From 7039444ff5c8bde387d75af599e575dbdf68bf46 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Tue, 12 Nov 2024 15:45:27 +0100
Subject: [PATCH 001/107] begin to add ref_id to some data

---
 backend/core/migrations/0001_initial.py                  | 9 +++++++++
 backend/core/models.py                                   | 3 +++
 backend/core/views.py                                    | 2 +-
 .../lib/components/Forms/ModelForm/ProjectForm.svelte    | 8 ++++++++
 frontend/src/lib/utils/schemas.ts                        | 1 +
 frontend/src/lib/utils/types.ts                          | 1 +
 6 files changed, 23 insertions(+), 1 deletion(-)

diff --git a/backend/core/migrations/0001_initial.py b/backend/core/migrations/0001_initial.py
index d696bb4df..f807a0ac1 100644
--- a/backend/core/migrations/0001_initial.py
+++ b/backend/core/migrations/0001_initial.py
@@ -405,6 +405,15 @@ class Migration(migrations.Migration):
                         verbose_name="Internal reference",
                     ),
                 ),
+                (
+                    "ref_id",
+                    models.CharField(
+                        blank=True,
+                        max_length=100,
+                        null=True,
+                        verbose_name="reference id",
+                    ),
+                ),
                 (
                     "lc_status",
                     models.CharField(
diff --git a/backend/core/models.py b/backend/core/models.py
index 860c44a77..69cbad7dd 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1146,6 +1146,9 @@ class Project(NameDescriptionMixin, FolderMixin):
     internal_reference = models.CharField(
         max_length=100, null=True, blank=True, verbose_name=_("Internal reference")
     )
+    ref_id = models.CharField(
+        max_length=100, null=True, blank=True, verbose_name=_("reference id")
+    )
     lc_status = models.CharField(
         max_length=20,
         default="in_design",
diff --git a/backend/core/views.py b/backend/core/views.py
index 74553cfe7..119c1bd0c 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -181,7 +181,7 @@ class ProjectViewSet(BaseModelViewSet):
 
     model = Project
     filterset_fields = ["folder", "lc_status"]
-    search_fields = ["name", "internal_reference", "description"]
+    search_fields = ["name", "ref_id", "internal_reference", "description"]
 
     @action(detail=False, name="Get status choices")
     def lc_status(self, request):
diff --git a/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte b/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
index e4d9c86bf..fa5b7c4c9 100644
--- a/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
@@ -14,6 +14,14 @@
 	export let initialData: Record<string, any> = {};
 </script>
 
+<TextField
+	{form}
+	field="ref_id"
+	label={'reference id'}
+	cacheLock={cacheLocks['ref_id']}
+	bind:cachedValue={formDataCache['ref_id']}
+/>
+
 <AutocompleteSelect
 	{form}
 	options={getOptions({ objects: model.foreignKeys['folder'] })}
diff --git a/frontend/src/lib/utils/schemas.ts b/frontend/src/lib/utils/schemas.ts
index aac616d61..4bf57517c 100644
--- a/frontend/src/lib/utils/schemas.ts
+++ b/frontend/src/lib/utils/schemas.ts
@@ -70,6 +70,7 @@ export const FolderSchema = baseNamedObject({
 export const ProjectSchema = baseNamedObject({
 	folder: z.string(),
 	internal_reference: z.string().optional().nullable(),
+	ref_id: z.string().optional().nullable(),
 	lc_status: z.string().optional().default('in_design')
 });
 
diff --git a/frontend/src/lib/utils/types.ts b/frontend/src/lib/utils/types.ts
index d871c48ce..fe9ba3cd8 100644
--- a/frontend/src/lib/utils/types.ts
+++ b/frontend/src/lib/utils/types.ts
@@ -99,6 +99,7 @@ export interface Project {
 	name: string;
 	description?: string;
 	internal_reference?: string;
+	ref_id?: string;
 	compliance_assessments: Record<string, any>[];
 }
 

From 11d6649921529536e77e57ed922ba2a97181a4c4 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Wed, 13 Nov 2024 11:04:07 +0100
Subject: [PATCH 002/107] working ref_id on project

---
 backend/core/migrations/0001_initial.py        |  9 ---------
 backend/core/migrations/0035_project_ref_id.py | 18 ++++++++++++++++++
 2 files changed, 18 insertions(+), 9 deletions(-)
 create mode 100644 backend/core/migrations/0035_project_ref_id.py

diff --git a/backend/core/migrations/0001_initial.py b/backend/core/migrations/0001_initial.py
index f807a0ac1..d696bb4df 100644
--- a/backend/core/migrations/0001_initial.py
+++ b/backend/core/migrations/0001_initial.py
@@ -405,15 +405,6 @@ class Migration(migrations.Migration):
                         verbose_name="Internal reference",
                     ),
                 ),
-                (
-                    "ref_id",
-                    models.CharField(
-                        blank=True,
-                        max_length=100,
-                        null=True,
-                        verbose_name="reference id",
-                    ),
-                ),
                 (
                     "lc_status",
                     models.CharField(
diff --git a/backend/core/migrations/0035_project_ref_id.py b/backend/core/migrations/0035_project_ref_id.py
new file mode 100644
index 000000000..1f62b9793
--- /dev/null
+++ b/backend/core/migrations/0035_project_ref_id.py
@@ -0,0 +1,18 @@
+# Generated by Django 5.1.1 on 2024-11-13 09:57
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('core', '0034_fix_loaded_libraries_objects_meta'),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name='project',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+    ]

From 776fe91670c14a89cff4307f862ec9adf75b1552 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Wed, 13 Nov 2024 12:13:21 +0100
Subject: [PATCH 003/107] added ref_id to assessments and applied_control

---
 .../core/migrations/0035_project_ref_id.py    | 11 ++++++-----
 .../migrations/0036_riskassessment_ref_id.py  | 19 +++++++++++++++++++
 .../migrations/0037_appliedcontrol_ref_id.py  | 19 +++++++++++++++++++
 .../0038_complianceassessment_ref_id.py       | 19 +++++++++++++++++++
 backend/core/models.py                        |  9 +++++++++
 backend/core/views.py                         |  3 ++-
 .../ModelForm/AppliedControlPolicyForm.svelte |  7 +++++++
 .../ModelForm/ComplianceAssessmentForm.svelte |  8 ++++++++
 .../Forms/ModelForm/FolderForm.svelte         | 18 ++++++++++++++++--
 .../Forms/ModelForm/ProjectForm.svelte        |  2 +-
 .../Forms/ModelForm/RiskAssessmentForm.svelte |  8 ++++++++
 frontend/src/lib/utils/schemas.ts             |  4 ++++
 frontend/src/lib/utils/table.ts               | 18 ++++++++++--------
 13 files changed, 128 insertions(+), 17 deletions(-)
 create mode 100644 backend/core/migrations/0036_riskassessment_ref_id.py
 create mode 100644 backend/core/migrations/0037_appliedcontrol_ref_id.py
 create mode 100644 backend/core/migrations/0038_complianceassessment_ref_id.py

diff --git a/backend/core/migrations/0035_project_ref_id.py b/backend/core/migrations/0035_project_ref_id.py
index 1f62b9793..4ea2c4b91 100644
--- a/backend/core/migrations/0035_project_ref_id.py
+++ b/backend/core/migrations/0035_project_ref_id.py
@@ -4,15 +4,16 @@
 
 
 class Migration(migrations.Migration):
-
     dependencies = [
-        ('core', '0034_fix_loaded_libraries_objects_meta'),
+        ("core", "0034_fix_loaded_libraries_objects_meta"),
     ]
 
     operations = [
         migrations.AddField(
-            model_name='project',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="project",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
     ]
diff --git a/backend/core/migrations/0036_riskassessment_ref_id.py b/backend/core/migrations/0036_riskassessment_ref_id.py
new file mode 100644
index 000000000..afdaced38
--- /dev/null
+++ b/backend/core/migrations/0036_riskassessment_ref_id.py
@@ -0,0 +1,19 @@
+# Generated by Django 5.1.1 on 2024-11-13 10:52
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("core", "0035_project_ref_id"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="riskassessment",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
+        ),
+    ]
diff --git a/backend/core/migrations/0037_appliedcontrol_ref_id.py b/backend/core/migrations/0037_appliedcontrol_ref_id.py
new file mode 100644
index 000000000..780a9aa1b
--- /dev/null
+++ b/backend/core/migrations/0037_appliedcontrol_ref_id.py
@@ -0,0 +1,19 @@
+# Generated by Django 5.1.1 on 2024-11-13 10:57
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("core", "0036_riskassessment_ref_id"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="appliedcontrol",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
+        ),
+    ]
diff --git a/backend/core/migrations/0038_complianceassessment_ref_id.py b/backend/core/migrations/0038_complianceassessment_ref_id.py
new file mode 100644
index 000000000..56911359a
--- /dev/null
+++ b/backend/core/migrations/0038_complianceassessment_ref_id.py
@@ -0,0 +1,19 @@
+# Generated by Django 5.1.1 on 2024-11-13 11:04
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("core", "0037_appliedcontrol_ref_id"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="complianceassessment",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
+        ),
+    ]
diff --git a/backend/core/models.py b/backend/core/models.py
index 69cbad7dd..0b7f31d93 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1299,6 +1299,9 @@ class Status(models.TextChoices):
         ("L", _("Large")),
         ("XL", _("Extra Large")),
     ]
+    ref_id = models.CharField(
+        max_length=100, null=True, blank=True, verbose_name=_("reference id")
+    )
 
     MAP_EFFORT = {None: -1, "S": 1, "M": 2, "L": 4, "XL": 8}
     # todo: think about a smarter model for ranking
@@ -1571,6 +1574,9 @@ class RiskAssessment(Assessment):
         help_text=_("WARNING! After choosing it, you will not be able to change it"),
         verbose_name=_("Risk matrix"),
     )
+    ref_id = models.CharField(
+        max_length=100, null=True, blank=True, verbose_name=_("reference id")
+    )
 
     class Meta:
         verbose_name = _("Risk assessment")
@@ -2156,6 +2162,9 @@ class ComplianceAssessment(Assessment):
     selected_implementation_groups = models.JSONField(
         blank=True, null=True, verbose_name=_("Selected implementation groups")
     )
+    ref_id = models.CharField(
+        max_length=100, null=True, blank=True, verbose_name=_("reference id")
+    )
     # score system is suggested by the framework, but can be changed at the start of the assessment
     min_score = models.IntegerField(null=True, verbose_name=_("Minimum score"))
     max_score = models.IntegerField(null=True, verbose_name=_("Maximum score"))
diff --git a/backend/core/views.py b/backend/core/views.py
index 119c1bd0c..70e94e8f7 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -1351,6 +1351,7 @@ class FolderViewSet(BaseModelViewSet):
 
     model = Folder
     filterset_class = FolderFilter
+    search_fields = ["ref_id"]
 
     def perform_create(self, serializer):
         """
@@ -1781,7 +1782,7 @@ class ComplianceAssessmentViewSet(BaseModelViewSet):
 
     model = ComplianceAssessment
     filterset_fields = ["framework", "project", "status"]
-    search_fields = ["name", "description"]
+    search_fields = ["name", "description", "ref_id"]
     ordering_fields = ["name", "description"]
 
     @method_decorator(cache_page(60 * LONG_CACHE_TTL))
diff --git a/frontend/src/lib/components/Forms/ModelForm/AppliedControlPolicyForm.svelte b/frontend/src/lib/components/Forms/ModelForm/AppliedControlPolicyForm.svelte
index 1dbe9fd05..a9c816aaf 100644
--- a/frontend/src/lib/components/Forms/ModelForm/AppliedControlPolicyForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/AppliedControlPolicyForm.svelte
@@ -16,6 +16,13 @@
 	export let initialData: Record<string, any> = {};
 </script>
 
+<TextField
+	{form}
+	field="ref_id"
+	label={'reference id'}
+	cacheLock={cacheLocks['ref_id']}
+	bind:cachedValue={formDataCache['ref_id']}
+/>
 {#if schema.shape.category}
 	<Select
 		{form}
diff --git a/frontend/src/lib/components/Forms/ModelForm/ComplianceAssessmentForm.svelte b/frontend/src/lib/components/Forms/ModelForm/ComplianceAssessmentForm.svelte
index bbfe2a9f3..c53338fa0 100644
--- a/frontend/src/lib/components/Forms/ModelForm/ComplianceAssessmentForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/ComplianceAssessmentForm.svelte
@@ -20,6 +20,14 @@
 	let suggestions = false;
 </script>
 
+<TextField
+	{form}
+	field="ref_id"
+	label={m.refId()}
+	cacheLock={cacheLocks['ref_id']}
+	bind:cachedValue={formDataCache['ref_id']}
+/>
+
 {#if context === 'fromBaseline' && initialData.baseline}
 	<AutocompleteSelect
 		{form}
diff --git a/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte b/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
index 493605a89..3b0435705 100644
--- a/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
@@ -1,4 +1,18 @@
 <script lang="ts">
-	// NOTE: The community version of FolderForm does nothing special at the moment.
-	// It was created to simplify operations.
+	import TextField from '$lib/components/Forms/TextField.svelte';
+	import type { SuperValidated } from 'sveltekit-superforms';
+	import type { CacheLock } from '$lib/utils/types';
+
+	export let form: SuperValidated<any>;
+	export let cacheLocks: Record<string, CacheLock> = {};
+	export let formDataCache: Record<string, any> = {};
+	import * as m from '$paraglide/messages.js';
 </script>
+
+<TextField
+	{form}
+	field="ref_id"
+	label={'reference id'}
+	cacheLock={cacheLocks['ref_id']}
+	bind:cachedValue={formDataCache['ref_id']}
+/>
diff --git a/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte b/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
index fa5b7c4c9..ed47b5567 100644
--- a/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
@@ -17,7 +17,7 @@
 <TextField
 	{form}
 	field="ref_id"
-	label={'reference id'}
+	label={m.refId()}
 	cacheLock={cacheLocks['ref_id']}
 	bind:cachedValue={formDataCache['ref_id']}
 />
diff --git a/frontend/src/lib/components/Forms/ModelForm/RiskAssessmentForm.svelte b/frontend/src/lib/components/Forms/ModelForm/RiskAssessmentForm.svelte
index c82cd01e4..3900ad833 100644
--- a/frontend/src/lib/components/Forms/ModelForm/RiskAssessmentForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/RiskAssessmentForm.svelte
@@ -19,6 +19,14 @@
 	// export let updated_fields: Set<string> = new Set();
 </script>
 
+<TextField
+	{form}
+	field="ref_id"
+	label={'reference id'}
+	cacheLock={cacheLocks['ref_id']}
+	bind:cachedValue={formDataCache['ref_id']}
+/>
+
 <AutocompleteSelect
 	{form}
 	options={getOptions({
diff --git a/frontend/src/lib/utils/schemas.ts b/frontend/src/lib/utils/schemas.ts
index 4bf57517c..0b48d1b5a 100644
--- a/frontend/src/lib/utils/schemas.ts
+++ b/frontend/src/lib/utils/schemas.ts
@@ -64,6 +64,7 @@ const baseNamedObject = (additionalFields: any) =>
 	});
 
 export const FolderSchema = baseNamedObject({
+	ref_id: z.string().optional().nullable(),
 	parent_folder: z.string().optional()
 });
 
@@ -88,6 +89,7 @@ export const RiskAssessmentSchema = baseNamedObject({
 	version: z.string().optional().default('0.1'),
 	project: z.string(),
 	status: z.string().optional().nullable(),
+	ref_id: z.string().optional().nullable(),
 	risk_matrix: z.string(),
 	eta: z.string().optional().nullable(),
 	due_date: z.string().optional().nullable(),
@@ -122,6 +124,7 @@ export const RiskScenarioSchema = baseNamedObject({
 });
 
 export const AppliedControlSchema = baseNamedObject({
+	ref_id: z.string().optional().nullable(),
 	category: z.string().optional().nullable(),
 	csf_function: z.string().optional().nullable(),
 	status: z.string().optional().default('--'),
@@ -220,6 +223,7 @@ export const SetPasswordSchema = z.object({
 
 export const ComplianceAssessmentSchema = baseNamedObject({
 	version: z.string().optional().default('0.1'),
+	ref_id: z.string().optional().nullable(),
 	project: z.string(),
 	status: z.string().optional().nullable(),
 	selected_implementation_groups: z.array(z.string().optional()).optional(),
diff --git a/frontend/src/lib/utils/table.ts b/frontend/src/lib/utils/table.ts
index 5476decf1..41674fb54 100644
--- a/frontend/src/lib/utils/table.ts
+++ b/frontend/src/lib/utils/table.ts
@@ -262,12 +262,12 @@ const LIBRARY_TYPE_FILTER = {
 
 export const listViewFields: ListViewFieldsConfig = {
 	folders: {
-		head: ['name', 'description', 'parentDomain'],
-		body: ['name', 'description', 'parent_folder']
+		head: ['ref_id', 'name', 'description', 'parentDomain'],
+		body: ['ref_id', 'name', 'description', 'parent_folder']
 	},
 	projects: {
-		head: ['name', 'description', 'domain'],
-		body: ['name', 'description', 'folder'],
+		head: ['ref_id', 'name', 'description', 'domain'],
+		body: ['ref_id', 'name', 'description', 'folder'],
 		filters: {
 			folder: DOMAIN_FILTER,
 			lc_status: PROJECT_STATUS_FILTER
@@ -294,8 +294,8 @@ export const listViewFields: ListViewFieldsConfig = {
 		}
 	},
 	'risk-assessments': {
-		head: ['name', 'riskMatrix', 'description', 'riskScenarios', 'project'],
-		body: ['str', 'risk_matrix', 'description', 'risk_scenarios_count', 'project'],
+		head: ['ref_id', 'name', 'riskMatrix', 'description', 'riskScenarios', 'project'],
+		body: ['ref_id', 'str', 'risk_matrix', 'description', 'risk_scenarios_count', 'project'],
 		filters: {
 			folder: { ...DOMAIN_FILTER_FROM_META_PROJECT, alwaysDisplay: true },
 			project: PROJECT_FILTER,
@@ -341,6 +341,7 @@ export const listViewFields: ListViewFieldsConfig = {
 	},
 	'applied-controls': {
 		head: [
+			'ref_id',
 			'name',
 			'description',
 			'category',
@@ -351,6 +352,7 @@ export const listViewFields: ListViewFieldsConfig = {
 			'referenceControl'
 		],
 		body: [
+			'ref_id',
 			'name',
 			'description',
 			'category',
@@ -421,8 +423,8 @@ export const listViewFields: ListViewFieldsConfig = {
 		}
 	},
 	'compliance-assessments': {
-		head: ['name', 'framework', 'description', 'project'],
-		body: ['name', 'framework', 'description', 'project'],
+		head: ['ref_id', 'name', 'framework', 'description', 'project'],
+		body: ['ref_id', 'name', 'framework', 'description', 'project'],
 		filters: {
 			folder: { ...DOMAIN_FILTER_FROM_META_PROJECT, alwaysDisplay: true }, // alwaysDisplay shoudln't be mandatory here something is wrong
 			project: PROJECT_FILTER,

From afa366b5cca100571ccaf8a16df10791f99bbaab Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Wed, 13 Nov 2024 12:17:45 +0100
Subject: [PATCH 004/107] added domain ref id

---
 backend/iam/migrations/0010_folder_ref_id.py  | 19 +++++++++++++++++++
 backend/iam/models.py                         |  4 ++++
 .../Forms/ModelForm/FolderForm.svelte         |  2 +-
 3 files changed, 24 insertions(+), 1 deletion(-)
 create mode 100644 backend/iam/migrations/0010_folder_ref_id.py

diff --git a/backend/iam/migrations/0010_folder_ref_id.py b/backend/iam/migrations/0010_folder_ref_id.py
new file mode 100644
index 000000000..5d2fa97bd
--- /dev/null
+++ b/backend/iam/migrations/0010_folder_ref_id.py
@@ -0,0 +1,19 @@
+# Generated by Django 5.1.1 on 2024-11-13 11:17
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("iam", "0009_create_allauth_emailaddress_objects"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="folder",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
+        ),
+    ]
diff --git a/backend/iam/models.py b/backend/iam/models.py
index 61f4c2404..63e780e18 100644
--- a/backend/iam/models.py
+++ b/backend/iam/models.py
@@ -57,6 +57,10 @@ class Folder(NameDescriptionMixin):
     Folders are the base perimeter for role assignments
     """
 
+    ref_id = models.CharField(
+        max_length=100, null=True, blank=True, verbose_name=_("reference id")
+    )
+
     @staticmethod
     def get_root_folder() -> Self:
         """class function for general use"""
diff --git a/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte b/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
index 3b0435705..c63889381 100644
--- a/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
@@ -12,7 +12,7 @@
 <TextField
 	{form}
 	field="ref_id"
-	label={'reference id'}
+	label={m.refId()}
 	cacheLock={cacheLocks['ref_id']}
 	bind:cachedValue={formDataCache['ref_id']}
 />

From e31955654bc73723ae3c5033f8a8e8db897a0d93 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Wed, 13 Nov 2024 12:20:58 +0100
Subject: [PATCH 005/107] corrected tradution with paraglide

---
 .../lib/components/Forms/ModelForm/FolderForm.svelte   | 10 ++++++++++
 .../Forms/ModelForm/AppliedControlPolicyForm.svelte    |  2 +-
 .../Forms/ModelForm/RiskAssessmentForm.svelte          |  2 +-
 3 files changed, 12 insertions(+), 2 deletions(-)

diff --git a/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte b/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
index f9123d39a..3ec44f003 100644
--- a/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
+++ b/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
@@ -1,5 +1,6 @@
 <script lang="ts">
 	import { getOptions } from '$lib/utils/crud';
+	import TextField from '$lib/components/Forms/TextField.svelte';
 	import type { CacheLock, ModelInfo } from '$lib/utils/types';
 	import * as m from '$paraglide/messages.js';
 	import type { SuperValidated } from 'sveltekit-superforms';
@@ -12,6 +13,15 @@
 	export let initialData: Record<string, any> = {};
 </script>
 
+
+<TextField
+	{form}
+	field="ref_id"
+	label={m.refId()}
+	cacheLock={cacheLocks['ref_id']}
+	bind:cachedValue={formDataCache['ref_id']}
+/>
+
 <AutocompleteSelect
 	{form}
 	options={getOptions({ objects: model.foreignKeys['parent_folder'] })}
diff --git a/frontend/src/lib/components/Forms/ModelForm/AppliedControlPolicyForm.svelte b/frontend/src/lib/components/Forms/ModelForm/AppliedControlPolicyForm.svelte
index a9c816aaf..407c5e805 100644
--- a/frontend/src/lib/components/Forms/ModelForm/AppliedControlPolicyForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/AppliedControlPolicyForm.svelte
@@ -19,7 +19,7 @@
 <TextField
 	{form}
 	field="ref_id"
-	label={'reference id'}
+	label={m.refId()}
 	cacheLock={cacheLocks['ref_id']}
 	bind:cachedValue={formDataCache['ref_id']}
 />
diff --git a/frontend/src/lib/components/Forms/ModelForm/RiskAssessmentForm.svelte b/frontend/src/lib/components/Forms/ModelForm/RiskAssessmentForm.svelte
index 3900ad833..4497ed6d0 100644
--- a/frontend/src/lib/components/Forms/ModelForm/RiskAssessmentForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/RiskAssessmentForm.svelte
@@ -22,7 +22,7 @@
 <TextField
 	{form}
 	field="ref_id"
-	label={'reference id'}
+	label={m.refId()}
 	cacheLock={cacheLocks['ref_id']}
 	bind:cachedValue={formDataCache['ref_id']}
 />

From 83121ca8d6b83290d1e28425d88d31efd69bf233 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Wed, 13 Nov 2024 14:20:00 +0100
Subject: [PATCH 006/107] corrected migration

---
 ..._id_alter_loadedlibrary_ref_id_and_more.py | 53 +++++++++++++++++++
 ..._id_alter_loadedlibrary_ref_id_and_more.py | 53 +++++++++++++++++++
 .../migrations/0011_remove_folder_ref_id.py   | 17 ++++++
 backend/iam/migrations/0012_folder_ref_id.py  | 18 +++++++
 4 files changed, 141 insertions(+)
 create mode 100644 backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
 create mode 100644 backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
 create mode 100644 backend/iam/migrations/0011_remove_folder_ref_id.py
 create mode 100644 backend/iam/migrations/0012_folder_ref_id.py

diff --git a/backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py b/backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
new file mode 100644
index 000000000..0e3e160bd
--- /dev/null
+++ b/backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
@@ -0,0 +1,53 @@
+# Generated by Django 5.1.1 on 2024-11-13 13:16
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('core', '0038_complianceassessment_ref_id'),
+    ]
+
+    operations = [
+        migrations.AlterField(
+            model_name='framework',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+        migrations.AlterField(
+            model_name='loadedlibrary',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+        migrations.AlterField(
+            model_name='referencecontrol',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+        migrations.AlterField(
+            model_name='requirementmappingset',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+        migrations.AlterField(
+            model_name='requirementnode',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+        migrations.AlterField(
+            model_name='riskmatrix',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+        migrations.AlterField(
+            model_name='storedlibrary',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+        migrations.AlterField(
+            model_name='threat',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+    ]
diff --git a/backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py b/backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
new file mode 100644
index 000000000..871e5d06c
--- /dev/null
+++ b/backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
@@ -0,0 +1,53 @@
+# Generated by Django 5.1.1 on 2024-11-13 13:19
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('core', '0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more'),
+    ]
+
+    operations = [
+        migrations.AlterField(
+            model_name='framework',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+        ),
+        migrations.AlterField(
+            model_name='loadedlibrary',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+        ),
+        migrations.AlterField(
+            model_name='referencecontrol',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+        ),
+        migrations.AlterField(
+            model_name='requirementmappingset',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+        ),
+        migrations.AlterField(
+            model_name='requirementnode',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+        ),
+        migrations.AlterField(
+            model_name='riskmatrix',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+        ),
+        migrations.AlterField(
+            model_name='storedlibrary',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+        ),
+        migrations.AlterField(
+            model_name='threat',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+        ),
+    ]
diff --git a/backend/iam/migrations/0011_remove_folder_ref_id.py b/backend/iam/migrations/0011_remove_folder_ref_id.py
new file mode 100644
index 000000000..8aec3f765
--- /dev/null
+++ b/backend/iam/migrations/0011_remove_folder_ref_id.py
@@ -0,0 +1,17 @@
+# Generated by Django 5.1.1 on 2024-11-13 13:16
+
+from django.db import migrations
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('iam', '0010_folder_ref_id'),
+    ]
+
+    operations = [
+        migrations.RemoveField(
+            model_name='folder',
+            name='ref_id',
+        ),
+    ]
diff --git a/backend/iam/migrations/0012_folder_ref_id.py b/backend/iam/migrations/0012_folder_ref_id.py
new file mode 100644
index 000000000..895f9356d
--- /dev/null
+++ b/backend/iam/migrations/0012_folder_ref_id.py
@@ -0,0 +1,18 @@
+# Generated by Django 5.1.1 on 2024-11-13 13:19
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('iam', '0011_remove_folder_ref_id'),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name='folder',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+    ]

From 51916dc71f907ac3b384acde567a1b4001c71796 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Wed, 13 Nov 2024 14:22:21 +0100
Subject: [PATCH 007/107] ruff format

---
 ..._id_alter_loadedlibrary_ref_id_and_more.py | 67 ++++++++++++-------
 ..._id_alter_loadedlibrary_ref_id_and_more.py | 67 ++++++++++++-------
 .../migrations/0011_remove_folder_ref_id.py   |  7 +-
 backend/iam/migrations/0012_folder_ref_id.py  | 11 +--
 4 files changed, 91 insertions(+), 61 deletions(-)

diff --git a/backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py b/backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
index 0e3e160bd..236cb9179 100644
--- a/backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
+++ b/backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
@@ -4,50 +4,65 @@
 
 
 class Migration(migrations.Migration):
-
     dependencies = [
-        ('core', '0038_complianceassessment_ref_id'),
+        ("core", "0038_complianceassessment_ref_id"),
     ]
 
     operations = [
         migrations.AlterField(
-            model_name='framework',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="framework",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
         migrations.AlterField(
-            model_name='loadedlibrary',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="loadedlibrary",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
         migrations.AlterField(
-            model_name='referencecontrol',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="referencecontrol",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
         migrations.AlterField(
-            model_name='requirementmappingset',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="requirementmappingset",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
         migrations.AlterField(
-            model_name='requirementnode',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="requirementnode",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
         migrations.AlterField(
-            model_name='riskmatrix',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="riskmatrix",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
         migrations.AlterField(
-            model_name='storedlibrary',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="storedlibrary",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
         migrations.AlterField(
-            model_name='threat',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="threat",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
     ]
diff --git a/backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py b/backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
index 871e5d06c..395808381 100644
--- a/backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
+++ b/backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
@@ -4,50 +4,65 @@
 
 
 class Migration(migrations.Migration):
-
     dependencies = [
-        ('core', '0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more'),
+        ("core", "0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more"),
     ]
 
     operations = [
         migrations.AlterField(
-            model_name='framework',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+            model_name="framework",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="Reference ID"
+            ),
         ),
         migrations.AlterField(
-            model_name='loadedlibrary',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+            model_name="loadedlibrary",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="Reference ID"
+            ),
         ),
         migrations.AlterField(
-            model_name='referencecontrol',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+            model_name="referencecontrol",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="Reference ID"
+            ),
         ),
         migrations.AlterField(
-            model_name='requirementmappingset',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+            model_name="requirementmappingset",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="Reference ID"
+            ),
         ),
         migrations.AlterField(
-            model_name='requirementnode',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+            model_name="requirementnode",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="Reference ID"
+            ),
         ),
         migrations.AlterField(
-            model_name='riskmatrix',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+            model_name="riskmatrix",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="Reference ID"
+            ),
         ),
         migrations.AlterField(
-            model_name='storedlibrary',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+            model_name="storedlibrary",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="Reference ID"
+            ),
         ),
         migrations.AlterField(
-            model_name='threat',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='Reference ID'),
+            model_name="threat",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="Reference ID"
+            ),
         ),
     ]
diff --git a/backend/iam/migrations/0011_remove_folder_ref_id.py b/backend/iam/migrations/0011_remove_folder_ref_id.py
index 8aec3f765..de1d0ec3c 100644
--- a/backend/iam/migrations/0011_remove_folder_ref_id.py
+++ b/backend/iam/migrations/0011_remove_folder_ref_id.py
@@ -4,14 +4,13 @@
 
 
 class Migration(migrations.Migration):
-
     dependencies = [
-        ('iam', '0010_folder_ref_id'),
+        ("iam", "0010_folder_ref_id"),
     ]
 
     operations = [
         migrations.RemoveField(
-            model_name='folder',
-            name='ref_id',
+            model_name="folder",
+            name="ref_id",
         ),
     ]
diff --git a/backend/iam/migrations/0012_folder_ref_id.py b/backend/iam/migrations/0012_folder_ref_id.py
index 895f9356d..06e433c73 100644
--- a/backend/iam/migrations/0012_folder_ref_id.py
+++ b/backend/iam/migrations/0012_folder_ref_id.py
@@ -4,15 +4,16 @@
 
 
 class Migration(migrations.Migration):
-
     dependencies = [
-        ('iam', '0011_remove_folder_ref_id'),
+        ("iam", "0011_remove_folder_ref_id"),
     ]
 
     operations = [
         migrations.AddField(
-            model_name='folder',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="folder",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
     ]

From 82e1dfd05279d9026e1fa6dbce1dbf6cf2fac3db Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Thu, 14 Nov 2024 12:26:41 +0100
Subject: [PATCH 008/107] corrected migrations & little changes

---
 .../0041_remove_project_internal_reference.py    | 16 ++++++++++++++++
 backend/core/models.py                           |  4 +---
 .../iam/migrations/0013_remove_folder_ref_id.py  | 16 ++++++++++++++++
 backend/iam/models.py                            |  4 ----
 .../components/Forms/ModelForm/FolderForm.svelte |  9 ---------
 .../components/Forms/ModelForm/FolderForm.svelte | 16 ----------------
 .../Forms/ModelForm/ProjectForm.svelte           |  8 +-------
 frontend/src/lib/utils/table.ts                  |  4 ++--
 8 files changed, 36 insertions(+), 41 deletions(-)
 create mode 100644 backend/core/migrations/0041_remove_project_internal_reference.py
 create mode 100644 backend/iam/migrations/0013_remove_folder_ref_id.py

diff --git a/backend/core/migrations/0041_remove_project_internal_reference.py b/backend/core/migrations/0041_remove_project_internal_reference.py
new file mode 100644
index 000000000..45f8b88e9
--- /dev/null
+++ b/backend/core/migrations/0041_remove_project_internal_reference.py
@@ -0,0 +1,16 @@
+# Generated by Django 5.1.1 on 2024-11-14 11:22
+
+from django.db import migrations
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("core", "0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more"),
+    ]
+
+    operations = [
+        migrations.RemoveField(
+            model_name="project",
+            name="internal_reference",
+        ),
+    ]
diff --git a/backend/core/models.py b/backend/core/models.py
index 0b7f31d93..38e295c7f 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1143,9 +1143,7 @@ class Project(NameDescriptionMixin, FolderMixin):
         ("eol", _("EndOfLife")),
         ("dropped", _("Dropped")),
     ]
-    internal_reference = models.CharField(
-        max_length=100, null=True, blank=True, verbose_name=_("Internal reference")
-    )
+
     ref_id = models.CharField(
         max_length=100, null=True, blank=True, verbose_name=_("reference id")
     )
diff --git a/backend/iam/migrations/0013_remove_folder_ref_id.py b/backend/iam/migrations/0013_remove_folder_ref_id.py
new file mode 100644
index 000000000..643ec5916
--- /dev/null
+++ b/backend/iam/migrations/0013_remove_folder_ref_id.py
@@ -0,0 +1,16 @@
+# Generated by Django 5.1.1 on 2024-11-14 11:15
+
+from django.db import migrations
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("iam", "0012_folder_ref_id"),
+    ]
+
+    operations = [
+        migrations.RemoveField(
+            model_name="folder",
+            name="ref_id",
+        ),
+    ]
diff --git a/backend/iam/models.py b/backend/iam/models.py
index 63e780e18..61f4c2404 100644
--- a/backend/iam/models.py
+++ b/backend/iam/models.py
@@ -57,10 +57,6 @@ class Folder(NameDescriptionMixin):
     Folders are the base perimeter for role assignments
     """
 
-    ref_id = models.CharField(
-        max_length=100, null=True, blank=True, verbose_name=_("reference id")
-    )
-
     @staticmethod
     def get_root_folder() -> Self:
         """class function for general use"""
diff --git a/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte b/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
index 3ec44f003..46ca9c739 100644
--- a/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
+++ b/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
@@ -1,6 +1,5 @@
 <script lang="ts">
 	import { getOptions } from '$lib/utils/crud';
-	import TextField from '$lib/components/Forms/TextField.svelte';
 	import type { CacheLock, ModelInfo } from '$lib/utils/types';
 	import * as m from '$paraglide/messages.js';
 	import type { SuperValidated } from 'sveltekit-superforms';
@@ -14,14 +13,6 @@
 </script>
 
 
-<TextField
-	{form}
-	field="ref_id"
-	label={m.refId()}
-	cacheLock={cacheLocks['ref_id']}
-	bind:cachedValue={formDataCache['ref_id']}
-/>
-
 <AutocompleteSelect
 	{form}
 	options={getOptions({ objects: model.foreignKeys['parent_folder'] })}
diff --git a/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte b/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
index c63889381..0fbba9978 100644
--- a/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
@@ -1,18 +1,2 @@
 <script lang="ts">
-	import TextField from '$lib/components/Forms/TextField.svelte';
-	import type { SuperValidated } from 'sveltekit-superforms';
-	import type { CacheLock } from '$lib/utils/types';
-
-	export let form: SuperValidated<any>;
-	export let cacheLocks: Record<string, CacheLock> = {};
-	export let formDataCache: Record<string, any> = {};
-	import * as m from '$paraglide/messages.js';
 </script>
-
-<TextField
-	{form}
-	field="ref_id"
-	label={m.refId()}
-	cacheLock={cacheLocks['ref_id']}
-	bind:cachedValue={formDataCache['ref_id']}
-/>
diff --git a/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte b/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
index ed47b5567..bc05ebbde 100644
--- a/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
@@ -31,13 +31,7 @@
 	label={m.domain()}
 	hidden={initialData.folder}
 />
-<TextField
-	{form}
-	field="internal_reference"
-	label={m.internalReference()}
-	cacheLock={cacheLocks['internal_reference']}
-	bind:cachedValue={formDataCache['internal_reference']}
-/>
+
 <Select
 	{form}
 	options={model.selectOptions['lc_status']}
diff --git a/frontend/src/lib/utils/table.ts b/frontend/src/lib/utils/table.ts
index 41674fb54..3a2d0e60b 100644
--- a/frontend/src/lib/utils/table.ts
+++ b/frontend/src/lib/utils/table.ts
@@ -262,8 +262,8 @@ const LIBRARY_TYPE_FILTER = {
 
 export const listViewFields: ListViewFieldsConfig = {
 	folders: {
-		head: ['ref_id', 'name', 'description', 'parentDomain'],
-		body: ['ref_id', 'name', 'description', 'parent_folder']
+		head: ['name', 'description', 'parentDomain'],
+		body: ['name', 'description', 'parent_folder']
 	},
 	projects: {
 		head: ['ref_id', 'name', 'description', 'domain'],

From 3ddb4982fd34830b047f623c5d7e69fd37f5000e Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Thu, 14 Nov 2024 17:16:05 +0100
Subject: [PATCH 009/107] adjust stable version

---
 .../0042_project_internal_reference.py        | 19 +++++++++++++++++++
 backend/core/models.py                        |  3 +++
 .../Forms/ModelForm/ProjectForm.svelte        |  8 +++++++-
 3 files changed, 29 insertions(+), 1 deletion(-)
 create mode 100644 backend/core/migrations/0042_project_internal_reference.py

diff --git a/backend/core/migrations/0042_project_internal_reference.py b/backend/core/migrations/0042_project_internal_reference.py
new file mode 100644
index 000000000..f052c6e72
--- /dev/null
+++ b/backend/core/migrations/0042_project_internal_reference.py
@@ -0,0 +1,19 @@
+# Generated by Django 5.1.1 on 2024-11-14 16:08
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("core", "0041_remove_project_internal_reference"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="project",
+            name="internal_reference",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="Internal reference"
+            ),
+        ),
+    ]
diff --git a/backend/core/models.py b/backend/core/models.py
index 38e295c7f..00f84b596 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1144,6 +1144,9 @@ class Project(NameDescriptionMixin, FolderMixin):
         ("dropped", _("Dropped")),
     ]
 
+    internal_reference = models.CharField(
+        max_length=100, null=True, blank=True, verbose_name=_("Internal reference")
+    )
     ref_id = models.CharField(
         max_length=100, null=True, blank=True, verbose_name=_("reference id")
     )
diff --git a/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte b/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
index bc05ebbde..ed47b5567 100644
--- a/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
@@ -31,7 +31,13 @@
 	label={m.domain()}
 	hidden={initialData.folder}
 />
-
+<TextField
+	{form}
+	field="internal_reference"
+	label={m.internalReference()}
+	cacheLock={cacheLocks['internal_reference']}
+	bind:cachedValue={formDataCache['internal_reference']}
+/>
 <Select
 	{form}
 	options={model.selectOptions['lc_status']}

From e5b70e9983de5ee246624a3fba483e2e59b90898 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Mon, 18 Nov 2024 16:21:39 +0100
Subject: [PATCH 010/107] corrected migrations, added folder, removed internal
 ref

---
 .../core/migrations/0035_project_ref_id.py    | 19 ------
 ...ove_project_internal_reference_and_more.py | 43 ++++++++++++
 .../migrations/0036_riskassessment_ref_id.py  | 19 ------
 .../migrations/0037_appliedcontrol_ref_id.py  | 19 ------
 .../0038_complianceassessment_ref_id.py       | 19 ------
 ..._id_alter_loadedlibrary_ref_id_and_more.py | 68 -------------------
 ..._id_alter_loadedlibrary_ref_id_and_more.py | 68 -------------------
 .../0041_remove_project_internal_reference.py | 16 -----
 .../0042_project_internal_reference.py        | 19 ------
 backend/core/models.py                        |  3 -
 backend/iam/migrations/0010_folder_ref_id.py  |  2 +-
 .../migrations/0011_remove_folder_ref_id.py   | 16 -----
 backend/iam/migrations/0012_folder_ref_id.py  | 19 ------
 .../migrations/0013_remove_folder_ref_id.py   | 16 -----
 backend/iam/models.py                         |  5 ++
 .../Forms/ModelForm/FolderForm.svelte         |  9 +++
 .../Forms/ModelForm/FolderForm.svelte         | 16 +++++
 .../Forms/ModelForm/ProjectForm.svelte        | 16 ++---
 frontend/src/lib/utils/table.ts               |  4 +-
 19 files changed, 80 insertions(+), 316 deletions(-)
 delete mode 100644 backend/core/migrations/0035_project_ref_id.py
 create mode 100644 backend/core/migrations/0035_remove_project_internal_reference_and_more.py
 delete mode 100644 backend/core/migrations/0036_riskassessment_ref_id.py
 delete mode 100644 backend/core/migrations/0037_appliedcontrol_ref_id.py
 delete mode 100644 backend/core/migrations/0038_complianceassessment_ref_id.py
 delete mode 100644 backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
 delete mode 100644 backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
 delete mode 100644 backend/core/migrations/0041_remove_project_internal_reference.py
 delete mode 100644 backend/core/migrations/0042_project_internal_reference.py
 delete mode 100644 backend/iam/migrations/0011_remove_folder_ref_id.py
 delete mode 100644 backend/iam/migrations/0012_folder_ref_id.py
 delete mode 100644 backend/iam/migrations/0013_remove_folder_ref_id.py

diff --git a/backend/core/migrations/0035_project_ref_id.py b/backend/core/migrations/0035_project_ref_id.py
deleted file mode 100644
index 4ea2c4b91..000000000
--- a/backend/core/migrations/0035_project_ref_id.py
+++ /dev/null
@@ -1,19 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-13 09:57
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("core", "0034_fix_loaded_libraries_objects_meta"),
-    ]
-
-    operations = [
-        migrations.AddField(
-            model_name="project",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-    ]
diff --git a/backend/core/migrations/0035_remove_project_internal_reference_and_more.py b/backend/core/migrations/0035_remove_project_internal_reference_and_more.py
new file mode 100644
index 000000000..3afca00a6
--- /dev/null
+++ b/backend/core/migrations/0035_remove_project_internal_reference_and_more.py
@@ -0,0 +1,43 @@
+# Generated by Django 5.1.1 on 2024-11-18 15:18
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("core", "0034_fix_loaded_libraries_objects_meta"),
+    ]
+
+    operations = [
+        migrations.RenameField(
+            model_name="project", old_name="internal_reference", new_name="ref_id"
+        ),
+        migrations.AddField(
+            model_name="appliedcontrol",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
+        ),
+        migrations.AddField(
+            model_name="complianceassessment",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
+        ),
+        migrations.AddField(
+            model_name="project",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
+        ),
+        migrations.AddField(
+            model_name="riskassessment",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
+        ),
+    ]
diff --git a/backend/core/migrations/0036_riskassessment_ref_id.py b/backend/core/migrations/0036_riskassessment_ref_id.py
deleted file mode 100644
index afdaced38..000000000
--- a/backend/core/migrations/0036_riskassessment_ref_id.py
+++ /dev/null
@@ -1,19 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-13 10:52
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("core", "0035_project_ref_id"),
-    ]
-
-    operations = [
-        migrations.AddField(
-            model_name="riskassessment",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-    ]
diff --git a/backend/core/migrations/0037_appliedcontrol_ref_id.py b/backend/core/migrations/0037_appliedcontrol_ref_id.py
deleted file mode 100644
index 780a9aa1b..000000000
--- a/backend/core/migrations/0037_appliedcontrol_ref_id.py
+++ /dev/null
@@ -1,19 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-13 10:57
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("core", "0036_riskassessment_ref_id"),
-    ]
-
-    operations = [
-        migrations.AddField(
-            model_name="appliedcontrol",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-    ]
diff --git a/backend/core/migrations/0038_complianceassessment_ref_id.py b/backend/core/migrations/0038_complianceassessment_ref_id.py
deleted file mode 100644
index 56911359a..000000000
--- a/backend/core/migrations/0038_complianceassessment_ref_id.py
+++ /dev/null
@@ -1,19 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-13 11:04
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("core", "0037_appliedcontrol_ref_id"),
-    ]
-
-    operations = [
-        migrations.AddField(
-            model_name="complianceassessment",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-    ]
diff --git a/backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py b/backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
deleted file mode 100644
index 236cb9179..000000000
--- a/backend/core/migrations/0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
+++ /dev/null
@@ -1,68 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-13 13:16
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("core", "0038_complianceassessment_ref_id"),
-    ]
-
-    operations = [
-        migrations.AlterField(
-            model_name="framework",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="loadedlibrary",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="referencecontrol",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="requirementmappingset",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="requirementnode",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="riskmatrix",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="storedlibrary",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="threat",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-    ]
diff --git a/backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py b/backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
deleted file mode 100644
index 395808381..000000000
--- a/backend/core/migrations/0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more.py
+++ /dev/null
@@ -1,68 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-13 13:19
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("core", "0039_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more"),
-    ]
-
-    operations = [
-        migrations.AlterField(
-            model_name="framework",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="Reference ID"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="loadedlibrary",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="Reference ID"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="referencecontrol",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="Reference ID"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="requirementmappingset",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="Reference ID"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="requirementnode",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="Reference ID"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="riskmatrix",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="Reference ID"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="storedlibrary",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="Reference ID"
-            ),
-        ),
-        migrations.AlterField(
-            model_name="threat",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="Reference ID"
-            ),
-        ),
-    ]
diff --git a/backend/core/migrations/0041_remove_project_internal_reference.py b/backend/core/migrations/0041_remove_project_internal_reference.py
deleted file mode 100644
index 45f8b88e9..000000000
--- a/backend/core/migrations/0041_remove_project_internal_reference.py
+++ /dev/null
@@ -1,16 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-14 11:22
-
-from django.db import migrations
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("core", "0040_alter_framework_ref_id_alter_loadedlibrary_ref_id_and_more"),
-    ]
-
-    operations = [
-        migrations.RemoveField(
-            model_name="project",
-            name="internal_reference",
-        ),
-    ]
diff --git a/backend/core/migrations/0042_project_internal_reference.py b/backend/core/migrations/0042_project_internal_reference.py
deleted file mode 100644
index f052c6e72..000000000
--- a/backend/core/migrations/0042_project_internal_reference.py
+++ /dev/null
@@ -1,19 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-14 16:08
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("core", "0041_remove_project_internal_reference"),
-    ]
-
-    operations = [
-        migrations.AddField(
-            model_name="project",
-            name="internal_reference",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="Internal reference"
-            ),
-        ),
-    ]
diff --git a/backend/core/models.py b/backend/core/models.py
index 00f84b596..38e295c7f 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1144,9 +1144,6 @@ class Project(NameDescriptionMixin, FolderMixin):
         ("dropped", _("Dropped")),
     ]
 
-    internal_reference = models.CharField(
-        max_length=100, null=True, blank=True, verbose_name=_("Internal reference")
-    )
     ref_id = models.CharField(
         max_length=100, null=True, blank=True, verbose_name=_("reference id")
     )
diff --git a/backend/iam/migrations/0010_folder_ref_id.py b/backend/iam/migrations/0010_folder_ref_id.py
index 5d2fa97bd..454ea528c 100644
--- a/backend/iam/migrations/0010_folder_ref_id.py
+++ b/backend/iam/migrations/0010_folder_ref_id.py
@@ -1,4 +1,4 @@
-# Generated by Django 5.1.1 on 2024-11-13 11:17
+# Generated by Django 5.1.1 on 2024-11-18 15:00
 
 from django.db import migrations, models
 
diff --git a/backend/iam/migrations/0011_remove_folder_ref_id.py b/backend/iam/migrations/0011_remove_folder_ref_id.py
deleted file mode 100644
index de1d0ec3c..000000000
--- a/backend/iam/migrations/0011_remove_folder_ref_id.py
+++ /dev/null
@@ -1,16 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-13 13:16
-
-from django.db import migrations
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("iam", "0010_folder_ref_id"),
-    ]
-
-    operations = [
-        migrations.RemoveField(
-            model_name="folder",
-            name="ref_id",
-        ),
-    ]
diff --git a/backend/iam/migrations/0012_folder_ref_id.py b/backend/iam/migrations/0012_folder_ref_id.py
deleted file mode 100644
index 06e433c73..000000000
--- a/backend/iam/migrations/0012_folder_ref_id.py
+++ /dev/null
@@ -1,19 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-13 13:19
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("iam", "0011_remove_folder_ref_id"),
-    ]
-
-    operations = [
-        migrations.AddField(
-            model_name="folder",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-    ]
diff --git a/backend/iam/migrations/0013_remove_folder_ref_id.py b/backend/iam/migrations/0013_remove_folder_ref_id.py
deleted file mode 100644
index 643ec5916..000000000
--- a/backend/iam/migrations/0013_remove_folder_ref_id.py
+++ /dev/null
@@ -1,16 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-14 11:15
-
-from django.db import migrations
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("iam", "0012_folder_ref_id"),
-    ]
-
-    operations = [
-        migrations.RemoveField(
-            model_name="folder",
-            name="ref_id",
-        ),
-    ]
diff --git a/backend/iam/models.py b/backend/iam/models.py
index 61f4c2404..8434ade1f 100644
--- a/backend/iam/models.py
+++ b/backend/iam/models.py
@@ -80,6 +80,11 @@ class ContentType(models.TextChoices):
     content_type = models.CharField(
         max_length=2, choices=ContentType.choices, default=ContentType.DOMAIN
     )
+
+    ref_id = models.CharField(
+        max_length=100, null=True, blank=True, verbose_name=_("reference id")
+    )
+
     parent_folder = models.ForeignKey(
         "self",
         null=True,
diff --git a/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte b/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
index 46ca9c739..bd9e4c10d 100644
--- a/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
+++ b/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
@@ -4,6 +4,7 @@
 	import * as m from '$paraglide/messages.js';
 	import type { SuperValidated } from 'sveltekit-superforms';
 	import AutocompleteSelect from '../AutocompleteSelect.svelte';
+	import TextField from '$lib/components/Forms/TextField.svelte';
 
 	export let form: SuperValidated<any>;
 	export let model: ModelInfo;
@@ -12,6 +13,14 @@
 	export let initialData: Record<string, any> = {};
 </script>
 
+<TextField
+	{form}
+	field="ref_id"
+	label={m.refId()}
+	cacheLock={cacheLocks['ref_id']}
+	bind:cachedValue={formDataCache['ref_id']}
+/>
+
 
 <AutocompleteSelect
 	{form}
diff --git a/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte b/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
index 0fbba9978..3b0435705 100644
--- a/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
@@ -1,2 +1,18 @@
 <script lang="ts">
+	import TextField from '$lib/components/Forms/TextField.svelte';
+	import type { SuperValidated } from 'sveltekit-superforms';
+	import type { CacheLock } from '$lib/utils/types';
+
+	export let form: SuperValidated<any>;
+	export let cacheLocks: Record<string, CacheLock> = {};
+	export let formDataCache: Record<string, any> = {};
+	import * as m from '$paraglide/messages.js';
 </script>
+
+<TextField
+	{form}
+	field="ref_id"
+	label={'reference id'}
+	cacheLock={cacheLocks['ref_id']}
+	bind:cachedValue={formDataCache['ref_id']}
+/>
diff --git a/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte b/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
index ed47b5567..24b9314b7 100644
--- a/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/ProjectForm.svelte
@@ -14,14 +14,6 @@
 	export let initialData: Record<string, any> = {};
 </script>
 
-<TextField
-	{form}
-	field="ref_id"
-	label={m.refId()}
-	cacheLock={cacheLocks['ref_id']}
-	bind:cachedValue={formDataCache['ref_id']}
-/>
-
 <AutocompleteSelect
 	{form}
 	options={getOptions({ objects: model.foreignKeys['folder'] })}
@@ -33,10 +25,10 @@
 />
 <TextField
 	{form}
-	field="internal_reference"
-	label={m.internalReference()}
-	cacheLock={cacheLocks['internal_reference']}
-	bind:cachedValue={formDataCache['internal_reference']}
+	field="ref_id"
+	label={m.refId()}
+	cacheLock={cacheLocks['ref_id']}
+	bind:cachedValue={formDataCache['ref_id']}
 />
 <Select
 	{form}
diff --git a/frontend/src/lib/utils/table.ts b/frontend/src/lib/utils/table.ts
index 3a2d0e60b..41674fb54 100644
--- a/frontend/src/lib/utils/table.ts
+++ b/frontend/src/lib/utils/table.ts
@@ -262,8 +262,8 @@ const LIBRARY_TYPE_FILTER = {
 
 export const listViewFields: ListViewFieldsConfig = {
 	folders: {
-		head: ['name', 'description', 'parentDomain'],
-		body: ['name', 'description', 'parent_folder']
+		head: ['ref_id', 'name', 'description', 'parentDomain'],
+		body: ['ref_id', 'name', 'description', 'parent_folder']
 	},
 	projects: {
 		head: ['ref_id', 'name', 'description', 'domain'],

From 42c0f4d5545ca09fc2001f24c296bec34a465563 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Mon, 18 Nov 2024 16:54:59 +0100
Subject: [PATCH 011/107] corrected project api tests

---
 backend/app_tests/api/test_api_projects.py | 8 ++++----
 backend/core/models.py                     | 6 +++---
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/backend/app_tests/api/test_api_projects.py b/backend/app_tests/api/test_api_projects.py
index f1ea8b58c..417d64dbe 100644
--- a/backend/app_tests/api/test_api_projects.py
+++ b/backend/app_tests/api/test_api_projects.py
@@ -90,7 +90,7 @@ def test_get_projects(self, test):
                 "name": PROJECT_NAME,
                 "description": PROJECT_DESCRIPTION,
                 "folder": test.folder,
-                "internal_reference": PROJECT_REFERENCE,
+                "ref_id": PROJECT_REFERENCE,
                 "lc_status": PROJECT_STATUS[0],
             },
             {
@@ -112,7 +112,7 @@ def test_create_projects(self, test):
                 "name": PROJECT_NAME,
                 "description": PROJECT_DESCRIPTION,
                 "folder": str(test.folder.id),
-                "internal_reference": PROJECT_REFERENCE,
+                "ref_id": PROJECT_REFERENCE,
                 "lc_status": PROJECT_STATUS[0],
             },
             {
@@ -137,14 +137,14 @@ def test_update_projects(self, test):
                 "name": PROJECT_NAME,
                 "description": PROJECT_DESCRIPTION,
                 "folder": test.folder,
-                "internal_reference": PROJECT_REFERENCE,
+                "ref_id": PROJECT_REFERENCE,
                 "lc_status": PROJECT_STATUS[0],
             },
             {
                 "name": "new " + PROJECT_NAME,
                 "description": "new " + PROJECT_DESCRIPTION,
                 "folder": str(folder.id),
-                "internal_reference": "new " + PROJECT_REFERENCE,
+                "ref_id": "new " + PROJECT_REFERENCE,
                 "lc_status": status[0],
             },
             {
diff --git a/backend/core/models.py b/backend/core/models.py
index 38e295c7f..429bcadee 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1297,9 +1297,6 @@ class Status(models.TextChoices):
         ("L", _("Large")),
         ("XL", _("Extra Large")),
     ]
-    ref_id = models.CharField(
-        max_length=100, null=True, blank=True, verbose_name=_("reference id")
-    )
 
     MAP_EFFORT = {None: -1, "S": 1, "M": 2, "L": 4, "XL": 8}
     # todo: think about a smarter model for ranking
@@ -1310,6 +1307,9 @@ class Status(models.TextChoices):
         blank=True,
         verbose_name=_("Reference Control"),
     )
+    ref_id = models.CharField(
+        max_length=100, null=True, blank=True, verbose_name=_("reference id")
+    )
     evidences = models.ManyToManyField(
         Evidence,
         blank=True,

From 11df68da7bb047919fd73b7fe4196e7a13d9b49e Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Mon, 18 Nov 2024 17:17:19 +0100
Subject: [PATCH 012/107] merged with main

---
 .../core/migrations/0036_merge_20241118_1616.py    | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 backend/core/migrations/0036_merge_20241118_1616.py

diff --git a/backend/core/migrations/0036_merge_20241118_1616.py b/backend/core/migrations/0036_merge_20241118_1616.py
new file mode 100644
index 000000000..4746bba1a
--- /dev/null
+++ b/backend/core/migrations/0036_merge_20241118_1616.py
@@ -0,0 +1,14 @@
+# Generated by Django 5.1.1 on 2024-11-18 16:16
+
+from django.db import migrations
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('core', '0035_remove_project_internal_reference_and_more'),
+        ('core', '0035_riskscenario_existing_applied_controls'),
+    ]
+
+    operations = [
+    ]

From d8c685892cd68834c0e5d2fdd70a6a4c46a8ff05 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Mon, 18 Nov 2024 17:27:21 +0100
Subject: [PATCH 013/107] corrected migrations

---
 ...move_project_internal_reference_and_more.py |  7 -------
 .../migrations/0037_alter_project_ref_id.py    | 18 ++++++++++++++++++
 2 files changed, 18 insertions(+), 7 deletions(-)
 create mode 100644 backend/core/migrations/0037_alter_project_ref_id.py

diff --git a/backend/core/migrations/0035_remove_project_internal_reference_and_more.py b/backend/core/migrations/0035_remove_project_internal_reference_and_more.py
index 3afca00a6..48d0adfc7 100644
--- a/backend/core/migrations/0035_remove_project_internal_reference_and_more.py
+++ b/backend/core/migrations/0035_remove_project_internal_reference_and_more.py
@@ -26,13 +26,6 @@ class Migration(migrations.Migration):
                 blank=True, max_length=100, null=True, verbose_name="reference id"
             ),
         ),
-        migrations.AddField(
-            model_name="project",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
         migrations.AddField(
             model_name="riskassessment",
             name="ref_id",
diff --git a/backend/core/migrations/0037_alter_project_ref_id.py b/backend/core/migrations/0037_alter_project_ref_id.py
new file mode 100644
index 000000000..15ece8142
--- /dev/null
+++ b/backend/core/migrations/0037_alter_project_ref_id.py
@@ -0,0 +1,18 @@
+# Generated by Django 5.1.1 on 2024-11-18 16:26
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('core', '0036_merge_20241118_1616'),
+    ]
+
+    operations = [
+        migrations.AlterField(
+            model_name='project',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+    ]

From 2740b09107eb3fae5e9d0b1e215bc0f7e2e9c5e1 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Mon, 18 Nov 2024 17:55:25 +0100
Subject: [PATCH 014/107] corrected migrations

---
 ...ove_project_internal_reference_and_more.py | 36 -------------------
 .../migrations/0036_merge_20241118_1616.py    | 14 --------
 ...ove_project_internal_reference_and_more.py | 33 +++++++++++++++++
 .../migrations/0037_alter_project_ref_id.py   | 18 ----------
 backend/iam/migrations/0010_folder_ref_id.py  | 13 ++++---
 5 files changed, 39 insertions(+), 75 deletions(-)
 delete mode 100644 backend/core/migrations/0035_remove_project_internal_reference_and_more.py
 delete mode 100644 backend/core/migrations/0036_merge_20241118_1616.py
 create mode 100644 backend/core/migrations/0036_remove_project_internal_reference_and_more.py
 delete mode 100644 backend/core/migrations/0037_alter_project_ref_id.py

diff --git a/backend/core/migrations/0035_remove_project_internal_reference_and_more.py b/backend/core/migrations/0035_remove_project_internal_reference_and_more.py
deleted file mode 100644
index 48d0adfc7..000000000
--- a/backend/core/migrations/0035_remove_project_internal_reference_and_more.py
+++ /dev/null
@@ -1,36 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-18 15:18
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("core", "0034_fix_loaded_libraries_objects_meta"),
-    ]
-
-    operations = [
-        migrations.RenameField(
-            model_name="project", old_name="internal_reference", new_name="ref_id"
-        ),
-        migrations.AddField(
-            model_name="appliedcontrol",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-        migrations.AddField(
-            model_name="complianceassessment",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-        migrations.AddField(
-            model_name="riskassessment",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-    ]
diff --git a/backend/core/migrations/0036_merge_20241118_1616.py b/backend/core/migrations/0036_merge_20241118_1616.py
deleted file mode 100644
index 4746bba1a..000000000
--- a/backend/core/migrations/0036_merge_20241118_1616.py
+++ /dev/null
@@ -1,14 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-18 16:16
-
-from django.db import migrations
-
-
-class Migration(migrations.Migration):
-
-    dependencies = [
-        ('core', '0035_remove_project_internal_reference_and_more'),
-        ('core', '0035_riskscenario_existing_applied_controls'),
-    ]
-
-    operations = [
-    ]
diff --git a/backend/core/migrations/0036_remove_project_internal_reference_and_more.py b/backend/core/migrations/0036_remove_project_internal_reference_and_more.py
new file mode 100644
index 000000000..e0fdd0722
--- /dev/null
+++ b/backend/core/migrations/0036_remove_project_internal_reference_and_more.py
@@ -0,0 +1,33 @@
+# Generated by Django 5.1.1 on 2024-11-18 16:53
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('core', '0035_riskscenario_existing_applied_controls'),
+    ]
+
+    operations = [
+        migrations.RenameField(
+            model_name='project',
+            old_name='internal_reference',
+            new_name='ref_id'
+        ),
+        migrations.AddField(
+            model_name='appliedcontrol',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+        migrations.AddField(
+            model_name='complianceassessment',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+        migrations.AddField(
+            model_name='riskassessment',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+    ]
diff --git a/backend/core/migrations/0037_alter_project_ref_id.py b/backend/core/migrations/0037_alter_project_ref_id.py
deleted file mode 100644
index 15ece8142..000000000
--- a/backend/core/migrations/0037_alter_project_ref_id.py
+++ /dev/null
@@ -1,18 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-18 16:26
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-
-    dependencies = [
-        ('core', '0036_merge_20241118_1616'),
-    ]
-
-    operations = [
-        migrations.AlterField(
-            model_name='project',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
-        ),
-    ]
diff --git a/backend/iam/migrations/0010_folder_ref_id.py b/backend/iam/migrations/0010_folder_ref_id.py
index 454ea528c..070db6161 100644
--- a/backend/iam/migrations/0010_folder_ref_id.py
+++ b/backend/iam/migrations/0010_folder_ref_id.py
@@ -1,19 +1,18 @@
-# Generated by Django 5.1.1 on 2024-11-18 15:00
+# Generated by Django 5.1.1 on 2024-11-18 16:42
 
 from django.db import migrations, models
 
 
 class Migration(migrations.Migration):
+
     dependencies = [
-        ("iam", "0009_create_allauth_emailaddress_objects"),
+        ('iam', '0009_create_allauth_emailaddress_objects'),
     ]
 
     operations = [
         migrations.AddField(
-            model_name="folder",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
+            model_name='folder',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
         ),
     ]

From e07af5f22348a7dc3781950558872a0707b36be8 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Mon, 18 Nov 2024 18:05:50 +0100
Subject: [PATCH 015/107] correct migrations

---
 .../migrations/0037_alter_project_ref_id.py    | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100644 backend/core/migrations/0037_alter_project_ref_id.py

diff --git a/backend/core/migrations/0037_alter_project_ref_id.py b/backend/core/migrations/0037_alter_project_ref_id.py
new file mode 100644
index 000000000..8850375c1
--- /dev/null
+++ b/backend/core/migrations/0037_alter_project_ref_id.py
@@ -0,0 +1,18 @@
+# Generated by Django 5.1.1 on 2024-11-18 17:01
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('core', '0036_remove_project_internal_reference_and_more'),
+    ]
+
+    operations = [
+        migrations.AlterField(
+            model_name='project',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
+    ]

From 13af3173c223df407826e406bed132b05936624e Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Tue, 19 Nov 2024 11:19:09 +0100
Subject: [PATCH 016/107] correct migrations

---
 ...move_project_internal_reference_and_more.py |  7 ++++++-
 .../migrations/0037_alter_project_ref_id.py    | 18 ------------------
 backend/iam/migrations/0010_folder_ref_id.py   |  2 +-
 3 files changed, 7 insertions(+), 20 deletions(-)
 delete mode 100644 backend/core/migrations/0037_alter_project_ref_id.py

diff --git a/backend/core/migrations/0036_remove_project_internal_reference_and_more.py b/backend/core/migrations/0036_remove_project_internal_reference_and_more.py
index e0fdd0722..5e624a872 100644
--- a/backend/core/migrations/0036_remove_project_internal_reference_and_more.py
+++ b/backend/core/migrations/0036_remove_project_internal_reference_and_more.py
@@ -1,4 +1,4 @@
-# Generated by Django 5.1.1 on 2024-11-18 16:53
+# Generated by Django 5.1.1 on 2024-11-19 10:15
 
 from django.db import migrations, models
 
@@ -15,6 +15,11 @@ class Migration(migrations.Migration):
             old_name='internal_reference',
             new_name='ref_id'
         ),
+        migrations.AlterField(
+            model_name='project',
+            name='ref_id',
+            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+        ),
         migrations.AddField(
             model_name='appliedcontrol',
             name='ref_id',
diff --git a/backend/core/migrations/0037_alter_project_ref_id.py b/backend/core/migrations/0037_alter_project_ref_id.py
deleted file mode 100644
index 8850375c1..000000000
--- a/backend/core/migrations/0037_alter_project_ref_id.py
+++ /dev/null
@@ -1,18 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-18 17:01
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-
-    dependencies = [
-        ('core', '0036_remove_project_internal_reference_and_more'),
-    ]
-
-    operations = [
-        migrations.AlterField(
-            model_name='project',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
-        ),
-    ]
diff --git a/backend/iam/migrations/0010_folder_ref_id.py b/backend/iam/migrations/0010_folder_ref_id.py
index 070db6161..c5b9b577f 100644
--- a/backend/iam/migrations/0010_folder_ref_id.py
+++ b/backend/iam/migrations/0010_folder_ref_id.py
@@ -1,4 +1,4 @@
-# Generated by Django 5.1.1 on 2024-11-18 16:42
+# Generated by Django 5.1.1 on 2024-11-19 10:15
 
 from django.db import migrations, models
 

From 460c528211d32401e42dfeb0686bffcafd3ce367 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Tue, 19 Nov 2024 11:25:29 +0100
Subject: [PATCH 017/107] correct format

---
 ...ove_project_internal_reference_and_more.py | 39 +++++++++++--------
 backend/iam/migrations/0010_folder_ref_id.py  | 11 +++---
 2 files changed, 28 insertions(+), 22 deletions(-)

diff --git a/backend/core/migrations/0036_remove_project_internal_reference_and_more.py b/backend/core/migrations/0036_remove_project_internal_reference_and_more.py
index 5e624a872..20c7b4f2d 100644
--- a/backend/core/migrations/0036_remove_project_internal_reference_and_more.py
+++ b/backend/core/migrations/0036_remove_project_internal_reference_and_more.py
@@ -4,35 +4,40 @@
 
 
 class Migration(migrations.Migration):
-
     dependencies = [
-        ('core', '0035_riskscenario_existing_applied_controls'),
+        ("core", "0035_riskscenario_existing_applied_controls"),
     ]
 
     operations = [
         migrations.RenameField(
-            model_name='project',
-            old_name='internal_reference',
-            new_name='ref_id'
+            model_name="project", old_name="internal_reference", new_name="ref_id"
         ),
         migrations.AlterField(
-            model_name='project',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="project",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
         migrations.AddField(
-            model_name='appliedcontrol',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="appliedcontrol",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
         migrations.AddField(
-            model_name='complianceassessment',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="complianceassessment",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
         migrations.AddField(
-            model_name='riskassessment',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="riskassessment",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
     ]
diff --git a/backend/iam/migrations/0010_folder_ref_id.py b/backend/iam/migrations/0010_folder_ref_id.py
index c5b9b577f..37d2fd952 100644
--- a/backend/iam/migrations/0010_folder_ref_id.py
+++ b/backend/iam/migrations/0010_folder_ref_id.py
@@ -4,15 +4,16 @@
 
 
 class Migration(migrations.Migration):
-
     dependencies = [
-        ('iam', '0009_create_allauth_emailaddress_objects'),
+        ("iam", "0009_create_allauth_emailaddress_objects"),
     ]
 
     operations = [
         migrations.AddField(
-            model_name='folder',
-            name='ref_id',
-            field=models.CharField(blank=True, max_length=100, null=True, verbose_name='reference id'),
+            model_name="folder",
+            name="ref_id",
+            field=models.CharField(
+                blank=True, max_length=100, null=True, verbose_name="reference id"
+            ),
         ),
     ]

