When thrown, the system will show the view found at
-**app/Views/errors/html/error_404.php**. You should customize all of the error views for your site.
+For the default 404 view file location, see :ref:`http-status-code-and-error-views`.
 
 If, in **app/Config/Routing.php** or **app/Config/Routes.php**, you have specified
 a :ref:`404-override`, that will be called instead of the standard 404 page.
@@ -161,6 +160,31 @@ Since v4.3.0, you can specify the HTTP status code for your Exception class to i
 
 When an exception implementing ``HTTPExceptionInterface`` is caught by CodeIgniter's exception handler, the Exception code will become the HTTP status code.
 
+.. _http-status-code-and-error-views:
+
+HTTP Status Code and Error Views
+================================
+
+The exception handler displays the error view corresponding to the HTTP status
+code, if it exists.
+
+For example, ``PageNotFoundException`` implements the ``HTTPExceptionInterface``,
+so its exception code ``404`` will be the HTTP status code. Therefore if it is
+thrown, the system will show the **error_404.php** in the **app/Views/errors/html**
+folder when it is a web request. If it is invoked via CLI, the system will show
+the **error_404.php** in the **app/Views/errors/cli** folder.
+
+You should customize all of the error views in the **app/Views/error** folder for
+your site.
+
+You can also create error views for specific HTTP status code. For example, if
+you want to create an error view for "400 Bad Request", add **error_400.php**.
+
+.. warning:: If an error view file with the corresponding HTTP status code exists,
+    the exception handler will display that file regardless of the environment.
+    The view file must be implemented in such a way that it does not display
+    detailed error messages in production environment by yourself.
+
 .. _error-specify-exit-code:
 
 Specify Exit Code in Your Exception

From e6bdf906570aeec0e3d03c13dfb3eb21ab86b945 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 11:13:04 +0900
Subject: [PATCH 33/65] fix: bug that the error view is determined by Exception
 code

It should be determined by HTTP status code.
Otherwise, if by chance an exception with code 404 is thrown,
a 404 Not Found page will be displayed.
---
 system/Debug/ExceptionHandler.php           | 19 +++++++++++--------
 tests/system/Debug/ExceptionHandlerTest.php |  2 +-
 2 files changed, 12 insertions(+), 9 deletions(-)

diff --git a/system/Debug/ExceptionHandler.php b/system/Debug/ExceptionHandler.php
index 63449888ffb5..09c6de0d5b7e 100644
--- a/system/Debug/ExceptionHandler.php
+++ b/system/Debug/ExceptionHandler.php
@@ -97,8 +97,8 @@ public function handle(
             . DIRECTORY_SEPARATOR . 'errors' . DIRECTORY_SEPARATOR . $addPath;
 
         // Determine the views
-        $view    = $this->determineView($exception, $path);
-        $altView = $this->determineView($exception, $altPath);
+        $view    = $this->determineView($exception, $path, $statusCode);
+        $altView = $this->determineView($exception, $altPath, $statusCode);
 
         // Check if the view exists
         $viewFile = null;
@@ -119,13 +119,16 @@ public function handle(
     }
 
     /**
-     * Determines the view to display based on the exception thrown,
-     * whether an HTTP or CLI request, etc.
+     * Determines the view to display based on the exception thrown, HTTP status
+     * code, whether an HTTP or CLI request, etc.
      *
      * @return string The filename of the view file to use
      */
-    protected function determineView(Throwable $exception, string $templatePath): string
-    {
+    protected function determineView(
+        Throwable $exception,
+        string $templatePath,
+        int $statusCode = 500
+    ): string {
         // Production environments should have a custom exception file.
         $view = 'production.php';
 
@@ -147,8 +150,8 @@ protected function determineView(Throwable $exception, string $templatePath): st
         $templatePath = rtrim($templatePath, '\\/ ') . DIRECTORY_SEPARATOR;
 
         // Allow for custom views based upon the status code
-        if (is_file($templatePath . 'error_' . $exception->getCode() . '.php')) {
-            return 'error_' . $exception->getCode() . '.php';
+        if (is_file($templatePath . 'error_' . $statusCode . '.php')) {
+            return 'error_' . $statusCode . '.php';
         }
 
         return $view;
diff --git a/tests/system/Debug/ExceptionHandlerTest.php b/tests/system/Debug/ExceptionHandlerTest.php
index 8dcad8e6c338..a55227ab7a34 100644
--- a/tests/system/Debug/ExceptionHandlerTest.php
+++ b/tests/system/Debug/ExceptionHandlerTest.php
@@ -69,7 +69,7 @@ public function testDetermineViewsRuntimeExceptionCode404(): void
         $templatePath = APPPATH . 'Views/errors/html';
         $viewFile     = $determineView($exception, $templatePath);
 
-        $this->assertSame('error_404.php', $viewFile);
+        $this->assertSame('error_exception.php', $viewFile);
     }
 
     public function testDetermineViewsDisplayErrorsOffRuntimeException(): void

From c65e05d8bf41eee5326c322257c6422cae58e177 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 11:23:54 +0900
Subject: [PATCH 34/65] docs: move "Logging Deprecation Warnings" in section
 "Configuration"

---
 user_guide_src/source/general/errors.rst | 62 ++++++++++++------------
 1 file changed, 31 insertions(+), 31 deletions(-)

diff --git a/user_guide_src/source/general/errors.rst b/user_guide_src/source/general/errors.rst
index 0f6ebd178145..d551773fb87a 100644
--- a/user_guide_src/source/general/errors.rst
+++ b/user_guide_src/source/general/errors.rst
@@ -87,6 +87,37 @@ To ignore logging on other status codes, you can set the status code to ignore i
     :ref:`Log settings <logging-configuration>`
     are not set up to log ``critical`` errors, which all exceptions are logged as.
 
+.. _logging_deprecation_warnings:
+
+Logging Deprecation Warnings
+----------------------------
+
+.. versionadded:: 4.3.0
+
+By default, all errors reported by ``error_reporting()`` will be thrown as an ``ErrorException`` object. These
+include both ``E_DEPRECATED`` and ``E_USER_DEPRECATED`` errors. With the surge in use of PHP 8.1+, many users
+may see exceptions thrown for `passing null to non-nullable arguments of internal functions <https://wiki.php.net/rfc/deprecate_null_to_scalar_internal_arg>`_.
+To ease the migration to PHP 8.1, you can instruct CodeIgniter to log the deprecations instead of throwing them.
+
+First, make sure your copy of ``Config\Exceptions`` is updated with the two new properties and set as follows:
+
+.. literalinclude:: errors/012.php
+
+Next, depending on the log level you set in ``Config\Exceptions::$deprecationLogLevel``, check whether the
+logger threshold defined in ``Config\Logger::$threshold`` covers the deprecation log level. If not, adjust
+it accordingly.
+
+.. literalinclude:: errors/013.php
+
+After that, subsequent deprecations will be logged instead of thrown.
+
+This feature also works with user deprecations:
+
+.. literalinclude:: errors/014.php
+
+For testing your application you may want to always throw on deprecations. You may configure this by
+setting the environment variable ``CODEIGNITER_SCREAM_DEPRECATIONS`` to a truthy value.
+
 Framework Exceptions
 ====================
 
@@ -197,37 +228,6 @@ Since v4.3.0, you can specify the exit code for your Exception class to implemen
 
 When an exception implementing ``HasExitCodeInterface`` is caught by CodeIgniter's exception handler, the code returned from the ``getExitCode()`` method will become the exit code.
 
-.. _logging_deprecation_warnings:
-
-Logging Deprecation Warnings
-============================
-
-.. versionadded:: 4.3.0
-
-By default, all errors reported by ``error_reporting()`` will be thrown as an ``ErrorException`` object. These
-include both ``E_DEPRECATED`` and ``E_USER_DEPRECATED`` errors. With the surge in use of PHP 8.1+, many users
-may see exceptions thrown for `passing null to non-nullable arguments of internal functions <https://wiki.php.net/rfc/deprecate_null_to_scalar_internal_arg>`_.
-To ease the migration to PHP 8.1, you can instruct CodeIgniter to log the deprecations instead of throwing them.
-
-First, make sure your copy of ``Config\Exceptions`` is updated with the two new properties and set as follows:
-
-.. literalinclude:: errors/012.php
-
-Next, depending on the log level you set in ``Config\Exceptions::$deprecationLogLevel``, check whether the
-logger threshold defined in ``Config\Logger::$threshold`` covers the deprecation log level. If not, adjust
-it accordingly.
-
-.. literalinclude:: errors/013.php
-
-After that, subsequent deprecations will be logged instead of thrown.
-
-This feature also works with user deprecations:
-
-.. literalinclude:: errors/014.php
-
-For testing your application you may want to always throw on deprecations. You may configure this by
-setting the environment variable ``CODEIGNITER_SCREAM_DEPRECATIONS`` to a truthy value.
-
 .. _custom-exception-handlers:
 
 Custom Exception Handlers

From 8047699d7d9d12457b5dfb2dd9419be250b674e9 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 11:34:38 +0900
Subject: [PATCH 35/65] docs: add about default error view files

---
 user_guide_src/source/general/errors.rst | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

diff --git a/user_guide_src/source/general/errors.rst b/user_guide_src/source/general/errors.rst
index d551773fb87a..31055982da6c 100644
--- a/user_guide_src/source/general/errors.rst
+++ b/user_guide_src/source/general/errors.rst
@@ -197,7 +197,7 @@ HTTP Status Code and Error Views
 ================================
 
 The exception handler displays the error view corresponding to the HTTP status
-code, if it exists.
+code, if one exists.
 
 For example, ``PageNotFoundException`` implements the ``HTTPExceptionInterface``,
 so its exception code ``404`` will be the HTTP status code. Therefore if it is
@@ -205,8 +205,14 @@ thrown, the system will show the **error_404.php** in the **app/Views/errors/htm
 folder when it is a web request. If it is invoked via CLI, the system will show
 the **error_404.php** in the **app/Views/errors/cli** folder.
 
-You should customize all of the error views in the **app/Views/error** folder for
-your site.
+If there is no view file corresponding to the HTTP status code, **production.php**
+or **error_exception.php** will be displayed.
+
+.. note:: If ``display_errors`` is on in the PHP INI configuration,
+    **error_exception.php** is selected and a detailed error report is displayed.
+
+You should customize all of the error views in the **app/Views/errors/html** folder
+for your site.
 
 You can also create error views for specific HTTP status code. For example, if
 you want to create an error view for "400 Bad Request", add **error_400.php**.

From b651344387be99e84101a851f4ee78904c9d1d34 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 13:32:42 +0900
Subject: [PATCH 36/65] docs: add changelog

---
 user_guide_src/source/changelogs/v4.4.8.rst | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/user_guide_src/source/changelogs/v4.4.8.rst b/user_guide_src/source/changelogs/v4.4.8.rst
index 5e3eb3d16908..4ff846be528a 100644
--- a/user_guide_src/source/changelogs/v4.4.8.rst
+++ b/user_guide_src/source/changelogs/v4.4.8.rst
@@ -14,6 +14,11 @@ Release Date: Unreleased
 BREAKING
 ********
 
+- A bug that caused the :doc:`Exception handler <../general/errors>` to display
+  incorrect error view file corresponding to the exception code has been fixed.
+  The third parameter ``int $statusCode = 500`` has been added to
+  ``CodeIgniter\Debug\ExceptionHandler::determineView()`` for this purpose.
+
 ***************
 Message Changes
 ***************

From b4855dd67c50b4856a88cb520f2d0175e70b4c8b Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 13:45:44 +0900
Subject: [PATCH 37/65] docs: show full classnames

---
 user_guide_src/source/general/errors.rst | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/user_guide_src/source/general/errors.rst b/user_guide_src/source/general/errors.rst
index 31055982da6c..2b6eafce8c33 100644
--- a/user_guide_src/source/general/errors.rst
+++ b/user_guide_src/source/general/errors.rst
@@ -187,7 +187,7 @@ Specify HTTP Status Code in Your Exception
 .. versionadded:: 4.3.0
 
 Since v4.3.0, you can specify the HTTP status code for your Exception class to implement
-``HTTPExceptionInterface``.
+``CodeIgniter\Exceptions\HTTPExceptionInterface``.
 
 When an exception implementing ``HTTPExceptionInterface`` is caught by CodeIgniter's exception handler, the Exception code will become the HTTP status code.
 
@@ -230,7 +230,7 @@ Specify Exit Code in Your Exception
 .. versionadded:: 4.3.0
 
 Since v4.3.0, you can specify the exit code for your Exception class to implement
-``HasExitCodeInterface``.
+``CodeIgniter\Exceptions\HasExitCodeInterface``.
 
 When an exception implementing ``HasExitCodeInterface`` is caught by CodeIgniter's exception handler, the code returned from the ``getExitCode()`` method will become the exit code.
 

From 17763f32d364f5148c3a71ed9a4edae3afa293fb Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 13:50:32 +0900
Subject: [PATCH 38/65] docs: update outdated description

---
 user_guide_src/source/database/transactions.rst | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/user_guide_src/source/database/transactions.rst b/user_guide_src/source/database/transactions.rst
index bb58040ac4ce..4fe44c8929e5 100644
--- a/user_guide_src/source/database/transactions.rst
+++ b/user_guide_src/source/database/transactions.rst
@@ -67,11 +67,11 @@ Strict Mode can be disabled as follows:
 Managing Errors
 ===============
 
-When you have ``DBDebug`` true in your **app/Config/Database.php** file,
-if a query error occurs, all the queries will be rolled backed, and an exception
-will be thrown. So you'll see a standard error page.
+.. note::
+    Since v4.3.0, during transactions, exceptions are not thrown by default
+    even if ``DBDebug`` is true.
 
-If the ``DBDebug`` is false, you can manage your own errors like this:
+You can manage your own errors like this:
 
 .. literalinclude:: transactions/003.php
 

From dc7e86c6396b5ede0dfe8645cf724faaace89a36 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?M=C3=BCller=20Nato?= <mullernato@yahoo.com.br>
Date: Sun, 31 Mar 2024 04:40:48 -0300
Subject: [PATCH 39/65] Update upgrade_447.rst

added to changed files
- app/Config/App.php
---
 user_guide_src/source/installation/upgrade_447.rst | 1 +
 1 file changed, 1 insertion(+)

diff --git a/user_guide_src/source/installation/upgrade_447.rst b/user_guide_src/source/installation/upgrade_447.rst
index 562118bbbb78..d31496d601d3 100644
--- a/user_guide_src/source/installation/upgrade_447.rst
+++ b/user_guide_src/source/installation/upgrade_447.rst
@@ -118,6 +118,7 @@ All Changes
 This is a list of all files in the **project space** that received changes;
 many will be simple comments or formatting that have no effect on the runtime:
 
+- app/Config/App.php
 - app/Config/Cache.php
 - app/Config/ContentSecurityPolicy.php
 - app/Config/Database.php

From b559dbd9f8f471f52b55c35f2c0a3bdc980cf5b1 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 31 Mar 2024 17:10:06 +0900
Subject: [PATCH 40/65] docs: fix sample .htaccess

The settings may redirect to URI with `/public/`.
E.g., http://localhost/ci4/users/ -> http://localhost/ci4/public/users
---
 .../source/installation/running.rst           | 49 +++++++++++++++++++
 1 file changed, 49 insertions(+)

diff --git a/user_guide_src/source/installation/running.rst b/user_guide_src/source/installation/running.rst
index 69f89cfbdbd0..4bd823911b75 100644
--- a/user_guide_src/source/installation/running.rst
+++ b/user_guide_src/source/installation/running.rst
@@ -295,6 +295,30 @@ And edit **.htaccess** as follows:
         Satisfy All
     </FilesMatch>
 
+And remove the redirect settings in **public/.htaccess**:
+
+.. code-block:: diff
+
+    --- a/public/.htaccess
+    +++ b/public/.htaccess
+    @@ -16,16 +16,6 @@ Options -Indexes
+        # http://httpd.apache.org/docs/current/mod/mod_rewrite.html#rewritebase
+        # RewriteBase /
+
+    -   # Redirect Trailing Slashes...
+    -   RewriteCond %{REQUEST_FILENAME} !-d
+    -   RewriteCond %{REQUEST_URI} (.+)/$
+    -   RewriteRule ^ %1 [L,R=301]
+    -
+    -   # Rewrite "www.example.com -> example.com"
+    -   RewriteCond %{HTTPS} !=on
+    -   RewriteCond %{HTTP_HOST} ^www\.(.+)$ [NC]
+    -   RewriteRule ^ http://%1%{REQUEST_URI} [R=301,L]
+    -
+        # Checks to see if the user is attempting to access a valid file,
+        # such as an image or css document, if this isn't true it sends the
+        # request to the front controller, index.php
+
 Hosting with mod_userdir (Shared Hosts)
 =======================================
 
@@ -505,6 +529,31 @@ And edit **.htaccess** as follows:
         Satisfy All
     </FilesMatch>
 
+
+And remove the redirect settings in **public/.htaccess**:
+
+.. code-block:: diff
+
+    --- a/public/.htaccess
+    +++ b/public/.htaccess
+    @@ -16,16 +16,6 @@ Options -Indexes
+        # http://httpd.apache.org/docs/current/mod/mod_rewrite.html#rewritebase
+        # RewriteBase /
+
+    -   # Redirect Trailing Slashes...
+    -   RewriteCond %{REQUEST_FILENAME} !-d
+    -   RewriteCond %{REQUEST_URI} (.+)/$
+    -   RewriteRule ^ %1 [L,R=301]
+    -
+    -   # Rewrite "www.example.com -> example.com"
+    -   RewriteCond %{HTTPS} !=on
+    -   RewriteCond %{HTTP_HOST} ^www\.(.+)$ [NC]
+    -   RewriteRule ^ http://%1%{REQUEST_URI} [R=301,L]
+    -
+        # Checks to see if the user is attempting to access a valid file,
+        # such as an image or css document, if this isn't true it sends the
+        # request to the front controller, index.php
+
 *********************
 Bootstrapping the App
 *********************

From 13071b8ce564e03043c9313587c9a17d5a6efc21 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Mon, 1 Apr 2024 10:01:13 +0900
Subject: [PATCH 41/65] docs: fix notation for $db

---
 user_guide_src/source/database/metadata.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/user_guide_src/source/database/metadata.rst b/user_guide_src/source/database/metadata.rst
index 9ae08e5aae8d..f617872322a3 100644
--- a/user_guide_src/source/database/metadata.rst
+++ b/user_guide_src/source/database/metadata.rst
@@ -51,7 +51,7 @@ $db->getFieldNames()
 Returns an array containing the field names. This query can be called
 two ways:
 
-1. You can supply the table name and call it from the ``$db->object``:
+1. You can supply the table name and call it from the ``$db`` object:
 
    .. literalinclude:: metadata/003.php
 

From 1b970658c7da0eb1547398b1ad8fbf4bad810bd1 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Mon, 1 Apr 2024 10:01:41 +0900
Subject: [PATCH 42/65] docs: fix RST format

---
 user_guide_src/source/database/metadata.rst | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/user_guide_src/source/database/metadata.rst b/user_guide_src/source/database/metadata.rst
index f617872322a3..85dcdc0b1d33 100644
--- a/user_guide_src/source/database/metadata.rst
+++ b/user_guide_src/source/database/metadata.rst
@@ -53,12 +53,12 @@ two ways:
 
 1. You can supply the table name and call it from the ``$db`` object:
 
-   .. literalinclude:: metadata/003.php
+    .. literalinclude:: metadata/003.php
 
 2. You can gather the field names associated with any query you run by
-calling the function from your query result object:
+   calling the function from your query result object:
 
-.. literalinclude:: metadata/004.php
+    .. literalinclude:: metadata/004.php
 
 Determine If a Field is Present in a Table
 ==========================================

From 04483e3fa04d31ab35ce19631804facb2f590bf0 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Wed, 3 Apr 2024 12:59:10 +0900
Subject: [PATCH 43/65] docs: update descriptions

---
 user_guide_src/source/outgoing/localization.rst | 13 ++++++++++---
 1 file changed, 10 insertions(+), 3 deletions(-)

diff --git a/user_guide_src/source/outgoing/localization.rst b/user_guide_src/source/outgoing/localization.rst
index f84e9b029004..3e611ceab2ec 100644
--- a/user_guide_src/source/outgoing/localization.rst
+++ b/user_guide_src/source/outgoing/localization.rst
@@ -104,12 +104,19 @@ Setting the Current Locale
 
 If you want to set the locale directly, you may use
 ``IncomingRequest::setLocale(string $locale)``.
-You must set supported locales in **app/Config/App.php**:
+
+Before setting the locale, you must set valid locales. Because any attempt to
+set a locale that are not valid will result in
+the :ref:`default locale <setting-the-default-locale>` being set.
+
+By default, the valid locales are defined in ``Config\App::$supportedLocales``
+in **app/Config/App.php**:
 
 .. literalinclude:: localization/003.php
 
-.. note:: Any attempt to set a locale not included in this array will result in
-    the :ref:`default locale <setting-the-default-locale>` being set.
+.. note:: Since v4.4.0, ``IncomingRequest::setValidLocales()`` has been added to
+    set (and reset) valid locales. Use it if you want to change the valid locales
+    dynamically.
 
 Retrieving the Current Locale
 =============================

From 8ed690e4a5d3eb3fc138b532c2e1008ceba033d3 Mon Sep 17 00:00:00 2001
From: Abdul Malik Ikhsan <samsonasik@gmail.com>
Date: Wed, 3 Apr 2024 14:10:13 +0700
Subject: [PATCH 44/65] chore: remove useless @return
 BaseConnection|ConnectionInterface on BaseBuilder::db()

---
 system/Database/BaseBuilder.php | 2 --
 1 file changed, 2 deletions(-)

diff --git a/system/Database/BaseBuilder.php b/system/Database/BaseBuilder.php
index 8a33e220d84d..2e32bc68790f 100644
--- a/system/Database/BaseBuilder.php
+++ b/system/Database/BaseBuilder.php
@@ -332,8 +332,6 @@ public function __construct($tableName, ConnectionInterface $db, ?array $options
 
     /**
      * Returns the current database connection
-     *
-     * @return BaseConnection|ConnectionInterface
      */
     public function db(): ConnectionInterface
     {

From a2802a693498fe3d08570ddfd42df2f726ee74f0 Mon Sep 17 00:00:00 2001
From: Abdul Malik Ikhsan <samsonasik@gmail.com>
Date: Wed, 3 Apr 2024 15:56:07 +0700
Subject: [PATCH 45/65] update to @return BaseConnection

---
 system/Database/BaseBuilder.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/system/Database/BaseBuilder.php b/system/Database/BaseBuilder.php
index 2e32bc68790f..65dea86da2b3 100644
--- a/system/Database/BaseBuilder.php
+++ b/system/Database/BaseBuilder.php
@@ -332,6 +332,8 @@ public function __construct($tableName, ConnectionInterface $db, ?array $options
 
     /**
      * Returns the current database connection
+     *
+     * @return BaseConnection
      */
     public function db(): ConnectionInterface
     {

From 98ce544fb246a379ad1539c053fee9f9c2fe1357 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Wed, 3 Apr 2024 19:03:55 +0900
Subject: [PATCH 46/65] fix: Pager::only([]) does not work

---
 system/Pager/Pager.php           | 6 +++---
 tests/system/Pager/PagerTest.php | 8 ++++++++
 2 files changed, 11 insertions(+), 3 deletions(-)

diff --git a/system/Pager/Pager.php b/system/Pager/Pager.php
index d9de5faab401..0834fe09f0e4 100644
--- a/system/Pager/Pager.php
+++ b/system/Pager/Pager.php
@@ -60,9 +60,9 @@ class Pager implements PagerInterface
     /**
      * List of only permitted queries
      *
-     * @var array
+     * @var list<string>|null
      */
-    protected $only = [];
+    protected $only;
 
     /**
      * Constructor.
@@ -276,7 +276,7 @@ public function getPageURI(?int $page = null, string $group = 'default', bool $r
             $uri->addQuery($this->groups[$group]['pageSelector'], $page);
         }
 
-        if ($this->only) {
+        if ($this->only !== null) {
             $query = array_intersect_key($_GET, array_flip($this->only));
 
             if (! $segment) {
diff --git a/tests/system/Pager/PagerTest.php b/tests/system/Pager/PagerTest.php
index f5059f082b53..25c923265f33 100644
--- a/tests/system/Pager/PagerTest.php
+++ b/tests/system/Pager/PagerTest.php
@@ -165,6 +165,10 @@ public function testStoreWithQueries(): void
             'http://example.com/?foo=bar&page=5',
             $this->pager->only(['foo'])->getPageURI(5)
         );
+        $this->assertSame(
+            'http://example.com/?page=5',
+            $this->pager->only([])->getPageURI(5)
+        );
     }
 
     public function testStoreWithSegments(): void
@@ -181,6 +185,10 @@ public function testStoreWithSegments(): void
             'http://example.com/5?foo=bar',
             $this->pager->only(['foo'])->getPageURI(5)
         );
+        $this->assertSame(
+            'http://example.com/5',
+            $this->pager->only([])->getPageURI(5)
+        );
     }
 
     public function testGetPageURIWithURIReturnObject(): void

From 22f4c38b564a5b02cf45d05faae3dad2de747dd2 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Wed, 3 Apr 2024 19:11:40 +0900
Subject: [PATCH 47/65] chore: remove ignoreErrors

---
 phpstan-baseline.php | 10 ----------
 1 file changed, 10 deletions(-)

diff --git a/phpstan-baseline.php b/phpstan-baseline.php
index 83a947a76f94..83986e548050 100644
--- a/phpstan-baseline.php
+++ b/phpstan-baseline.php
@@ -8041,21 +8041,11 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Pager/Pager.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in an if condition, array given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Pager/Pager.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Property CodeIgniter\\\\Pager\\\\Pager\\:\\:\\$groups type has no value type specified in iterable type array\\.$#',
 	'count' => 1,
 	'path' => __DIR__ . '/system/Pager/Pager.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\Pager\\\\Pager\\:\\:\\$only type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Pager/Pager.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Property CodeIgniter\\\\Pager\\\\Pager\\:\\:\\$segment type has no value type specified in iterable type array\\.$#',
 	'count' => 1,

From 0987c9ac0b1ff6a593c4fc9a5f3531bc2fa21c7c Mon Sep 17 00:00:00 2001
From: Abdul Malik Ikhsan <samsonasik@gmail.com>
Date: Wed, 3 Apr 2024 22:25:35 +0700
Subject: [PATCH 48/65] chore: [Rector] Apply ExplicitBoolCompareRector

---
 phpstan-baseline.php                       | 130 ---------------------
 rector.php                                 |   2 +
 system/CLI/CLI.php                         |   4 +-
 system/Commands/Database/MigrateStatus.php |   2 +-
 system/Config/DotEnv.php                   |   2 +-
 system/Controller.php                      |   2 +-
 system/Database/OCI8/Builder.php           |   2 +-
 system/HTTP/DownloadResponse.php           |   2 +-
 system/Helpers/filesystem_helper.php       |  18 +--
 system/Helpers/form_helper.php             |   2 +-
 system/Helpers/html_helper.php             |   2 +-
 system/Helpers/url_helper.php              |   2 +-
 system/Router/RouteCollection.php          |   2 +-
 system/Session/Handlers/FileHandler.php    |   2 +-
 system/View/Table.php                      |   2 +-
 tests/system/Cache/ResponseCacheTest.php   |   2 +-
 16 files changed, 25 insertions(+), 153 deletions(-)

diff --git a/phpstan-baseline.php b/phpstan-baseline.php
index 83a947a76f94..74a118c60a18 100644
--- a/phpstan-baseline.php
+++ b/phpstan-baseline.php
@@ -446,16 +446,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/CLI/CLI.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a negated boolean, array given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/CLI/CLI.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, string given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/CLI/CLI.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Only booleans are allowed in a ternary operator condition, string\\|null given\\.$#',
 	'count' => 1,
@@ -766,11 +756,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Commands/Database/MigrateStatus.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a negated boolean, array\\<int\\<0, max\\>, array\\<int, mixed\\>\\> given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Commands/Database/MigrateStatus.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Parameter \\#1 \\$params \\(array\\<string, mixed\\>\\) of method CodeIgniter\\\\Commands\\\\Database\\\\MigrateStatus\\:\\:run\\(\\) should be contravariant with parameter \\$params \\(array\\<int\\|string, string\\|null\\>\\) of method CodeIgniter\\\\CLI\\\\BaseCommand\\:\\:run\\(\\)$#',
 	'count' => 1,
@@ -2131,11 +2116,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Config/DotEnv.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a negated boolean, string given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Config/DotEnv.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Method CodeIgniter\\\\Config\\\\Factories\\:\\:__callStatic\\(\\) has parameter \\$arguments with no value type specified in iterable type array\\.$#',
 	'count' => 1,
@@ -2286,11 +2266,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Controller.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a negated boolean, array given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Controller.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Property CodeIgniter\\\\Controller\\:\\:\\$request \\(CodeIgniter\\\\HTTP\\\\CLIRequest\\|CodeIgniter\\\\HTTP\\\\IncomingRequest\\) does not accept CodeIgniter\\\\HTTP\\\\RequestInterface\\.$#',
 	'count' => 1,
@@ -3731,11 +3706,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Database/OCI8/Builder.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Database/OCI8/Builder.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^PHPDoc type CodeIgniter\\\\Database\\\\OCI8\\\\Connection of property CodeIgniter\\\\Database\\\\OCI8\\\\Builder\\:\\:\\$db is not the same as PHPDoc type CodeIgniter\\\\Database\\\\BaseConnection of overridden property CodeIgniter\\\\Database\\\\BaseBuilder\\:\\:\\$db\\.$#',
 	'count' => 1,
@@ -6216,11 +6186,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/HTTP/DownloadResponse.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in an if condition, string given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/HTTP/DownloadResponse.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Return type \\(CodeIgniter\\\\HTTP\\\\DownloadResponse\\) of method CodeIgniter\\\\HTTP\\\\DownloadResponse\\:\\:sendBody\\(\\) should be covariant with return type \\(\\$this\\(CodeIgniter\\\\HTTP\\\\Response\\)\\) of method CodeIgniter\\\\HTTP\\\\Response\\:\\:sendBody\\(\\)$#',
 	'count' => 1,
@@ -7116,66 +7081,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 1024\\> given\\.$#',
-	'count' => 2,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 128\\> given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 16\\> given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 1\\> given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 2048\\> given\\.$#',
-	'count' => 2,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 256\\> given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 2\\> given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 32\\> given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 4\\> given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 512\\> given\\.$#',
-	'count' => 2,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 64\\> given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, int\\<0, 8\\> given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/filesystem_helper.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Right side of && is always true\\.$#',
 	'count' => 1,
@@ -7386,11 +7291,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Helpers/form_helper.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a negated boolean, string given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/form_helper.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Function _list\\(\\) has parameter \\$attributes with no value type specified in iterable type array\\.$#',
 	'count' => 1,
@@ -7471,11 +7371,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Helpers/html_helper.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, string given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/html_helper.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Function d\\(\\) has parameter \\$vars with no value type specified in iterable type array\\.$#',
 	'count' => 1,
@@ -7576,11 +7471,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Helpers/url_helper.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, string given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Helpers/url_helper.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Variable \\$atts might not be defined\\.$#',
 	'count' => 1,
@@ -8386,11 +8276,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Router/RouteCollection.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, string given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Router/RouteCollection.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Only booleans are allowed in a ternary operator condition, string\\|null given\\.$#',
 	'count' => 1,
@@ -8641,11 +8526,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Session/Handlers/FileHandler.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a negated boolean, string given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Session/Handlers/FileHandler.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^PHPDoc type string of property CodeIgniter\\\\Session\\\\Handlers\\\\FileHandler\\:\\:\\$savePath is not the same as PHPDoc type array\\|string of overridden property CodeIgniter\\\\Session\\\\Handlers\\\\BaseHandler\\:\\:\\$savePath\\.$#',
 	'count' => 1,
@@ -10606,11 +10486,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/View/Table.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, float given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/View/Table.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Only booleans are allowed in an if condition, string\\|null given\\.$#',
 	'count' => 1,
@@ -12036,11 +11911,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/tests/system/Cache/ResponseCacheTest.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Only booleans are allowed in a ternary operator condition, array given\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/system/Cache/ResponseCacheTest.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Re\\-assigning arrays to \\$_GET directly is discouraged\\.$#',
 	'count' => 3,
diff --git a/rector.php b/rector.php
index 321bf3930b06..e52be465b4e5 100644
--- a/rector.php
+++ b/rector.php
@@ -21,6 +21,7 @@
 use Rector\CodeQuality\Rector\FuncCall\SingleInArrayToCompareRector;
 use Rector\CodeQuality\Rector\FunctionLike\SimplifyUselessVariableRector;
 use Rector\CodeQuality\Rector\If_\CombineIfRector;
+use Rector\CodeQuality\Rector\If_\ExplicitBoolCompareRector;
 use Rector\CodeQuality\Rector\If_\ShortenElseIfRector;
 use Rector\CodeQuality\Rector\If_\SimplifyIfElseToTernaryRector;
 use Rector\CodeQuality\Rector\If_\SimplifyIfReturnBoolRector;
@@ -158,6 +159,7 @@
     $rectorConfig->rule(BooleanInIfConditionRuleFixerRector::class);
     $rectorConfig->rule(SingleInArrayToCompareRector::class);
     $rectorConfig->rule(VersionCompareFuncCallToConstantRector::class);
+    $rectorConfig->rule(ExplicitBoolCompareRector::class);
 