From 2165dab1eb57cc55dd66291e77b46fd69b09a580 Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Tue, 19 Nov 2024 11:29:44 +0100
Subject: [PATCH 018/107] without folder

---
 backend/iam/migrations/0010_folder_ref_id.py  | 19 -------------------
 backend/iam/models.py                         |  4 ----
 .../Forms/ModelForm/FolderForm.svelte         |  9 ---------
 .../Forms/ModelForm/FolderForm.svelte         | 16 ----------------
 frontend/src/lib/utils/table.ts               |  4 ++--
 5 files changed, 2 insertions(+), 50 deletions(-)
 delete mode 100644 backend/iam/migrations/0010_folder_ref_id.py

diff --git a/backend/iam/migrations/0010_folder_ref_id.py b/backend/iam/migrations/0010_folder_ref_id.py
deleted file mode 100644
index 37d2fd952..000000000
--- a/backend/iam/migrations/0010_folder_ref_id.py
+++ /dev/null
@@ -1,19 +0,0 @@
-# Generated by Django 5.1.1 on 2024-11-19 10:15
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-    dependencies = [
-        ("iam", "0009_create_allauth_emailaddress_objects"),
-    ]
-
-    operations = [
-        migrations.AddField(
-            model_name="folder",
-            name="ref_id",
-            field=models.CharField(
-                blank=True, max_length=100, null=True, verbose_name="reference id"
-            ),
-        ),
-    ]
diff --git a/backend/iam/models.py b/backend/iam/models.py
index 8434ade1f..48e800fa8 100644
--- a/backend/iam/models.py
+++ b/backend/iam/models.py
@@ -81,10 +81,6 @@ class ContentType(models.TextChoices):
         max_length=2, choices=ContentType.choices, default=ContentType.DOMAIN
     )
 
-    ref_id = models.CharField(
-        max_length=100, null=True, blank=True, verbose_name=_("reference id")
-    )
-
     parent_folder = models.ForeignKey(
         "self",
         null=True,
diff --git a/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte b/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
index bd9e4c10d..46ca9c739 100644
--- a/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
+++ b/enterprise/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
@@ -4,7 +4,6 @@
 	import * as m from '$paraglide/messages.js';
 	import type { SuperValidated } from 'sveltekit-superforms';
 	import AutocompleteSelect from '../AutocompleteSelect.svelte';
-	import TextField from '$lib/components/Forms/TextField.svelte';
 
 	export let form: SuperValidated<any>;
 	export let model: ModelInfo;
@@ -13,14 +12,6 @@
 	export let initialData: Record<string, any> = {};
 </script>
 
-<TextField
-	{form}
-	field="ref_id"
-	label={m.refId()}
-	cacheLock={cacheLocks['ref_id']}
-	bind:cachedValue={formDataCache['ref_id']}
-/>
-
 
 <AutocompleteSelect
 	{form}
diff --git a/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte b/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
index 3b0435705..0fbba9978 100644
--- a/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/FolderForm.svelte
@@ -1,18 +1,2 @@
 <script lang="ts">
-	import TextField from '$lib/components/Forms/TextField.svelte';
-	import type { SuperValidated } from 'sveltekit-superforms';
-	import type { CacheLock } from '$lib/utils/types';
-
-	export let form: SuperValidated<any>;
-	export let cacheLocks: Record<string, CacheLock> = {};
-	export let formDataCache: Record<string, any> = {};
-	import * as m from '$paraglide/messages.js';
 </script>
-
-<TextField
-	{form}
-	field="ref_id"
-	label={'reference id'}
-	cacheLock={cacheLocks['ref_id']}
-	bind:cachedValue={formDataCache['ref_id']}
-/>
diff --git a/frontend/src/lib/utils/table.ts b/frontend/src/lib/utils/table.ts
index 5304c4b87..55f0ba724 100644
--- a/frontend/src/lib/utils/table.ts
+++ b/frontend/src/lib/utils/table.ts
@@ -262,8 +262,8 @@ const LIBRARY_TYPE_FILTER = {
 
 export const listViewFields: ListViewFieldsConfig = {
 	folders: {
-		head: ['ref_id', 'name', 'description', 'parentDomain'],
-		body: ['ref_id', 'name', 'description', 'parent_folder']
+		head: ['name', 'description', 'parentDomain'],
+		body: ['name', 'description', 'parent_folder']
 	},
 	projects: {
 		head: ['ref_id', 'name', 'description', 'domain'],

From f26f33249e26cc2aab9401f884453573a2fb77d7 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Thu, 21 Nov 2024 11:28:22 +0100
Subject: [PATCH 019/107] feat: improve mapping inference additional
 information

---
 backend/core/models.py                         |  2 ++
 frontend/messages/en.json                      |  4 +++-
 .../[id=uuid]/+page.svelte                     | 18 ++++++++++++++++++
 .../[id=uuid]/edit/+page.svelte                | 18 ++++++++++++++++++
 4 files changed, 41 insertions(+), 1 deletion(-)

diff --git a/backend/core/models.py b/backend/core/models.py
index ea1f89097..80c04dcee 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -2612,6 +2612,8 @@ def compute_requirement_assessments_results(
                         "str": str(ref),
                         "id": str(ref.id),
                         "coverage": mapping.coverage,
+                        "score": ref.score,
+                        "observation": ref.observation
                     },
                     # "mappings": [mapping.id for mapping in mappings],
                 }
diff --git a/frontend/messages/en.json b/frontend/messages/en.json
index 7eae4709f..4a9082d82 100644
--- a/frontend/messages/en.json
+++ b/frontend/messages/en.json
@@ -864,5 +864,7 @@
 	"existingMeasures": "Existing measures",
 	"youCanSetPasswordHere": "You can set your password here",
 	"forgotPassword": "Forgot password",
-	"ssoSettingsUpdated": "SSO settings updated"
+	"ssoSettingsUpdated": "SSO settings updated",
+	"scoreSemiColon": "Score:",
+	"mappingInferenceHelpText": "These variables are fixed and will not change according to the source requirement"
 }
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
index 7f757b20c..584608558 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
@@ -192,6 +192,7 @@
 							<i class="fa-solid fa-link" />
 							{m.mappingInference()}
 						</p>
+						<span class="text-xs text-gray-500"><i class="fa-solid fa-circle-info"></i> {m.mappingInferenceHelpText()}</span>
 						<ul class="list-disc ml-4">
 							<li>
 								<p>
@@ -220,6 +221,23 @@
 										{safeTranslate(mappingInference.result)}
 									</span>
 								</p>
+								{#if mappingInference.sourceRequirementAssessment.score}
+									<p class="whitespace-pre-line py-1">
+										<span class="italic">{m.scoreSemiColon()}</span>
+										<span
+											class="badge {classesText} h-fit"
+										>
+											{mappingInference.sourceRequirementAssessment.score}
+										</span>
+									</p>
+								{/if}
+								{#if mappingInference.sourceRequirementAssessment.observation}
+									<p class="whitespace
+									-pre-line py-1">
+										<span class="italic">{m.observationSemiColon()}</span>
+										{mappingInference.sourceRequirementAssessment.observation}
+									</p>
+								{/if}
 								{#if mappingInference.annotation}
 									<p class="whitespace-pre-line py-1">
 										<span class="italic">{m.annotationColon()}</span>
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
index c9da5a0f9..9755174b5 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
@@ -327,6 +327,7 @@
 							<i class="fa-solid fa-link" />
 							{m.mappingInference()}
 						</p>
+						<span class="text-xs text-gray-500"><i class="fa-solid fa-circle-info"></i> {m.mappingInferenceHelpText()}</span>
 						<ul class="list-disc ml-4">
 							<li>
 								<p>
@@ -353,6 +354,23 @@
 										{safeTranslate(mappingInference.result)}
 									</span>
 								</p>
+								{#if mappingInference.sourceRequirementAssessment.score}
+									<p class="whitespace-pre-line py-1">
+										<span class="italic">{m.scoreSemiColon()}</span>
+										<span
+											class="badge {classesText} h-fit"
+										>
+											{mappingInference.sourceRequirementAssessment.score}
+										</span>
+									</p>
+								{/if}
+								{#if mappingInference.sourceRequirementAssessment.observation}
+									<p class="whitespace
+									-pre-line py-1">
+										<span class="italic">{m.observationSemiColon()}</span>
+										{mappingInference.sourceRequirementAssessment.observation}
+									</p>
+								{/if}
 								{#if mappingInference.annotation}
 									<p class="whitespace-pre-line py-1">
 										<span class="italic">{m.annotationColon()}</span>

From 8fbb5f2dc17b4fdf6270efe03389297e9aefeac0 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Thu, 21 Nov 2024 11:28:55 +0100
Subject: [PATCH 020/107] chore: format

---
 backend/core/models.py                             |  2 +-
 .../requirement-assessments/[id=uuid]/+page.svelte | 14 ++++++++------
 .../[id=uuid]/edit/+page.svelte                    | 14 ++++++++------
 3 files changed, 17 insertions(+), 13 deletions(-)

diff --git a/backend/core/models.py b/backend/core/models.py
index 80c04dcee..49739f90b 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -2613,7 +2613,7 @@ def compute_requirement_assessments_results(
                         "id": str(ref.id),
                         "coverage": mapping.coverage,
                         "score": ref.score,
-                        "observation": ref.observation
+                        "observation": ref.observation,
                     },
                     # "mappings": [mapping.id for mapping in mappings],
                 }
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
index 584608558..5cf149894 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
@@ -192,7 +192,9 @@
 							<i class="fa-solid fa-link" />
 							{m.mappingInference()}
 						</p>
-						<span class="text-xs text-gray-500"><i class="fa-solid fa-circle-info"></i> {m.mappingInferenceHelpText()}</span>
+						<span class="text-xs text-gray-500"
+							><i class="fa-solid fa-circle-info"></i> {m.mappingInferenceHelpText()}</span
+						>
 						<ul class="list-disc ml-4">
 							<li>
 								<p>
@@ -224,16 +226,16 @@
 								{#if mappingInference.sourceRequirementAssessment.score}
 									<p class="whitespace-pre-line py-1">
 										<span class="italic">{m.scoreSemiColon()}</span>
-										<span
-											class="badge {classesText} h-fit"
-										>
+										<span class="badge {classesText} h-fit">
 											{mappingInference.sourceRequirementAssessment.score}
 										</span>
 									</p>
 								{/if}
 								{#if mappingInference.sourceRequirementAssessment.observation}
-									<p class="whitespace
-									-pre-line py-1">
+									<p
+										class="whitespace
+									-pre-line py-1"
+									>
 										<span class="italic">{m.observationSemiColon()}</span>
 										{mappingInference.sourceRequirementAssessment.observation}
 									</p>
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
index 9755174b5..d8c801152 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
@@ -327,7 +327,9 @@
 							<i class="fa-solid fa-link" />
 							{m.mappingInference()}
 						</p>
-						<span class="text-xs text-gray-500"><i class="fa-solid fa-circle-info"></i> {m.mappingInferenceHelpText()}</span>
+						<span class="text-xs text-gray-500"
+							><i class="fa-solid fa-circle-info"></i> {m.mappingInferenceHelpText()}</span
+						>
 						<ul class="list-disc ml-4">
 							<li>
 								<p>
@@ -357,16 +359,16 @@
 								{#if mappingInference.sourceRequirementAssessment.score}
 									<p class="whitespace-pre-line py-1">
 										<span class="italic">{m.scoreSemiColon()}</span>
-										<span
-											class="badge {classesText} h-fit"
-										>
+										<span class="badge {classesText} h-fit">
 											{mappingInference.sourceRequirementAssessment.score}
 										</span>
 									</p>
 								{/if}
 								{#if mappingInference.sourceRequirementAssessment.observation}
-									<p class="whitespace
-									-pre-line py-1">
+									<p
+										class="whitespace
+									-pre-line py-1"
+									>
 										<span class="italic">{m.observationSemiColon()}</span>
 										{mappingInference.sourceRequirementAssessment.observation}
 									</p>

From b6576d7c245ba2dbafa3d32a3621dd3d10af87a2 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <90701924+Mohamed-Hacene@users.noreply.github.com>
Date: Thu, 21 Nov 2024 11:37:25 +0100
Subject: [PATCH 021/107] =?UTF-8?q?chore:=20update=20translations=20with?=
 =?UTF-8?q?=20Fink=20=F0=9F=90=A6?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 frontend/messages/ar.json | 4 +++-
 frontend/messages/de.json | 4 +++-
 frontend/messages/en.json | 2 +-
 frontend/messages/es.json | 4 +++-
 frontend/messages/fr.json | 4 +++-
 frontend/messages/hi.json | 4 +++-
 frontend/messages/it.json | 4 +++-
 frontend/messages/nl.json | 4 +++-
 frontend/messages/pl.json | 4 +++-
 frontend/messages/pt.json | 4 +++-
 frontend/messages/ro.json | 4 +++-
 frontend/messages/sv.json | 4 +++-
 frontend/messages/ur.json | 4 +++-
 13 files changed, 37 insertions(+), 13 deletions(-)

diff --git a/frontend/messages/ar.json b/frontend/messages/ar.json
index cb07753a8..6ce175daa 100644
--- a/frontend/messages/ar.json
+++ b/frontend/messages/ar.json
@@ -858,5 +858,7 @@
 	"tags": "العلامات",
 	"addTag": "إضافة علامة",
 	"tagsHelpText": "تُستخدم العلامات لتصنيف العناصر وتصفيتها. يمكنك إضافة علامات في قسم \"إضافي\"",
-	"forgotPassword": "هل نسيت كلمة السر"
+	"forgotPassword": "هل نسيت كلمة السر",
+	"scoreSemiColon": "نتيجة:",
+	"mappingInferenceHelpText": "هذه المتغيرات ثابتة ولن تتغير اعتمادًا على المصدر."
 }
diff --git a/frontend/messages/de.json b/frontend/messages/de.json
index b7f339d14..192654b27 100644
--- a/frontend/messages/de.json
+++ b/frontend/messages/de.json
@@ -857,5 +857,7 @@
 	"tags": "Schlagwörter",
 	"addTag": "Tag hinzufügen",
 	"tagsHelpText": "Tags werden zum Kategorisieren und Filtern der Elemente verwendet. Sie können Tags im Abschnitt Extra hinzufügen",
-	"forgotPassword": "Passwort vergessen"
+	"forgotPassword": "Passwort vergessen",
+	"scoreSemiColon": "Punktzahl:",
+	"mappingInferenceHelpText": "Diese Variablen sind fest und ändern sich je nach Quelle nicht."
 }
diff --git a/frontend/messages/en.json b/frontend/messages/en.json
index 4a9082d82..649863755 100644
--- a/frontend/messages/en.json
+++ b/frontend/messages/en.json
@@ -866,5 +866,5 @@
 	"forgotPassword": "Forgot password",
 	"ssoSettingsUpdated": "SSO settings updated",
 	"scoreSemiColon": "Score:",
-	"mappingInferenceHelpText": "These variables are fixed and will not change according to the source requirement"
+	"mappingInferenceHelpText": "These variables are fixed and will not change depending on the source."
 }
diff --git a/frontend/messages/es.json b/frontend/messages/es.json
index ab4e031a1..7583751c0 100644
--- a/frontend/messages/es.json
+++ b/frontend/messages/es.json
@@ -857,5 +857,7 @@
 	"tags": "Etiquetas",
 	"addTag": "Agregar etiqueta",
 	"tagsHelpText": "Las etiquetas se utilizan para categorizar y filtrar los elementos. Puedes agregar etiquetas en la sección Extra",
-	"forgotPassword": "Has olvidado tu contraseña"
+	"forgotPassword": "Has olvidado tu contraseña",
+	"scoreSemiColon": "Puntaje:",
+	"mappingInferenceHelpText": "Estas variables son fijas y no cambiarán dependiendo de la fuente."
 }
diff --git a/frontend/messages/fr.json b/frontend/messages/fr.json
index 64029f31c..df379043d 100644
--- a/frontend/messages/fr.json
+++ b/frontend/messages/fr.json
@@ -864,5 +864,7 @@
 	"existingMeasures": "Mesures existantes",
 	"youCanSetPasswordHere": "Vous pouvez définir votre mot de passe ici",
 	"forgotPassword": "Mot de passe oublié",
-	"ssoSettingsUpdated": "Paramètres SSO mis à jour"
+	"ssoSettingsUpdated": "Paramètres SSO mis à jour",
+	"scoreSemiColon": "Score:",
+	"mappingInferenceHelpText": "Ces variables sont fixes et ne changeront pas en fonction de la source."
 }
diff --git a/frontend/messages/hi.json b/frontend/messages/hi.json
index 46d799ee9..3f1609eae 100644
--- a/frontend/messages/hi.json
+++ b/frontend/messages/hi.json
@@ -857,5 +857,7 @@
 	"tags": "टैग",
 	"addTag": "टैग जोड़ें",
 	"tagsHelpText": "टैग का उपयोग आइटम को वर्गीकृत और फ़िल्टर करने के लिए किया जाता है। आप अतिरिक्त अनुभाग में टैग जोड़ सकते हैं",
-	"forgotPassword": "पासवर्ड भूल गए"
+	"forgotPassword": "पासवर्ड भूल गए",
+	"scoreSemiColon": "अंक:",
+	"mappingInferenceHelpText": "ये चर निश्चित हैं और स्रोत के आधार पर परिवर्तित नहीं होंगे।"
 }
diff --git a/frontend/messages/it.json b/frontend/messages/it.json
index 0f4ce9a0e..0ba84f8a8 100644
--- a/frontend/messages/it.json
+++ b/frontend/messages/it.json
@@ -857,5 +857,7 @@
 	"tags": "Etichette",
 	"addTag": "Aggiungi tag",
 	"tagsHelpText": "I tag vengono utilizzati per categorizzare e filtrare gli elementi. Puoi aggiungere tag nella sezione Extra",
-	"forgotPassword": "Ha dimenticato la password"
+	"forgotPassword": "Ha dimenticato la password",
+	"scoreSemiColon": "Punto:",
+	"mappingInferenceHelpText": "Queste variabili sono fisse e non cambiano a seconda della fonte."
 }
diff --git a/frontend/messages/nl.json b/frontend/messages/nl.json
index adbe6dea2..a71993899 100644
--- a/frontend/messages/nl.json
+++ b/frontend/messages/nl.json
@@ -857,5 +857,7 @@
 	"tags": "Labels",
 	"addTag": "Tag toevoegen",
 	"tagsHelpText": "Tags worden gebruikt om de items te categoriseren en te filteren. U kunt tags toevoegen in de sectie Extra",
-	"forgotPassword": "Wachtwoord vergeten"
+	"forgotPassword": "Wachtwoord vergeten",
+	"scoreSemiColon": "Punt:",
+	"mappingInferenceHelpText": "Deze variabelen zijn vast en veranderen niet, afhankelijk van de bron."
 }
diff --git a/frontend/messages/pl.json b/frontend/messages/pl.json
index 44c357ad4..93de8ea82 100644
--- a/frontend/messages/pl.json
+++ b/frontend/messages/pl.json
@@ -857,5 +857,7 @@
 	"tags": "Tagi",
 	"addTag": "Dodaj tag",
 	"tagsHelpText": "Tagi służą do kategoryzowania i filtrowania elementów. Możesz dodać tagi w sekcji Extra",
-	"forgotPassword": "Zapomniałem hasła"
+	"forgotPassword": "Zapomniałem hasła",
+	"scoreSemiColon": "Wynik:",
+	"mappingInferenceHelpText": "Te zmienne są stałe i nie zmieniają się w zależności od źródła."
 }
diff --git a/frontend/messages/pt.json b/frontend/messages/pt.json
index 4019d7f32..26574841d 100644
--- a/frontend/messages/pt.json
+++ b/frontend/messages/pt.json
@@ -857,5 +857,7 @@
 	"tags": "Etiquetas",
 	"addTag": "Adicionar etiqueta",
 	"tagsHelpText": "As tags são usadas para categorizar e filtrar os itens. Você pode adicionar tags na seção Extra",
-	"forgotPassword": "Esqueceu sua senha"
+	"forgotPassword": "Esqueceu sua senha",
+	"scoreSemiColon": "Pontuação:",
+	"mappingInferenceHelpText": "Essas variáveis são fixas e não mudarão dependendo da fonte."
 }
diff --git a/frontend/messages/ro.json b/frontend/messages/ro.json
index b5a3bf290..df49db0e1 100644
--- a/frontend/messages/ro.json
+++ b/frontend/messages/ro.json
@@ -857,5 +857,7 @@
 	"tags": "Etichete",
 	"addTag": "Adăugați etichetă",
 	"tagsHelpText": "Etichetele sunt folosite pentru a clasifica și filtra articolele. Puteți adăuga etichete în secțiunea Extra",
-	"forgotPassword": "Aţi uitat parola"
+	"forgotPassword": "Aţi uitat parola",
+	"scoreSemiColon": "Scor:",
+	"mappingInferenceHelpText": "Aceste variabile sunt fixe și nu se vor modifica în funcție de sursă."
 }
diff --git a/frontend/messages/sv.json b/frontend/messages/sv.json
index f6dd37618..4dae9785d 100644
--- a/frontend/messages/sv.json
+++ b/frontend/messages/sv.json
@@ -861,5 +861,7 @@
 	"existingMeasures": "Befintliga kontroller",
 	"youCanSetPasswordHere": "Du kan ställa in ditt lösenord här",
 	"forgotPassword": "Glömt lösenord",
-	"ssoSettingsUpdated": "SSO-inställningar uppdaterade"
+	"ssoSettingsUpdated": "SSO-inställningar uppdaterade",
+	"scoreSemiColon": "Göra:",
+	"mappingInferenceHelpText": "Dessa variabler är fasta och kommer inte att ändras beroende på källan."
 }
diff --git a/frontend/messages/ur.json b/frontend/messages/ur.json
index 7b5197f9b..56fb1e1c0 100644
--- a/frontend/messages/ur.json
+++ b/frontend/messages/ur.json
@@ -857,5 +857,7 @@
 	"tags": "ٹیگز",
 	"addTag": "ٹیگ شامل کریں۔",
 	"tagsHelpText": "ٹیگز اشیاء کی درجہ بندی اور فلٹر کرنے کے لیے استعمال ہوتے ہیں۔ آپ اضافی سیکشن میں ٹیگ شامل کر سکتے ہیں۔",
-	"forgotPassword": "پاس ورڈ بھول گئے۔"
+	"forgotPassword": "پاس ورڈ بھول گئے۔",
+	"scoreSemiColon": "سکور:",
+	"mappingInferenceHelpText": "یہ متغیرات طے شدہ ہیں اور ماخذ کے لحاظ سے تبدیل نہیں ہوں گے۔"
 }

From 6e3629fa12b7d51e0ba01b811513e5de908b3e4c Mon Sep 17 00:00:00 2001
From: melinoix <titouan.ameline@gmail.com>
Date: Fri, 22 Nov 2024 11:50:14 +0100
Subject: [PATCH 022/107] correct migration conflicts

---
 ...re.py => 0039_remove_project_internal_reference_and_more.py} | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename backend/core/migrations/{0036_remove_project_internal_reference_and_more.py => 0039_remove_project_internal_reference_and_more.py} (94%)

diff --git a/backend/core/migrations/0036_remove_project_internal_reference_and_more.py b/backend/core/migrations/0039_remove_project_internal_reference_and_more.py
similarity index 94%
rename from backend/core/migrations/0036_remove_project_internal_reference_and_more.py
rename to backend/core/migrations/0039_remove_project_internal_reference_and_more.py
index 20c7b4f2d..58dad0828 100644
--- a/backend/core/migrations/0036_remove_project_internal_reference_and_more.py
+++ b/backend/core/migrations/0039_remove_project_internal_reference_and_more.py
@@ -5,7 +5,7 @@
 
 class Migration(migrations.Migration):
     dependencies = [
-        ("core", "0035_riskscenario_existing_applied_controls"),
+        ("core", "0038_asset_disaster_recovery_objectives_and_more"),
     ]
 
     operations = [

From 75d679538820adf7fc2b41efa61296d482110b81 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Fri, 22 Nov 2024 16:20:14 +0100
Subject: [PATCH 023/107] starting point

---
 .../core/migrations/0039_historicalmetric.py  | 49 ++++++++++++++++
 backend/core/models.py                        | 56 +++++++++++++++++++
 2 files changed, 105 insertions(+)
 create mode 100644 backend/core/migrations/0039_historicalmetric.py

diff --git a/backend/core/migrations/0039_historicalmetric.py b/backend/core/migrations/0039_historicalmetric.py
new file mode 100644
index 000000000..3dc6a94bd
--- /dev/null
+++ b/backend/core/migrations/0039_historicalmetric.py
@@ -0,0 +1,49 @@
+# Generated by Django 5.1.1 on 2024-11-22 14:38
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("core", "0038_asset_disaster_recovery_objectives_and_more"),
+    ]
+
+    operations = [
+        migrations.CreateModel(
+            name="HistoricalMetric",
+            fields=[
+                (
+                    "id",
+                    models.BigAutoField(
+                        auto_created=True,
+                        primary_key=True,
+                        serialize=False,
+                        verbose_name="ID",
+                    ),
+                ),
+                ("date", models.DateField(db_index=True, verbose_name="Date")),
+                ("data", models.JSONField(verbose_name="Historical Data")),
+                ("model", models.TextField(db_index=True, verbose_name="Model")),
+                (
+                    "object_id",
+                    models.UUIDField(db_index=True, verbose_name="Object ID"),
+                ),
+                (
+                    "updated_at",
+                    models.DateTimeField(auto_now=True, verbose_name="Updated at"),
+                ),
+            ],
+            options={
+                "indexes": [
+                    models.Index(
+                        fields=["model", "object_id", "date"],
+                        name="core_histor_model_e05191_idx",
+                    ),
+                    models.Index(
+                        fields=["date", "model"], name="core_histor_date_ddb7df_idx"
+                    ),
+                ],
+                "unique_together": {("model", "object_id", "date")},
+            },
+        ),
+    ]
diff --git a/backend/core/models.py b/backend/core/models.py
index 2421f0d07..99aaa8fa3 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1741,6 +1741,34 @@ class Status(models.TextChoices):
     fields_to_check = ["name"]
 
 
+## historical data
+class HistoricalMetric(models.Model):
+    date = models.DateField(verbose_name=_("Date"), db_index=True)
+    data = models.JSONField(verbose_name=_("Historical Data"))
+    model = models.TextField(verbose_name=_("Model"), db_index=True)
+    object_id = models.UUIDField(verbose_name=_("Object ID"), db_index=True)
+    updated_at = models.DateTimeField(auto_now=True, verbose_name=_("Updated at"))
+
+    class Meta:
+        unique_together = ("model", "object_id", "date")
+        indexes = [
+            models.Index(fields=["model", "object_id", "date"]),
+            models.Index(fields=["date", "model"]),
+        ]
+
+    @classmethod
+    def update_daily_metric(cls, model, object_id, data):
+        """
+        Upsert method to update or create a daily metric. Should be generic enough for other metrics.
+        """
+        return cls.objects.update_or_create(
+            model=model,
+            object_id=object_id,
+            date=now().date(),
+            defaults={"data": data},
+        )
+
+
 ########################### Secondary objects #########################
 
 
@@ -2405,12 +2433,36 @@ class Meta:
         verbose_name = _("Compliance assessment")
         verbose_name_plural = _("Compliance assessments")
 
+    def upsert_daily_metrics(self):
+        per_status = dict()
+        per_result = dict()
+        for item in self.get_requirements_status_count():
+            per_status[item[1]] = item[0]
+
+        for item in self.get_requirements_result_count():
+            per_result[item[1]] = item[0]
+        total = RequirementAssessment.objects.filter(compliance_assessment=self).count()
+        data = {
+            "reqs": {
+                "total": total,
+                "per_status": per_status,
+                "per_result": per_result,
+                "progress_perc": self.progress(),
+                "score": self.get_global_score(),
+            },
+        }
+
+        HistoricalMetric.update_daily_metric(
+            model=self.__class__.__name__, object_id=self.id, data=data
+        )
+
     def save(self, *args, **kwargs) -> None:
         if self.min_score is None:
             self.min_score = self.framework.min_score
             self.max_score = self.framework.max_score
             self.scores_definition = self.framework.scores_definition
         super().save(*args, **kwargs)
+        self.upsert_daily_metrics()
 
     def create_requirement_assessments(
         self, baseline: Self | None = None
@@ -2980,6 +3032,10 @@ class Meta:
         verbose_name = _("Requirement assessment")
         verbose_name_plural = _("Requirement assessments")
 
+    def save(self, *args, **kwargs) -> None:
+        super().save(*args, **kwargs)
+        self.compliance_assessment.upsert_daily_metrics()
+
 
 ########################### RiskAcesptance is a domain object relying on secondary objects #########################
 

From 42c17599187ab27e85d163b5c37e33eb29ac33ba Mon Sep 17 00:00:00 2001
From: Axxiar <galoualexis@gmail.com>
Date: Fri, 22 Nov 2024 18:01:09 +0100
Subject: [PATCH 024/107] chore: serialize urn & parent_urn in requirement
 assessment

---
 backend/core/serializers.py                            |  1 +
 .../[id=uuid]/edit/+page.server.ts                     | 10 ++++------
 2 files changed, 5 insertions(+), 6 deletions(-)

diff --git a/backend/core/serializers.py b/backend/core/serializers.py
index 68e5f8bd5..0020da471 100644
--- a/backend/core/serializers.py
+++ b/backend/core/serializers.py
@@ -613,6 +613,7 @@ class RequirementAssessmentReadSerializer(BaseModelSerializer):
     compliance_assessment = FieldsRelatedField()
     folder = FieldsRelatedField()
     assessable = serializers.BooleanField(source="requirement.assessable")
+    requirement = FieldsRelatedField(["urn", "parent_urn"])
 
     class Meta:
         model = RequirementAssessment
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
index a3fd98236..2be95e97e 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
@@ -29,12 +29,10 @@ export const load = (async ({ fetch, params }) => {
 	}
 
 	const requirementAssessment = await fetchJson(endpoint);
-	const [compliance_assessment_score, requirement] = await Promise.all([
-		fetchJson(
-			`${baseUrl}/compliance-assessments/${requirementAssessment.compliance_assessment.id}/global_score/`
-		),
-		fetchJson(`${baseUrl}/requirement-nodes/${requirementAssessment.requirement}/`)
-	]);
+	const requirement = requirementAssessment.requirement;
+	const compliance_assessment_score = await fetchJson(
+		`${baseUrl}/compliance-assessments/${requirementAssessment.compliance_assessment.id}/global_score/`
+	);
 
 	const parent = await fetchJson(
 		`${baseUrl}/requirement-nodes/?urn=${requirement.parent_urn}`

From d18c0f4f3c32a71f8bbd5aa47f9532085367a1bf Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Fri, 22 Nov 2024 20:18:01 +0100
Subject: [PATCH 025/107] risk assessment tracking

---
 backend/core/models.py | 30 ++++++++++++++++++++++++++++++
 1 file changed, 30 insertions(+)

diff --git a/backend/core/models.py b/backend/core/models.py
index 99aaa8fa3..849a4b4b9 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1836,9 +1836,38 @@ class Meta:
         verbose_name = _("Risk assessment")
         verbose_name_plural = _("Risk assessments")
 
+    def upsert_daily_metrics(self):
+        per_treatment = self.get_per_treatment()
+
+        total = RiskScenario.objects.filter(risk_assessment=self).count()
+        data = {
+            "scenarios": {
+                "total": total,
+                "per_treatment": per_treatment,
+            },
+        }
+
+        HistoricalMetric.update_daily_metric(
+            model=self.__class__.__name__, object_id=self.id, data=data
+        )
+
     def __str__(self) -> str:
         return f"{self.name} - {self.version}"
 
+    def get_per_treatment(self) -> dict:
+        output = dict()
+        for treatment in RiskScenario.TREATMENT_OPTIONS:
+            output[treatment[0]] = (
+                RiskScenario.objects.filter(risk_assessment=self)
+                .filter(treatment=treatment[0])
+                .count()
+            )
+        return output
+
+    def save(self, *args, **kwargs) -> None:
+        super().save(*args, **kwargs)
+        self.upsert_daily_metrics()
+
     @property
     def path_display(self) -> str:
         return f"{self.project.folder}/{self.project}/{self.name} - {self.version}"
@@ -2413,6 +2442,7 @@ def save(self, *args, **kwargs):
         else:
             self.residual_level = -1
         super(RiskScenario, self).save(*args, **kwargs)
+        self.risk_assessment.upsert_daily_metrics()
 
 
 class ComplianceAssessment(Assessment):

From abe3a316434bd10a612fbe0977c64acb32578867 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Fri, 22 Nov 2024 23:07:47 +0100
Subject: [PATCH 026/107] basic graph

---
 .../components/Chart/TimeSeriesChart.svelte   | 89 +++++++++++++++++++
 .../experimental/timeseries/+page.svelte      | 11 +++
 2 files changed, 100 insertions(+)
 create mode 100644 frontend/src/lib/components/Chart/TimeSeriesChart.svelte
 create mode 100644 frontend/src/routes/(app)/(internal)/experimental/timeseries/+page.svelte

diff --git a/frontend/src/lib/components/Chart/TimeSeriesChart.svelte b/frontend/src/lib/components/Chart/TimeSeriesChart.svelte
new file mode 100644
index 000000000..d0a30000f
--- /dev/null
+++ b/frontend/src/lib/components/Chart/TimeSeriesChart.svelte
@@ -0,0 +1,89 @@
+<script lang="ts">
+	import { onMount } from 'svelte';
+
+	export let width = 'w-auto';
+	export let height = 'h-full';
+	export let classesContainer = '';
+	export let title = '';
+	export let name = '';
+	export let timeseries = [];
+	const chart_id = `${name}_div`;
+	onMount(async () => {
+		const echarts = await import('echarts');
+		let chart_t = echarts.init(document.getElementById(chart_id), null, { renderer: 'svg' });
+		// specify chart configuration item and data
+
+		var option = {
+			title: {
+				text: 'Assessment progress'
+			},
+			tooltip: {
+				trigger: 'axis',
+				formatter: function (params) {
+					return (
+						new Date(params[0].value[0]).toLocaleDateString() +
+						'<br/>' +
+						params[0].marker +
+						params[0].seriesName +
+						': ' +
+						params[0].value[1]
+					);
+				}
+			},
+			xAxis: {
+				type: 'time',
+				boundaryGap: false,
+				splitNumber: 3, // Approximate number of splits to show
+				axisPointer: {
+					snap: true
+				}
+			},
+			yAxis: {
+				type: 'value',
+				boundaryGap: [0, '30%']
+			},
+			series: [
+				{
+					name: 'Requirements assessed',
+					type: 'line',
+					areaStyle: {
+						opacity: 1,
+						color: new echarts.graphic.LinearGradient(0, 0, 0, 1, [
+							{
+								offset: 0,
+								color: 'rgb(55, 162, 255)'
+							},
+							{
+								offset: 1,
+								color: 'rgba(55, 162, 255, 0.1)'
+							}
+						])
+					},
+					smooth: true,
+					data: [
+						[new Date('2024-01-01'), 0],
+						[new Date('2024-01-02'), 1],
+						[new Date('2024-01-03'), 4],
+						[new Date('2024-02-15'), 23],
+						[new Date('2024-03-01'), 41],
+						[new Date('2024-03-03'), 51],
+						[new Date('2024-03-10'), 60],
+						[new Date('2024-04-03'), 51]
+					]
+				}
+			]
+		};
+
+		chart_t.setOption(option);
+
+		window.addEventListener('resize', function () {
+			chart_t.resize();
+		});
+	});
+</script>
+
+<div
+	id={chart_id}
+	class="{height} {width} {classesContainer}"
+	style="width: 400px; height:400px;"
+/>
diff --git a/frontend/src/routes/(app)/(internal)/experimental/timeseries/+page.svelte b/frontend/src/routes/(app)/(internal)/experimental/timeseries/+page.svelte
new file mode 100644
index 000000000..5ca69d020
--- /dev/null
+++ b/frontend/src/routes/(app)/(internal)/experimental/timeseries/+page.svelte
@@ -0,0 +1,11 @@
+<script lang="ts">
+	import type { PageData } from './$types';
+	export let data: PageData;
+	import TimeSeriesChart from '$lib/components/Chart/TimeSeriesChart.svelte';
+</script>
+
+<div class="bg-white p-6 shadow flex overflow-x-auto">
+	<div class="w-full h-96">
+		<TimeSeriesChart />
+	</div>
+</div>

From bbc981c6b694ea69de9823b6c4986ac5b5728a02 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Sat, 23 Nov 2024 11:47:13 +0100
Subject: [PATCH 027/107] wip

---
 backend/core/views.py                         | 10 +++++++++
 .../components/Chart/TimeSeriesChart.svelte   | 22 +++++++------------
 2 files changed, 18 insertions(+), 14 deletions(-)

diff --git a/backend/core/views.py b/backend/core/views.py
index 846345235..342739ed9 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -17,6 +17,8 @@
 from pathlib import Path
 import humanize
 
+from icecream import ic
+
 from django.utils.decorators import method_decorator
 from django.views.decorators.cache import cache_page
 from django.views.decorators.vary import vary_on_cookie
@@ -2200,6 +2202,14 @@ def create_suggested_applied_controls(request, pk):
             requirement_assessment.create_applied_controls_from_suggestions()
         return Response(status=status.HTTP_200_OK)
 
+    @action(detail=True, methods=["get"], url_path="progress_ts")
+    def progress_ts(self, request, pk):
+        data = HistoricalMetric.objects.filter(
+            model="ComplianceAssessment", object_id=pk
+        )
+        ic(data)
+        return Response(status=status.HTTP_200_OK)
+
 
 class RequirementAssessmentViewSet(BaseModelViewSet):
     """
diff --git a/frontend/src/lib/components/Chart/TimeSeriesChart.svelte b/frontend/src/lib/components/Chart/TimeSeriesChart.svelte
index d0a30000f..97d77752f 100644
--- a/frontend/src/lib/components/Chart/TimeSeriesChart.svelte
+++ b/frontend/src/lib/components/Chart/TimeSeriesChart.svelte
@@ -14,9 +14,7 @@
 		// specify chart configuration item and data
 
 		var option = {
-			title: {
-				text: 'Assessment progress'
-			},
+			grid: { show: false },
 			tooltip: {
 				trigger: 'axis',
 				formatter: function (params) {
@@ -32,22 +30,23 @@
 			},
 			xAxis: {
 				type: 'time',
-				boundaryGap: false,
-				splitNumber: 3, // Approximate number of splits to show
+				splitNumber: 3,
 				axisPointer: {
 					snap: true
 				}
 			},
 			yAxis: {
 				type: 'value',
-				boundaryGap: [0, '30%']
+				boundaryGap: [0, '5%'],
+				splitLine: { show: false }
 			},
 			series: [
 				{
 					name: 'Requirements assessed',
 					type: 'line',
+					symbol: 'none',
 					areaStyle: {
-						opacity: 1,
+						opacity: 0.8,
 						color: new echarts.graphic.LinearGradient(0, 0, 0, 1, [
 							{
 								offset: 0,
@@ -62,13 +61,8 @@
 					smooth: true,
 					data: [
 						[new Date('2024-01-01'), 0],
-						[new Date('2024-01-02'), 1],
-						[new Date('2024-01-03'), 4],
-						[new Date('2024-02-15'), 23],
-						[new Date('2024-03-01'), 41],
-						[new Date('2024-03-03'), 51],
-						[new Date('2024-03-10'), 60],
-						[new Date('2024-04-03'), 51]
+						[new Date('2024-01-02'), 10],
+						[new Date('2024-01-03'), 14]
 					]
 				}
 			]

From 2fdab93ac973f1f4f89c28d7c2b2a7d507e11f4a Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Sat, 23 Nov 2024 16:19:23 +0100
Subject: [PATCH 028/107] Change project internal reference to ref id in tests
 and interfaces

---
 frontend/src/lib/utils/schemas.ts            | 1 -
 frontend/src/lib/utils/types.ts              | 1 -
 frontend/tests/functional/user-route.test.ts | 2 +-
 frontend/tests/utils/test-utils.ts           | 6 +++---
 4 files changed, 4 insertions(+), 6 deletions(-)

diff --git a/frontend/src/lib/utils/schemas.ts b/frontend/src/lib/utils/schemas.ts
index 03302c90c..0894207d8 100644
--- a/frontend/src/lib/utils/schemas.ts
+++ b/frontend/src/lib/utils/schemas.ts
@@ -70,7 +70,6 @@ export const FolderSchema = baseNamedObject({
 
 export const ProjectSchema = baseNamedObject({
 	folder: z.string(),
-	internal_reference: z.string().optional().nullable(),
 	ref_id: z.string().optional().nullable(),
 	lc_status: z.string().optional().default('in_design')
 });
diff --git a/frontend/src/lib/utils/types.ts b/frontend/src/lib/utils/types.ts
index dde93f1fa..8d11ac1d0 100644
--- a/frontend/src/lib/utils/types.ts
+++ b/frontend/src/lib/utils/types.ts
@@ -99,7 +99,6 @@ export interface Project {
 	is_published: boolean;
 	name: string;
 	description?: string;
-	internal_reference?: string;
 	ref_id?: string;
 	compliance_assessments: Record<string, any>[];
 }
diff --git a/frontend/tests/functional/user-route.test.ts b/frontend/tests/functional/user-route.test.ts
index 21b67d623..cadb1d76b 100644
--- a/frontend/tests/functional/user-route.test.ts
+++ b/frontend/tests/functional/user-route.test.ts
@@ -40,7 +40,7 @@ test('user usual routine actions are working correctly', async ({
 			name: vars.projectName,
 			description: vars.description,
 			folder: vars.folderName,
-			internal_reference: 'Test internal reference',
+			ref_id: 'ref id',
 			lc_status: 'Production'
 		});
 
diff --git a/frontend/tests/utils/test-utils.ts b/frontend/tests/utils/test-utils.ts
index 2f75a780c..478860ad8 100644
--- a/frontend/tests/utils/test-utils.ts
+++ b/frontend/tests/utils/test-utils.ts
@@ -151,7 +151,7 @@ export const test = base.extend<Fixtures>({
 			{ name: 'name', type: type.TEXT },
 			{ name: 'description', type: type.TEXT },
 			{ name: 'folder', type: type.SELECT_AUTOCOMPLETE },
-			{ name: 'internal_reference', type: type.TEXT },
+			{ name: 'ref_id', type: type.TEXT },
 			{ name: 'lc_status', type: type.SELECT }
 		]);
 		await use(pPage);
@@ -375,13 +375,13 @@ export class TestContent {
 					name: vars.projectName,
 					description: vars.description,
 					folder: vars.folderName,
-					internal_reference: 'Test internal reference',
+					ref_id: 'ref id',
 					lc_status: 'Production'
 				},
 				editParams: {
 					name: '',
 					description: '',
-					internal_reference: '',
+					ref_id: '',
 					lc_status: 'End of life'
 				}
 			},

From de46e46d511fe3e2163c0a43adc873a25aadbc98 Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Sat, 23 Nov 2024 16:21:07 +0100
Subject: [PATCH 029/107] Remove internal_reference from
 ProjectViewSet.search_fields

---
 backend/core/views.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/backend/core/views.py b/backend/core/views.py
index cebacce0c..774481bea 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -185,7 +185,7 @@ class ProjectViewSet(BaseModelViewSet):
 
     model = Project
     filterset_fields = ["folder", "lc_status"]
-    search_fields = ["name", "ref_id", "internal_reference", "description"]
+    search_fields = ["name", "ref_id", "description"]
 
     @action(detail=False, name="Get status choices")
     def lc_status(self, request):

From f28a9368da146dff90927f4b3390e7b823b91c53 Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Sat, 23 Nov 2024 16:21:21 +0100
Subject: [PATCH 030/107] Change project internal reference to ref id in data
 model docs

---
 documentation/architecture/data-model.md | 128 +++++++++++++++--------
 1 file changed, 87 insertions(+), 41 deletions(-)

diff --git a/documentation/architecture/data-model.md b/documentation/architecture/data-model.md
index 953f5a932..7ea40fa8c 100644
--- a/documentation/architecture/data-model.md
+++ b/documentation/architecture/data-model.md
@@ -117,7 +117,7 @@ erDiagram
     PROJECT {
         string name
         string description
-        string internal_reference
+        string ref_id
         string status
     }
 
@@ -705,6 +705,7 @@ class RiskScenario {
 ## Global fields
 
 All models have the following fields:
+
 - created_at: the date when the object has been created.
 - modified_at: the date when the object has been lastly modified.
 
@@ -715,11 +716,13 @@ Projects are fundamental context objects defined by the entity using CISO Assist
 The domain is the fundamental perimeter for access control. All objects, in particular domains, within a domain, have consistent access rights. If this granularity is not sufficient, the entity shall define new domains.
 
 Note: the IAM model is based on folders. A folder has a type among:
+
 - ROOT: the root folder, which is also called "global domain".
 - DOMAIN: a user-defined domain.
 - ENCLAVE: a invisible folder used to confine the actions of a third party.
 
 Projects have the following fields:
+
 - Name
 - Description
 - Internal reference
@@ -734,7 +737,7 @@ Assets are of type primary or support. A primary asset has no parent, a support
 ## Frameworks
 
 The fundamental object of CISO Assistant for compliance is the framework. It corresponds to a given standard, e.g. ISO27001:2013. It mainly contains requirements nodes. A requirement node can be assessable or not (e.g. title or informational elements are not assessable). Assessable requirement nodes can be simply called "requirements".
-The structure (tree) of requirements is defined by the requirement node objects. The *parent_urn* of a requirement node can either be the URN of another requirement node or null for top-level objects. This allows to simply define the structure of a framework. An assessable requirement node can be the child of another assessable requirement node, which is very convenient for frameworks that have lists of conditions attached to a requirement.
+The structure (tree) of requirements is defined by the requirement node objects. The _parent_urn_ of a requirement node can either be the URN of another requirement node or null for top-level objects. This allows to simply define the structure of a framework. An assessable requirement node can be the child of another assessable requirement node, which is very convenient for frameworks that have lists of conditions attached to a requirement.
 
 The implementation_groups field contains a comma-separated list of implementation groups where the requirement node is found, when this is relevant (e.g. for CMMC or CIS). Implementation groups are identified by their ref_id string. Implementation groups are independent, a requirement can be member of any implementation group. Implementation groups are defined in the implementation_groups_definition json field (None by default), that contains a list of objects containing the following fields (example for CMMC):
 
@@ -774,7 +777,7 @@ Vulnerabilities are referential objects used to clarify a risk scenario and to f
 
 ## Reference controls
 
-Reference controls are templates for Applied controls. They facilitate the creation of a applied  control, and help to have consistent Applied controls. They are not mandatory to create a applied  control, but recommended.
+Reference controls are templates for Applied controls. They facilitate the creation of a applied control, and help to have consistent Applied controls. They are not mandatory to create a applied control, but recommended.
 
 Reference controls have a category within the following possibilities: --/Policy/Process/Technical/Physical.
 
@@ -784,7 +787,8 @@ Reference controls have a csf_function within the following possibilities: --/Go
 
 Applied controls are fundamental objects for compliance and remediation. They can derive from a reference control, which provides better consistency, or be independent.
 
-A applied  control has the following specific fields:
+A applied control has the following specific fields:
+
 - a category (same as reference controls)
 - a csf_function (same as reference controls)
 - a status (--/planned/active/inactive)
@@ -802,6 +806,7 @@ Costs are measured in a global currency/multiple that is defined in global setti
 ## Compliance and risk assessments
 
 Both types of assessments have common fields:
+
 - a name
 - a description
 - a version (defined by the analyst)
@@ -812,9 +817,9 @@ Both types of assessments have common fields:
 - a list of reviewers
 - a list of user-defined tags
 
-An assessment review can be asked. When at least one principal is defined, the *done* status can only be set if a representant of each principal has reviewed and validated the assessment.
+An assessment review can be asked. When at least one principal is defined, the _done_ status can only be set if a representant of each principal has reviewed and validated the assessment.
 
-When the assessment status goes from *in progress* to *in review*, each defined reviewer is notified of the review request.
+When the assessment status goes from _in progress_ to _in review_, each defined reviewer is notified of the review request.
 A review is deprecated if the assessment is changed. A warning shall be displayed to avoid doing that by error.
 
 The state of a review can be: created/submitted/validated/changes requested/deprecated
@@ -824,11 +829,11 @@ The state of a review can be: created/submitted/validated/changes requested/depr
 When a compliance assessment is created, each requirement of the corresponding framework is linked to a requirement assessment object. To cover a requirement, the assessor shall link it to Applied controls.
 
 Here are the specific fields for requirement assessments:
+
 - result: --/compliant/partially compliant/non-compliant/not applicable
 - score: --/<integer value from min_score to max_score>.
 - a status: (todo/in progress/in review/done) that facilitates reporting.
 
-
 The compliance assessment score is a read-only field which is calculated when at least one requirement assessment is scored. We calculate the average of scored requriement assessments (ignoring requirement assessments with an undefined score or with status not-applicable).
 
 Requirement assessments can have attached evidences. An evidence contains a name, a description, an attached file, a url link.
@@ -841,6 +846,7 @@ For the sake of performance, when a change is done on the selected implementatio
 Note: the selection is persistent, and used in particular for reporting and analytics. The UX could provide dynamic capacity to show or hide implementation groups independently of the selection (e.g. a button "show unselected requirements").
 
 Compliance assessments have a score scale (min_score, max_score, score definition) that is inherited from the corresponding framework. But it is possible during the creation of the assessment to specify another score scale. The following hardcoded score scales are proposed as an alternative:
+
 - percentage (0-100%, no score definition)
 - CMMI (1-5, Initial/Managed/Defined/Quantitatively Managed/Optimizing)
 - 0-5 (0-5, no score definition)
@@ -853,6 +859,7 @@ Requirement mapping sets are referential objects that describe relations between
 A requirement mapping set contains a unique specific attribute in json format called mapping_rules.
 
 A mapping_rules is a list of elements containing:
+
 - a source requirement URN
 - a target requirement URN
 - a rationale giving the explanation for why a Source Document Element and a Target Document Element are related. This will be syntactic, semantic, or functional.
@@ -862,6 +869,7 @@ A mapping_rules is a list of elements containing:
 Requirement mapping rules are used to automatically generate a draft compliance assessment for a target framework, given existing source assessments.
 
 The following inference rules are used:
+
 - there is an order relation in results: compliant > non-compliant minor > non-compliant major
 - N/A or -- in source makes the mapping not usable.
 - when several mappings exist for a target requirement, the strongest inference result is used to determine the compliance result.
@@ -873,9 +881,9 @@ The following inference rules are used:
 
 A risk assessment is based on scenarios, covered by Applied controls. Gathering the risk scenarios constitutes the "risk identification" phase.
 
-A risk assessment has an *risk_assessment_method* field that can take the following values: 0 (risk matrix)/1 (Open FAIR). This cannot be changed once the risk assessment is created. Similarly, the risk matrix cannot be changed once the risk assessment is created.
+A risk assessment has an _risk_assessment_method_ field that can take the following values: 0 (risk matrix)/1 (Open FAIR). This cannot be changed once the risk assessment is created. Similarly, the risk matrix cannot be changed once the risk assessment is created.
 
-To analyse the risk, each scenario contains Existing Controls, current probability and impact, proposed controls, residual probability and impact. To facilitate using an assistant to estimate probability and impact, or for advanced methods like openfair, the json fields *current_risk_vector* and *residual_risk_vector* are aimed at keeping the data used to calculate to the estimation.
+To analyse the risk, each scenario contains Existing Controls, current probability and impact, proposed controls, residual probability and impact. To facilitate using an assistant to estimate probability and impact, or for advanced methods like openfair, the json fields _current_risk_vector_ and _residual_risk_vector_ are aimed at keeping the data used to calculate to the estimation.
 
 A risk scenario contains a treatment option with the values --/open/mitigate/accept/avoid/transfer
 
@@ -895,32 +903,56 @@ The definition JSON field has the following format:
 {
   "type": "risk_matrix",
   "fields": {
-        "probability" : [
-            {"abbreviation": "L", "name": "Low", "description": "Unfrequent event"},
-            {"abbreviation": "M", "name": "Medium", "description": "Occasional event"},
-            {"abbreviation": "H", "name": "High", "description": "Frequent event"}
-        ],
-        "impact": [
-            {"abbreviation": "L", "name": "Low", "description": "<100k$"},
-            {"abbreviation": "M", "name": "Medium", "description": "between 100 to 1000k$"},
-            {"abbreviation": "H", "name": "High", "description": ">1000k$"}
-        ],
-        "risk": [
-            {"abbreviation": "L", "name": "Low", "description": "acceptable risk", "hexcolor": "#00FF00"},
-            {"abbreviation": "M", "name": "Medium", "description": "risk requiring mitigation within 2 years", "hexcolor": "#FFFF00"},
-            {"abbreviation": "H", "name": "High", "description": "unacceptable risk", "hexcolor": "#FF0000"}
-        ],
-        "grid": [
-            [1, 2, 2],
-            [0, 1, 2],
-            [0, 0, 1]]
+    "probability": [
+      { "abbreviation": "L", "name": "Low", "description": "Unfrequent event" },
+      {
+        "abbreviation": "M",
+        "name": "Medium",
+        "description": "Occasional event"
+      },
+      { "abbreviation": "H", "name": "High", "description": "Frequent event" }
+    ],
+    "impact": [
+      { "abbreviation": "L", "name": "Low", "description": "<100k$" },
+      {
+        "abbreviation": "M",
+        "name": "Medium",
+        "description": "between 100 to 1000k$"
+      },
+      { "abbreviation": "H", "name": "High", "description": ">1000k$" }
+    ],
+    "risk": [
+      {
+        "abbreviation": "L",
+        "name": "Low",
+        "description": "acceptable risk",
+        "hexcolor": "#00FF00"
+      },
+      {
+        "abbreviation": "M",
+        "name": "Medium",
+        "description": "risk requiring mitigation within 2 years",
+        "hexcolor": "#FFFF00"
+      },
+      {
+        "abbreviation": "H",
+        "name": "High",
+        "description": "unacceptable risk",
+        "hexcolor": "#FF0000"
+      }
+    ],
+    "grid": [
+      [1, 2, 2],
+      [0, 1, 2],
+      [0, 0, 1]
+    ]
   }
 }
 ```
 
 ## Risk acceptance
 
-A risk acceptance can be asked on a list of scenarios that are part of validated risk assessments (assessment in the *done* state with at least one reviewer). It is directed to an approver that should be the risk owner.
+A risk acceptance can be asked on a list of scenarios that are part of validated risk assessments (assessment in the _done_ state with at least one reviewer). It is directed to an approver that should be the risk owner.
 
 The state of a risk acceptance can be: created/submitted/accepted/rejected/revoked
 
@@ -931,6 +963,7 @@ Once a risk acceptance is active, the correponding risk assessments are frozen.
 ## Libraries
 
 Libraries can contain:
+
 - frameworks (including requirement nodes)
 - threats
 - vulnerabilities
@@ -947,10 +980,10 @@ Libraries have a URN to uniquely identify them.
 Libraries have a locale that describes the main locale for the whole content of the library.
 
 Libraries have an integer version that completes the URN. The highest version for a given URN shall always be privileged. So:
+
 - a library loading is performed if and only if there is no greater or equal version already loaded, for the same urn.
 - if a breaking change is necessary, the URN should be changed.
 
-
 Libraries have a provider (which entity produced the original content), and a packager (which entity did the library). Objects in the library inherit their provider from the library's.
 
 Libraries can depend on other libraries, thanks to the "dependencies" section, that contains a list of URNs. When loading a library, CISO Assistant first loads the dependent libraries. If a dependency is missing, the loading is cancelled.
@@ -964,7 +997,8 @@ Deleting a library is possible only if none of its objects is currently used. Re
 Frameworks (including requirement nodes), mappings, threats, vulnerabilities, reference controls and risk matrices are called "referential objects", as they constitute the basis of an assessment.
 
 Referential objects can be downloaded from a library. They are called "global referential objects" or "library objects" in that case, and they have the following characteristics:
-- they have a non-null URN identifier *urn* of the form: ```urn:intuitem:<domain>:<object_type>:[<framework>:]<short_id>```. Client-defined URNs are also possible. The framework part is present for items that are part of a framework.
+
+- they have a non-null URN identifier _urn_ of the form: `urn:intuitem:<domain>:<object_type>:[<framework>:]<short_id>`. Client-defined URNs are also possible. The framework part is present for items that are part of a framework.
 - they are read-only in the database once imported. They can be removed only by removing the corresponding library.
 - they are attached to the root folder.
 - Everyone has the right to read them, they are "published" to all domains.
@@ -972,11 +1006,13 @@ Referential objects can be downloaded from a library. They are called "global re
 - They have a link to their library.
 
 Conversely, a referential object with a null URN is called a "local referential object" has the following characteristics:
+
 - it is created by a user in a given domain (not in the root folder)
 - it can be edited with proper permission.
 - The URN cannot be edited and is hidden.
 
 Referential objects have the following optional fields:
+
 - ref_id: reference used in the standard for this object (e.g. A.5.5).
 - annotation: provided by the library packager or the user to clarify the meaning of the object. They can be used for search, and are displayed when available.
 - provider: describes where the object comes from, e.g. ISO, NIST, CIS, MITRE ATT&CK...
@@ -994,9 +1030,10 @@ The library_manager role will be defined to manage library objects.
 
 ## Referential objects translation
 
-Referential objects translations are contained inside a JSON called previously *translations*. The translation takes place directly inside the yaml at the point where the object is defined.
+Referential objects translations are contained inside a JSON called previously _translations_. The translation takes place directly inside the yaml at the point where the object is defined.
 
 Example:
+
 ```yaml
 {
     - urn: urn:intuitem:risk:req_node:iso27001-2022:4
@@ -1013,9 +1050,10 @@ Example:
 }
 ```
 
-Everything in the library can be translated, from the library itself to the the last object. To specify that the library is available in a language other than the default one, *translations* field has to be filled for the language(s) concerned.
+Everything in the library can be translated, from the library itself to the the last object. To specify that the library is available in a language other than the default one, _translations_ field has to be filled for the language(s) concerned.
 
 Example:
+
 ```yaml
 {
     urn: urn:intuitem:risk:library:iso27001-2022
@@ -1047,6 +1085,7 @@ All objects in CISO Assistant follow a simple and consistent RBAC IAM model, inc
 There are two dimensions: rights and perimeter.
 
 There granularity of rights is mapped on Django convention:
+
 - Add
 - View
 - Change
@@ -1059,6 +1098,7 @@ Practically, the Add, Change or Delete permissions require the View permission.
 The perimeter for access control is based on the folder concept, with all its content, including subfolders. Boolean parameters allow a finer-grain definition of the perimeter, as will be seen later.
 
 Practically, the perimeter is either:
+
 - global, corresponding to the root folder
 - a domain, corresponding to a folder of level 1.
 
@@ -1067,18 +1107,19 @@ Practically, the perimeter is either:
 For Access Control purpose, CISO Assistant data is organized in a tree of folders, starting from a root folder. The organization of the tree is not hardcoded, it is entirely determined by configuration. Any object in CISO Assistant is attached to a folder (including folders), either directly or indirectly through a parent object that is attached to a folder. The root folder is attached to None.
 
 A folder contains the following attributes:
+
 - name: the short name given to the folder
 - description: a longer description of the folder
 - contentType: an enum representing the type of content. Currently GLOBAL and DOMAIN. This parameter is aimed at adjusting the UI depending of the type of content.
 - folder: the parent folder. None for root folder.
 
 Currently, the folder organization is as follows:
+
 - The root folder has contentType=GLOBAL.
 - The root folder can only contain referential objects.
 - There is only one level of subfolders, each subfolder with contentType=DOMAIN.
 - Folders are not displayed as such, they are visible only to the programmer.
 
-
 ### Roles and role assignments
 
 To simplify access control, we use a RBAC model.
@@ -1093,14 +1134,15 @@ To simplify access control, we use a RBAC model.
 | Risk approver       | like reader, but with additional capability to approve risk acceptances                                                           |
 | Reviewer            | like reader, but with additional capability to review assessments.                                                                |
 
-
 Note: a DJANGO superuser is given administrator rights automatically on startup.
 
 Principals are either:
+
 - users
 - group of users
 
 Role assignements are described as a table containing the following attributes:
+
 - user: the user that receives the role assignment (can be None)
 - user_group: the group that receives the role assignment (can be None)
 - role: the role assigned to the principal
@@ -1135,6 +1177,7 @@ The goal of Third-Party Risk Management is to manage the risk incurred by a prov
 ### Retained approach
 
 The following approach has been retained:
+
 - An "entity" model is added to modelize third parties in a generic way.
 - A third party is an entity that is provider of the entity representing the client using CISO Assistant.
 - An evaluation of a third party is based on a compliance assessment, to leverage a huge amount of existing models and code.
@@ -1246,6 +1289,7 @@ erDiagram
 #### Entity
 
 An entity represents a legal entity, a corporate body, an administrative body, an association. An entity can be:
+
 - the main subject for the current CISO Assistant instance ("main entity").
 - a subisdiary of another entity.
 - a provider of another entity.
@@ -1265,11 +1309,12 @@ An entity assessment is based on a questionnaire/compliance assessment, and/or o
 Typically, the main entity can use the requirement group selector to tailor the questionnaire before sending it to the third-party, then a self-assessment is done by the provider, then a review is done by the main entity.
 
 An entity assessment has the following specific fields:
-  - conclusion: --|blocker|warning|ok|N/A
-  - penetration: as defined by ebios RM
-  - dependency: as defined by ebios RM
-  - maturity: as defined by ebios RM
-  - trust: as defined by ebios RM
+
+- conclusion: --|blocker|warning|ok|N/A
+- penetration: as defined by ebios RM
+- dependency: as defined by ebios RM
+- maturity: as defined by ebios RM
+- trust: as defined by ebios RM
 
 #### Solution
 
@@ -1309,7 +1354,7 @@ There is no link between representatives (modeling of the ecosystem) and users o
 - Add a "contract" category
 - Add a foreign key "contract" to point to a contract
 
-The foreign key contract shall be non-null only if the category is set to  "contract". The UX shall reflect this constraint.
+The foreign key contract shall be non-null only if the category is set to "contract". The UX shall reflect this constraint.
 
 Note: in the future, we will use the same approach for policies.
 