     $rectorConfig
         ->ruleWithConfiguration(StringClassNameToClassConstantRector::class, [
diff --git a/system/CLI/CLI.php b/system/CLI/CLI.php
index 9a50e4038184..12e95ed37388 100644
--- a/system/CLI/CLI.php
+++ b/system/CLI/CLI.php
@@ -262,7 +262,7 @@ public static function prompt(string $field, $options = null, $validation = null
             $default = $options[0];
         }
 
-        static::fwrite(STDOUT, $field . (trim($field) ? ' ' : '') . $extraOutput . ': ');
+        static::fwrite(STDOUT, $field . (trim($field) !== '' && trim($field) !== '0' ? ' ' : '') . $extraOutput . ': ');
 
         // Read the input from keyboard.
         $input = trim(static::input()) ?: $default;
@@ -386,7 +386,7 @@ public static function promptByMultipleKeys(string $text, array $options): array
      */
     private static function isZeroOptions(array $options): void
     {
-        if (! $options) {
+        if ($options === []) {
             throw new InvalidArgumentException('No options to select from were provided');
         }
     }
diff --git a/system/Commands/Database/MigrateStatus.php b/system/Commands/Database/MigrateStatus.php
index cbbe2f70ce47..ecd074278d47 100644
--- a/system/Commands/Database/MigrateStatus.php
+++ b/system/Commands/Database/MigrateStatus.php
@@ -144,7 +144,7 @@ public function run(array $params)
             }
         }
 
-        if (! $status) {
+        if ($status === []) {
             // @codeCoverageIgnoreStart
             CLI::error(lang('Migrations.noneFound'), 'light_gray', 'red');
             CLI::newLine();
diff --git a/system/Config/DotEnv.php b/system/Config/DotEnv.php
index 05ecab900c3e..01bbb1ba6467 100644
--- a/system/Config/DotEnv.php
+++ b/system/Config/DotEnv.php
@@ -140,7 +140,7 @@ public function normaliseVariable(string $name, string $value = ''): array
      */
     protected function sanitizeValue(string $value): string
     {
-        if (! $value) {
+        if ($value === '' || $value === '0') {
             return $value;
         }
 
diff --git a/system/Controller.php b/system/Controller.php
index 0cc14c569651..83bc4f4b120e 100644
--- a/system/Controller.php
+++ b/system/Controller.php
@@ -187,7 +187,7 @@ private function setValidator($rules, array $messages): void
             }
 
             // If no error message is defined, use the error message in the Config\Validation file
-            if (! $messages) {
+            if ($messages === []) {
                 $errorName = $rules . '_errors';
                 $messages  = $validation->{$errorName} ?? [];
             }
diff --git a/system/Database/OCI8/Builder.php b/system/Database/OCI8/Builder.php
index f5527ce745c6..37ba54a27392 100644
--- a/system/Database/OCI8/Builder.php
+++ b/system/Database/OCI8/Builder.php
@@ -222,7 +222,7 @@ protected function _limit(string $sql, bool $offsetIgnore = false): string
         }
 
         $this->limitUsed    = true;
-        $limitTemplateQuery = 'SELECT * FROM (SELECT INNER_QUERY.*, ROWNUM RNUM FROM (%s) INNER_QUERY WHERE ROWNUM < %d)' . ($offset ? ' WHERE RNUM >= %d' : '');
+        $limitTemplateQuery = 'SELECT * FROM (SELECT INNER_QUERY.*, ROWNUM RNUM FROM (%s) INNER_QUERY WHERE ROWNUM < %d)' . ($offset !== 0 ? ' WHERE RNUM >= %d' : '');
 
         return sprintf($limitTemplateQuery, $sql, $offset + $this->QBLimit + 1, $offset);
     }
diff --git a/system/HTTP/DownloadResponse.php b/system/HTTP/DownloadResponse.php
index 14dc3fec1421..df9eef8c147f 100644
--- a/system/HTTP/DownloadResponse.php
+++ b/system/HTTP/DownloadResponse.php
@@ -194,7 +194,7 @@ private function getContentDisposition(): string
 
         $result = sprintf('attachment; filename="%s"', $downloadFilename);
 
-        if ($utf8Filename) {
+        if ($utf8Filename !== '' && $utf8Filename !== '0') {
             $result .= '; filename*=UTF-8\'\'' . rawurlencode($utf8Filename);
         }
 
diff --git a/system/Helpers/filesystem_helper.php b/system/Helpers/filesystem_helper.php
index 4e0e8b1532e9..46700ffc2797 100644
--- a/system/Helpers/filesystem_helper.php
+++ b/system/Helpers/filesystem_helper.php
@@ -379,19 +379,19 @@ function symbolic_permissions(int $perms): string
         }
 
         // Owner
-        $symbolic .= (($perms & 0x0100) ? 'r' : '-')
-                . (($perms & 0x0080) ? 'w' : '-')
-                . (($perms & 0x0040) ? (($perms & 0x0800) ? 's' : 'x') : (($perms & 0x0800) ? 'S' : '-'));
+        $symbolic .= ((($perms & 0x0100) !== 0) ? 'r' : '-')
+                . ((($perms & 0x0080) !== 0) ? 'w' : '-')
+                . ((($perms & 0x0040) !== 0) ? ((($perms & 0x0800) !== 0) ? 's' : 'x') : ((($perms & 0x0800) !== 0) ? 'S' : '-'));
 
         // Group
-        $symbolic .= (($perms & 0x0020) ? 'r' : '-')
-                . (($perms & 0x0010) ? 'w' : '-')
-                . (($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x') : (($perms & 0x0400) ? 'S' : '-'));
+        $symbolic .= ((($perms & 0x0020) !== 0) ? 'r' : '-')
+                . ((($perms & 0x0010) !== 0) ? 'w' : '-')
+                . ((($perms & 0x0008) !== 0) ? ((($perms & 0x0400) !== 0) ? 's' : 'x') : ((($perms & 0x0400) !== 0) ? 'S' : '-'));
 
         // World
-        $symbolic .= (($perms & 0x0004) ? 'r' : '-')
-                . (($perms & 0x0002) ? 'w' : '-')
-                . (($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x') : (($perms & 0x0200) ? 'T' : '-'));
+        $symbolic .= ((($perms & 0x0004) !== 0) ? 'r' : '-')
+                . ((($perms & 0x0002) !== 0) ? 'w' : '-')
+                . ((($perms & 0x0001) !== 0) ? ((($perms & 0x0200) !== 0) ? 't' : 'x') : ((($perms & 0x0200) !== 0) ? 'T' : '-'));
 
         return $symbolic;
     }
diff --git a/system/Helpers/form_helper.php b/system/Helpers/form_helper.php
index 098222e90e9f..e21b27787937 100644
--- a/system/Helpers/form_helper.php
+++ b/system/Helpers/form_helper.php
@@ -29,7 +29,7 @@
     function form_open(string $action = '', $attributes = [], array $hidden = []): string
     {
         // If no action is provided then set to the current url
-        if (! $action) {
+        if ($action === '' || $action === '0') {
             $action = current_url(true);
         } // If an action is not a full URL then turn it into one
         elseif (strpos($action, '://') === false) {
diff --git a/system/Helpers/html_helper.php b/system/Helpers/html_helper.php
index 0f7e154a02bf..9fe4334f413b 100755
--- a/system/Helpers/html_helper.php
+++ b/system/Helpers/html_helper.php
@@ -195,7 +195,7 @@ function doctype(string $type = 'html5'): string
     function script_tag($src = '', bool $indexPage = false): string
     {
         $cspNonce = csp_script_nonce();
-        $cspNonce = $cspNonce ? ' ' . $cspNonce : $cspNonce;
+        $cspNonce = $cspNonce !== '' && $cspNonce !== '0' ? ' ' . $cspNonce : $cspNonce;
         $script   = '<script' . $cspNonce . ' ';
         if (! is_array($src)) {
             $src = ['src' => $src];
diff --git a/system/Helpers/url_helper.php b/system/Helpers/url_helper.php
index f992eac391f8..d1ff870c2f6e 100644
--- a/system/Helpers/url_helper.php
+++ b/system/Helpers/url_helper.php
@@ -318,7 +318,7 @@ function safe_mailto(string $email, string $title = '', $attributes = ''): strin
 
         // improve obfuscation by eliminating newlines & whitespace
         $cspNonce = csp_script_nonce();
-        $cspNonce = $cspNonce ? ' ' . $cspNonce : $cspNonce;
+        $cspNonce = $cspNonce !== '' && $cspNonce !== '0' ? ' ' . $cspNonce : $cspNonce;
         $output   = '<script' . $cspNonce . '>'
                 . 'var l=new Array();';
 
diff --git a/system/Router/RouteCollection.php b/system/Router/RouteCollection.php
index 2adb0ed98638..4bac4dd4403b 100644
--- a/system/Router/RouteCollection.php
+++ b/system/Router/RouteCollection.php
@@ -767,7 +767,7 @@ public function group(string $name, ...$params)
         // To register a route, we'll set a flag so that our router
         // will see the group name.
         // If the group name is empty, we go on using the previously built group name.
-        $this->group = $name ? trim($oldGroup . '/' . $name, '/') : $oldGroup;
+        $this->group = $name !== '' && $name !== '0' ? trim($oldGroup . '/' . $name, '/') : $oldGroup;
 
         $callback = array_pop($params);
 
diff --git a/system/Session/Handlers/FileHandler.php b/system/Session/Handlers/FileHandler.php
index 9eb642408381..cad7283f8073 100644
--- a/system/Session/Handlers/FileHandler.php
+++ b/system/Session/Handlers/FileHandler.php
@@ -73,7 +73,7 @@ public function __construct(SessionConfig $config, string $ipAddress)
         } else {
             $sessionPath = rtrim(ini_get('session.save_path'), '/\\');
 
-            if (! $sessionPath) {
+            if ($sessionPath === '' || $sessionPath === '0') {
                 $sessionPath = WRITEPATH . 'session';
             }
 
diff --git a/system/View/Table.php b/system/View/Table.php
index c9cd33d39ac6..65b43195d988 100644
--- a/system/View/Table.php
+++ b/system/View/Table.php
@@ -365,7 +365,7 @@ public function generate($tableData = null)
 
             foreach ($this->rows as $row) {
                 // We use modulus to alternate the row colors
-                $name = fmod($i++, 2) ? '' : 'alt_';
+                $name = fmod($i++, 2) !== 0.0 ? '' : 'alt_';
 
                 $out .= $this->template['row_' . $name . 'start'] . $this->newline;
 
diff --git a/tests/system/Cache/ResponseCacheTest.php b/tests/system/Cache/ResponseCacheTest.php
index b34cfce95c37..d55d625cd7e2 100644
--- a/tests/system/Cache/ResponseCacheTest.php
+++ b/tests/system/Cache/ResponseCacheTest.php
@@ -48,7 +48,7 @@ private function createIncomingRequest(
     ): IncomingRequest {
         $_POST = $_GET = $_SERVER = $_REQUEST = $_ENV = $_COOKIE = $_SESSION = [];
 
-        $_SERVER['REQUEST_URI'] = '/' . $uri . ($query ? '?' . http_build_query($query) : '');
+        $_SERVER['REQUEST_URI'] = '/' . $uri . ($query !== [] ? '?' . http_build_query($query) : '');
         $_SERVER['SCRIPT_NAME'] = '/index.php';
 
         $appConfig ??= $this->appConfig;

From a7ab6c2e9663ec74c7a25a6966d64daecbbe3a7d Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 28 Mar 2024 13:00:24 +0900
Subject: [PATCH 49/65] docs: add sub section OWASP Top 10 2021

---
 user_guide_src/source/concepts/security.rst | 76 ++++++++++-----------
 1 file changed, 35 insertions(+), 41 deletions(-)

diff --git a/user_guide_src/source/concepts/security.rst b/user_guide_src/source/concepts/security.rst
index 69f2221a644f..aa990cf57e48 100644
--- a/user_guide_src/source/concepts/security.rst
+++ b/user_guide_src/source/concepts/security.rst
@@ -17,11 +17,14 @@ the CodeIgniter provisions to address the problem.
 
 .. contents::
     :local:
-    :depth: 1
+    :depth: 2
+
+*****************
+OWASP Top 10 2021
+*****************
 
-******************************
 A01:2021 Broken Access Control
-******************************
+==============================
 
 Access control enforces policy such that users cannot act outside of their intended
 permissions. Failures typically lead to unauthorized information disclosure,
@@ -49,7 +52,7 @@ Common access control vulnerabilities include:
   pages as a standard user.
 
 OWASP recommendations
-=====================
+---------------------
 
 Access control is only effective in trusted server-side code or server-less API,
 where the attacker cannot modify the access control check or metadata.
@@ -71,7 +74,7 @@ where the attacker cannot modify the access control check or metadata.
   follow the OAuth standards to revoke access.
 
 CodeIgniter provisions
-======================
+----------------------
 
 - :ref:`Public <application-structure-public>` folder, with application and system
   outside
@@ -83,9 +86,8 @@ CodeIgniter provisions
 - An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
 - Easy to add third party authentication
 
-*******************************
 A02:2021 Cryptographic Failures
-*******************************
+===============================
 
 The first thing is to determine the protection needs of data in transit and at
 rest. For example, passwords, credit card numbers, health records, personal
@@ -123,7 +125,7 @@ or regulations, e.g., financial data protection such as PCI Data Security Standa
   example in the form of padding oracle attacks?
 
 OWASP recommendations
-=====================
+---------------------
 
 Do the following, at a minimum, and consult the references:
 
@@ -161,7 +163,7 @@ Do the following, at a minimum, and consult the references:
 - Verify independently the effectiveness of configuration and settings.
 
 CodeIgniter provisions
-======================
+----------------------
 
 - The config for global secure access (``Config\App::$forceGlobalSecureRequests``)
 - :php:func:`force_https()` function
@@ -170,9 +172,8 @@ CodeIgniter provisions
 - An official authentication and authorization framework
   :ref:`CodeIgniter Shield <shield>`
 
-******************
 A03:2021 Injection
-******************
+==================
 
 An application is vulnerable to attack when:
 
@@ -194,7 +195,7 @@ dynamic (DAST), and interactive (IAST) application security testing tools into
 the CI/CD pipeline to identify introduced injection flaws before production deployment.
 
 OWASP recommendations
-=====================
+---------------------
 
 Preventing injection requires keeping data separate from commands and queries:
 
@@ -218,7 +219,7 @@ Preventing injection requires keeping data separate from commands and queries:
   records in case of SQL injection.
 
 CodeIgniter provisions
-======================
+----------------------
 
 - :ref:`urls-uri-security`
 - :ref:`invalidchars` filter
@@ -231,9 +232,8 @@ CodeIgniter provisions
 - :ref:`Database escape methods <database-queries-escaping>`
 - :ref:`database-queries-query-bindings`
 
-************************
 A04:2021 Insecure Design
-************************
+========================
 
 Insecure design is a broad category representing different weaknesses, expressed
 as “missing or ineffective control design.” Insecure design is not the source for
@@ -249,7 +249,7 @@ lack of business risk profiling inherent in the software or system being develop
 and thus the failure to determine what level of security design is required.
 
 OWASP recommendations
-=====================
+---------------------
 
 - Establish and use a secure development lifecycle with AppSec professionals to
   help evaluate and design security and privacy-related controls
@@ -269,15 +269,14 @@ OWASP recommendations
 - Limit resource consumption by user or service
 
 CodeIgniter provisions
-======================
+----------------------
 
 - :doc:`PHPUnit testing <../testing/overview>`
 - :doc:`../libraries/throttler` for rate limit
 - An official authentication and authorization framework :ref:`CodeIgniter Shield <shield>`
 
-**********************************
 A05:2021 Security Misconfiguration
-**********************************
+==================================
 
 The application might be vulnerable if the application is:
 
@@ -301,7 +300,7 @@ Without a concerted, repeatable application security configuration process,
 systems are at a higher risk.
 
 OWASP recommendations
-=====================
+---------------------
 
 Secure installation processes should be implemented, including:
 
@@ -323,14 +322,13 @@ Secure installation processes should be implemented, including:
   settings in all environments.
 
 CodeIgniter provisions
-======================
+----------------------
 
 - :ref:`Production mode <environment-constant>` by default
 - :ref:`secureheaders` filter
 
-*******************************************
 A06:2021 Vulnerable and Outdated Components
-*******************************************
+===========================================
 
 You are likely vulnerable:
 
@@ -352,7 +350,7 @@ You are likely vulnerable:
   Misconfiguration).
 
 OWASP recommendations
-=====================
+---------------------
 
 There should be a patch management process in place to:
 
@@ -378,13 +376,12 @@ applying updates or configuration changes for the lifetime of the application or
 portfolio.
 
 CodeIgniter provisions
-======================
+----------------------
 
 - Easy :ref:`app-starter-upgrading` by Composer
 
-***************************************************
 A07:2021 Identification and Authentication Failures
-***************************************************
+===================================================
 
 Confirmation of the user's identity, authentication, and session management is
 critical to protect against authentication-related attacks. There may be
@@ -406,7 +403,7 @@ authentication weaknesses if the application:
   or a period of inactivity.
 
 OWASP recommendations
-=====================
+---------------------
 
 - Where possible, implement multi-factor authentication to prevent automated
   credential stuffing, brute force, and stolen credential reuse attacks.
@@ -427,15 +424,14 @@ OWASP recommendations
   timeouts.
 
 CodeIgniter provisions
-======================
+----------------------
 
 - :doc:`Session <../libraries/sessions>` library
 - An official authentication and authorization framework
   :ref:`CodeIgniter Shield <shield>`
 
-*********************************************
 A08:2021 Software and Data Integrity Failures
-*********************************************
+=============================================
 
 Software and data integrity failures relate to code and infrastructure that does
 not protect against integrity violations. An example of this is where an application
@@ -452,7 +448,7 @@ Another example is where objects or data are encoded or serialized into a struct
 that an attacker can see and modify is vulnerable to insecure deserialization.
 
 OWASP recommendations
-=====================
+---------------------
 
 - Use digital signatures or similar mechanisms to verify the software or data is
   from the expected source and has not been altered.
@@ -473,13 +469,12 @@ OWASP recommendations
   tampering or replay of the serialized data
 
 CodeIgniter provisions
-======================
+----------------------
 
 - n/a
 
-*************************************************
 A09:2021 Security Logging and Monitoring Failures
-*************************************************
+=================================================
 
 This category is to help detect, escalate, and respond to active breaches. Without
 logging and monitoring, breaches cannot be detected. Insufficient logging, detection,
@@ -501,7 +496,7 @@ You are vulnerable to information leakage by making logging and alerting events
 visible to a user or an attacker (see A01:2021-Broken Access Control).
 
 OWASP recommendations
-=====================
+---------------------
 
 Developers should implement some or all the following controls, depending on the risk of the application:
 
@@ -525,15 +520,14 @@ such as the Elasticsearch, Logstash, Kibana (ELK) stack, that feature custom
 dashboards and alerting.
 
 CodeIgniter provisions
-======================
+----------------------
 
 - :doc:`Logging <../general/logging>` library
 - An official authentication and authorization framework
   :ref:`CodeIgniter Shield <shield>`
 
-*******************************************
 A10:2021 Server-Side Request Forgery (SSRF)
-*******************************************
+===========================================
 
 SSRF flaws occur whenever a web application is fetching a remote resource without
 validating the user-supplied URL. It allows an attacker to coerce the application
@@ -546,7 +540,7 @@ Also, the severity of SSRF is becoming higher due to cloud services and the
 complexity of architectures.
 
 OWASP recommendations
-=====================
+---------------------
 
 Developers can prevent SSRF by implementing some or all the following defense in
 depth controls:
@@ -578,7 +572,7 @@ Do not mitigate SSRF via the use of a deny list or regular expression. Attackers
 have payload lists, tools, and skills to bypass deny lists.
 
 CodeIgniter provisions
-======================
+----------------------
 
 - :doc:`../libraries/validation` library
 - :doc:`HTTP library <../incoming/incomingrequest>` provides for

From 24089a3e99a36b17ef5c6a3ba4ab5ba67f1b3f56 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 28 Mar 2024 17:52:19 +0900
Subject: [PATCH 50/65] docs: add "OWASP API Security Top 10 2023"

---
 user_guide_src/source/concepts/security.rst | 358 +++++++++++++++++++-
 user_guide_src/source/models/model.rst      |   2 +
 2 files changed, 358 insertions(+), 2 deletions(-)

diff --git a/user_guide_src/source/concepts/security.rst b/user_guide_src/source/concepts/security.rst
index aa990cf57e48..6d8f5839e8f3 100644
--- a/user_guide_src/source/concepts/security.rst
+++ b/user_guide_src/source/concepts/security.rst
@@ -10,8 +10,9 @@ We respect the `Open Web Application Security Project (OWASP) <https://owasp.org
 and follow their recommendations as much as possible.
 
 The following comes from
-`OWASP Top Ten <https://owasp.org/www-project-top-ten/>`_,
-identifying the top vulnerabilities for web applications.
+`OWASP Top Ten <https://owasp.org/www-project-top-ten/>`_ and
+`OWASP API Security Top 10 <https://owasp.org/API-Security/editions/2023/en/0x11-t10/>`_
+identifying the top vulnerabilities for web applications and apis.
 For each, we provide a brief description, the OWASP recommendations, and then
 the CodeIgniter provisions to address the problem.
 
@@ -577,3 +578,356 @@ CodeIgniter provisions
 - :doc:`../libraries/validation` library
 - :doc:`HTTP library <../incoming/incomingrequest>` provides for
   :ref:`input field filtering <incomingrequest-filtering-input-data>`
+
+******************************
+OWASP API Security Top 10 2023
+******************************
+
+API1:2023 Broken Object Level Authorization
+===========================================
+
+APIs tend to expose endpoints that handle object identifiers, creating a wide
+attack surface of Object Level Access Control issues. Object level authorization
+checks should be considered in every function that accesses a data source using
+an ID from the user.
+
+OWASP recommendations
+---------------------
+
+- Implement a proper authorization mechanism that relies on the user policies and
+  hierarchy.
+- Use the authorization mechanism to check if the logged-in user has access to
+  perform the requested action on the record in every function that uses an input
+  from the client to access a record in the database.
+- Prefer the use of random and unpredictable values as GUIDs for records' IDs.
+- Write tests to evaluate the vulnerability of the authorization mechanism. Do
+  not deploy changes that make the tests fail.
+
+CodeIgniter provisions
+----------------------
+
+- An official authentication and authorization framework
+  :ref:`CodeIgniter Shield <shield>`
+
+API2:2023 Broken Authentication
+===============================
+
+Authentication mechanisms are often implemented incorrectly, allowing attackers
+to compromise authentication tokens or to exploit implementation flaws to assume
+other user's identities temporarily or permanently. Compromising a system's
+ability to identify the client/user, compromises API security overall.
+
+OWASP recommendations
+---------------------
+
+- Make sure you know all the possible flows to authenticate to the API (mobile/
+  web/deep links that implement one-click authentication/etc.). Ask your engineers
+  what flows you missed.
+- Read about your authentication mechanisms. Make sure you understand what and
+  how they are used. OAuth is not authentication, and neither are API keys.
+- Don't reinvent the wheel in authentication, token generation, or password storage.
+  Use the standards.
+- Credential recovery/forgot password endpoints should be treated as login
+  endpoints in terms of brute force, rate limiting, and lockout protections.
+- Require re-authentication for sensitive operations (e.g. changing the account
+  owner email address/2FA phone number).
+- Use the OWASP Authentication Cheatsheet.
+- Where possible, implement multi-factor authentication.
+- Implement anti-brute force mechanisms to mitigate credential stuffing, dictionary
+  attacks, and brute force attacks on your authentication endpoints. This mechanism
+  should be stricter than the regular rate limiting mechanisms on your APIs.
+- Implement account lockout/captcha mechanisms to prevent brute force attacks
+  against specific users. Implement weak-password checks.
+- API keys should not be used for user authentication. They should only be used
+  for API clients authentication.
+
+CodeIgniter provisions
+----------------------
+
+- An official authentication and authorization framework
+  :ref:`CodeIgniter Shield <shield>`
+
+API3:2023 Broken Object Property Level Authorization
+====================================================
+
+This category combines API3:2019 Excessive Data Exposure and API6:2019 - Mass
+Assignment, focusing on the root cause: the lack of or improper authorization
+validation at the object property level. This leads to information exposure or
+manipulation by unauthorized parties.
+
+OWASP recommendations
+---------------------
+
+- When exposing an object using an API endpoint, always make sure that the user
+  should have access to the object's properties you expose.
+- Avoid using generic methods such as to_json() and to_string(). Instead,
+  cherry-pick specific object properties you specifically want to return.
+- If possible, avoid using functions that automatically bind a client's input
+  into code variables, internal objects, or object properties ("Mass Assignment").
+- Allow changes only to the object's properties that should be updated by the
+  client.
+- Implement a schema-based response validation mechanism as an extra layer of
+  security. As part of this mechanism, define and enforce data returned by all
+  API methods.
+- Keep returned data structures to the bare minimum, according to the
+  business/functional requirements for the endpoint.
+
+CodeIgniter provisions
+----------------------
+
+- Model's :ref:`model-allowed-fields`
+- An official authentication and authorization framework
+  :ref:`CodeIgniter Shield <shield>`
+
+API4:2023 Unrestricted Resource Consumption
+===========================================
+
+Satisfying API requests requires resources such as network bandwidth, CPU, memory,
+and storage. Other resources such as emails/SMS/phone calls or biometrics validation
+are made available by service providers via API integrations, and paid for per
+request. Successful attacks can lead to Denial of Service or an increase of
+operational costs.
+
+OWASP recommendations
+---------------------
+
+- Use a solution that makes it easy to limit memory, CPU, number of restarts,
+  file descriptors, and processes such as Containers / Serverless code (e.g. Lambdas).
+- Define and enforce a maximum size of data on all incoming parameters and payloads,
+  such as maximum length for strings, maximum number of elements in arrays, and
+  maximum upload file size (regardless of whether it is stored locally or in
+  cloud storage).
+- Implement a limit on how often a client can interact with the API within a
+  defined timeframe (rate limiting).
+- Rate limiting should be fine tuned based on the business needs. Some API Endpoints
+  might require stricter policies.
+- Limit/throttle how many times or how often a single API client/user can execute
+  a single operation (e.g. validate an OTP, or request password recovery without
+  visiting the one-time URL).
+- Add proper server-side validation for query string and request body parameters,
+  specifically the one that controls the number of records to be returned in the
+  response.
+- Configure spending limits for all service providers/API integrations. When setting
+  spending limits is not possible, billing alerts should be configured instead.
+
+CodeIgniter provisions
+----------------------
+
+- :doc:`../libraries/validation` library
+- :doc:`../libraries/throttler` for rate limit
+
+API5:2023 Broken Function Level Authorization
+=============================================
+
+Complex access control policies with different hierarchies, groups, and roles,
+and an unclear separation between administrative and regular functions, tend to
+lead to authorization flaws. By exploiting these issues, attackers can gain
+access to other users’ resources and/or administrative functions.
+
+OWASP recommendations
+---------------------
+
+Your application should have a consistent and easy-to-analyze authorization module
+that is invoked from all your business functions. Frequently, such protection is
+provided by one or more components external to the application code.
+
+- The enforcement mechanism(s) should deny all access by default, requiring explicit
+  grants to specific roles for access to every function.
+- Review your API endpoints against function level authorization flaws, while
+  keeping in mind the business logic of the application and groups hierarchy.
+- Make sure that all of your administrative controllers inherit from an
+  administrative abstract controller that implements authorization checks based
+  on the user's group/role.
+- Make sure that administrative functions inside a regular controller implement
+  authorization checks based on the user's group and role.
+
+CodeIgniter provisions
+----------------------
+
+- An official authentication and authorization framework
+  :ref:`CodeIgniter Shield <shield>`
+
+API6:2023 Unrestricted Access to Sensitive Business Flows
+=========================================================
+
+APIs vulnerable to this risk expose a business flow - such as buying a ticket,
+or posting a comment - without compensating for how the functionality could harm
+the business if used excessively in an automated manner. This doesn't necessarily
+come from implementation bugs.
+
+OWASP recommendations
+---------------------
+
+The mitigation planning should be done in two layers:
+
+- Business - identify the business flows that might harm the business if they
+  are excessively used.
+- Engineering - choose the right protection mechanisms to mitigate the business
+  risk.
+
+Some of the protection mechanisms are more simple while others are more difficult
+to implement. The following methods are used to slow down automated threats:
+
+- Device fingerprinting: denying service to unexpected client devices (e.g
+  headless browsers) tends to make threat actors use more sophisticated solutions,
+  thus more costly for them
+- Human detection: using either captcha or more advanced biometric solutions
+  (e.g. typing patterns)
+- Non-human patterns: analyze the user flow to detect non-human patterns
+  (e.g. the user accessed the "add to cart" and "complete purchase" functions in
+  less than one second)
+- Consider blocking IP addresses of Tor exit nodes and well-known proxies
+
+Secure and limit access to APIs that are consumed directly by machines (such as
+developer and B2B APIs). They tend to be an easy target for attackers because
+they often don't implement all the required protection mechanisms.
+
+CodeIgniter provisions
+----------------------
+
+- n/a
+
+API7:2023 Server Side Request Forgery
+=====================================
+
+Server-Side Request Forgery (SSRF) flaws can occur when an API is fetching a
+remote resource without validating the user-supplied URI. This enables an attacker
+to coerce the application to send a crafted request to an unexpected destination,
+even when protected by a firewall or a VPN.
+
+OWASP recommendations
+---------------------
+
+- Isolate the resource fetching mechanism in your network: usually these features
+  are aimed to retrieve remote resources and not internal ones.
+- Whenever possible, use allow lists of:
+
+   - Remote origins users are expected to download resources from (e.g. Google Drive,
+     Gravatar, etc.)
+   - URL schemes and ports
+   - Accepted media types for a given functionality
+- Disable HTTP redirections.
+- Use a well-tested and maintained URL parser to avoid issues caused by URL parsing inconsistencies.
+- Validate and sanitize all client-supplied input data.
+- Do not send raw responses to clients.
+
+CodeIgniter provisions
+----------------------
+
+- :doc:`../libraries/validation` library
+- :doc:`HTTP library <../incoming/incomingrequest>` provides for
+  :ref:`input field filtering <incomingrequest-filtering-input-data>`
+- :doc:`CURLRequest <../libraries/curlrequest>` class
+- :doc:`URI <../libraries/uri>` class
+
+API8:2023 Security Misconfiguration
+===================================
+
+APIs and the systems supporting them typically contain complex configurations,
+meant to make the APIs more customizable. Software and DevOps engineers can miss
+these configurations, or don't follow security best practices when it comes to
+configuration, opening the door for different types of attacks.
+
+OWASP recommendations
+---------------------
+
+The API life cycle should include:
+
+- A repeatable hardening process leading to fast and easy deployment of a properly
+  locked down environment
+- A task to review and update configurations across the entire API stack. The
+  review should include: orchestration files, API components, and cloud services
+  (e.g. S3 bucket permissions)
+- An automated process to continuously assess the effectiveness of the configuration
+  and settings in all environments
+
+Furthermore:
+
+- Ensure that all API communications from the client to the API server and any
+  downstream/upstream components happen over an encrypted communication channel
+  (TLS), regardless of whether it is an internal or public-facing API.
+- Be specific about which HTTP verbs each API can be accessed by: all other HTTP
+  verbs should be disabled (e.g. HEAD).
+- APIs expecting to be accessed from browser-based clients (e.g., WebApp front-end)
+  should, at least:
+
+    - implement a proper Cross-Origin Resource Sharing (CORS) policy
+    - include applicable Security Headers
+- Restrict incoming content types/data formats to those that meet the business/
+  functional requirements.
+- Ensure all servers in the HTTP server chain (e.g. load balancers, reverse and
+  forward proxies, and back-end servers) process incoming requests in a uniform
+  manner to avoid desync issues.
+- Where applicable, define and enforce all API response payload schemas, including
+  error responses, to prevent exception traces and other valuable information from
+  being sent back to attackers.
+
+CodeIgniter provisions
+----------------------
+
+- The config for global secure access (``Config\App::$forceGlobalSecureRequests``)
+- :php:func:`force_https()` function
+- :ref:`Defined Route Routing <defined-route-routing>`
+- :ref:`auto-routing-improved`
+
+API9:2023 Improper Inventory Management
+=======================================
+
+APIs tend to expose more endpoints than traditional web applications, making
+proper and updated documentation highly important. A proper inventory of hosts
+and deployed API versions also are important to mitigate issues such as deprecated
+API versions and exposed debug endpoints.
+
+OWASP recommendations
+---------------------
+
+- Inventory all API hosts and document important aspects of each one of them,
+  focusing on the API environment (e.g. production, staging, test, development),
+  who should have network access to the host (e.g. public, internal, partners)
+  and the API version.
+- Inventory integrated services and document important aspects such as their
+  role in the system, what data is exchanged (data flow), and their sensitivity.
+- Document all aspects of your API such as authentication, errors, redirects,
+  rate limiting, cross-origin resource sharing (CORS) policy, and endpoints,
+  including their parameters, requests, and responses.
+- Generate documentation automatically by adopting open standards. Include the
+  documentation build in your CI/CD pipeline.
+- Make API documentation available only to those authorized to use the API.
+- Use external protection measures such as API security specific solutions for
+  all exposed versions of your APIs, not just for the current production version.
+- Avoid using production data with non-production API deployments. If this is
+  unavoidable, these endpoints should get the same security treatment as the
+  production ones.
+- When newer versions of APIs include security improvements, perform a risk
+  analysis to inform the mitigation actions required for the older versions. For
+  example, whether it is possible to backport the improvements without breaking
+  API compatibility or if you need to take the older version out quickly and
+  force all clients to move to the latest version.
+
+CodeIgniter provisions
+----------------------
+
+- :ref:`routing-spark-routes` command
+
+API10:2023 Unsafe Consumption of APIs
+=====================================
+
+Developers tend to trust data received from third-party APIs more than user input,
+and so tend to adopt weaker security standards. In order to compromise APIs,
+attackers go after integrated third-party services instead of trying to compromise
+the target API directly.
+
+OWASP recommendations
+---------------------
+
+- When evaluating service providers, assess their API security posture.
+- Ensure all API interactions happen over a secure communication channel (TLS).
+- Always validate and properly sanitize data received from integrated APIs before
+  using it.
+- Maintain an allowlist of well-known locations integrated APIs may redirect yours
+  to: do not blindly follow redirects.
+
+CodeIgniter provisions
+----------------------
+
+- :doc:`../libraries/validation` library
diff --git a/user_guide_src/source/models/model.rst b/user_guide_src/source/models/model.rst
index 41a754bc25ee..ce561e0be810 100644
--- a/user_guide_src/source/models/model.rst
+++ b/user_guide_src/source/models/model.rst
@@ -151,6 +151,8 @@ configured to any name of your choice by using `$deletedField`_ property.
 