@@ -1318,6 +1363,7 @@ Note: in the future, we will use the same approach for policies.
 The format for question and answer json fields will evolve over time. The initial format is the following:
 
 - question:
+
 ```json
 {
     "question": {

From 2e9da4793fdf7335e5ac2e61bdbdcd7ee0c4ac87 Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Sat, 23 Nov 2024 17:56:33 +0100
Subject: [PATCH 031/107] Fix ref id field title functional test

---
 frontend/tests/utils/page-detail.ts | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/frontend/tests/utils/page-detail.ts b/frontend/tests/utils/page-detail.ts
index 91d0a30fa..f252621db 100644
--- a/frontend/tests/utils/page-detail.ts
+++ b/frontend/tests/utils/page-detail.ts
@@ -28,7 +28,7 @@ export class PageDetail extends BasePage {
 		await this.hasTitle('Edit ' + this.item);
 		await this.hasBreadcrumbPath(['Edit'], false);
 
-		let editedValues: { [k: string]: string } = {};
+		const editedValues: { [k: string]: string } = {};
 		for (const key in editParams) {
 			editedValues[key] = editParams[key] === '' ? buildParams[key] + ' edited' : editParams[key];
 		}
@@ -78,6 +78,10 @@ export class PageDetail extends BasePage {
 						await expect
 							.soft(this.page.getByTestId(key.replaceAll('_', '-') + '-field-title'))
 							.toHaveText(new RegExp('domain'.replaceAll('_', ' '), 'i'));
+					} else if (key === 'ref_id') {
+						await expect
+							.soft(this.page.getByTestId(key.replaceAll('_', '-') + '-field-title'))
+							.toHaveText('Reference ID');
 					} else {
 						await expect
 							.soft(this.page.getByTestId(key.replaceAll('_', '-') + '-field-title'))

From 8db7e64c3ad5972e1b402a5b4a740e299c2736a5 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Sat, 23 Nov 2024 19:10:32 +0100
Subject: [PATCH 032/107] wip

---
 backend/core/views.py                         | 27 +++++++++++++++----
 .../components/Chart/TimeSeriesChart.svelte   |  5 ++--
 2 files changed, 24 insertions(+), 8 deletions(-)

diff --git a/backend/core/views.py b/backend/core/views.py
index 342739ed9..e6030ca6b 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -2204,11 +2204,28 @@ def create_suggested_applied_controls(request, pk):
 
     @action(detail=True, methods=["get"], url_path="progress_ts")
     def progress_ts(self, request, pk):
-        data = HistoricalMetric.objects.filter(
-            model="ComplianceAssessment", object_id=pk
-        )
-        ic(data)
-        return Response(status=status.HTTP_200_OK)
+        try:
+            raw = (
+                HistoricalMetric.objects.filter(
+                    model="ComplianceAssessment", object_id=pk
+                )
+                .annotate(progress=F("data__reqs__progress_perc"))
+                .values("date", "progress")
+                .order_by("date")
+            )
+
+            # Transform the data into the required format
+            formatted_data = [
+                [entry["date"].isoformat(), entry["progress"]] for entry in raw
+            ]
+
+            return Response({"data": formatted_data})
+
+        except HistoricalMetric.DoesNotExist:
+            return Response(
+                {"error": "No metrics found for this assessment"},
+                status=status.HTTP_404_NOT_FOUND,
+            )
 
 
 class RequirementAssessmentViewSet(BaseModelViewSet):
diff --git a/frontend/src/lib/components/Chart/TimeSeriesChart.svelte b/frontend/src/lib/components/Chart/TimeSeriesChart.svelte
index 97d77752f..30f53a76d 100644
--- a/frontend/src/lib/components/Chart/TimeSeriesChart.svelte
+++ b/frontend/src/lib/components/Chart/TimeSeriesChart.svelte
@@ -60,9 +60,8 @@
 					},
 					smooth: true,
 					data: [
-						[new Date('2024-01-01'), 0],
-						[new Date('2024-01-02'), 10],
-						[new Date('2024-01-03'), 14]
+						['2024-11-22', 36],
+						['2024-11-23', 37]
 					]
 				}
 			]

From edd2c9b3dcf6d9e8b43cca8b617a09551a6ed1a4 Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Sat, 23 Nov 2024 19:16:08 +0100
Subject: [PATCH 033/107] Change test value for project's ref id

---
 frontend/tests/functional/user-route.test.ts | 2 +-
 frontend/tests/utils/test-utils.ts           | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/frontend/tests/functional/user-route.test.ts b/frontend/tests/functional/user-route.test.ts
index cadb1d76b..77afaba71 100644
--- a/frontend/tests/functional/user-route.test.ts
+++ b/frontend/tests/functional/user-route.test.ts
@@ -40,7 +40,7 @@ test('user usual routine actions are working correctly', async ({
 			name: vars.projectName,
 			description: vars.description,
 			folder: vars.folderName,
-			ref_id: 'ref id',
+			ref_id: 'R.1234',
 			lc_status: 'Production'
 		});
 
diff --git a/frontend/tests/utils/test-utils.ts b/frontend/tests/utils/test-utils.ts
index 478860ad8..2e54bbdcf 100644
--- a/frontend/tests/utils/test-utils.ts
+++ b/frontend/tests/utils/test-utils.ts
@@ -375,7 +375,7 @@ export class TestContent {
 					name: vars.projectName,
 					description: vars.description,
 					folder: vars.folderName,
-					ref_id: 'ref id',
+					ref_id: 'R.1234',
 					lc_status: 'Production'
 				},
 				editParams: {

From c275730ccfb67ced0c91c03f4735ffed6e10cb11 Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Mon, 25 Nov 2024 13:59:41 +0100
Subject: [PATCH 034/107] Fix migration conflict

---
 ... => 0041_add_ref_id_to_project_appliedcontrol_assessment.py} | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename backend/core/migrations/{0039_remove_project_internal_reference_and_more.py => 0041_add_ref_id_to_project_appliedcontrol_assessment.py} (94%)

diff --git a/backend/core/migrations/0039_remove_project_internal_reference_and_more.py b/backend/core/migrations/0041_add_ref_id_to_project_appliedcontrol_assessment.py
similarity index 94%
rename from backend/core/migrations/0039_remove_project_internal_reference_and_more.py
rename to backend/core/migrations/0041_add_ref_id_to_project_appliedcontrol_assessment.py
index 58dad0828..f5ea2f3ac 100644
--- a/backend/core/migrations/0039_remove_project_internal_reference_and_more.py
+++ b/backend/core/migrations/0041_add_ref_id_to_project_appliedcontrol_assessment.py
@@ -5,7 +5,7 @@
 
 class Migration(migrations.Migration):
     dependencies = [
-        ("core", "0038_asset_disaster_recovery_objectives_and_more"),
+        ("core", "0040_riskscenario_ref_id"),
     ]
 
     operations = [

From a51419d55c21a141014c6d6dc30c046deca09133 Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Mon, 25 Nov 2024 14:00:01 +0100
Subject: [PATCH 035/107] Add ref_id field to applied control detail view

---
 frontend/src/lib/utils/crud.ts | 1 +
 1 file changed, 1 insertion(+)

diff --git a/frontend/src/lib/utils/crud.ts b/frontend/src/lib/utils/crud.ts
index e9796ebfa..5dd599252 100644
--- a/frontend/src/lib/utils/crud.ts
+++ b/frontend/src/lib/utils/crud.ts
@@ -249,6 +249,7 @@ export const URL_MODEL_MAP: ModelMap = {
 			{ field: 'status' },
 			{ field: 'created_at', type: 'datetime' },
 			{ field: 'updated_at', type: 'datetime' },
+			{ field: 'ref_id' },
 			{ field: 'name' },
 			{ field: 'description' },
 			{ field: 'eta', type: 'date' },

From fd82eb3068f603cf82148e1c8fb1ea2fc50fe011 Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Mon, 25 Nov 2024 14:00:22 +0100
Subject: [PATCH 036/107] Change reference to reference id in table headers

---
 frontend/src/lib/utils/table.ts | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/frontend/src/lib/utils/table.ts b/frontend/src/lib/utils/table.ts
index 44976bcb4..a893c1496 100644
--- a/frontend/src/lib/utils/table.ts
+++ b/frontend/src/lib/utils/table.ts
@@ -290,7 +290,7 @@ export const listViewFields: ListViewFieldsConfig = {
 		}
 	},
 	threats: {
-		head: ['ref', 'name', 'description', 'provider', 'domain'],
+		head: ['ref_id', 'name', 'description', 'provider', 'domain'],
 		body: ['ref_id', 'name', 'description', 'provider', 'folder'],
 		meta: ['id', 'urn'],
 		filters: {
@@ -381,7 +381,7 @@ export const listViewFields: ListViewFieldsConfig = {
 		}
 	},
 	'reference-controls': {
-		head: ['ref', 'name', 'description', 'category', 'csfFunction', 'provider', 'domain'],
+		head: ['ref_id', 'name', 'description', 'category', 'csfFunction', 'provider', 'domain'],
 		body: ['ref_id', 'name', 'description', 'category', 'csf_function', 'provider', 'folder'],
 		meta: ['id', 'urn'],
 		filters: {
@@ -464,7 +464,7 @@ export const listViewFields: ListViewFieldsConfig = {
 		}
 	},
 	requirements: {
-		head: ['ref', 'name', 'description', 'framework'],
+		head: ['ref_id', 'name', 'description', 'framework'],
 		body: ['ref_id', 'name', 'description', 'framework'],
 		meta: ['id', 'urn']
 	},

From 7c75633cebb17a0313736bb8592cc4788bdcfbd6 Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Mon, 25 Nov 2024 14:03:29 +0100
Subject: [PATCH 037/107] Add ref_id field to risk assessment detail view

---
 .../(internal)/risk-assessments/[id=uuid]/+page.svelte      | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/frontend/src/routes/(app)/(internal)/risk-assessments/[id=uuid]/+page.svelte b/frontend/src/routes/(app)/(internal)/risk-assessments/[id=uuid]/+page.svelte
index 826f7bbbf..2991b77fc 100644
--- a/frontend/src/routes/(app)/(internal)/risk-assessments/[id=uuid]/+page.svelte
+++ b/frontend/src/routes/(app)/(internal)/risk-assessments/[id=uuid]/+page.svelte
@@ -162,9 +162,13 @@
 				<br />
 				<div class="text-sm">
 					<ul>
+						<li class="pb-1">
+							<span class="font-semibold">{m.refId()}:</span>
+							{risk_assessment.ref_id ?? '--'}
+						</li>
 						<li class="pb-1">
 							<span class="font-semibold">{m.status()}:</span>
-							{risk_assessment.status === null ? '--' : safeTranslate(risk_assessment.status)}
+							{risk_assessment.status === null ? '--' : safetranslate(risk_assessment.status)}
 						</li>
 						<li class="pb-1">
 							<span class="font-semibold">{m.authors()}:</span>

From 85826c0b55fd637b53b52d4da15be32ecf4e8175 Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Mon, 25 Nov 2024 14:08:15 +0100
Subject: [PATCH 038/107] Simplify risk assessment detail view

---
 .../risk-assessments/[id=uuid]/+page.svelte     | 17 ++++++++---------
 1 file changed, 8 insertions(+), 9 deletions(-)

diff --git a/frontend/src/routes/(app)/(internal)/risk-assessments/[id=uuid]/+page.svelte b/frontend/src/routes/(app)/(internal)/risk-assessments/[id=uuid]/+page.svelte
index 2991b77fc..dd3deffbb 100644
--- a/frontend/src/routes/(app)/(internal)/risk-assessments/[id=uuid]/+page.svelte
+++ b/frontend/src/routes/(app)/(internal)/risk-assessments/[id=uuid]/+page.svelte
@@ -19,7 +19,6 @@
 	import RiskScenarioItem from '$lib/components/RiskMatrix/RiskScenarioItem.svelte';
 	import * as m from '$paraglide/messages';
 	import { languageTag } from '$paraglide/runtime';
-	import { toCamelCase } from '$lib/utils/locales.js';
 	import { safeTranslate } from '$lib/utils/i18n.js';
 
 	export let data;
@@ -161,16 +160,16 @@
 				</div>
 				<br />
 				<div class="text-sm">
-					<ul>
-						<li class="pb-1">
+					<ul class="leading-loose">
+						<li>
 							<span class="font-semibold">{m.refId()}:</span>
 							{risk_assessment.ref_id ?? '--'}
 						</li>
-						<li class="pb-1">
+						<li>
 							<span class="font-semibold">{m.status()}:</span>
-							{risk_assessment.status === null ? '--' : safetranslate(risk_assessment.status)}
+							{!risk_assessment.status ? '--' : safeTranslate(risk_assessment.status)}
 						</li>
-						<li class="pb-1">
+						<li>
 							<span class="font-semibold">{m.authors()}:</span>
 							<ul>
 								{#each risk_assessment.authors as author}
@@ -178,11 +177,11 @@
 								{/each}
 							</ul>
 						</li>
-						<li class="pb-1">
+						<li>
 							<span class="font-semibold">{m.createdAt()}:</span>
 							{new Date(risk_assessment.created_at).toLocaleString(languageTag())}
 						</li>
-						<li class="pb-1">
+						<li>
 							<span class="font-semibold">{m.updatedAt()}:</span>
 							{new Date(risk_assessment.updated_at).toLocaleString(languageTag())}
 						</li>
@@ -204,7 +203,7 @@
 					>
 				</div>
 				<div class="text-sm" data-testid="description-field-value">
-					{risk_assessment.description ?? '-'}
+					{risk_assessment.description ?? '--'}
 				</div>
 			</div>
 			<div class="flex flex-col space-y-2 ml-4">

From 0713bc844780b53d5e2eb27914ab9931791542ff Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Mon, 25 Nov 2024 14:11:48 +0100
Subject: [PATCH 039/107] Add ref_id field to audit detail view

---
 .../(third-party)/compliance-assessments/[id=uuid]/+page.svelte | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/frontend/src/routes/(app)/(third-party)/compliance-assessments/[id=uuid]/+page.svelte b/frontend/src/routes/(app)/(third-party)/compliance-assessments/[id=uuid]/+page.svelte
index 553aba375..08de6333b 100644
--- a/frontend/src/routes/(app)/(third-party)/compliance-assessments/[id=uuid]/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/compliance-assessments/[id=uuid]/+page.svelte
@@ -204,7 +204,7 @@
 <div class="flex flex-col space-y-4 whitespace-pre-line">
 	<div class="card px-6 py-4 bg-white flex flex-row justify-between shadow-lg w-full">
 		<div class="flex flex-col space-y-2 whitespace-pre-line w-1/5 pr-1">
-			{#each Object.entries(data.compliance_assessment).filter( ([key, _]) => ['name', 'description', 'project', 'framework', 'authors', 'reviewers', 'status', 'selected_implementation_groups'].includes(key) ) as [key, value]}
+			{#each Object.entries(data.compliance_assessment).filter( ([key, _]) => ['ref_id', 'name', 'description', 'project', 'framework', 'authors', 'reviewers', 'status', 'selected_implementation_groups'].includes(key) ) as [key, value]}
 				<div class="flex flex-col">
 					<div
 						class="text-sm font-medium text-gray-800 capitalize-first"

From eaf6436bf2c5dcd2cfc5f223f3db4718d43ef686 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Mon, 25 Nov 2024 14:14:55 +0100
Subject: [PATCH 040/107] feat: copy score and observation for full coverage

---
 backend/core/models.py                        | 66 +++++++++++++------
 .../[id=uuid]/+page.svelte                    | 17 -----
 .../[id=uuid]/edit/+page.svelte               | 17 -----
 3 files changed, 45 insertions(+), 55 deletions(-)

diff --git a/backend/core/models.py b/backend/core/models.py
index 49739f90b..33105d301 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -2568,56 +2568,77 @@ def compute_requirement_assessments_results(
             RequirementAssessment.Result.PARTIALLY_COMPLIANT,
             RequirementAssessment.Result.COMPLIANT,
         )
+
+        def assign_attributes(target, attributes):
+            """
+            Helper function to assign attributes to a target object.
+            Only assigns if the attribute is not None.
+            """
+            keys = ["result", "status", "score", "is_scored", "observation"]
+            for key, value in zip(keys, attributes):
+                if value is not None:
+                    setattr(target, key, value)
+
         for requirement_assessment in self.requirement_assessments.all():
             mappings = mapping_set.mappings.filter(
                 target_requirement=requirement_assessment.requirement
             )
             inferences = []
             refs = []
+
+            # Filter for full coverage relationships if applicable
             if mappings.filter(
                 relationship__in=RequirementMapping.FULL_COVERAGE_RELATIONSHIPS
             ).exists():
                 mappings = mappings.filter(
                     relationship__in=RequirementMapping.FULL_COVERAGE_RELATIONSHIPS
                 )
+
             for mapping in mappings:
                 source_requirement_assessment = RequirementAssessment.objects.get(
                     compliance_assessment=source_assessment,
                     requirement=mapping.source_requirement,
                 )
-                inferred_result, inferred_status = requirement_assessment.infer_result(
+                inferred_result = requirement_assessment.infer_result(
                     mapping=mapping,
                     source_requirement_assessment=source_requirement_assessment,
                 )
-                if inferred_result in result_order:
-                    inferences.append((inferred_result, inferred_status))
+                if inferred_result.get("result") in result_order:
+                    inferences.append(
+                        (
+                            inferred_result.get("result"),
+                            inferred_result.get("status"),
+                            inferred_result.get("score"),
+                            inferred_result.get("is_scored"),
+                            inferred_result.get("observation"),
+                        )
+                    )
                     refs.append(source_requirement_assessment)
+
             if inferences:
                 if len(inferences) == 1:
-                    requirement_assessment.result = inferences[0][0]
-                    if inferences[0][1]:
-                        requirement_assessment.status = inferences[0][1]
+                    selected_inference = inferences[0]
                     ref = refs[0]
                 else:
-                    lowest_result = min(
+                    selected_inference = min(
                         inferences, key=lambda x: result_order.index(x[0])
                     )
-                    requirement_assessment.result = lowest_result[0]
-                    if lowest_result[1]:
-                        requirement_assessment.status = lowest_result[1]
-                    ref = refs[inferences.index(lowest_result)]
+                    ref = refs[inferences.index(selected_inference)]
+
+                assign_attributes(requirement_assessment, selected_inference)
+
                 requirement_assessment.mapping_inference = {
                     "result": requirement_assessment.result,
                     "source_requirement_assessment": {
                         "str": str(ref),
                         "id": str(ref.id),
                         "coverage": mapping.coverage,
-                        "score": ref.score,
-                        "observation": ref.observation,
                     },
                     # "mappings": [mapping.id for mapping in mappings],
                 }
+
                 requirement_assessments.append(requirement_assessment)
+
         return requirement_assessments
 
     def progress(self) -> int:
@@ -2715,24 +2736,27 @@ def get_requirement_description(self) -> str:
 
     def infer_result(
         self, mapping: RequirementMapping, source_requirement_assessment: Self
-    ) -> str | None:
+    ) -> dict | None:
         if mapping.coverage == RequirementMapping.Coverage.FULL:
-            return (
-                source_requirement_assessment.result,
-                source_requirement_assessment.status,
-            )
+            return {
+                "result": source_requirement_assessment.result,
+                "status": source_requirement_assessment.status,
+                "score": source_requirement_assessment.score,
+                "is_scored": source_requirement_assessment.is_scored,
+                "observation": source_requirement_assessment.observation,
+            }
         if mapping.coverage == RequirementMapping.Coverage.PARTIAL:
             if source_requirement_assessment.result in (
                 RequirementAssessment.Result.COMPLIANT,
                 RequirementAssessment.Result.PARTIALLY_COMPLIANT,
             ):
-                return (RequirementAssessment.Result.PARTIALLY_COMPLIANT, None)
+                return {"result": RequirementAssessment.Result.PARTIALLY_COMPLIANT}
             if (
                 source_requirement_assessment.result
                 == RequirementAssessment.Result.NON_COMPLIANT
             ):
-                return (RequirementAssessment.Result.NON_COMPLIANT, None)
-        return (None, None)
+                return {"result": RequirementAssessment.Result.NON_COMPLIANT}
+        return {}
 
     def create_applied_controls_from_suggestions(self) -> list[AppliedControl]:
         applied_controls: list[AppliedControl] = []
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
index 5cf149894..f93a8e3fc 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
@@ -223,23 +223,6 @@
 										{safeTranslate(mappingInference.result)}
 									</span>
 								</p>
-								{#if mappingInference.sourceRequirementAssessment.score}
-									<p class="whitespace-pre-line py-1">
-										<span class="italic">{m.scoreSemiColon()}</span>
-										<span class="badge {classesText} h-fit">
-											{mappingInference.sourceRequirementAssessment.score}
-										</span>
-									</p>
-								{/if}
-								{#if mappingInference.sourceRequirementAssessment.observation}
-									<p
-										class="whitespace
-									-pre-line py-1"
-									>
-										<span class="italic">{m.observationSemiColon()}</span>
-										{mappingInference.sourceRequirementAssessment.observation}
-									</p>
-								{/if}
 								{#if mappingInference.annotation}
 									<p class="whitespace-pre-line py-1">
 										<span class="italic">{m.annotationColon()}</span>
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
index d8c801152..38a1039ea 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
@@ -356,23 +356,6 @@
 										{safeTranslate(mappingInference.result)}
 									</span>
 								</p>
-								{#if mappingInference.sourceRequirementAssessment.score}
-									<p class="whitespace-pre-line py-1">
-										<span class="italic">{m.scoreSemiColon()}</span>
-										<span class="badge {classesText} h-fit">
-											{mappingInference.sourceRequirementAssessment.score}
-										</span>
-									</p>
-								{/if}
-								{#if mappingInference.sourceRequirementAssessment.observation}
-									<p
-										class="whitespace
-									-pre-line py-1"
-									>
-										<span class="italic">{m.observationSemiColon()}</span>
-										{mappingInference.sourceRequirementAssessment.observation}
-									</p>
-								{/if}
 								{#if mappingInference.annotation}
 									<p class="whitespace-pre-line py-1">
 										<span class="italic">{m.annotationColon()}</span>

From 0db4d10c1dbdfe36b4375f6ecba1c36d12f1abd6 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Mon, 25 Nov 2024 15:54:52 +0100
Subject: [PATCH 041/107] feat: add community update script

---
 update-ciso-assistant.sh | 61 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 61 insertions(+)
 create mode 100755 update-ciso-assistant.sh

diff --git a/update-ciso-assistant.sh b/update-ciso-assistant.sh
new file mode 100755
index 000000000..354dbe958
--- /dev/null
+++ b/update-ciso-assistant.sh
@@ -0,0 +1,61 @@
+#!/bin/bash
+
+# Script to update Docker images for CISO Assistant (always using 'latest')
+
+# Variables
+DB_FILE="db/ciso-assistant.sqlite3"
+BACKUP_FILE="ciso-assistant-backup.sqlite3"
+BACKEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/backend:latest"
+FRONTEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/frontend:latest"
+
+echo "Using backend image: $BACKEND_IMAGE"
+echo "Using frontend image: $FRONTEND_IMAGE"
+
+# Backup the database
+if [ -f "$DB_FILE" ]; then
+    echo "Backing up the database file..."
+    cp "$DB_FILE" "$BACKUP_FILE"
+    if [ $? -eq 0 ]; then
+        echo "Database backed up to $BACKUP_FILE."
+    else
+        echo "Error: Failed to back up the database file."
+        exit 1
+    fi
+else
+    echo "Error: Database file $DB_FILE does not exist. Skipping backup."
+    exit 1
+fi
+
+# Stop running containers
+echo "Stopping Docker containers..."
+docker compose stop
+
+# Remove existing container instances
+echo "Removing container instances..."
+docker compose rm -f
+
+# Remove old images (any version)
+echo "Removing all old backend and frontend images..."
+docker images | grep "ghcr.io/intuitem/ciso-assistant-community/backend" | awk '{print $3}' | xargs -r docker rmi -f
+docker images | grep "ghcr.io/intuitem/ciso-assistant-community/frontend" | awk '{print $3}' | xargs -r docker rmi -f
+
+# Start containers with updated images
+echo "Starting Docker containers with updated images..."
+docker compose up -d
+
+# Restore the database
+if [ -f "$BACKUP_FILE" ]; then
+    echo "Restoring the database file..."
+    cp "$BACKUP_FILE" "$DB_FILE"
+    if [ $? -eq 0 ]; then
+        echo "Database restored to $DB_FILE."
+    else
+        echo "Error: Failed to restore the database file."
+        exit 1
+    fi
+else
+    echo "Error: Backup file $BACKUP_FILE does not exist. Unable to restore the database."
+    exit 1
+fi
+
+echo "Update and restoration process completed successfully."

From 28bc24f3d2203bdec88d6d175d8e08688a2b7a82 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Mon, 25 Nov 2024 16:00:08 +0100
Subject: [PATCH 042/107] fix: codefactor

---
 update-ciso-assistant.sh | 57 +++++++++++++++++++++++++++++++---------
 1 file changed, 45 insertions(+), 12 deletions(-)

diff --git a/update-ciso-assistant.sh b/update-ciso-assistant.sh
index 354dbe958..48db16120 100755
--- a/update-ciso-assistant.sh
+++ b/update-ciso-assistant.sh
@@ -4,7 +4,7 @@
 
 # Variables
 DB_FILE="db/ciso-assistant.sqlite3"
-BACKUP_FILE="ciso-assistant-backup.sqlite3"
+BACKUP_FILE="../ciso-assistant-backup.sqlite3"
 BACKEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/backend:latest"
 FRONTEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/frontend:latest"
 
@@ -14,8 +14,7 @@ echo "Using frontend image: $FRONTEND_IMAGE"
 # Backup the database
 if [ -f "$DB_FILE" ]; then
     echo "Backing up the database file..."
-    cp "$DB_FILE" "$BACKUP_FILE"
-    if [ $? -eq 0 ]; then
+    if cp "$DB_FILE" "$BACKUP_FILE"; then
         echo "Database backed up to $BACKUP_FILE."
     else
         echo "Error: Failed to back up the database file."
@@ -28,26 +27,60 @@ fi
 
 # Stop running containers
 echo "Stopping Docker containers..."
-docker compose stop
+if docker compose stop; then
+    echo "Containers stopped successfully."
+else
+    echo "Error: Failed to stop Docker containers."
+    exit 1
+fi
 
 # Remove existing container instances
 echo "Removing container instances..."
-docker compose rm -f
+if docker compose rm -f; then
+    echo "Container instances removed successfully."
+else
+    echo "Error: Failed to remove container instances."
+    exit 1
+fi
 
 # Remove old images (any version)
 echo "Removing all old backend and frontend images..."
-docker images | grep "ghcr.io/intuitem/ciso-assistant-community/backend" | awk '{print $3}' | xargs -r docker rmi -f
-docker images | grep "ghcr.io/intuitem/ciso-assistant-community/frontend" | awk '{print $3}' | xargs -r docker rmi -f
+if docker images | grep "ghcr.io/intuitem/ciso-assistant-community/backend" | awk '{print $3}' | xargs -r docker rmi -f; then
+    echo "Old backend images removed successfully."
+else
+    echo "Error: Failed to remove old backend images."
+    exit 1
+fi
+
+if docker images | grep "ghcr.io/intuitem/ciso-assistant-community/frontend" | awk '{print $3}' | xargs -r docker rmi -f; then
+    echo "Old frontend images removed successfully."
+else
+    echo "Error: Failed to remove old frontend images."
+    exit 1
+fi
+
+# Pull the latest images
+echo "Pulling latest images..."
+if docker pull "$BACKEND_IMAGE" && docker pull "$FRONTEND_IMAGE"; then
+    echo "Images pulled successfully."
+else
+    echo "Error: Failed to pull the latest images."
+    exit 1
+fi
 
-# Start containers with updated images
+# Start containers with updated images
 echo "Starting Docker containers with updated images..."
-docker compose up -d
+if docker compose up -d; then
+    echo "Containers started successfully."
+else
+    echo "Error: Failed to start Docker containers."
+    exit 1
+fi
 
 # Restore the database
 if [ -f "$BACKUP_FILE" ]; then
     echo "Restoring the database file..."
-    cp "$BACKUP_FILE" "$DB_FILE"
-    if [ $? -eq 0 ]; then
+    if cp "$BACKUP_FILE" "$DB_FILE"; then
         echo "Database restored to $DB_FILE."
     else
         echo "Error: Failed to restore the database file."
@@ -58,4 +91,4 @@ else
     exit 1
 fi
 
-echo "Update and restoration process completed successfully."
+echo "Update and restoration process completed 

From 3bb80f22b8d1f79fc94d2545ebee41b9cd7f9251 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Mon, 25 Nov 2024 16:22:36 +0100
Subject: [PATCH 043/107] chore: remove db restoration

---
 update-ciso-assistant.sh | 14 --------------
 1 file changed, 14 deletions(-)

diff --git a/update-ciso-assistant.sh b/update-ciso-assistant.sh
index 48db16120..57456ad80 100755
--- a/update-ciso-assistant.sh
+++ b/update-ciso-assistant.sh
@@ -77,18 +77,4 @@ else
     exit 1
 fi
 
-# Restore the database
-if [ -f "$BACKUP_FILE" ]; then
-    echo "Restoring the database file..."
-    if cp "$BACKUP_FILE" "$DB_FILE"; then
-        echo "Database restored to $DB_FILE."
-    else
-        echo "Error: Failed to restore the database file."
-        exit 1
-    fi
-else
-    echo "Error: Backup file $BACKUP_FILE does not exist. Unable to restore the database."
-    exit 1
-fi
-
 echo "Update and restoration process completed 

From 6343c5c4a81f653773934c79ea8fb10f7e61d1ca Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Mon, 25 Nov 2024 16:31:19 +0100
Subject: [PATCH 044/107] chore: improve end message

---
 update-ciso-assistant.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/update-ciso-assistant.sh b/update-ciso-assistant.sh
index 57456ad80..c37960d53 100755
--- a/update-ciso-assistant.sh
+++ b/update-ciso-assistant.sh
@@ -77,4 +77,4 @@ else
     exit 1
 fi
 
-echo "Update and restoration process completed 
+echo "Update process completed 

From 4a83c747821cdc76c6a965795a14d35718fdf6ef Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Tue, 26 Nov 2024 00:34:08 +0100
Subject: [PATCH 045/107] wip

---
 backend/core/views.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/backend/core/views.py b/backend/core/views.py
index e6030ca6b..a4f871c8a 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -17,7 +17,7 @@
 from pathlib import Path
 import humanize
 
-from icecream import ic
+# from icecream import ic
 
 from django.utils.decorators import method_decorator
 from django.views.decorators.cache import cache_page

From 4a640e6176c81d80504cbafbd9895bfd1d7547a6 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Tue, 26 Nov 2024 09:39:13 +0100
Subject: [PATCH 046/107] Update migrations order

---
 .../{0039_historicalmetric.py => 0041_historicalmetric.py}   | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)
 rename backend/core/migrations/{0039_historicalmetric.py => 0041_historicalmetric.py} (92%)

diff --git a/backend/core/migrations/0039_historicalmetric.py b/backend/core/migrations/0041_historicalmetric.py
similarity index 92%
rename from backend/core/migrations/0039_historicalmetric.py
rename to backend/core/migrations/0041_historicalmetric.py
index 3dc6a94bd..1c8d0f05f 100644
--- a/backend/core/migrations/0039_historicalmetric.py
+++ b/backend/core/migrations/0041_historicalmetric.py
@@ -1,11 +1,12 @@
-# Generated by Django 5.1.1 on 2024-11-22 14:38
+# Generated by Django 5.1.1 on 2024-11-26 08:38
 
 from django.db import migrations, models
 
 
 class Migration(migrations.Migration):
+
     dependencies = [
-        ("core", "0038_asset_disaster_recovery_objectives_and_more"),
+        ("core", "0040_riskscenario_ref_id"),
     ]
 
     operations = [

From 2c7d89d301bca5f53dc3b0ecddc82562108db9bd Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Tue, 26 Nov 2024 09:46:29 +0100
Subject: [PATCH 047/107] Formatting

---
 backend/core/migrations/0041_historicalmetric.py | 1 -
 1 file changed, 1 deletion(-)

diff --git a/backend/core/migrations/0041_historicalmetric.py b/backend/core/migrations/0041_historicalmetric.py
index 1c8d0f05f..49fcf6f98 100644
--- a/backend/core/migrations/0041_historicalmetric.py
+++ b/backend/core/migrations/0041_historicalmetric.py
@@ -4,7 +4,6 @@
 
 
 class Migration(migrations.Migration):
-
     dependencies = [
         ("core", "0040_riskscenario_ref_id"),
     ]

From 5989866aa8ec7f5a367367dafd4a1a643d81d7ba Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Tue, 26 Nov 2024 11:16:51 +0100
Subject: [PATCH 048/107] chore: optimization

---
 update-ciso-assistant.sh | 80 ++++++----------------------------------
 1 file changed, 12 insertions(+), 68 deletions(-)

diff --git a/update-ciso-assistant.sh b/update-ciso-assistant.sh
index c37960d53..dc585fe84 100755
--- a/update-ciso-assistant.sh
+++ b/update-ciso-assistant.sh
@@ -1,80 +1,24 @@
 #!/bin/bash
 
-# Script to update Docker images for CISO Assistant (always using 'latest')
-
 # Variables
 DB_FILE="db/ciso-assistant.sqlite3"
 BACKUP_FILE="../ciso-assistant-backup.sqlite3"
 BACKEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/backend:latest"
 FRONTEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/frontend:latest"
 
-echo "Using backend image: $BACKEND_IMAGE"
-echo "Using frontend image: $FRONTEND_IMAGE"
-
-# Backup the database
-if [ -f "$DB_FILE" ]; then
-    echo "Backing up the database file..."
-    if cp "$DB_FILE" "$BACKUP_FILE"; then
-        echo "Database backed up to $BACKUP_FILE."
-    else
-        echo "Error: Failed to back up the database file."
-        exit 1
-    fi
-else
-    echo "Error: Database file $DB_FILE does not exist. Skipping backup."
-    exit 1
-fi
-
-# Stop running containers
-echo "Stopping Docker containers..."
-if docker compose stop; then
-    echo "Containers stopped successfully."
-else
-    echo "Error: Failed to stop Docker containers."
-    exit 1
-fi
-
-# Remove existing container instances
-echo "Removing container instances..."
-if docker compose rm -f; then
-    echo "Container instances removed successfully."
-else
-    echo "Error: Failed to remove container instances."
-    exit 1
-fi
-
-# Remove old images (any version)
-echo "Removing all old backend and frontend images..."
-if docker images | grep "ghcr.io/intuitem/ciso-assistant-community/backend" | awk '{print $3}' | xargs -r docker rmi -f; then
-    echo "Old backend images removed successfully."
-else
-    echo "Error: Failed to remove old backend images."
-    exit 1
-fi
+# Backup database
+[ -f "$DB_FILE" ] && cp "$DB_FILE" "$BACKUP_FILE" || { echo "Database not found. Skipping."; exit 1; }
 
-if docker images | grep "ghcr.io/intuitem/ciso-assistant-community/frontend" | awk '{print $3}' | xargs -r docker rmi -f; then
-    echo "Old frontend images removed successfully."
-else
-    echo "Error: Failed to remove old frontend images."
-    exit 1
-fi
+# Update Docker images
+docker compose down
+docker images | grep -E "ghcr.io/intuitem/ciso-assistant-community/(backend|frontend).*latest" | awk '{print $3}' | xargs -r docker rmi -f
+docker pull "$BACKEND_IMAGE" "$FRONTEND_IMAGE"
 
-# Pull the latest images
-echo "Pulling latest images..."
-if docker pull "$BACKEND_IMAGE" && docker pull "$FRONTEND_IMAGE"; then
-    echo "Images pulled successfully."
-else
-    echo "Error: Failed to pull the latest images."
-    exit 1
-fi
+# Start containers
+docker compose up -d
 
-# Start containers with updated images
-echo "Starting Docker containers with updated images..."
-if docker compose up -d; then
-    echo "Containers started successfully."
-else
-    echo "Error: Failed to start Docker containers."
-    exit 1
-fi
+# Run Django migrations
+BACKEND_CONTAINER=$(docker ps --filter "ancestor=$BACKEND_IMAGE" --format "{{.ID}}")
+[ -n "$BACKEND_CONTAINER" ] && docker exec "$BACKEND_CONTAINER" poetry run python manage.py migrate || { echo "Migration failed."; exit 1; }
 
-echo "Update process completed 
+echo "Update and migration completed successfully."

From b922d9aeffdb8294d70ceb48b45d604543d6ffb3 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Tue, 26 Nov 2024 15:02:28 +0100
Subject: [PATCH 049/107] feat: improve update script

---
 docker-compose.yml       |  4 +-
 update-ciso-assistant.sh | 85 ++++++++++++++++++++++++++++++++++------
 2 files changed, 75 insertions(+), 14 deletions(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index d723deee3..6b070a695 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -1,7 +1,7 @@
 services:
   backend:
     container_name: backend
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:${VERSION:-latest}
     restart: always
     environment:
       - ALLOWED_HOSTS=backend,localhost
@@ -19,7 +19,7 @@ services:
       - PROTOCOL_HEADER=x-forwarded-proto
       - HOST_HEADER=x-forwarded-host
 
-    image: ghcr.io/intuitem/ciso-assistant-community/frontend:latest
+    image: ghcr.io/intuitem/ciso-assistant-community/frontend:${VERSION:-latest}
     depends_on:
       - backend
 
diff --git a/update-ciso-assistant.sh b/update-ciso-assistant.sh
index dc585fe84..bb5ff9451 100755
--- a/update-ciso-assistant.sh
+++ b/update-ciso-assistant.sh
@@ -2,23 +2,84 @@
 
 # Variables
 DB_FILE="db/ciso-assistant.sqlite3"
-BACKUP_FILE="../ciso-assistant-backup.sqlite3"
-BACKEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/backend:latest"
-FRONTEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/frontend:latest"
+BACKUP_DIR="../ciso-assistant-backups"
+VERSION=${1:-latest}
+CURRENT_VERSION=$(docker ps -a --format "{{.Image}}" | grep "ghcr.io/intuitem/ciso-assistant-community/backend" | head -n 1 | cut -d ':' -f2 || echo "latest")
+BACKUP_FILE="$BACKUP_DIR/ciso-assistant-backup-$CURRENT_VERSION.sqlite3"
+RESTORE_BACKUP_FILE="$BACKUP_DIR/ciso-assistant-backup-$VERSION.sqlite3"
+BACKEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/backend:$VERSION"
+FRONTEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/frontend:$VERSION"
 
-# Backup database
-[ -f "$DB_FILE" ] && cp "$DB_FILE" "$BACKUP_FILE" || { echo "Database not found. Skipping."; exit 1; }
+echo "Using backend image: $BACKEND_IMAGE"
+echo "Using frontend image: $FRONTEND_IMAGE"
 
-# Update Docker images
+# Create backup directory if it doesn't exist
+if [ ! -d "$BACKUP_DIR" ]; then
+    echo "Creating backup directory at $BACKUP_DIR..."
+    mkdir -p "$BACKUP_DIR" || { echo "Error: Failed to create backup directory."; exit 1; }
+    echo "Backup directory created."
+fi
+
+# Backup the current database (overwrite if exists)
+if [ -f "$DB_FILE" ]; then
+    echo "Backing up the database for current version '$CURRENT_VERSION' (overwriting existing backup)..."
+    cp "$DB_FILE" "$BACKUP_FILE" || { echo "Error: Database backup failed."; exit 1; }
+    echo "Database backed up to $BACKUP_FILE."
+else
+    echo "Database file not found. Skipping backup."
+fi
+
+# Stop and remove containers (after backup)
 docker compose down
-docker images | grep -E "ghcr.io/intuitem/ciso-assistant-community/(backend|frontend).*latest" | awk '{print $3}' | xargs -r docker rmi -f
-docker pull "$BACKEND_IMAGE" "$FRONTEND_IMAGE"
 
-# Start containers
-docker compose up -d
+# Remove all images
+docker images | grep -E "ghcr.io/intuitem/ciso-assistant-community/(backend|frontend)" | awk '{print $3}' | xargs -r docker rmi -f
+
+# Choice to restore the database from the selected version's backup if it exists
+if [ -f "$RESTORE_BACKUP_FILE" ]; then
+    read -p "Backup found for version '$VERSION'. Do you want to restore the database from this backup? (y/n): " restore_choice
+    if [[ "$restore_choice" =~ ^[Yy]$ ]]; then
+        echo "Restoring database from backup for version '$VERSION'..."
+        cp "$RESTORE_BACKUP_FILE" "$DB_FILE" || { echo "Error: Database restoration failed."; exit 1; }
+        echo "Database restored from $RESTORE_BACKUP_FILE."
+    else
+        echo "Skipping database restoration."
+        if [ "$(echo -e "$VERSION\n$CURRENT_VERSION" | sort -V | head -n 1)" == "$CURRENT_VERSION" ] && ["$VERSION" != "$CURRENT_VERSION"]; then
+            NEW_DB=true
+        fi
+    fi
+else
+    echo "No backup found for version '$VERSION'. Proceeding with a new database."
+    NEW_DB=true
+fi
+
+# If using a version other than 'latest', remove the database to avoid migration conflicts (only if NEW_DB is not true)
+if [ "$NEW_DB" = true ]; then
+    echo "Removing database file to create a fresh one for version '$VERSION'..."
+    rm -f "$DB_FILE" || { echo "Error: Failed to remove database file."; exit 1; }
+    echo "Database file removed."
+fi
+
+# Pull and run the specified version
+docker pull "$BACKEND_IMAGE" "$FRONTEND_IMAGE"
+VERSION=$VERSION docker compose up -d
 
 # Run Django migrations
 BACKEND_CONTAINER=$(docker ps --filter "ancestor=$BACKEND_IMAGE" --format "{{.ID}}")
-[ -n "$BACKEND_CONTAINER" ] && docker exec "$BACKEND_CONTAINER" poetry run python manage.py migrate || { echo "Migration failed."; exit 1; }
+if [ -n "$BACKEND_CONTAINER" ]; then
+    echo "Running Django migrations..."
+    docker exec "$BACKEND_CONTAINER" poetry run python manage.py migrate || docker exec "$BACKEND_CONTAINER" python manage.py migrate || { echo "Error: Migration failed."; exit 1; }
+    echo "Migrations completed successfully."
+
+    # Create superuser interactively if the database is new and the version is older
+    if [ "$NEW_DB" = true ]; then
+        echo "Initializing your superuser account..."
+        docker compose exec backend poetry run python manage.py createsuperuser || docker exec -it "$BACKEND_CONTAINER" python manage.py createsuperuser || { echo "Error: Failed to create superuser."; exit 1; }
+        echo "Superuser created successfully."
+    fi
+else
+    echo "Error: Backend container not found. Cannot run migrations or create superuser."
+    exit 1
+fi
 
-echo "Update and migration completed successfully."
+echo "Update and migration for version '$VERSION' completed successfully."

From 1c8c342666a0c90df139f85c1796472a300b3bda Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Tue, 26 Nov 2024 15:07:11 +0100
Subject: [PATCH 050/107] docs: write update-ciso-assistant manual

---
 update-ciso-assistant.sh | 52 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 52 insertions(+)

diff --git a/update-ciso-assistant.sh b/update-ciso-assistant.sh
index bb5ff9451..bf891e442 100755
--- a/update-ciso-assistant.sh
+++ b/update-ciso-assistant.sh
@@ -1,5 +1,57 @@
 #!/bin/bash
 
+# ---------------------------------------------------------------------------
+# Manual: Database Backup and Update Script for CISO Assistant
+# ---------------------------------------------------------------------------
+# This script is used to backup, restore, and update the CISO Assistant database
+# and Docker containers. It supports database backup and restoration, 
+# version migration, and Docker image management. Below is a detailed guide 
+# on how the script works and how to use it.
+#
+# Usage:
+#   ./update-ciso-assistant.sh [OPTIONS]
+#
+# Options:
+#   --help, -h       Display this help message
+#   [version]        Specify the version of CISO Assistant to update to (default: 'latest')
+#
+# Example:
+#   ./update-ciso-assistant.sh 1.0.0
+#   This will update CISO Assistant to version 1.0.0, backing up and restoring 
+#   the database as needed.
+#
+# Prerequisites:
+# - Docker should be installed and running
+# - Docker Compose should be available
+# - Poetry (if used for the backend) should be available in the Docker container
+#
+# ---------------------------------------------------------------------------
+
+# Display help message if --help or -h is passed as an argument
+if [[ "$1" == "--help" || "$1" == "-h" ]]; then
+    cat <<EOF
+This script automates the process of backing up, updating, and restoring the 
+CISO Assistant database and Docker containers. The following steps will be executed:
+
+1. Back up the current database (if available).
+2. Optionally, restore a backup for a specific version.
+3. Remove current Docker containers and images related to CISO Assistant.
+4. Pull and run the new Docker images for the specified version.
+5. Run Django migrations and set up the superuser account (if the database is new).
+
+Usage:
+  ./update-ciso-assistant.sh [version]
+
+Options:
+  [version]      Specify the version of CISO Assistant to update to (default is 'latest').
+  -h, --help     Show this help message.
+
+Example:
+  ./update-ciso-assistant.sh latest
+EOF
+    exit 0
+fi
+
 # Variables
 DB_FILE="db/ciso-assistant.sqlite3"
 BACKUP_DIR="../ciso-assistant-backups"

From ebc2ea7c480fd26915e63a061d8b35d126da5824 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Tue, 26 Nov 2024 15:08:53 +0100
Subject: [PATCH 051/107] chore: add missing spaces

---
 update-ciso-assistant.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/update-ciso-assistant.sh b/update-ciso-assistant.sh
index bf891e442..cea9b7f95 100755
--- a/update-ciso-assistant.sh
+++ b/update-ciso-assistant.sh
@@ -96,7 +96,7 @@ if [ -f "$RESTORE_BACKUP_FILE" ]; then
         echo "Database restored from $RESTORE_BACKUP_FILE."
     else
         echo "Skipping database restoration."
-        if [ "$(echo -e "$VERSION\n$CURRENT_VERSION" | sort -V | head -n 1)" == "$CURRENT_VERSION" ] && ["$VERSION" != "$CURRENT_VERSION"]; then
+        if [ "$(echo -e "$VERSION\n$CURRENT_VERSION" | sort -V | head -n 1)" == "$CURRENT_VERSION" ] && [ "$VERSION" != "$CURRENT_VERSION" ]; then
             NEW_DB=true
         fi
     fi

From 7f4c487be3ab81d3e63b9541ba7cba151e1d97a4 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 12:10:06 +0100
Subject: [PATCH 052/107] style: fix coverage text color in additional
 information

---
 .../requirement-assessments/[id=uuid]/+page.svelte              | 2 +-
 .../requirement-assessments/[id=uuid]/edit/+page.svelte         | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
index f93a8e3fc..33163029d 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
@@ -208,7 +208,7 @@
 								</p>
 								<p class="whitespace-pre-line py-1">
 									<span class="italic">{m.coverageColon()}</span>
-									<span class="badge {classesText} h-fit">
+									<span class="badge h-fit">
 										{safeTranslate(
 											toCamelCase(mappingInference.sourceRequirementAssessment.coverage)
 										)}
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
index 38a1039ea..8b247aecc 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
@@ -343,7 +343,7 @@
 								</p>
 								<p class="whitespace-pre-line py-1">
 									<span class="italic">{m.coverageColon()}</span>
-									<span class="badge {classesText} h-fit">
+									<span class="badge h-fit">
 										{safeTranslate(mappingInference.sourceRequirementAssessment.coverage)}
 									</span>
 								</p>

From 52b3c0c78251b1d51429a3ca2734409a1b189d47 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 12:38:37 +0100
Subject: [PATCH 053/107] feat: apply mapping for not assessed/applicable
 requirements

---
 backend/core/models.py | 24 +++++++++++++++++-------
 1 file changed, 17 insertions(+), 7 deletions(-)

diff --git a/backend/core/models.py b/backend/core/models.py
index 5f0a25184..2751460d9 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -2778,6 +2778,8 @@ def compute_requirement_assessments_results(
     ) -> list["RequirementAssessment"]:
         requirement_assessments: list[RequirementAssessment] = []
         result_order = (
+            RequirementAssessment.Result.NOT_ASSESSED,
+            RequirementAssessment.Result.NOT_APPLICABLE,
             RequirementAssessment.Result.NON_COMPLIANT,
             RequirementAssessment.Result.PARTIALLY_COMPLIANT,
             RequirementAssessment.Result.COMPLIANT,
@@ -2952,13 +2954,21 @@ def infer_result(
         self, mapping: RequirementMapping, source_requirement_assessment: Self
     ) -> dict | None:
         if mapping.coverage == RequirementMapping.Coverage.FULL:
-            return {
-                "result": source_requirement_assessment.result,
-                "status": source_requirement_assessment.status,
-                "score": source_requirement_assessment.score,
-                "is_scored": source_requirement_assessment.is_scored,
-                "observation": source_requirement_assessment.observation,
-            }
+                if (source_requirement_assessment.compliance_assessment.min_score == self.compliance_assessment.min_score and
+                    source_requirement_assessment.compliance_assessment.max_score == self.compliance_assessment.max_score):
+                    return {
+                        "result": source_requirement_assessment.result,
+                        "status": source_requirement_assessment.status,
+                        "score": source_requirement_assessment.score,
+                        "is_scored": source_requirement_assessment.is_scored,
+                        "observation": source_requirement_assessment.observation,
+                    }
+                else:
+                    return {
+                        "result": source_requirement_assessment.result,
+                        "status": source_requirement_assessment.status,
+                        "observation": source_requirement_assessment.observation,
+                    }
         if mapping.coverage == RequirementMapping.Coverage.PARTIAL:
             if source_requirement_assessment.result in (
                 RequirementAssessment.Result.COMPLIANT,

From 18e283d47bbd59cb1d4cb8c9e101f3ff729e8009 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 12:38:55 +0100
Subject: [PATCH 054/107] chore: run format

---
 backend/core/models.py | 34 +++++++++++++++++++---------------
 1 file changed, 19 insertions(+), 15 deletions(-)

diff --git a/backend/core/models.py b/backend/core/models.py
index 2751460d9..188719ea2 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -2954,21 +2954,25 @@ def infer_result(
         self, mapping: RequirementMapping, source_requirement_assessment: Self
     ) -> dict | None:
         if mapping.coverage == RequirementMapping.Coverage.FULL:
-                if (source_requirement_assessment.compliance_assessment.min_score == self.compliance_assessment.min_score and
-                    source_requirement_assessment.compliance_assessment.max_score == self.compliance_assessment.max_score):
-                    return {
-                        "result": source_requirement_assessment.result,
-                        "status": source_requirement_assessment.status,
-                        "score": source_requirement_assessment.score,
-                        "is_scored": source_requirement_assessment.is_scored,
-                        "observation": source_requirement_assessment.observation,
-                    }
-                else:
-                    return {
-                        "result": source_requirement_assessment.result,
-                        "status": source_requirement_assessment.status,
-                        "observation": source_requirement_assessment.observation,
-                    }
+            if (
+                source_requirement_assessment.compliance_assessment.min_score
+                == self.compliance_assessment.min_score
+                and source_requirement_assessment.compliance_assessment.max_score
+                == self.compliance_assessment.max_score
+            ):
+                return {
+                    "result": source_requirement_assessment.result,
+                    "status": source_requirement_assessment.status,
+                    "score": source_requirement_assessment.score,
+                    "is_scored": source_requirement_assessment.is_scored,
+                    "observation": source_requirement_assessment.observation,
+                }
+            else:
+                return {
+                    "result": source_requirement_assessment.result,
+                    "status": source_requirement_assessment.status,
+                    "observation": source_requirement_assessment.observation,
+                }
         if mapping.coverage == RequirementMapping.Coverage.PARTIAL:
             if source_requirement_assessment.result in (
                 RequirementAssessment.Result.COMPLIANT,

From f02526830babd5d9a38170f09e88fe349c6ec8db Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 13:58:00 +0100
Subject: [PATCH 055/107] feat: add enterprise update and make script simpler

---
 .../update-ciso-assistant-enterprise.sh       |   1 +
 update-ciso-assistant.sh                      | 151 ++++--------------
 2 files changed, 32 insertions(+), 120 deletions(-)
 create mode 100755 enterprise/update-ciso-assistant-enterprise.sh

diff --git a/enterprise/update-ciso-assistant-enterprise.sh b/enterprise/update-ciso-assistant-enterprise.sh
new file mode 100755
index 000000000..d8ec56384
--- /dev/null
+++ b/enterprise/update-ciso-assistant-enterprise.sh
@@ -0,0 +1 @@
+./update-ciso-assistant.sh enterprise
\ No newline at end of file
diff --git a/update-ciso-assistant.sh b/update-ciso-assistant.sh
index cea9b7f95..ea7b67eb5 100755
--- a/update-ciso-assistant.sh
+++ b/update-ciso-assistant.sh
@@ -1,137 +1,48 @@
-#!/bin/bash
+#! /usr/bin/env bash
 
-# ---------------------------------------------------------------------------
-# Manual: Database Backup and Update Script for CISO Assistant
-# ---------------------------------------------------------------------------
-# This script is used to backup, restore, and update the CISO Assistant database
-# and Docker containers. It supports database backup and restoration, 
-# version migration, and Docker image management. Below is a detailed guide 
-# on how the script works and how to use it.
-#
-# Usage:
-#   ./update-ciso-assistant.sh [OPTIONS]
-#
-# Options:
-#   --help, -h       Display this help message
-#   [version]        Specify the version of CISO Assistant to update to (default: 'latest')
-#
-# Example:
-#   ./update-ciso-assistant.sh 1.0.0
-#   This will update CISO Assistant to version 1.0.0, backing up and restoring 
-#   the database as needed.
-#
-# Prerequisites:
-# - Docker should be installed and running
-# - Docker Compose should be available
-# - Poetry (if used for the backend) should be available in the Docker container
-#
-# ---------------------------------------------------------------------------
+VERSION=${1:-community}
 
-# Display help message if --help or -h is passed as an argument
-if [[ "$1" == "--help" || "$1" == "-h" ]]; then
-    cat <<EOF
-This script automates the process of backing up, updating, and restoring the 
-CISO Assistant database and Docker containers. The following steps will be executed:
-
-1. Back up the current database (if available).
-2. Optionally, restore a backup for a specific version.
-3. Remove current Docker containers and images related to CISO Assistant.
-4. Pull and run the new Docker images for the specified version.
-5. Run Django migrations and set up the superuser account (if the database is new).
-
-Usage:
-  ./update-ciso-assistant.sh [version]
-
-Options:
-  [version]      Specify the version of CISO Assistant to update to (default is 'latest').
-  -h, --help     Show this help message.
-
-Example:
-  ./update-ciso-assistant.sh latest
-EOF
-    exit 0
+if [ "$VERSION" = "enterprise" ]; then
+  # Go to the enterprise directory
+  cd "enterprise/" || exit 1
 fi
 
-# Variables
 DB_FILE="db/ciso-assistant.sqlite3"
-BACKUP_DIR="../ciso-assistant-backups"
-VERSION=${1:-latest}
-CURRENT_VERSION=$(docker ps -a --format "{{.Image}}" | grep "ghcr.io/intuitem/ciso-assistant-community/backend" | head -n 1 | cut -d ':' -f2 || echo "latest")
-BACKUP_FILE="$BACKUP_DIR/ciso-assistant-backup-$CURRENT_VERSION.sqlite3"
-RESTORE_BACKUP_FILE="$BACKUP_DIR/ciso-assistant-backup-$VERSION.sqlite3"
-BACKEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/backend:$VERSION"
-FRONTEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/frontend:$VERSION"
+BACKUP_FILE="ciso-assistant-backup.sqlite3"
 
-echo "Using backend image: $BACKEND_IMAGE"
-echo "Using frontend image: $FRONTEND_IMAGE"
-
-# Create backup directory if it doesn't exist
-if [ ! -d "$BACKUP_DIR" ]; then
-    echo "Creating backup directory at $BACKUP_DIR..."
-    mkdir -p "$BACKUP_DIR" || { echo "Error: Failed to create backup directory."; exit 1; }
-    echo "Backup directory created."
-fi
-
-# Backup the current database (overwrite if exists)
-if [ -f "$DB_FILE" ]; then
-    echo "Backing up the database for current version '$CURRENT_VERSION' (overwriting existing backup)..."
-    cp "$DB_FILE" "$BACKUP_FILE" || { echo "Error: Database backup failed."; exit 1; }
-    echo "Database backed up to $BACKUP_FILE."
+if [ "$VERSION" = "enterprise" ]; then
+    BACKEND_IMAGE="ghcr.io/intuitem/ciso-assistant-enterprise-backend:latest"
+    FRONTEND_IMAGE="ghcr.io/intuitem/ciso-assistant-enterprise-frontend:latest"
 else
-    echo "Database file not found. Skipping backup."
+    BACKEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/backend:latest"
+    FRONTEND_IMAGE="ghcr.io/intuitem/ciso-assistant-community/frontend:latest"
 fi
 
-# Stop and remove containers (after backup)
-docker compose down
+echo "Update of the version : $VERSION"
 
-# Remove all images
-docker images | grep -E "ghcr.io/intuitem/ciso-assistant-community/(backend|frontend)" | awk '{print $3}' | xargs -r docker rmi -f
-
-# Choice to restore the database from the selected version's backup if it exists
-if [ -f "$RESTORE_BACKUP_FILE" ]; then
-    read -p "Backup found for version '$VERSION'. Do you want to restore the database from this backup? (y/n): " restore_choice
-    if [[ "$restore_choice" =~ ^[Yy]$ ]]; then
-        echo "Restoring database from backup for version '$VERSION'..."
-        cp "$RESTORE_BACKUP_FILE" "$DB_FILE" || { echo "Error: Database restoration failed."; exit 1; }
-        echo "Database restored from $RESTORE_BACKUP_FILE."
-    else
-        echo "Skipping database restoration."
-        if [ "$(echo -e "$VERSION\n$CURRENT_VERSION" | sort -V | head -n 1)" == "$CURRENT_VERSION" ] && [ "$VERSION" != "$CURRENT_VERSION" ]; then
-            NEW_DB=true
-        fi
-    fi
+# Backup the database
+if [ ! -f "$DB_FILE" ]; then
+    echo "Error: No database found, please initialize CISO Assistant first"
+    exit 1
 else
-    echo "No backup found for version '$VERSION'. Proceeding with a new database."
-    NEW_DB=true
+    cp "$DB_FILE" "$BACKUP_FILE"
+    echo "Backup of the database created in $BACKUP_FILE"
 fi
 
-# If using a version other than 'latest', remove the database to avoid migration conflicts (only if NEW_DB is not true)
-if [ "$NEW_DB" = true ]; then
-    echo "Removing database file to create a fresh one for version '$VERSION'..."
-    rm -f "$DB_FILE" || { echo "Error: Failed to remove database file."; exit 1; }
-    echo "Database file removed."
-fi
+# Stop the containers
+docker compose down
 
-# Pull and run the specified version
-docker pull "$BACKEND_IMAGE" "$FRONTEND_IMAGE"
-VERSION=$VERSION docker compose up -d
+# Remove the images
+docker rmi "$BACKEND_IMAGE" "$FRONTEND_IMAGE" 2> /dev/null
 
-# Run Django migrations
-BACKEND_CONTAINER=$(docker ps --filter "ancestor=$BACKEND_IMAGE" --format "{{.ID}}")
-if [ -n "$BACKEND_CONTAINER" ]; then
-    echo "Running Django migrations..."
-    docker exec "$BACKEND_CONTAINER" poetry run python manage.py migrate || docker exec "$BACKEND_CONTAINER" python manage.py migrate || { echo "Error: Migration failed."; exit 1; }
-    echo "Migrations completed successfully."
+# Start the containers
+docker compose up -d
 
-    # Create superuser interactively if the database is new and the version is older
-    if [ "$NEW_DB" = true ]; then
-        echo "Initializing your superuser account..."
-        docker compose exec backend poetry run python manage.py createsuperuser || docker exec -it "$BACKEND_CONTAINER" python manage.py createsuperuser || { echo "Error: Failed to create superuser."; exit 1; }
-        echo "Superuser created successfully."
-    fi
-else
-    echo "Error: Backend container not found. Cannot run migrations or create superuser."
-    exit 1
-fi
+# Wait for the database to be ready
+echo "Giving some time for the database to be ready, please wait ..."
+sleep 5
 
-echo "Update and migration for version '$VERSION' completed successfully."
+# Apply migrations
+BACKEND_CONTAINER=$(docker ps --filter "ancestor=$BACKEND_IMAGE" --format "{{.Names}}")
+docker compose exec "$BACKEND_CONTAINER" poetry run python manage.py migrate
+echo "CISO assistant updated successfully"

From b78d8ca7c8bd0f25ae04ae68dde3a12c17d6ba51 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 13:59:01 +0100
Subject: [PATCH 056/107] chore: undo docker compose yaml modifications

---