 .. important:: The ``deleted_at`` field in the database must be nullable.
 
+.. _model-allowed-fields:
+
 $allowedFields
 --------------
 

From ea56ea29f25ec61e667e665312bb92404fa7ee2f Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Wed, 3 Apr 2024 21:28:18 +0900
Subject: [PATCH 51/65] docs: fix PHPDoc types in Database

---
 phpstan-baseline.php                   | 30 --------------------------
 system/Database/BaseConnection.php     | 10 +++++++--
 system/Database/MySQLi/Connection.php  |  4 ++--
 system/Database/OCI8/Connection.php    |  4 ++--
 system/Database/Postgre/Connection.php |  4 ++--
 system/Database/SQLSRV/Connection.php  |  4 ++--
 system/Database/SQLite3/Connection.php |  4 ++--
 system/Database/SQLite3/Table.php      |  6 +++---
 8 files changed, 21 insertions(+), 45 deletions(-)

diff --git a/phpstan-baseline.php b/phpstan-baseline.php
index 83a947a76f94..5d77400e623c 100644
--- a/phpstan-baseline.php
+++ b/phpstan-baseline.php
@@ -2851,16 +2851,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Database/BaseConnection.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Method CodeIgniter\\\\Database\\\\BaseConnection\\:\\:_foreignKeyData\\(\\) return type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Database/BaseConnection.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Method CodeIgniter\\\\Database\\\\BaseConnection\\:\\:_indexData\\(\\) return type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Database/BaseConnection.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Method CodeIgniter\\\\Database\\\\BaseConnection\\:\\:callFunction\\(\\) has parameter \\$params with no value type specified in iterable type array\\.$#',
 	'count' => 1,
@@ -2896,11 +2886,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Database/BaseConnection.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Method CodeIgniter\\\\Database\\\\BaseConnection\\:\\:foreignKeyDataToObjects\\(\\) return type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Database/BaseConnection.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Method CodeIgniter\\\\Database\\\\BaseConnection\\:\\:getFieldNames\\(\\) return type has no value type specified in iterable type array\\.$#',
 	'count' => 1,
@@ -2911,11 +2896,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Database/BaseConnection.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Method CodeIgniter\\\\Database\\\\BaseConnection\\:\\:getIndexData\\(\\) return type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Database/BaseConnection.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Method CodeIgniter\\\\Database\\\\BaseConnection\\:\\:listTables\\(\\) return type has no value type specified in iterable type array\\.$#',
 	'count' => 1,
@@ -9391,16 +9371,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/Test/Mock/MockConnection.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Method CodeIgniter\\\\Test\\\\Mock\\\\MockConnection\\:\\:_foreignKeyData\\(\\) return type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Test/Mock/MockConnection.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Method CodeIgniter\\\\Test\\\\Mock\\\\MockConnection\\:\\:_indexData\\(\\) return type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/Test/Mock/MockConnection.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Method CodeIgniter\\\\Test\\\\Mock\\\\MockConnection\\:\\:shouldReturn\\(\\) has no return type specified\\.$#',
 	'count' => 1,
diff --git a/system/Database/BaseConnection.php b/system/Database/BaseConnection.php
index ae5c4b3805f1..93bde5ddca6d 100644
--- a/system/Database/BaseConnection.php
+++ b/system/Database/BaseConnection.php
@@ -1527,7 +1527,7 @@ public function getFieldData(string $table)
     /**
      * Returns an object with key data
      *
-     * @return array
+     * @return array<string, stdClass>
      */
     public function getIndexData(string $table)
     {
@@ -1547,7 +1547,9 @@ public function getForeignKeyData(string $table)
     /**
      * Converts array of arrays generated by _foreignKeyData() to array of objects
      *
-     * @return array[
+     * @return array<string, stdClass>
+     *
+     * array[
      *    {constraint_name} =>
      *        stdClass[
      *            'constraint_name'     => string,
@@ -1704,6 +1706,8 @@ abstract protected function _fieldData(string $table): array;
      * Platform-specific index data.
      *
      * @see    getIndexData()
+     *
+     * @return array<string, stdClass>
      */
     abstract protected function _indexData(string $table): array;
 
@@ -1711,6 +1715,8 @@ abstract protected function _indexData(string $table): array;
      * Platform-specific foreign keys data.
      *
      * @see    getForeignKeyData()
+     *
+     * @return array<string, stdClass>
      */
     abstract protected function _foreignKeyData(string $table): array;
 
diff --git a/system/Database/MySQLi/Connection.php b/system/Database/MySQLi/Connection.php
index 03aab408398a..b499e2ca81d6 100644
--- a/system/Database/MySQLi/Connection.php
+++ b/system/Database/MySQLi/Connection.php
@@ -443,7 +443,7 @@ protected function _fieldData(string $table): array
     /**
      * Returns an array of objects with index data
      *
-     * @return list<stdClass>
+     * @return array<string, stdClass>
      *
      * @throws DatabaseException
      * @throws LogicException
@@ -489,7 +489,7 @@ protected function _indexData(string $table): array
     /**
      * Returns an array of objects with Foreign key data
      *
-     * @return list<stdClass>
+     * @return array<string, stdClass>
      *
      * @throws DatabaseException
      */
diff --git a/system/Database/OCI8/Connection.php b/system/Database/OCI8/Connection.php
index fc7920e2a8ff..2feb2d36df4b 100644
--- a/system/Database/OCI8/Connection.php
+++ b/system/Database/OCI8/Connection.php
@@ -325,7 +325,7 @@ protected function _fieldData(string $table): array
     /**
      * Returns an array of objects with index data
      *
-     * @return list<stdClass>
+     * @return array<string, stdClass>
      *
      * @throws DatabaseException
      */
@@ -374,7 +374,7 @@ protected function _indexData(string $table): array
     /**
      * Returns an array of objects with Foreign key data
      *
-     * @return list<stdClass>
+     * @return array<string, stdClass>
      *
      * @throws DatabaseException
      */
diff --git a/system/Database/Postgre/Connection.php b/system/Database/Postgre/Connection.php
index baef703b7bb3..7da3d26c9dd8 100644
--- a/system/Database/Postgre/Connection.php
+++ b/system/Database/Postgre/Connection.php
@@ -332,7 +332,7 @@ protected function _fieldData(string $table): array
     /**
      * Returns an array of objects with index data
      *
-     * @return list<stdClass>
+     * @return array<string, stdClass>
      *
      * @throws DatabaseException
      */
@@ -371,7 +371,7 @@ protected function _indexData(string $table): array
     /**
      * Returns an array of objects with Foreign key data
      *
-     * @return list<stdClass>
+     * @return array<string, stdClass>
      *
      * @throws DatabaseException
      */
diff --git a/system/Database/SQLSRV/Connection.php b/system/Database/SQLSRV/Connection.php
index bc3e036078c9..77a1ab34bcf3 100755
--- a/system/Database/SQLSRV/Connection.php
+++ b/system/Database/SQLSRV/Connection.php
@@ -231,7 +231,7 @@ protected function _listColumns(string $table = ''): string
     /**
      * Returns an array of objects with index data
      *
-     * @return list<stdClass>
+     * @return array<string, stdClass>
      *
      * @throws DatabaseException
      */
@@ -269,7 +269,7 @@ protected function _indexData(string $table): array
      * Returns an array of objects with Foreign key data
      * referenced_object_id  parent_object_id
      *
-     * @return list<stdClass>
+     * @return array<string, stdClass>
      *
      * @throws DatabaseException
      */
diff --git a/system/Database/SQLite3/Connection.php b/system/Database/SQLite3/Connection.php
index be4ebc25f0ca..a7ac179dadca 100644
--- a/system/Database/SQLite3/Connection.php
+++ b/system/Database/SQLite3/Connection.php
@@ -286,7 +286,7 @@ protected function _fieldData(string $table): array
     /**
      * Returns an array of objects with index data
      *
-     * @return list<stdClass>
+     * @return array<string, stdClass>
      *
      * @throws DatabaseException
      */
@@ -343,7 +343,7 @@ protected function _indexData(string $table): array
     /**
      * Returns an array of objects with Foreign key data
      *
-     * @return list<stdClass>
+     * @return array<string, stdClass>
      */
     protected function _foreignKeyData(string $table): array
     {
diff --git a/system/Database/SQLite3/Table.php b/system/Database/SQLite3/Table.php
index 47e6d1a7097e..44757a3d57ca 100644
--- a/system/Database/SQLite3/Table.php
+++ b/system/Database/SQLite3/Table.php
@@ -280,7 +280,7 @@ public function addForeignKey(array $foreignKeys)
     /**
      * Creates the new table based on our current fields.
      *
-     * @return mixed
+     * @return bool
      */
     protected function createTable()
     {
@@ -449,9 +449,9 @@ private function isNumericType(string $type): bool
      * Converts keys retrieved from the database to
      * the format needed to create later.
      *
-     * @param mixed $keys
+     * @param array<string, stdClass> $keys
      *
-     * @return mixed
+     * @return array<string, array{fields: string, type: string}>
      */
     protected function formatKeys($keys)
     {

From bf3677c6c86bc81b319a346750005e75ac1562a1 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 4 Apr 2024 07:02:36 +0900
Subject: [PATCH 52/65] refactor: remove unneeded code

---
 system/Database/SQLite3/Table.php | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/system/Database/SQLite3/Table.php b/system/Database/SQLite3/Table.php
index 44757a3d57ca..bd2056d581d9 100644
--- a/system/Database/SQLite3/Table.php
+++ b/system/Database/SQLite3/Table.php
@@ -455,10 +455,6 @@ private function isNumericType(string $type): bool
      */
     protected function formatKeys($keys)
     {
-        if (! is_array($keys)) {
-            return $keys;
-        }
-
         $return = [];
 
         foreach ($keys as $name => $key) {

From f1d6b1be358fd0b7a389dd11a25e1377e3d884fb Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 4 Apr 2024 10:11:00 +0900
Subject: [PATCH 53/65] style: fix indentations

For consistency.
---
 app/.htaccess            | 4 ++--
 public/.htaccess         | 2 +-
 tests/.htaccess          | 4 ++--
 user_guide_src/.htaccess | 4 ++--
 writable/.htaccess       | 4 ++--
 5 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/app/.htaccess b/app/.htaccess
index f24db0accc73..3462048add78 100644
--- a/app/.htaccess
+++ b/app/.htaccess
@@ -1,6 +1,6 @@
 <IfModule authz_core_module>
-    Require all denied
+	Require all denied
 </IfModule>
 <IfModule !authz_core_module>
-    Deny from all
+	Deny from all
 </IfModule>
diff --git a/public/.htaccess b/public/.htaccess
index dbed322fdc1e..abac3cb6b949 100644
--- a/public/.htaccess
+++ b/public/.htaccess
@@ -45,5 +45,5 @@ Options -Indexes
 </IfModule>
 
 # Disable server signature start
-	ServerSignature Off
+ServerSignature Off
 # Disable server signature end
diff --git a/tests/.htaccess b/tests/.htaccess
index f24db0accc73..3462048add78 100644
--- a/tests/.htaccess
+++ b/tests/.htaccess
@@ -1,6 +1,6 @@
 <IfModule authz_core_module>
-    Require all denied
+	Require all denied
 </IfModule>
 <IfModule !authz_core_module>
-    Deny from all
+	Deny from all
 </IfModule>
diff --git a/user_guide_src/.htaccess b/user_guide_src/.htaccess
index f24db0accc73..3462048add78 100644
--- a/user_guide_src/.htaccess
+++ b/user_guide_src/.htaccess
@@ -1,6 +1,6 @@
 <IfModule authz_core_module>
-    Require all denied
+	Require all denied
 </IfModule>
 <IfModule !authz_core_module>
-    Deny from all
+	Deny from all
 </IfModule>
diff --git a/writable/.htaccess b/writable/.htaccess
index f24db0accc73..3462048add78 100755
--- a/writable/.htaccess
+++ b/writable/.htaccess
@@ -1,6 +1,6 @@
 <IfModule authz_core_module>
-    Require all denied
+	Require all denied
 </IfModule>
 <IfModule !authz_core_module>
-    Deny from all
+	Deny from all
 </IfModule>

From 78afe57e5019a10d1c173a5f799d73edae074d25 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 4 Apr 2024 10:15:40 +0900
Subject: [PATCH 54/65] docs: add escaping to variables

It is bad practice to output variables without escaping in HTML.
---
 user_guide_src/source/outgoing/alternative_php.rst     | 4 ++--
 user_guide_src/source/outgoing/alternative_php/001.php | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/user_guide_src/source/outgoing/alternative_php.rst b/user_guide_src/source/outgoing/alternative_php.rst
index b4a2b10257e5..742c59d404c8 100644
--- a/user_guide_src/source/outgoing/alternative_php.rst
+++ b/user_guide_src/source/outgoing/alternative_php.rst
@@ -15,11 +15,11 @@ Alternative Echos
 
 Normally to echo, or print out a variable you would do this::
 
-    <?php echo $variable; ?>
+    <?php echo esc($variable); ?>
 
 With the alternative syntax you can instead do it this way::
 
-    <?= $variable ?>
+    <?= esc($variable) ?>
 
 Alternative Control Structures
 ==============================
diff --git a/user_guide_src/source/outgoing/alternative_php/001.php b/user_guide_src/source/outgoing/alternative_php/001.php
index 9158fe27dccc..b9c543ef4211 100644
--- a/user_guide_src/source/outgoing/alternative_php/001.php
+++ b/user_guide_src/source/outgoing/alternative_php/001.php
@@ -2,7 +2,7 @@
 
 <?php foreach ($todo as $item): ?>
 
-    <li><?= $item ?></li>
+    <li><?= esc($item) ?></li>
 
 <?php endforeach ?>
 

From ec84410d4cf6bb8f45b9c8f4fb3a1b1f9632616d Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 4 Apr 2024 10:36:22 +0900
Subject: [PATCH 55/65] docs: add "// ..." to sample code

To make it clear that only a part of the code is shown.
---
 user_guide_src/source/models/model/003.php | 2 ++
 user_guide_src/source/models/model/004.php | 2 ++
 user_guide_src/source/models/model/027.php | 2 ++
 user_guide_src/source/models/model/034.php | 2 ++
 user_guide_src/source/models/model/038.php | 2 ++
 user_guide_src/source/models/model/040.php | 2 ++
 user_guide_src/source/models/model/041.php | 2 ++
 user_guide_src/source/models/model/050.php | 2 ++
 user_guide_src/source/models/model/051.php | 4 ++++
 user_guide_src/source/models/model/052.php | 4 ++++
 user_guide_src/source/models/model/054.php | 2 ++
 11 files changed, 26 insertions(+)

diff --git a/user_guide_src/source/models/model/003.php b/user_guide_src/source/models/model/003.php
index 1b70cea84a84..c2ef0d257efc 100644
--- a/user_guide_src/source/models/model/003.php
+++ b/user_guide_src/source/models/model/003.php
@@ -6,6 +6,8 @@
 
 class UserModel extends UserAuthModel
 {
+    // ...
+
     /**
      * Called during initialization. Appends
      * our custom field to the module's model.
diff --git a/user_guide_src/source/models/model/004.php b/user_guide_src/source/models/model/004.php
index 1ae028acbf7a..1005e6f7f2e7 100644
--- a/user_guide_src/source/models/model/004.php
+++ b/user_guide_src/source/models/model/004.php
@@ -7,4 +7,6 @@
 class UserModel extends Model
 {
     protected $DBGroup = 'group_name';
+
+    // ...
 }
diff --git a/user_guide_src/source/models/model/027.php b/user_guide_src/source/models/model/027.php
index 3a039df49465..86a5a5f4c71a 100644
--- a/user_guide_src/source/models/model/027.php
+++ b/user_guide_src/source/models/model/027.php
@@ -6,6 +6,8 @@
 
 class UserModel extends Model
 {
+    // ...
+
     protected $validationRules = [
         'username'     => 'required|max_length[30]|alpha_numeric_space|min_length[3]',
         'email'        => 'required|max_length[254]|valid_email|is_unique[users.email]',
diff --git a/user_guide_src/source/models/model/034.php b/user_guide_src/source/models/model/034.php
index b18544ee555e..ac8989263ee2 100644
--- a/user_guide_src/source/models/model/034.php
+++ b/user_guide_src/source/models/model/034.php
@@ -6,5 +6,7 @@
 
 class UserModel extends Model
 {
+    // ...
+
     protected $validationRules = 'users';
 }
diff --git a/user_guide_src/source/models/model/038.php b/user_guide_src/source/models/model/038.php
index 5ed40baae0eb..2e61e1fc94f8 100644
--- a/user_guide_src/source/models/model/038.php
+++ b/user_guide_src/source/models/model/038.php
@@ -6,6 +6,8 @@
 
 class MyModel extends Model
 {
+    // ...
+
     protected $validationRules = [
         'id'    => 'max_length[19]|is_natural_no_zero',
         'email' => 'required|max_length[254]|valid_email|is_unique[users.email,id,{id}]',
diff --git a/user_guide_src/source/models/model/040.php b/user_guide_src/source/models/model/040.php
index df4d628d1c9d..94de0d042171 100644
--- a/user_guide_src/source/models/model/040.php
+++ b/user_guide_src/source/models/model/040.php
@@ -6,6 +6,8 @@
 
 class MyModel extends Model
 {
+    // ...
+
     protected $validationRules = [
         'id'    => 'max_length[19]|is_natural_no_zero',
         'email' => 'required|max_length[254]|valid_email|is_unique[users.email,id,4]',
diff --git a/user_guide_src/source/models/model/041.php b/user_guide_src/source/models/model/041.php
index 94ad48e0effb..d5b73ec3869e 100644
--- a/user_guide_src/source/models/model/041.php
+++ b/user_guide_src/source/models/model/041.php
@@ -6,5 +6,7 @@
 
 class MyModel extends Model
 {
+    // ...
+
     protected $allowedFields = ['name', 'email', 'address'];
 }
diff --git a/user_guide_src/source/models/model/050.php b/user_guide_src/source/models/model/050.php
index 9f6d334609f1..5f5a4fdb7278 100644
--- a/user_guide_src/source/models/model/050.php
+++ b/user_guide_src/source/models/model/050.php
@@ -6,6 +6,8 @@
 
 class MyModel extends Model
 {
+    // ...
+
     protected function hashPassword(array $data)
     {
         if (! isset($data['data']['password'])) {
diff --git a/user_guide_src/source/models/model/051.php b/user_guide_src/source/models/model/051.php
index 0ca5ee317a37..28229e22edcb 100644
--- a/user_guide_src/source/models/model/051.php
+++ b/user_guide_src/source/models/model/051.php
@@ -6,6 +6,10 @@
 
 class MyModel extends Model
 {
+    // ...
+
     protected $beforeInsert = ['hashPassword'];
     protected $beforeUpdate = ['hashPassword'];
+
+    // ...
 }
diff --git a/user_guide_src/source/models/model/052.php b/user_guide_src/source/models/model/052.php
index 292b752bdc3c..d049e938c713 100644
--- a/user_guide_src/source/models/model/052.php
+++ b/user_guide_src/source/models/model/052.php
@@ -6,5 +6,9 @@
 
 class MyModel extends Model
 {
+    // ...
+
     protected $allowCallbacks = false;
+
+    // ...
 }
diff --git a/user_guide_src/source/models/model/054.php b/user_guide_src/source/models/model/054.php
index 6b72095f087f..c67b4828acfd 100644
--- a/user_guide_src/source/models/model/054.php
+++ b/user_guide_src/source/models/model/054.php
@@ -6,6 +6,8 @@
 
 class MyModel extends Model
 {
+    // ...
+
     protected $beforeFind = ['checkCache'];
 
     // ...

From e2ac94ab035c674d7a805205dec5c5ab24acab62 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Thu, 4 Apr 2024 10:51:50 +0900
Subject: [PATCH 56/65] docs: update @var types

---
 phpstan-baseline.php | 120 -------------------------------------------
 system/BaseModel.php |  24 ++++-----
 2 files changed, 12 insertions(+), 132 deletions(-)

diff --git a/phpstan-baseline.php b/phpstan-baseline.php
index 83a947a76f94..9e0f8ebed3d0 100644
--- a/phpstan-baseline.php
+++ b/phpstan-baseline.php
@@ -261,66 +261,6 @@
 	'count' => 1,
 	'path' => __DIR__ . '/system/BaseModel.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$afterDelete type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$afterFind type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$afterInsert type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$afterInsertBatch type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$afterUpdate type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$afterUpdateBatch type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$beforeDelete type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$beforeFind type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$beforeInsert type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$beforeInsertBatch type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$beforeUpdate type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property CodeIgniter\\\\BaseModel\\:\\:\\$beforeUpdateBatch type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/system/BaseModel.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Strict comparison using \\!\\=\\= between mixed and null will always evaluate to true\\.$#',
 	'count' => 1,
@@ -11281,71 +11221,11 @@
 	'count' => 1,
 	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$afterDelete type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$afterFind type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$afterInsert type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$afterInsertBatch type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$afterUpdate type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$afterUpdateBatch type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$beforeDelete type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$beforeFind type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$beforeFindReturnData has no type specified\\.$#',
 	'count' => 1,
 	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
 ];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$beforeInsert type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$beforeInsertBatch type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$beforeUpdate type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
-$ignoreErrors[] = [
-	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$beforeUpdateBatch type has no value type specified in iterable type array\\.$#',
-	'count' => 1,
-	'path' => __DIR__ . '/tests/_support/Models/EventModel.php',
-];
 $ignoreErrors[] = [
 	'message' => '#^Property Tests\\\\Support\\\\Models\\\\EventModel\\:\\:\\$eventData has no type specified\\.$#',
 	'count' => 1,
diff --git a/system/BaseModel.php b/system/BaseModel.php
index 9b085efa8400..cd2bdd6beb22 100644
--- a/system/BaseModel.php
+++ b/system/BaseModel.php
@@ -246,84 +246,84 @@ abstract class BaseModel
     /**
      * Callbacks for beforeInsert
      *
-     * @var array
+     * @var list<string>
      */
     protected $beforeInsert = [];
 
     /**
      * Callbacks for afterInsert
      *
-     * @var array
+     * @var list<string>
      */
     protected $afterInsert = [];
 
     /**
      * Callbacks for beforeUpdate
      *
-     * @var array
+     * @var list<string>
      */
     protected $beforeUpdate = [];
 
     /**
      * Callbacks for afterUpdate
      *
-     * @var array
+     * @var list<string>
      */
     protected $afterUpdate = [];
 
     /**
      * Callbacks for beforeInsertBatch
      *
-     * @var array
+     * @var list<string>
      */
     protected $beforeInsertBatch = [];
 
     /**
      * Callbacks for afterInsertBatch
      *
-     * @var array
+     * @var list<string>
      */
     protected $afterInsertBatch = [];
 
     /**
      * Callbacks for beforeUpdateBatch
      *
-     * @var array
+     * @var list<string>
      */
     protected $beforeUpdateBatch = [];
 
     /**
      * Callbacks for afterUpdateBatch
      *
-     * @var array
+     * @var list<string>
      */
     protected $afterUpdateBatch = [];
 
     /**
      * Callbacks for beforeFind
      *
-     * @var array
+     * @var list<string>
      */
     protected $beforeFind = [];
 
     /**
      * Callbacks for afterFind
      *
-     * @var array
+     * @var list<string>
      */
     protected $afterFind = [];
 
     /**
      * Callbacks for beforeDelete
      *
-     * @var array
+     * @var list<string>
      */
     protected $beforeDelete = [];
 
     /**
      * Callbacks for afterDelete
      *
-     * @var array
+     * @var list<string>
      */
     protected $afterDelete = [];
 

From 0d84ce83a98bdbe5504ea58ba047259607917285 Mon Sep 17 00:00:00 2001
From: Pebryan Ibrahim <33095305+Pebryan354@users.noreply.github.com>
Date: Thu, 4 Apr 2024 10:20:22 +0700
Subject: [PATCH 57/65] docs: update return type

---
 system/Database/BaseResult.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/system/Database/BaseResult.php b/system/Database/BaseResult.php
index 8a624029b3a2..4ef73d6d210a 100644
--- a/system/Database/BaseResult.php
+++ b/system/Database/BaseResult.php
@@ -260,7 +260,7 @@ public function getResultObject(): array
      * @param         string                           $type The type of result object. 'array', 'object' or class name.
      * @phpstan-param class-string<T>|'array'|'object' $type
      *
-     * @return         array|object|stdClass|null
+     * @return         array|object|stdClass|null|string
      * @phpstan-return ($type is 'object' ? stdClass|null : ($type is 'array' ? array|null : T|null))
      */
     public function getRow($n = 0, string $type = 'object')

From 1455e8dac6d75c05f595af958065608e0d48e0e0 Mon Sep 17 00:00:00 2001
From: Abdul Malik Ikhsan <samsonasik@gmail.com>
Date: Thu, 4 Apr 2024 15:38:56 +0700
Subject: [PATCH 58/65] remove !== "0" check

---
 system/CLI/CLI.php                      | 2 +-
 system/Config/DotEnv.php                | 2 +-
 system/HTTP/DownloadResponse.php        | 2 +-
 system/Helpers/form_helper.php          | 2 +-
 system/Helpers/html_helper.php          | 2 +-
 system/Helpers/url_helper.php           | 2 +-
 system/Router/RouteCollection.php       | 2 +-
 system/Session/Handlers/FileHandler.php | 2 +-
 8 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/system/CLI/CLI.php b/system/CLI/CLI.php
index 12e95ed37388..5bd8543896ef 100644
--- a/system/CLI/CLI.php
+++ b/system/CLI/CLI.php
@@ -262,7 +262,7 @@ public static function prompt(string $field, $options = null, $validation = null
             $default = $options[0];
         }
 
-        static::fwrite(STDOUT, $field . (trim($field) !== '' && trim($field) !== '0' ? ' ' : '') . $extraOutput . ': ');
+        static::fwrite(STDOUT, $field . (trim($field) !== '' ? ' ' : '') . $extraOutput . ': ');
 
         // Read the input from keyboard.
         $input = trim(static::input()) ?: $default;
diff --git a/system/Config/DotEnv.php b/system/Config/DotEnv.php
index 01bbb1ba6467..f8e757e9eab5 100644
--- a/system/Config/DotEnv.php
+++ b/system/Config/DotEnv.php
@@ -140,7 +140,7 @@ public function normaliseVariable(string $name, string $value = ''): array
      */
     protected function sanitizeValue(string $value): string
     {
-        if ($value === '' || $value === '0') {
+        if ($value === '') {
             return $value;
         }
 
diff --git a/system/HTTP/DownloadResponse.php b/system/HTTP/DownloadResponse.php
index df9eef8c147f..d815a9af6e03 100644
--- a/system/HTTP/DownloadResponse.php
+++ b/system/HTTP/DownloadResponse.php
@@ -194,7 +194,7 @@ private function getContentDisposition(): string
 
         $result = sprintf('attachment; filename="%s"', $downloadFilename);
 
-        if ($utf8Filename !== '' && $utf8Filename !== '0') {
+        if ($utf8Filename !== '') {
             $result .= '; filename*=UTF-8\'\'' . rawurlencode($utf8Filename);
         }
 
diff --git a/system/Helpers/form_helper.php b/system/Helpers/form_helper.php
index e21b27787937..5f62cca83d6d 100644
--- a/system/Helpers/form_helper.php
+++ b/system/Helpers/form_helper.php
@@ -29,7 +29,7 @@
     function form_open(string $action = '', $attributes = [], array $hidden = []): string
     {
         // If no action is provided then set to the current url
-        if ($action === '' || $action === '0') {
+        if ($action === '') {
             $action = current_url(true);
         } // If an action is not a full URL then turn it into one
         elseif (strpos($action, '://') === false) {
diff --git a/system/Helpers/html_helper.php b/system/Helpers/html_helper.php
index 9fe4334f413b..6d9a51356af6 100755
--- a/system/Helpers/html_helper.php
+++ b/system/Helpers/html_helper.php
@@ -195,7 +195,7 @@ function doctype(string $type = 'html5'): string
     function script_tag($src = '', bool $indexPage = false): string
     {
         $cspNonce = csp_script_nonce();
-        $cspNonce = $cspNonce !== '' && $cspNonce !== '0' ? ' ' . $cspNonce : $cspNonce;
+        $cspNonce = $cspNonce !== '' ? ' ' . $cspNonce : $cspNonce;
         $script   = '<script' . $cspNonce . ' ';
         if (! is_array($src)) {
             $src = ['src' => $src];
diff --git a/system/Helpers/url_helper.php b/system/Helpers/url_helper.php
index d1ff870c2f6e..988d7de88a2f 100644
--- a/system/Helpers/url_helper.php
+++ b/system/Helpers/url_helper.php
@@ -318,7 +318,7 @@ function safe_mailto(string $email, string $title = '', $attributes = ''): strin
 
         // improve obfuscation by eliminating newlines & whitespace
         $cspNonce = csp_script_nonce();
-        $cspNonce = $cspNonce !== '' && $cspNonce !== '0' ? ' ' . $cspNonce : $cspNonce;
+        $cspNonce = $cspNonce !== '' ? ' ' . $cspNonce : $cspNonce;
         $output   = '<script' . $cspNonce . '>'
                 . 'var l=new Array();';
 
diff --git a/system/Router/RouteCollection.php b/system/Router/RouteCollection.php
index 4bac4dd4403b..117f3a218da6 100644
--- a/system/Router/RouteCollection.php
+++ b/system/Router/RouteCollection.php
@@ -767,7 +767,7 @@ public function group(string $name, ...$params)
         // To register a route, we'll set a flag so that our router
         // will see the group name.
         // If the group name is empty, we go on using the previously built group name.
-        $this->group = $name !== '' && $name !== '0' ? trim($oldGroup . '/' . $name, '/') : $oldGroup;
+        $this->group = $name !== '' ? trim($oldGroup . '/' . $name, '/') : $oldGroup;
 
         $callback = array_pop($params);
 
diff --git a/system/Session/Handlers/FileHandler.php b/system/Session/Handlers/FileHandler.php
index cad7283f8073..62513d399c4a 100644
--- a/system/Session/Handlers/FileHandler.php
+++ b/system/Session/Handlers/FileHandler.php
@@ -73,7 +73,7 @@ public function __construct(SessionConfig $config, string $ipAddress)
         } else {
             $sessionPath = rtrim(ini_get('session.save_path'), '/\\');
 
-            if ($sessionPath === '' || $sessionPath === '0') {
+            if ($sessionPath === '') {
                 $sessionPath = WRITEPATH . 'session';
             }
 

From e2ccc919d2748611da893eceddea6db5589b1291 Mon Sep 17 00:00:00 2001
From: Pebryan Ibrahim <33095305+Pebryan354@users.noreply.github.com>
Date: Fri, 5 Apr 2024 11:02:07 +0700
Subject: [PATCH 59/65] add: return type int & float

---
 system/Database/BaseResult.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/system/Database/BaseResult.php b/system/Database/BaseResult.php
index 4ef73d6d210a..44c35aa62041 100644
--- a/system/Database/BaseResult.php
+++ b/system/Database/BaseResult.php
@@ -260,7 +260,7 @@ public function getResultObject(): array
      * @param         string                           $type The type of result object. 'array', 'object' or class name.
      * @phpstan-param class-string<T>|'array'|'object' $type
      *
-     * @return         array|object|stdClass|null|string
+     * @return         array|float|int|object|stdClass|string|null
      * @phpstan-return ($type is 'object' ? stdClass|null : ($type is 'array' ? array|null : T|null))
      */
     public function getRow($n = 0, string $type = 'object')

From 716d3628ba74f20aa7c8b9b0f73592d2251b3471 Mon Sep 17 00:00:00 2001
From: Pebryan Ibrahim <33095305+Pebryan354@users.noreply.github.com>
Date: Fri, 5 Apr 2024 14:48:22 +0700
Subject: [PATCH 60/65] Update system/Database/BaseResult.php

Co-authored-by: kenjis <kenji.uui@gmail.com>
---
 system/Database/BaseResult.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/system/Database/BaseResult.php b/system/Database/BaseResult.php
index 44c35aa62041..8720b5fe111c 100644
--- a/system/Database/BaseResult.php
+++ b/system/Database/BaseResult.php
@@ -261,7 +261,7 @@ public function getResultObject(): array
      * @phpstan-param class-string<T>|'array'|'object' $type
      *
      * @return         array|float|int|object|stdClass|string|null
-     * @phpstan-return ($type is 'object' ? stdClass|null : ($type is 'array' ? array|null : T|null))
+     * @phpstan-return ($n is string ? float|int|string|null : ($type is 'object' ? stdClass|null : ($type is 'array' ? array|null : T|null)))
      */
     public function getRow($n = 0, string $type = 'object')
     {