 docker-compose.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index 6b070a695..d723deee3 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -1,7 +1,7 @@
 services:
   backend:
     container_name: backend
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:${VERSION:-latest}
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
     restart: always
     environment:
       - ALLOWED_HOSTS=backend,localhost
@@ -19,7 +19,7 @@ services:
       - PROTOCOL_HEADER=x-forwarded-proto
       - HOST_HEADER=x-forwarded-host
 
-    image: ghcr.io/intuitem/ciso-assistant-community/frontend:${VERSION:-latest}
+    image: ghcr.io/intuitem/ciso-assistant-community/frontend:latest
     depends_on:
       - backend
 

From 7211fe8fdcd4b8e66ba7fc6c708f4c50762e3464 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 16:09:42 +0100
Subject: [PATCH 057/107] feat: serialize requirement node inside requirement
 assessment

---
 backend/core/models.py                        | 34 +++++++++++++++++++
 backend/core/serializers.py                   |  2 +-
 .../[id=uuid]/edit/+page.server.ts            |  6 ++--
 .../[id=uuid]/edit/+page.svelte               |  8 ++---
 4 files changed, 42 insertions(+), 8 deletions(-)

diff --git a/backend/core/models.py b/backend/core/models.py
index abc4048ae..ef37115a1 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1048,6 +1048,40 @@ class RequirementNode(ReferentialObjectMixin, I18nObjectMixin):
         null=True, blank=True, verbose_name=_("Typical evidence")
     )
     question = models.JSONField(blank=True, null=True, verbose_name=_("Question"))
+    
+    @property
+    def associated_reference_controls(self):
+        _reference_controls = self.reference_controls.all()
+        reference_controls = []
+        for control in _reference_controls:
+            reference_controls.append(
+                {"str": control.display_long, "urn": control.urn, "id": control.id}
+            )
+        return reference_controls
+    
+    @property
+    def associated_threats(self):
+        _threats = self.threats.all()
+        threats = []
+        for control in _threats:
+            threats.append(
+                {"str": control.display_long, "urn": control.urn, "id": control.id}
+            )
+        return threats
+    
+    @property
+    def parent_requirement(self):
+        parent_requirement = RequirementNode.objects.filter(urn=self.parent_urn).first()
+        if not parent_requirement:
+            return None
+        return {
+            "str": parent_requirement.display_long,
+            "urn": parent_requirement.urn,
+            "id": parent_requirement.id,
+            "ref_id": parent_requirement.ref_id,
+            "name": parent_requirement.name,
+            "description": parent_requirement.description
+        }
 
     class Meta:
         verbose_name = _("RequirementNode")
diff --git a/backend/core/serializers.py b/backend/core/serializers.py
index 0020da471..da0c3e1e0 100644
--- a/backend/core/serializers.py
+++ b/backend/core/serializers.py
@@ -613,7 +613,7 @@ class RequirementAssessmentReadSerializer(BaseModelSerializer):
     compliance_assessment = FieldsRelatedField()
     folder = FieldsRelatedField()
     assessable = serializers.BooleanField(source="requirement.assessable")
-    requirement = FieldsRelatedField(["urn", "parent_urn"])
+    requirement = FieldsRelatedField(["urn", "annotation", "name", "description", "typical_evidence", "ref_id", "associated_reference_controls", "associated_threats", "parent_requirement"])
 
     class Meta:
         model = RequirementAssessment
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
index 2be95e97e..05a8fb4a0 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
@@ -29,14 +29,14 @@ export const load = (async ({ fetch, params }) => {
 	}
 
 	const requirementAssessment = await fetchJson(endpoint);
+	console.log(endpoint);
+	console.log(requirementAssessment);
 	const requirement = requirementAssessment.requirement;
 	const compliance_assessment_score = await fetchJson(
 		`${baseUrl}/compliance-assessments/${requirementAssessment.compliance_assessment.id}/global_score/`
 	);
 
-	const parent = await fetchJson(
-		`${baseUrl}/requirement-nodes/?urn=${requirement.parent_urn}`
-	).then((res) => res.results[0]);
+	const parent = requirementAssessment.requirement.parent_requirement
 
 	const model = getModelInfo(URLModel);
 	const object = { ...requirementAssessment };
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
index c9da5a0f9..5cbcc1e6a 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
@@ -6,13 +6,13 @@
 	export let data: PageData;
 	export let form: ActionData;
 
-	const threats = data.requirement.threats;
-	const reference_controls = data.requirement.reference_controls;
+	const threats = data.requirementAssessment.requirement.associated_threats ?? [];
+	const reference_controls = data.requirementAssessment.requirement.associated_reference_controls ?? [];
 	const annotation = data.requirement.annotation;
 	const typical_evidence = data.requirement.typical_evidence;
 
-	const has_threats = threats && threats.length > 0;
-	const has_reference_controls = reference_controls && reference_controls.length > 0;
+	const has_threats = threats.length > 0;
+	const has_reference_controls = reference_controls.length > 0;
 
 	import { page } from '$app/stores';
 	import AutocompleteSelect from '$lib/components/Forms/AutocompleteSelect.svelte';

From 2196e00e44d3ec89e60464b65b3cd35789f90121 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 16:10:08 +0100
Subject: [PATCH 058/107] chore: run format

---
 backend/core/models.py      |  8 ++++----
 backend/core/serializers.py | 14 +++++++++++++-
 2 files changed, 17 insertions(+), 5 deletions(-)

diff --git a/backend/core/models.py b/backend/core/models.py
index ef37115a1..6ce373d54 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1048,7 +1048,7 @@ class RequirementNode(ReferentialObjectMixin, I18nObjectMixin):
         null=True, blank=True, verbose_name=_("Typical evidence")
     )
     question = models.JSONField(blank=True, null=True, verbose_name=_("Question"))
-    
+
     @property
     def associated_reference_controls(self):
         _reference_controls = self.reference_controls.all()
@@ -1058,7 +1058,7 @@ def associated_reference_controls(self):
                 {"str": control.display_long, "urn": control.urn, "id": control.id}
             )
         return reference_controls
-    
+
     @property
     def associated_threats(self):
         _threats = self.threats.all()
@@ -1068,7 +1068,7 @@ def associated_threats(self):
                 {"str": control.display_long, "urn": control.urn, "id": control.id}
             )
         return threats
-    
+
     @property
     def parent_requirement(self):
         parent_requirement = RequirementNode.objects.filter(urn=self.parent_urn).first()
@@ -1080,7 +1080,7 @@ def parent_requirement(self):
             "id": parent_requirement.id,
             "ref_id": parent_requirement.ref_id,
             "name": parent_requirement.name,
-            "description": parent_requirement.description
+            "description": parent_requirement.description,
         }
 
     class Meta:
diff --git a/backend/core/serializers.py b/backend/core/serializers.py
index da0c3e1e0..413e40497 100644
--- a/backend/core/serializers.py
+++ b/backend/core/serializers.py
@@ -613,7 +613,19 @@ class RequirementAssessmentReadSerializer(BaseModelSerializer):
     compliance_assessment = FieldsRelatedField()
     folder = FieldsRelatedField()
     assessable = serializers.BooleanField(source="requirement.assessable")
-    requirement = FieldsRelatedField(["urn", "annotation", "name", "description", "typical_evidence", "ref_id", "associated_reference_controls", "associated_threats", "parent_requirement"])
+    requirement = FieldsRelatedField(
+        [
+            "urn",
+            "annotation",
+            "name",
+            "description",
+            "typical_evidence",
+            "ref_id",
+            "associated_reference_controls",
+            "associated_threats",
+            "parent_requirement",
+        ]
+    )
 
     class Meta:
         model = RequirementAssessment

From cca4fd714cb80d8524455843131c7e9237fddae6 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 16:17:39 +0100
Subject: [PATCH 059/107] feat: remove requirement node view for third parties

---
 backend/core/startup.py | 1 -
 1 file changed, 1 deletion(-)

diff --git a/backend/core/startup.py b/backend/core/startup.py
index 0b5294dc5..f3faad47d 100644
--- a/backend/core/startup.py
+++ b/backend/core/startup.py
@@ -345,7 +345,6 @@
     "view_complianceassessment",
     "view_requirementassessment",
     "change_requirementassessment",
-    "view_requirementnode",
     "view_evidence",
     "add_evidence",
     "change_evidence",

From 28c50ce0edad0514760c5c44f034135e26abba44 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 16:18:06 +0100
Subject: [PATCH 060/107] fix: add evidence in enclave from evidence list view

---
 frontend/src/lib/utils/crud.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/frontend/src/lib/utils/crud.ts b/frontend/src/lib/utils/crud.ts
index 5e6be76e5..2d357cf6e 100644
--- a/frontend/src/lib/utils/crud.ts
+++ b/frontend/src/lib/utils/crud.ts
@@ -420,7 +420,7 @@ export const URL_MODEL_MAP: ModelMap = {
 		verboseNamePlural: 'Evidences',
 		fileFields: ['attachment'],
 		foreignKeyFields: [
-			{ field: 'folder', urlModel: 'folders', urlParams: 'content_type=DO&content_type=GL' },
+			{ field: 'folder', urlModel: 'folders', urlParams: 'content_type=DO&content_type=GL&content_type=EN' },
 			{ field: 'applied_controls', urlModel: 'applied-controls' }
 		]
 	},

From b6ec102955560e173ce16761c957e5bd338deff6 Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Wed, 27 Nov 2024 12:13:14 +0100
Subject: [PATCH 061/107] Set up huey

- Install huey v2.5.2
- Configure huey with sqlite implementation
---
 backend/ciso_assistant/settings.py | 12 ++++++
 backend/poetry.lock                | 60 ++++++++----------------------
 backend/pyproject.toml             |  1 +
 3 files changed, 29 insertions(+), 44 deletions(-)

diff --git a/backend/ciso_assistant/settings.py b/backend/ciso_assistant/settings.py
index b0e821d19..32b1a25d3 100644
--- a/backend/ciso_assistant/settings.py
+++ b/backend/ciso_assistant/settings.py
@@ -153,6 +153,7 @@ def set_ciso_assistant_url(_, __, event_dict):
     "allauth.socialaccount",
     "allauth.socialaccount.providers.saml",
     "allauth.mfa",
+    "huey.contrib.djhuey",
 ]
 
 MIDDLEWARE = [
@@ -224,6 +225,7 @@ def set_ciso_assistant_url(_, __, event_dict):
     "MIN_REFRESH_INTERVAL": 60,
 }
 
+
 # Empty outside of debug mode so that allauth middleware does not raise an error
 STATIC_URL = ""
 
@@ -372,6 +374,16 @@ def set_ciso_assistant_url(_, __, event_dict):
     # OTHER SETTINGS
 }
 
+HUEY = {
+    "huey_class": "huey.SqliteHuey",  # Huey implementation to use.
+    "name": "huey-ciso-assistant",  # Use db name for huey.
+    "results": True,  # Store return values of tasks.
+    "store_none": False,  # If a task returns None, do not save to results.
+    "immediate": DEBUG,  # If DEBUG=True, run synchronously.
+    "utc": True,  # Use UTC for all times internally.
+    "filename": "db/huey.sqlite3",
+}
+
 # SSO with allauth
 
 ACCOUNT_USER_MODEL_USERNAME_FIELD = None
diff --git a/backend/poetry.lock b/backend/poetry.lock
index 1fe15109f..33acc7be3 100644
--- a/backend/poetry.lock
+++ b/backend/poetry.lock
@@ -1,4 +1,4 @@
-# This file is automatically @generated by Poetry 1.8.3 and should not be changed by hand.
+# This file is automatically @generated by Poetry 1.8.2 and should not be changed by hand.
 
 [[package]]
 name = "argon2-cffi"
@@ -107,10 +107,6 @@ files = [
     {file = "Brotli-1.1.0-cp310-cp310-musllinux_1_1_i686.whl", hash = "sha256:a37b8f0391212d29b3a91a799c8e4a2855e0576911cdfb2515487e30e322253d"},
     {file = "Brotli-1.1.0-cp310-cp310-musllinux_1_1_ppc64le.whl", hash = "sha256:e84799f09591700a4154154cab9787452925578841a94321d5ee8fb9a9a328f0"},
     {file = "Brotli-1.1.0-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:f66b5337fa213f1da0d9000bc8dc0cb5b896b726eefd9c6046f699b169c41b9e"},
-    {file = "Brotli-1.1.0-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:5dab0844f2cf82be357a0eb11a9087f70c5430b2c241493fc122bb6f2bb0917c"},
-    {file = "Brotli-1.1.0-cp310-cp310-musllinux_1_2_i686.whl", hash = "sha256:e4fe605b917c70283db7dfe5ada75e04561479075761a0b3866c081d035b01c1"},
-    {file = "Brotli-1.1.0-cp310-cp310-musllinux_1_2_ppc64le.whl", hash = "sha256:1e9a65b5736232e7a7f91ff3d02277f11d339bf34099a56cdab6a8b3410a02b2"},
-    {file = "Brotli-1.1.0-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:58d4b711689366d4a03ac7957ab8c28890415e267f9b6589969e74b6e42225ec"},
     {file = "Brotli-1.1.0-cp310-cp310-win32.whl", hash = "sha256:be36e3d172dc816333f33520154d708a2657ea63762ec16b62ece02ab5e4daf2"},
     {file = "Brotli-1.1.0-cp310-cp310-win_amd64.whl", hash = "sha256:0c6244521dda65ea562d5a69b9a26120769b7a9fb3db2fe9545935ed6735b128"},
     {file = "Brotli-1.1.0-cp311-cp311-macosx_10_9_universal2.whl", hash = "sha256:a3daabb76a78f829cafc365531c972016e4aa8d5b4bf60660ad8ecee19df7ccc"},
@@ -123,14 +119,8 @@ files = [
     {file = "Brotli-1.1.0-cp311-cp311-musllinux_1_1_i686.whl", hash = "sha256:19c116e796420b0cee3da1ccec3b764ed2952ccfcc298b55a10e5610ad7885f9"},
     {file = "Brotli-1.1.0-cp311-cp311-musllinux_1_1_ppc64le.whl", hash = "sha256:510b5b1bfbe20e1a7b3baf5fed9e9451873559a976c1a78eebaa3b86c57b4265"},
     {file = "Brotli-1.1.0-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:a1fd8a29719ccce974d523580987b7f8229aeace506952fa9ce1d53a033873c8"},
-    {file = "Brotli-1.1.0-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:c247dd99d39e0338a604f8c2b3bc7061d5c2e9e2ac7ba9cc1be5a69cb6cd832f"},
-    {file = "Brotli-1.1.0-cp311-cp311-musllinux_1_2_i686.whl", hash = "sha256:1b2c248cd517c222d89e74669a4adfa5577e06ab68771a529060cf5a156e9757"},
-    {file = "Brotli-1.1.0-cp311-cp311-musllinux_1_2_ppc64le.whl", hash = "sha256:2a24c50840d89ded6c9a8fdc7b6ed3692ed4e86f1c4a4a938e1e92def92933e0"},
-    {file = "Brotli-1.1.0-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:f31859074d57b4639318523d6ffdca586ace54271a73ad23ad021acd807eb14b"},
     {file = "Brotli-1.1.0-cp311-cp311-win32.whl", hash = "sha256:39da8adedf6942d76dc3e46653e52df937a3c4d6d18fdc94a7c29d263b1f5b50"},
     {file = "Brotli-1.1.0-cp311-cp311-win_amd64.whl", hash = "sha256:aac0411d20e345dc0920bdec5548e438e999ff68d77564d5e9463a7ca9d3e7b1"},
-    {file = "Brotli-1.1.0-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:32d95b80260d79926f5fab3c41701dbb818fde1c9da590e77e571eefd14abe28"},
-    {file = "Brotli-1.1.0-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:b760c65308ff1e462f65d69c12e4ae085cff3b332d894637f6273a12a482d09f"},
     {file = "Brotli-1.1.0-cp312-cp312-macosx_10_9_universal2.whl", hash = "sha256:316cc9b17edf613ac76b1f1f305d2a748f1b976b033b049a6ecdfd5612c70409"},
     {file = "Brotli-1.1.0-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:caf9ee9a5775f3111642d33b86237b05808dafcd6268faa492250e9b78046eb2"},
     {file = "Brotli-1.1.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:70051525001750221daa10907c77830bc889cb6d865cc0b813d9db7fefc21451"},
@@ -141,24 +131,8 @@ files = [
     {file = "Brotli-1.1.0-cp312-cp312-musllinux_1_1_i686.whl", hash = "sha256:4093c631e96fdd49e0377a9c167bfd75b6d0bad2ace734c6eb20b348bc3ea180"},
     {file = "Brotli-1.1.0-cp312-cp312-musllinux_1_1_ppc64le.whl", hash = "sha256:7e4c4629ddad63006efa0ef968c8e4751c5868ff0b1c5c40f76524e894c50248"},
     {file = "Brotli-1.1.0-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:861bf317735688269936f755fa136a99d1ed526883859f86e41a5d43c61d8966"},
-    {file = "Brotli-1.1.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:87a3044c3a35055527ac75e419dfa9f4f3667a1e887ee80360589eb8c90aabb9"},
-    {file = "Brotli-1.1.0-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:c5529b34c1c9d937168297f2c1fde7ebe9ebdd5e121297ff9c043bdb2ae3d6fb"},
-    {file = "Brotli-1.1.0-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:ca63e1890ede90b2e4454f9a65135a4d387a4585ff8282bb72964fab893f2111"},
-    {file = "Brotli-1.1.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:e79e6520141d792237c70bcd7a3b122d00f2613769ae0cb61c52e89fd3443839"},
     {file = "Brotli-1.1.0-cp312-cp312-win32.whl", hash = "sha256:5f4d5ea15c9382135076d2fb28dde923352fe02951e66935a9efaac8f10e81b0"},
     {file = "Brotli-1.1.0-cp312-cp312-win_amd64.whl", hash = "sha256:906bc3a79de8c4ae5b86d3d75a8b77e44404b0f4261714306e3ad248d8ab0951"},
-    {file = "Brotli-1.1.0-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:8bf32b98b75c13ec7cf774164172683d6e7891088f6316e54425fde1efc276d5"},
-    {file = "Brotli-1.1.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:7bc37c4d6b87fb1017ea28c9508b36bbcb0c3d18b4260fcdf08b200c74a6aee8"},
-    {file = "Brotli-1.1.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:3c0ef38c7a7014ffac184db9e04debe495d317cc9c6fb10071f7fefd93100a4f"},
-    {file = "Brotli-1.1.0-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:91d7cc2a76b5567591d12c01f019dd7afce6ba8cba6571187e21e2fc418ae648"},
-    {file = "Brotli-1.1.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a93dde851926f4f2678e704fadeb39e16c35d8baebd5252c9fd94ce8ce68c4a0"},
-    {file = "Brotli-1.1.0-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:f0db75f47be8b8abc8d9e31bc7aad0547ca26f24a54e6fd10231d623f183d089"},
-    {file = "Brotli-1.1.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:6967ced6730aed543b8673008b5a391c3b1076d834ca438bbd70635c73775368"},
-    {file = "Brotli-1.1.0-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:7eedaa5d036d9336c95915035fb57422054014ebdeb6f3b42eac809928e40d0c"},
-    {file = "Brotli-1.1.0-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:d487f5432bf35b60ed625d7e1b448e2dc855422e87469e3f450aa5552b0eb284"},
-    {file = "Brotli-1.1.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:832436e59afb93e1836081a20f324cb185836c617659b07b129141a8426973c7"},
-    {file = "Brotli-1.1.0-cp313-cp313-win32.whl", hash = "sha256:43395e90523f9c23a3d5bdf004733246fba087f2948f87ab28015f12359ca6a0"},
-    {file = "Brotli-1.1.0-cp313-cp313-win_amd64.whl", hash = "sha256:9011560a466d2eb3f5a6e4929cf4a09be405c64154e12df0dd72713f6500e32b"},
     {file = "Brotli-1.1.0-cp36-cp36m-macosx_10_9_x86_64.whl", hash = "sha256:a090ca607cbb6a34b0391776f0cb48062081f5f60ddcce5d11838e67a01928d1"},
     {file = "Brotli-1.1.0-cp36-cp36m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:2de9d02f5bda03d27ede52e8cfe7b865b066fa49258cbab568720aa5be80a47d"},
     {file = "Brotli-1.1.0-cp36-cp36m-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:2333e30a5e00fe0fe55903c8832e08ee9c3b1382aacf4db26664a16528d51b4b"},
@@ -168,10 +142,6 @@ files = [
     {file = "Brotli-1.1.0-cp36-cp36m-musllinux_1_1_i686.whl", hash = "sha256:fd5f17ff8f14003595ab414e45fce13d073e0762394f957182e69035c9f3d7c2"},
     {file = "Brotli-1.1.0-cp36-cp36m-musllinux_1_1_ppc64le.whl", hash = "sha256:069a121ac97412d1fe506da790b3e69f52254b9df4eb665cd42460c837193354"},
     {file = "Brotli-1.1.0-cp36-cp36m-musllinux_1_1_x86_64.whl", hash = "sha256:e93dfc1a1165e385cc8239fab7c036fb2cd8093728cbd85097b284d7b99249a2"},
-    {file = "Brotli-1.1.0-cp36-cp36m-musllinux_1_2_aarch64.whl", hash = "sha256:aea440a510e14e818e67bfc4027880e2fb500c2ccb20ab21c7a7c8b5b4703d75"},
-    {file = "Brotli-1.1.0-cp36-cp36m-musllinux_1_2_i686.whl", hash = "sha256:6974f52a02321b36847cd19d1b8e381bf39939c21efd6ee2fc13a28b0d99348c"},
-    {file = "Brotli-1.1.0-cp36-cp36m-musllinux_1_2_ppc64le.whl", hash = "sha256:a7e53012d2853a07a4a79c00643832161a910674a893d296c9f1259859a289d2"},
-    {file = "Brotli-1.1.0-cp36-cp36m-musllinux_1_2_x86_64.whl", hash = "sha256:d7702622a8b40c49bffb46e1e3ba2e81268d5c04a34f460978c6b5517a34dd52"},
     {file = "Brotli-1.1.0-cp36-cp36m-win32.whl", hash = "sha256:a599669fd7c47233438a56936988a2478685e74854088ef5293802123b5b2460"},
     {file = "Brotli-1.1.0-cp36-cp36m-win_amd64.whl", hash = "sha256:d143fd47fad1db3d7c27a1b1d66162e855b5d50a89666af46e1679c496e8e579"},
     {file = "Brotli-1.1.0-cp37-cp37m-macosx_10_9_x86_64.whl", hash = "sha256:11d00ed0a83fa22d29bc6b64ef636c4552ebafcef57154b4ddd132f5638fbd1c"},
@@ -183,10 +153,6 @@ files = [
     {file = "Brotli-1.1.0-cp37-cp37m-musllinux_1_1_i686.whl", hash = "sha256:919e32f147ae93a09fe064d77d5ebf4e35502a8df75c29fb05788528e330fe74"},
     {file = "Brotli-1.1.0-cp37-cp37m-musllinux_1_1_ppc64le.whl", hash = "sha256:23032ae55523cc7bccb4f6a0bf368cd25ad9bcdcc1990b64a647e7bbcce9cb5b"},
     {file = "Brotli-1.1.0-cp37-cp37m-musllinux_1_1_x86_64.whl", hash = "sha256:224e57f6eac61cc449f498cc5f0e1725ba2071a3d4f48d5d9dffba42db196438"},
-    {file = "Brotli-1.1.0-cp37-cp37m-musllinux_1_2_aarch64.whl", hash = "sha256:cb1dac1770878ade83f2ccdf7d25e494f05c9165f5246b46a621cc849341dc01"},
-    {file = "Brotli-1.1.0-cp37-cp37m-musllinux_1_2_i686.whl", hash = "sha256:3ee8a80d67a4334482d9712b8e83ca6b1d9bc7e351931252ebef5d8f7335a547"},
-    {file = "Brotli-1.1.0-cp37-cp37m-musllinux_1_2_ppc64le.whl", hash = "sha256:5e55da2c8724191e5b557f8e18943b1b4839b8efc3ef60d65985bcf6f587dd38"},
-    {file = "Brotli-1.1.0-cp37-cp37m-musllinux_1_2_x86_64.whl", hash = "sha256:d342778ef319e1026af243ed0a07c97acf3bad33b9f29e7ae6a1f68fd083e90c"},
     {file = "Brotli-1.1.0-cp37-cp37m-win32.whl", hash = "sha256:587ca6d3cef6e4e868102672d3bd9dc9698c309ba56d41c2b9c85bbb903cdb95"},
     {file = "Brotli-1.1.0-cp37-cp37m-win_amd64.whl", hash = "sha256:2954c1c23f81c2eaf0b0717d9380bd348578a94161a65b3a2afc62c86467dd68"},
     {file = "Brotli-1.1.0-cp38-cp38-macosx_10_9_universal2.whl", hash = "sha256:efa8b278894b14d6da122a72fefcebc28445f2d3f880ac59d46c90f4c13be9a3"},
@@ -199,10 +165,6 @@ files = [
     {file = "Brotli-1.1.0-cp38-cp38-musllinux_1_1_i686.whl", hash = "sha256:1ab4fbee0b2d9098c74f3057b2bc055a8bd92ccf02f65944a241b4349229185a"},
     {file = "Brotli-1.1.0-cp38-cp38-musllinux_1_1_ppc64le.whl", hash = "sha256:141bd4d93984070e097521ed07e2575b46f817d08f9fa42b16b9b5f27b5ac088"},
     {file = "Brotli-1.1.0-cp38-cp38-musllinux_1_1_x86_64.whl", hash = "sha256:fce1473f3ccc4187f75b4690cfc922628aed4d3dd013d047f95a9b3919a86596"},
-    {file = "Brotli-1.1.0-cp38-cp38-musllinux_1_2_aarch64.whl", hash = "sha256:d2b35ca2c7f81d173d2fadc2f4f31e88cc5f7a39ae5b6db5513cf3383b0e0ec7"},
-    {file = "Brotli-1.1.0-cp38-cp38-musllinux_1_2_i686.whl", hash = "sha256:af6fa6817889314555aede9a919612b23739395ce767fe7fcbea9a80bf140fe5"},
-    {file = "Brotli-1.1.0-cp38-cp38-musllinux_1_2_ppc64le.whl", hash = "sha256:2feb1d960f760a575dbc5ab3b1c00504b24caaf6986e2dc2b01c09c87866a943"},
-    {file = "Brotli-1.1.0-cp38-cp38-musllinux_1_2_x86_64.whl", hash = "sha256:4410f84b33374409552ac9b6903507cdb31cd30d2501fc5ca13d18f73548444a"},
     {file = "Brotli-1.1.0-cp38-cp38-win32.whl", hash = "sha256:db85ecf4e609a48f4b29055f1e144231b90edc90af7481aa731ba2d059226b1b"},
     {file = "Brotli-1.1.0-cp38-cp38-win_amd64.whl", hash = "sha256:3d7954194c36e304e1523f55d7042c59dc53ec20dd4e9ea9d151f1b62b4415c0"},
     {file = "Brotli-1.1.0-cp39-cp39-macosx_10_9_universal2.whl", hash = "sha256:5fb2ce4b8045c78ebbc7b8f3c15062e435d47e7393cc57c25115cfd49883747a"},
@@ -215,10 +177,6 @@ files = [
     {file = "Brotli-1.1.0-cp39-cp39-musllinux_1_1_i686.whl", hash = "sha256:949f3b7c29912693cee0afcf09acd6ebc04c57af949d9bf77d6101ebb61e388c"},
     {file = "Brotli-1.1.0-cp39-cp39-musllinux_1_1_ppc64le.whl", hash = "sha256:89f4988c7203739d48c6f806f1e87a1d96e0806d44f0fba61dba81392c9e474d"},
     {file = "Brotli-1.1.0-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:de6551e370ef19f8de1807d0a9aa2cdfdce2e85ce88b122fe9f6b2b076837e59"},
-    {file = "Brotli-1.1.0-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:0737ddb3068957cf1b054899b0883830bb1fec522ec76b1098f9b6e0f02d9419"},
-    {file = "Brotli-1.1.0-cp39-cp39-musllinux_1_2_i686.whl", hash = "sha256:4f3607b129417e111e30637af1b56f24f7a49e64763253bbc275c75fa887d4b2"},
-    {file = "Brotli-1.1.0-cp39-cp39-musllinux_1_2_ppc64le.whl", hash = "sha256:6c6e0c425f22c1c719c42670d561ad682f7bfeeef918edea971a79ac5252437f"},
-    {file = "Brotli-1.1.0-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:494994f807ba0b92092a163a0a283961369a65f6cbe01e8891132b7a320e61eb"},
     {file = "Brotli-1.1.0-cp39-cp39-win32.whl", hash = "sha256:f0d8a7a6b5983c2496e364b969f0e526647a06b075d034f3297dc66f3b360c64"},
     {file = "Brotli-1.1.0-cp39-cp39-win_amd64.whl", hash = "sha256:cdad5b9014d83ca68c25d2e9444e28e967ef16e80f6b436918c700c117a85467"},
     {file = "Brotli-1.1.0.tar.gz", hash = "sha256:81de08ac11bcb85841e440c13611c00b67d3bf82698314928d0b676362546724"},
@@ -984,6 +942,20 @@ chardet = ["chardet (>=2.2)"]
 genshi = ["genshi"]
 lxml = ["lxml"]
 
+[[package]]
+name = "huey"
+version = "2.5.2"
+description = "huey, a little task queue"
+optional = false
+python-versions = "*"
+files = [
+    {file = "huey-2.5.2.tar.gz", hash = "sha256:df33db474c05414ed40ee2110e9df692369871734da22d74ffb035a4bd74047f"},
+]
+
+[package.extras]
+backends = ["redis (>=3.0.0)"]
+redis = ["redis (>=3.0.0)"]
+
 [[package]]
 name = "humanize"
 version = "4.11.0"
@@ -2396,4 +2368,4 @@ test = ["pytest"]
 [metadata]
 lock-version = "2.0"
 python-versions = "^3.11"
-content-hash = "5f38fdc11bf9e530472b19a6527ef3a33008ab252e82e8e78fbd86414065f10a"
+content-hash = "821aaf8fbb21d8500884b69f44180e50accade9ff10587752ac69d9cd4e248ac"
diff --git a/backend/pyproject.toml b/backend/pyproject.toml
index 967f41b76..40144abed 100644
--- a/backend/pyproject.toml
+++ b/backend/pyproject.toml
@@ -32,6 +32,7 @@ python-magic = "0.4.27"
 pytz = "2024.2"
 fido2 = "^1.1.3"
 humanize = "^4.11.0"
+huey = "^2.5.2"
 
 [tool.poetry.group.dev.dependencies]
 pytest-django = "4.8.0"

From a08367f439c6b492b5862856529494c757092af3 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 16:30:32 +0100
Subject: [PATCH 062/107] chore: run format

---
 frontend/src/lib/utils/crud.ts                              | 6 +++++-
 .../requirement-assessments/[id=uuid]/edit/+page.server.ts  | 2 +-
 .../requirement-assessments/[id=uuid]/edit/+page.svelte     | 3 ++-
 3 files changed, 8 insertions(+), 3 deletions(-)

diff --git a/frontend/src/lib/utils/crud.ts b/frontend/src/lib/utils/crud.ts
index 2d357cf6e..8b3ef7458 100644
--- a/frontend/src/lib/utils/crud.ts
+++ b/frontend/src/lib/utils/crud.ts
@@ -420,7 +420,11 @@ export const URL_MODEL_MAP: ModelMap = {
 		verboseNamePlural: 'Evidences',
 		fileFields: ['attachment'],
 		foreignKeyFields: [
-			{ field: 'folder', urlModel: 'folders', urlParams: 'content_type=DO&content_type=GL&content_type=EN' },
+			{
+				field: 'folder',
+				urlModel: 'folders',
+				urlParams: 'content_type=DO&content_type=GL&content_type=EN'
+			},
 			{ field: 'applied_controls', urlModel: 'applied-controls' }
 		]
 	},
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
index 05a8fb4a0..5ff6cb8b7 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
@@ -36,7 +36,7 @@ export const load = (async ({ fetch, params }) => {
 		`${baseUrl}/compliance-assessments/${requirementAssessment.compliance_assessment.id}/global_score/`
 	);
 
-	const parent = requirementAssessment.requirement.parent_requirement
+	const parent = requirementAssessment.requirement.parent_requirement;
 
 	const model = getModelInfo(URLModel);
 	const object = { ...requirementAssessment };
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
index 5cbcc1e6a..9758d2c76 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.svelte
@@ -7,7 +7,8 @@
 	export let form: ActionData;
 
 	const threats = data.requirementAssessment.requirement.associated_threats ?? [];
-	const reference_controls = data.requirementAssessment.requirement.associated_reference_controls ?? [];
+	const reference_controls =
+		data.requirementAssessment.requirement.associated_reference_controls ?? [];
 	const annotation = data.requirement.annotation;
 	const typical_evidence = data.requirement.typical_evidence;
 

From 4cd65d5c486dc11fee55615fe6ff396b8ee9970e Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Wed, 27 Nov 2024 16:23:06 +0100
Subject: [PATCH 063/107] Add huey service to docker compose files

---
 docker-compose-build.yml                    | 17 +++++++++++++++++
 docker-compose-pg.yml                       | 15 +++++++++++++++
 docker-compose-prod.yml                     | 15 +++++++++++++++
 docker-compose-remote-api.yml               | 15 +++++++++++++++
 docker-compose-remote.yml                   | 15 +++++++++++++++
 docker-compose-traefik.yml                  | 15 +++++++++++++++
 docker-compose.yml                          | 15 +++++++++++++++
 enterprise/docker-compose-build.yml         | 17 +++++++++++++++++
 enterprise/docker-compose-pg.yml            | 15 +++++++++++++++
 enterprise/docker-compose-remote-api.yml    | 15 +++++++++++++++
 enterprise/docker-compose-remote.yml        | 15 +++++++++++++++
 enterprise/docker-compose.yml               | 15 +++++++++++++++
 frontend/tests/docker-compose.e2e-tests.yml | 15 +++++++++++++++
 13 files changed, 199 insertions(+)

diff --git a/docker-compose-build.yml b/docker-compose-build.yml
index efc6b204b..5fb7e4209 100644
--- a/docker-compose-build.yml
+++ b/docker-compose-build.yml
@@ -12,6 +12,23 @@ services:
     volumes:
       - ./db:/code/db
 
+  huey:
+    container_name: huey
+    build:
+      context: ./backend
+      dockerfile: Dockerfile
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     environment:
diff --git a/docker-compose-pg.yml b/docker-compose-pg.yml
index be5fc52e0..dba7835fb 100644
--- a/docker-compose-pg.yml
+++ b/docker-compose-pg.yml
@@ -16,6 +16,21 @@ services:
     volumes:
       - ./db:/code/db
 
+  huey:
+    container_name: huey
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     environment:
diff --git a/docker-compose-prod.yml b/docker-compose-prod.yml
index f71579b92..5bf39fe4d 100644
--- a/docker-compose-prod.yml
+++ b/docker-compose-prod.yml
@@ -11,6 +11,21 @@ services:
     volumes:
       - ./db:/code/db
 
+  huey:
+    container_name: huey
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     environment:
diff --git a/docker-compose-remote-api.yml b/docker-compose-remote-api.yml
index c61695b75..19c40840f 100644
--- a/docker-compose-remote-api.yml
+++ b/docker-compose-remote-api.yml
@@ -11,6 +11,21 @@ services:
     volumes:
       - ./db:/code/db
 
+  huey:
+    container_name: huey
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     environment:
diff --git a/docker-compose-remote.yml b/docker-compose-remote.yml
index cec4d86b1..4366180d2 100644
--- a/docker-compose-remote.yml
+++ b/docker-compose-remote.yml
@@ -11,6 +11,21 @@ services:
     volumes:
       - ./db:/code/db
 
+  huey:
+    container_name: huey
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     environment:
diff --git a/docker-compose-traefik.yml b/docker-compose-traefik.yml
index 58b6b226d..e13f36a8d 100644
--- a/docker-compose-traefik.yml
+++ b/docker-compose-traefik.yml
@@ -22,6 +22,21 @@ services:
     networks:
       - front
 
+  huey:
+    container_name: huey
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     restart: unless-stopped
diff --git a/docker-compose.yml b/docker-compose.yml
index d723deee3..277606864 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -11,6 +11,21 @@ services:
     volumes:
       - ./db:/code/db
 
+  huey:
+    container_name: huey
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     environment:
diff --git a/enterprise/docker-compose-build.yml b/enterprise/docker-compose-build.yml
index 56c2d9cb9..4ad962972 100644
--- a/enterprise/docker-compose-build.yml
+++ b/enterprise/docker-compose-build.yml
@@ -13,6 +13,23 @@ services:
     volumes:
       - ./db:/code/db
 
+  huey:
+    container_name: huey
+    build:
+      context: ../
+      dockerfile: ./enterprise/backend/Dockerfile
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     environment:
diff --git a/enterprise/docker-compose-pg.yml b/enterprise/docker-compose-pg.yml
index 0d483ef15..da9cd8f66 100644
--- a/enterprise/docker-compose-pg.yml
+++ b/enterprise/docker-compose-pg.yml
@@ -16,6 +16,21 @@ services:
     volumes:
       - ./db:/code/db
 
+  huey:
+    container_name: huey
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     environment:
diff --git a/enterprise/docker-compose-remote-api.yml b/enterprise/docker-compose-remote-api.yml
index 58efa4510..17aeb8a12 100644
--- a/enterprise/docker-compose-remote-api.yml
+++ b/enterprise/docker-compose-remote-api.yml
@@ -11,6 +11,21 @@ services:
     volumes:
       - ./db:/code/db
 
+  huey:
+    container_name: huey
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     environment:
diff --git a/enterprise/docker-compose-remote.yml b/enterprise/docker-compose-remote.yml
index 50fb12b6e..ed410bf33 100644
--- a/enterprise/docker-compose-remote.yml
+++ b/enterprise/docker-compose-remote.yml
@@ -11,6 +11,21 @@ services:
     volumes:
       - ./db:/code/db
 
+  huey:
+    container_name: huey
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     environment:
diff --git a/enterprise/docker-compose.yml b/enterprise/docker-compose.yml
index a17805a67..ab78faf90 100644
--- a/enterprise/docker-compose.yml
+++ b/enterprise/docker-compose.yml
@@ -13,6 +13,21 @@ services:
     volumes:
       - ./db:/code/db
 
+  huey:
+    container_name: huey
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   frontend:
     container_name: frontend
     environment:
diff --git a/frontend/tests/docker-compose.e2e-tests.yml b/frontend/tests/docker-compose.e2e-tests.yml
index 625114970..127f2f3bb 100644
--- a/frontend/tests/docker-compose.e2e-tests.yml
+++ b/frontend/tests/docker-compose.e2e-tests.yml
@@ -15,6 +15,21 @@ services:
     ports:
       - 8080:8000
 
+  huey:
+    container_name: huey
+    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+    restart: always
+    environment:
+      - ALLOWED_HOSTS=backend,localhost
+      - DJANGO_DEBUG=False
+    volumes:
+      - ./db:/code/db
+    entrypoint:
+      - /bin/sh
+      - -c
+      - |
+        poetry run python manage.py run_huey
+
   tests:
     container_name: functional-tests
     environment:

From 04ca202beb64b37a1d920ce2702ecb60ad163d5e Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 17:52:33 +0100
Subject: [PATCH 064/107] fix: api tests

---
 .../api/test_api_requirement_assessments.py   | 42 ++++++++++++++++++-
 backend/core/serializers.py                   |  1 +
 .../[id=uuid]/edit/+page.server.ts            |  2 -
 3 files changed, 41 insertions(+), 4 deletions(-)

diff --git a/backend/app_tests/api/test_api_requirement_assessments.py b/backend/app_tests/api/test_api_requirement_assessments.py
index ef49c83e1..0623212de 100644
--- a/backend/app_tests/api/test_api_requirement_assessments.py
+++ b/backend/app_tests/api/test_api_requirement_assessments.py
@@ -124,7 +124,26 @@ def test_get_requirement_assessments(self, test):
                     "id": str(compliance_assessment.id),
                     "str": compliance_assessment.name,
                 },
-                "requirement": str(RequirementNode.objects.all()[0].id),
+                "requirement": {
+                    "str": str(RequirementNode.objects.all()[0]),
+                    "id": str(RequirementNode.objects.all()[0].id),
+                    "urn": RequirementNode.objects.all()[0].urn,
+                    "annotation": RequirementNode.objects.all()[0].annotation,
+                    "name": RequirementNode.objects.all()[0].name,
+                    "description": RequirementNode.objects.all()[0].description,
+                    "typical_evidence": RequirementNode.objects.all()[0].typical_evidence,
+                    "ref_id": RequirementNode.objects.all()[0].ref_id,
+                    "associated_reference_controls": RequirementNode.objects.all()[0].associated_reference_controls,
+                    "associated_threats": RequirementNode.objects.all()[0].associated_threats,
+                    "parent_requirement": {
+                        "str": RequirementNode.objects.all()[0].parent_requirement.get("str"),
+                        "urn": RequirementNode.objects.all()[0].parent_requirement.get("urn"),
+                        "id": str(RequirementNode.objects.all()[0].parent_requirement.get("id")),
+                        "ref_id": RequirementNode.objects.all()[0].parent_requirement.get("ref_id"),
+                        "name": RequirementNode.objects.all()[0].parent_requirement.get("name"),
+                        "description": RequirementNode.objects.all()[0].parent_requirement.get("description"),
+                    } if RequirementNode.objects.all()[0].parent_requirement else None,
+                },
             },
             base_count=-1,
             user_group=test.user_group,
@@ -210,7 +229,26 @@ def test_update_requirement_assessments(self, test):
                     "id": str(compliance_assessment.id),
                     "str": compliance_assessment.name,
                 },
-                "requirement": str(RequirementNode.objects.all()[0].id),
+                "requirement": {
+                    "str": str(RequirementNode.objects.all()[0]),
+                    "id": str(RequirementNode.objects.all()[0].id),
+                    "urn": RequirementNode.objects.all()[0].urn,
+                    "annotation": RequirementNode.objects.all()[0].annotation,
+                    "name": RequirementNode.objects.all()[0].name,
+                    "description": RequirementNode.objects.all()[0].description,
+                    "typical_evidence": RequirementNode.objects.all()[0].typical_evidence,
+                    "ref_id": RequirementNode.objects.all()[0].ref_id,
+                    "associated_reference_controls": RequirementNode.objects.all()[0].associated_reference_controls,
+                    "associated_threats": RequirementNode.objects.all()[0].associated_threats,
+                    "parent_requirement": {
+                        "str": RequirementNode.objects.all()[0].parent_requirement.get("str"),
+                        "urn": RequirementNode.objects.all()[0].parent_requirement.get("urn"),
+                        "id": str(RequirementNode.objects.all()[0].parent_requirement.get("id")),
+                        "ref_id": RequirementNode.objects.all()[0].parent_requirement.get("ref_id"),
+                        "name": RequirementNode.objects.all()[0].parent_requirement.get("name"),
+                        "description": RequirementNode.objects.all()[0].parent_requirement.get("description"),
+                    } if RequirementNode.objects.all()[0].parent_requirement else None,
+                },
             },
             user_group=test.user_group,
         )
diff --git a/backend/core/serializers.py b/backend/core/serializers.py
index 413e40497..6771fd4ce 100644
--- a/backend/core/serializers.py
+++ b/backend/core/serializers.py
@@ -615,6 +615,7 @@ class RequirementAssessmentReadSerializer(BaseModelSerializer):
     assessable = serializers.BooleanField(source="requirement.assessable")
     requirement = FieldsRelatedField(
         [
+            "id",
             "urn",
             "annotation",
             "name",
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
index 5ff6cb8b7..08e68fed1 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/edit/+page.server.ts
@@ -29,8 +29,6 @@ export const load = (async ({ fetch, params }) => {
 	}
 
 	const requirementAssessment = await fetchJson(endpoint);
-	console.log(endpoint);
-	console.log(requirementAssessment);
 	const requirement = requirementAssessment.requirement;
 	const compliance_assessment_score = await fetchJson(
 		`${baseUrl}/compliance-assessments/${requirementAssessment.compliance_assessment.id}/global_score/`

From ea572b159e655b3cef92048738178ad7b5ed8b16 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 27 Nov 2024 17:53:49 +0100
Subject: [PATCH 065/107] chore: typo in api tests

---
 .../api/test_api_requirement_assessments.py   | 84 ++++++++++++++-----
 1 file changed, 64 insertions(+), 20 deletions(-)

diff --git a/backend/app_tests/api/test_api_requirement_assessments.py b/backend/app_tests/api/test_api_requirement_assessments.py
index 0623212de..12dad4661 100644
--- a/backend/app_tests/api/test_api_requirement_assessments.py
+++ b/backend/app_tests/api/test_api_requirement_assessments.py
@@ -131,18 +131,40 @@ def test_get_requirement_assessments(self, test):
                     "annotation": RequirementNode.objects.all()[0].annotation,
                     "name": RequirementNode.objects.all()[0].name,
                     "description": RequirementNode.objects.all()[0].description,
-                    "typical_evidence": RequirementNode.objects.all()[0].typical_evidence,
+                    "typical_evidence": RequirementNode.objects.all()[
+                        0
+                    ].typical_evidence,
                     "ref_id": RequirementNode.objects.all()[0].ref_id,
-                    "associated_reference_controls": RequirementNode.objects.all()[0].associated_reference_controls,
-                    "associated_threats": RequirementNode.objects.all()[0].associated_threats,
+                    "associated_reference_controls": RequirementNode.objects.all()[
+                        0
+                    ].associated_reference_controls,
+                    "associated_threats": RequirementNode.objects.all()[
+                        0
+                    ].associated_threats,
                     "parent_requirement": {
-                        "str": RequirementNode.objects.all()[0].parent_requirement.get("str"),
-                        "urn": RequirementNode.objects.all()[0].parent_requirement.get("urn"),
-                        "id": str(RequirementNode.objects.all()[0].parent_requirement.get("id")),
-                        "ref_id": RequirementNode.objects.all()[0].parent_requirement.get("ref_id"),
-                        "name": RequirementNode.objects.all()[0].parent_requirement.get("name"),
-                        "description": RequirementNode.objects.all()[0].parent_requirement.get("description"),
-                    } if RequirementNode.objects.all()[0].parent_requirement else None,
+                        "str": RequirementNode.objects.all()[0].parent_requirement.get(
+                            "str"
+                        ),
+                        "urn": RequirementNode.objects.all()[0].parent_requirement.get(
+                            "urn"
+                        ),
+                        "id": str(
+                            RequirementNode.objects.all()[0].parent_requirement.get(
+                                "id"
+                            )
+                        ),
+                        "ref_id": RequirementNode.objects.all()[
+                            0
+                        ].parent_requirement.get("ref_id"),
+                        "name": RequirementNode.objects.all()[0].parent_requirement.get(
+                            "name"
+                        ),
+                        "description": RequirementNode.objects.all()[
+                            0
+                        ].parent_requirement.get("description"),
+                    }
+                    if RequirementNode.objects.all()[0].parent_requirement
+                    else None,
                 },
             },
             base_count=-1,
@@ -236,18 +258,40 @@ def test_update_requirement_assessments(self, test):
                     "annotation": RequirementNode.objects.all()[0].annotation,
                     "name": RequirementNode.objects.all()[0].name,
                     "description": RequirementNode.objects.all()[0].description,
-                    "typical_evidence": RequirementNode.objects.all()[0].typical_evidence,
+                    "typical_evidence": RequirementNode.objects.all()[
+                        0
+                    ].typical_evidence,
                     "ref_id": RequirementNode.objects.all()[0].ref_id,
-                    "associated_reference_controls": RequirementNode.objects.all()[0].associated_reference_controls,
-                    "associated_threats": RequirementNode.objects.all()[0].associated_threats,
+                    "associated_reference_controls": RequirementNode.objects.all()[
+                        0
+                    ].associated_reference_controls,
+                    "associated_threats": RequirementNode.objects.all()[
+                        0
+                    ].associated_threats,
                     "parent_requirement": {
-                        "str": RequirementNode.objects.all()[0].parent_requirement.get("str"),
-                        "urn": RequirementNode.objects.all()[0].parent_requirement.get("urn"),
-                        "id": str(RequirementNode.objects.all()[0].parent_requirement.get("id")),
-                        "ref_id": RequirementNode.objects.all()[0].parent_requirement.get("ref_id"),
-                        "name": RequirementNode.objects.all()[0].parent_requirement.get("name"),
-                        "description": RequirementNode.objects.all()[0].parent_requirement.get("description"),
-                    } if RequirementNode.objects.all()[0].parent_requirement else None,
+                        "str": RequirementNode.objects.all()[0].parent_requirement.get(
+                            "str"
+                        ),
+                        "urn": RequirementNode.objects.all()[0].parent_requirement.get(
+                            "urn"
+                        ),
+                        "id": str(
+                            RequirementNode.objects.all()[0].parent_requirement.get(
+                                "id"
+                            )
+                        ),
+                        "ref_id": RequirementNode.objects.all()[
+                            0
+                        ].parent_requirement.get("ref_id"),
+                        "name": RequirementNode.objects.all()[0].parent_requirement.get(
+                            "name"
+                        ),
+                        "description": RequirementNode.objects.all()[
+                            0
+                        ].parent_requirement.get("description"),
+                    }
+                    if RequirementNode.objects.all()[0].parent_requirement
+                    else None,
                 },
             },
             user_group=test.user_group,

From 7819b144eb74ed6654e4e0c31483144af734ec19 Mon Sep 17 00:00:00 2001
From: Monsieur Sw4g <mael.joumier@intuitem.com>
Date: Wed, 27 Nov 2024 19:58:41 +0100
Subject: [PATCH 066/107] Convert stringified version to int

---
 backend/library/libraries/enisa-5g-scm-v1.3.yaml                | 2 +-
 backend/library/libraries/hds-v2023-a.yaml                      | 2 +-
 backend/library/libraries/ict-minimal.yaml                      | 2 +-
 .../libraries/mapping-ccb-cff-2023-03-01-to-iso27001-2022.yaml  | 2 +-
 .../libraries/mapping-cjis-policy-5.9.4-to-cjis-policy-5.9.yaml | 2 +-
 .../libraries/mapping-iso27001-2022-to-secnumcloud-3.2.yaml     | 2 +-
 .../libraries/mapping-secnumcloud-3.2-to-iso27001-2022.yaml     | 2 +-
 backend/library/libraries/nist-sp-800-66-rev2.yaml              | 2 +-
 backend/library/libraries/tisax-v5.1.yaml                       | 2 +-
 9 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/backend/library/libraries/enisa-5g-scm-v1.3.yaml b/backend/library/libraries/enisa-5g-scm-v1.3.yaml
index a947a3394..c142bef82 100644
--- a/backend/library/libraries/enisa-5g-scm-v1.3.yaml
+++ b/backend/library/libraries/enisa-5g-scm-v1.3.yaml
@@ -9,7 +9,7 @@ copyright: "The Matrix is provided on an \u2018as is\u2019 basis. ENISA is not r
   \ for the information contained in the Matrix, including the use that might be made\
   \ of this information, or the content of any external sources referenced in the\
   \ Matrix.\n"
-version: '2'
+version: 2
 provider: ENISA
 packager: intuitem
 objects:
diff --git a/backend/library/libraries/hds-v2023-a.yaml b/backend/library/libraries/hds-v2023-a.yaml
index 81ee2a49e..e64ca13dc 100644
--- a/backend/library/libraries/hds-v2023-a.yaml
+++ b/backend/library/libraries/hds-v2023-a.yaml
@@ -5,7 +5,7 @@ name: HDS v2023-A
 description: "R\xE9f\xE9rentiel de certification H\xE9bergeur de donn\xE9es de sant\xE9\
   \ (HDS) - Exigences"
 copyright: "Loi fran\xE7aise et europ\xE9enne"
-version: '1'
+version: 1
 provider: "Agence du Num\xE9rique en Sant\xE9"
 packager: intuitem
 objects:
diff --git a/backend/library/libraries/ict-minimal.yaml b/backend/library/libraries/ict-minimal.yaml
index 765b230a6..8754b7212 100644
--- a/backend/library/libraries/ict-minimal.yaml
+++ b/backend/library/libraries/ict-minimal.yaml
@@ -4,7 +4,7 @@ ref_id: ict-minimal
 name: ICT - Minimum standard
 description: Minimum standard for improving ICT resilience - Version may 2023
 copyright: Creative Commons BY.
-version: '1'
+version: 1
 provider: Swiss FONES
 packager: intuitem
 translations:
diff --git a/backend/library/libraries/mapping-ccb-cff-2023-03-01-to-iso27001-2022.yaml b/backend/library/libraries/mapping-ccb-cff-2023-03-01-to-iso27001-2022.yaml
index 2a6851832..b32fc99ce 100644
--- a/backend/library/libraries/mapping-ccb-cff-2023-03-01-to-iso27001-2022.yaml
+++ b/backend/library/libraries/mapping-ccb-cff-2023-03-01-to-iso27001-2022.yaml
@@ -5,7 +5,7 @@ name: CCB-CFF-2023-03-01 -> ISO/IEC 27001:2022
 description: Mapping from CCB CyberFundamentals Framework to International standard
   ISO/IEC 27001:2022
 copyright: intuitem
-version: '1'
+version: 1
 provider: CCB
 packager: intuitem
 dependencies:
diff --git a/backend/library/libraries/mapping-cjis-policy-5.9.4-to-cjis-policy-5.9.yaml b/backend/library/libraries/mapping-cjis-policy-5.9.4-to-cjis-policy-5.9.yaml
index e6288ab9e..9c424ee7c 100644
--- a/backend/library/libraries/mapping-cjis-policy-5.9.4-to-cjis-policy-5.9.yaml
+++ b/backend/library/libraries/mapping-cjis-policy-5.9.4-to-cjis-policy-5.9.yaml
@@ -5,7 +5,7 @@ name: CJIS-POLICY-5.9.4 -> CJIS-POLICY-5.9.5
 description: Mapping from Criminal Justice Information Services (CJIS) Security Policy
   to Criminal Justice Information Services (CJIS) Security Policy 5.9.5
 copyright: intuitem
-version: '1'
+version: 1
 provider: intuitem
 packager: intuitem
 dependencies:
diff --git a/backend/library/libraries/mapping-iso27001-2022-to-secnumcloud-3.2.yaml b/backend/library/libraries/mapping-iso27001-2022-to-secnumcloud-3.2.yaml
index 033048444..fbc6ab392 100644
--- a/backend/library/libraries/mapping-iso27001-2022-to-secnumcloud-3.2.yaml
+++ b/backend/library/libraries/mapping-iso27001-2022-to-secnumcloud-3.2.yaml
@@ -6,7 +6,7 @@ description: "Correspondance entre la norme internationale ISO/IEC 27001:2022 et
   \ r\xE9f\xE9rentiel d\u2019exigences de prestataires de services d\u2019informatique\
   \ en nuage (SecNumCloud 3.2)"
 copyright: https://www.iso.org/standard/27001 - ANSSI - ANS
-version: '1'
+version: 1
 provider: ISO/IEC - ANSSI - ANS (annexe 1 du document HDS 2.0)
 packager: protocolpaladin
 dependencies:
diff --git a/backend/library/libraries/mapping-secnumcloud-3.2-to-iso27001-2022.yaml b/backend/library/libraries/mapping-secnumcloud-3.2-to-iso27001-2022.yaml
index 5757c0044..f8c2c25cf 100644
--- a/backend/library/libraries/mapping-secnumcloud-3.2-to-iso27001-2022.yaml
+++ b/backend/library/libraries/mapping-secnumcloud-3.2-to-iso27001-2022.yaml
@@ -6,7 +6,7 @@ description: "Correspondance entre le r\xE9f\xE9rentiel d\u2019exigences de pres
   \ de services d\u2019informatique en nuage (SecNumCloud 3.2) et la norme internationale\
   \ ISO/IEC 27001:2022"
 copyright: https://www.iso.org/standard/27001 - ANSSI - ANS
-version: '1'
+version: 1
 provider: ISO/IEC - ANSSI - ANS (annexe 1 du document HDS 2.0)
 packager: protocolpaladin
 dependencies:
diff --git a/backend/library/libraries/nist-sp-800-66-rev2.yaml b/backend/library/libraries/nist-sp-800-66-rev2.yaml
index 642cf412b..0abb9c32a 100644
--- a/backend/library/libraries/nist-sp-800-66-rev2.yaml
+++ b/backend/library/libraries/nist-sp-800-66-rev2.yaml
@@ -10,7 +10,7 @@ description: 'Implementing the Health Insurance Portability and Accountability A
   '
 copyright: With the exception of material marked as copyrighted, information presented
   on NIST sites are considered public information and may be distributed or copied.
-version: '1'
+version: 1
 provider: NIST
 packager: intuitem
 objects:
diff --git a/backend/library/libraries/tisax-v5.1.yaml b/backend/library/libraries/tisax-v5.1.yaml
index 1acb92ea8..b6cb73318 100644
--- a/backend/library/libraries/tisax-v5.1.yaml
+++ b/backend/library/libraries/tisax-v5.1.yaml
@@ -21,7 +21,7 @@ copyright: "Publisher: VERBAND DER AUTOMOBILINDUSTRIE e.\_V. (VDA, German Associ
   \ Creative Commons Attribution - No Derivative Works 4.0 International Public License.\
   \ In addition, You are granted the right to distribute derivatives under certain\
   \ terms."
-version: '1'
+version: 1
 provider: VDA
 packager: intuitem
 objects:

From 17e159f0062ec7f8af0db76c12e44afcbd56d87b Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Thu, 28 Nov 2024 10:44:45 +0100
Subject: [PATCH 067/107] starting point

---
 frontend/src/lib/components/DataViz/Card.svelte      |  4 ++--
 .../routes/(app)/(internal)/analytics/+page.svelte   | 12 ++++++------
 2 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/frontend/src/lib/components/DataViz/Card.svelte b/frontend/src/lib/components/DataViz/Card.svelte
index e2c7818eb..ad465bb7c 100644
--- a/frontend/src/lib/components/DataViz/Card.svelte
+++ b/frontend/src/lib/components/DataViz/Card.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
 	export let count: string = '0';
 	export let label: string;
-	// export let href: string | undefined = undefined;
+	export let href: string | undefined = undefined;
 	// export let help: string;
 	export let icon: string;
 	export let section: string;
@@ -20,7 +20,7 @@
 		<span>{section}</span>
 	</div>
 	<div class="mt-auto">
-		<div class="text-4xl font-bold text-left">{count}</div>
+		<a class="text-4xl font-bold text-left" {href}>{count}</a>
 		<div class="text-sm">{label}</div>
 	</div>
 </div>
diff --git a/frontend/src/routes/(app)/(internal)/analytics/+page.svelte b/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
index a748f3b08..1f0dff0aa 100644
--- a/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
+++ b/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
@@ -144,7 +144,7 @@
 					<Card
 						count={metrics.controls.total}
 						label={m.sumpageTotal()}
-						href="#"
+						href="/applied-controls/"
 						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
@@ -153,7 +153,7 @@
 					<Card
 						count={metrics.controls.active}
 						label={m.sumpageActive()}
-						href="#"
+						href="/applied-controls/?status=active"
 						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
@@ -161,7 +161,7 @@
 					<Card
 						count={metrics.controls.deprecated}
 						label={m.sumpageDeprecated()}
-						href="#"
+						href="/applied-controls/?status=deprecated"
 						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
@@ -172,7 +172,7 @@
 					<Card
 						count={metrics.controls.to_do}
 						label={m.sumpageToDo()}
-						href="#"
+						href="/applied-controls/?status=to_do"
 						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
@@ -180,7 +180,7 @@
 					<Card
 						count={metrics.controls.in_progress}
 						label={m.sumpageInProgress()}
-						href="#"
+						href="/applied-controls/?status=in_progress"
 						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
@@ -188,7 +188,7 @@
 					<Card
 						count={metrics.controls.on_hold}
 						label={m.sumpageOnHold()}
-						href="#"
+						href="/applied-controls/?status=on_hold"
 						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}

From c9cacbe93983ccd1ae6df573bc94bda1cd8afe04 Mon Sep 17 00:00:00 2001
From: eric-intuitem <71850047+eric-intuitem@users.noreply.github.com>
Date: Thu, 28 Nov 2024 10:57:11 +0100
Subject: [PATCH 068/107] Spec/ebios rm (#1092)

Co-authored-by: Abder <smimite@gmail.com>
---
 documentation/architecture/data-model.md | 713 +++++++++++------------
 1 file changed, 333 insertions(+), 380 deletions(-)

diff --git a/documentation/architecture/data-model.md b/documentation/architecture/data-model.md
index 7ea40fa8c..be94a8a39 100644
--- a/documentation/architecture/data-model.md
+++ b/documentation/architecture/data-model.md
@@ -56,16 +56,19 @@ erDiagram
     ROOT_FOLDER           ||--o{ USER_GROUP                  : contains
     ROOT_FOLDER           ||--o{ ROLE                        : contains
     ROOT_FOLDER           ||--o{ ROLE_ASSIGNMENT             : contains
+    ROOT_FOLDER           ||--o{ LABEL                       : contains
     ROOT_FOLDER_OR_DOMAIN ||--o{ EVIDENCE                    : contains
     ROOT_FOLDER_OR_DOMAIN ||--o{ REFERENCE_CONTROL           : contains
     ROOT_FOLDER_OR_DOMAIN ||--o{ APPLIED_CONTROL             : contains
     ROOT_FOLDER_OR_DOMAIN ||--o{ RISK_ACCEPTANCE             : contains
     ROOT_FOLDER_OR_DOMAIN ||--o{ ASSET                       : contains
     ROOT_FOLDER_OR_DOMAIN ||--o{ THREAT                      : contains
+    ROOT_FOLDER_OR_DOMAIN ||--o{ VULNERABILITY               : contains
     ROOT_FOLDER_OR_DOMAIN ||--o{ COMPLIANCE_ASSESSMENT       : contains
     ROOT_FOLDER_OR_DOMAIN ||--o{ RISK_ASSESSMENT             : contains
 
     DOMAIN {
+        string ref_id
         string name
         string description
         int version
@@ -113,8 +116,13 @@ erDiagram
     RISK_ACCEPTANCE              }o--o{ RISK_SCENARIO         : covers
     RISK_ASSESSMENT_REVIEW       }o--|| RISK_ASSESSMENT       : reviews
     RISK_SCENARIO                }o--o{ VULNERABILITY         : exploits
+    VULNERABILITY                }o--o{ APPLIED_CONTROL       : is_fixed_by
+    USER                         }o--o{ RISK_SCENARIO         : owns
+    USER                         }o--o{ APPLIED_CONTROL       : owns
+    USER                         }o--o{ ASSET                 : owns
 
     PROJECT {
+        string ref_id
         string name
         string description
         string ref_id
@@ -138,6 +146,7 @@ erDiagram
     }
 
     COMPLIANCE_ASSESSMENT {
+        string      ref_id
         string      name
         string      description
 
@@ -148,16 +157,16 @@ erDiagram
         string      status
         principal[] author
         principal[] reviewer
-        string[]    tags
         string      observation
 
         string[]    selected_implementation_groups
-        int     min_score
-        int     max_score
-        json    scores_definition
+        int         min_score
+        int         max_score
+        json        scores_definition
     }
 
     RISK_ASSESSMENT {
+        string      ref_id
         string      name
         string      description
 
@@ -167,10 +176,8 @@ erDiagram
         string      status
         principal[] author
         principal[] reviewer
-        string[]    tags
         string      observation
-
-        string      risk_assessment_method
+        boolean     embedded
     }
 
     THREAT {
@@ -184,16 +191,6 @@ erDiagram
         json    translations
     }
 
-    VULNERABILITY {
-        string  urn
-        string  locale
-        string  ref_id
-        string  name
-        string  description
-        string  annotation
-        string  provider
-    }
-
     REQUIREMENT_NODE {
         string  urn
         string  locale
@@ -226,6 +223,7 @@ erDiagram
     }
 
     APPLIED_CONTROL {
+        string  ref_id
         string   name
         string   description
 
@@ -237,9 +235,18 @@ erDiagram
         url      link
         string   effort
         float    cost
-        string[] tags
     }
 
+    VULNERABILITY {
+        string  ref_id
+        string  name
+        string  description
+        string  status
+        int     severity
+        json    references
+    }
+
+
     REQUIREMENT_ASSESSMENT {
         string status
         string observation
@@ -278,10 +285,12 @@ erDiagram
     ASSET {
         string name
         string description
-
         string business_value
         string type
         asset  parent_asset
+        url    reference_link
+        json   security_objectives
+        json   disaster_recovery_objectives
     }
 
     RISK_SCENARIO {
@@ -299,8 +308,7 @@ erDiagram
         string strength_of_knowledge
         string justification
         json   qualifications
-
-        principal[] owner
+        string threat_actor
     }
 
     RISK_ACCEPTANCE {
@@ -354,353 +362,24 @@ erDiagram
 