From d6347e602e2db6d2810aedccb6557c1de56b68c9 Mon Sep 17 00:00:00 2001
From: Pebryan Ibrahim <33095305+Pebryan354@users.noreply.github.com>
Date: Fri, 5 Apr 2024 14:50:29 +0700
Subject: [PATCH 61/65] apply suggestion

---
 system/Database/ResultInterface.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/system/Database/ResultInterface.php b/system/Database/ResultInterface.php
index ea5f0de2800f..2b1deb98c6b6 100644
--- a/system/Database/ResultInterface.php
+++ b/system/Database/ResultInterface.php
@@ -63,8 +63,8 @@ public function getResultObject(): array;
      * @param         string                           $type The type of result object. 'array', 'object' or class name.
      * @phpstan-param class-string<T>|'array'|'object' $type
      *
-     * @return         array|object|stdClass|null
-     * @phpstan-return ($type is 'object' ? stdClass|null : ($type is 'array' ? array|null : T|null))
+     * @return         array|float|int|object|stdClass|string|null
+     * @phpstan-return ($n is string ? float|int|string|null : ($type is 'object' ? stdClass|null : ($type is 'array' ? array|null : T|null)))
      */
     public function getRow($n = 0, string $type = 'object');
 

From 88b6fb926bc807ac811e8a51a1d541671b0aaba8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 5 Apr 2024 15:59:12 +0000
Subject: [PATCH 62/65] chore(deps-dev): update rector/rector requirement from
 1.0.3 to 1.0.4

Updates the requirements on [rector/rector](https://github.com/rectorphp/rector) to permit the latest version.
- [Release notes](https://github.com/rectorphp/rector/releases)
- [Commits](https://github.com/rectorphp/rector/compare/1.0.3...1.0.4)

---
updated-dependencies:
- dependency-name: rector/rector
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 composer.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/composer.json b/composer.json
index 4021508a3a87..b5baf427017a 100644
--- a/composer.json
+++ b/composer.json
@@ -34,7 +34,7 @@
         "phpunit/phpcov": "^8.2",
         "phpunit/phpunit": "^9.1",
         "predis/predis": "^1.1 || ^2.0",
-        "rector/rector": "1.0.3",
+        "rector/rector": "1.0.4",
         "vimeo/psalm": "^5.0"
     },
     "replace": {

From f9ed5a6fc88527745675ae7b3ae19a27049527dc Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sat, 6 Apr 2024 11:11:59 +0900
Subject: [PATCH 63/65] docs: fix @param types

---
 system/HTTP/Files/UploadedFile.php          | 30 +++++++++------------
 system/HTTP/Files/UploadedFileInterface.php | 17 ++++++------
 2 files changed, 20 insertions(+), 27 deletions(-)

diff --git a/system/HTTP/Files/UploadedFile.php b/system/HTTP/Files/UploadedFile.php
index 70ece748d834..e0725e7c90d5 100644
--- a/system/HTTP/Files/UploadedFile.php
+++ b/system/HTTP/Files/UploadedFile.php
@@ -15,8 +15,6 @@
 use CodeIgniter\HTTP\Exceptions\HTTPException;
 use Config\Mimes;
 use Exception;
-use InvalidArgumentException;
-use RuntimeException;
 
 /**
  * Value object representing a single file uploaded through an
@@ -80,12 +78,12 @@ class UploadedFile extends File implements UploadedFileInterface
     /**
      * Accepts the file information as would be filled in from the $_FILES array.
      *
-     * @param string $path         The temporary location of the uploaded file.
-     * @param string $originalName The client-provided filename.
-     * @param string $mimeType     The type of file as provided by PHP
-     * @param int    $size         The size of the file, in bytes
-     * @param int    $error        The error constant of the upload (one of PHP's UPLOADERRXXX constants)
-     * @param string $clientPath   The webkit relative path of the uploaded file.
+     * @param string      $path         The temporary location of the uploaded file.
+     * @param string      $originalName The client-provided filename.
+     * @param string|null $mimeType     The type of file as provided by PHP
+     * @param int|null    $size         The size of the file, in bytes
+     * @param int|null    $error        The error constant of the upload (one of PHP's UPLOADERRXXX constants)
+     * @param string|null $clientPath   The webkit relative path of the uploaded file.
      */
     public function __construct(string $path, string $originalName, ?string $mimeType = null, ?int $size = null, ?int $error = null, ?string $clientPath = null)
     {
@@ -122,16 +120,12 @@ public function __construct(string $path, string $originalName, ?string $mimeTyp
      * @see http://php.net/is_uploaded_file
      * @see http://php.net/move_uploaded_file
      *
-     * @param string $targetPath Path to which to move the uploaded file.
-     * @param string $name       the name to rename the file to.
-     * @param bool   $overwrite  State for indicating whether to overwrite the previously generated file with the same
-     *                           name or not.
+     * @param string      $targetPath Path to which to move the uploaded file.
+     * @param string|null $name       the name to rename the file to.
+     * @param bool        $overwrite  State for indicating whether to overwrite the previously generated file with the same
+     *                                name or not.
      *
      * @return bool
-     *
-     * @throws InvalidArgumentException if the $path specified is invalid.
-     * @throws RuntimeException         on any error during the move operation.
-     * @throws RuntimeException         on the second or subsequent call to the method.
      */
     public function move(string $targetPath, ?string $name = null, bool $overwrite = false)
     {
@@ -345,8 +339,8 @@ public function isValid(): bool
      * By default, upload files are saved in writable/uploads directory. The YYYYMMDD folder
      * and random file name will be created.
      *
-     * @param string $folderName the folder name to writable/uploads directory.
-     * @param string $fileName   the name to rename the file to.
+     * @param string|null $folderName the folder name to writable/uploads directory.
+     * @param string|null $fileName   the name to rename the file to.
      *
      * @return string file full path
      */
diff --git a/system/HTTP/Files/UploadedFileInterface.php b/system/HTTP/Files/UploadedFileInterface.php
index 170f81c2de9e..ef2073f2b876 100644
--- a/system/HTTP/Files/UploadedFileInterface.php
+++ b/system/HTTP/Files/UploadedFileInterface.php
@@ -26,12 +26,12 @@ interface UploadedFileInterface
     /**
      * Accepts the file information as would be filled in from the $_FILES array.
      *
-     * @param string $path         The temporary location of the uploaded file.
-     * @param string $originalName The client-provided filename.
-     * @param string $mimeType     The type of file as provided by PHP
-     * @param int    $size         The size of the file, in bytes
-     * @param int    $error        The error constant of the upload (one of PHP's UPLOADERRXXX constants)
-     * @param string $clientPath   The webkit relative path of the uploaded file.
+     * @param string      $path         The temporary location of the uploaded file.
+     * @param string      $originalName The client-provided filename.
+     * @param string|null $mimeType     The type of file as provided by PHP
+     * @param int|null    $size         The size of the file, in bytes
+     * @param int|null    $error        The error constant of the upload (one of PHP's UPLOADERRXXX constants)
+     * @param string|null $clientPath   The webkit relative path of the uploaded file.
      */
     public function __construct(string $path, string $originalName, ?string $mimeType = null, ?int $size = null, ?int $error = null, ?string $clientPath = null);
 
@@ -57,13 +57,12 @@ public function __construct(string $path, string $originalName, ?string $mimeTyp
      * @see http://php.net/is_uploaded_file
      * @see http://php.net/move_uploaded_file
      *
-     * @param string $targetPath Path to which to move the uploaded file.
-     * @param string $name       the name to rename the file to.
+     * @param string      $targetPath Path to which to move the uploaded file.
+     * @param string|null $name       the name to rename the file to.
      *
      * @return bool
      *
      * @throws InvalidArgumentException if the $path specified is invalid.
-     * @throws RuntimeException         on any error during the move operation.
      * @throws RuntimeException         on the second or subsequent call to the method.
      */
     public function move(string $targetPath, ?string $name = null);

From a1e5d645c6fcdc7aa857f73e5394d25011c46730 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sat, 6 Apr 2024 11:21:18 +0900
Subject: [PATCH 64/65] docs: make CI3 notation consistent

---
 user_guide_src/source/incoming/controllers.rst              | 2 +-
 user_guide_src/source/incoming/routing.rst                  | 2 +-
 user_guide_src/source/installation/index.rst                | 2 +-
 user_guide_src/source/installation/upgrade_4xx.rst          | 4 ++--
 .../source/installation/upgrade_configuration.rst           | 4 ++--
 user_guide_src/source/installation/upgrade_controllers.rst  | 4 ++--
 user_guide_src/source/installation/upgrade_database.rst     | 4 ++--
 user_guide_src/source/installation/upgrade_emails.rst       | 4 ++--
 user_guide_src/source/installation/upgrade_encryption.rst   | 4 ++--
 user_guide_src/source/installation/upgrade_file_upload.rst  | 4 ++--
 user_guide_src/source/installation/upgrade_html_tables.rst  | 4 ++--
 user_guide_src/source/installation/upgrade_images.rst       | 4 ++--
 user_guide_src/source/installation/upgrade_localization.rst | 4 ++--
 user_guide_src/source/installation/upgrade_migrations.rst   | 4 ++--
 user_guide_src/source/installation/upgrade_models.rst       | 4 ++--
 user_guide_src/source/installation/upgrade_pagination.rst   | 4 ++--
 user_guide_src/source/installation/upgrade_responses.rst    | 4 ++--
 user_guide_src/source/installation/upgrade_routing.rst      | 4 ++--
 user_guide_src/source/installation/upgrade_security.rst     | 4 ++--
 user_guide_src/source/installation/upgrade_sessions.rst     | 4 ++--
 user_guide_src/source/installation/upgrade_validations.rst  | 4 ++--
 user_guide_src/source/installation/upgrade_view_parser.rst  | 4 ++--
 user_guide_src/source/installation/upgrade_views.rst        | 4 ++--
 user_guide_src/source/libraries/uploaded_files.rst          | 6 +++---
 24 files changed, 46 insertions(+), 46 deletions(-)

diff --git a/user_guide_src/source/incoming/controllers.rst b/user_guide_src/source/incoming/controllers.rst
index b1aa0e65a9a5..6c5984615fb6 100644
--- a/user_guide_src/source/incoming/controllers.rst
+++ b/user_guide_src/source/incoming/controllers.rst
@@ -185,7 +185,7 @@ Auto Routing (Improved)
 Since v4.2.0, the new more secure Auto Routing has been introduced.
 
 .. note:: If you are familiar with Auto Routing, which was enabled by default
-    from CodeIgniter 3 through 4.1.x, you can see the differences in
+    from CodeIgniter 3.x through 4.1.x, you can see the differences in
     :ref:`ChangeLog v4.2.0 <v420-new-improved-auto-routing>`.
 
 This section describes the functionality of the new auto-routing.
diff --git a/user_guide_src/source/incoming/routing.rst b/user_guide_src/source/incoming/routing.rst
index f05ac3298467..8557b8f7fa2c 100644
--- a/user_guide_src/source/incoming/routing.rst
+++ b/user_guide_src/source/incoming/routing.rst
@@ -705,7 +705,7 @@ Auto Routing (Improved)
 Since v4.2.0, the new more secure Auto Routing has been introduced.
 
 .. note:: If you are familiar with Auto Routing, which was enabled by default
-    from CodeIgniter 3 through 4.1.x, you can see the differences in
+    from CodeIgniter 3.x through 4.1.x, you can see the differences in
     :ref:`ChangeLog v4.2.0 <v420-new-improved-auto-routing>`.
 
 When no defined route is found that matches the URI, the system will attempt to match that URI against the controllers and methods when Auto Routing is enabled.
diff --git a/user_guide_src/source/installation/index.rst b/user_guide_src/source/installation/index.rst
index 8b71ea2833b0..0eab10b25b76 100644
--- a/user_guide_src/source/installation/index.rst
+++ b/user_guide_src/source/installation/index.rst
@@ -7,7 +7,7 @@ or using `Composer <https://getcomposer.org>`_.
 Which is right for you?
 
 - We recommend the Composer installation because it keeps CodeIgniter up to date easily.
-- If you would like the simple "download & go" install that CodeIgniter3
+- If you would like the simple "download & go" install that CodeIgniter 3
   is known for, choose the manual installation.
 
 However you choose to install and run CodeIgniter4, the latest
diff --git a/user_guide_src/source/installation/upgrade_4xx.rst b/user_guide_src/source/installation/upgrade_4xx.rst
index 97a7a567a79d..45205c4ec2d8 100644
--- a/user_guide_src/source/installation/upgrade_4xx.rst
+++ b/user_guide_src/source/installation/upgrade_4xx.rst
@@ -149,8 +149,8 @@ Helpers
 - `String Helper <https://www.codeigniter.com/userguide3/helpers/string_helper.html>`_ functions
   in CI3 are included in :doc:`../helpers/text_helper` in CI4.
 - In CI4, ``redirect()`` is completely changed from CI3's.
-    - `redirect() Documentation CodeIgniter 3.X <https://codeigniter.com/userguide3/helpers/url_helper.html#redirect>`_
-    - `redirect() Documentation CodeIgniter 4.X <../general/common_functions.html#redirect>`_
+    - `redirect() Documentation CodeIgniter 3.x <https://codeigniter.com/userguide3/helpers/url_helper.html#redirect>`_
+    - `redirect() Documentation CodeIgniter 4.x <../general/common_functions.html#redirect>`_
     - In CI4, :php:func:`redirect()` returns a ``RedirectResponse`` instance instead of
       redirecting and terminating script execution. You must return it from Controllers
       or Controller Filters.
diff --git a/user_guide_src/source/installation/upgrade_configuration.rst b/user_guide_src/source/installation/upgrade_configuration.rst
index 6150b9a01ff6..04aa67c17ba4 100644
--- a/user_guide_src/source/installation/upgrade_configuration.rst
+++ b/user_guide_src/source/installation/upgrade_configuration.rst
@@ -8,8 +8,8 @@ Upgrade Configuration
 Documentations
 ==============
 
-- `Config Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/config.html>`_
-- :doc:`Configuration Documentation CodeIgniter 4.X </general/configuration>`
+- `Config Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/config.html>`_
+- :doc:`Configuration Documentation CodeIgniter 4.x </general/configuration>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_controllers.rst b/user_guide_src/source/installation/upgrade_controllers.rst
index 1a2dc9a9b4ce..20e93d376aa4 100644
--- a/user_guide_src/source/installation/upgrade_controllers.rst
+++ b/user_guide_src/source/installation/upgrade_controllers.rst
@@ -8,8 +8,8 @@ Upgrade Controllers
 Documentations
 ==============
 
-- `Controller Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/general/controllers.html>`_
-- :doc:`Controller Documentation CodeIgniter 4.X </incoming/controllers>`
+- `Controller Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/general/controllers.html>`_
+- :doc:`Controller Documentation CodeIgniter 4.x </incoming/controllers>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_database.rst b/user_guide_src/source/installation/upgrade_database.rst
index 5dc22ddda820..b596ca01d775 100644
--- a/user_guide_src/source/installation/upgrade_database.rst
+++ b/user_guide_src/source/installation/upgrade_database.rst
@@ -8,8 +8,8 @@ Upgrade Database
 Documentations
 ==============
 
-- `Database Reference Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/database/index.html>`_
-- :doc:`Working with Databases Documentation CodeIgniter 4.X </database/index>`
+- `Database Reference Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/database/index.html>`_
+- :doc:`Working with Databases Documentation CodeIgniter 4.x </database/index>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_emails.rst b/user_guide_src/source/installation/upgrade_emails.rst
index 828cc83ce5f7..546debff6add 100644
--- a/user_guide_src/source/installation/upgrade_emails.rst
+++ b/user_guide_src/source/installation/upgrade_emails.rst
@@ -8,8 +8,8 @@ Upgrade Emails
 Documentations
 ==============
 
-- `Email Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/email.html>`_
-- :doc:`Email Documentation CodeIgniter 4.X </libraries/email>`
+- `Email Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/email.html>`_
+- :doc:`Email Documentation CodeIgniter 4.x </libraries/email>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_encryption.rst b/user_guide_src/source/installation/upgrade_encryption.rst
index 247c546582ea..26c137079a93 100644
--- a/user_guide_src/source/installation/upgrade_encryption.rst
+++ b/user_guide_src/source/installation/upgrade_encryption.rst
@@ -8,8 +8,8 @@ Upgrade Encryption
 Documentations
 **************
 
-- `Encryption Library Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/encryption.html>`_
-- :doc:`Encryption Service Documentation CodeIgniter 4.X </libraries/encryption>`
+- `Encryption Library Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/encryption.html>`_
+- :doc:`Encryption Service Documentation CodeIgniter 4.x </libraries/encryption>`
 
 What has been changed
 *********************
diff --git a/user_guide_src/source/installation/upgrade_file_upload.rst b/user_guide_src/source/installation/upgrade_file_upload.rst
index adb200b9f0f7..8b9c6bc78789 100644
--- a/user_guide_src/source/installation/upgrade_file_upload.rst
+++ b/user_guide_src/source/installation/upgrade_file_upload.rst
@@ -7,8 +7,8 @@ Upgrade Working with Uploaded Files
 