 ```
 
-## Class diagram for IAM objects
+### Labels
 
-```mermaid
-classDiagram
-direction RL
-
-AbstractBaseModel    <|-- NameDescriptionMixin
-NameDescriptionMixin <|-- Folder
-NameDescriptionMixin <|-- UserGroup
-FolderMixin          <|-- UserGroup
-FolderMixin          <|-- User
-AbstractBaseModel    <|-- User
-AbstractBaseUser     <|-- User
-NameDescriptionMixin <|-- Role
-FolderMixin          <|-- Role
-NameDescriptionMixin <|-- RoleAssignment
-FolderMixin          <|-- RoleAssignment
-
-class AbstractBaseModel{
-    +UUIDField id
-    +DateTimeField created_at
-    +DateTimeField updated_at
-    +BooleanField is_published
-    +scoped_id() UUID
-    +display_path() str
-    +display_name() str
-    +edit_url() str
-    +get_scope() Folder
-    +clean()
-    +save()
-}
+All objects can be linked to user-defined labels. Labels are simple strings with no blank, regex r"\w{0:36}".
 
-class NameDescriptionMixin{
-    +CharField name
-    +CharField description
-}
-
-class Folder {
-    +CharField content_type
-    +Folder parent_folder
-    +booleanField builtin
-    +subfolders() Folder[]
-    +get_parent_folders() Folder[]
-    +get_folder() Folder$
-}
-
-class FolderMixin {
-    +Folder folder
-}
-
-class UserGroup {
-    +booleanField builtin
-    +get_name_display() str
-}
-
-class User {
-    +CharField last_name
-    +CharField first_name
-    +CharField email
-    +BooleanField first_login
-    +BooleanField is_active
-    +DateTimeField date_joined
-    +BooleanField is_superuser
-    +UserGroup[] user_groups
-    +get_full_name() str
-    +get_short_name() str
-    +mailing()
-    +has_backup_permission() bool
-    +edit_url() str
-    +username() str
-    +permissions()
-}
-
-class Role {
-    +Permission[] permissions
-    +booleanField builtin
-}
-
-class RoleAssignment {
-    +Folder[] perimeter_folders
-    +User user
-    +UserGroup user_group
-    +Role role
-    +BooleanField is_recursive
-    +BooleanField builtin
-
-    +is_access_allowed(user, perm, folder) bool$
-    +get_accessible_folders(folder, user, content_tupe, codename) Folder[]$
-    +get_accessible_object_ids(folder, user, object_type) UUID[]$
-    +is_user_assigned(user) bool
-    +get_role_assignments(user) RoleAssignment[]$
-    +get_permissions(user) Permission[]$
-    +has_role(user, role) bool$
-}
-
-```
-
-## Class diagram for general objects
+Labels are attached to the root folder. They can be read by everyone, added by any contributor, and modified or deleted only by global administrators. 
 
 ```mermaid
-classDiagram
-direction RL
-
-NameDescriptionMixin   <|-- RiskScenario
-AbstractBaseModel      <|-- NameDescriptionMixin
-NameDescriptionMixin   <|-- ReferentialObjectMixin
-FolderMixin            <|-- ReferentialObjectMixin
-ReferentialObjectMixin <|-- Threat
-ReferentialObjectMixin <|-- ReferenceControl
-ReferentialObjectMixin <|-- RiskMatrix
-ReferentialObjectMixin <|-- Framework
-ReferentialObjectMixin <|-- RequirementNode
-ReferentialObjectMixin <|-- Mapping
-ReferentialObjectMixin <|-- LibraryMixin
-LibraryMixin           <|-- StoredLibrary
-LibraryMixin           <|-- LoadedLibrary
-NameDescriptionMixin   <|-- Assessment
-FolderMixin            <|-- Project
-NameDescriptionMixin   <|-- Project
-FolderMixin            <|-- Asset
-NameDescriptionMixin   <|-- Asset
-FolderMixin            <|-- Evidence
-NameDescriptionMixin   <|-- Evidence
-FolderMixin            <|-- AppliedControl
-NameDescriptionMixin   <|-- AppliedControl
-FolderMixin            <|-- RiskAcceptance
-NameDescriptionMixin   <|-- RiskAcceptance
-AppliedControl         <|-- Policy
-Assessment             <|-- RiskAssessment
-Assessment             <|-- ComplianceAssessment
-AbstractBaseModel      <|-- RequirementAssessment
-FolderMixin            <|-- RequirementAssessment
-
-namespace ReferentialObjects {
-    class ReferentialObjectMixin {
-        +CharField urn
-        +CharField ref_id
-        +CharField locale
-        +CharField provider
-        +CharField annotation
-        +display_short() str
-        +display_long() str
-    }
-
-    class LibraryMixin {
-        +CharField copyright
-        +IntegerField version
-        +CharField provider
-        +CharField packager
-        +JsonField dependencies
-        +BooleanField builtin
-        +JSONField objects_meta
-    }
-
-    class StoredLibrary {
-        +BooleanField is_loaded
-        +CharField hash_checksum
-        +TextField content
-    }
-
-    class LoadedLibrary {
-        +LoadedLibrary[] dependencies
-        +reference_count() int
-    }
-
-    class Threat {
-        +LoadedLibrary library
-        +is_deletable() bool
-        +frameworks() Framework[]
-    }
-
-    class ReferenceControl {
-        +LoadedLibrary library
-        +CharField category
-        +CharField csf_function
-        +JSONField typical_evidence
-        +is_deletable() bool
-        +frameworks() Framework[]
-    }
-
-    class RiskMatrix {
-        +LoadedLibrary library
-        +JSONField json_definition
-        +BooleanField is_enabled
-        +CharField provider
-        +is_used() bool
-        +risk_assessments() RiskAssessment[]
-        +projects() Project[]
-        +parse_json()
-        +get_detailed_grid()
-        +render_grid_as_colors()
-    }
-
-    class Framework {
-        +LoadedLibrary library
-        +int get_next_order_id(obj_type, _parent_urn)
-        +is_deletable() bool
-    }
-
-    class RequirementNode {
-        +Threat[] threats
-        +ReferenceControl[] REFERENCE_CONTROLs
-        +Framework framework
-        +CharField parent_urn
-        +IntegerField order_id
-        +json implementation_groups
-        +BooleanField assessable
-    }
-
-    class Mapping {
-        +CharField    reference_urn
-        +CharField    target_urn
-        +CharField    rationale
-        +CharField    relationship
-        +BooleanField fulfilled_by
-        +IntegerField strength
-    }
-}
-
-namespace DomainObjects {
-
-    class Project {
-        +CharField internal_reference
-        +CharField lc_status
-        +overall_compliance()
-    }
-
-    class Asset {
-        +CharField business_value
-        +CharField type
-        +Asset[] parent_assets
-        +is_primary() bool
-        +is_support() bool
-        +ancestors_plus_self() Asset[]
-    }
-
-    class Evidence {
-        +FileField attachment
-        +URLField link
-        +get_folder() Folder
-        +filename() str
-        +preview()
-    }
-
-    class AppliedControl {
-        +ReferenceControl REFERENCE_CONTROL
-        +Evidence[] evidences
-        +CharField category
-        +CharField csf_function
-        +CharField status
-        +DateField eta
-        +DateField expiry_date
-        +CharField link
-        +CharField effort
-        +Decimal   cost
-
-        +RiskScenario[] risk_scenarios()
-        +RiskAssessments[] risk_assessments()
-        +Project[] projects()
-        +Project parent_project()
-        +mid()
-        +csv_value()
-        +get_ranking_score() int
-        +get_html_url() str
-        +get_linked_requirements_count() int
-    }
-
-    class RiskAcceptance {
-        +RiskScenario[] risk_scenarios
-        +User approver
-        +CharField state
-        +DateField expiry_date
-        +DateTimeField accepted_at
-        +DateTimeField rejected_at
-        +DateTimeField revoked_at
-        +CharField justification
-        +get_html_url() str
-        +set_state(state)
+erDiagram
+    ANY_USER_DEFINED_OBJECT   }o--o{ LABEL : has_label
+ 
+    LABEL {
+        string  label
     }
-}
-
-class Assessment {
-    +TextChoices Status
-    +Project project
-    +CharField version
-    +CharField status
-    +CharField authors
-    +CharField reviewers
-    +DateField eta
-    +DateField due_date
-}
-
-class RiskAssessment {
-    +RiskMatrix risk_matrix
-    +path_display() str
-    +get_scenario_count() int
-    +quality_check()
-    +risk_scoring(probability, impact, risk_matrix) int
-}
-
-
-class ComplianceAssessment {
-    +Framework framework
-    +CharField result
-    +get_requirements_status_count() int
-    +get_measures_status_count() int
-    +donut_render()
-    +quality_check()
-}
+```
 
-class RequirementAssessment {
-    +CharField status
-    +Evidence[] evidences
-    +TextField observation
-    +ComplianceAssessment compliance_assessment
-    +RequirementNode requirement
-    +AppliedControl[] APPLIED_CONTROLs
-}
+In all views and analytics, a filter on label shall be displayed.
 
-class RiskScenario {
-    +RiskAssessment risk_assessment
-    +Asset[] assets
-    +AppliedControl[] APPLIED_CONTROLs
-    +Threat[] threats
-    +TextField existing_controls
-    +SmallIntegerField current_proba
-    +SmallIntegerField current_impact
-    +SmallIntegerField current_level
-    +SmallIntegerField residual_proba
-    +SmallIntegerField residual_impact
-    +SmallIntegerField residual_level
-    +CharField treatment
-    +CharField strength_of_knowledge
-    +CharField justification
-
-    +Project parent_project()
-    +RiskMatrix get_matrix()
-    +get_current_risk(s) int
-    +get_current_impact() int
-    +get_current_proba() int
-    +get_residual_risk() int
-    +get_residual_impact() int
-    +get_residual_proba() int
-    +rid()
-}
-
-```
+Note: in MVP, labels are attached only to vulnerabilities.
 
 ## Global fields
 
@@ -723,16 +402,68 @@ Note: the IAM model is based on folders. A folder has a type among:
 
 Projects have the following fields:
 
+- ref_id (ex internal reference)
 - Name
 - Description
-- Internal reference
 - Status: --/Design/Development/Production/End of life/Dropped
 
-## Assets
+## Assets, security and disaster recovery objectives
 
 Assets are context objects defined by the entity using CISO Assistant. They are optional, assessments can be done without using them.
 
-Assets are of type primary or support. A primary asset has no parent, a support asset can have parent assets (primary or support), but not itself.
+Assets are of type primary or supporting. A primary asset has no parent, a supporting asset can have parent assets (primary or supporting), but not itself.
+
+Primary assets have security objectives that are evolutive, so they are catched in a json field.
+
+Security objectives are specific goals or requirements that an organization, system, or process aims to achieve in order to ensure its security and protect its primary assets.
+
+There is a global parameter that defines a list of security objectives with a corresponding scale and a corresponding boolean allowing to select or hide a security objective. The following security objectives are pre-defined: 
+
+ ref_id | Name                       | Description | default scale | default select value
+--------|----------------------------|-------------|---------------|---------------------
+ C      | Confidentiality            | ...         | 1-4           | True
+ I      | Integrity                  | ...         | 1-4           | True
+ A      | Availability               | ...         | 1-4           | True
+ P      | Proof                      | ...         | 1-4           | True
+ Auth   | Authenticity               | ...         | 1-4           | False
+ Priv   | Privacy                    | ...         | 1-4           | False
+ Safe   | Safety                     | ...         | 1-4           | False
+
+The following disaster recovery objectives (measured in seconds) are pre-defined:
+
+ ref_id | Name                       | Description
+--------|----------------------------|------------
+ RTO    | Recovery Time Objective    | ...         
+ RPO    | Recovery Point Objetive    | ...         
+ MTD    | Maximum Tolerable Downtime | ...
+
+In a future version, users will be able to define custom security objectives.
+
+Security objectives are measured using a specifc scale. For now, the following scales are defined:
+- 0-3: coded as 0-3
+- 1-4: coded as 0-3
+- FIPS-199: coded as 0-3
+
+There is a correspondance between the 0-3, 1-4 and FIPS-199 scales (called "discrete scales"):
+
+scale    | internal value | scale value
+---------|----------------|---------------
+0-3      | 0              | 0
+0-3      | 1              | 1
+0-3      | 2              | 2
+0-3      | 3              | 3
+1-4      | 0              | 1
+1-4      | 1              | 2
+1-4      | 2              | 3
+1-4      | 3              | 4
+FIPS-199 | 0              | low
+FIPS-199 | 1              | moderate
+FIPS-199 | 2              | moderate
+FIPS-199 | 3              | high
+
+Security objectives can be evaluated for each asset. The default value is Null. The corresponding json field is composed of a list of tuples {security_objective_ref_id, value}.
+
+When a security objective is hidden in the global parameters, it is simply not proposed for new edition. However, a security objective that is already used in an asset is kept and editable even if it is hidden globally. Thus, when selecting or hiding a security objective, no value is changed in asset.
 
 ## Frameworks
 
@@ -773,7 +504,20 @@ Threats are referential objects used to clarify the aim of a requirement node or
 
 ## Vulnerabilities
 
-Vulnerabilities are referential objects used to clarify a risk scenario and to follow remediations. They are informative, risk assessments can be realised without using them. Well-known providers are NVD and CISA KEV, but custom vulnerabilities can also be defined, e.g. to point a weakness in an internal process.
+Vulnerabilities are used to clarify a risk scenario and to follow remediations, e.g. after a pentest. They are informative, risk assessments can be realised without using them. Reference to CVE, CISA KEV or any other catalog can be done in the references field, but this is not mandatory. Therefore, custom vulnerabilities can also be defined, e.g. to point a weakness in an internal process.
+
+Vulnerabilities have a status among the following values: --/potential/exploitable/mitigated/fixed.
+
+The format of the references field is list of the following objects (* for mandatory):
+- string ref_id (*)
+- url reference_link
+- boolean is_cve
+- boolean is_kev
+- ...
+
+The UX shall facilitate the proper edition of references.
+
+Vulnerabilities also have a ref_id (defaults to empty string), a name, a description, and a severity within values --/low/medium/high/critical (coded as an integer from -1 to 3).
 
 ## Reference controls
 
@@ -797,7 +541,6 @@ A applied control has the following specific fields:
 - an effort (--/S/M/L/XL)
 - a cost (--/float value)
 - a url link
-- a list of user-defined tags
 
 When a applied control derives from a reference control, the same category and csf_function are proposed, but this can be changed.
 
@@ -815,7 +558,6 @@ Both types of assessments have common fields:
 - a status: (--/planned/in progress/in review/done/deprecated) that facilitates reporting.
 - a list of authors
 - a list of reviewers
-- a list of user-defined tags
 
 An assessment review can be asked. When at least one principal is defined, the _done_ status can only be set if a representant of each principal has reviewed and validated the assessment.
 
@@ -881,6 +623,9 @@ The following inference rules are used:
 
 A risk assessment is based on scenarios, covered by Applied controls. Gathering the risk scenarios constitutes the "risk identification" phase.
 
+
+The risk matrix cannot be changed once the risk assessment is created.
+
 A risk assessment has an _risk_assessment_method_ field that can take the following values: 0 (risk matrix)/1 (Open FAIR). This cannot be changed once the risk assessment is created. Similarly, the risk matrix cannot be changed once the risk assessment is created.
 
 To analyse the risk, each scenario contains Existing Controls, current probability and impact, proposed controls, residual probability and impact. To facilitate using an assistant to estimate probability and impact, or for advanced methods like openfair, the json fields _current_risk_vector_ and _residual_risk_vector_ are aimed at keeping the data used to calculate to the estimation.
@@ -889,7 +634,9 @@ A risk scenario contains a treatment option with the values --/open/mitigate/acc
 
 A risk scenario also contains a "strength of knowledge", within the values --/0 (Low)/1 (Medium)/2 (High). This can be used to represent a third dimension of risk, as recommended by the Society for Risk Analysis. The field "justification" can be used to expose the knowledge.
 
-A risk scenario also contains a "qualification" field, containing an array with the following possible values: Confidentiality, Integrity, Availability, Authenticity, Reputation, Operational, Legal, Financial. The qualification can cover none, one or several of the values.
+A risk scenario also contains a "qualification" field, containing an array with the following possible values: Confidentiality, Integrity, Availability, Proof, Authenticity, Privacy, Safety, Reputation, Operational, Legal, Financial. The qualification can cover none, one or several of the values.
+
+Note: the list of qualifications is a superset of security objectives.
 
 The risk evaluation is automatically done based on the selected risk matrix.
 
@@ -966,7 +713,6 @@ Libraries can contain:
 
 - frameworks (including requirement nodes)
 - threats
-- vulnerabilities
 - reference controls
 - risk matrices
 - requirement mapping sets
@@ -994,7 +740,7 @@ Deleting a library is possible only if none of its objects is currently used. Re
 
 ## Referential objects
 
-Frameworks (including requirement nodes), mappings, threats, vulnerabilities, reference controls and risk matrices are called "referential objects", as they constitute the basis of an assessment.
+Frameworks (including requirement nodes), mappings, threats, reference controls and risk matrices are called "referential objects", as they constitute the basis of an assessment.
 
 Referential objects can be downloaded from a library. They are called "global referential objects" or "library objects" in that case, and they have the following characteristics:
 
@@ -1213,15 +959,6 @@ erDiagram
         url     reference_link
     }
 
-    ASSET {
-        string      name
-        string      description
-        string      business_value
-        string      type
-        string      security_need
-        asset       parent_asset
-    }
-
     SOLUTION {
         string      name
         string      description
@@ -1246,7 +983,6 @@ erDiagram
         string      status
         principal[] author
         principal[] reviewer
-        string[]    tags
         string      observation
 
         string      conclusion
@@ -1387,3 +1123,220 @@ The objects manipulated by the third party (compliance assessment and evidences)
 - The change in applied control is not retained.
 - implementation_group_selector is not retained.
 - ebios-RM parameters are not retained.
+
+## Near-term evolutions
+
+We need to add in the near term the follwoing objects:
+- EBIOS-RM study
+- Audit campaign
+- Third-party campaign
+- Pentest follow-up
+- Incident follow-up
+
+Each of these objects will have its specific datamodel. Factoring will be done ad-hoc.
+
+## EBIOS-RM evolution
+
+### Mapping of essential concepts
+
+EBIOS-RM (english)    | EBIOS-RM (french)       |  CISO Assistant
+----------------------|-------------------------|----------------
+Study                 | Etude                   | Bundle
+Studied object        | Objet de l'étude        | Description of the bundle
+Mission               | Mission                 | Mission of the reference entity added to the bundle
+Business asset        | Valeurs métier          | Primary asset
+Supporting asset      | Bien support            | Supporting asset
+Feared event          | Evénement redouté       | Risk analysis at asset level
+Impact                | Impact                  | Impact in a risk analysis
+Security baseline     | Socle de sécurité       | Compliance frameworks and audits
+Risk origins          | Sources de risque       | TBD
+Target objectives     | Objectifs visés         | TBD
+Ecosystem             | Ecosystème              | Third Party Risk Management
+Strategic scenarios   | Scénarios stratégiques  | Risk analysis at strategic level (focus on impact)
+Security controls     | Mesures de sécurité     | Reference/applied controls
+Operational scenarios | Scénarios opérationnels | Risk analysis at operational level (focus on probability)
+Risk treatment        | Traitement du risque    | Applied controls in a risk analysis
+
+### EBIOS-RM study
+
+The type EBIOS-RM study is a sort of assessment. It contains the following specific fields:
+- reference risk matrix (chosen at creation and immutable after creation)
+- ref_id
+- name of the study
+- description of the study
+- reference entity
+- a list of primary assets and corresponding secondary assets (workshop 1)
+- a list of audits for the security baseline (workshop 1)
+- a list of feared events (workshop 1)
+- a list of risk_origin_target_objective (workshop 2)
+- a list of ecosystem entities (workshop 3)
+- a list of strategic scenarios/attack paths (workshop 3)
+- a list of opeating scenarios (workshop 4)
+- a resulting risk assessment (workshop 5)
+
+The object feared events (workshop 1) contains the following fields:
+- primary asset
+- ref_id
+- name
+- description
+- list of impact qualifications
+- gravity (from the risk matrix impact scale)
+- selected
+- justification
+
+The object risk_origin_target_objective (workshop 2) contains the following fields:
+- risk origin (--/state/organized crime/terrorist/activist/professional/amateur/avenger/pathological/)
+- target objective (text)
+- motivation (--/1 very low/2 low/3 significant/4 strong) (--/très peu/peu/assez/fortement motivé)
+- resources (--/1 limited/2 significant/3 important/4 unlimited) (--/limitées/significatives/importantes/illimitées)
+- pertinence (--/1 Irrelevant/2 partially relevant/3 fairly relevant/4 highly relevant) (--/peu pertinent/moyennement pertient/plutôt pertinent/très pertinent)
+- activity (--/1/2/3/4)
+- selected
+- justification
+
+The object ecosystem entity (workshop 3) links to a TPRM entity, and contains the following fields:
+- category (provider/partner/client/...)
+- third-party entity from TPRM (optional)
+- Dependence
+- Penetration
+- Cyber maturity
+- trust
+- selected
+- justification
+
+The object strategic attack path (workshop 3) contains the following fields:
+- risk_origin_target_objective
+- description
+- affected ecosystem entities
+- intial threat level
+- Controls
+- residual threat level
+- selected
+- justification
+
+THe object operational scenario (workshop 4) contains the following fields:
+- strategic attack path
+- list of techniques/threats (typically from Mitre Att@ck)
+- description
+- likelihood
+- selected
+- justification
+
+The frontend for risk study shall propose the following steps:
+- workshop 1: framing and security baseline (cadrage et socle de sécurité)
+  - define the study, the reference entity and its mission
+  - select/define primary assets ("valeurs métier")
+    - the nature "process" or "information" can be defined as a label
+  - select/define secondary assets ("biens support")
+  - define feared events
+  - list of reference audits
+- workshop 2: risk origin/target objectives (sources de risque)
+  - define risk_origin_target_objective objects
+- workshop 3:
+  - list of ecosystem entities
+  - list of strategic scenarios/attack paths
+- workshop 4: operational scenarios
+  - list of operational scenarios
+- workshop 5: risk treatment
+  - The risk assessment is generated from workshop 4, thanks to a dedicated button. When the risk assessment is generated again, automatic versioning is applied, and mitigations can be copied on demand (based on ref_id of operational scenarios). 
+  - After generation, a risk assessment is fully editable, to allow customisation, and the risk assessment can be managed normally as any other risk assessment.
+  - risk treatment is based on the risk assessment.
+
+
+```mermaid
+erDiagram
+    DOMAIN                ||--o{ EBIOS_RM_STUDY       : contains
+    DOMAIN                ||--o{ ECOSYSTEM_ENTITY     : contains
+    DOMAIN                ||--o{ OPERATIONAL_SCENARIO : contains
+    DOMAIN                ||--o{ FEARED_EVENT         : contains
+    DOMAIN                ||--o{ RO_TO                : contains
+    DOMAIN                ||--o{ STRATEGIC_ATTACK_PATH: contains
+
+```
+
+```mermaid
+erDiagram
+
+    STRATEGIC_ATTACK_PATH }o--|| RO_TO                : derives
+    RO_TO                 }o--|{ FEARED_EVENT         : corresponds_to
+    EBIOS_RM_STUDY        }o--o{ RO_TO                : contains
+    EBIOS_RM_STUDY        }o--o{ ECOSYSTEM_ENTITY     : contains
+    EBIOS_RM_STUDY        }o--o{ OPERATIONAL_SCENARIO : contains
+    EBIOS_RM_STUDY        }o--o{ FEARED_EVENT         : contains
+    EBIOS_RM_STUDY        }o--o{ STRATEGIC_ATTACK_PATH: contains
+    EBIOS_RM_STUDY        }o--o| ENTITY               : studies
+    EBIOS_RM_STUDY        }o--o{ COMPLIANCE_ASSESSMENT: leverages
+    EBIOS_RM_STUDY        }o--|| RISK_MATRIX          : leverages
+    EBIOS_RM_STUDY        }o--o{ RISK_ASSESSMENT      : generates
+    OPERATIONAL_SCENARIO  }o--|| STRATEGIC_ATTACK_PATH: derives
+    OPERATIONAL_SCENARIO  }o--o{ THREAT               : leverages
+    STRATEGIC_ATTACK_PATH }o--o{ ECOSYSTEM_ENTITY     : uses
+    STRATEGIC_ATTACK_PATH }o--o{ APPLIED_CONTROL      : mitigated_by
+    ECOSYSTEM_ENTITY      }o--|| ENTITY               : qualifies
+
+    EBIOS_RM_STUDY {
+        string      ref_id
+        string      name
+        string      description
+
+        string      version
+        date        eta
+        date        due_date
+        string      status
+        principal[] author
+        principal[] reviewer
+        string      observation
+    }
+
+    FEARED_EVENT {
+        string ref_id
+        string name
+        string description
+        json   qualifications
+        int    gravity
+        bool   selected
+        bool   justification
+    }
+
+    RO_TO {
+        string risk_origin
+        string target_objective
+        int    motivation
+        int    resources
+        int    pertinence
+        int    activity
+        bool   selected
+        bool   justification
+    }
+
+    ECOSYSTEM_ENTITY {
+        string category
+        int    dependence
+        int    penetration
+        int    maturity
+        int    trust
+        bool   selected
+        bool   justification
+    }
+
+    STRATEGIC_ATTACK_PATH {
+        string description
+        int    intial_threat_level
+        int    residual threat level
+        bool   selected
+        bool   justification
+    }
+
+    OPERATIONAL_SCENARIO {
+        string description
+        int    likelihood
+        bool   selected
+        string justification
+    }
+
+```
+
+### Implementation
+
+EBIOS-RM objects are defined within a dedicated Django "application" ebios_rm.
+

From 33230ff9ebece245bcc077d600d0090c94357189 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Thu, 28 Nov 2024 11:32:14 +0100
Subject: [PATCH 069/107] feat: add labels to asset

---
 .../migrations/0042_asset_filtering_labels.py | 18 +++++++
 backend/core/models.py                        |  2 +-
 backend/core/serializers.py                   |  2 +-
 backend/core/views.py                         | 52 +++++++++----------
 .../Forms/ModelForm/AssetForm.svelte          | 10 ++++
 frontend/src/lib/utils/crud.ts                |  6 ++-
 frontend/src/lib/utils/schemas.ts             |  3 +-
 frontend/src/lib/utils/table.ts               |  9 ++--
 8 files changed, 66 insertions(+), 36 deletions(-)
 create mode 100644 backend/core/migrations/0042_asset_filtering_labels.py

diff --git a/backend/core/migrations/0042_asset_filtering_labels.py b/backend/core/migrations/0042_asset_filtering_labels.py
new file mode 100644
index 000000000..9a0ffa426
--- /dev/null
+++ b/backend/core/migrations/0042_asset_filtering_labels.py
@@ -0,0 +1,18 @@
+# Generated by Django 5.1.1 on 2024-11-28 10:13
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('core', '0041_add_ref_id_to_project_appliedcontrol_assessment'),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name='asset',
+            name='filtering_labels',
+            field=models.ManyToManyField(blank=True, to='core.filteringlabel', verbose_name='Labels'),
+        ),
+    ]
diff --git a/backend/core/models.py b/backend/core/models.py
index 718f8c0d6..1c63172ea 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1206,7 +1206,7 @@ def __str__(self):
         return self.folder.name + "/" + self.name
 
 
-class Asset(NameDescriptionMixin, FolderMixin, PublishInRootFolderMixin):
+class Asset(NameDescriptionMixin, FolderMixin, PublishInRootFolderMixin, FilteringLabelMixin):
     class Type(models.TextChoices):
         """
         The type of the asset.
diff --git a/backend/core/serializers.py b/backend/core/serializers.py
index ae341bda7..e42d8c9e2 100644
--- a/backend/core/serializers.py
+++ b/backend/core/serializers.py
@@ -230,7 +230,7 @@ class AssetReadSerializer(AssetWriteSerializer):
     disaster_recovery_objectives = serializers.JSONField(
         source="get_disaster_recovery_objectives_display"
     )
-
+    filtering_labels = FieldsRelatedField(["folder"], many=True)
     type = serializers.CharField(source="get_type_display")
 
 
diff --git a/backend/core/views.py b/backend/core/views.py
index b1b009c3e..e38261553 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -150,13 +150,37 @@ def _process_request_data(self, request: Request) -> None:
                     request.data[field] = request.data[field][0].split(",")
                 elif not request.data[field][0]:
                     request.data[field] = []
+    
+    def _process_labels(self, labels):
+        """
+        Creates a FilteringLabel and replaces the value with the ID of the newly created label.
+        """
+        new_labels = []
+        for label in labels:
+            try:
+                uuid.UUID(label, version=4)
+                new_labels.append(label)
+            except ValueError:
+                new_label = FilteringLabel(label=label)
+                new_label.full_clean()
+                new_label.save()
+                new_labels.append(str(new_label.id))
+        return new_labels
 
     def create(self, request: Request, *args, **kwargs) -> Response:
         self._process_request_data(request)
+        if request.data.get("filtering_labels"):
+            request.data["filtering_labels"] = self._process_labels(
+                request.data["filtering_labels"]
+            )
         return super().create(request, *args, **kwargs)
 
     def update(self, request: Request, *args, **kwargs) -> Response:
         self._process_request_data(request)
+        if request.data.get("filtering_labels"):
+            request.data["filtering_labels"] = self._process_labels(
+                request.data["filtering_labels"]
+            )
         return super().update(request, *args, **kwargs)
 
     def partial_update(self, request: Request, *args, **kwargs) -> Response:
@@ -448,34 +472,6 @@ class VulnerabilityViewSet(BaseModelViewSet):
     def status(self, request):
         return Response(dict(Vulnerability.Status.choices))
 
-    def _process_labels(self, labels):
-        """
-        Creates a FilteringLabel and replaces the value with the ID of the newly created label.
-        """
-        new_labels = []
-        for label in labels:
-            try:
-                uuid.UUID(label, version=4)
-                new_labels.append(label)
-            except ValueError:
-                new_label = FilteringLabel(label=label)
-                new_label.full_clean()
-                new_label.save()
-                new_labels.append(str(new_label.id))
-        return new_labels
-
-    def update(self, request: Request, *args, **kwargs) -> Response:
-        request.data["filtering_labels"] = self._process_labels(
-            request.data["filtering_labels"]
-        )
-        return super().update(request, *args, **kwargs)
-
-    def create(self, request: Request, *args, **kwargs) -> Response:
-        request.data["filtering_labels"] = self._process_labels(
-            request.data["filtering_labels"]
-        )
-        return super().create(request, *args, **kwargs)
-
 
 class FilteringLabelViewSet(BaseModelViewSet):
     """
diff --git a/frontend/src/lib/components/Forms/ModelForm/AssetForm.svelte b/frontend/src/lib/components/Forms/ModelForm/AssetForm.svelte
index 7d3b213f4..6f3ad3e8e 100644
--- a/frontend/src/lib/components/Forms/ModelForm/AssetForm.svelte
+++ b/frontend/src/lib/components/Forms/ModelForm/AssetForm.svelte
@@ -177,3 +177,13 @@
 		</div>
 	</Dropdown>
 {/if}
+<AutocompleteSelect
+	multiple
+	{form}
+	createFromSelection={true}
+	options={getOptions({ objects: model.foreignKeys['filtering_labels'], label: 'label' })}
+	field="filtering_labels"
+	helpText={m.labelsHelpText()}
+	label={m.labels()}
+	allowUserOptions="append"
+/>
diff --git a/frontend/src/lib/utils/crud.ts b/frontend/src/lib/utils/crud.ts
index 5dd599252..425dca1ec 100644
--- a/frontend/src/lib/utils/crud.ts
+++ b/frontend/src/lib/utils/crud.ts
@@ -370,14 +370,16 @@ export const URL_MODEL_MAP: ModelMap = {
 		foreignKeyFields: [
 			{ field: 'parent_assets', urlModel: 'assets' },
 			{ field: 'owner', urlModel: 'users' },
-			{ field: 'folder', urlModel: 'folders', urlParams: 'content_type=DO&content_type=GL' }
+			{ field: 'folder', urlModel: 'folders', urlParams: 'content_type=DO&content_type=GL' },
+			{ field: 'filtering_labels', urlModel: 'filtering-labels' }
 		],
 		selectFields: [{ field: 'type' }],
 		filters: [
 			{ field: 'parent_assets' },
 			{ field: 'folder' },
 			{ field: 'type' },
-			{ field: 'owner' }
+			{ field: 'owner' },
+			{ field: 'filtering_labels' }
 		]
 	},
 	users: {
diff --git a/frontend/src/lib/utils/schemas.ts b/frontend/src/lib/utils/schemas.ts
index a39653719..42a10b1a6 100644
--- a/frontend/src/lib/utils/schemas.ts
+++ b/frontend/src/lib/utils/schemas.ts
@@ -192,7 +192,8 @@ export const AssetSchema = baseNamedObject({
 		})
 		.optional(),
 	reference_link: z.string().url().optional().or(z.literal('')),
-	owner: z.string().uuid().optional().array().optional()
+	owner: z.string().uuid().optional().array().optional(),
+	filtering_labels: z.string().optional().array().optional()
 });
 
 export const FilteringLabelSchema = z.object({
diff --git a/frontend/src/lib/utils/table.ts b/frontend/src/lib/utils/table.ts
index a893c1496..60e246102 100644
--- a/frontend/src/lib/utils/table.ts
+++ b/frontend/src/lib/utils/table.ts
@@ -399,7 +399,8 @@ export const listViewFields: ListViewFieldsConfig = {
 			'securityObjectives',
 			'disasterRecoveryObjectives',
 			'owner',
-			'domain'
+			'domain',
+			'labels'
 		],
 		body: [
 			'name',
@@ -408,11 +409,13 @@ export const listViewFields: ListViewFieldsConfig = {
 			'security_objectives',
 			'disaster_recovery_objectives',
 			'owner',
-			'folder'
+			'folder',
+			'filtering_labels'
 		],
 		filters: {
 			folder: DOMAIN_FILTER,
-			type: ASSET_TYPE_FILTER
+			type: ASSET_TYPE_FILTER,
+			filtering_labels: LABELS_FILTER
 		}
 	},
 	users: {

From a32ceb6909e2190bccc55fa65f795b60e702870b Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Thu, 28 Nov 2024 11:33:05 +0100
Subject: [PATCH 070/107] chore: format backend

---
 .../core/migrations/0042_asset_filtering_labels.py    | 11 ++++++-----
 backend/core/models.py                                |  4 +++-
 backend/core/views.py                                 |  2 +-
 3 files changed, 10 insertions(+), 7 deletions(-)

diff --git a/backend/core/migrations/0042_asset_filtering_labels.py b/backend/core/migrations/0042_asset_filtering_labels.py
index 9a0ffa426..becd9fca4 100644
--- a/backend/core/migrations/0042_asset_filtering_labels.py
+++ b/backend/core/migrations/0042_asset_filtering_labels.py
@@ -4,15 +4,16 @@
 
 
 class Migration(migrations.Migration):
-
     dependencies = [
-        ('core', '0041_add_ref_id_to_project_appliedcontrol_assessment'),
+        ("core", "0041_add_ref_id_to_project_appliedcontrol_assessment"),
     ]
 
     operations = [
         migrations.AddField(
-            model_name='asset',
-            name='filtering_labels',
-            field=models.ManyToManyField(blank=True, to='core.filteringlabel', verbose_name='Labels'),
+            model_name="asset",
+            name="filtering_labels",
+            field=models.ManyToManyField(
+                blank=True, to="core.filteringlabel", verbose_name="Labels"
+            ),
         ),
     ]
diff --git a/backend/core/models.py b/backend/core/models.py
index 1c63172ea..474c5f4db 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1206,7 +1206,9 @@ def __str__(self):
         return self.folder.name + "/" + self.name
 
 
-class Asset(NameDescriptionMixin, FolderMixin, PublishInRootFolderMixin, FilteringLabelMixin):
+class Asset(
+    NameDescriptionMixin, FolderMixin, PublishInRootFolderMixin, FilteringLabelMixin
+):
     class Type(models.TextChoices):
         """
         The type of the asset.
diff --git a/backend/core/views.py b/backend/core/views.py
index e38261553..2eb4fcb0c 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -150,7 +150,7 @@ def _process_request_data(self, request: Request) -> None:
                     request.data[field] = request.data[field][0].split(",")
                 elif not request.data[field][0]:
                     request.data[field] = []
-    
+
     def _process_labels(self, labels):
         """
         Creates a FilteringLabel and replaces the value with the ID of the newly created label.

From 758ed2af84c2ed88ee4962071ce2697c5b55799c Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Thu, 28 Nov 2024 12:41:58 +0100
Subject: [PATCH 071/107] fix: label creation from forms

---
 .../Forms/AutocompleteSelect.svelte           | 29 ++++++-------------
 1 file changed, 9 insertions(+), 20 deletions(-)

diff --git a/frontend/src/lib/components/Forms/AutocompleteSelect.svelte b/frontend/src/lib/components/Forms/AutocompleteSelect.svelte
index 55b5d1727..a66fa5d2f 100644
--- a/frontend/src/lib/components/Forms/AutocompleteSelect.svelte
+++ b/frontend/src/lib/components/Forms/AutocompleteSelect.svelte
@@ -59,7 +59,7 @@
 
 	let selectedValues: (string | undefined)[] = [];
 
-	$: selectedValues = selected.map((item) => item.value);
+	$: selectedValues = selected.map((item) => item.value || item.label || item);
 
 	const default_value = nullable ? null : selectedValues[0];
 
@@ -85,17 +85,6 @@
 		dispatch('change', $value);
 		dispatch('cache', selected);
 	}
-
-	$: {
-		selected = selected.map((option) => {
-			const newOption = {
-				label: option.label,
-				value: option.value || option.label
-			};
-			selected = [...selected, newOption];
-			return newOption;
-		});
-	}
 </script>
 
 <div {hidden}>
@@ -133,14 +122,14 @@
 			let:option
 			{allowUserOptions}
 		>
-			{#if option.suggested}
-				<span class="text-indigo-600">{option.label}</span>
-				<span class="text-sm text-gray-500"> (suggested)</span>
-			{:else if translateOptions}
-				{safeTranslate(option.label)}
-			{:else}
-				{option.label}
-			{/if}
+		{#if option.suggested}
+			<span class="text-indigo-600">{option.label}</span>
+			<span class="text-sm text-gray-500"> (suggested)</span>
+		{:else if translateOptions && option.label}
+			{safeTranslate(option.label)}
+		{:else}
+			{option.label || option}
+		{/if}
 		</MultiSelect>
 	</div>
 	{#if helpText}

From 515de011377c432bc746bdc05ba9faadc2fb03f5 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Thu, 28 Nov 2024 12:43:49 +0100
Subject: [PATCH 072/107] chore: format

---
 .../components/Forms/AutocompleteSelect.svelte   | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/frontend/src/lib/components/Forms/AutocompleteSelect.svelte b/frontend/src/lib/components/Forms/AutocompleteSelect.svelte
index a66fa5d2f..8e71e96f4 100644
--- a/frontend/src/lib/components/Forms/AutocompleteSelect.svelte
+++ b/frontend/src/lib/components/Forms/AutocompleteSelect.svelte
@@ -122,14 +122,14 @@
 			let:option
 			{allowUserOptions}
 		>
-		{#if option.suggested}
-			<span class="text-indigo-600">{option.label}</span>
-			<span class="text-sm text-gray-500"> (suggested)</span>
-		{:else if translateOptions && option.label}
-			{safeTranslate(option.label)}
-		{:else}
-			{option.label || option}
-		{/if}
+			{#if option.suggested}
+				<span class="text-indigo-600">{option.label}</span>
+				<span class="text-sm text-gray-500"> (suggested)</span>
+			{:else if translateOptions && option.label}
+				{safeTranslate(option.label)}
+			{:else}
+				{option.label || option}
+			{/if}
 		</MultiSelect>
 	</div>
 	{#if helpText}

From d93ff1b94908e3d48ed5a230ee3d2087271a5e37 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Thu, 28 Nov 2024 18:01:53 +0100
Subject: [PATCH 073/107] updating links for compliance

---
 backend/core/helpers.py                       | 15 +++++++--
 frontend/messages/en.json                     | 17 +++++-----
 frontend/messages/fr.json                     | 31 ++++++++++---------
 .../(app)/(internal)/analytics/+page.svelte   | 22 +++++++++----
 4 files changed, 53 insertions(+), 32 deletions(-)

diff --git a/backend/core/helpers.py b/backend/core/helpers.py
index 08d8dfdf2..6a3ec34b2 100644
--- a/backend/core/helpers.py
+++ b/backend/core/helpers.py
@@ -15,6 +15,9 @@
 from iam.models import Folder, Permission, RoleAssignment, User
 from library.helpers import get_referential_translation
 
+from statistics import mean
+import math
+
 from .models import *
 from .utils import camel_case
 
@@ -889,6 +892,10 @@ def viewable_items(model):
 
     viewable_controls = viewable_items(AppliedControl)
     controls_count = viewable_controls.count()
+    progress_avg = math.ceil(
+        mean([x.progress() for x in viewable_items(ComplianceAssessment)])
+    )
+
     data = {
         "controls": {
             "total": controls_count,
@@ -908,17 +915,19 @@ def viewable_items(model):
             "acceptances": viewable_items(RiskAcceptance).count(),
         },
         "compliance": {
+            "used_frameworks": viewable_items(ComplianceAssessment)
+            .values("framework_id")
+            .distinct()
+            .count(),
             "audits": viewable_items(ComplianceAssessment).count(),
             "active_audits": viewable_items(ComplianceAssessment)
             .filter(status__in=["in_progress", "in_review", "done"])
             .count(),
             "evidences": viewable_items(Evidence).count(),
-            "compliant_items": viewable_items(RequirementAssessment)
-            .filter(result="compliant")
-            .count(),
             "non_compliant_items": viewable_items(RequirementAssessment)
             .filter(result="non_compliant")
             .count(),
+            "progress_avg": progress_avg,
         },
         "audits_stats": build_audits_stats(user),
         "csf_functions": csf_functions(user),
diff --git a/frontend/messages/en.json b/frontend/messages/en.json
index 42a0fa288..08e008306 100644
--- a/frontend/messages/en.json
+++ b/frontend/messages/en.json
@@ -808,14 +808,15 @@
 	"sumpageToDo": "to do",
 	"sumpageInProgress": "in progress",
 	"sumpageOnHold": "on hold",
-	"sumpageActiveAudits": "active audits",
-	"sumpageCompliantItems": "compliant items",
-	"sumpageNonCompliantItems": "non compliant items",
-	"sumpageEvidences": "evidences",
-	"sumpageAssessments": "assessments",
-	"sumpageScenarios": "scenarios",
-	"sumpageMappedThreats": "mapped threats",
-	"sumpageRiskAccepted": "risks accepted",
+	"sumpageActiveAudits": "Active audits",
+	"sumpageCompliantItems": "Compliant items",
+	"sumpageNonCompliantItems": "Non compliant items",
+	"sumpageEvidences": "Evidences",
+	"sumpageAvgProgress": "Average progress",
+	"sumpageAssessments": "Assessments",
+	"sumpageScenarios": "Scenarios",
+	"sumpageMappedThreats": "Mapped threats",
+	"sumpageRiskAccepted": "Risks accepted",
 	"sumpageSectionControls": "controls",
 	"sumpageTitleComplianceOverview": "Compliance overview",
 	"sumpageTitleCurrentRisks": "Current risks",
diff --git a/frontend/messages/fr.json b/frontend/messages/fr.json
index dbe72b3a1..7b7cb9255 100644
--- a/frontend/messages/fr.json
+++ b/frontend/messages/fr.json
@@ -791,21 +791,22 @@
 	"fillSSOSLOURLx509cert": "Option 2 : Remplissez l'URL SSO, l'URL SLO et le certificat x509",
 	"licenseAboutToExpireWarning": "Il reste {days_left} jours avant l'expiration de votre licence.",
 	"noExpirationDateSet": "Aucune date d'expiration définie",
-	"sumpageTotal": "total",
-	"sumpageActive": "actif",
-	"sumpageDeprecated": "obsolète",
-	"sumpageToDo": "à faire",
-	"sumpageInProgress": "en cours",
-	"sumpageOnHold": "en attente",
-	"sumpageActiveAudits": "audits actifs",
-	"sumpageCompliantItems": "items conformes",
-	"sumpageNonCompliantItems": "items non conformes",
-	"sumpageEvidences": "preuves",
-	"sumpageAssessments": "évaluations",
-	"sumpageScenarios": "scénarios",
-	"sumpageMappedThreats": "menaces mappées",
-	"sumpageRiskAccepted": "risques acceptés",
-	"sumpageSectionControls": "mesures",
+	"sumpageTotal": "Total",
+	"sumpageActive": "Actif",
+	"sumpageDeprecated": "Obsolète",
+	"sumpageToDo": "A faire",
+	"sumpageInProgress": "En cours",
+	"sumpageOnHold": "En attente",
+	"sumpageActiveAudits": "Audits actifs",
+	"sumpageCompliantItems": "Exigences conformes",
+	"sumpageNonCompliantItems": "Exigences non conformes",
+	"sumpageEvidences": "Preuves",
+	"sumpageAvgProgress": "Avancement moyenné",
+	"sumpageAssessments": "Evaluations",
+	"sumpageScenarios": "Scénarios",
+	"sumpageMappedThreats": "Menaces mappées",
+	"sumpageRiskAccepted": "Risques acceptés",
+	"sumpageSectionControls": "Mesures",
 	"sumpageTitleComplianceOverview": "Aperçu conformité",
 	"sumpageTitleCurrentRisks": "Risques actuels",
 	"sumpageTitleResidualRisks": "Risques résiduels",
diff --git a/frontend/src/routes/(app)/(internal)/analytics/+page.svelte b/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
index 1f0dff0aa..2591c640c 100644
--- a/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
+++ b/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
@@ -201,20 +201,30 @@
 						/>
 					</div>
 					<!---->
+					<Card
+						count={metrics.compliance.used_frameworks}
+						label={m.usedFrameworks()}
+						href="/frameworks/"
+						help="this is interesting"
+						icon="fa-solid fa-list-check"
+						section={m.sumpageSectionCompliance()}
+						emphasis={true}
+					/>
+					<div></div>
 					<Card
 						count="{metrics.compliance.active_audits}/{metrics.compliance.audits}"
 						label={m.sumpageActiveAudits()}
-						href="#"
+						href="/compliance-assessments/"
 						help="this is interesting"
 						icon="fa-solid fa-list-check"
 						section={m.sumpageSectionCompliance()}
 						emphasis={true}
 					/>
-					<div></div>
+
 					<Card
-						count={metrics.compliance.compliant_items}
-						label={m.sumpageCompliantItems()}
-						href="#"
+						count="{metrics.compliance.progress_avg}%"
+						label={m.sumpageAvgProgress()}
+						href="/compliance-assessments/"
 						help="this is interesting"
 						icon="fa-solid fa-list-check"
 						section={m.sumpageSectionCompliance()}
@@ -230,7 +240,7 @@
 					<Card
 						count={metrics.compliance.evidences}
 						label={m.sumpageEvidences()}
-						href="#"
+						href="/evidences/"
 						help="this is interesting"
 						icon="fa-solid fa-list-check"
 						section={m.sumpageSectionCompliance()}

From cff07f79c8ba0e5680203d35229f6c277e528a13 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Thu, 28 Nov 2024 18:27:37 +0100
Subject: [PATCH 074/107] more links on widgets

---
 frontend/messages/fr.json                                 | 2 +-
 .../src/routes/(app)/(internal)/analytics/+page.svelte    | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/frontend/messages/fr.json b/frontend/messages/fr.json
index 7b7cb9255..4b6a31d9f 100644
--- a/frontend/messages/fr.json
+++ b/frontend/messages/fr.json
@@ -802,7 +802,7 @@
 	"sumpageNonCompliantItems": "Exigences non conformes",
 	"sumpageEvidences": "Preuves",
 	"sumpageAvgProgress": "Avancement moyenné",
-	"sumpageAssessments": "Evaluations",
+	"sumpageAssessments": "Analyses",
 	"sumpageScenarios": "Scénarios",
 	"sumpageMappedThreats": "Menaces mappées",
 	"sumpageRiskAccepted": "Risques acceptés",
diff --git a/frontend/src/routes/(app)/(internal)/analytics/+page.svelte b/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
index 2591c640c..9d40aa763 100644
--- a/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
+++ b/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
@@ -259,7 +259,7 @@
 					<Card
 						count={metrics.risk.assessments}
 						label={m.sumpageAssessments()}
-						href="#"
+						href="/risk-assessments/"
 						help="this is interesting"
 						emphasis={true}
 						icon="fa-solid fa-biohazard"
@@ -268,7 +268,7 @@
 					<Card
 						count={metrics.risk.scenarios}
 						label={m.sumpageScenarios()}
-						href="#"
+						href="/risk-scenarios/"
 						help="this is interesting"
 						icon="fa-solid fa-biohazard"
 						section={m.sumpageSectionRisk()}
@@ -284,7 +284,7 @@
 					<Card
 						count={metrics.risk.threats}
 						label={m.sumpageMappedThreats()}
-						href="#"
+						href="/analytics?tab=2"
 						help="this is interesting"
 						icon="fa-solid fa-biohazard"
 						section={m.sumpageSectionRisk()}
@@ -293,7 +293,7 @@
 					<Card
 						count={metrics.risk.acceptances}
 						label={m.sumpageRiskAccepted()}
-						href="#"
+						href="/risk-acceptances"
 						help="this is interesting"
 						icon="fa-solid fa-biohazard"
 						section={m.sumpageSectionRisk()}

From 24923797490b3c5d6681221a8cbefaebb983b08a Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Thu, 28 Nov 2024 19:37:15 +0100
Subject: [PATCH 075/107] stable point

---
 .../src/lib/components/SideBar/navData.ts     | 502 +++++-----
 frontend/src/lib/utils/table.ts               | 866 +++++++++---------
 2 files changed, 683 insertions(+), 685 deletions(-)

diff --git a/frontend/src/lib/components/SideBar/navData.ts b/frontend/src/lib/components/SideBar/navData.ts
index fd27bb952..5395e691e 100644
--- a/frontend/src/lib/components/SideBar/navData.ts
+++ b/frontend/src/lib/components/SideBar/navData.ts
@@ -1,258 +1,252 @@
 export const navData = {
-	items: [
-		// {
-		// 	name: 'Home',
-		// 	items: [
-		// 		{
-		// 			name: 'Home',
-		// 			fa_icon: 'fa-solid fa-house',
-		// 			href: '/'
-		// 		},
-		// 		{ name: 'Quick start', fa_icon: 'fa-solid fa-plane', href: '/quick-start' }
-		// 	]
-		// },
-		{
-			name: 'overview',
-			items: [
-				{
-					name: 'analytics',
-					fa_icon: 'fa-solid fa-gauge',
-					href: '/analytics',
-					permissions: [
-						'view_project',
-						'view_riskscenario',
-						'view_referencecontrol',
-						'view_assessment',
-						'view_riskassessment'
-					]
-				},
-				{
-					name: 'myAssignments',
-					fa_icon: 'fa-solid fa-list-check',
-					href: '/my-assignments',
-					permissions: [
-						'view_project',
-						'view_riskscenario',
-						'view_referencecontrol',
-						'view_assessment',
-						'view_riskassessment'
-					]
-				}
-			]
-		},
-		{
-			name: 'organization',
-			items: [
-				{
-					name: 'domains',
-					fa_icon: 'fa-solid fa-sitemap',
-					href: '/folders',
-					exclude: ['BI-RL-TPR']
-				},
-				{
-					name: 'projects',
-					fa_icon: 'fa-solid fa-cubes',
-					href: '/projects'
-				},
-				{
-					name: 'users',
-					fa_icon: 'fa-solid fa-user',
-					href: '/users'
-				},
-				{
-					name: 'userGroups',
-					fa_icon: 'fa-solid fa-users',
-					href: '/user-groups'
-				},
-				{
-					name: 'roleAssignments',
-					fa_icon: 'fa-solid fa-user-tag',
-					href: '/role-assignments'
-				},
-				{
-					name: 'assets',
-					fa_icon: 'fa-solid fa-gem',
-					href: '/assets'
-				}
-			]
-		},
-		{
-			name: 'catalog',
-			items: [
-				{
-					name: 'frameworks',
-					fa_icon: 'fa-solid fa-book',
-					href: '/frameworks'
-				},
-				{
-					name: 'threats',
-					fa_icon: 'fa-solid fa-biohazard',
-					href: '/threats'
-				},
-				{
-					name: 'referenceControls',
-					fa_icon: 'fa-solid fa-gears',
-					href: '/reference-controls'
-				},
-				{
-					name: 'requirementMappingSets',
-					fa_icon: 'fa-solid fa-diagram-project',
-					href: '/requirement-mapping-sets'
-				},
-				{
-					name: 'riskMatrices',
-					fa_icon: 'fa-solid fa-table-cells-large',
-					href: '/risk-matrices'
-				}
-			]
-		},
-		{
-			name: 'operations',
-			items: [
-				{
-					name: 'appliedControls',
-					fa_icon: 'fa-solid fa-fire-extinguisher',
-					href: '/applied-controls'
-				},
-				{
-					name: 'calendar',
-					fa_icon: 'fa-solid fa-calendar-days',
-					href: '/calendar',
-					permissions: ['view_appliedcontrol', 'view_riskacceptance', 'view_riskassessment']
-				},
-				{
-					name: 'xRays',
-					fa_icon: 'fa-solid fa-bolt',
-					href: '/x-rays',
-					permissions: ['view_riskassessment', 'view_assessment']
-				}
-			]
-		},
-		{
-			name: 'governance',
-			items: [
-				{
-					name: 'libraries',
-					fa_icon: 'fa-solid fa-folder-plus',
-					href: '/libraries',
-					permissions: ['add_threat', 'add_riskmatrix', 'add_referencecontrol', 'add_framework']
-				},
-				{
-					name: 'policies',
-					fa_icon: 'fa-solid fa-book',
-					href: '/policies',
-					permissions: ['view_appliedcontrol']
-				},
-				{
-					name: 'riskAcceptances',
-					fa_icon: 'fa-solid fa-signature',
-					href: '/risk-acceptances'
-				}
-			]
-		},
-		{
-			name: 'risk',
-			items: [
-				{
-					name: 'riskAssessments',
-					fa_icon: 'fa-solid fa-magnifying-glass-chart',
-					href: '/risk-assessments'
-				},
-				{
-					name: 'riskScenarios',
-					fa_icon: 'fa-solid fa-clone',
-					href: '/risk-scenarios'
-				},
-				{
-					name: 'scoringAssistant',
-					fa_icon: 'fa-solid fa-star-half-stroke',
-					href: '/scoring-assistant',
-					permissions: ['view_riskmatrix']
-				},
-				{
-					name: 'vulnerabilities',
-					// What is the best icon between "fa-triangle-exclamation" and "fa-skull-crossbones" for a vulnerability ?
-					fa_icon: 'fa-solid fa-triangle-exclamation',
-					href: '/vulnerabilities'
-				}
-			]
-		},
+  items: [
+    // {
+    // 	name: 'Home',
+    // 	items: [
+    // 		{
+    // 			name: 'Home',
+    // 			fa_icon: 'fa-solid fa-house',
+    // 			href: '/'
+    // 		},
+    // 		{ name: 'Quick start', fa_icon: 'fa-solid fa-plane', href: '/quick-start' }
+    // 	]
+    // },
+    {
+      name: 'overview',
+      items: [
+        {
+          name: 'analytics',
+          fa_icon: 'fa-solid fa-gauge',
+          href: '/analytics',
+          permissions: [
+            'view_project',
+            'view_riskscenario',
+            'view_referencecontrol',
+            'view_assessment',
+            'view_riskassessment'
+          ]
+        },
+        {
+          name: 'myAssignments',
+          fa_icon: 'fa-solid fa-list-check',
+          href: '/my-assignments',
+          permissions: [
+            'view_project',
+            'view_riskscenario',
+            'view_referencecontrol',
+            'view_assessment',
+            'view_riskassessment'
+          ]
+        }
+      ]
+    },
+    {
+      name: 'organization',
+      items: [
+        {
+          name: 'domains',
+          fa_icon: 'fa-solid fa-sitemap',
+          href: '/folders',
+          exclude: ['BI-RL-TPR']
+        },
+        {
+          name: 'projects',
+          fa_icon: 'fa-solid fa-cubes',
+          href: '/projects'
+        },
+        {
+          name: 'users',
+          fa_icon: 'fa-solid fa-user',
+          href: '/users'
+        },
+        {
+          name: 'userGroups',
+          fa_icon: 'fa-solid fa-users',
+          href: '/user-groups'
+        },
+        {
+          name: 'roleAssignments',
+          fa_icon: 'fa-solid fa-user-tag',
+          href: '/role-assignments'
+        },
+        {
+          name: 'assets',
+          fa_icon: 'fa-solid fa-gem',
+          href: '/assets'
+        }
+      ]
+    },
+    {
+      name: 'catalog',
+      items: [
+        {
+          name: 'frameworks',
+          fa_icon: 'fa-solid fa-book',
+          href: '/frameworks'
+        },
+        {
+          name: 'threats',
+          fa_icon: 'fa-solid fa-biohazard',
+          href: '/threats'
+        },
+        {
+          name: 'referenceControls',
+          fa_icon: 'fa-solid fa-gears',
+          href: '/reference-controls'
+        },
+        {
+          name: 'requirementMappingSets',
+          fa_icon: 'fa-solid fa-diagram-project',
+          href: '/requirement-mapping-sets'
+        },
+        {
+          name: 'riskMatrices',
+          fa_icon: 'fa-solid fa-table-cells-large',
+          href: '/risk-matrices'
+        }
+      ]
+    },
+    {
+      name: 'operations',
+      items: [
+        {
+          name: 'appliedControls',
+          fa_icon: 'fa-solid fa-fire-extinguisher',
+          href: '/applied-controls'
+        },
+        {
+          name: 'calendar',
+          fa_icon: 'fa-solid fa-calendar-days',
+          href: '/calendar',
+          permissions: ['view_appliedcontrol', 'view_riskacceptance', 'view_riskassessment']
+        },
+        {
+          name: 'xRays',
+          fa_icon: 'fa-solid fa-bolt',
+          href: '/x-rays',
+          permissions: ['view_riskassessment', 'view_assessment']
+        }
+      ]
+    },
+    {
+      name: 'governance',
+      items: [
+        {
+          name: 'libraries',
+          fa_icon: 'fa-solid fa-folder-plus',
+          href: '/libraries',
+          permissions: ['add_threat', 'add_riskmatrix', 'add_referencecontrol', 'add_framework']
+        },
+        {
+          name: 'policies',
+          fa_icon: 'fa-solid fa-book',
+          href: '/policies',
+          permissions: ['view_appliedcontrol']
+        },
+        {
+          name: 'riskAcceptances',
+          fa_icon: 'fa-solid fa-signature',
+          href: '/risk-acceptances'
+        }
+      ]
+    },
+    {
+      name: 'risk',
+      items: [
+        {
+          name: 'riskAssessments',
+          fa_icon: 'fa-solid fa-magnifying-glass-chart',
+          href: '/risk-assessments'
+        },
+        {
+          name: 'riskScenarios',
+          fa_icon: 'fa-solid fa-clone',
+          href: '/risk-scenarios'
+        },
+        {
+          name: 'scoringAssistant',
+          fa_icon: 'fa-solid fa-star-half-stroke',
+          href: '/scoring-assistant',
+          permissions: ['view_riskmatrix']
+        },
+        {
+          name: 'vulnerabilities',
+          // What is the best icon between "fa-triangle-exclamation" and "fa-skull-crossbones" for a vulnerability ?
+          fa_icon: 'fa-solid fa-triangle-exclamation',
+          href: '/vulnerabilities'
+        }
+      ]
+    },
 
-		{
-			name: 'compliance',
-			items: [
-				{
-					name: 'complianceAssessments',
-					fa_icon: 'fa-solid fa-certificate',
-					href: '/compliance-assessments'
-				},
-				{
-					name: 'evidences',
-					fa_icon: 'fa-solid fa-receipt',
-					href: '/evidences'
-				}
-			]
-		},
+    {
+      name: 'compliance',
+      items: [
+        {
+          name: 'complianceAssessments',
+          fa_icon: 'fa-solid fa-certificate',
+          href: '/compliance-assessments'
+        },
+        {
+          name: 'evidences',
+          fa_icon: 'fa-solid fa-receipt',
+          href: '/evidences'
+        }
+      ]
+    },
 
-		{
-			name: 'thirdPartyCategory',
-			items: [
-				{
-					name: 'entities',
-					fa_icon: 'fa-solid fa-building',
-					href: '/entities'
-				},
-				{
-					name: 'entityAssessments',
-					fa_icon: 'fa-solid fa-clipboard-list',
-					href: '/entity-assessments'
-				},
-				{
-					name: 'representatives',
-					fa_icon: 'fa-solid fa-user-tie',
-					href: '/representatives'
-				},
-				{
-					name: 'solutions',
-					fa_icon: 'fa-solid fa-box',
-					href: '/solutions'
-				}
-			]
-		},
-		{
-			name: 'extra',
-			items: [
-				{
-					name: 'inspect',
-					fa_icon: 'fa-brands fa-searchengin',
-					href: '/x-rays/inspect',
-					permissions: ['view_riskassessment', 'view_assessment']
-				},
-				{
-					name: 'backupRestore',
-					fa_icon: 'fa-solid fa-floppy-disk',
-					href: '/backup-restore',
-					permissions: ['backup']
-				},
-				{
-					name: 'labels',
-					fa_icon: 'fa-solid fa-tag',
-					href: '/filtering-labels',
-					permissions: ['view_filteringlabel']
-				},
-				{
-					name: 'settings',
-					fa_icon: 'fa-solid fa-cog',
-					href: '/settings',
-					permissions: ['change_globalsettings']
-				},
-				{
-					name: 'Experimental',
-					fa_icon: 'fa-solid fa-flask',
-					href: '/experimental',
-					permissions: ['change_globalsettings']
-				}
-			]
-		}
-	]
+    {
+      name: 'thirdPartyCategory',
+      items: [
+        {
+          name: 'entities',
+          fa_icon: 'fa-solid fa-building',
+          href: '/entities'
+        },
+        {
+          name: 'entityAssessments',
+          fa_icon: 'fa-solid fa-clipboard-list',
+          href: '/entity-assessments'
+        },
+        {
+          name: 'representatives',
+          fa_icon: 'fa-solid fa-user-tie',
+          href: '/representatives'
+        },
+        {
+          name: 'solutions',
+          fa_icon: 'fa-solid fa-box',
+          href: '/solutions'
+        }
+      ]
+    },
+    {
+      name: 'extra',
+      items: [
+        {
+          name: 'labels',
+          fa_icon: 'fa-solid fa-tag',
+          href: '/filtering-labels',
+          permissions: ['view_filteringlabel']
+        },
+        {
+          name: 'settings',
+          fa_icon: 'fa-solid fa-cog',
+          href: '/settings',
+          permissions: ['change_globalsettings']
+        },
+        {
+          name: 'backupRestore',
+          fa_icon: 'fa-solid fa-floppy-disk',
+          href: '/backup-restore',
+          permissions: ['backup']
+        },
+        {
+          name: 'Experimental',
+          fa_icon: 'fa-solid fa-flask',
+          href: '/experimental',
+          permissions: ['change_globalsettings']
+        }
+      ]
+    }
+  ]
 };
diff --git a/frontend/src/lib/utils/table.ts b/frontend/src/lib/utils/table.ts
index a893c1496..3cab58679 100644
--- a/frontend/src/lib/utils/table.ts
+++ b/frontend/src/lib/utils/table.ts
@@ -6,210 +6,212 @@ import { LOCALE_DISPLAY_MAP } from './constants';
 import type { Row } from '@vincjo/datatables';
 
 interface ListViewFilterConfig {
-	component: ComponentType;
-	filter?: (columnValue: any, value: any) => boolean;
-	getColumn?: (row: Row) => Row[keyof Row];
-	filterProps?: (rows: any[], field: string) => { [key: string]: any };
-	extraProps?: { [key: string]: any };
-	alwaysDisplay?: boolean;
-	alwaysDefined?: boolean;
-	hide?: boolean;
+  component: ComponentType;
+  filter?: (columnValue: any, value: any) => boolean;
+  getColumn?: (row: Row) => Row[keyof Row];
+  filterProps?: (rows: any[], field: string) => { [key: string]: any };
+  extraProps?: { [key: string]: any };
+  alwaysDisplay?: boolean;
+  alwaysDefined?: boolean;
+  hide?: boolean;
 }
 
 interface ListViewFieldsConfig {
-	[key: string]: {
-		head: string[];
-		body: string[];
-		meta?: string[];
-		breadcrumb_link_disabled?: boolean;
-		filters?: {
-			[key: string]: ListViewFilterConfig;
-		};
-	};
+  [key: string]: {
+    head: string[];
+    body: string[];
+    meta?: string[];
+    breadcrumb_link_disabled?: boolean;
+    filters?: {
+      [key: string]: ListViewFilterConfig;
+    };
+  };
 }
 
 const PROJECT_STATUS_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => row.lc_status,
-	extraProps: {
-		defaultOptionName: 'status'
-	},
-	alwaysDisplay: true
+  component: SelectFilter,
+  getColumn: (row) => row.lc_status,
+  extraProps: {
+    defaultOptionName: 'status'
+  },
+  alwaysDisplay: true
 };
 
 const DOMAIN_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => row.folder?.str,
-	alwaysDefined: true,
-	extraProps: {
-		defaultOptionName: 'domain'
-	}
+  component: SelectFilter,
+  getColumn: (row) => row.folder?.str,
+  alwaysDefined: true,
+  extraProps: {
+    defaultOptionName: 'domain'
+  }
 };
 
 const LABELS_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => {
-		return row.filtering_labels && row.filtering_labels.length > 0
-			? row.filtering_labels?.map((filtering_label) => filtering_label.str)
-			: [''];
-	},
-	alwaysDefined: true,
-	extraProps: {
-		defaultOptionName: 'filtering_labels'
-	}
+  component: SelectFilter,
+  getColumn: (row) => {
+    return row.filtering_labels && row.filtering_labels.length > 0
+      ? row.filtering_labels?.map((filtering_label) => filtering_label.str)
+      : [''];
+  },
+  alwaysDefined: true,
+  extraProps: {
+    defaultOptionName: 'filtering_labels'
+  }
 };
 
 const PRIORITY_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => row.priority,
-	alwaysDisplay: true,
-	extraProps: {
-		defaultOptionName: 'priority'
-	}
+  component: SelectFilter,
+  getColumn: (row) => row.priority,
+  alwaysDisplay: true,
+  extraProps: {
+    defaultOptionName: 'priority'
+  }
 };
 
 const DOMAIN_FILTER_FROM_PROJECT: ListViewFilterConfig = {
-	...DOMAIN_FILTER,
-	getColumn: (row) => row.project?.folder.str
+  ...DOMAIN_FILTER,
+  getColumn: (row) => row.project?.folder.str
 };
 
 const PROJECT_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => row.project?.str,
-	extraProps: {
-		defaultOptionName: 'project' // Make translations
-	}
+  component: SelectFilter,
+  getColumn: (row) => row.project?.str,
+  extraProps: {
+    defaultOptionName: 'project' // Make translations
+  }
 };
 
 const STATUS_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => row.status,
-	extraProps: {
-		defaultOptionName: 'status'
-	},
-	alwaysDisplay: true
+  component: SelectFilter,
+  getColumn: (row) => row.status,
+  extraProps: {
+    defaultOptionName: 'status'
+  },
+  alwaysDisplay: true
 };
 
 const TREATMENT_FILTER: ListViewFilterConfig = {
-	// I could make a function just make the code less repeatitive and long for nothing
-	component: SelectFilter,
-	getColumn: (row) => row.treatment,
-	extraProps: {
-		defaultOptionName: 'treatment'
-	}
+  // I could make a function just make the code less repeatitive and long for nothing
+  component: SelectFilter,
+  getColumn: (row) => row.treatment,
+  extraProps: {
+    defaultOptionName: 'treatment'
+  }
 };
 
 const STATE_FILTER: ListViewFilterConfig = {
-	// I could make a function just make the code less repeatitive and long for nothing
-	component: SelectFilter,
-	getColumn: (row) => row.state,
-	extraProps: {
-		defaultOptionName: 'state'
-	}
+  // I could make a function just make the code less repeatitive and long for nothing
+  component: SelectFilter,
+  getColumn: (row) => row.state,
+  extraProps: {
+    defaultOptionName: 'state'
+  }
 };
 
 const APPROVER_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => {
-		if (row.first_name && row.last_name) {
-			return `${row.first_name} ${row.last_name}`;
-		}
-		return row.approver?.str; // This display the email in the approver filter, is this a problem because of email leak risks ?
-	},
-	extraProps: {
-		defaultOptionName: 'approver'
-	}
+  component: SelectFilter,
+  getColumn: (row) => {
+    if (row.first_name && row.last_name) {
+      return `${row.first_name} ${row.last_name}`;
+    }
+    return row.approver?.str; // This display the email in the approver filter, is this a problem because of email leak risks ?
+  },
+  extraProps: {
+    defaultOptionName: 'approver'
+  }
 };
 
 const RISK_ASSESSMENT_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => row.risk_assessment.name,
-	extraProps: {
-		defaultOptionName: 'riskAssessment'
-	}
+  component: SelectFilter,
+  getColumn: (row) => row.risk_assessment.name,
+  extraProps: {
+    defaultOptionName: 'riskAssessment'
+  }
 };
 
+
+
 const PROVIDER_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => {
-		return row.provider;
-	},
-	extraProps: {
-		defaultOptionName: 'provider'
-	}
+  component: SelectFilter,
+  getColumn: (row) => {
+    return row.provider;
+  },
+  extraProps: {
+    defaultOptionName: 'provider'
+  }
 };
 
 const THREAT_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => (row.threats?.length ? row.threats.map((t) => t.str) : null),
-	extraProps: {
-		defaultOptionName: 'threat'
-	}
+  component: SelectFilter,
+  getColumn: (row) => (row.threats?.length ? row.threats.map((t) => t.str) : null),
+  extraProps: {
+    defaultOptionName: 'threat'
+  }
 };
 
 const ASSET_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => (row.assets?.length ? row.assets.map((t) => t.str) : null),
-	extraProps: {
-		defaultOptionName: 'asset'
-	},
-	alwaysDisplay: true
+  component: SelectFilter,
+  getColumn: (row) => (row.assets?.length ? row.assets.map((t) => t.str) : null),
+  extraProps: {
+    defaultOptionName: 'asset'
+  },
+  alwaysDisplay: true
 };
 
 const FRAMEWORK_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => row.framework.ref_id,
-	extraProps: {
-		defaultOptionName: 'framework' // Make translations
-	}
+  component: SelectFilter,
+  getColumn: (row) => row.framework.ref_id,
+  extraProps: {
+    defaultOptionName: 'framework' // Make translations
+  }
 };
 
 const LANGUAGE_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => row.locales,
-	extraProps: {
-		defaultOptionName: 'language', // Make translations
-		optionLabels: LOCALE_DISPLAY_MAP
-	}
+  component: SelectFilter,
+  getColumn: (row) => row.locales,
+  extraProps: {
+    defaultOptionName: 'language', // Make translations
+    optionLabels: LOCALE_DISPLAY_MAP
+  }
 };
 
 const ASSET_TYPE_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => row.type,
-	extraProps: {
-		defaultOptionName: 'type' // Make translations
-	},
-	alwaysDisplay: true
+  component: SelectFilter,