 Documentations
 ==============
-- `File Uploading Class Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/file_uploading.html>`_
-- :doc:`Working with Uploaded Files Documentation CodeIgniter 4.X </libraries/uploaded_files>`
+- `File Uploading Class Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/file_uploading.html>`_
+- :doc:`Working with Uploaded Files Documentation CodeIgniter 4.x </libraries/uploaded_files>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_html_tables.rst b/user_guide_src/source/installation/upgrade_html_tables.rst
index 09059e547abe..a8bd56fe5977 100644
--- a/user_guide_src/source/installation/upgrade_html_tables.rst
+++ b/user_guide_src/source/installation/upgrade_html_tables.rst
@@ -8,8 +8,8 @@ Upgrade HTML Tables
 Documentations
 ==============
 
-- `HTML Table Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/table.html>`_
-- :doc:`HTML Table Documentation CodeIgniter 4.X </outgoing/table>`
+- `HTML Table Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/table.html>`_
+- :doc:`HTML Table Documentation CodeIgniter 4.x </outgoing/table>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_images.rst b/user_guide_src/source/installation/upgrade_images.rst
index 1e69bb260553..c10d6398a596 100644
--- a/user_guide_src/source/installation/upgrade_images.rst
+++ b/user_guide_src/source/installation/upgrade_images.rst
@@ -8,8 +8,8 @@ Upgrade Image Manipulation Class
 Documentations
 ==============
 
-- `Image Manipulation Class Documentation CodeIgniter 3.X <https://www.codeigniter.com/userguide3/libraries/image_lib.html>`_
-- :doc:`Image Manipulation Class Documentation CodeIgniter 4.X <../libraries/images>`
+- `Image Manipulation Class Documentation CodeIgniter 3.x <https://www.codeigniter.com/userguide3/libraries/image_lib.html>`_
+- :doc:`Image Manipulation Class Documentation CodeIgniter 4.x <../libraries/images>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_localization.rst b/user_guide_src/source/installation/upgrade_localization.rst
index d962eb462fd4..589dd57ec669 100644
--- a/user_guide_src/source/installation/upgrade_localization.rst
+++ b/user_guide_src/source/installation/upgrade_localization.rst
@@ -8,8 +8,8 @@ Upgrade Localization
 Documentations
 ==============
 
-- `Language Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/language.html>`_
-- :doc:`Localization Documentation CodeIgniter 4.X </outgoing/localization>`
+- `Language Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/language.html>`_
+- :doc:`Localization Documentation CodeIgniter 4.x </outgoing/localization>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_migrations.rst b/user_guide_src/source/installation/upgrade_migrations.rst
index 67d826863968..0936c48ad400 100644
--- a/user_guide_src/source/installation/upgrade_migrations.rst
+++ b/user_guide_src/source/installation/upgrade_migrations.rst
@@ -8,8 +8,8 @@ Upgrade Migrations
 Documentations
 ==============
 
-- `Database Migrations Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/migration.html>`_
-- :doc:`Database Migrations Documentation CodeIgniter 4.X </dbmgmt/migration>`
+- `Database Migrations Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/migration.html>`_
+- :doc:`Database Migrations Documentation CodeIgniter 4.x </dbmgmt/migration>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_models.rst b/user_guide_src/source/installation/upgrade_models.rst
index bc5fbf08292f..a47cd8fc8ae3 100644
--- a/user_guide_src/source/installation/upgrade_models.rst
+++ b/user_guide_src/source/installation/upgrade_models.rst
@@ -8,8 +8,8 @@ Upgrade Models
 Documentations
 ==============
 
-- `Model Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/general/models.html>`_
-- :doc:`Model Documentation CodeIgniter 4.X </models/model>`
+- `Model Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/general/models.html>`_
+- :doc:`Model Documentation CodeIgniter 4.x </models/model>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_pagination.rst b/user_guide_src/source/installation/upgrade_pagination.rst
index 69e19d57164c..a53a60f52ca2 100644
--- a/user_guide_src/source/installation/upgrade_pagination.rst
+++ b/user_guide_src/source/installation/upgrade_pagination.rst
@@ -8,8 +8,8 @@ Upgrade Pagination
 Documentations
 ==============
 
-- `Pagination Class Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/pagination.html>`_
-- :doc:`Pagination Documentation CodeIgniter 4.X </libraries/pagination>`
+- `Pagination Class Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/pagination.html>`_
+- :doc:`Pagination Documentation CodeIgniter 4.x </libraries/pagination>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_responses.rst b/user_guide_src/source/installation/upgrade_responses.rst
index 2059647b230d..26ccfc658e3f 100644
--- a/user_guide_src/source/installation/upgrade_responses.rst
+++ b/user_guide_src/source/installation/upgrade_responses.rst
@@ -7,8 +7,8 @@ Upgrade HTTP Responses
 
 Documentations
 ==============
-- `Output Class Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/output.html>`_
-- :doc:`HTTP Responses Documentation CodeIgniter 4.X </outgoing/response>`
+- `Output Class Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/output.html>`_
+- :doc:`HTTP Responses Documentation CodeIgniter 4.x </outgoing/response>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_routing.rst b/user_guide_src/source/installation/upgrade_routing.rst
index 83bc5c5ee8a5..6dfe13e1e965 100644
--- a/user_guide_src/source/installation/upgrade_routing.rst
+++ b/user_guide_src/source/installation/upgrade_routing.rst
@@ -8,8 +8,8 @@ Upgrade Routing
 Documentations
 ==============
 
-- `URI Routing Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/general/routing.html>`_
-- :doc:`URI Routing Documentation CodeIgniter 4.X </incoming/routing>`
+- `URI Routing Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/general/routing.html>`_
+- :doc:`URI Routing Documentation CodeIgniter 4.x </incoming/routing>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_security.rst b/user_guide_src/source/installation/upgrade_security.rst
index 81bf5e290d56..c84fb071adb1 100644
--- a/user_guide_src/source/installation/upgrade_security.rst
+++ b/user_guide_src/source/installation/upgrade_security.rst
@@ -8,8 +8,8 @@ Upgrade Security
 Documentations
 ==============
 
-- `Security Class Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/security.html>`_
-- :doc:`Security Documentation CodeIgniter 4.X </libraries/security>`
+- `Security Class Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/security.html>`_
+- :doc:`Security Documentation CodeIgniter 4.x </libraries/security>`
 
 .. note::
     If you use the :doc:`../helpers/form_helper` and enable the CSRF filter globally, then :php:func:`form_open()` will automatically insert a hidden CSRF field in your forms. So you do not have to upgrade this by yourself.
diff --git a/user_guide_src/source/installation/upgrade_sessions.rst b/user_guide_src/source/installation/upgrade_sessions.rst
index ecc27360f310..d03b1c465267 100644
--- a/user_guide_src/source/installation/upgrade_sessions.rst
+++ b/user_guide_src/source/installation/upgrade_sessions.rst
@@ -8,8 +8,8 @@ Upgrade Sessions
 Documentations
 ==============
 
-- `Session Library Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/sessions.html>`_
-- :doc:`Session Library Documentation CodeIgniter 4.X </libraries/sessions>`
+- `Session Library Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/sessions.html>`_
+- :doc:`Session Library Documentation CodeIgniter 4.x </libraries/sessions>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_validations.rst b/user_guide_src/source/installation/upgrade_validations.rst
index 7f42cf8e1f70..116bc2e48d59 100644
--- a/user_guide_src/source/installation/upgrade_validations.rst
+++ b/user_guide_src/source/installation/upgrade_validations.rst
@@ -8,8 +8,8 @@ Upgrade Validations
 Documentations of Library
 =========================
 
-- `Form Validation Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/form_validation.html>`_
-- :doc:`Validation Documentation CodeIgniter 4.X </libraries/validation>`
+- `Form Validation Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/form_validation.html>`_
+- :doc:`Validation Documentation CodeIgniter 4.x </libraries/validation>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_view_parser.rst b/user_guide_src/source/installation/upgrade_view_parser.rst
index c58aeb8dd491..1464e7e4d5b0 100644
--- a/user_guide_src/source/installation/upgrade_view_parser.rst
+++ b/user_guide_src/source/installation/upgrade_view_parser.rst
@@ -8,8 +8,8 @@ Upgrade View Parser
 Documentations
 ==============
 
-- `Template Parser Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/libraries/parser.html>`_
-- :doc:`View Parser Documentation CodeIgniter 4.X </outgoing/view_parser>`
+- `Template Parser Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/libraries/parser.html>`_
+- :doc:`View Parser Documentation CodeIgniter 4.x </outgoing/view_parser>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/installation/upgrade_views.rst b/user_guide_src/source/installation/upgrade_views.rst
index 09ffa427d33c..9b2e4867a804 100644
--- a/user_guide_src/source/installation/upgrade_views.rst
+++ b/user_guide_src/source/installation/upgrade_views.rst
@@ -8,8 +8,8 @@ Upgrade Views
 Documentations
 ==============
 
-- `View Documentation CodeIgniter 3.X <http://codeigniter.com/userguide3/general/views.html>`_
-- :doc:`View Documentation CodeIgniter 4.X </outgoing/views>`
+- `View Documentation CodeIgniter 3.x <http://codeigniter.com/userguide3/general/views.html>`_
+- :doc:`View Documentation CodeIgniter 4.x </outgoing/views>`
 
 What has been changed
 =====================
diff --git a/user_guide_src/source/libraries/uploaded_files.rst b/user_guide_src/source/libraries/uploaded_files.rst
index 560706c2b73f..118af85e86ee 100644
--- a/user_guide_src/source/libraries/uploaded_files.rst
+++ b/user_guide_src/source/libraries/uploaded_files.rst
@@ -5,8 +5,8 @@ Working with Uploaded Files
 CodeIgniter makes working with files uploaded through a form much simpler and more secure than using PHP's ``$_FILES``
 array directly. This extends the :doc:`File class </libraries/files>` and thus gains all of the features of that class.
 
-.. note:: This is not the same as the File Uploading class in CodeIgniter v3.x. This provides a raw
-    interface to the uploaded files with a few small features.
+.. note:: This is not the same as the File Uploading class in CodeIgniter 3.
+    This provides a raw interface to the uploaded files with a few small features.
 
 .. contents::
     :local:
@@ -309,7 +309,7 @@ getClientPath()
 
 .. versionadded:: 4.4.0
 
-Returns the `webkit relative path <https://developer.mozilla.org/en-US/docs/Web/API/File/webkitRelativePath>`_ of the uploaded file when the client has uploaded files via directory upload.  
+Returns the `webkit relative path <https://developer.mozilla.org/en-US/docs/Web/API/File/webkitRelativePath>`_ of the uploaded file when the client has uploaded files via directory upload.
 In PHP versions below 8.1, this returns ``null``
 
 .. literalinclude:: uploaded_files/023.php

From 00a15fc7ffd48103ca3de69128004e83b0247200 Mon Sep 17 00:00:00 2001
From: kenjis <kenji.uui@gmail.com>
Date: Sun, 7 Apr 2024 08:29:56 +0900
Subject: [PATCH 65/65] Prep for 4.4.8 release

---
 CHANGELOG.md                                  | 17 +++++++++++
 phpdoc.dist.xml                               |  2 +-
 system/CodeIgniter.php                        |  2 +-
 user_guide_src/source/changelogs/v4.4.8.rst   | 14 +---------
 user_guide_src/source/conf.py                 |  2 +-
 .../source/installation/upgrade_448.rst       | 28 +++----------------
 6 files changed, 25 insertions(+), 40 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 36c47ff5e99a..f0147f72b57b 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,22 @@
 # Changelog
 
+## [v4.4.8](https://github.com/codeigniter4/CodeIgniter4/tree/v4.4.8) (2024-04-07)
+[Full Changelog](https://github.com/codeigniter4/CodeIgniter4/compare/v4.4.7...v4.4.8)
+
+### Fixed Bugs
+
+* fix: [ImageMagickHandler] early terminate processing of invalid library path by @paulbalandan in https://github.com/codeigniter4/CodeIgniter4/pull/8680
+* docs: fix PHPDoc types in BaseModel by @kenjis in https://github.com/codeigniter4/CodeIgniter4/pull/8679
+* fix: the error view is determined by Exception code by @kenjis in https://github.com/codeigniter4/CodeIgniter4/pull/8689
+* fix: `Pager::only([])` does not work by @kenjis in https://github.com/codeigniter4/CodeIgniter4/pull/8702
+* refactor: remove unneeded code in SQLite3\Table and fix PHPDoc types in Database by @kenjis in https://github.com/codeigniter4/CodeIgniter4/pull/8703
+* docs: fix return type in BaseResult by @Pebryan354 in https://github.com/codeigniter4/CodeIgniter4/pull/8709
+
+### Refactoring
+
+* refactor: simplify ImageMagickHandler::getVersion() by @paulbalandan in https://github.com/codeigniter4/CodeIgniter4/pull/8681
+* refactor: [Rector] Apply ExplicitBoolCompareRector by @samsonasik in https://github.com/codeigniter4/CodeIgniter4/pull/8704
+
 ## [v4.4.7](https://github.com/codeigniter4/CodeIgniter4/tree/v4.4.7) (2024-03-29)
 [Full Changelog](https://github.com/codeigniter4/CodeIgniter4/compare/v4.4.6...v4.4.7)
 
diff --git a/phpdoc.dist.xml b/phpdoc.dist.xml
index ad7f3f7d8066..616f6aeae98d 100644
--- a/phpdoc.dist.xml
+++ b/phpdoc.dist.xml
@@ -10,7 +10,7 @@
         <output>api/build/</output>
         <cache>api/cache/</cache>
     </paths>
-    <version number="4.4.7">
+    <version number="4.4.8">
         <api format="php">
             <source dsn=".">
                 <path>system</path>
diff --git a/system/CodeIgniter.php b/system/CodeIgniter.php
index 760a71f29259..6a2dca68c1e5 100644
--- a/system/CodeIgniter.php
+++ b/system/CodeIgniter.php
@@ -54,7 +54,7 @@ class CodeIgniter
     /**
      * The current version of CodeIgniter Framework
      */
-    public const CI_VERSION = '4.4.7';
+    public const CI_VERSION = '4.4.8';
 
     /**
      * App startup time.
diff --git a/user_guide_src/source/changelogs/v4.4.8.rst b/user_guide_src/source/changelogs/v4.4.8.rst
index 4ff846be528a..723f129175ec 100644
--- a/user_guide_src/source/changelogs/v4.4.8.rst
+++ b/user_guide_src/source/changelogs/v4.4.8.rst
@@ -2,7 +2,7 @@
 Version 4.4.8
 #############
 
-Release Date: Unreleased
+Release Date: April 7, 2024
 
 **4.4.8 release of CodeIgniter4**
 
@@ -19,18 +19,6 @@ BREAKING
   The third parameter ``int $statusCode = 500`` has been added to
   ``CodeIgniter\Debug\ExceptionHandler::determineView()`` for this purpose.
 
-***************
-Message Changes
-***************
-
-*******
-Changes
-*******
-
-************
-Deprecations
-************
-
 **********
 Bugs Fixed
 **********
diff --git a/user_guide_src/source/conf.py b/user_guide_src/source/conf.py
index d5735e310a47..bf80b5abef81 100644
--- a/user_guide_src/source/conf.py
+++ b/user_guide_src/source/conf.py
@@ -26,7 +26,7 @@
 version = '4.4'
 
 # The full version, including alpha/beta/rc tags.
-release = '4.4.7'
+release = '4.4.8'
 
 # -- General configuration ---------------------------------------------------
 
diff --git a/user_guide_src/source/installation/upgrade_448.rst b/user_guide_src/source/installation/upgrade_448.rst
index 580a1ba8edab..5dd3da148a03 100644
--- a/user_guide_src/source/installation/upgrade_448.rst
+++ b/user_guide_src/source/installation/upgrade_448.rst
@@ -12,18 +12,6 @@ Please refer to the upgrade instructions corresponding to your installation meth
     :local:
     :depth: 2
 
-**********************
-Mandatory File Changes
-**********************
-
-****************
-Breaking Changes
-****************
-
-*********************
-Breaking Enhancements
-*********************
-
 *************
 Project Files
 *************
@@ -34,21 +22,13 @@ these files being outside of the **system** scope they will not be changed witho
 There are some third-party CodeIgniter modules available to assist with merging changes to
 the project space: `Explore on Packagist <https://packagist.org/explore/?query=codeigniter4%20updates>`_.
 
-Content Changes
-===============
-
-The following files received significant changes (including deprecations or visual adjustments)
-and it is recommended that you merge the updated versions with your application:
-
-Config
-------
-
-- @TODO
-
 All Changes
 ===========
 
 This is a list of all files in the **project space** that received changes;
 many will be simple comments or formatting that have no effect on the runtime:
 
-- @TODO
+- app/.htaccess
+- composer.json
+- public/.htaccess
+- tests/.htaccess