+  getColumn: (row) => row.type,
+  extraProps: {
+    defaultOptionName: 'type' // Make translations
+  },
+  alwaysDisplay: true
 };
 
 const CATEGORY_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => row.category,
-	extraProps: {
-		defaultOptionName: 'category' // Make translations
-	},
-	alwaysDisplay: true
+  component: SelectFilter,
+  getColumn: (row) => row.category,
+  extraProps: {
+    defaultOptionName: 'category' // Make translations
+  },
+  alwaysDisplay: true
 };
 
 const CSF_FUNCTION_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => row.csf_function,
-	extraProps: {
-		defaultOptionName: 'csfFunction' // Make translations
-	},
-	alwaysDisplay: true
+  component: SelectFilter,
+  getColumn: (row) => row.csf_function,
+  extraProps: {
+    defaultOptionName: 'csfFunction' // Make translations
+  },
+  alwaysDisplay: true
 };
 
 const OWNER_FILTER: ListViewFilterConfig = {
-	component: SelectFilter,
-	getColumn: (row) => {
-		const owner = row?.meta?.owner;
-		return owner && owner.length ? owner.map((o) => o.str) : null;
-	},
-	extraProps: {
-		defaultOptionName: 'owner'
-	},
-	alwaysDisplay: true
+  component: SelectFilter,
+  getColumn: (row) => {
+    const owner = row?.meta?.owner;
+    return owner && owner.length ? owner.map((o) => o.str) : null;
+  },
+  extraProps: {
+    defaultOptionName: 'owner'
+  },
+  alwaysDisplay: true
 };
 /* const HAS_RISK_MATRIX_FILTER: ListViewFilterConfig = {
   component: CheckboxFilter,
@@ -228,297 +230,299 @@ const OWNER_FILTER: ListViewFilterConfig = {
 }; */
 
 const LIBRARY_TYPE_FILTER = {
-	component: SelectFilter,
-	getColumn: (row) => {
-		const overviewKeys = new Set(row.overview?.map((overviewRow) => overviewRow.split(':')[0]));
-		const libraryDatatypeSet = new Set([
-			'framework',
-			'risk_matrix',
-			'threats',
-			'requirement_mapping_set',
-			'reference_controls'
-		]);
-		const datatypes = [...libraryDatatypeSet].filter((datatype) => overviewKeys.has(datatype));
-		return datatypes;
-	},
-	extraProps: {
-		defaultOptionName: 'objectType'
-	},
-	alwaysDisplay: true
+  component: SelectFilter,
+  getColumn: (row) => {
+    const overviewKeys = new Set(row.overview?.map((overviewRow) => overviewRow.split(':')[0]));
+    const libraryDatatypeSet = new Set([
+      'framework',
+      'risk_matrix',
+      'threats',
+      'requirement_mapping_set',
+      'reference_controls'
+    ]);
+    const datatypes = [...libraryDatatypeSet].filter((datatype) => overviewKeys.has(datatype));
+    return datatypes;
+  },
+  extraProps: {
+    defaultOptionName: 'objectType'
+  },
+  alwaysDisplay: true
 };
 
 export const listViewFields: ListViewFieldsConfig = {
-	folders: {
-		head: ['name', 'description', 'parentDomain'],
-		body: ['name', 'description', 'parent_folder']
-	},
-	projects: {
-		head: ['ref_id', 'name', 'description', 'domain'],
-		body: ['ref_id', 'name', 'description', 'folder'],
-		filters: {
-			folder: DOMAIN_FILTER,
-			lc_status: PROJECT_STATUS_FILTER
-		}
-	},
-	'filtering-labels': {
-		head: ['label'],
-		body: ['label']
-	},
-	'risk-matrices': {
-		head: ['name', 'description', 'provider', 'domain'],
-		body: ['name', 'description', 'provider', 'folder'],
-		meta: ['id', 'urn'],
-		filters: {
-			folder: DOMAIN_FILTER
-		}
-	},
-	vulnerabilities: {
-		head: ['ref_id', 'name', 'description', 'applied_controls', 'folder', 'labels'],
-		body: ['ref_id', 'name', 'description', 'applied_controls', 'folder', 'filtering_labels'],
-		filters: {
-			folder: DOMAIN_FILTER,
-			filtering_labels: LABELS_FILTER
-		}
-	},
-	'risk-assessments': {
-		head: ['ref_id', 'name', 'riskMatrix', 'description', 'riskScenarios', 'project'],
-		body: ['ref_id', 'str', 'risk_matrix', 'description', 'risk_scenarios_count', 'project'],
-		filters: {
-			folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true },
-			project: PROJECT_FILTER,
-			status: { ...STATUS_FILTER, alwaysDisplay: true }
-		}
-	},
-	threats: {
-		head: ['ref_id', 'name', 'description', 'provider', 'domain'],
-		body: ['ref_id', 'name', 'description', 'provider', 'folder'],
-		meta: ['id', 'urn'],
-		filters: {
-			folder: DOMAIN_FILTER,
-			provider: PROVIDER_FILTER
-		}
-	},
-	'risk-scenarios': {
-		head: [
-			'ref_id',
-			'name',
-			'threats',
-			'riskAssessment',
-			'existingAppliedControls',
-			'currentLevel',
-			'extraAppliedControls',
-			'residualLevel'
-		],
-		body: [
-			'ref_id',
-			'name',
-			'threats',
-			'risk_assessment',
-			'existing_applied_controls',
-			'current_level',
-			'applied_controls',
-			'residual_level'
-		],
-		filters: {
-			folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true },
-			project: { ...PROJECT_FILTER, alwaysDisplay: true },
-			treatment: { ...TREATMENT_FILTER, alwaysDisplay: true },
-			risk_assessment: RISK_ASSESSMENT_FILTER,
-			threats: THREAT_FILTER,
-			assets: ASSET_FILTER
-		}
-	},
-	'risk-acceptances': {
-		head: ['name', 'description', 'riskScenarios'],
-		body: ['name', 'description', 'risk_scenarios'],
-		filters: {
-			folder: DOMAIN_FILTER,
-			state: STATE_FILTER,
-			approver: APPROVER_FILTER
-		}
-	},
-	'applied-controls': {
-		head: [
-			'ref_id',
-			'name',
-			'description',
-			'category',
-			'csfFunction',
-			'eta',
-			'owner',
-			'domain',
-			'referenceControl'
-		],
-		body: [
-			'ref_id',
-			'name',
-			'description',
-			'category',
-			'csf_function',
-			'eta',
-			'owner',
-			'folder',
-			'reference_control'
-		],
-		filters: {
-			folder: DOMAIN_FILTER,
-			status: STATUS_FILTER,
-			category: CATEGORY_FILTER,
-			csf_function: CSF_FUNCTION_FILTER,
-			owner: OWNER_FILTER,
-			priority: PRIORITY_FILTER
-		}
-	},
-	policies: {
-		head: ['name', 'description', 'csfFunction', 'eta', 'owner', 'domain', 'referenceControl'],
-		body: ['name', 'description', 'csf_function', 'eta', 'owner', 'folder', 'reference_control'],
-		filters: {
-			folder: DOMAIN_FILTER,
-			status: STATUS_FILTER,
-			csf_function: CSF_FUNCTION_FILTER,
-			owner: OWNER_FILTER,
-			priority: PRIORITY_FILTER
-		}
-	},
-	'reference-controls': {
-		head: ['ref_id', 'name', 'description', 'category', 'csfFunction', 'provider', 'domain'],
-		body: ['ref_id', 'name', 'description', 'category', 'csf_function', 'provider', 'folder'],
-		meta: ['id', 'urn'],
-		filters: {
-			folder: { ...DOMAIN_FILTER, alwaysDisplay: true },
-			category: CATEGORY_FILTER,
-			provider: PROVIDER_FILTER,
-			csf_function: CSF_FUNCTION_FILTER
-		}
-	},
-	assets: {
-		head: [
-			'name',
-			'description',
-			'businessValue',
-			'securityObjectives',
-			'disasterRecoveryObjectives',
-			'owner',
-			'domain'
-		],
-		body: [
-			'name',
-			'description',
-			'business_value',
-			'security_objectives',
-			'disaster_recovery_objectives',
-			'owner',
-			'folder'
-		],
-		filters: {
-			folder: DOMAIN_FILTER,
-			type: ASSET_TYPE_FILTER
-		}
-	},
-	users: {
-		head: ['email', 'firstName', 'lastName'],
-		body: ['email', 'first_name', 'last_name']
-	},
-	'user-groups': {
-		head: ['name'],
-		body: ['localization_dict'],
-		meta: ['id', 'builtin']
-	},
-	roles: {
-		head: ['name', 'description'],
-		body: ['name', 'description']
-	},
-	'role-assignments': {
-		head: ['user', 'userGroup', 'role', 'perimeter'],
-		body: ['user', 'user_group', 'role', 'perimeter_folders']
-	},
-	frameworks: {
-		head: ['name', 'description', 'provider', 'complianceAssessments', 'domain'],
-		body: ['name', 'description', 'provider', 'compliance_assessments', 'folder'],
-		meta: ['id', 'urn'],
-		filters: {
-			folder: DOMAIN_FILTER,
-			provider: PROVIDER_FILTER
-		}
-	},
-	'compliance-assessments': {
-		head: ['ref_id', 'name', 'framework', 'description', 'project'],
-		body: ['ref_id', 'name', 'framework', 'description', 'project'],
-		filters: {
-			folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true }, // alwaysDisplay shoudln't be mandatory here something is wrong
-			project: PROJECT_FILTER,
-			framework: FRAMEWORK_FILTER,
-			status: STATUS_FILTER
-		}
-	},
-	'requirement-assessments': {
-		head: ['name', 'description', 'complianceAssessment'],
-		body: ['name', 'description', 'compliance_assessment'],
-		breadcrumb_link_disabled: true
-	},
-	evidences: {
-		head: ['name', 'file', 'size', 'description'],
-		body: ['name', 'attachment', 'size', 'description'],
-		filters: {
-			folder: { ...DOMAIN_FILTER, alwaysDisplay: true } // This filter should also be displayed even without alwaysDisplay
-		}
-	},
-	requirements: {
-		head: ['ref_id', 'name', 'description', 'framework'],
-		body: ['ref_id', 'name', 'description', 'framework'],
-		meta: ['id', 'urn']
-	},
-	libraries: {
-		head: ['provider', 'name', 'description', 'language', 'overview'],
-		body: ['provider', 'name', 'description', 'locales', 'overview']
-	},
-	'stored-libraries': {
-		head: ['provider', 'name', 'description', 'language', 'overview'],
-		body: ['provider', 'name', 'description', 'locales', 'overview'],
-		filters: {
-			locales: LANGUAGE_FILTER,
-			provider: PROVIDER_FILTER,
-			objectType: LIBRARY_TYPE_FILTER
-		}
-	},
-	'loaded-libraries': {
-		head: ['provider', 'name', 'description', 'language', 'overview'],
-		body: ['provider', 'name', 'description', 'locales', 'overview'],
-		filters: {
-			locales: LANGUAGE_FILTER,
-			provider: PROVIDER_FILTER,
-			objectType: LIBRARY_TYPE_FILTER
-		}
-	},
-	'sso-settings': {
-		head: ['name', 'provider', 'providerId'],
-		body: ['name', 'provider', 'provider_id']
-	},
-	'requirement-mapping-sets': {
-		head: ['sourceFramework', 'targetFramework'],
-		body: ['source_framework', 'target_framework']
-	},
-	entities: {
-		head: ['name', 'description', 'domain', 'ownedFolders'],
-		body: ['name', 'description', 'folder', 'owned_folders'],
-		filters: {
-			folder: DOMAIN_FILTER
-		}
-	},
-	'entity-assessments': {
-		head: ['name', 'description', 'project', 'entity'],
-		body: ['name', 'description', 'project', 'entity'],
-		filters: {
-			project: PROJECT_FILTER,
-			status: STATUS_FILTER
-		}
-	},
-	solutions: {
-		head: ['name', 'description', 'providerEntity', 'recipientEntity', 'criticality'],
-		body: ['name', 'description', 'provider_entity', 'recipient_entity', 'criticality']
-	},
-	representatives: {
-		head: ['email', 'entity', 'role'],
-		body: ['email', 'entity', 'role']
-	}
+  folders: {
+    head: ['name', 'description', 'parentDomain'],
+    body: ['name', 'description', 'parent_folder']
+  },
+  projects: {
+    head: ['ref_id', 'name', 'description', 'domain'],
+    body: ['ref_id', 'name', 'description', 'folder'],
+    filters: {
+      folder: DOMAIN_FILTER,
+      lc_status: PROJECT_STATUS_FILTER
+    }
+  },
+  'filtering-labels': {
+    head: ['label'],
+    body: ['label']
+  },
+  'risk-matrices': {
+    head: ['name', 'description', 'provider', 'domain'],
+    body: ['name', 'description', 'provider', 'folder'],
+    meta: ['id', 'urn'],
+    filters: {
+      folder: DOMAIN_FILTER
+    }
+  },
+  vulnerabilities: {
+    head: ['ref_id', 'name', 'description', 'applied_controls', 'folder', 'labels'],
+    body: ['ref_id', 'name', 'description', 'applied_controls', 'folder', 'filtering_labels'],
+    filters: {
+      folder: DOMAIN_FILTER,
+      filtering_labels: LABELS_FILTER
+    }
+  },
+  'risk-assessments': {
+    head: ['ref_id', 'name', 'riskMatrix', 'description', 'riskScenarios', 'project'],
+    body: ['ref_id', 'str', 'risk_matrix', 'description', 'risk_scenarios_count', 'project'],
+    filters: {
+      folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true },
+      project: PROJECT_FILTER,
+      status: { ...STATUS_FILTER, alwaysDisplay: true }
+    }
+  },
+  threats: {
+    head: ['ref_id', 'name', 'description', 'provider', 'domain'],
+    body: ['ref_id', 'name', 'description', 'provider', 'folder'],
+    meta: ['id', 'urn'],
+    filters: {
+      folder: DOMAIN_FILTER,
+      provider: PROVIDER_FILTER
+    }
+  },
+  'risk-scenarios': {
+    head: [
+      'ref_id',
+      'name',
+      'threats',
+      'riskAssessment',
+      'existingAppliedControls',
+      'currentLevel',
+      'extraAppliedControls',
+      'residualLevel'
+    ],
+    body: [
+      'ref_id',
+      'name',
+      'threats',
+      'risk_assessment',
+      'existing_applied_controls',
+      'current_level',
+      'applied_controls',
+      'residual_level'
+    ],
+    filters: {
+      folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true },
+      project: { ...PROJECT_FILTER, alwaysDisplay: true },
+      treatment: { ...TREATMENT_FILTER, alwaysDisplay: true },
+      risk_assessment: RISK_ASSESSMENT_FILTER,
+      threats: THREAT_FILTER,
+      assets: ASSET_FILTER
+    }
+  },
+  'risk-acceptances': {
+    head: ['name', 'description', 'riskScenarios'],
+    body: ['name', 'description', 'risk_scenarios'],
+    filters: {
+      folder: DOMAIN_FILTER,
+      state: STATE_FILTER,
+      approver: APPROVER_FILTER
+    }
+  },
+  'applied-controls': {
+    head: [
+      'ref_id',
+      'name',
+      'priority',
+      'status',
+      'category',
+      'csfFunction',
+      'eta',
+      'owner',
+      'domain',
+      'referenceControl'
+    ],
+    body: [
+      'ref_id',
+      'name',
+      'priority',
+      'status',
+      'category',
+      'csf_function',
+      'eta',
+      'owner',
+      'folder',
+      'reference_control'
+    ],
+    filters: {
+      folder: DOMAIN_FILTER,
+      status: STATUS_FILTER,
+      category: CATEGORY_FILTER,
+      csf_function: CSF_FUNCTION_FILTER,
+      owner: OWNER_FILTER,
+      priority: PRIORITY_FILTER
+    }
+  },
+  policies: {
+    head: ['name', 'description', 'csfFunction', 'eta', 'owner', 'domain', 'referenceControl'],
+    body: ['name', 'description', 'csf_function', 'eta', 'owner', 'folder', 'reference_control'],
+    filters: {
+      folder: DOMAIN_FILTER,
+      status: STATUS_FILTER,
+      csf_function: CSF_FUNCTION_FILTER,
+      owner: OWNER_FILTER,
+      priority: PRIORITY_FILTER
+    }
+  },
+  'reference-controls': {
+    head: ['ref_id', 'name', 'description', 'category', 'csfFunction', 'provider', 'domain'],
+    body: ['ref_id', 'name', 'description', 'category', 'csf_function', 'provider', 'folder'],
+    meta: ['id', 'urn'],
+    filters: {
+      folder: { ...DOMAIN_FILTER, alwaysDisplay: true },
+      category: CATEGORY_FILTER,
+      provider: PROVIDER_FILTER,
+      csf_function: CSF_FUNCTION_FILTER
+    }
+  },
+  assets: {
+    head: [
+      'name',
+      'type',
+      'description',
+      'securityObjectives',
+      'disasterRecoveryObjectives',
+      'owner',
+      'domain'
+    ],
+    body: [
+      'name',
+      'type',
+      'description',
+      'security_objectives',
+      'disaster_recovery_objectives',
+      'owner',
+      'folder'
+    ],
+    filters: {
+      folder: DOMAIN_FILTER,
+      type: ASSET_TYPE_FILTER
+    }
+  },
+  users: {
+    head: ['email', 'firstName', 'lastName'],
+    body: ['email', 'first_name', 'last_name']
+  },
+  'user-groups': {
+    head: ['name'],
+    body: ['localization_dict'],
+    meta: ['id', 'builtin']
+  },
+  roles: {
+    head: ['name', 'description'],
+    body: ['name', 'description']
+  },
+  'role-assignments': {
+    head: ['user', 'userGroup', 'role', 'perimeter'],
+    body: ['user', 'user_group', 'role', 'perimeter_folders']
+  },
+  frameworks: {
+    head: ['name', 'description', 'provider', 'complianceAssessments', 'domain'],
+    body: ['name', 'description', 'provider', 'compliance_assessments', 'folder'],
+    meta: ['id', 'urn'],
+    filters: {
+      folder: DOMAIN_FILTER,
+      provider: PROVIDER_FILTER
+    }
+  },
+  'compliance-assessments': {
+    head: ['ref_id', 'name', 'framework', 'description', 'project'],
+    body: ['ref_id', 'name', 'framework', 'description', 'project'],
+    filters: {
+      folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true }, // alwaysDisplay shoudln't be mandatory here something is wrong
+      project: PROJECT_FILTER,
+      framework: FRAMEWORK_FILTER,
+      status: STATUS_FILTER
+    }
+  },
+  'requirement-assessments': {
+    head: ['name', 'description', 'complianceAssessment'],
+    body: ['name', 'description', 'compliance_assessment'],
+    breadcrumb_link_disabled: true
+  },
+  evidences: {
+    head: ['name', 'file', 'size', 'description'],
+    body: ['name', 'attachment', 'size', 'description'],
+    filters: {
+      folder: { ...DOMAIN_FILTER, alwaysDisplay: true } // This filter should also be displayed even without alwaysDisplay
+    }
+  },
+  requirements: {
+    head: ['ref_id', 'name', 'description', 'framework'],
+    body: ['ref_id', 'name', 'description', 'framework'],
+    meta: ['id', 'urn']
+  },
+  libraries: {
+    head: ['provider', 'name', 'description', 'language', 'overview'],
+    body: ['provider', 'name', 'description', 'locales', 'overview']
+  },
+  'stored-libraries': {
+    head: ['provider', 'name', 'description', 'language', 'overview'],
+    body: ['provider', 'name', 'description', 'locales', 'overview'],
+    filters: {
+      locales: LANGUAGE_FILTER,
+      provider: PROVIDER_FILTER,
+      objectType: LIBRARY_TYPE_FILTER
+    }
+  },
+  'loaded-libraries': {
+    head: ['provider', 'name', 'description', 'language', 'overview'],
+    body: ['provider', 'name', 'description', 'locales', 'overview'],
+    filters: {
+      locales: LANGUAGE_FILTER,
+      provider: PROVIDER_FILTER,
+      objectType: LIBRARY_TYPE_FILTER
+    }
+  },
+  'sso-settings': {
+    head: ['name', 'provider', 'providerId'],
+    body: ['name', 'provider', 'provider_id']
+  },
+  'requirement-mapping-sets': {
+    head: ['sourceFramework', 'targetFramework'],
+    body: ['source_framework', 'target_framework']
+  },
+  entities: {
+    head: ['name', 'description', 'domain', 'ownedFolders'],
+    body: ['name', 'description', 'folder', 'owned_folders'],
+    filters: {
+      folder: DOMAIN_FILTER
+    }
+  },
+  'entity-assessments': {
+    head: ['name', 'description', 'project', 'entity'],
+    body: ['name', 'description', 'project', 'entity'],
+    filters: {
+      project: PROJECT_FILTER,
+      status: STATUS_FILTER
+    }
+  },
+  solutions: {
+    head: ['name', 'description', 'providerEntity', 'recipientEntity', 'criticality'],
+    body: ['name', 'description', 'provider_entity', 'recipient_entity', 'criticality']
+  },
+  representatives: {
+    head: ['email', 'entity', 'role'],
+    body: ['email', 'entity', 'role']
+  }
 };

From 84243ac654ef9253ee737f0334f00885044f5f17 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Thu, 28 Nov 2024 20:11:08 +0100
Subject: [PATCH 076/107] one more column

---
 frontend/src/lib/utils/table.ts | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/frontend/src/lib/utils/table.ts b/frontend/src/lib/utils/table.ts
index 3cab58679..a2cca1164 100644
--- a/frontend/src/lib/utils/table.ts
+++ b/frontend/src/lib/utils/table.ts
@@ -303,6 +303,7 @@ export const listViewFields: ListViewFieldsConfig = {
   'risk-scenarios': {
     head: [
       'ref_id',
+      'treatment',
       'name',
       'threats',
       'riskAssessment',
@@ -313,6 +314,7 @@ export const listViewFields: ListViewFieldsConfig = {
     ],
     body: [
       'ref_id',
+      'treatment',
       'name',
       'threats',
       'risk_assessment',

From 6eaee7665611567e527ecaf96e4dd7e7ce506e28 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Thu, 28 Nov 2024 20:53:42 +0100
Subject: [PATCH 077/107] Formatter

---
 .../src/lib/components/SideBar/navData.ts     | 496 +++++-----
 frontend/src/lib/utils/table.ts               | 872 +++++++++---------
 2 files changed, 683 insertions(+), 685 deletions(-)

diff --git a/frontend/src/lib/components/SideBar/navData.ts b/frontend/src/lib/components/SideBar/navData.ts
index 5395e691e..5177acbc4 100644
--- a/frontend/src/lib/components/SideBar/navData.ts
+++ b/frontend/src/lib/components/SideBar/navData.ts
@@ -1,252 +1,252 @@
 export const navData = {
-  items: [
-    // {
-    // 	name: 'Home',
-    // 	items: [
-    // 		{
-    // 			name: 'Home',
-    // 			fa_icon: 'fa-solid fa-house',
-    // 			href: '/'
-    // 		},
-    // 		{ name: 'Quick start', fa_icon: 'fa-solid fa-plane', href: '/quick-start' }
-    // 	]
-    // },
-    {
-      name: 'overview',
-      items: [
-        {
-          name: 'analytics',
-          fa_icon: 'fa-solid fa-gauge',
-          href: '/analytics',
-          permissions: [
-            'view_project',
-            'view_riskscenario',
-            'view_referencecontrol',
-            'view_assessment',
-            'view_riskassessment'
-          ]
-        },
-        {
-          name: 'myAssignments',
-          fa_icon: 'fa-solid fa-list-check',
-          href: '/my-assignments',
-          permissions: [
-            'view_project',
-            'view_riskscenario',
-            'view_referencecontrol',
-            'view_assessment',
-            'view_riskassessment'
-          ]
-        }
-      ]
-    },
-    {
-      name: 'organization',
-      items: [
-        {
-          name: 'domains',
-          fa_icon: 'fa-solid fa-sitemap',
-          href: '/folders',
-          exclude: ['BI-RL-TPR']
-        },
-        {
-          name: 'projects',
-          fa_icon: 'fa-solid fa-cubes',
-          href: '/projects'
-        },
-        {
-          name: 'users',
-          fa_icon: 'fa-solid fa-user',
-          href: '/users'
-        },
-        {
-          name: 'userGroups',
-          fa_icon: 'fa-solid fa-users',
-          href: '/user-groups'
-        },
-        {
-          name: 'roleAssignments',
-          fa_icon: 'fa-solid fa-user-tag',
-          href: '/role-assignments'
-        },
-        {
-          name: 'assets',
-          fa_icon: 'fa-solid fa-gem',
-          href: '/assets'
-        }
-      ]
-    },
-    {
-      name: 'catalog',
-      items: [
-        {
-          name: 'frameworks',
-          fa_icon: 'fa-solid fa-book',
-          href: '/frameworks'
-        },
-        {
-          name: 'threats',
-          fa_icon: 'fa-solid fa-biohazard',
-          href: '/threats'
-        },
-        {
-          name: 'referenceControls',
-          fa_icon: 'fa-solid fa-gears',
-          href: '/reference-controls'
-        },
-        {
-          name: 'requirementMappingSets',
-          fa_icon: 'fa-solid fa-diagram-project',
-          href: '/requirement-mapping-sets'
-        },
-        {
-          name: 'riskMatrices',
-          fa_icon: 'fa-solid fa-table-cells-large',
-          href: '/risk-matrices'
-        }
-      ]
-    },
-    {
-      name: 'operations',
-      items: [
-        {
-          name: 'appliedControls',
-          fa_icon: 'fa-solid fa-fire-extinguisher',
-          href: '/applied-controls'
-        },
-        {
-          name: 'calendar',
-          fa_icon: 'fa-solid fa-calendar-days',
-          href: '/calendar',
-          permissions: ['view_appliedcontrol', 'view_riskacceptance', 'view_riskassessment']
-        },
-        {
-          name: 'xRays',
-          fa_icon: 'fa-solid fa-bolt',
-          href: '/x-rays',
-          permissions: ['view_riskassessment', 'view_assessment']
-        }
-      ]
-    },
-    {
-      name: 'governance',
-      items: [
-        {
-          name: 'libraries',
-          fa_icon: 'fa-solid fa-folder-plus',
-          href: '/libraries',
-          permissions: ['add_threat', 'add_riskmatrix', 'add_referencecontrol', 'add_framework']
-        },
-        {
-          name: 'policies',
-          fa_icon: 'fa-solid fa-book',
-          href: '/policies',
-          permissions: ['view_appliedcontrol']
-        },
-        {
-          name: 'riskAcceptances',
-          fa_icon: 'fa-solid fa-signature',
-          href: '/risk-acceptances'
-        }
-      ]
-    },
-    {
-      name: 'risk',
-      items: [
-        {
-          name: 'riskAssessments',
-          fa_icon: 'fa-solid fa-magnifying-glass-chart',
-          href: '/risk-assessments'
-        },
-        {
-          name: 'riskScenarios',
-          fa_icon: 'fa-solid fa-clone',
-          href: '/risk-scenarios'
-        },
-        {
-          name: 'scoringAssistant',
-          fa_icon: 'fa-solid fa-star-half-stroke',
-          href: '/scoring-assistant',
-          permissions: ['view_riskmatrix']
-        },
-        {
-          name: 'vulnerabilities',
-          // What is the best icon between "fa-triangle-exclamation" and "fa-skull-crossbones" for a vulnerability ?
-          fa_icon: 'fa-solid fa-triangle-exclamation',
-          href: '/vulnerabilities'
-        }
-      ]
-    },
+	items: [
+		// {
+		// 	name: 'Home',
+		// 	items: [
+		// 		{
+		// 			name: 'Home',
+		// 			fa_icon: 'fa-solid fa-house',
+		// 			href: '/'
+		// 		},
+		// 		{ name: 'Quick start', fa_icon: 'fa-solid fa-plane', href: '/quick-start' }
+		// 	]
+		// },
+		{
+			name: 'overview',
+			items: [
+				{
+					name: 'analytics',
+					fa_icon: 'fa-solid fa-gauge',
+					href: '/analytics',
+					permissions: [
+						'view_project',
+						'view_riskscenario',
+						'view_referencecontrol',
+						'view_assessment',
+						'view_riskassessment'
+					]
+				},
+				{
+					name: 'myAssignments',
+					fa_icon: 'fa-solid fa-list-check',
+					href: '/my-assignments',
+					permissions: [
+						'view_project',
+						'view_riskscenario',
+						'view_referencecontrol',
+						'view_assessment',
+						'view_riskassessment'
+					]
+				}
+			]
+		},
+		{
+			name: 'organization',
+			items: [
+				{
+					name: 'domains',
+					fa_icon: 'fa-solid fa-sitemap',
+					href: '/folders',
+					exclude: ['BI-RL-TPR']
+				},
+				{
+					name: 'projects',
+					fa_icon: 'fa-solid fa-cubes',
+					href: '/projects'
+				},
+				{
+					name: 'users',
+					fa_icon: 'fa-solid fa-user',
+					href: '/users'
+				},
+				{
+					name: 'userGroups',
+					fa_icon: 'fa-solid fa-users',
+					href: '/user-groups'
+				},
+				{
+					name: 'roleAssignments',
+					fa_icon: 'fa-solid fa-user-tag',
+					href: '/role-assignments'
+				},
+				{
+					name: 'assets',
+					fa_icon: 'fa-solid fa-gem',
+					href: '/assets'
+				}
+			]
+		},
+		{
+			name: 'catalog',
+			items: [
+				{
+					name: 'frameworks',
+					fa_icon: 'fa-solid fa-book',
+					href: '/frameworks'
+				},
+				{
+					name: 'threats',
+					fa_icon: 'fa-solid fa-biohazard',
+					href: '/threats'
+				},
+				{
+					name: 'referenceControls',
+					fa_icon: 'fa-solid fa-gears',
+					href: '/reference-controls'
+				},
+				{
+					name: 'requirementMappingSets',
+					fa_icon: 'fa-solid fa-diagram-project',
+					href: '/requirement-mapping-sets'
+				},
+				{
+					name: 'riskMatrices',
+					fa_icon: 'fa-solid fa-table-cells-large',
+					href: '/risk-matrices'
+				}
+			]
+		},
+		{
+			name: 'operations',
+			items: [
+				{
+					name: 'appliedControls',
+					fa_icon: 'fa-solid fa-fire-extinguisher',
+					href: '/applied-controls'
+				},
+				{
+					name: 'calendar',
+					fa_icon: 'fa-solid fa-calendar-days',
+					href: '/calendar',
+					permissions: ['view_appliedcontrol', 'view_riskacceptance', 'view_riskassessment']
+				},
+				{
+					name: 'xRays',
+					fa_icon: 'fa-solid fa-bolt',
+					href: '/x-rays',
+					permissions: ['view_riskassessment', 'view_assessment']
+				}
+			]
+		},
+		{
+			name: 'governance',
+			items: [
+				{
+					name: 'libraries',
+					fa_icon: 'fa-solid fa-folder-plus',
+					href: '/libraries',
+					permissions: ['add_threat', 'add_riskmatrix', 'add_referencecontrol', 'add_framework']
+				},
+				{
+					name: 'policies',
+					fa_icon: 'fa-solid fa-book',
+					href: '/policies',
+					permissions: ['view_appliedcontrol']
+				},
+				{
+					name: 'riskAcceptances',
+					fa_icon: 'fa-solid fa-signature',
+					href: '/risk-acceptances'
+				}
+			]
+		},
+		{
+			name: 'risk',
+			items: [
+				{
+					name: 'riskAssessments',
+					fa_icon: 'fa-solid fa-magnifying-glass-chart',
+					href: '/risk-assessments'
+				},
+				{
+					name: 'riskScenarios',
+					fa_icon: 'fa-solid fa-clone',
+					href: '/risk-scenarios'
+				},
+				{
+					name: 'scoringAssistant',
+					fa_icon: 'fa-solid fa-star-half-stroke',
+					href: '/scoring-assistant',
+					permissions: ['view_riskmatrix']
+				},
+				{
+					name: 'vulnerabilities',
+					// What is the best icon between "fa-triangle-exclamation" and "fa-skull-crossbones" for a vulnerability ?
+					fa_icon: 'fa-solid fa-triangle-exclamation',
+					href: '/vulnerabilities'
+				}
+			]
+		},
 
-    {
-      name: 'compliance',
-      items: [
-        {
-          name: 'complianceAssessments',
-          fa_icon: 'fa-solid fa-certificate',
-          href: '/compliance-assessments'
-        },
-        {
-          name: 'evidences',
-          fa_icon: 'fa-solid fa-receipt',
-          href: '/evidences'
-        }
-      ]
-    },
+		{
+			name: 'compliance',
+			items: [
+				{
+					name: 'complianceAssessments',
+					fa_icon: 'fa-solid fa-certificate',
+					href: '/compliance-assessments'
+				},
+				{
+					name: 'evidences',
+					fa_icon: 'fa-solid fa-receipt',
+					href: '/evidences'
+				}
+			]
+		},
 
-    {
-      name: 'thirdPartyCategory',
-      items: [
-        {
-          name: 'entities',
-          fa_icon: 'fa-solid fa-building',
-          href: '/entities'
-        },
-        {
-          name: 'entityAssessments',
-          fa_icon: 'fa-solid fa-clipboard-list',
-          href: '/entity-assessments'
-        },
-        {
-          name: 'representatives',
-          fa_icon: 'fa-solid fa-user-tie',
-          href: '/representatives'
-        },
-        {
-          name: 'solutions',
-          fa_icon: 'fa-solid fa-box',
-          href: '/solutions'
-        }
-      ]
-    },
-    {
-      name: 'extra',
-      items: [
-        {
-          name: 'labels',
-          fa_icon: 'fa-solid fa-tag',
-          href: '/filtering-labels',
-          permissions: ['view_filteringlabel']
-        },
-        {
-          name: 'settings',
-          fa_icon: 'fa-solid fa-cog',
-          href: '/settings',
-          permissions: ['change_globalsettings']
-        },
-        {
-          name: 'backupRestore',
-          fa_icon: 'fa-solid fa-floppy-disk',
-          href: '/backup-restore',
-          permissions: ['backup']
-        },
-        {
-          name: 'Experimental',
-          fa_icon: 'fa-solid fa-flask',
-          href: '/experimental',
-          permissions: ['change_globalsettings']
-        }
-      ]
-    }
-  ]
+		{
+			name: 'thirdPartyCategory',
+			items: [
+				{
+					name: 'entities',
+					fa_icon: 'fa-solid fa-building',
+					href: '/entities'
+				},
+				{
+					name: 'entityAssessments',
+					fa_icon: 'fa-solid fa-clipboard-list',
+					href: '/entity-assessments'
+				},
+				{
+					name: 'representatives',
+					fa_icon: 'fa-solid fa-user-tie',
+					href: '/representatives'
+				},
+				{
+					name: 'solutions',
+					fa_icon: 'fa-solid fa-box',
+					href: '/solutions'
+				}
+			]
+		},
+		{
+			name: 'extra',
+			items: [
+				{
+					name: 'labels',
+					fa_icon: 'fa-solid fa-tag',
+					href: '/filtering-labels',
+					permissions: ['view_filteringlabel']
+				},
+				{
+					name: 'settings',
+					fa_icon: 'fa-solid fa-cog',
+					href: '/settings',
+					permissions: ['change_globalsettings']
+				},
+				{
+					name: 'backupRestore',
+					fa_icon: 'fa-solid fa-floppy-disk',
+					href: '/backup-restore',
+					permissions: ['backup']
+				},
+				{
+					name: 'Experimental',
+					fa_icon: 'fa-solid fa-flask',
+					href: '/experimental',
+					permissions: ['change_globalsettings']
+				}
+			]
+		}
+	]
 };
diff --git a/frontend/src/lib/utils/table.ts b/frontend/src/lib/utils/table.ts
index a2cca1164..a46a2ffab 100644
--- a/frontend/src/lib/utils/table.ts
+++ b/frontend/src/lib/utils/table.ts
@@ -6,212 +6,210 @@ import { LOCALE_DISPLAY_MAP } from './constants';
 import type { Row } from '@vincjo/datatables';
 
 interface ListViewFilterConfig {
-  component: ComponentType;
-  filter?: (columnValue: any, value: any) => boolean;
-  getColumn?: (row: Row) => Row[keyof Row];
-  filterProps?: (rows: any[], field: string) => { [key: string]: any };
-  extraProps?: { [key: string]: any };
-  alwaysDisplay?: boolean;
-  alwaysDefined?: boolean;
-  hide?: boolean;
+	component: ComponentType;
+	filter?: (columnValue: any, value: any) => boolean;
+	getColumn?: (row: Row) => Row[keyof Row];
+	filterProps?: (rows: any[], field: string) => { [key: string]: any };
+	extraProps?: { [key: string]: any };
+	alwaysDisplay?: boolean;
+	alwaysDefined?: boolean;
+	hide?: boolean;
 }
 
 interface ListViewFieldsConfig {
-  [key: string]: {
-    head: string[];
-    body: string[];
-    meta?: string[];
-    breadcrumb_link_disabled?: boolean;
-    filters?: {
-      [key: string]: ListViewFilterConfig;
-    };
-  };
+	[key: string]: {
+		head: string[];
+		body: string[];
+		meta?: string[];
+		breadcrumb_link_disabled?: boolean;
+		filters?: {
+			[key: string]: ListViewFilterConfig;
+		};
+	};
 }
 
 const PROJECT_STATUS_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => row.lc_status,
-  extraProps: {
-    defaultOptionName: 'status'
-  },
-  alwaysDisplay: true
+	component: SelectFilter,
+	getColumn: (row) => row.lc_status,
+	extraProps: {
+		defaultOptionName: 'status'
+	},
+	alwaysDisplay: true
 };
 
 const DOMAIN_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => row.folder?.str,
-  alwaysDefined: true,
-  extraProps: {
-    defaultOptionName: 'domain'
-  }
+	component: SelectFilter,
+	getColumn: (row) => row.folder?.str,
+	alwaysDefined: true,
+	extraProps: {
+		defaultOptionName: 'domain'
+	}
 };
 
 const LABELS_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => {
-    return row.filtering_labels && row.filtering_labels.length > 0
-      ? row.filtering_labels?.map((filtering_label) => filtering_label.str)
-      : [''];
-  },
-  alwaysDefined: true,
-  extraProps: {
-    defaultOptionName: 'filtering_labels'
-  }
+	component: SelectFilter,
+	getColumn: (row) => {
+		return row.filtering_labels && row.filtering_labels.length > 0
+			? row.filtering_labels?.map((filtering_label) => filtering_label.str)
+			: [''];
+	},
+	alwaysDefined: true,
+	extraProps: {
+		defaultOptionName: 'filtering_labels'
+	}
 };
 
 const PRIORITY_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => row.priority,
-  alwaysDisplay: true,
-  extraProps: {
-    defaultOptionName: 'priority'
-  }
+	component: SelectFilter,
+	getColumn: (row) => row.priority,
+	alwaysDisplay: true,
+	extraProps: {
+		defaultOptionName: 'priority'
+	}
 };
 
 const DOMAIN_FILTER_FROM_PROJECT: ListViewFilterConfig = {
-  ...DOMAIN_FILTER,
-  getColumn: (row) => row.project?.folder.str
+	...DOMAIN_FILTER,
+	getColumn: (row) => row.project?.folder.str
 };
 
 const PROJECT_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => row.project?.str,
-  extraProps: {
-    defaultOptionName: 'project' // Make translations
-  }
+	component: SelectFilter,
+	getColumn: (row) => row.project?.str,
+	extraProps: {
+		defaultOptionName: 'project' // Make translations
+	}
 };
 
 const STATUS_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => row.status,
-  extraProps: {
-    defaultOptionName: 'status'
-  },
-  alwaysDisplay: true
+	component: SelectFilter,
+	getColumn: (row) => row.status,
+	extraProps: {
+		defaultOptionName: 'status'
+	},
+	alwaysDisplay: true
 };
 
 const TREATMENT_FILTER: ListViewFilterConfig = {
-  // I could make a function just make the code less repeatitive and long for nothing
-  component: SelectFilter,
-  getColumn: (row) => row.treatment,
-  extraProps: {
-    defaultOptionName: 'treatment'
-  }
+	// I could make a function just make the code less repeatitive and long for nothing
+	component: SelectFilter,
+	getColumn: (row) => row.treatment,
+	extraProps: {
+		defaultOptionName: 'treatment'
+	}
 };
 
 const STATE_FILTER: ListViewFilterConfig = {
-  // I could make a function just make the code less repeatitive and long for nothing
-  component: SelectFilter,
-  getColumn: (row) => row.state,
-  extraProps: {
-    defaultOptionName: 'state'
-  }
+	// I could make a function just make the code less repeatitive and long for nothing
+	component: SelectFilter,
+	getColumn: (row) => row.state,
+	extraProps: {
+		defaultOptionName: 'state'
+	}
 };
 
 const APPROVER_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => {
-    if (row.first_name && row.last_name) {
-      return `${row.first_name} ${row.last_name}`;
-    }
-    return row.approver?.str; // This display the email in the approver filter, is this a problem because of email leak risks ?
-  },
-  extraProps: {
-    defaultOptionName: 'approver'
-  }
+	component: SelectFilter,
+	getColumn: (row) => {
+		if (row.first_name && row.last_name) {
+			return `${row.first_name} ${row.last_name}`;
+		}
+		return row.approver?.str; // This display the email in the approver filter, is this a problem because of email leak risks ?
+	},
+	extraProps: {
+		defaultOptionName: 'approver'
+	}
 };
 
 const RISK_ASSESSMENT_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => row.risk_assessment.name,
-  extraProps: {
-    defaultOptionName: 'riskAssessment'
-  }
+	component: SelectFilter,
+	getColumn: (row) => row.risk_assessment.name,
+	extraProps: {
+		defaultOptionName: 'riskAssessment'
+	}
 };
 
-
-
 const PROVIDER_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => {
-    return row.provider;
-  },
-  extraProps: {
-    defaultOptionName: 'provider'
-  }
+	component: SelectFilter,
+	getColumn: (row) => {
+		return row.provider;
+	},
+	extraProps: {
+		defaultOptionName: 'provider'
+	}
 };
 
 const THREAT_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => (row.threats?.length ? row.threats.map((t) => t.str) : null),
-  extraProps: {
-    defaultOptionName: 'threat'
-  }
+	component: SelectFilter,
+	getColumn: (row) => (row.threats?.length ? row.threats.map((t) => t.str) : null),
+	extraProps: {
+		defaultOptionName: 'threat'
+	}
 };
 
 const ASSET_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => (row.assets?.length ? row.assets.map((t) => t.str) : null),
-  extraProps: {
-    defaultOptionName: 'asset'
-  },
-  alwaysDisplay: true
+	component: SelectFilter,
+	getColumn: (row) => (row.assets?.length ? row.assets.map((t) => t.str) : null),
+	extraProps: {
+		defaultOptionName: 'asset'
+	},
+	alwaysDisplay: true
 };
 
 const FRAMEWORK_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => row.framework.ref_id,
-  extraProps: {
-    defaultOptionName: 'framework' // Make translations
-  }
+	component: SelectFilter,
+	getColumn: (row) => row.framework.ref_id,
+	extraProps: {
+		defaultOptionName: 'framework' // Make translations
+	}
 };
 
 const LANGUAGE_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => row.locales,
-  extraProps: {
-    defaultOptionName: 'language', // Make translations
-    optionLabels: LOCALE_DISPLAY_MAP
-  }
+	component: SelectFilter,
+	getColumn: (row) => row.locales,
+	extraProps: {
+		defaultOptionName: 'language', // Make translations
+		optionLabels: LOCALE_DISPLAY_MAP
+	}
 };
 
 const ASSET_TYPE_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => row.type,
-  extraProps: {
-    defaultOptionName: 'type' // Make translations
-  },
-  alwaysDisplay: true
+	component: SelectFilter,
+	getColumn: (row) => row.type,
+	extraProps: {
+		defaultOptionName: 'type' // Make translations
+	},
+	alwaysDisplay: true
 };
 
 const CATEGORY_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => row.category,
-  extraProps: {
-    defaultOptionName: 'category' // Make translations
-  },
-  alwaysDisplay: true
+	component: SelectFilter,
+	getColumn: (row) => row.category,
+	extraProps: {
+		defaultOptionName: 'category' // Make translations
+	},
+	alwaysDisplay: true
 };
 
 const CSF_FUNCTION_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => row.csf_function,
-  extraProps: {
-    defaultOptionName: 'csfFunction' // Make translations
-  },
-  alwaysDisplay: true
+	component: SelectFilter,
+	getColumn: (row) => row.csf_function,
+	extraProps: {
+		defaultOptionName: 'csfFunction' // Make translations
+	},
+	alwaysDisplay: true
 };
 
 const OWNER_FILTER: ListViewFilterConfig = {
-  component: SelectFilter,
-  getColumn: (row) => {
-    const owner = row?.meta?.owner;
-    return owner && owner.length ? owner.map((o) => o.str) : null;
-  },
-  extraProps: {
-    defaultOptionName: 'owner'
-  },
-  alwaysDisplay: true
+	component: SelectFilter,
+	getColumn: (row) => {
+		const owner = row?.meta?.owner;
+		return owner && owner.length ? owner.map((o) => o.str) : null;
+	},
+	extraProps: {
+		defaultOptionName: 'owner'
+	},
+	alwaysDisplay: true
 };
 /* const HAS_RISK_MATRIX_FILTER: ListViewFilterConfig = {
   component: CheckboxFilter,
@@ -230,301 +228,301 @@ const OWNER_FILTER: ListViewFilterConfig = {
 }; */
 
 const LIBRARY_TYPE_FILTER = {
-  component: SelectFilter,
-  getColumn: (row) => {
-    const overviewKeys = new Set(row.overview?.map((overviewRow) => overviewRow.split(':')[0]));
-    const libraryDatatypeSet = new Set([
-      'framework',
-      'risk_matrix',
-      'threats',
-      'requirement_mapping_set',
-      'reference_controls'
-    ]);
-    const datatypes = [...libraryDatatypeSet].filter((datatype) => overviewKeys.has(datatype));
-    return datatypes;
-  },
-  extraProps: {
-    defaultOptionName: 'objectType'
-  },
-  alwaysDisplay: true
+	component: SelectFilter,
+	getColumn: (row) => {
+		const overviewKeys = new Set(row.overview?.map((overviewRow) => overviewRow.split(':')[0]));
+		const libraryDatatypeSet = new Set([
+			'framework',
+			'risk_matrix',
+			'threats',
+			'requirement_mapping_set',
+			'reference_controls'
+		]);
+		const datatypes = [...libraryDatatypeSet].filter((datatype) => overviewKeys.has(datatype));
+		return datatypes;
+	},
+	extraProps: {
+		defaultOptionName: 'objectType'
+	},
+	alwaysDisplay: true
 };
 
 export const listViewFields: ListViewFieldsConfig = {
-  folders: {
-    head: ['name', 'description', 'parentDomain'],
-    body: ['name', 'description', 'parent_folder']
-  },
-  projects: {
-    head: ['ref_id', 'name', 'description', 'domain'],
-    body: ['ref_id', 'name', 'description', 'folder'],
-    filters: {
-      folder: DOMAIN_FILTER,
-      lc_status: PROJECT_STATUS_FILTER
-    }
-  },
-  'filtering-labels': {
-    head: ['label'],
-    body: ['label']
-  },
-  'risk-matrices': {
-    head: ['name', 'description', 'provider', 'domain'],
-    body: ['name', 'description', 'provider', 'folder'],
-    meta: ['id', 'urn'],
-    filters: {
-      folder: DOMAIN_FILTER
-    }
-  },
-  vulnerabilities: {
-    head: ['ref_id', 'name', 'description', 'applied_controls', 'folder', 'labels'],
-    body: ['ref_id', 'name', 'description', 'applied_controls', 'folder', 'filtering_labels'],
-    filters: {
-      folder: DOMAIN_FILTER,
-      filtering_labels: LABELS_FILTER
-    }
-  },
-  'risk-assessments': {
-    head: ['ref_id', 'name', 'riskMatrix', 'description', 'riskScenarios', 'project'],
-    body: ['ref_id', 'str', 'risk_matrix', 'description', 'risk_scenarios_count', 'project'],
-    filters: {
-      folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true },
-      project: PROJECT_FILTER,
-      status: { ...STATUS_FILTER, alwaysDisplay: true }
-    }
-  },
-  threats: {
-    head: ['ref_id', 'name', 'description', 'provider', 'domain'],
-    body: ['ref_id', 'name', 'description', 'provider', 'folder'],
-    meta: ['id', 'urn'],
-    filters: {
-      folder: DOMAIN_FILTER,
-      provider: PROVIDER_FILTER
-    }
-  },
-  'risk-scenarios': {
-    head: [
-      'ref_id',
-      'treatment',
-      'name',
-      'threats',
-      'riskAssessment',
-      'existingAppliedControls',
-      'currentLevel',
-      'extraAppliedControls',
-      'residualLevel'
-    ],
-    body: [
-      'ref_id',
-      'treatment',
-      'name',
-      'threats',
-      'risk_assessment',
-      'existing_applied_controls',
-      'current_level',
-      'applied_controls',
-      'residual_level'
-    ],
-    filters: {
-      folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true },
-      project: { ...PROJECT_FILTER, alwaysDisplay: true },
-      treatment: { ...TREATMENT_FILTER, alwaysDisplay: true },
-      risk_assessment: RISK_ASSESSMENT_FILTER,
-      threats: THREAT_FILTER,
-      assets: ASSET_FILTER
-    }
-  },
-  'risk-acceptances': {
-    head: ['name', 'description', 'riskScenarios'],
-    body: ['name', 'description', 'risk_scenarios'],
-    filters: {
-      folder: DOMAIN_FILTER,
-      state: STATE_FILTER,
-      approver: APPROVER_FILTER
-    }
-  },
-  'applied-controls': {
-    head: [
-      'ref_id',
-      'name',
-      'priority',
-      'status',
-      'category',
-      'csfFunction',
-      'eta',
-      'owner',
-      'domain',
-      'referenceControl'
-    ],
-    body: [
-      'ref_id',
-      'name',
-      'priority',
-      'status',
-      'category',
-      'csf_function',
-      'eta',
-      'owner',
-      'folder',
-      'reference_control'
-    ],
-    filters: {
-      folder: DOMAIN_FILTER,
-      status: STATUS_FILTER,
-      category: CATEGORY_FILTER,
-      csf_function: CSF_FUNCTION_FILTER,
-      owner: OWNER_FILTER,
-      priority: PRIORITY_FILTER
-    }
-  },
-  policies: {
-    head: ['name', 'description', 'csfFunction', 'eta', 'owner', 'domain', 'referenceControl'],
-    body: ['name', 'description', 'csf_function', 'eta', 'owner', 'folder', 'reference_control'],
-    filters: {
-      folder: DOMAIN_FILTER,
-      status: STATUS_FILTER,
-      csf_function: CSF_FUNCTION_FILTER,
-      owner: OWNER_FILTER,
-      priority: PRIORITY_FILTER
-    }
-  },
-  'reference-controls': {
-    head: ['ref_id', 'name', 'description', 'category', 'csfFunction', 'provider', 'domain'],
-    body: ['ref_id', 'name', 'description', 'category', 'csf_function', 'provider', 'folder'],
-    meta: ['id', 'urn'],
-    filters: {
-      folder: { ...DOMAIN_FILTER, alwaysDisplay: true },
-      category: CATEGORY_FILTER,
-      provider: PROVIDER_FILTER,
-      csf_function: CSF_FUNCTION_FILTER
-    }
-  },
-  assets: {
-    head: [
-      'name',
-      'type',
-      'description',
-      'securityObjectives',
-      'disasterRecoveryObjectives',
-      'owner',
-      'domain'
-    ],
-    body: [
-      'name',
-      'type',
-      'description',
-      'security_objectives',
-      'disaster_recovery_objectives',
-      'owner',
-      'folder'
-    ],
-    filters: {
-      folder: DOMAIN_FILTER,
-      type: ASSET_TYPE_FILTER
-    }
-  },
-  users: {
-    head: ['email', 'firstName', 'lastName'],
-    body: ['email', 'first_name', 'last_name']
-  },
-  'user-groups': {
-    head: ['name'],
-    body: ['localization_dict'],
-    meta: ['id', 'builtin']
-  },
-  roles: {
-    head: ['name', 'description'],
-    body: ['name', 'description']
-  },
-  'role-assignments': {
-    head: ['user', 'userGroup', 'role', 'perimeter'],
-    body: ['user', 'user_group', 'role', 'perimeter_folders']
-  },
-  frameworks: {
-    head: ['name', 'description', 'provider', 'complianceAssessments', 'domain'],
-    body: ['name', 'description', 'provider', 'compliance_assessments', 'folder'],
-    meta: ['id', 'urn'],
-    filters: {
-      folder: DOMAIN_FILTER,
-      provider: PROVIDER_FILTER
-    }
-  },
-  'compliance-assessments': {
-    head: ['ref_id', 'name', 'framework', 'description', 'project'],
-    body: ['ref_id', 'name', 'framework', 'description', 'project'],
-    filters: {
-      folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true }, // alwaysDisplay shoudln't be mandatory here something is wrong
-      project: PROJECT_FILTER,
-      framework: FRAMEWORK_FILTER,
-      status: STATUS_FILTER
-    }
-  },
-  'requirement-assessments': {
-    head: ['name', 'description', 'complianceAssessment'],
-    body: ['name', 'description', 'compliance_assessment'],
-    breadcrumb_link_disabled: true
-  },
-  evidences: {
-    head: ['name', 'file', 'size', 'description'],
-    body: ['name', 'attachment', 'size', 'description'],
-    filters: {
-      folder: { ...DOMAIN_FILTER, alwaysDisplay: true } // This filter should also be displayed even without alwaysDisplay
-    }
-  },
-  requirements: {
-    head: ['ref_id', 'name', 'description', 'framework'],
-    body: ['ref_id', 'name', 'description', 'framework'],
-    meta: ['id', 'urn']
-  },
-  libraries: {
-    head: ['provider', 'name', 'description', 'language', 'overview'],
-    body: ['provider', 'name', 'description', 'locales', 'overview']
-  },
-  'stored-libraries': {
-    head: ['provider', 'name', 'description', 'language', 'overview'],
-    body: ['provider', 'name', 'description', 'locales', 'overview'],
-    filters: {
-      locales: LANGUAGE_FILTER,
-      provider: PROVIDER_FILTER,
-      objectType: LIBRARY_TYPE_FILTER
-    }
-  },
-  'loaded-libraries': {
-    head: ['provider', 'name', 'description', 'language', 'overview'],
-    body: ['provider', 'name', 'description', 'locales', 'overview'],
-    filters: {
-      locales: LANGUAGE_FILTER,
-      provider: PROVIDER_FILTER,
-      objectType: LIBRARY_TYPE_FILTER
-    }
-  },
-  'sso-settings': {
-    head: ['name', 'provider', 'providerId'],
-    body: ['name', 'provider', 'provider_id']
-  },
-  'requirement-mapping-sets': {
-    head: ['sourceFramework', 'targetFramework'],
-    body: ['source_framework', 'target_framework']
-  },
-  entities: {
-    head: ['name', 'description', 'domain', 'ownedFolders'],
-    body: ['name', 'description', 'folder', 'owned_folders'],
-    filters: {
-      folder: DOMAIN_FILTER
-    }
-  },
-  'entity-assessments': {
-    head: ['name', 'description', 'project', 'entity'],
-    body: ['name', 'description', 'project', 'entity'],
-    filters: {
-      project: PROJECT_FILTER,
-      status: STATUS_FILTER
-    }
-  },
-  solutions: {
-    head: ['name', 'description', 'providerEntity', 'recipientEntity', 'criticality'],
-    body: ['name', 'description', 'provider_entity', 'recipient_entity', 'criticality']
-  },
-  representatives: {
-    head: ['email', 'entity', 'role'],
-    body: ['email', 'entity', 'role']
-  }
+	folders: {
+		head: ['name', 'description', 'parentDomain'],
+		body: ['name', 'description', 'parent_folder']
+	},
+	projects: {
+		head: ['ref_id', 'name', 'description', 'domain'],
+		body: ['ref_id', 'name', 'description', 'folder'],
+		filters: {
+			folder: DOMAIN_FILTER,
+			lc_status: PROJECT_STATUS_FILTER
+		}
+	},
+	'filtering-labels': {
+		head: ['label'],
+		body: ['label']
+	},
+	'risk-matrices': {
+		head: ['name', 'description', 'provider', 'domain'],
+		body: ['name', 'description', 'provider', 'folder'],
+		meta: ['id', 'urn'],
+		filters: {
+			folder: DOMAIN_FILTER
+		}
+	},
+	vulnerabilities: {
+		head: ['ref_id', 'name', 'description', 'applied_controls', 'folder', 'labels'],
+		body: ['ref_id', 'name', 'description', 'applied_controls', 'folder', 'filtering_labels'],
+		filters: {
+			folder: DOMAIN_FILTER,
+			filtering_labels: LABELS_FILTER
+		}
+	},
+	'risk-assessments': {
+		head: ['ref_id', 'name', 'riskMatrix', 'description', 'riskScenarios', 'project'],
+		body: ['ref_id', 'str', 'risk_matrix', 'description', 'risk_scenarios_count', 'project'],
+		filters: {
+			folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true },
+			project: PROJECT_FILTER,
+			status: { ...STATUS_FILTER, alwaysDisplay: true }
+		}
+	},
+	threats: {
+		head: ['ref_id', 'name', 'description', 'provider', 'domain'],
+		body: ['ref_id', 'name', 'description', 'provider', 'folder'],
+		meta: ['id', 'urn'],
+		filters: {
+			folder: DOMAIN_FILTER,
+			provider: PROVIDER_FILTER
+		}
+	},
+	'risk-scenarios': {
+		head: [
+			'ref_id',
+			'treatment',
+			'name',
+			'threats',
+			'riskAssessment',
+			'existingAppliedControls',
+			'currentLevel',
+			'extraAppliedControls',
+			'residualLevel'
+		],
+		body: [
+			'ref_id',
+			'treatment',
+			'name',
+			'threats',
+			'risk_assessment',
+			'existing_applied_controls',
+			'current_level',
+			'applied_controls',
+			'residual_level'
+		],
+		filters: {
+			folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true },
+			project: { ...PROJECT_FILTER, alwaysDisplay: true },
+			treatment: { ...TREATMENT_FILTER, alwaysDisplay: true },
+			risk_assessment: RISK_ASSESSMENT_FILTER,
+			threats: THREAT_FILTER,
+			assets: ASSET_FILTER
+		}
+	},
+	'risk-acceptances': {
+		head: ['name', 'description', 'riskScenarios'],
+		body: ['name', 'description', 'risk_scenarios'],
+		filters: {
+			folder: DOMAIN_FILTER,
+			state: STATE_FILTER,
+			approver: APPROVER_FILTER
+		}
+	},
+	'applied-controls': {
+		head: [
+			'ref_id',
+			'name',
+			'priority',
+			'status',
+			'category',
+			'csfFunction',
+			'eta',
+			'owner',
+			'domain',
+			'referenceControl'
+		],
+		body: [
+			'ref_id',
+			'name',
+			'priority',
+			'status',
+			'category',
+			'csf_function',
+			'eta',
+			'owner',
+			'folder',
+			'reference_control'
+		],
+		filters: {
+			folder: DOMAIN_FILTER,
+			status: STATUS_FILTER,
+			category: CATEGORY_FILTER,
+			csf_function: CSF_FUNCTION_FILTER,
+			owner: OWNER_FILTER,
+			priority: PRIORITY_FILTER
+		}
+	},
+	policies: {
+		head: ['name', 'description', 'csfFunction', 'eta', 'owner', 'domain', 'referenceControl'],
+		body: ['name', 'description', 'csf_function', 'eta', 'owner', 'folder', 'reference_control'],
+		filters: {
+			folder: DOMAIN_FILTER,
+			status: STATUS_FILTER,
+			csf_function: CSF_FUNCTION_FILTER,
+			owner: OWNER_FILTER,
+			priority: PRIORITY_FILTER
+		}
+	},
+	'reference-controls': {
+		head: ['ref_id', 'name', 'description', 'category', 'csfFunction', 'provider', 'domain'],
+		body: ['ref_id', 'name', 'description', 'category', 'csf_function', 'provider', 'folder'],
+		meta: ['id', 'urn'],
+		filters: {
+			folder: { ...DOMAIN_FILTER, alwaysDisplay: true },
+			category: CATEGORY_FILTER,
+			provider: PROVIDER_FILTER,
+			csf_function: CSF_FUNCTION_FILTER
+		}
+	},
+	assets: {
+		head: [
+			'name',
+			'type',
+			'description',
+			'securityObjectives',
+			'disasterRecoveryObjectives',
+			'owner',
+			'domain'
+		],
+		body: [
+			'name',
+			'type',
+			'description',
+			'security_objectives',
+			'disaster_recovery_objectives',
+			'owner',
+			'folder'
+		],
+		filters: {
+			folder: DOMAIN_FILTER,
+			type: ASSET_TYPE_FILTER
+		}
+	},
+	users: {
+		head: ['email', 'firstName', 'lastName'],
+		body: ['email', 'first_name', 'last_name']
+	},
+	'user-groups': {
+		head: ['name'],
+		body: ['localization_dict'],
+		meta: ['id', 'builtin']
+	},
+	roles: {
+		head: ['name', 'description'],
+		body: ['name', 'description']
+	},
+	'role-assignments': {
+		head: ['user', 'userGroup', 'role', 'perimeter'],
+		body: ['user', 'user_group', 'role', 'perimeter_folders']
+	},
+	frameworks: {
+		head: ['name', 'description', 'provider', 'complianceAssessments', 'domain'],
+		body: ['name', 'description', 'provider', 'compliance_assessments', 'folder'],
+		meta: ['id', 'urn'],
+		filters: {
+			folder: DOMAIN_FILTER,
+			provider: PROVIDER_FILTER
+		}
+	},
+	'compliance-assessments': {
+		head: ['ref_id', 'name', 'framework', 'description', 'project'],
+		body: ['ref_id', 'name', 'framework', 'description', 'project'],
+		filters: {
+			folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true }, // alwaysDisplay shoudln't be mandatory here something is wrong
+			project: PROJECT_FILTER,
+			framework: FRAMEWORK_FILTER,
+			status: STATUS_FILTER
+		}
+	},
+	'requirement-assessments': {
+		head: ['name', 'description', 'complianceAssessment'],
+		body: ['name', 'description', 'compliance_assessment'],
+		breadcrumb_link_disabled: true
+	},
+	evidences: {
+		head: ['name', 'file', 'size', 'description'],
+		body: ['name', 'attachment', 'size', 'description'],
+		filters: {
+			folder: { ...DOMAIN_FILTER, alwaysDisplay: true } // This filter should also be displayed even without alwaysDisplay
+		}
+	},
+	requirements: {
+		head: ['ref_id', 'name', 'description', 'framework'],
+		body: ['ref_id', 'name', 'description', 'framework'],
+		meta: ['id', 'urn']
+	},
+	libraries: {
+		head: ['provider', 'name', 'description', 'language', 'overview'],
+		body: ['provider', 'name', 'description', 'locales', 'overview']
+	},
+	'stored-libraries': {
+		head: ['provider', 'name', 'description', 'language', 'overview'],
+		body: ['provider', 'name', 'description', 'locales', 'overview'],
+		filters: {
+			locales: LANGUAGE_FILTER,
+			provider: PROVIDER_FILTER,
+			objectType: LIBRARY_TYPE_FILTER
+		}
+	},
+	'loaded-libraries': {
+		head: ['provider', 'name', 'description', 'language', 'overview'],
+		body: ['provider', 'name', 'description', 'locales', 'overview'],
+		filters: {
+			locales: LANGUAGE_FILTER,
+			provider: PROVIDER_FILTER,
+			objectType: LIBRARY_TYPE_FILTER
+		}
+	},
+	'sso-settings': {
+		head: ['name', 'provider', 'providerId'],
+		body: ['name', 'provider', 'provider_id']
+	},
+	'requirement-mapping-sets': {
+		head: ['sourceFramework', 'targetFramework'],
+		body: ['source_framework', 'target_framework']
+	},
+	entities: {
+		head: ['name', 'description', 'domain', 'ownedFolders'],
+		body: ['name', 'description', 'folder', 'owned_folders'],
+		filters: {
+			folder: DOMAIN_FILTER
+		}
+	},
+	'entity-assessments': {
+		head: ['name', 'description', 'project', 'entity'],
+		body: ['name', 'description', 'project', 'entity'],
+		filters: {
+			project: PROJECT_FILTER,
+			status: STATUS_FILTER
+		}
+	},
+	solutions: {
+		head: ['name', 'description', 'providerEntity', 'recipientEntity', 'criticality'],
+		body: ['name', 'description', 'provider_entity', 'recipient_entity', 'criticality']
+	},
+	representatives: {
+		head: ['email', 'entity', 'role'],
+		body: ['email', 'entity', 'role']
+	}
 };

From 5c968465d5ee785626fb165ac9d615d6087ecd75 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Thu, 28 Nov 2024 21:29:34 +0100
Subject: [PATCH 078/107] remove redundant information (badges) - will be
 treated differently

---
 .../components/ModelTable/ModelTable.svelte   | 19 -------------------
 frontend/src/lib/utils/table.ts               | 16 ++++++++--------
 2 files changed, 8 insertions(+), 27 deletions(-)

diff --git a/frontend/src/lib/components/ModelTable/ModelTable.svelte b/frontend/src/lib/components/ModelTable/ModelTable.svelte
index 4b4867594..0f1eeb0bf 100644
--- a/frontend/src/lib/components/ModelTable/ModelTable.svelte
+++ b/frontend/src/lib/components/ModelTable/ModelTable.svelte
@@ -307,25 +307,6 @@
 						{#if key !== 'meta'}
 							{@const component = field_component_map[key]}
 							<td class={regionCell} role="gridcell">
-								{#if taggedKeys.has(key)}
-									{@const _tagList = tagMap[key]}
-									{@const tagList = Object.keys(_tagList.keys).map((key) => ({
-										key: { [key]: _tagList.keys[key] }
-									}))}
-									{#each tagList as tag}
-										{@const tagKey = tag.key && Object.keys(tag.key)[0]}
-										{@const tagValue = meta[tagKey]}
-										{@const tagData = tag.key?.[tagKey]?.[tagValue]}
-										{#if tagData && tags}
-											{@const { text, cssClasses } = tagData}
-											<span class="space-x-1">
-												<span class={cssClasses}>
-													{safeTranslate(text)}
-												</span>
-											</span>
-										{/if}
-									{/each}
-								{/if}
 								{#if component}
 									<svelte:component this={component} {meta} cell={value} />
 								{:else}
diff --git a/frontend/src/lib/utils/table.ts b/frontend/src/lib/utils/table.ts
index a46a2ffab..11f00fd00 100644
--- a/frontend/src/lib/utils/table.ts
+++ b/frontend/src/lib/utils/table.ts
@@ -301,25 +301,25 @@ export const listViewFields: ListViewFieldsConfig = {
 	'risk-scenarios': {
 		head: [
 			'ref_id',
-			'treatment',
-			'name',
 			'threats',
-			'riskAssessment',
+			'name',
 			'existingAppliedControls',
 			'currentLevel',
 			'extraAppliedControls',
-			'residualLevel'
+			'residualLevel',
+			'treatment',
+			'riskAssessment'
 		],
 		body: [
 			'ref_id',
-			'treatment',
-			'name',
 			'threats',
-			'risk_assessment',
+			'name',
 			'existing_applied_controls',
 			'current_level',
 			'applied_controls',
-			'residual_level'
+			'residual_level',
+			'treatment',
+			'risk_assessment'
 		],
 		filters: {
 			folder: { ...DOMAIN_FILTER_FROM_PROJECT, alwaysDisplay: true },

From fcdfb72776a0433f5d94d6fe398b7c8bf02e9e1c Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Thu, 28 Nov 2024 22:07:27 +0100
Subject: [PATCH 079/107] add folder on ac on my assigments

---
 .../src/routes/(app)/(internal)/my-assignments/+page.svelte     | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/frontend/src/routes/(app)/(internal)/my-assignments/+page.svelte b/frontend/src/routes/(app)/(internal)/my-assignments/+page.svelte
index a349eb08c..4143bec25 100644
--- a/frontend/src/routes/(app)/(internal)/my-assignments/+page.svelte
+++ b/frontend/src/routes/(app)/(internal)/my-assignments/+page.svelte
@@ -32,6 +32,7 @@
 						<th scope="col" class="px-6 py-3"> {m.csfFunction()} </th>
 						<th scope="col" class="px-6 py-3"> {m.status()} </th>
 						<th scope="col" class="px-6 py-3"> {m.eta()} </th>
+						<th scope="col" class="px-6 py-3"> {m.folder()} </th>
 					</tr>
 				</thead>
 				<tbody>
@@ -52,6 +53,7 @@
 									{formatDateOrDateTime(ac.eta, languageTag()) ?? '-'}
 								</span>
 							</td>
+							<td class="px-6 py-4">{ac.folder.str} </td>
 						</tr>
 					{/each}
 				</tbody>

From ba970a04b2f4129887527d56ed7358c30f782698 Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Fri, 29 Nov 2024 10:27:06 +0100
Subject: [PATCH 080/107] Fallback to 0 if there are no viewable audits

This avoids `StatisticsError: mean requires at least one data point`
---
 backend/core/helpers.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/backend/core/helpers.py b/backend/core/helpers.py
index 6a3ec34b2..b53c312e7 100644
--- a/backend/core/helpers.py
+++ b/backend/core/helpers.py
@@ -893,7 +893,7 @@ def viewable_items(model):
     viewable_controls = viewable_items(AppliedControl)
     controls_count = viewable_controls.count()
     progress_avg = math.ceil(
-        mean([x.progress() for x in viewable_items(ComplianceAssessment)])
+        mean([x.progress() for x in viewable_items(ComplianceAssessment)] or [0])
     )
 
     data = {

From 44e245751cafefb1be6addc14f635536e8a44c1c Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Fri, 29 Nov 2024 10:30:21 +0100
Subject: [PATCH 081/107] UX: Change Card container element to anchor

This makes the whole card clickable instead of only the text inside.
---
 frontend/src/lib/components/DataViz/Card.svelte | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/frontend/src/lib/components/DataViz/Card.svelte b/frontend/src/lib/components/DataViz/Card.svelte
index ad465bb7c..277b88ed8 100644
--- a/frontend/src/lib/components/DataViz/Card.svelte
+++ b/frontend/src/lib/components/DataViz/Card.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
 	export let count: string = '0';
 	export let label: string;
-	export let href: string | undefined = undefined;
+	export let href: string = '#';
 	// export let help: string;
 	export let icon: string;
 	export let section: string;
@@ -12,7 +12,8 @@
 	}
 </script>
 
-<div
+<a
+	{href}
 	class="flex flex-col shadow-lg text-purple-800 p-2 h-28 bg-white hover:bg-violet-50 {cEmphasis}"
 >
 	<div class="text-xs">
@@ -20,10 +21,10 @@
 		<span>{section}</span>
 	</div>
 	<div class="mt-auto">
-		<a class="text-4xl font-bold text-left" {href}>{count}</a>
+		<p class="text-4xl font-bold text-left">{count}</p>
 		<div class="text-sm">{label}</div>
 	</div>
-</div>
+</a>
 
 <style>
 	@import url('https://fonts.googleapis.com/css2?family=Inter:ital,opsz,wght@0,14..32,100..900;1,14..32,100..900&display=swap');

From d81996445fa07510bc23e8d169c3ab76b1abdadd Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Fri, 29 Nov 2024 10:35:11 +0100
Subject: [PATCH 082/107] Remove unknown prop

---
 .../(app)/(internal)/analytics/+page.svelte       | 15 ---------------
 1 file changed, 15 deletions(-)

diff --git a/frontend/src/routes/(app)/(internal)/analytics/+page.svelte b/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
index 9d40aa763..abe6fedce 100644
--- a/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
+++ b/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
@@ -145,7 +145,6 @@
 						count={metrics.controls.total}
 						label={m.sumpageTotal()}
 						href="/applied-controls/"
-						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
 						emphasis={true}
@@ -154,7 +153,6 @@
 						count={metrics.controls.active}
 						label={m.sumpageActive()}
 						href="/applied-controls/?status=active"
-						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
 					/>
@@ -162,7 +160,6 @@
 						count={metrics.controls.deprecated}
 						label={m.sumpageDeprecated()}
 						href="/applied-controls/?status=deprecated"
-						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
 					/>
@@ -173,7 +170,6 @@
 						count={metrics.controls.to_do}
 						label={m.sumpageToDo()}
 						href="/applied-controls/?status=to_do"
-						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
 					/>
@@ -181,7 +177,6 @@
 						count={metrics.controls.in_progress}
 						label={m.sumpageInProgress()}
 						href="/applied-controls/?status=in_progress"
-						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
 					/>
@@ -189,7 +184,6 @@
 						count={metrics.controls.on_hold}
 						label={m.sumpageOnHold()}
 						href="/applied-controls/?status=on_hold"
-						help="this is interesting"
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
 					/>
@@ -205,7 +199,6 @@
 						count={metrics.compliance.used_frameworks}
 						label={m.usedFrameworks()}
 						href="/frameworks/"
-						help="this is interesting"
 						icon="fa-solid fa-list-check"
 						section={m.sumpageSectionCompliance()}
 						emphasis={true}
@@ -215,7 +208,6 @@
 						count="{metrics.compliance.active_audits}/{metrics.compliance.audits}"
 						label={m.sumpageActiveAudits()}
 						href="/compliance-assessments/"
-						help="this is interesting"
 						icon="fa-solid fa-list-check"
 						section={m.sumpageSectionCompliance()}
 						emphasis={true}
@@ -225,7 +217,6 @@
 						count="{metrics.compliance.progress_avg}%"
 						label={m.sumpageAvgProgress()}
 						href="/compliance-assessments/"
-						help="this is interesting"
 						icon="fa-solid fa-list-check"
 						section={m.sumpageSectionCompliance()}
 					/>
@@ -233,7 +224,6 @@
 						count={metrics.compliance.non_compliant_items}
 						label={m.sumpageNonCompliantItems()}
 						href="#"
-						help="this is interesting"
 						icon="fa-solid fa-list-check"
 						section={m.sumpageSectionCompliance()}
 					/>
@@ -241,7 +231,6 @@
 						count={metrics.compliance.evidences}
 						label={m.sumpageEvidences()}
 						href="/evidences/"
-						help="this is interesting"
 						icon="fa-solid fa-list-check"
 						section={m.sumpageSectionCompliance()}
 					/>
@@ -260,7 +249,6 @@
 						count={metrics.risk.assessments}
 						label={m.sumpageAssessments()}
 						href="/risk-assessments/"
-						help="this is interesting"
 						emphasis={true}
 						icon="fa-solid fa-biohazard"
 						section={m.sumpageSectionRisk()}
@@ -269,7 +257,6 @@
 						count={metrics.risk.scenarios}
 						label={m.sumpageScenarios()}
 						href="/risk-scenarios/"
-						help="this is interesting"
 						icon="fa-solid fa-biohazard"
 						section={m.sumpageSectionRisk()}
 					/>
@@ -285,7 +272,6 @@
 						count={metrics.risk.threats}
 						label={m.sumpageMappedThreats()}
 						href="/analytics?tab=2"
-						help="this is interesting"
 						icon="fa-solid fa-biohazard"
 						section={m.sumpageSectionRisk()}
 					/>
@@ -294,7 +280,6 @@
 						count={metrics.risk.acceptances}
 						label={m.sumpageRiskAccepted()}
 						href="/risk-acceptances"
-						help="this is interesting"
 						icon="fa-solid fa-biohazard"
 						section={m.sumpageSectionRisk()}
 					/>

From 09f0defe40e9114c7a337d88ac18fa1927639481 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Fri, 29 Nov 2024 10:46:32 +0100
Subject: [PATCH 083/107] Fix migration order

---
 .../{0041_historicalmetric.py => 0043_historicalmetric.py}   | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)
 rename backend/core/migrations/{0041_historicalmetric.py => 0043_historicalmetric.py} (94%)

diff --git a/backend/core/migrations/0041_historicalmetric.py b/backend/core/migrations/0043_historicalmetric.py
similarity index 94%
rename from backend/core/migrations/0041_historicalmetric.py
rename to backend/core/migrations/0043_historicalmetric.py
index 49fcf6f98..257a03cdd 100644
--- a/backend/core/migrations/0041_historicalmetric.py
+++ b/backend/core/migrations/0043_historicalmetric.py
@@ -1,11 +1,12 @@
-# Generated by Django 5.1.1 on 2024-11-26 08:38
+# Generated by Django 5.1.1 on 2024-11-29 09:46
 
 from django.db import migrations, models
 
 
 class Migration(migrations.Migration):
+
     dependencies = [
-        ("core", "0040_riskscenario_ref_id"),
+        ("core", "0042_asset_filtering_labels"),
     ]
 
     operations = [

From 3411755eca357a556ff9358af91d3604f5336cfe Mon Sep 17 00:00:00 2001
From: eric-intuitem <71850047+eric-intuitem@users.noreply.github.com>
Date: Fri, 29 Nov 2024 10:47:32 +0100
Subject: [PATCH 084/107] Update data-model.md (#1097)

---
 documentation/architecture/data-model.md | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/documentation/architecture/data-model.md b/documentation/architecture/data-model.md
index be94a8a39..b94205a92 100644
--- a/documentation/architecture/data-model.md
+++ b/documentation/architecture/data-model.md
@@ -1250,28 +1250,28 @@ erDiagram
     DOMAIN                ||--o{ OPERATIONAL_SCENARIO : contains
     DOMAIN                ||--o{ FEARED_EVENT         : contains
     DOMAIN                ||--o{ RO_TO                : contains
-    DOMAIN                ||--o{ STRATEGIC_ATTACK_PATH: contains
+    DOMAIN                ||--o{ ATTACK_PATH          : contains
 
 ```
 
 ```mermaid
 erDiagram
 
-    STRATEGIC_ATTACK_PATH }o--|| RO_TO                : derives
+    ATTACK_PATH           }o--|| RO_TO                : derives
     RO_TO                 }o--|{ FEARED_EVENT         : corresponds_to
     EBIOS_RM_STUDY        }o--o{ RO_TO                : contains
     EBIOS_RM_STUDY        }o--o{ ECOSYSTEM_ENTITY     : contains
     EBIOS_RM_STUDY        }o--o{ OPERATIONAL_SCENARIO : contains
     EBIOS_RM_STUDY        }o--o{ FEARED_EVENT         : contains
-    EBIOS_RM_STUDY        }o--o{ STRATEGIC_ATTACK_PATH: contains
+    EBIOS_RM_STUDY        }o--o{ ATTACK_PATH          : contains
     EBIOS_RM_STUDY        }o--o| ENTITY               : studies
     EBIOS_RM_STUDY        }o--o{ COMPLIANCE_ASSESSMENT: leverages
     EBIOS_RM_STUDY        }o--|| RISK_MATRIX          : leverages
     EBIOS_RM_STUDY        }o--o{ RISK_ASSESSMENT      : generates
-    OPERATIONAL_SCENARIO  }o--|| STRATEGIC_ATTACK_PATH: derives
+    OPERATIONAL_SCENARIO  }o--|| ATTACK_PATH          : derives
     OPERATIONAL_SCENARIO  }o--o{ THREAT               : leverages
-    STRATEGIC_ATTACK_PATH }o--o{ ECOSYSTEM_ENTITY     : uses
-    STRATEGIC_ATTACK_PATH }o--o{ APPLIED_CONTROL      : mitigated_by
+    ATTACK_PATH           }o--o{ ECOSYSTEM_ENTITY     : uses
+    ATTACK_PATH           }o--o{ APPLIED_CONTROL      : mitigated_by
     ECOSYSTEM_ENTITY      }o--|| ENTITY               : qualifies
 
     EBIOS_RM_STUDY {
@@ -1319,10 +1319,10 @@ erDiagram
         bool   justification
     }
 
-    STRATEGIC_ATTACK_PATH {
+    ATTACK_PATH {
         string description
         int    intial_threat_level
-        int    residual threat level
+        int    residual_threat_level
         bool   selected
         bool   justification
     }

From 086ea2ffc10d60ef3df5990b8a15ec8687d1bb78 Mon Sep 17 00:00:00 2001
From: eric-intuitem <71850047+eric-intuitem@users.noreply.github.com>
Date: Fri, 29 Nov 2024 10:48:32 +0100
Subject: [PATCH 085/107] Add ebios-rm matrix (#1098)

Co-authored-by: Abderrahmane Smimite <smimite@gmail.com>
---
 .../libraries/risk-matrix-4x4-ebios-rm.yaml   | 174 ++++++++++++++++++
 .../{3x3-mult => }/risk-matrix-3x3-mult.xlsx  | Bin
 tools/matrix/risk-matrix-4x4-ebios-rm.xlsx    | Bin 0 -> 14082 bytes
 .../risk-matrix-4x4-with-5-levels.xlsx        | Bin
 .../risk-matrix-5x5-iso-27005.xlsx            | Bin
 .../risk-matrix-5x5-sensitive.xlsx            | Bin
 6 files changed, 174 insertions(+)
 create mode 100644 backend/library/libraries/risk-matrix-4x4-ebios-rm.yaml
 rename tools/matrix/{3x3-mult => }/risk-matrix-3x3-mult.xlsx (100%)
 create mode 100644 tools/matrix/risk-matrix-4x4-ebios-rm.xlsx
 rename tools/matrix/{4x4-with-5-levels => }/risk-matrix-4x4-with-5-levels.xlsx (100%)
 rename tools/matrix/{5x5-iso-27005 => }/risk-matrix-5x5-iso-27005.xlsx (100%)
 rename tools/matrix/{5x5-sensitive => }/risk-matrix-5x5-sensitive.xlsx (100%)

diff --git a/backend/library/libraries/risk-matrix-4x4-ebios-rm.yaml b/backend/library/libraries/risk-matrix-4x4-ebios-rm.yaml
new file mode 100644
index 000000000..f6e0fcf06
--- /dev/null
+++ b/backend/library/libraries/risk-matrix-4x4-ebios-rm.yaml
@@ -0,0 +1,174 @@
+urn: urn:intuitem:risk:library:risk-matrix-4x4-ebios-rm
+locale: en
+ref_id: risk-matrix-4x4-ebios-rm
+name: 4x4 risk matrix from EBIOS-RM
+description: based on the official guide of the EBIOS RM approach
+copyright: public domain
+version: 1
+provider: intuitem
+packager: intuitem
+translations:
+  fr:
+    name: Matrice 4x4 EBIOS-RM
+    description: "Bas\xE9e sur le guide officiel de la m\xE9thode EBIOS RM"
+objects:
+  risk_matrix:
+  - urn: urn:intuitem:risk:matrix:risk-matrix-4x4-ebios-rm
+    ref_id: risk-matrix-4x4-ebios-rm
+    name: 4x4 risk matrix from EBIOS-RM
+    description: based on the official guide of the EBIOS RM approach
+    probability:
+    - id: 0
+      abbreviation: V1
+      name: V1 - Implausible
+      description: The source of risk is unlikely to achieve its intended objective
+        under any of the proposed procedures. The likelihood of the scenario is weak.
+      translations:
+        fr:
+          name: V1 - Peu vraisemblable
+          description: "La source de risque a peu de chances d\u2019atteindre son\
+            \ objectif vis\xE9 selon l\u2019un des modes op\xE9ratoires envisag\xE9\
+            s. La vraisemblance du sc\xE9nario est faible."
+      hexcolor: '#FAF7E9'
+    - id: 1
+      abbreviation: V2
+      name: V2 - Plausible
+      description: ' The source of risk is likely to achieve its intended objective
+        according to one of the operating procedures envisaged. The likelihood of
+        the scenario is significant. '
+      translations:
+        fr:
+          name: V2 - Vraisemblable
+          description: "La source de risque est susceptible d\u2019atteindre son objectif\
+            \ vis\xE9 selon l\u2019un des modes op\xE9ratoires envisag\xE9s. La vraisemblance\
+            \ du sc\xE9nario est significative."
+      hexcolor: '#EEE6BC'
+    - id: 2
+      abbreviation: V3
+      name: V3 - Very likely
+      description: The risk source is very likely to achieve its intended objective
+        through one of the anticipated methods of operation. The likelihood of the
+        scenario is high.
+      translations:
+        fr:
+          name: "V3 - Tr\xE8s vraisemblable"
+          description: "La source de risque va probablement atteindre son objectif\
+            \ vis\xE9 selon l\u2019un des modes op\xE9ratoires envisag\xE9s. La vraisemblance\
+            \ du sc\xE9nario est \xE9lev\xE9e."
+      hexcolor: '#DCCC77'
+    - id: 3
+      abbreviation: V4
+      name: V4 - Certain
+      description: The risk source will certainly achieve its intended objective through
+        one of the anticipated methods of operation OR such a scenario has already
+        occurred within the organization (incident history).
+      translations:
+        fr:
+          name: V4 - Certain
+          description: "La source de risque va certainement atteindre son objectif\
+            \ vis\xE9 selon l\u2019un des modes op\xE9ratoires envisag\xE9s OU un\
+            \ tel sc\xE9nario s\u2019est d\xE9j\xE0 produit au sein de l\u2019organisation\
+            \ (historique d\u2019incidents)."
+      hexcolor: '#C4AA00'
+    impact:
+    - id: 0
+      abbreviation: G1
+      name: G1 - Minor
+      description: 'No operational impact on the performance of the activity or on
+        the safety of people and property. '
+      translations:
+        fr:
+          name: G1 - Mineur
+          description: "Aucun impact op\xE9rationnel ni sur les performances de l\u2019\
+            activit\xE9 ni sur la s\xE9curit\xE9 des personnes et des biens."
+      hexcolor: '#42C7C4'
+    - id: 1
+      abbreviation: G2
+      name: G2 - Significant
+      description: 'Deterioration in the performance of the activity without impact
+        on the safety of people and property. '
+      translations:
+        fr:
+          name: G2 - Significatif
+          description: "D\xE9gradation des performances de l\u2019activit\xE9 sans\
+            \ impacts sur la s\xE9curit\xE9 des personnes et des biens."
+      hexcolor: '#FBF082'
+    - id: 2
+      abbreviation: G3
+      name: G3 - Important
+      description: 'Sharp deterioration in the performance of the activity, with possible
+        significant impacts on the safety of people and property. '
+      translations:
+        fr:
+          name: G3 - Important
+          description: "Forte d\xE9gradation des performances de l\u2019activit\xE9\
+            , avec d\u2019\xE9ventuels impacts significatifs sur la s\xE9curit\xE9\
+            \ des personnes et des biens."
+      hexcolor: '#FFC586'
+    - id: 3
+      abbreviation: G4
+      name: G4 - Critique
+      description: Inability for the company to carry out all or part of its activity,
+        with possible serious impacts on the safety of people and property.
+      translations:
+        fr:
+          name: G4 - Critique
+          description: "Incapacit\xE9 pour la soci\xE9t\xE9 d\u2019assurer tout ou\
+            \ partie de son activit\xE9, avec d\u2019\xE9ventuels impacts graves sur\
+            \ la s\xE9curit\xE9 des personnes et des biens."
+      hexcolor: '#EE7B86'
+    risk:
+    - id: 0
+      abbreviation: '1'
+      name: Low
+      description: Acceptable as is.
+      translations:
+        fr:
+          name: Faible
+          description: "Acceptable en l'\xE9tat"
+      hexcolor: '#59BBB2'
+    - id: 1
+      abbreviation: '2'
+      name: Medium
+      description: Tolerable under control. Risk management monitoring must be conducted,
+        and actions should be implemented as part of continuous improvement in the
+        medium and long term.
+      translations:
+        fr:
+          name: Moyen
+          description: "Tol\xE9rable sous contr\xF4le. Un suivi en termes de gestion\
+            \ du risque est \xE0 mener et des actions sont \xE0 mettre en place dans\
+            \ le cadre d\u2019une am\xE9lioration continue sur le moyen et long terme."
+      hexcolor: '#F5C481'
+    - id: 2
+      abbreviation: '3'
+      name: High
+      description: Unacceptable. Risk reduction measures must be implemented urgently
+        in the short term. Otherwise, all or part of the activity will be denied.
+      translations:
+        fr:
+          name: "\xC9lev\xE9"
+          description: "Inacceptable. Des mesures de r\xE9duction du risque doivent\
+            \ imp\xE9rativement \xEAtre prises \xE0 court terme. Dans le cas contraire,\
+            \ tout ou partie de l\u2019activit\xE9 sera refus\xE9e."
+      hexcolor: '#E6686D'
+    grid:
+    - - 0
+      - 0
+      - 1
+      - 1
+    - - 0
+      - 0
+      - 1
+      - 2
+    - - 0
+      - 1
+      - 2
+      - 2
+    - - 1
+      - 1
+      - 2
+      - 2
+    translations:
+      fr:
+        description: "Bas\xE9e sur le guide officiel de la m\xE9thode EBIOS RM"
diff --git a/tools/matrix/3x3-mult/risk-matrix-3x3-mult.xlsx b/tools/matrix/risk-matrix-3x3-mult.xlsx
similarity index 100%
rename from tools/matrix/3x3-mult/risk-matrix-3x3-mult.xlsx
rename to tools/matrix/risk-matrix-3x3-mult.xlsx
diff --git a/tools/matrix/risk-matrix-4x4-ebios-rm.xlsx b/tools/matrix/risk-matrix-4x4-ebios-rm.xlsx
new file mode 100644
index 0000000000000000000000000000000000000000..590d98cd87f17dbc660b0c6180fb073b189579c1
GIT binary patch
literal 14082
zcmeHuWmFtn+HT_-+#x^+?(Xgq+}+*XT>=Dm5AK%6-Q6L$I|O%!%Q-XmJ7+R;|KGK~
zsa~tPdUZWdRqc9xzgtcU3>*yr34jIw0G|NGDJ3g5AOJuj1OR{vfCkkRvbAwCwsF!`
za<?;f)TVW_wj#_02PMx2fWDvq-|c_#2=pe5*mTn)iQFYVBE~i-8|cX^qx*{xj9`>p
zgK2pZV)zUhl0SQsL6(+E3P9)E7?5N&-MMY0Zn{}Z{|E?OYDv2(!>8($sH#n$KlXmq
zTKfSSZzqX$mTiK|&x)_D`=KZupe9$}lg2_3>^Uyast2LM>z9|A8m&U?5$T8@q!r3>
zE>Pt<Qs4@sMX6ZUCE6pF5>_D5H<QL|D?x;1)YrpWeN&nW-DO6B5__4b*r7F?DI}80
z0g3zZJcJ(W%*o94m33jaO~E`@Med967rJf~NL}35!|kn}ClP10{J`l66ODjN2lEn8
z^blx4eXyAFl1mNsoYkx+KVJmVtmM~Vfu$?sO;irZx8B%;HIRvkE2&uHC_KEGet^#7
zo#~X}cw}hynnFH88+)hhi4dNXFWD4SzD$&z2l{Qrl1Z|E5FzP@^|2-A!;X*Uuo>De
zX8RGK&ZP}n2A8*1PZeLja!d$0U%xBj+Zz}_?qAdtRj1t;^j%HY-?b3#T}^czjIA8$
zX#d#%S3Un1>*U`ay*y4@3XB0M<SgLr(`XylG9}Tp6`ja|w9yL)L+XnjTWU;x^UIy6
zfKyIAzDGutYnFTJjR`Q%Ef2}l1tm!YCLqIPrbVS&>ZP#}3OU|EH1b%y+n>m)^r-BH
zDUxzGXW@o7ynHJ+h?eBd56f9hr7wV|Nz0sFEzto><6082lte3W_hZO9j@%e?-?%t5
zmm^p%?|th-D=V9HmHCK=?NGsIs+dCI@fh{{m_@-~S1h?IIR(UB)jq?Ap~Fu^hG6()
z8ZX}u&Mc=C6huja)4($K9*)@|YFqO~98rB&QboP?>022Qi_~oBhH~#1e()HMt4^??
zjIRM7-$&u!Rfa}fB&7lj0HB5e01)5LaI>OwwRNyGu(h@P!>g4mTifQbBfa`ezd-f6
zT3lg(QmPApHcOtA4x22u$R>ix7@*sYvr6Y$ygfxph|i22CY;bp!q<NtxEkeV((+xJ
zOS}*aHfjx%eu7Phw1(9Inqa5vnl`a8e<%@Gj0<ODW_49c`!4GHYTvfG<v#vU0|JPQ
z7)w+*g8rmlZYI5ht~&$if}!<OxJ!vTRtrv2vME<-7Ttj!KRd0uf913A77Bd3T6KVo
z+tggGyeE<XRc@zulY!-8-fSO<9Sicr$r7bo8)PU)S;~@gcA-4x)EICxV3aDmt<Kw!
zYJ<(MBU0b)F<$TJxHt_xK&o9%6%ctV^ZlZM0eIs2X(4N1gOL~!=CRueAzCM_3#ttV
z?+2u<9_y<yGj9H@IZ42VH_{m2<6cVM5k%QRk4`hBdKF*1hG{8dWVm=@;+H8#R<M-I
z58e%gOU_F`SQqQY>M&6;j&-=ae7I>93rNA!O~aY4sBc_SNTLc9lsLHuDQvJ#ZW}jc
zX}H>8w{Cp`oBau|%Zvg!)%?1h=%Nb3Mzm*P8rT)Z2B_YN{P?l%5)h@XB;Eq$@-&l`
z$O*?Nl33_p9KMMUIenm_xo)<u9Yo(x1izr@sy`4O-f6Y*5gg5*{2?rc^R!RU17Rin
z6Yf?A1}w{#v>~RJZU;gET95(}-6zj+hnFQd^tfmq1|O>Oqfrt;VN);<qNYA0o?7Y&
z)FSbiBH3sM2sT3~tc*q-XR(mbKp~U@`*QQ=WuJk5`H^8ZHl2%2;PuPbob{(dm?Pf%
z&I8f*Lvh*2lh2lt?P1cc>;Q!p9}5m48dAd<Yd)Ytg~3ci4#};huYA3h{{)m!G1iHu
zRXe0jjE8!h`X+sf8vZRP6%14*%WWL7c#T&^bmlmj)0Wb_V^`Cu4YPKpk`-;}0uQ<;
zj8O7?WYf0>^H6aDQX5Il87^<>N^^SyIPG(@Bd4ab2}*HgeuhI$D4eAQm^z5nQq7WP
zu7ea1vgIBLKcR{4)FaI`dZ+T7ea=qvEhEkv^<PJ|zYwLbxt6R|W#r!=W^^h;<(LG*
zP07<JwDW}n5V$U(pLv{FZ@yBvbcxV4IF8f^Srr_1);vp`KKk=uoB9-Wwbi7(ZUv6n
zgf=%&$kQ-`u7WkY=MOwrduVALV<HTBs{*H-a<_flp5EX)08imMW*K~1X6&zCY%ML5
zx2)+rJbTGFWUhzAO)I>qGV#79i|a4Q2Yg`7vW@s$sku6&d1wDovn5Lk_5aX$v3Kpp
z0YHPiYxY0<;otT9|N2Id_t5p-asKb#TI0qndg<YV&Vt(mr`qh}Ugd^4Jt>0Q>X)JD
zf1rGowlXZ?bAL)pIAyKQPoB&pX1-z=HF@H=-un32d5wY`hzH)hls;Yut8*u-dPf*q
z$JBg>fF2=UT|rC7I<a6WBWu*cPgKILpqJVcn4qMI$85}-EtT9qAmE5&NEKL#*es&H
z_mCOU!IGV39-b+W<hqB`>jOXZU~9e3tQ{HM?t?pdfekkl1{a?lMFR{lf7ZcJ2ZeCY
z%F&A7>=^)47v{CcQzb5vY64e$W*RkMY_RN(nMEFh8&KlqEMU^4BXO*ugpc<A_4tE|
zd5rJYLFMfi+<)>37X`5!Sl|GF^#=d|>s=)N=@T5yjE$Wf>Hhp;_`^A5#B1B8)1!r)
zk)80VwUg;diiZo95`WM*D|9B9@5c*3k6>DUSgL(%H=HI;BvMu;>Fl@5y2JZEAOAJb
zVhAB3v3Z07S2%&6%!#B$S;p6kE`Wh#?xJ$5;*_vRtomC2@nOcOYHW!W5Ji|%!(pAV
zY@}}{0v5jPzsCPn*TNdj_1;1yXBBHhnIM0OJ}Q@4Nz3J0cyQDctGTkkPmHD>meVx=
z%dDyA+4?iv?H9!@9`?R5j~199mG_GR6Hga}DCCJeHJq2ufql)0)SCf#@Hz}@uBNFz
zFQO6>`n9ulxP%<syIz{F-fjdA_McYg-e}>a1i`otaot4v2&BS3(3RiAwmcD1w{<?d
zq*_sxWxQt6eKS%T73=a+p$;@k&F_kc6cb?9i3&Gr#EM$nBFL1X4EuPij11;1V@j=A
z&G4ZpevO}x<oKkF!@kuk1S1FxO+VpzN`nXP)N?@evt+BTRK+~+IgD?ZT=y-AP5>O4
zYqekf*kQ(psjCi8Wj?W?^V|mypE){@XkV869Sn@-7ZR%ZZ0f86Sc`V+RkpS_P={G|
zEopnY)>PoHduWyHZw#pd$HqZ6v0<{g`FxRPf<6ZWFEH2xV51e_N3e(L3859v8ky+2
zghh78dIVA1QtXCSozujUhPpXix9L};V7T*4cHB%`R9h#)-R&7~@8a?Hk6l8NrA;6`
zQczWZmtQx|B_WZxv?H=`>?2hLsAT%GX|j@zr?tkdE`Htv<LzmT$um~S;fl2OvKC)Q
z&C!(KP=D1a<5roFIgp^Z`Ssj~57CfMt1yp3r`$X}E5E9^Pgc~+*YX=_N1gQAn~y8e
z_r)=a;mr6QXh-2P!rZwBf5JFK<iq)MR}fgR3WTp3UxA<^y!z}d5?{;EgnwS@!w@}$
zZm$%D;X)wSMXA02f;Pw`wLusD$w@@8$Sp&52@}R5t85p|^~e8>=-5MIMn)3+D^#Jy
z&cay_rlOa~*fU=>sQikZ`Ln{wV!Tv9a^#RCMwgLKc-3LZtK{q|vwz`s*p;umEn2Kb
z`4u{fkE$D^kE$Hqf-~O;85AY~wYMQPme41akiweu@;oCo2g4IR;67sDfH9MZ7@YPU
z%x!0tVrYOdi-;H$iZ)~&lm?q3+#3hyUEiV3+Lmz+<J`>}sB~1n7Cc5Oi`FC^P^Yr&
z^P&6^v;Ff0a7PHhcJsrFRG~Nks6s<04~Hwtvh;pBk*cM~6vFbfDeAAh-0`-m80K2m
z_Rhe6{(x`S!SxBNNUP!7>oM{s>FH%@0tN3ND<>g5kxtIxQpIvS9V|{_`F<j37IJS2
zY4kWFgc3u;U{uUE-2%LAktQ_cHKXx6zGR~-WY6)`!4|qd@8$QT3_p4+0SgiUu*Lj;
zS`)@Utx3Xi)Dr!BWKMPSk$OG;Dg+!^B_Xg`fvyz4Dsmg?8+&0rN8PU$S1S~ZFxZ?#
zzf|zOC(~zHEItB}z}qk8w9BAhb^MSmOQ_vjXwUC#M+8D*S@UTmK5MFMpw8U8U%sy1
z6V8gxM__{osbDs;ns8luOIwnL-tHvTolBD>5<=3>F3oH9i64dwZ;J`UJO-R&e24jb
z11+S2USvgkC{sO`@hP08m;bGKPjht!+#8%Mbm_PrjIs{{iE7Qx(LpW({9{|WX31cw
ze^a!+AUP+co5*>TC${UGsDxc<ep2Fv-|=_P_K$pbj^8KY4qaZq((7+g)$h-Bsw!RA
zCv_LWQF#RS*#;G0rtr|REL{LQeG50OQb_E1)xf`5#rTL%3$R9;20FDvC(T%8jc-5G
zWkpCKAS{=}7%2M}Z5}9M8TvB1z+DH{1hx-P*;4eWN|vkYgKApcIg;%5zn()lf$>|+
z(Oa-VAVYhy8cHi}7$Z=<j)d{Ug1(Aua-Pj5+2rw2)e@zR8C}IE7edNUQmc!&L_QE9
z5@74jL!K7WH)&_eyQeWp>zn4F(*YTkSUZDci5tCd^>zoR`g*WaJ=O6b?6G+CYYmpD
zn@9|VU6;hCj$DeFz_lEaLO&8;Y{Biwd}7~${p1pSsJt2YYqBVi|CmtUM`UVm=h)p1
zhn;&MaN#0Eh)z15uug1xa|7|$xK<AW2>u-ngzCT&g9jfc8LbNcWrqMhcT}}&59tel
zex$A6y8-=gW++4LBx;Et-U~eeihPGFgFPPw1$Ib^Fx;u5a@ODM>GsBi#)ZccrHjwT
zI=YQ%E%Ht!Ir{3MnMWu3Xm-AeucqpbJjx__eP9Ca#p7GN*{ywnt}*iyuIa$c@`Ug5
z)vnWPeqUb$u||~)=^huv)Nt@?d&RaJOGkz36)G-UJHt@^4~%{VoCZ+V*#3Sr&V(bz
zqUnM<+C*Kvopp80r6QprlHq9c<d@nJ{iOmp*95^P@5a2JiCknbXPnbXpdTG!31;Qb
z<@};VPnU7nE2Xn?g!ans<|@(f3)~@=>|^#7{BA3pbNXB06#ePBM2D=F{Vfdpd2nYw
zq2L_Rn;aKXo%IZV+ihddkuNn%FhRwUk2zBQDZVOieHkOF>@+`E2_4Dr7ZT_dNvLV5
z9VEH|G)(Z)^8ms5A&+i1A*!9nU|6JtP%-m05wlV(Sd>`IE{c>TH+ul5WVu2bf7<Mj
z8Av7gc|o*Cpk37NseZ0+z8F0DW8MKyB=((^lB<(m9;Mzp!G1L&72S$6IrFgYRA>Oc
zWxj)aI`^48&<<x2JqJ0%ufO^JI}mhS;GegE_I};%tjK0j!+zRwZdc63^Ue3ifV=ZY
z!a)|B`2P9(0v2ttbj~V8-H_1!;LKp<y&QVR`%|<=4QAtN9&K4BfJqi*`$-Yx8rf(D
z&<$U6>-xBZ=oZ{&mP_MrmD%xFtAgvYd)miLV2<m|iJU`_X9fgZ$%Mx7G!~f;duGuw
z;28KSFFDDjbN8wq-vg-v=m_&R3BS`d4r?9}-Ge6B;1nRr1EFdLF45b`2Uk-E=M^#$
z->IqWy%y2CFbCJ{{-DPHlX{g|vMReVT{T0jSzgB-OFqF6zJKF`ep)Qf>7$3ZNXBjy
zlg_1tlwGk2fiExh1%@F31JFMzGX#vcEkKdiEp$@eeUro>S2Xn7Y>Sn+NUt%z{cRs{
zXkfHjkN)eV3Z$&Ww`~GHSnva8yz|3FF|Q+S%aN#=EW7x;BKMkTBvS(WNsKxe#v<mM
zP`K~*6wDUyFk<EIPgaX!PI%Ch=Ird|X6(^Xl<j5xYppcaOUG@@nhnnrtG*(y@43SN
z-`?a_uU4QD3IISR`lAy6XKd<ZW^8Rt_vil4u=H4CEE=}~y#s3Sjek^oZuG!YpJTF!
z?e^4TGf{g-Tp}SvXWWiop@j+!1a|+Yls~BXl$8IP2YEQ8nIB}+PBeqwXX&?4ZU@n{
z&G7KHSN=EyS30JjXFRWaZ36>r(T;cVWhpsuM8vxi^Khs4_(Vey6Xw8U4_VS}$z>sh
zO`|AmS@C&I)I)EFv+d~9Eim-h6v7zU9gtIxScOA@I!aUeh~1A_ao|3hcF2Yh4F>9&
za9%JThAJPtJJcf?q`4C|uzvDtP#;8Ohp8N{E|U{5G)gD@1Y;r{ueC6cz&d{Bo`h~n
z0wbM-FwsWbOT8L_X;Q#9P@}xhIeOTeC|hgM?1O4TQuH*EaxlC~9@z!Gx|$rNNSZmx
ze<in?53KM3)3d;2vp9OI;05cf!R9vaFDPd+V}5Z-F_g+ap3Z5Rfwf?5&+n-3;W%J^
z(qEmn<xhQmJY|aF%G2-Z#+3`PJ>Ky2SvdPi-3nrSzlYGy`>U=yHkd6tbZW;7bJePD
zc?_>Dn3|o-shex8a2;pw928=zI+B*BFM!NKx4iEj8`BVAM%WWhDqf)o>|_ev(kX2e
z7NS%Pna7v3?<RqN(nsPyn0>K(vZanfgr=3S)aevHg*WFF9|xCKp7#W3w4v<mvaPqe
zz21D=e{;X+!=%f4gZnsToX@D7wDL(N$+(H&^>yIw<;L}(<Lz}BQTKHyGTHdK%=h(m
zwqgAx!9&d=m_q0Ep-ffR_vVt$_x_bYm$UW`JS%Av6$dp;W{|{V)X<IJ5H_7JH9TG7
z3(*%E7(9QQufJl$sW*mjm@q44tx$Q<V~n*rpUO-z=4-^u(VR!0>BDI@81~C2f@c7T
zH(DfcvMNK<JWXne_R$ROc4Iu9VY?esl)=}M+LTbpKg_ZiGss(sVdTZ%`X^xQxmQgS
zG+cNJnYu`H$*-|RyuW0UrcRciiw94BitM7Z#1ycrGfv+wDxOF^D*3w8E!qw292M{p
zOfl|%ax1VqR^aGjpu&BIE*liNw4yOFUJ<7}zmB7i5_KdhklKs&+o$1p`4rN-=k&y&
zIl!tw?r}Qp9>hWS`RlV6(k8pJL!pFHzYpcaCt(K8-C+p6y<6C+yA7y}W9K_XNov;)
zUSw{6aMeO3@X%Ld61?_S*~T{fc`N@gs*!79E93dB?D2zxsw5RN0_5&<k}TAKEU#aB
zllvvcR{__7(7@qO_7HPmRs*H&vY|nY67wuA6qlirR7Mknac7&3t?fx}bL?S17K$Fg
zTWx|*l{yWa<lK5q_Ki1Sf-e!b`pgr=P@ED1JZoi-%!4Z0q}HWeTPuTiJJ{3>t7*Tl
zI%x;MH~oMozGbT)181@fAkrgE$^ER_41qlI5*)gw8o4k`(NK+Py$MMkQSL!jICK>L
z9hDlq<JsNfJEF=>BYKBaTMb<mo=%y=?WRv~-563;oFeG*kj+*zjkS#w?%7*=?P5cc
zEnM1iz+Qc}eOrKcOh93=es(K`22bGy>e<N?HMyaw#n@mha|HoR70VR^d|Fn5`4^if
zKXdTpM|V9?xCXR^LBg(C+v4zXq6|S_a(eC2f>C8U63M2Z`dDn%7bOSj26NtuEkoXk
zrOd*P9aGW-HS}#CFdW%M_S#aV5S#i-fiYX5)oSfDm7@^9q&AqaX(QIKv_N4?rh6Qe
zX2)9}H77jkC5@MUWv)Vig=ST!CtE<nP33&CX+-vCD3(X9Ckn@#{+1<<v)P%ah@oL*
zKt-RntSj?;TXfNPTDUs4^IDN^b`m(M^q`AGigP1y+a7nPq^DCpbUU^i=OVij5!rNu
z8XQ=hircT}buvWr4q#HlsR1MhD06Pm-^PWQGF;jqt|K=YWj?v(``mR~!F;7-A_1bm
zv6hgaD}4A7!T2q`JpO^KFdVwqY~|+q%C^U!gfz@(hqKzrw`51KZNtZWr}L;jdB{M(
zr1bc1I<(%&1&)GO3S(S1@_sq6j#$^fWg_>1Bn_D87V)VUr-I+pRfYtQ06ev9A8ov+
zKD9iw!;(ue>!m`dl8C@CNtAtEVR(@{F#UtE)WC|hwOsSacWn4(%kD#kv+A?flXjn~
zxg@IF0hu4>8s;Ll>8DnYn=TJ1Wd@jaYQ{}Z9^)rgaUa1;9n;<J+B$?QQbuzNvCsDO
zGi$Hp)0aHUp(R^n9ivz4(}QMEY+G&uS8j@Dxq1t$nf+}M#z#z-y&mD?29RWsRjIj7
zOkh@0rx|(B`x_K_b@!9Mn1qpDHPK4eD7~goBW3D3w@oT@?0p?@XX!-YPfx>CSx}i&
zKUoa$s2LHdfoMS=A6~G$DWz#mT)?Zb36{2;64BJQmig&iVPi6fFp{;DuWv}vxKu|}
zI|LCj&A~M~=0LZTN|mU(WEZRw;L^7K7^&lp#0rVtv5KYqtFBqsoXw+7vTCXrB2RP!
z@o96PUsl9^a<JVCtH&HkbAO#L<s#FTaBIweJ`+2-Y{hF^j%AH)ogaMj)t0a`mY)g_
z;-(rCfih5kvixU{e$BMatVg220$vEuLT&o?+CF|W{YEw)UerKj^)w!!^7IZTQKy5o
zn0YzRhaExmCI@lD>!~TA0V~tdQM0pP)A>y7Kc<b2G$>)Y??tFrYyjZB4)sS7%F)T)
z%GmLbTyaNT_m61_U%tb3u&vC?B7Q+MAS|&s)rm4$9ocG`&=-S>u2_2wVA0bl8!M9d
za+~!u4d&q`3ikq22lhn7K+m;eqT&hiRa`aE&l6m!dAnF33k7S=>wu6!gmVR2vD)Wh
zSiE0QTED)Vbi6Xs^!aZ+(ew*~VTfS=(){FtIzv4}GcNDm<I?EIhP};!LcfDsvtl1H
zSD=-kIP-&geH5AEI<1FTcD<We?D@#YG@p9?lYmMPioIN`6OAm{cQ%M^GZ7FA;}-H+
z%H{nil?#>7-1eCG_=K7`<1NVhH0lxYaNX_?qn*O$12F8m{X@53MmVP0wlEzWq@xJJ
zR(QQx$J9Pa(ilGp1~r567r>C}!rdwnU!ot|F<G+GbeKnng7!^~EixM?*h_cL`R`gu
zP{>6cVP9qH6}Wt5H<i7V4sj4fyy2=-vvz0VAgcy(NTTTa8KZ;Q&sHWUiz4;nlPgTp
z2tE`voyTyjS;8)7qG*Tf?;hL9Z<$4az$MoLK&*-_bLUHG+dR<YT3g0Uh={8b{t=e=
z1NTLn48O0^sK!Dk#vqca6~S3Ib_`$7e6GRoDXN?}tnCM1MER}*+6U5+yMb2&LR^m@
zTq?+y7f-to@@OSUxSeddy*P-(R4)6DBRD1<81{J4qCyYP)6rZ0&vsc6NnK4qrANP=
zMgy-8MLwP?jWNj<(^iu9q=dNkz{O$TE*C~NhEE$t8PfCM)@uI6qvt2#^D2U~00_b2
zZ!~!46XTfVjNq|i3HqxGHc0n*ombrJHQXcevBs2}lDALyfP0LmC#>1WH?@~LiP%D0
z>NmbR-6J>EqE}a~jxdnWVl+h$I`7ws@-oiOtFkXtx9)M@ChT$p_eX%m-a&b-?&U(o
z_=A(b9LwDA76fCox>d`7d45;&A5|^Q8uGq!kfak0Fou)h{6wgu+1|lDAh(n{oG9fl
z1-gRp3K_x1*lGLe5M5)0@AXU8O^TC9mh8xR1m?ft1hjH`<)g1`(Ab~D_pI{j>Sq-{
z899n!PkyT-i*iA1RCuNRd~K-xh-bb*f2nXTN$PGQ;11Q=8&5a;aiw^~l8#79r<0Qz
zvv2XC3xS+doNncrjGvQjw`m@7u!WWXwGISF`@5!4@@ex54$8AL2r%cmnNc{Vp$dL#
z5=JwzNp9h`bU%LSK@GwZh>QKp_42%^ZOf>R46QP*>gQOeqqcKmqXjGUB9;ovqdcrz
zAC9S+Y+uiXak1+}$0p0-zFxA)+}TbnOdrwDmVLU*N~^N|G>iOz^Ncg)blG2Xws#~0
zmQOJ5O;%h`WIL7a_JXI6WbX%wZj_e`iyR~b>HZTjwcahL4)fuh#tz3JsXUQmbFgxB
z-V~dXaBoXl@p5mL*pUH!jP?;f&?7(GVR(veh`{wYZkzoO2Oasb)!{kz=vw=0wgIBi
zb>TEWe{ynvY>rLSeSJ!>jjfnXQCkz>Lg2Y^Ketjt^SP<cs^?~E0qdzDE7q;P=6u!c
zkVFTu#Z_Nwozc4Gm7TE56IH<Bi^P<N%~6#%Wg|8Gn+QzJDoo9j9n;f$Zu0N5tn~N}
zL#Xfnh+_Z%X#X^3X8I1sMv6`j<~F8(+O$@+ktkddwAIfSh^lJ<1ryR}<bbJOXlQIA
z67XFH+@M^Co4OWpS7k-zlQ8ukyQm94ddnZc-e7dQn`W(}i$=2GL4III9=Yr8XJ~pq
zE~Yo<ay;o}wDC1Nx_Js))lo%ct`f9)U7T;kBL^2-<xrYFyqb0CUoYOj+{p-q2DP!S
z5F|3Nl8K24Bx{w~9pKcbq;l$(g?{&OLBp9Sg(h(<FUxCbu=Vv)qB0cA*S7q8+UCfe
zJC{bF`3l5+xLz~!!Wq41j-q0^7^c&yTg$@lyEu%6*UkL(ae+;nqk?jc?a2Lc812cV
zqV(>Rn%&GcEp*{zxl+64+(f0{8xH4euTZbURp)TtB548_R}-}f|MZ(h+y|PpQ3#e)
zw=CScky~wA-R)na`%{6cs4NVLVc&9C3T+a`yEmoXc(f=CtK@{%TANHPRJE;6yz02x
zmZ@AGT6laT&zkl#5(UlF5KrbS9n^=<;8j;YBCNDjN_M0_p52YvHdR|L;@i5?B<h{u
z_>O##<|>IO?1nl0ssg%5cI3f}tSRF$T0{V)4TFc*!NI!`X202Ks!W$|14J;5DK9wv
zlIEd0qpHj8@%X&47@wmqn}5w5Z?)90cZ~3H64kJ2Y`Q6H7}eVaGd(Lkl|?ZxajetM
znK$il5?JHOz9GNLj%YF7Kwx+)Wt)3`Xm_+<VMF6gNIYMj#B1-j8(y9>=~2oq*TZ|!
zFncdguk8EsOeJTzM_QSb9vt3nQKGpLB!K2;1vjqoJizeb3;ePjd+lbI1;<sXIA+zI
zwxhNj>ovyL@ov|)`%j?#O3!&mwy|kUl$gkBH2d&NyA~rE&KR);zUC{R%g~D%AZqO6
zpc@Zs)oB#nNWefI^kt{&Vzs0qFQ+;Q`Z=Z2pS5fmi1@?;6bjcFqKKZ!K<aZp`2nGB
z9q}VO?2E}xhb5HLQEJen)@aEcW|)62w-D~b?2VLW7veF{_j$}KeKF&P)(9}%-im>A
zu3e6R!dt|hUliConb%EGljNUIxj*~ju0y#_$n!Rutx1d_zb#0Q+DoW~(gz7~hE{d)
zdD)T?#F}DbNg(nB6kSBaJ$mvpQfVnMnSyp4ENV}4Jw~cE%CB1#1U8_hIMjaXc&4d>
zTb9K7gS|_X-9^L7^a>SfW0n%^#c~tuih2oaA6tW{Oq0v)bMqAeoP{RhDu6bJWkXM)
zcwfcmNWnRQ(kv=AlE&++4%>sjK(%5TZVV-aXh)_QrWMUk4X%e})OsfVk2ucd$~Ci$
zcqle)*Ep(jQwo!11<K+`3~4tdaTddkZplqR?pgsR4b2k%&Gxs&CFv<4M~A!#kvE<D
z*|SZWrX=V6h~~;s%SxcmH8%yxps|=Dkc!@sn9;c&eO?aq@p~XpLxo$H#x_ZKp_FUl
z)lu{CP^xu~JlC|b{D&V=Y`1^&YxSe_mePj5AgpsJqb?h=+Xu>TrHQUk-fC$`naQjq
zvnfAtWIy5dh^eQxBRL=FK}br{WWdnpj+C7zPZw-*kTnZ34b^W1cqr*N_SquxNc@UJ
zg8^=V&UGq`K?I@G$5~Ft7CIp;a}|K1aN=za!>Lq#ojbwEbyBmrilkA|;G#pczd(pS
zt7B;!G<crAWWltvM<u97BSD?LFm#P&>DEeNJ!<OcuVFo+t&0hnq@~XN1$IqKc_gdb
zD7iGAZ%u^1w0NNE8<25O0CAB$lCUZ_)_lZkT1-`fX{RAutYAjY=!Yb6;wgPdhQ}##
zE%;&-L8zJmUWqB1z={%LPLe^DF-KHf3R%i}5|Cm*J^aHmsH++7cmP7ra7Tc8Sn^7r
zXpY(h=*ZsqNCM)<4zIn|dlG{Wy<FquQF3!zW;{hYU;j*pXNGK(YkJ6e?+$f2OR(h-
zNUqNW8gxd5bTMw@Q4PaS;0S@;RF{|Dx^$A)rWmB^1gAaR#y67xNF9Gw^QCoy@d9Iq
zMC~rLiT*&)1GEgoR>+mQ&C+z2^~*Uu;}SC^=oU*}9~I&EnGuY{EMB1`XBhjnjTR*{
zXUYc^h_p$!MK`M?n{wOFT(^%Urd2H3@?wVHR?F*7(C)#$m(E!@fz5e9b=U|3NV3ys
zFZPocM6kZRT7lWf!-6hHeL=O+b{3y##;ogeEhYX|S0n27F{VV5&>3`+gGzZ60-x;Q
zkWEcwUmG0=NL&e{B#JtkA2UT9Y#-=t0G@{M5;zkTI&DE_r|QyGWm7GN*WSjIsymBo
z;x=209hm~KORG9)6WsVnnLkb|nuT@%#y2Ksebjr6uj(a?;qM47A$PciUxmX!Z?tRD
zw;cVtX3XaVA?KaGw{uU{kmci?^C;Q4^<zr<HJOy(=y1S3Qro(UY_Nj>T)#8eEu2R@
z!+p8)-+?61i#jK9duIEO83DJ>7^>ELlY-NGcOUY5LxYj6p`3%Qog<y0t%LC&S;2dc
z-+%iU-iIzIPFFUN9<6U(`WYerOb&L&%BZ@R&vPj^j2dU%!gCQPhs2s}xuKymggWhh
zA<NO1XTR{OFNd;?Zc>yyl?Wwh5Nrqy(;+=qy8XInkSR%0MvCN<h#0+DthVl$dM16r
zrg|ApExI1JSRARobGXag987=6Np>!&9l~L+;9<Ci>rYKB#aoF6zdZWZK6JI=l7dEv
z#~XfOGGbFO;Mx%o%q}D+2sWQ31swd%jpktZnPZaTvnk2(50^|C`vI$Q4|_X;2&@R{
z8F1;9KD!4PAI&PA=F;|<lS-^?t8w*iX1Ow_+hT|-6{k0WOsR<raf^911;crp?O=e9
z>*!p7xv`RdTTw0&d~2lnS0CI}RPDUij~iJdDc6zX!<JreF?8}6!Bf46w$JqAdF(Kz
zFsZE#9JG7Oqc0-Pl2-(=NPKC#2$-=(j31FF{K`kXA7p{H|4}4M@~8we-bIq<y>5>5
zcahY$v-__^z7N?yw~Tmc%auRoc7tD`@;p_>>w|!Uu*NfSLPD4>@pvP`_*EiCLuRBV
ztGc?2q)`nVXdda&$*R#N#LnIpT66luxL%)VRhtGU)8#aLse4~GpZYLkkpt<vAfkg0
zVteae?*&c_%ou<o!*Rhyf<H%3L?sznSozC--j*l^F93>|@r{cqEze0)k|B9UoU?Q#
zxEUT%M!vbQqQ!3)Zoje61Y+MGY)&@7sFhV&AC-g1H2id(>*decI!1`N!7Cnb&xGeB
zNoGuBzcbUx-PPHbq*bhA+ptTInnY(8Bw2_3g`tnNj$lPx!MWyS#@-uoe8${aH<;yT
z2cQy$nhMwlXCEvyiqMwAyD<!%Q2NYBkqWM851+hbY{hqULoVLcWJjOEudt1Gp||+y
zrQ8MSLAUpFPcPRd`xDxy+m0{i=CQ5dnXx4zSErEMawsFZMYcjS0cVPaQ9f#KU+zvm
ztpK)<Iw!ta=nC~Ro|x$jYRNU2&rN+GUB-Dv9#I{8>OYsmFI>;2t5SI=;<omYSG+t~
zJ>q+RH~*fg9O57bbiYgV(mz%@{LRQZJ384~|5vF0uSf#`wFy$+mg&)g@7{$vr>!4I
z&1Vz`kIDrGmdO}X`^_eRT3Z(WhY>Z2HTlb#@*^yT({|kMZg}1qK7y&sTfutX=ZMN0
zlc;U3aAYiFXH%X1`<}g6G%OCf$Rtloy(rm@^OvoY^u-Y~C@gO%1PGYzJ-7WAInh`}
zu7iRWI7?L4ijSU$J?!nG_10Vvb;@7yBcibi)bkO>m$Tq~cg|(oE)R+%Ey~87PPg}%
z!B_f@lkZ{b+Rm==d@E*3D;3jF>QT_c%v*_xkU4T73ao}o#V)EJL#FI}M(G)Wh(&x=
z-*xKGjKH3(@u)J*x+F-O2(?T<AeWknQ%x7@#jy!ip9~M0AaXwYUhn$cA3ryqZ-baj
z8E1)fEWXAwrb;$J>PjK1CPXmG1aL90_Sz54#F2fs5gaR0;0s(|w6vV(Q{eoS?pLTN
zu>SQx%U!cCG<&zp88Sl%$~B$cD1Lj=-L09GmFluEmXWk+m}N7@IG;V5TMC6@I_R>z
zDeUm!=V$x`MCaRi>@OD?^<QF%LI73q8KKm+5(@b^eioV2x1^>)keMoki7dR=JHV@b
zl$Hd@7fcf;irqff{}Fu<P@4CI{68=A`Rh&p<LEyu`jM0RSAu_Cfbe&MqIVDRx8(@G
z1AlMB{tLSF-a7MJQ}*xRf9>@A3;Hgiuz!O8AAO&{^ZefT_ZQPC{Qum<zjXor&hmS|
z&tELu$p4Y$&+eb!S$?1A{fj01y^rX9Kz^U~{hi?V`te@`js$-a{8df<9r}B<<}WBe
z@jsxy*KU4i_}5VNFFXJcOa%b^Tj2UT{9nV0zr(R;{|5hOknubEUrqSm(ZA^bhBo{k
ZgDxip@h)Tl0Q~z0>RnEEng00oe*pI0!TkUL

literal 0
HcmV?d00001

diff --git a/tools/matrix/4x4-with-5-levels/risk-matrix-4x4-with-5-levels.xlsx b/tools/matrix/risk-matrix-4x4-with-5-levels.xlsx
similarity index 100%
rename from tools/matrix/4x4-with-5-levels/risk-matrix-4x4-with-5-levels.xlsx
rename to tools/matrix/risk-matrix-4x4-with-5-levels.xlsx
diff --git a/tools/matrix/5x5-iso-27005/risk-matrix-5x5-iso-27005.xlsx b/tools/matrix/risk-matrix-5x5-iso-27005.xlsx
similarity index 100%
rename from tools/matrix/5x5-iso-27005/risk-matrix-5x5-iso-27005.xlsx
rename to tools/matrix/risk-matrix-5x5-iso-27005.xlsx
diff --git a/tools/matrix/5x5-sensitive/risk-matrix-5x5-sensitive.xlsx b/tools/matrix/risk-matrix-5x5-sensitive.xlsx
similarity index 100%
rename from tools/matrix/5x5-sensitive/risk-matrix-5x5-sensitive.xlsx
rename to tools/matrix/risk-matrix-5x5-sensitive.xlsx

From 54b6da94be6d6d55b4dc8cabafdd94a748da50e5 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Fri, 29 Nov 2024 10:49:58 +0100
Subject: [PATCH 086/107] formatter

---
 backend/core/migrations/0043_historicalmetric.py | 1 -
 1 file changed, 1 deletion(-)

diff --git a/backend/core/migrations/0043_historicalmetric.py b/backend/core/migrations/0043_historicalmetric.py
index 257a03cdd..72630bf02 100644
--- a/backend/core/migrations/0043_historicalmetric.py
+++ b/backend/core/migrations/0043_historicalmetric.py
@@ -4,7 +4,6 @@
 
 
 class Migration(migrations.Migration):
-
     dependencies = [
         ("core", "0042_asset_filtering_labels"),
     ]

From 0708bba43c63832f2784f3e4550d63be1ae17b4c Mon Sep 17 00:00:00 2001
From: Nassim Tabchiche <n.tabchiche2@gmail.com>
Date: Fri, 29 Nov 2024 11:49:37 +0100
Subject: [PATCH 087/107] Exclude third party users from editors count

---
 backend/iam/models.py | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/backend/iam/models.py b/backend/iam/models.py
index 48e800fa8..15b3725b8 100644
--- a/backend/iam/models.py
+++ b/backend/iam/models.py
@@ -537,7 +537,11 @@ def is_editor(self) -> bool:
 
     @classmethod
     def get_editors(cls) -> List[Self]:
-        return [user for user in cls.objects.all() if user.is_editor]
+        return [
+            user
+            for user in cls.objects.all()
+            if user.is_editor and not user.is_third_party
+        ]
 
 
 class Role(NameDescriptionMixin, FolderMixin):

From 4a774271884a70b2c29309496d83784bb9ee4698 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Fri, 29 Nov 2024 12:39:15 +0100
Subject: [PATCH 088/107] feat: add proof, privacy and safety in scenario
 qualifications

---
 backend/core/models.py | 21 ++++++++++++---------
 1 file changed, 12 insertions(+), 9 deletions(-)

diff --git a/backend/core/models.py b/backend/core/models.py
index 474c5f4db..c23ea872c 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -2114,15 +2114,18 @@ class RiskScenario(NameDescriptionMixin):
     ]
 
     QUALIFICATIONS = [
-        ("Financial", _("Financial")),
-        ("Legal", _("Legal")),
-        ("Reputation", _("Reputation")),
-        ("Operational", _("Operational")),
-        ("Confidentiality", _("Confidentiality")),
-        ("Integrity", _("Integrity")),
-        ("Availability", _("Availability")),
-        ("Authenticity", _("Authenticity")),
-    ]
+    ("Confidentiality", _("Confidentiality")),
+    ("Integrity", _("Integrity")),
+    ("Availability", _("Availability")),
+    ("Proof", _("Proof")),
+    ("Authenticity", _("Authenticity")),
+    ("Privacy", _("Privacy")),
+    ("Safety", _("Safety")),
+    ("Reputation", _("Reputation")),
+    ("Operational", _("Operational")),
+    ("Legal", _("Legal")),
+    ("Financial", _("Financial")),
+]
 
     DEFAULT_SOK_OPTIONS = {
         -1: {

From 76397317a1d7a91eabf7ee4fd0863ad72c830fc4 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Fri, 29 Nov 2024 12:41:00 +0100
Subject: [PATCH 089/107] chore: fix indent

---
 backend/core/models.py | 24 ++++++++++++------------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/backend/core/models.py b/backend/core/models.py
index c23ea872c..6fb608439 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -2114,18 +2114,18 @@ class RiskScenario(NameDescriptionMixin):
     ]
 
     QUALIFICATIONS = [
-    ("Confidentiality", _("Confidentiality")),
-    ("Integrity", _("Integrity")),
-    ("Availability", _("Availability")),
-    ("Proof", _("Proof")),
-    ("Authenticity", _("Authenticity")),
-    ("Privacy", _("Privacy")),
-    ("Safety", _("Safety")),
-    ("Reputation", _("Reputation")),
-    ("Operational", _("Operational")),
-    ("Legal", _("Legal")),
-    ("Financial", _("Financial")),
-]
+        ("Confidentiality", _("Confidentiality")),
+        ("Integrity", _("Integrity")),
+        ("Availability", _("Availability")),
+        ("Proof", _("Proof")),
+        ("Authenticity", _("Authenticity")),
+        ("Privacy", _("Privacy")),
+        ("Safety", _("Safety")),
+        ("Reputation", _("Reputation")),
+        ("Operational", _("Operational")),
+        ("Legal", _("Legal")),
+        ("Financial", _("Financial")),
+    ]
 
     DEFAULT_SOK_OPTIONS = {
         -1: {

From a6dbe6dea58a09695339482639c37f57b0995ff2 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <90701924+Mohamed-Hacene@users.noreply.github.com>
Date: Fri, 29 Nov 2024 12:42:49 +0100
Subject: [PATCH 090/107] =?UTF-8?q?chore:=20update=20translations=20with?=
 =?UTF-8?q?=20Fink=20=F0=9F=90=A6?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 frontend/messages/ar.json | 3 +++
 frontend/messages/de.json | 3 +++
 frontend/messages/es.json | 3 +++
 frontend/messages/fr.json | 3 +++
 frontend/messages/hi.json | 3 +++
 frontend/messages/it.json | 3 +++
 frontend/messages/nl.json | 3 +++
 frontend/messages/pl.json | 3 +++
 frontend/messages/pt.json | 3 +++
 frontend/messages/ro.json | 3 +++
 frontend/messages/ur.json | 3 +++
 11 files changed, 33 insertions(+)

diff --git a/frontend/messages/ar.json b/frontend/messages/ar.json
index ded4c205e..ec7de51fd 100644
--- a/frontend/messages/ar.json
+++ b/frontend/messages/ar.json
@@ -786,6 +786,9 @@
 	"questionPlural": "أسئلة",
 	"fillMetadataURL": "الخيار 1: املأ عنوان URL الخاص بالبيانات الوصفية",
 	"fillSSOSLOURLx509cert": "الخيار 2: املأ عنوان URL الخاص بـ SSO وعنوان URL الخاص بـ SLO وx509cert",
+	"proof": "دليل",
+	"privacy": "خصوصية",
+	"safety": "أمان",
 	"noExpirationDateSet": "لم يتم تحديد تاريخ انتهاء الصلاحية",
 	"sumpageTotal": "المجموع",
 	"sumpageActive": "نشيط",
diff --git a/frontend/messages/de.json b/frontend/messages/de.json
index 479b62086..75a2f2542 100644
--- a/frontend/messages/de.json
+++ b/frontend/messages/de.json
@@ -785,6 +785,9 @@
 	"questionPlural": "Fragen",
 	"fillMetadataURL": "Option 1: Füllen Sie die Metadaten-URL aus",
 	"fillSSOSLOURLx509cert": "Option 2: Füllen Sie die SSO-URL, SLO-URL und x509cert aus",
+	"proof": "Nachweisen",
+	"privacy": "Privatsphäre",
+	"safety": "Sicherheit",
 	"noExpirationDateSet": "Kein Ablaufdatum festgelegt",
 	"sumpageTotal": "gesamt",
 	"sumpageActive": "aktiv",
diff --git a/frontend/messages/es.json b/frontend/messages/es.json
index e54e82223..e1589f59f 100644
--- a/frontend/messages/es.json
+++ b/frontend/messages/es.json
@@ -785,6 +785,9 @@
 	"questionPlural": "Preguntas",
 	"fillMetadataURL": "Opción 1: Completar la URL de metadatos",
 	"fillSSOSLOURLx509cert": "Opción 2: Complete la URL de SSO, la URL de SLO y el certificado x509",
+	"proof": "Prueba",
+	"privacy": "Privacidad",
+	"safety": "Seguridad",
 	"noExpirationDateSet": "No hay fecha de caducidad establecida",
 	"sumpageTotal": "total",
 	"sumpageActive": "activo",
diff --git a/frontend/messages/fr.json b/frontend/messages/fr.json
index 4b6a31d9f..b3945c642 100644
--- a/frontend/messages/fr.json
+++ b/frontend/messages/fr.json
@@ -790,6 +790,9 @@
 	"fillMetadataURL": "Option 1 : Remplissez l'URL des métadonnées",
 	"fillSSOSLOURLx509cert": "Option 2 : Remplissez l'URL SSO, l'URL SLO et le certificat x509",
 	"licenseAboutToExpireWarning": "Il reste {days_left} jours avant l'expiration de votre licence.",
+	"proof": "Preuve",
+	"privacy": "Confidentialité",
+	"safety": "Sécurité",
 	"noExpirationDateSet": "Aucune date d'expiration définie",
 	"sumpageTotal": "Total",
 	"sumpageActive": "Actif",
diff --git a/frontend/messages/hi.json b/frontend/messages/hi.json
index e3c563e07..addacbc67 100644
--- a/frontend/messages/hi.json
+++ b/frontend/messages/hi.json
@@ -785,6 +785,9 @@
 	"questionPlural": "प्रश्न",
 	"fillMetadataURL": "विकल्प 1: मेटाडेटा यूआरएल भरें",
 	"fillSSOSLOURLx509cert": "विकल्प 2: SSO URL, SLO URL और x509cert भरें",
+	"proof": "सबूत",
+	"privacy": "गोपनीयता",
+	"safety": "सुरक्षा",
 	"noExpirationDateSet": "कोई समाप्ति तिथि निर्धारित नहीं",
 	"sumpageTotal": "कुल",
 	"sumpageActive": "सक्रिय",
diff --git a/frontend/messages/it.json b/frontend/messages/it.json
index e05d289d8..66e002154 100644
--- a/frontend/messages/it.json
+++ b/frontend/messages/it.json
@@ -785,6 +785,9 @@
 	"questionPlural": "Domande",
 	"fillMetadataURL": "Opzione 1: inserire l'URL dei metadati",
 	"fillSSOSLOURLx509cert": "Opzione 2: inserire l'URL SSO, l'URL SLO e il certificato x509cert",
+	"proof": "Prova",
+	"privacy": "Riservatezza",
+	"safety": "Sicurezza",
 	"noExpirationDateSet": "Nessuna data di scadenza impostata",
 	"sumpageTotal": "Totale",
 	"sumpageActive": "Attivo",
diff --git a/frontend/messages/nl.json b/frontend/messages/nl.json
index 0329a0525..116bb03f8 100644
--- a/frontend/messages/nl.json
+++ b/frontend/messages/nl.json
@@ -785,6 +785,9 @@
 	"questionPlural": "Vragen",
 	"fillMetadataURL": "Optie 1: Vul de metadata-url in",
 	"fillSSOSLOURLx509cert": "Optie 2: Vul de SSO-URL, SLO-URL en x509cert in",
+	"proof": "Bewijs",
+	"privacy": "Privacy",
+	"safety": "Veiligheid",
 	"noExpirationDateSet": "Geen vervaldatum ingesteld",
 	"sumpageTotal": "totaal",
 	"sumpageActive": "actief",
diff --git a/frontend/messages/pl.json b/frontend/messages/pl.json
index 4532052f4..06e202ddc 100644
--- a/frontend/messages/pl.json
+++ b/frontend/messages/pl.json
@@ -785,6 +785,9 @@
 	"questionPlural": "Pytania",
 	"fillMetadataURL": "Opcja 1: Wypełnij adres URL metadanych",
 	"fillSSOSLOURLx509cert": "Opcja 2: Wypełnij adres URL SSO, adres URL SLO i certyfikat x509cert",
+	"proof": "Dowód",
+	"privacy": "Prywatność",
+	"safety": "Bezpieczeństwo",
 	"noExpirationDateSet": "Brak daty ważności",
 	"sumpageTotal": "całkowity",
 	"sumpageActive": "aktywny",
diff --git a/frontend/messages/pt.json b/frontend/messages/pt.json
index edc81af78..139456ede 100644
--- a/frontend/messages/pt.json
+++ b/frontend/messages/pt.json
@@ -785,6 +785,9 @@
 	"questionPlural": "Questões",
 	"fillMetadataURL": "Opção 1: Preencha a URL dos metadados",
 	"fillSSOSLOURLx509cert": "Opção 2: Preencha a URL do SSO, a URL do SLO e o x509cert",
+	"proof": "Prova",
+	"privacy": "Privacidade",
+	"safety": "Segurança",
 	"noExpirationDateSet": "Nenhuma data de validade definida",
 	"sumpageTotal": "total",
 	"sumpageActive": "ativo",
diff --git a/frontend/messages/ro.json b/frontend/messages/ro.json
index 14c6f3d23..86c4c3212 100644
--- a/frontend/messages/ro.json
+++ b/frontend/messages/ro.json
@@ -785,6 +785,9 @@
 	"questionPlural": "Întrebări",
 	"fillMetadataURL": "Opțiunea 1: completați adresa URL a metadatelor",
 	"fillSSOSLOURLx509cert": "Opțiunea 2: completați URL-ul SSO, URL-ul SLO și x509cert",
+	"proof": "Dovada",
+	"privacy": "Confidențialitate",
+	"safety": "Siguranţă",
 	"noExpirationDateSet": "Nu a fost stabilită o dată de expirare",
 	"sumpageTotal": "total",
 	"sumpageActive": "activ",
diff --git a/frontend/messages/ur.json b/frontend/messages/ur.json
index 7024a3a67..13c5db0b6 100644
--- a/frontend/messages/ur.json
+++ b/frontend/messages/ur.json
@@ -785,6 +785,9 @@
 	"questionPlural": "سوالات",
 	"fillMetadataURL": "آپشن 1: میٹا ڈیٹا یو آر ایل کو بھریں۔",
 	"fillSSOSLOURLx509cert": "اختیار 2: SSO URL، SLO URL اور x509cert پُر کریں۔",
+	"proof": "ثبوت",
+	"privacy": "رازداری",
+	"safety": "حفاظت",
 	"noExpirationDateSet": "میعاد ختم ہونے کی کوئی تاریخ مقرر نہیں ہے۔",
 	"sumpageTotal": "کل",
 	"sumpageActive": "فعال",

From 08decdb908365450ffb08995abfeed17468195f0 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Fri, 29 Nov 2024 12:58:51 +0100
Subject: [PATCH 091/107] feat: keep order of security objectives

---
 backend/core/models.py | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/backend/core/models.py b/backend/core/models.py
index 474c5f4db..75000340e 100644
--- a/backend/core/models.py
+++ b/backend/core/models.py
@@ -1364,6 +1364,13 @@ def get_security_objectives(self) -> dict[str, dict[str, dict[str, int | bool]]]
         If the asset is a supporting asset, the security objectives are the union of the security objectives of all the primary assets it supports.
         If multiple ancestors share the same security objective, its value in the result is its highest value among the ancestors.
         """
+        if self.security_objectives.get("objectives"):
+            self.security_objectives["objectives"] = {
+                key: self.security_objectives["objectives"][key]
+                for key in Asset.DEFAULT_SECURITY_OBJECTIVES
+                if key in self.security_objectives["objectives"]
+            }
+
         if self.is_primary:
             return self.security_objectives
 

From 867dbedbb25d0dd1892dc50aa0afccf7a1e5d579 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Fri, 29 Nov 2024 15:37:10 +0100
Subject: [PATCH 092/107] feat: update read view of a requirement

---
 .../requirement-assessments/[id=uuid]/+page.server.ts    | 9 ++-------
 .../requirement-assessments/[id=uuid]/+page.svelte       | 9 +++++----
 2 files changed, 7 insertions(+), 11 deletions(-)

diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.server.ts b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.server.ts
index acb0fb1c7..177c5ff37 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.server.ts
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.server.ts
@@ -12,13 +12,8 @@ export const load = (async ({ fetch, params }) => {
 	const complianceAssessmentScore = await fetch(
 		`${BASE_API_URL}/compliance-assessments/${requirementAssessment.compliance_assessment.id}/global_score/`
 	).then((res) => res.json());
-	const requirement = await fetch(
-		`${BASE_API_URL}/requirement-nodes/${requirementAssessment.requirement}/`
-	).then((res) => res.json());
-	const parentRequirementNodeEndpoint = `${BASE_API_URL}/requirement-nodes/?urn=${requirement.parent_urn}`;
-	const parent = await fetch(parentRequirementNodeEndpoint)
-		.then((res) => res.json())
-		.then((res) => res.results[0]);
+	const requirement = requirementAssessment.requirement;
+	const parent = requirementAssessment.requirement.parent_requirement;
 
 	const tables: Record<string, any> = {};
 
diff --git a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
index 7f757b20c..7ac137a23 100644
--- a/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
+++ b/frontend/src/routes/(app)/(third-party)/requirement-assessments/[id=uuid]/+page.svelte
@@ -12,13 +12,14 @@
 	import { page } from '$app/stores';
 
 	export let data: PageData;
-	const threats = data.requirement.threats;
-	const reference_controls = data.requirement.reference_controls;
+	const threats = data.requirementAssessment.requirement.associated_threats ?? [];
+	const reference_controls =
+		data.requirementAssessment.requirement.associated_reference_controls ?? [];
 	const annotation = data.requirement.annotation;
 	const typical_evidence = data.requirement.typical_evidence;
 
-	const has_threats = threats && threats.length > 0;
-	const has_reference_controls = reference_controls && reference_controls.length > 0;
+	const has_threats = threats.length > 0;
+	const has_reference_controls = reference_controls.length > 0;
 
 	$: mappingInference = {
 		sourceRequirementAssessment:

From 10ae3825a4cc508b44a9da0370e89c5e9972bc4c Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Fri, 29 Nov 2024 16:20:42 +0100
Subject: [PATCH 093/107] fix: flash mode

---
 .../compliance-assessments/[id=uuid]/flash-mode/+page.svelte    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/frontend/src/routes/(app)/(internal)/compliance-assessments/[id=uuid]/flash-mode/+page.svelte b/frontend/src/routes/(app)/(internal)/compliance-assessments/[id=uuid]/flash-mode/+page.svelte
index 76913b580..8b0dae806 100644
--- a/frontend/src/routes/(app)/(internal)/compliance-assessments/[id=uuid]/flash-mode/+page.svelte
+++ b/frontend/src/routes/(app)/(internal)/compliance-assessments/[id=uuid]/flash-mode/+page.svelte
@@ -26,7 +26,7 @@
 	const requirementHashmap = Object.fromEntries(
 		data.requirements.map((requirement) => [requirement.id, requirement])
 	);
-	$: requirement = requirementHashmap[currentRequirementAssessment.requirement];
+	$: requirement = requirementHashmap[currentRequirementAssessment.requirement.id];
 	$: parent = data.requirements.find((req) => req.urn === requirement.parent_urn);
 
 	$: title = requirement.display_short

From 7c7f08ce3ab99f898ed13eb64c82188399434a8c Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Fri, 29 Nov 2024 17:06:38 +0100
Subject: [PATCH 094/107] Add requested metrics

---
 backend/core/helpers.py                       |  5 ++++
 frontend/messages/en.json                     |  2 ++
 frontend/messages/fr.json                     |  2 ++
 .../(app)/(internal)/analytics/+page.svelte   | 26 +++++++++++++++----
 4 files changed, 30 insertions(+), 5 deletions(-)

diff --git a/backend/core/helpers.py b/backend/core/helpers.py
index b53c312e7..7b50a30cc 100644
--- a/backend/core/helpers.py
+++ b/backend/core/helpers.py
@@ -895,6 +895,9 @@ def viewable_items(model):
     progress_avg = math.ceil(
         mean([x.progress() for x in viewable_items(ComplianceAssessment)] or [0])
     )
+    missed_eta_count = viewable_controls.filter(
+        eta__lt=date.today(),
+    ).count()
 
     data = {
         "controls": {
@@ -904,6 +907,8 @@ def viewable_items(model):
             "on_hold": viewable_controls.filter(status="on_hold").count(),
             "active": viewable_controls.filter(status="active").count(),
             "deprecated": viewable_controls.filter(status="deprecated").count(),
+            "p1": viewable_controls.filter(priority=1).exclude(status="active").count(),
+            "eta_missed": missed_eta_count,
         },
         "risk": {
             "assessments": viewable_items(RiskAssessment).count(),
diff --git a/frontend/messages/en.json b/frontend/messages/en.json
index 08e008306..d7580d035 100644
--- a/frontend/messages/en.json
+++ b/frontend/messages/en.json
@@ -808,6 +808,8 @@
 	"sumpageToDo": "to do",
 	"sumpageInProgress": "in progress",
 	"sumpageOnHold": "on hold",
+	"sumpageP1": "Pending P1",
+	"sumpageEtaMissed": "Missed ETA",
 	"sumpageActiveAudits": "Active audits",
 	"sumpageCompliantItems": "Compliant items",
 	"sumpageNonCompliantItems": "Non compliant items",
diff --git a/frontend/messages/fr.json b/frontend/messages/fr.json
index 4b6a31d9f..880689f13 100644
--- a/frontend/messages/fr.json
+++ b/frontend/messages/fr.json
@@ -797,6 +797,8 @@
 	"sumpageToDo": "A faire",
 	"sumpageInProgress": "En cours",
 	"sumpageOnHold": "En attente",
+	"sumpageP1": "P1 en attente",
+	"sumpageEtaMissed": "ETA râté",
 	"sumpageActiveAudits": "Audits actifs",
 	"sumpageCompliantItems": "Exigences conformes",
 	"sumpageNonCompliantItems": "Exigences non conformes",
diff --git a/frontend/src/routes/(app)/(internal)/analytics/+page.svelte b/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
index abe6fedce..d5445dece 100644
--- a/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
+++ b/frontend/src/routes/(app)/(internal)/analytics/+page.svelte
@@ -140,7 +140,7 @@
 	<svelte:fragment slot="panel">
 		<div class="px-4 pb-4 space-y-8">
 			{#if tabSet === 0}
-				<section id="summary" class=" grid grid-cols-6 gap-4">
+				<section id="summary" class=" grid grid-cols-6 gap-2">
 					<Card
 						count={metrics.controls.total}
 						label={m.sumpageTotal()}
@@ -163,9 +163,6 @@
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
 					/>
-					<div class="h-64 col-span-3 row-span-2 bg-white">
-						<NightingaleChart name="nightingale" values={metrics.csf_functions} />
-					</div>
 					<Card
 						count={metrics.controls.to_do}
 						label={m.sumpageToDo()}
@@ -173,6 +170,9 @@
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
 					/>
+					<div class="h-80 col-span-2 row-span-2 bg-white">
+						<NightingaleChart name="nightingale" values={metrics.csf_functions} />
+					</div>
 					<Card
 						count={metrics.controls.in_progress}
 						label={m.sumpageInProgress()}
@@ -187,7 +187,23 @@
 						icon="fa-solid fa-shield-halved"
 						section={m.sumpageSectionControls()}
 					/>
-					<div class="col-span-4 row-span-4 bg-white">
+					<Card
+						count={metrics.controls.p1}
+						label={m.sumpageP1()}
+						href="/applied-controls/?priority=p1"
+						icon="fa-solid fa-shield-halved"
+						section={m.sumpageSectionControls()}
+						emphasis={true}
+					/>
+					<Card
+						count={metrics.controls.eta_missed}
+						label={m.sumpageEtaMissed()}
+						href="/applied-controls/?status=on_hold"
+						icon="fa-solid fa-shield-halved"
+						section={m.sumpageSectionControls()}
+						emphasis={true}
+					/>
+					<div class="col-span-4 row-span-4 bg-white h-96">
 						<StackedBarsNormalized
 							names={metrics.audits_stats.names}
 							data={metrics.audits_stats.data}

From 00fbe1bc81e67c43273449fdb2b665120b9d2902 Mon Sep 17 00:00:00 2001
From: Abderrahmane Smimite <smimite@gmail.com>
Date: Fri, 29 Nov 2024 19:21:45 +0100
Subject: [PATCH 095/107] Fix the Ebios RM matrix

---
 .../libraries/risk-matrix-4x4-ebios-rm.yaml   |  34 +++++++++---------
 tools/matrix/risk-matrix-4x4-ebios-rm.xlsx    | Bin 14082 -> 14059 bytes
 2 files changed, 17 insertions(+), 17 deletions(-)

diff --git a/backend/library/libraries/risk-matrix-4x4-ebios-rm.yaml b/backend/library/libraries/risk-matrix-4x4-ebios-rm.yaml
index f6e0fcf06..51ff10780 100644
--- a/backend/library/libraries/risk-matrix-4x4-ebios-rm.yaml
+++ b/backend/library/libraries/risk-matrix-4x4-ebios-rm.yaml
@@ -4,7 +4,7 @@ ref_id: risk-matrix-4x4-ebios-rm
 name: 4x4 risk matrix from EBIOS-RM
 description: based on the official guide of the EBIOS RM approach
 copyright: public domain
-version: 1
+version: 2
 provider: intuitem
 packager: intuitem
 translations:
@@ -20,51 +20,51 @@ objects:
     probability:
     - id: 0
       abbreviation: V1
-      name: V1 - Implausible
+      name: Unlikely
       description: The source of risk is unlikely to achieve its intended objective
         under any of the proposed procedures. The likelihood of the scenario is weak.
       translations:
         fr:
-          name: V1 - Peu vraisemblable
+          name: Peu vraisemblable
           description: "La source de risque a peu de chances d\u2019atteindre son\
             \ objectif vis\xE9 selon l\u2019un des modes op\xE9ratoires envisag\xE9\
             s. La vraisemblance du sc\xE9nario est faible."
       hexcolor: '#FAF7E9'
     - id: 1
       abbreviation: V2
-      name: V2 - Plausible
+      name: Likely
       description: ' The source of risk is likely to achieve its intended objective
         according to one of the operating procedures envisaged. The likelihood of
         the scenario is significant. '
       translations:
         fr:
-          name: V2 - Vraisemblable
+          name: Vraisemblable
           description: "La source de risque est susceptible d\u2019atteindre son objectif\
             \ vis\xE9 selon l\u2019un des modes op\xE9ratoires envisag\xE9s. La vraisemblance\
             \ du sc\xE9nario est significative."
       hexcolor: '#EEE6BC'
     - id: 2
       abbreviation: V3
-      name: V3 - Very likely
+      name: Very likely
       description: The risk source is very likely to achieve its intended objective
         through one of the anticipated methods of operation. The likelihood of the
         scenario is high.
       translations:
         fr:
-          name: "V3 - Tr\xE8s vraisemblable"
+          name: "Tr\xE8s vraisemblable"
           description: "La source de risque va probablement atteindre son objectif\
             \ vis\xE9 selon l\u2019un des modes op\xE9ratoires envisag\xE9s. La vraisemblance\
             \ du sc\xE9nario est \xE9lev\xE9e."
       hexcolor: '#DCCC77'
     - id: 3
       abbreviation: V4
-      name: V4 - Certain
+      name: Certain
       description: The risk source will certainly achieve its intended objective through
         one of the anticipated methods of operation OR such a scenario has already
         occurred within the organization (incident history).
       translations:
         fr:
-          name: V4 - Certain
+          name: Certain
           description: "La source de risque va certainement atteindre son objectif\
             \ vis\xE9 selon l\u2019un des modes op\xE9ratoires envisag\xE9s OU un\
             \ tel sc\xE9nario s\u2019est d\xE9j\xE0 produit au sein de l\u2019organisation\
@@ -73,46 +73,46 @@ objects:
     impact:
     - id: 0
       abbreviation: G1
-      name: G1 - Minor
+      name: Minor
       description: 'No operational impact on the performance of the activity or on
         the safety of people and property. '
       translations:
         fr:
-          name: G1 - Mineur
+          name: Mineur
           description: "Aucun impact op\xE9rationnel ni sur les performances de l\u2019\
             activit\xE9 ni sur la s\xE9curit\xE9 des personnes et des biens."
       hexcolor: '#42C7C4'
     - id: 1
       abbreviation: G2
-      name: G2 - Significant
+      name: Significant
       description: 'Deterioration in the performance of the activity without impact
         on the safety of people and property. '
       translations:
         fr:
-          name: G2 - Significatif
+          name: Significatif
           description: "D\xE9gradation des performances de l\u2019activit\xE9 sans\
             \ impacts sur la s\xE9curit\xE9 des personnes et des biens."
       hexcolor: '#FBF082'
     - id: 2
       abbreviation: G3
-      name: G3 - Important
+      name: Important
       description: 'Sharp deterioration in the performance of the activity, with possible
         significant impacts on the safety of people and property. '
       translations:
         fr:
-          name: G3 - Important
+          name: Important
           description: "Forte d\xE9gradation des performances de l\u2019activit\xE9\
             , avec d\u2019\xE9ventuels impacts significatifs sur la s\xE9curit\xE9\
             \ des personnes et des biens."
       hexcolor: '#FFC586'
     - id: 3
       abbreviation: G4
-      name: G4 - Critique
+      name: Critical
       description: Inability for the company to carry out all or part of its activity,
         with possible serious impacts on the safety of people and property.
       translations:
         fr:
-          name: G4 - Critique
+          name: Critique
           description: "Incapacit\xE9 pour la soci\xE9t\xE9 d\u2019assurer tout ou\
             \ partie de son activit\xE9, avec d\u2019\xE9ventuels impacts graves sur\
             \ la s\xE9curit\xE9 des personnes et des biens."
diff --git a/tools/matrix/risk-matrix-4x4-ebios-rm.xlsx b/tools/matrix/risk-matrix-4x4-ebios-rm.xlsx
index 590d98cd87f17dbc660b0c6180fb073b189579c1..cf8eddf15eb86a7d1ec59f3920f45987236abde2 100644
GIT binary patch
delta 5694
zcmY*-bx_pp*Z$ItbSx>-$WqI)gn~$eN=V28N_VFZ$VWP4L0CGZYXRwQ=}t+Jr9rwR
zBwnBQ_nYs$-}{d<_sn&!d(O<6bI*0IK&M^Difw!%+R#_rwKyP<6zUkC3m8^c(HtPg
z-sZ0@;ZJise5y+hN9uM+F0Lznzq?>TeJ)6w;#)M1XK;8Bvz7ARs^PAtOu+m_h($|;
zhM#2`z9X?o)uyCq`>30}4Olz2fRonQ#^Rs|DvP|oS^KA}XDI!Y9tQ+wOi|C*dnjLJ
zFqzsf(3V5C_qd@bBCyy;32@`$<=cqU*46K?+{Z!_*$+RF=Y@1)KH&-241TIBKrRFk
z8dBmN3~?a_Sj!-gfRYFwTYbIGU0S)}H$Br|am0~Lgw9`>ApI@a3y3`?1XerNO(j{-
zR3<LMTKRh^h0#e!6Shr__jQzP9cAyKe8rQPPD>S5DvuEl@)(l{pp&2#%v_1@{BG{f
z5=uJxtA<Mc=xO*S+XwgI<MTk>GgBespi;d|)iN>N6eY#HLA3%K#uO}#tI#$C#Xi67
z8@y%)$fCkpZu((})+C;-fH=;>i=)_`xoCUuME0l#?blF+2_k2j?W2xeeQ}94{Jnv=
zpl?XN+j`4DdDDP4;G;lP9^rt|PwHBzp_U@|HGhB%$7vk#>qE6BrBW@y@voHedt&jz
z{K@Ndv2i<KJ;QC!MVnZGQ30Y=oj}Kli1>l`OE<yEs@did(a_&xvY{k%;T80ItyK6j
z%X#&mYlJMw_;9o1!-(4_B;7Jo<%2JGzQ5Y*cCDUvYxz;_0PI=L^pA$k^p8|Xy9Gg$
zG0t*Iq~8KjdV&vrjgQCf1kjAu9rV{NcY4iLos1y$|G2!lzUvx4{4f>l$>#UY<I%E5
zUSaR=SaGgpg#u}2P_eOWZF)8xs&c1}?M-oF?2frj#O=b{_$NZ0TR{)`Xb@A3DbJx$
zB4uB2N_hYiCtyPNoFVj?-TOLvgJT<vA+=C+5a$rjRrijJ0uRKCg~4e5Kxs<%MbBnn
z_>xW~J@m|Psi1i~EtK%wbhV&6b#KSsP4N>oVmm?^QK%yi=siPYtEn$bjZ@ZT#MWgY
zJOy;U33SCU!B3>g_bAsT+&>I4MKjxPH<G)kWeh*40-)-C85XzmM1b<?ex$%&yY<2l
z7o{Dy$}u(<H2+huil(J9Ye0M9DEFOkrLoJzkgL;s9}9%4=+R@@5o6ho9nRBJ32X7&
z9s<NNg{QMlj-d@n(<6^l&6q3G^M-~wA?CP0Uq5!)qSyR={@jzcgZ@OC*rdxE*}$*-
zB$}JYxqrjbo;=x10{3~Vg5Nr^y(&DGt=>DlBRtE*TH-N^$<WXeLLGafC?T}f--xBK
z$+1^pOXRp95P}Q@VgR8i#KAy13gMh4Ow+f_voCGnPhhUbuJ}+l4!_KK>g!mvNM|H6
zW&a24y!lWrHBUPajmBj*hqvE1zCUppC*BYCoUFksFb$5iX)LyAh8&HtSqk^|zn{_5
zNYSIY<Yo3x_P>M9Gc~&+DOj<xJ@K4c4&CILorA3)&<vXub;nXGR={LGwPBQ4kL;yk
zEId*>C&l47;`8E#u!gZZgq3XBZsMA{o47}&`w%?eDE8v?0t2m1bEJ34m6j{bi@Sr%
ziA>4>hV{Kw34tvSpr*_$kBvlrcw48K-Yco9J0Znt9|UN;6j?3+UL6pv(N8+w9ex`R
zHmF2>z$q`fG=DfT0ff-LHT7l-&Zjqc3rTaf)Wra&mMIn+G9;VTZj78moMcuW>39=9
zDG38MBH*bWu`e(AiC7M*<@KiVzD)Q%>r2+)=>pxxnH`#xO}sTf^B%o6nRwh)lsT3l
zl6Kd}GmZr91XHzS(sXz1b<6YWVk8x|?npT*aIxI9d|IED00~_RK&?$rx&gyELaz-=
z3oe;ZG_QB%Y;~{L@403w5i<N|VxVL#*M-@NPM&DZB$NqH!-qrgPc^}#KJuWY%+IdO
z(ZYsATk7-G!mEfa<Wqq*xt9my<(({hpQQ7ldA3yfBAV&4<oWMWSRo7y@5Z7oBYmVP
zMDtGBK%o130Q7H+Pc(K45~c_)4}{B^k`bw{vx|=?QYik?F~p0nt3QOiHt|IwehbRx
zUM1IhQ%Sdxb$RR;e678>7~At7eK^(|a{yZ{(Mhm=tLc5abN)vv>eeM~^!=5^$;@xg
z4@!dmqN{(D5eusm3pw|<2l7v=({x@VQ8a|^3b_D#&dgN+d)x!c9ou0kVjM^EFvBpj
zX35JCzi%#9^)E|l6{b%r6yPV6Yci$O-ozYsER}Q$CzRc5Qm*BHxs>lMhF%ZwaKa)4
zrg+1PJiA-_Ri1J@QV&%BN0UNpH=Oz1fXdT{A|lhd*x`l*>xfFwfHgIR8eVL73(Ld-
zDgl5GC}?P&Bj3W64(=Ul9hK##Bsn)rtB9>i9DT7<uOEu&2+V(V#mV==gVHLPLFTrN
z*62jd@=fH!ri<;>h;I_nIXW@E=*=y1F9xWhqM6g$_OyNz|3n`qiPj{)9niY1vs;IZ
z>8%*6Tb+~azC|w^=z7eqj-GsRNO9=|usQuv#T41(>?zU^4tx+Ofd2naCN0X5k_NyT
zz^95ec9bj<IM4a@+r=>*s}yN&m!_lt;UfA4p~`E48Y<zJ@7jR76r$X)*3tpG8cH;u
zEwe(rT$e6as--I6mw6r<&oGo4`5he)$J#L-_9uo-Njm@SFmVSJC$u0>z<ySd0o;Z?
zppi8*j*%eA=c@K8PRf2`|1RNGoF_0Blk+%U1A3;ydnQO)Yd}a&-6KH-_6@cvO6j>C
zQ7avZ;Jy-s51b8IEv>12r4*sBtsr=iuW+(zJI_0^DSrL4k8jPQ{P=sHw_DutMR|N4
z#*neL0xPb|d}Q|bsqh2FLzUS(=WpG%MWzBjKx0LBf7BumrS$Ge)qfHVNhJgJNf1~L
z|IV(t3@hmr=i!Uoor<InYSlko;-Y-#Ex;qJVJL^VbztYVhzf4H6=`D-e<lKH>n0*Q
zRQ3<>C!S0BBv$EgM=I_@!b_!dqRe+SoRVgozN**!Aw%GNl`8Xyhf<9p6T`_+Z$@HX
zv>P{ScIM>otLv>aP%+galL?$z`}eimiCW|LqVKr)o8{lUE_>GrtGzAo%6#@%pYG6V
zj-*~g(KGquN<)u<2F9`h9UGCUKzspRrK)O;X?`U7AXHUWZS{_Y%U#%un>m)MO+;@1
z^|hoSD2x6<=bZc``wqJ^=jyN@M=wmIS*1mbW%rCCN|19@h_{#Z<|E+b6*O`x6D8;@
zOjz|8DLNZR7Y4j>z695V-xz6oOw1&@rYcKEIMMiAX2votuE2KTlc#X}?TxZ;&)aG5
z|97_kH>4XZIxPy5-X?UgRZP#q6{+5NLSF1=5>A3X{0c4Du4`wrq@;bXu&DBr`55i4
zqBi*J+N;se33!!RIPz<4HgmpDN)<JKez9|__BO^garo!c9sAhfyMmsbo6Bow-^MRO
zhc%Z+kJMo$)zw$3N;Piz%Wu=5#v|>plB<-ESK7(6hI70t@+9?xjs+poNj8~I;pz4X
zt@_25ZWQ+zU7O5K_2O2US0&7ax+Vp>3qHz{d5b;LgTV79_nf0N<pu3-bJfjU8GdGd
z%*4cPEmjm0ePQ`$$<x+zfrO7W3I}s4Mbi&DGW4^*{o%I4G9ll~Ke8k!MH0n49`;pt
z`6J5hP$+h|Iy?l*U*(m64}Kzw?&qE6cl#?gU0uU-rLH#n%Xy=-9K9VlCD8$o%5&g>
zC-91-DnJ<w_qWPc#l(idl+C}*^fSX|ds32cJ}7u7e1Hy6GLpGlIMx6Age9iGTqQb^
zYgi6OHIb+};#<xk$sf>*<69{Sre=L(bFdu}!X4n4{+=wwTWQmj8U2+1a3wq{R8q9k
z#wgu0?g?)6P2{gfyeAp@vC8vQV|@SCkP94jm^eiD1}oDoFe8Z;;iq8H!>Hk)$klM+
zrq&qF3O>1$*Kfq~U0sV}aFzWPo6uP}UJjhrEHw*1OH`tX8+dC%>1Eo<giN7)ExeQa
zJ_BbQEp#)I^9}G|eOkMPa^4n~gNoR6X&--I+7NnXJ;%L#d==>~bp~o;p{9+cXdtNx
zZ1&;%%zl=uD`7blv!TyvLXwW<z`0A(G50TpbNZ$44yh2%Z9@xzkSMVj^|4{<#dG?w
zqd{yFf5nv$?+38Bb3A_E@|>f<uTJJd;_E*cP4Gt<Qh6_AqWbyS@rj<szVglwwX?m}
z41U8Xyv9Xj82UWQbN#lWo3B?2_%(<xh8DkhJt5tlUHLLE(=JP-Sogpu0$xIi(RNQf
z&n9e;2W`F8Acm(~IdBU((ngET#FABXTsdEL2J}i1Hw2J-mLD!Er&fcpMrBtq=<jEL
zDMlcA*)=z2dk1c3ZQ9>_yG4;*K^-SJQW-0S#7m{o*bAZfPJ1KGhqa`}d{b-v%_(7k
z;vEhOO_5cdOkYPz)K83RIQ#oqGoti4Spg>|37RGP?Z2{YiY|OVPdsv_f|k>D4L^MM
zTV*RBanPzJxL0gFe!X8yf9W@M({9zTCLl|8C+W;+R3$MiuB_o1EVO6qLx%eU>-(MN
zs;o*k6NLM?Z`Eys@}NqZt(eqyMrP}e>jLGcgs6ybV9)V1-euo~`!m#sLmbocV}PJl
zCfLr|x^KuR;hXcK8sji&nSf%)D~W~U1RajkM(ym!UTuCim%AC-HdBvm?WtW3QA@1f
zmF~4m=tuhNn_KVNW^ZrDh0Z#NBpORI=9h_XZ&_H|o_v?8aB8a1rm<Tp)#*~tC`%L1
zF=`gmF_ALH>vmf5vMq_2%9SZaXabVbGbwKNTOln}xgI8In!8zp2W{;51LJvWMifB-
zI_83U^KFA0(nc(e(0`8X*zudjO($!Wk`g|v!qb22FD1x$MS$I|msoU4ewo>BZTvce
zlpAaup4_ms6@Dqnqw&kPnDw_MNz1!Y_5Pl;6i|MEp3DqA*z!D8hm;!D^#Y5!>XHT}
zy@!q2Xo8T$_&2>DX4TkzolVAk9fnLkU0s@&@CB4Dc{d~MvdWg-RKK4VyqH-bU9Fu?
zSAA}+etmFNf|5WK_8C`4H=gBj{H$>rsWzMmO-<!Sj1)lR2a5uuxZg_i#}}$Ks)Q-6
zDi;)8UewEiu%FDB!i*o&tOM3MZ<^uZJ|{3|WGBG?F0C*?uh-doUnc#9@=J^3)rP%;
z-4@}t+Bpfjr)R54GkA*gzQ*_A-3Hkd6an)dr5$Ey15xFeC{{b7x1sk_4f;yN!Y@dz
zEF~#jrqrIKxeZ_Wuf(!#@XkqnE-R*j*j(mTjE-~2dLyFxV`5X1cL0Lk*gxA}!pgSG
zZQ@NDD}S8>6-7MX<59eHTvoj6c8yv6<ZGJthry+flE+F~7|<UB9?mSHHG`kN%(7x;
z;$ECC&i!u1jLu50L$c%@w%-|srQ=BTb%%*<ynq;moV8>=iwPIZ8T_Z5AUq&5DLG|v
zn~kpgPGG7Ij@@A1kq;=ki&4L(QC(q{kC6+{!KAx*y7GG*oi3zu*0~n#GQl0<`yebv
zoQ`W8JCEsAc^c>TznrEXYfDqGQ(#R7!yg5xp|9$P6`xy0<x<4MQtVyK37lz*997K8
zq#l*CGe24h;7RFH8v+pM8t^%JPeiR5H0|2)TbVgejs8X!1`yya85o+MCJYXxdA+6S
z!b(kNWC;<vs7)dUBi-4w?p@1_<C*6C#d7-y-Qr(`@OQ?X#db-j(b>tQIXRTzreqZY
zE{L6V=2zIn+j$aK7rYWL`TrSRoX=z~B;`-WwZr9tJD2&m5e7w?xvFPwEfDNpI#QmN
zBZGg!I)T`DV4Tt2O6LS*H%+wA6)yj_m?Ouq->9TAl0DQ+i(7}WmNsSu+|FVEb8}j^
z{aki#fTNy2IPRpm>i0rMduztbw`;j*vY^*>qn1kFcvo-AUFLD^d-G2r@iWKvF_I)g
zEsf%iyPcQF4fk}k12tQs56o8lcJ{ZF7J`4ulVh(9=vypqK1s2VBf+o1uJsFzhQtx{
zqzD>BDfU{cCCuPT{2}OmwuPSu+V5$eP#;u6AvN`lgfMA|dky277NCc53;e<dRdm-x
z#Mv37SlwYLG&WhfD4o8r2Jz<e%{1^cS}x66n;eHo7;m2vYak`hTntG^d_N8%K7MmZ
z<sVgG*vH!2<+m@ci#NlP9c8_vlm)k5DUieNS#7JQJeznk_L#S1Cl2|QMS?x^b_Ajy
zP6c};=hK~AEABP5!U1v|#^b%4AVzv3aGswLe$y#a8dGVNRRhmyO|D1BC3?lzK$T2_
zJwGMeBY*y&VgUI+XnKC&@MJK_l;g8%u>d6iI@W%6X<_5o#k8WtQ`lcMJOQV_9L2+x
z>ts`qqo(?2*;LFvUe8E;@7#XK#Jwpew3oZ&jr}~|5kXs+1~_s)xRw<&%Z>XPr%9DX
z$dul6e8(KWL6J|`fk_nEP}>8`fQ`X|VjflsCeGMwddd})225kgS(E8k4zkZ@d(Z<0
zA*_O;CZHD!P+bM)*)gs+B>j5tSAsO$pQpu$Qt8OJVvTo~pCYy+>p02;^VGP&c_U=T
zb-7-TK9YW)HQ91+L35<m?chG?Hpa1b*{+LR->lNSsf=1-T}Z{3^p2IK_z_?zXdC8Z
zVk^U|B)))2KUh0Wd>Nzq8sm$}^6drOJ3G?FX8eTMLhgoz44+}(_#f?l4#M~Dto=`k
zmoF3Ub7H|u?qfgpgr;xg#dCb9Uii(f$9%5wK6o11Qj8iCcTW6?CYn#Ats?Z=e%aEo
z`z2q+3`1r{9XHE;t5?(DH$r=fN!h+CGHc4+Dr;(FT<$Dfy8C~NBMwLt#Rwt8J!aAi
zuTB!+!veku)ATIAxFJ_xuK$Wd1{J2dKf;~prbIf|wg&aq8ZWG378e~qQoQhU7;9|*
z;yyLtP>9|pDMcy0qEywU3D{IpY5kI;D-xs3>-NRAlRwuq@;7GuaeG_pQL3By%6uxg
zGzpU<HyM5MPbBQ;ERA`eL{_qT;B$gXsGbO0v=@N1@0FbgyCfFW8w6Mfz7IvbGs+C#
z{z!8ZTv}iE3lwNxBp2|T92JaVD<>%Vk%^Pxw)uMUaCdx%;v!wpN9fBBX`WZT1-5Zk
z<2{5|ME(efNfWwqdjBgt%Z~%TL6<B618U-wN$PIjbz1UVYS_&hh-@X9uI1yp){iB{
zAzrU(?Bo_!#WUw5*oXNubx|AV-my?<^{f0*Qr_@%xz`-l`jS5{{L*>VL(>8$HJXpH
ztzHtcxj1|qB9(U)qoR_IBoWPF%(nGXlEFTKTx`e=v}2*NacHW!A*%n^e)WOA#A-qH
zK?Rxq+tm3h_y2Q#qaKJ0F#q>z`5*A_MT+vT1w@Oo7Z<{cL#2t!Vfmtdh_f^ON8ZqZ
zKs5h1AEbh!hw(7|+iW8&5Xb`?1fu*e+zIst_7n>Xl?;1=HHDgiapRAQ{hRPVcx}qO

delta 5700
zcmZ9QbyO6<_Q#iI=~`lmMN(M0yBk43dTEf3MLL&KN=ibyyIp#bFbHWxK$Z{?1zb{a
z2@!t2_kQQS_xsHs_spDo=QH=7Idjh3FUBX%w|$QgD5#^E-+~7K2xOlUawE>@arv!O
zaZ!4QjT5e`{SR~T44pvm87YHG&%590x;hKf`#Fa~dSu;+V`oze;x-8MQtqkRQ<vAt
z2ER#)2z^NGkgiNc_HKQW666g!k6xrmOGt&77M5utZv6+gw!>zwI&c7K&!=-uFvRz)
zn%xa{K=uoS!SpttG~SpBWFc%w_4N8GO&38=MA*s;+eg<pHMVKU1})p;3`6IaI*lW!
zRH2o_QGHHcD^-gl+;B<i*+Vpc=m24oY*RiusJzygVSXC96*mPfALxp5hHgs745c~3
zud^L62la)ZIQ>B*3qTsyu<W!)6nPkO?{n$crWh9`@cL~aMTT86;tkONnB^6rpM%ux
zV+rQ!MGx+{%_ypA<?HYHRTzS%y?1sfLaR3AY-_hhv9uJO+}sEAVp4edKgpwd*wH~~
zBuTJOZ+o(qw(J+us%p}Y=AMLVM_bMdZ_-oc^{KQ>`1rw<d->8NfuWnfnhKe1@vxyI
zs#~Kux2s~R740hah+&YHiH3{Nak4d2OT80qRIUnJR+uh9V+ePYYO}H6Tq||X0gWCb
z=)sdzoezQJP{DJQPv<yjHy8hu?@jlf#>CER-)Oa|>bX}M+Th>2kaq;$8lOn9c0jyR
zKc1e<PT?H_6Jj+!N>FrFz>bpS)1-sCWgr_-E2~Q$q_*!VLXi^YD8^!0a7eVmHT{Tp
zY6yo(G>OE}x=XHJU45*U$V6rp#km?iHflUMAuVlpx`jOdlUVWPcP$X3bUD1IHMp<y
zFzt}jOK&jQAVdaW(jV<9t1ignyx^mZG-+{K=&9hwdLfLvZDMDM)aw}!Vcvs;zM0`x
zFRZpi@-5jASX?NOs8tgCf=j0(vN)q;hBt8AbUENn-;u9`ZHcM3P|{~bPy|r@<#JkI
zYL7>f4ur>754Ip5Wzg#3??h^Q;*JUIJD%m&F;fxUhY^9%pMhNj>y5Aml>A;k4)5wa
z-5B-Rw*?s3hDcy@#jf12$F_@Hht&^E=MPGQb9n^X$HLI~j$pyAHOWX^HO1|IA)jrv
zMjVCwPvRTJAgN!8e8F!tg?j=fJJh{v_J=!ebdRoM6`9<k>)s4>6y9#fPx~gJdiab5
zC2-gAP+`?$H|^mzHU|t8AEGRf^MRFLqeFk+kqrTUr`Wj{E8Dos+(t_G_s?OaiWC*U
zzXU^gL-x7))|3hivk|T<U;a?<DdV9Y_Oi(rRNC=W9Rso}@aQ@wNaS#Vr!`rdjQ9Y6
zPc}LEJ%p`akqF(hW8On$%RycTJ)IP_MlN#e<Jus|@+eCj=(+gn6}t0o(D@@*E{B;J
z_wXpZ^n#^qIXf}l^8>~6T+}2Vvqp{zZy<NSnIR%lI8Ky%>9lpb<%qpbyZzkp`f9<Y
zZ5k~FNN2C;ko75Eb#Zjp#7kL?-B3xi_w=C)L0o#8SFAH`nn9}3BI%V9rZ&On8sk$D
zjHuR{7;V9B61k8#M)$sVH$I%w*awfc6=g=I!~1~==6_E`<{o`k=QHMrunt0>AV*M?
z0$Xt`WOkw(A#MfHf3$RU9Xl7hnAv3&zD2@rqe3B1{O_$V-3gKDtKrG-Gly!9K=hLl
z<igFDB>lhH1qOz1f(yK%O~tn*!l^E%Q`&DL%?09J3aZ~cPt#VFuuD&I>19k`*@l!D
z@+Y%m&8YE$4BZ4^?V{v$*&8a#+y{qEvi`3lpV24a(K+Va%v&px9z~34aq7Lc*Kb)?
zIsqb*joxB$?BYmyL)v4yr}vA==g)=^5oXHTA5JQ-!lRdj!!r<))jRa`s6X7$<#K`2
z8WPVzpLOYhJKQIWGByVO!mkUEKQ4*Q%Tq-QR1Y2}_+}+PtgKc}b61Pr8~X!f8pE4v
z!N-v7TjeCR1X-7W?Ahz!2M&<*ulh31-oqcc^qlQ0<grC(Jb28@;&27=ZRj@QP~+`j
z@f`pFxcisM$@B7!7okdMi;IkT3;xN@p<@t0t&w#NZNb$mT6KGAY8T;SjkRa1x)Q@4
zWxC!lKHFb2uwAuL9_ql%$9x!VI}+P&QujbY>QT2R(aMz0$~LuCe0I$qMWxkk^&=0p
zA`xDxJVRXu8+Xwm9A$`=X}*b)>>c6&jVAWWrK?!>7nIcd%O@c?BzP?piPnioTumiM
znSR~GCOVBzKOKP_S4m&j>XMlWsJqfF|E`FgN_c!h8lU7iAS()nygz}-k`K+`8S?+|
z_kx%{XuG)Rs;ohi>Vq^&uiUhLQZp?iT0>*%gH%dWcrzmr<~S8bRJv2E)Q3t|!24}R
z@YeDl%tP?zwYwG1_4Jt90G%nT$Dk>53>IJFm%3AJ9@6$Jp*0#bXG)da=TH@q1{+Vw
z4JT!#2jfX_YdRf`>@9sQZKSuxlhD+3s@3W#-D`a6MsfN0Y1R1!?V?|k+ywYy(aC(M
z{kG;h%}k55BX3WjKyp`^h7$0Cp&ZDTv7N(62mttH8&eA*&Ys~@o9D!%OoSWR+S0yK
zrOMQH%Xa<f5Amj<PbR6zjVZwY{@d;5A)_)xGamcELueH@(JqGCt3e>FU+Cn*Z&LMH
zmQ=N%E+@=<lXl@U?C0(JCHtb*@^dEq1apR7DOdTQQ3hT-N!Xpdt`h_9Ty{dCMf5Uk
zL}x!m<EyqRBJ(=#guV>O`HNWH98~8mv~SqHRD3T*^1aF(>N{+G0Y3_#Hwk^vjmJMi
zPX*n82Rt!)j?X&K3~Lx~jP1*CRJ$+7AF6qh9>ElHr=<&Ttj^0ljX5Zb7-Utx2q>E)
z-4DJ^6mi^!cJD3?TbQ1A=e?~Xg@!*J@k^*-$X66XNTN@X!-(1~?|g25B}@EN@62eO
zkE&7`Zt;PG#CZ$er88e|giD|6Q&6lnWICC})@|)QVsu7`1(Tk~cf=1)%=__;Sm-rd
zIO4**F9Nu~jozLR1mdZ9E{S+b6HpUJNI4rk+I&m_y`4-}A;G=X+>$$9%=4{MhIVok
zPP?2TvR~E`8qWz>X$GfVaZo~-?3W3TYDM~NON_$`#SI+YDnP<WF;l7Ggoj+cQCNp>
z<MSi$m<l4SSP1+X6&*XB&;otjP8uO-oq0@fy*R#2096tz*XcItj^RC-9g=&&PxsBX
z;(yH5#j6~!J4S2Hf8RL>3kAz4jKzOGeWosqFvw=_(*C%$N%>>O<{bqN+l3&3#TZ&N
zTv?7+$Xw;;kSd!(dV9z_o<9JQ$$`<R9?*Y1<YLRibhHXtBq)dI{*HXHOf?M+$p?M*
zl)$0Z#aQ>>*k7)K!HQlqZ<Kv~G6uvq(k{$jW}IE26zwuFi_2}w9c>r)5$Uckzl_b2
z{s~XbcE|eH*gux|&FnU|usVxaJ^L1TTRk$;!)4uO$n#yEV1DB1?O@B-P|2Ydi!)kg
z=|RyC)vxGBO~5_4Qdy&;baFWuvAT~nT|&9`EIVJU7|?a<AGjwnJYN3koODFjkcQ-_
z^+okoeae;R1s=<N%)@03AVEMDjZchX(zT9O!7{A|r4{Pmn=h7H>DX$*2+;nSyCyN%
zmY|B!e$q#=BJx@vyjNpAokta!7w*x3F(R%9wb0{t6RF<@WGajs-E&-N!N!>wvrjtf
z#y&qYwafyS$6JZhRAQdRN2amEylfM+Hj&Obkq+TF;8(^V_^g&~6++ax&Xl5MAu*Ss
zRr{$Hmo_||N3ybf4BW8VV!-y%eP03zRpb1u^-gtA3;w%%X=J$`|0QeH9ypEZ!rL??
z(4mUo;V)pfof0a%7Ia@?!hSv}j?Jt3iE)v_u`v=3UIA557srgEF3XU(Gphfa1D$P^
z=-1LTl$JAMRH#`Ygkj}m>u({X7qL`eYVFxF&a%&pLiGj}>wH}w)OW`h##=9qK*fLS
zc%438&J4qBd*$Hi)s@HSLn>W-VR6C}=L+`GVL0|R*pg-gw(TakqK^f>y-b9E<}AaE
z-IC@B!TplBxHH3~7mB@g9upCz!lGa&gc&-}2vMZ)-s0dA35^qGui9cS6YiaWVK^>v
zb9})yl*UM+j<KJh!TaOu1>?&mC6s^JQ2)pk&>M#F4fsFUZ2x4hOX#(g_ZC?cYom<q
z!WfNnoXJKv$sG%`z(?2NI-14b(#7q5>gvPmT_Ff1fm3>Ch$u2Pz2q65(f}gvky2>V
zoN?F|w^OB7QtD#Aw~prf$87%C5w4{849j<pw{zx%4|P+&LSjhp_as<O_E)qcF}7Zl
z=?kUs?5eu3jtnX{i2odY7f`HD;#U%BnLnR|=ihByW^eC#uV@Fd5YKtY$auKRWTf*C
zHjQq)7W6?M3`oFwZf4gJnjN?FmgGPYwkIEGi2wkdY<n&?L^`u3-8$zfrNsuo#FZz5
zI&S_wF)<SdH~u$K=7h>8zq<N$Ld+hS9VT17`bPWt)%)fvygQ)%+rCAgjJnBEGMraT
zX_zqk-C|hO^-2+{Quen)@qjWaAT&b5y9@ffWF0aPd3v&$P5rdqyMo{C>el^@<N3<v
zp9@3vq=W&fH3TGAREk$yTlJ+)6MPTconIhl-;`7q9ZUzFZ6xLnXl|<N@9{%KnnInm
zt8KkFj|Ku1Dwhf&uv;Ya)%k{dBzWplA{{DzIw5S=wNc78a=M>IW?%Ay^|Q3CYzzN}
zG$!nNg6_9#OXJ0nfQ-9eVbbTr)mGb%6Ib)mC{pk-;(M*bP>9|BvS;2bGc$~~kL@Vc
z^98wJ;S_;nL1-y+*Cf_f$o}h(sonW_3tCCh+~m{>$y(o>nYUX8p^7$q&TU5O8?XCZ
zJuPg#4<oze2UelMSN)2JwBx?r;#@U%OUlFL)+bgI$7B}ktQ2egt$IU6*T)yretqp;
zD{Out2*F&3Loi~J+(5qJdF@-^QKC8S3NI#Hi5g}YK2--HvIVlR49O~OCi`y<yO{|W
z`64OYGMj6T9u$UKELhkpgkRrmu4GqOJ*+;L$o59}d_SOIouhT`oBr5WIzby1%urNX
zR3Q1NDtCGq9;8&bKZopykl8d|m!b5W>47*Su=;+LC;M>BZi}yA5Ifg$bDola%(s;0
zin;Jc8KZYfr#*|8#v*2jKQ~Y#ukSpqc|}iC-g-8`))G|dV!TObtZ&9d$sdrd!eu(Q
z-gwHMHR>?5UDyWL8cChgC(gVL8MwTMJ8F7Uh4ITO6z6B4wiMhYLx1y}EDoa2szG=l
z);OC$^`ZnF{x67o_dBfwABA$`;aoXBobSrA(NFt1KMWa_(=WQQ@e}1x){Zl&{UVyq
zal?z#U3o7CNrVkxOB?d9=RKOxH7la&pwr(Fy8mQB;?rtB`!4YNWMg?Pi>Sy*__FB(
zcLieWIOnh1nS?=|tIvs8R+yJpRKFiCBkc1n^;DMgFOMID+3|m2SG=1lhjGyxe^nEq
zea~(~GeSskOxJeGx#}f`<HNU!R!uv^1!-D`Wz2C>H8yhbn%KS|p?!zyrZ4cJ`GKXO
zkVbmx5bYMsl(?CMmg;`F@()gjpZ2VMT!Yf~mYR~BuJ)0vSv5$FNcU(N_61{a5U4W<
zsV9tb9UxR8x#?h1ziS?iF$v1ycTdks6O2r>lfH^oZGTkAoXJn1HB{ox;4S#cTK;O4
zwp(0<6&%!T*0CtYLgPDd4z@6wH<@dyG1H+EE&SE+!gHcG^kpAXp;J}d8rGn)HF&pz
zHkelrcv3a1d1rUIc)TUpmlw2)c#dkF@@hreoh$Hhk3ZIagoKI&aES$VgO-hOugl_*
z*5(TKf_`}#pBv?8Zv$Za`}(h!?pM0?HouDD$a))#x^2HU*f!maRU-*X60?`44khPL
zZOjcJin1)EDtRfzy_o+B{O}(0J8i3iL8_oV2Le4k!D66D<z&;z%a1i%2w7f~n)rwA
z&A4z=$KDY?N=4ltFX({CZQP|{lWBqkkjM+Kk6E>W6sz(zxHNJsTN9+_ZHY^V^p$~@
zzGrEI=GOAUl>Vm_8OL3c1LICNAAd?R!2M|<-E`cvi>J;ZS(0yU@})3+L!%v17@@Ar
zXLCXVl|S&#h4?WK?R)jmh?#014mR}4o&_SVc&~=ww0tsW-DnzxQF5z?HZZ`gAJ&_=
z-xrIa(mjkY*ym-D(>z!E<MN!{q8PuGK`Td!=9vd~F|>GzqrQ=_QR*-*-$`KNl~=+W
z6zRbjfrImos=$QanIp%NfGaXUruUi~Csc;acH{kFCL8f;M__mZ;up5*@jTCR_l+=%
zJGF16+rHdo7}3u~$o7-?`;Owc3CB>X(;46JcAyF*fPks5tE%WV`mk!?QG!JvsqMso
z@?`b3K=xV3gV(cSr}R7AmKRBVB717#xJ~qa>LCIHUT)u{9-N4Xp(Xfnw<W7apzLJ}
zlk~ZzO6qw*K>v+RM8Bzf5dW1qLE&8JN~m|9Z?hk#JodW5txeL_Slc;uy}9d<?h>!8
zamh0fZz-H;$X5-(U0$?!y8H68CgX!!Z#-XP65Q4F2eiJnK{~T2hOUv2My}MZ4y{nu
z%mx^H5bm5T)NG1?jdyQf+ER1Z7K8-kt|jwxq+^z+-6+QqgJbV|kVnsyAVD0pf!l=T
z1@^*i<<OOsPHbkQRgeyh8ResmaRV?lwham8gevn$uzq~xo-_oQ*_>O9wtD~gtXuan
z*#)~7;f{jFtwu8LFWZiy?SPm!3m!{qgv)_tg9>vUyw%_nMN{9<Q3k!3KG)`7cCsYb
z0)8Qyn=&|zfRHj#_~(=7H>3|PVs{834(TV{p*Pb1)EDp-?51fuVxW9Dh<FjYkuL@}
z6xGK@Bn#dy?eCQ%(3Qyo;4hvLE8q%lAKulTp5bQ#g_oa80}zV4wPzz0`~$*sTK5Y$
zXcETpKF~2dDXKIWJg*xU&(ky1=f0<@E#jVKYd>vOB2u$u)dcPYIVfnq;BgE}30_(P
zjy^jqujGMK?7vsrPq7a9gn-#R!s_<KREfME0a;Eo)btWu|5DN5<#NMAZeWmj@MjeX
zB-N7n`1p6Bf_oD;vU7Z#Zrlg2f=dkj$Gm64{o#=3jL!`g@D0{R;8(zCSeqTHaWM0+
zm9gA=#_FwvQBxqcp5V+p@J_WvfA&<zbJ^0wdD-{tQ$Tdc)KZ*>>0?vJfx1d6ve#)I
ziP6mKw6;~Zted5i`R8df6JC*bnZm~OPv_rL`rU}kRLKC{fCaC6WQD%3PW{mg(mR7>
zQ7IRGqhQE#5o4vEjcJ~Yx_XH8`<H}6DWv<~%B!P<Ax>v@yM!RizhxbA0D$ptKmVU`
zM3${A3CgCB1Tp`+y=3_RK?>PQlA1Uv*$I*=<N*)>Ak<qpATZ4PaX@yg1Re9g|3LHr
z0NsDce`hK$q<ESCaql)b06-uv06_hJ+)uOBq?B+Nvty+caeibEN%0VV6aPoR{{U-*
Brhxze


From a65cc2ee6c9c92e34667f669fa7a4a89c34d7814 Mon Sep 17 00:00:00 2001
From: eric-intuitem <71850047+eric-intuitem@users.noreply.github.com>
Date: Fri, 29 Nov 2024 21:41:51 +0100
Subject: [PATCH 096/107] Update startup-tests.yml

increase timeout
show warning to guide resolution
---
 .github/workflows/startup-tests.yml | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/startup-tests.yml b/.github/workflows/startup-tests.yml
index ad27fc444..3fb3bb1bd 100644
--- a/.github/workflows/startup-tests.yml
+++ b/.github/workflows/startup-tests.yml
@@ -130,7 +130,7 @@ jobs:
           export $(grep -v '^#' .env | xargs)
       - name: Config the Docker app
         run: |
-          sleep 60 # give the migrations time to finish (included in the up on the previous step)
+          sleep 120 # give the migrations time to finish (included in the up on the previous step)
           docker compose -f docker-compose-build.yml exec backend /bin/bash -c "DJANGO_SUPERUSER_EMAIL=admin@tests.com DJANGO_SUPERUSER_PASSWORD=1234 poetry run python manage.py createsuperuser --noinput && exit 0"
       - name: Run tests
         working-directory: ${{ env.frontend-directory }}
@@ -142,6 +142,7 @@ jobs:
             exit 0
           else
             echo "Failure"
+            echo "Check if migrations are not too long"
             exit 1
           fi
 
@@ -258,7 +259,7 @@ jobs:
           export $(grep -v '^#' .env | xargs)
       - name: Config the Docker app
         run: |
-          sleep 60 # give the migrations time to finish (included in the up on the previous step)
+          sleep 120 # give the migrations time to finish (included in the up on the previous step)
           docker compose -f enterprise/docker-compose-build.yml exec backend /bin/bash -c "DJANGO_SUPERUSER_EMAIL=admin@tests.com DJANGO_SUPERUSER_PASSWORD=1234 poetry run python manage.py createsuperuser --noinput --settings=${{ env.enterprise-backend-settings-module }} && exit 0"
       - name: Run tests
         working-directory: ${{ env.frontend-directory }}
@@ -270,5 +271,6 @@ jobs:
             exit 0
           else
             echo "Failure"
+            echo "Check if migrations are not too long"
             exit 1
           fi

From e34df4cc371293fcd41ff827c76df1b7be69f55d Mon Sep 17 00:00:00 2001
From: Abder <smimite@gmail.com>
Date: Sat, 30 Nov 2024 17:51:46 +0100
Subject: [PATCH 097/107] Add core objects illustration (#1108)

---
 README.md        |   8 ++++----
 core_objects.png | Bin 0 -> 333096 bytes
 2 files changed, 4 insertions(+), 4 deletions(-)
 create mode 100644 core_objects.png

diff --git a/README.md b/README.md
index f2690a523..ff2284d2a 100644
--- a/README.md
+++ b/README.md
@@ -43,13 +43,13 @@ Our vision is to provide a one stop shop for cyber security posture management a
 
 CyberSecurity teams need to use GRC as a foundation to structure their program and implement the right tools and processes to mitigate the risks, and leave the rest to CISO Assistant 🐙
 
-The vision of the tool is based on this model:
+The vision of the tool is based on these fundamental objects:
 
-![](posture.png)
+![](core_objects.png)
 
-The full details are available in the [data model](documentation/architecture/data-model.md).
+There are other concepts and models to provide other features. The full details are available in the [data model](documentation/architecture/data-model.md).
 
-The decoupling allows you to save a considerable amount of time:
+The decoupling concept is a pillar of the app and allows you to save a considerable amount of time:
 
 - reuse previous assessments,
 - assess a scope against multiple frameworks at the same time,
diff --git a/core_objects.png b/core_objects.png
new file mode 100644
index 0000000000000000000000000000000000000000..614cafaa2d4ebc027752d49d34cf12ef027397d9
GIT binary patch
literal 333096
zcmeFa2|Sc-+dn?t-FMyHtwTjwBUG|gmh45TY)PfEMnXceuj6h*7>c5@6iG@X`>w)N
zM94O_LdG^Uw!xU0-*K54rssX0|NH;E@8|dV{eSQOnfp^QbIp03=W!m(_xK*idELRs
z^|aRhwe>F)3bpp=5zP}Q6o)1J==|pjc&FgSB@+B2Xm#X-E(+x>ib4h4K%wT~t$+a(
z%1s)D8nQs46k|{*t}C&H2Fmck3QKJ*O%xsZ?{P^=B)qfg%8|1!D3qiy@@JW6vYI=*
zxzhEh?xB?ftNGXSZ8?v9!U-dyj%pq_>4_id#CRG_`Kirw9X<Cr^AG2@BQNj&-nr2s
z@p;YW>|<-2uWfR8WqPosc^CPT(WFm!TUSn85arWF<K}DGIgwq>dhcH3ZW3=jmZr#a
zdU*Z5R12S^8>#lv%b&<?-M)=15c=WcdJe%p-@6l@CPtFu{+KQT)hpiRDhYRVyyo>Z
zykK(w@cQt$ID7d&ya&HNJ%om7|HCWd>}`<7KfD5JPE`E<5AUH+7w!vzK>y(-n6*)6
z*+0C8LOn<hTJ;~^{IL6w&VP7Q{o+o`-~Pk9d$j*O)qhL%AJyXDy83Uk`nR+CN2@^n
z_x<W0b}Jd93VKjWon7!~g+GN4hX%dZ3O}ZVgjMECUC)pi7NkEE7drST(<<<1X0w_|
z6^8mLe1QkPwUR^(&h3$WR!o-aS#DT&``Y|`wlJF?>kB<kgqK|)W5CBA_Wo0z9d9Nn
zr1{lr?X=Es;BlGxE<^Yv-cx+rr2)$p7a}-WVWuy?IX8DE5M#nETjsf)xMR(>lmzc%
zyNd^J?f6iquY}+N=1cv>;&)!dcVZ}&!#%+%@p?*sX?z(>iRTC@^|!*yu&#!GPuz<}
zLOt^Ges&{RV-T*!uDryr_lpo-+{($z%S+*7%q}3^zdL`wWa^v_Ugkr<!+UDC?+9x>
z<zoxKf}6Zp;(hFsx4T4z_~(TRyv<M}mT{|vzazG?V&ndSCWrQ<ey;GReAh!~zIT$J
z^07%!P?i<0uO8Rd*2behM2N+ED|UIlZ{b}UE<$(lsxMWy=sHTjZONK`FqaL8X7Tm(
zATz|Oubb-?c+`khubO$tHtjdZ{{J3=|7uvrkXHG($@&n<pf{1CuAyZGeMOlL6afzV
zPkIkG2$T$5!;->B3#5h;OcUH)7p03r4LoK-Ad5e%>#9Q%6V;B^$U6Ebn@>wB*&WnT
zBFAD$653AT11Bp^nkdU<KAScwJI#)|)b$Kl)^=mlChF07+gXR;f}H{}cieZg-RHxW
zMfGBP7j;DY0G_Eg+_C9pBztFSn7KB)BBOYt{@XBd*AXS=O|Kia9py~S_q>dosmGfi
z(yqp;3aFL3nwTi`UYGIy`dq=y(yMrGX!;CA$5gq9mS;eJG*zEJd(V&G+_$fFhfm!N
z$L_L`r>jUH=>bpTBkfY2_FVdtcE7`+-29ySk|FC)>x2abHQaS}?#N8eoO>H6ER+Z$
z!{QRowD*$yK1L-(bBXCGsNNZ*QxCZD(g`@XQ2Gq6e<mCkukhUGOY|_iC%emnvg<x*
zNfin{i}R^9?)_Aqn3?P(qTYg;eOQr+Mr(y`;l%M7Zxx^<kQ&-Yg9LU{&Sw+xO+<d{
zu?HLAs@1_{C+~?etM9t<6;B&QMVq_cOil;s9XdAa<t0OKF{;3+?#XJWlKa{x#*hJi
zcu+kPtPNGH=RU^e;m}r9+nc+lGpaf5g@tP4Xm_Z)vI?DPIl+E5CMInJD>k!lm5?Gb
z1%08~8gr^G`9`Xek;!!M8PCSGcM@92PIjMXJ2sgfiz$o*IjnXne1hY67C+wMg=?UG
z;zX0k<`3JGZ|oGZ#9`%o(*-h))O=RJoJ%0{nJY?Wj`ixNhdIQ3dd8+e1E!1m^8ves
zpg+9hnD_k09Fk6F7UJ%;CWbR`6_M3FX*<VsH}2F`bg=Zj+KlVX#h7*tcL^wtb!cWb
zEDYP8>tQ@Mxp4p2c2n2aYY{X2`KHRw3ZT(rp12SBSE^QW`tZwK)Tx05kUoph8&W1D
zKpiS5YP3E)cH(wWzQ>O`PKvog@BB=?3VF(IEUPXymK!rhsh%5@WE0Yb5Z0!ysEPkA
zF*&cZKG|gOX4s=1Epi7}H1(9ViF2EnVt+>d2q)>fwOVMdY0-26Io?W6xlE>CYUW(=
zYiC1EO%qIS3&$|1T~~7K;2clc)|UdlPpjj*O~$22-!#IjB;+wAR-;w|54O<VTT~Do
zHmmcfy=UZlVXnu>abP-TZJkqSFIEDy75TeI7&mP<7Gk3}Hsf2}{3_Ft>O}d$&pvHk
zGnS=(xL@R7oT$C3vCEOt@`E%JY0v2bI$c^vp-;sY@QLVjKJdJH*0R`oxOt{hBYZl)
zl-4$d*aD}^A<R|Hgg3k($IESnvZ@m;MpI|fU2$cd_qZ_w#V$Ub9=?P53YIl7Sd#wf
zw4t2mY=JUhl$C>7sCO2P6H3x&A?|FiipF@KPM9vGRb?Cod-h9jYyFvkxRJ17r};~}
zONiJRT!zF@PQ?JoH=3J1o50sjm>@dPwd^tXxXqPayfb{v!2E+r)b+}(1SHvJy|!<9
z%E$OQV5Iepn>`}=jNxWg!vt=9P^E-v%zSW8NxEIf{IPwG{?=tz<*DTR75U&FOg}yF
z9v{Xf;0ePL5=uRw%0c0N7cOdQB1?~o+qVrIaW`>pzPK2hgGTejcjtE#*rHmw@i@z?
ztGmx%sC=RN%HFQ6e)wTkRr(JN@HpFuhB~c3=c{bnb6&Q%k<;hBEPY46W_g?V^xWv>
z>@~jcuSRTS%Z<6eE`^CNZYNS29!JxL%jSGX5amCbqC3JJ&Ml*C@a5}dw=u`Ck=o49
zW!AhZL#8qpYrZ>=%-mJ5dq+b2W1bn0%C0--F%FkozoxiJUGCUuoa-1STooD|w6MUA
zd17+seFZm3ySb@eeZDKIEK$P0ESPiUPon9i?6O>k_Acv;s{2NBGVMh@a~ZzhAK$+3
zZAf`(PWB=aJ?5op(=Wu8sxUHxUlHecB<&-_Cq#(284%|{ZW>$a9#C4X&2sURfx7hB
z6A3MPO5~9<vyndnvv1g8Ud^`+Rm}88n|!tY9L$N;4;?d|oyfLg6ZsnNMR*xN``Lh@
z8YMKFP8;2GuCz`#QsV&H>PV|?cuxO37ZhX*8{RVoCQ}uDzuW!DL|*ntP}6!<-o{!L
zF(Dz*I60Za;oe4<+i8JV*@f6!Cl9u3)|x*Uaghxzez>+6*~-<o$XI$tb36mf5|X4=
zYyxx9N_3tO2VW^9)J4MHS$=nHL4OmJrl`RqKF1yk360L=6|MOBiOopYn6eNRxAd4d
zL5Wg4{WbVUu(P&y^?@?_S;MY&>(PEEsj&O^`6$YxfP<G`^#e^5fK4QFBd!ZuCl+sV
z{|v>Jn6Y9z8x2!_JcWr90+uzJqEC2?PmK2j$yjl?AmOijBF+EjcZM!%(KG0>(p)=)
z9LstG`4R*?F587l@o}Ni0%d)PnxkExlGs#YfQN-A*TjGphN6XUkqaF=@~t>}aS0~v
z!!lyJ3Z*TwhFuh{U}x~iox?K1hu4IQOHwKVOq1@Z8OL!a`1SX3gY0y`AaNalah%G>
z+3v8$ZBZh}AwIW{$;MR&7w!dBHfwQ}G<)bw%Qg$29odvHw8!Y&p3w-?1dt8ltCXs^
z>SFnAbiJH#p5PD-=p%C)(=@h`&n7KOWGdM{9ZO19;o5Q!OdHW#PM0#zfqH+hv8pN~
zj$Y={Jc{Jhq@-wM0zG4<RqLX=7ct*T+ebNFZGIr0qNu6{ZZDr!Z9c%=?T=f(zKz1B
zDi;hE;~e)HP%}yZ_9dtyDB`DOd__2>6^CM|U3tA@rTe6s)yPGyxzzP&G+1qs<-1iF
ze)Gcqp$Zvory^mzJ8>x5g-(yhJgM$bqrUIPkxR>VH@~7gAh6+1Z<dj-B33DPpOBEM
z5@D>TYPO{cK!7W+M{^Xps#iaa_@O(2sWrOA-TdO1+`{he^-H1=tY(?|g_<dI+PlB`
zJbI1R7Y5mp@|?n6s>&-N7E($JpHS-e*~Nzk$2#BFb&u*kinvM$We@XLMCv`_hCi)V
z*t*);qURWQKjoZUNx(mPc`eSLR$iPmu2Ml1jFe|&`XI&!LVkV2o22gU)$Fri^P$DG
zIUX5uNK54{g1l&dk@$H8B{-9k6K*@S)4ybFIjuHxq+_agQ)g-Oe%zG2zbvvoG#a95
zCpiA$0MnPCY@ODlKHcVW7GrE{jo7s4Hokqav$G2ZKhPoNBP&;WmwRmI4m_nqaoAC}
zJ>8Vl;?iFgI+0R&b8l@pL|ompv(#_z5w*%Ebe*ctwKqzrdo|%htd@_S*Pd@TC0E#F
z%$!63xMYSD1hIVj-z$@xCyWWj0PA}qqv^UPzTZO?3g(~2xZ*23VL6!&?b8*qcqK!E
zeXiQMbM6(eR(F#G3FEw~!l^QqZ`38(pa!}YNZD)+#(NQy>Yv}sVBWSgU}Y>2-=#Ss
zsdVgp5c<8<<a2}Ip5*K>{;71toAUJnU_s|mhsUqCI(PS*`sl_QIqTt5)-DY${cSPU
zpzJnD6JckBw;Eqf0bJM9v)X2Rm0E#^HU7@h7f`pJE;>Tg(Mm0B7#O%F&hz~QkD=5{
zHY?y>OqJEwA<^Iwt<EjDAOkaDY=>jN><vr*)Ui7ti<$4MZSMtBQ|gCpzVcPANR?>I
zc6W`_i?$_LolYN@bsnl1M=*$F2IBThA(gVzVvnT_i^Jbu(8viS2I`y9<dKZ40sH6D
z*wRl~kR^ck4FZQg-abW&^fB6Xo_)F~mWvWRB=D+uw~Ql%mtW+wXOR+rdW6KWG`xD@
zqKYrQi9$teW_eY%cmFpt*a5t*t><srX$e|k`ONRSvxzI<<PIiv{^0<p-poX{aD)s3
zssB})ujo7ZT*2M<C=eA9NII&-CMxw^EYbHpUu_ec;Qsrbo^gE!gJZ?E*d^8gtLQOA
z0oLHKFTl%x#bpfrtWWBp$4|6nTS-@#(gx3xQYy8c{lbnc5gM(Bxb(ss^;JZO+-nRF
zQU}Q>8nJ9qIARw|{`=De)zmh3xnAERI%itBvKD(&zH`GLv$J+uY?mKt`o$JsJH2vn
zAcX|-hdnCG+Lv28cM0#zT>(<%m`E=XU6Ag^rKJYME++6B>>TVv%++Wo=ZpKFwB`cw
zMf%!kr)9Z8f%?_ZvTC-`vSE<37na(9Wy3uYhAfe;x$0D0&(WUiq_4DM|MTYq`iU@k
zBKOk0Q2TZNDcSPRGyBCfhi!m=mtp=-SB%oGv1)G8`*QNMMlOZhh6m-E+NCTg<Qqvf
zDa$jOeQQIw<#rSIF?OzxgQd>AQPa~wxznB2+OLYb=D3iL1*13h5hZQ#6HcYq7-hGB
znyt-UU0w0+Oh33HTE$vhsa>e+vbNGflu)O8`uJD0k9Y5~VVJfc4@(8Vh!x?5-Lns8
zkA(hQyD*%^bDqs;;jYax#ezakXYh86DJeuPej^E{B;W2HEtNByzTg@o3})ZENAD?7
zQL~IW!JN`IEtcY%X6I>TXCE%k+)LcPFjj$eU%SxZjXN$d=E8k!apdzxJ{9Z!VAKLj
zw$A1Teg6aP_16Q&3|6SHgre!=Q!%XM5iPwS!7m=~R|8(p4LZMgr3CBBEqO_@JyY_+
zzKsi_`BuIrB*>%K&toSOXkQO!G6Mmjm)bXxaC~ToQsV_r`bBCy@DQ(@vXGh-bK0np
z^^3!PeY3Y`D$XutVP@P9k-MXvw3Yr~%+!xnjS<wqw+oxKqw5RBnS*E;A26#>3e;M|
zbKjjAR=ioLR#5ny$D!h8j_;2c7-6~98O>ssiczLWQCFi`lU>tVzqNk;B7Wz>{obVh
zB%<H1ZqQ?RICXuNJl8lojdV~K-c|QLT<Sn(lKBN<i=+{+;xR_y<mz=o4rBHO_Gf(H
zh2O^bb-<iRL}w6#Y&-8UXFPp6f{Rr99sT}RavUS-1gI=VMRmI2yM;F+9-Z?b`rl%}
zL-o<)EXuN?IMZ;|g80=X?K^WQXC;}pJ-}3$@(trvdS%564pW-jGoCR*gwo=w&`Rg1
zj9k6kV!W!hv(BBd@FR=z+4k7YNOR&5bAK!_vSkI7EmDm83@(zVAHW)moA0_a2#<AN
z?Ins5rWiUIv5vLX*E{T$gy#Jh2;cH=P5l4tk~7t{LCs*$3pe;?ku!>?)-0GRD&TKc
z5@!*CC|IF6BX{K9W7b_jX=6@lIm<<r3r^wq?8Fwvd0gf-%~-nh&&8!5R5~Y&$2T%|
zS{-9=-%VY^2p0i=v((5U!p<q&llnQ^aABM)&x>jOqc(3Dt6#HbabY#XO2YHB1^-a~
z1zFf1j2I;?y?8sJ1>f*2Zb2vk8V*{+qc-mt1MzyZAk+%92*YCAzCVCI3V4;5FYfjc
zFn+}H8S!&Xl)U?>zuX$eRZm!EVi93WimqGO#67sI^9!E_Xy~)_LGVjgDMcz_VRjJ`
zh)Rbt*Q~*EGUb9lFB;<+^u&=6n~H@YP=Tzzgn$E&t!@4vKIYAPsgn3gg*nTo$*=s#
zS(c13)~#g;Y`>$HJ!_0dHkHg<U|BZF+wx{Fkzo!`KQq4_usA{Wb@uI>>RBH8L<@*}
z3q#yr=qz#fy*^!ba^cN#`p+8162E<6i8A87dv0<ZLpCPgA27;O<xie4Q({3aM4Jbr
zFD+a#BjA)v^mk_nTAj{n+K5QP&+lR64RM~#PucGO9HJ6K`2<`3*~h2LbQY$kE*8&3
zYLjY<()naAyWn0P@2z7Zv$=#t+5E_0RFJ+ru)#3|M`dlV`npR1e;5{A@M-S_#tLaH
z-4I+!9M@)q#mVx2^64z!)`f3)_iWj-@B`awujAbpCHCV#e9V{!<M01^2g`~(rbMRD
zP~7KOTe&c5xnM)CI8!B18vh1o|IK!urIHdN-NDvkFPF=0Z$!+ze%#AWLTP+y&9v$b
z62=A@Bpt2{LJKcKZWWgHBVUWyws!4Wk^ntZ^z<u}P3^fQ58ZhMHC|l&d^<#n7PJ^?
zYk$cPBC?ZY6K9zYRpTRPxEg=RW{DG}zds#)FHkD2N{hy9Nje;MOzG3(sp<Kk_qS3Q
z9us9TuxP#48LB}|e)UR%=JoyE3>kxgA~lNdaJZ`Secxf@PciEvSoXrE{fumOPQ%#P
zxaN_Esq(~Rqe^-~U(f2^r>k%&e4DthUBXNa2L(N!Jw!fq1qO-zmxHWpE<F|_NuNwp
zpwxUsDCTUd-?n_gH*X$prpuMmK08%TNbTDWbo1QL85%K9%irH0FSBwJ%fhMRi>LvS
z<YbwafL}J0B#??ZnVPStI`MIrh)#LH&JT6r<K$RwwKH?C^5+|~I5L1Gxztg1=@cH#
zF!K)ztTB;+G<0BXzD|P;6&=V>P@>wlPC#WB(Nq1FUw`B&=Z}?KqWz_mPUFPnWDypP
za3O}dOk{+BZ5N4#`jxp38KV8PK>?cTU*i*v*cBUGR6P!b?w|iz(cv^S+=ykMGxb|6
zf&lp{x8>+rXMIcG*%X_~4|hOm{@8#<L%K);eo?Q+jfP>;TPqgpf(!TSe~^-(7b>nc
zeFxeYw(BSt?3VHGA52L?W_Sh}7n<UtewpFZBB98I27uLq=ledO5%K>zt;4@e>tL=^
zcRaU|@3#@Sf$Q+QEd;SD%w<PCB_?Rx!t##`_X=1>PWLF?D?_7>(Zz{J7T)`H0?^KA
z(&i(&y-KQN<^+rB_^^Y09~j?4{cmP1n0HzD=ij+03;3~1CF1NNzq#<X_i1Be9xXn%
zlen3Iq;TxD-_%wx;yUV!`6BFIxYG3$Tq%~|do|Xp|AE1|b9j<7A<p9&ACoDxI6_Lf
zvUDfz>|1Mja=URGxwvp&Qw@cMEXVskI#0LR;BKtqOnfZp;h&vbSg3gM^TT^gsDKL4
z`4Bg@nSoo7fyz;~moJC@sE*dsbe-oxJ2#y&s=W5c>crQtrJH<Ty?Q0%G1?(Haqr%}
z`mbN3F3B<O9q?qwFODQ)^=2tE-atP0Gim2?b~W*?SN^HKPfpG~w7R<5s<$f4z|@rQ
zrBMd<#ful&QkxiKlt-M1V0Gjm?+i#)-<KFB<<uu>;h@STBxL#i)>=~Bn6H?DXErW$
z%U(-lpc5zVe%e3sF&{V5mStGYK>DbNKUhE(8Hjri+-9zLx^Or>WNvQmOrfjYZnI(q
z5}wjUF7+f;awR<$qzdGfe7m-~fz_rX{q#pNvuKG7foeE$`t)W95V!A%8;SPw@bFks
z=cZCG;0xXC@zKl_QP8k~&Z)9+`NCfjZw4Dvv<@9Q^!4jk*P5o57Ok^q&n94<92~-;
z&AfLuzcS{MD*kye?QE8)Wd65nL9M3KU)xo6b#?1II(X4&@zZHXigO)13oG)UKi~1!
z>eW6SFAECxKYaMm^7BL4%=7PWwZ5^|j&-iu0_6z@eD;oAyM`L~6XQ~0r<_e392_p=
zvv&#!RfX|z89vi#BbfQvc#mY_goJuR_tpj>Qf;$ID5;xhGuF`1z!Bp1=H%v9S%s@?
zekA8`8^`an8>`S0q%fM_o0yiiyDD6un?N2IRh%F7C>vJje)Hzd4oS(;2{+}FtPFHO
zja}%1LXt%zZ#2=3ppf1w&tT#g>*D#Uqou~i@m(&Jm6guqP7m^#Gp<ujMjl04nia62
z9KF`n_Ya*qbt>8oiRh)|5~-~`Jmd!j#l^~(E?x4Lm>-NyEh$j}5hNxi3JnbnDfWwt
zi~A^Nz_u!k6;F77K51ZpZfa^OxwuP0Lbuq-&CN|y^Q4gxuA{)k$2Xy;r^oZ#-z(=#
z(l((pFEzc$pC7OG>BxHXX3yr`XEun4i1^_%o;=xhu{QQWzI*53FeA@~o^t)gsy(u^
zf?T0I@{%(CqXmTNg3{7bRjkrzKL6^d>E_l}Zku?oi@VRh>5I6Kk)DoiXlO879WI2-
zH4#~by*+tY<(#o`5~yU0&=ZyWyU%j``0>N<(@8@^PWYkz%a<<%<@G9)$8iO94`uBW
z#u{Nv_yC!%8QI~|rQ4DEs{1e2#AMc~L`#|TCnqO6zh5gqSxAVdG)CJS85wa|;jo=!
z6sAS<<}XrJ$kf#(TeIy9EtS2-`}kX$o13d1*u=M4m%?`TPH^feZ0rC0DB9DnHg<m|
z_=xA}>7%3)e(!-Nn#+!Z9&g;V$t_fg>#(WcR8yuWsi(rk+1XhqPBF*I<mAbyGg&Fz
zm)hP~8=N}Tlrrp6Es>`Qx}4B_`qU}6ozHhkNrgx1DW(eR8yXr~>RMS@Mcuz&C54%-
zj@e^<EMu%5mYI{2BV*s3Rxwourf4|~{Sz<=$t{v)^WzLNeM}KZa=dhDC|CJXU1?sY
zyK%JrYXZNyN2gooXu*Y#cVqV2)T)l@dzgz;d@#sz0Y@yCPb&ePA#Py&zMW_rX6w&L
zUdt`Ay(aqed&cWrL&a6ExYy7>aW!DwKCI!9+byFSBM=rR=Ws6Zg3XUl_hkI$CLLSi
zeaAl<7#T&!45zC<XQ*^%@&;RTYmGSVP&vmAZcw4lbO&48AlUZ>>3nT!68ZFKIxTL$
z%f;vp%zUpv((Bi+TX<ndVIVH}heUM3C_U48zyZFMH1sk<wCiP&&ZbS9oat1u$4>PZ
z85!XdwMtS3z9&sgI;_r~AW%wh^Rp905(kGI>GA1)_V)I?E;Ta2Ii19I@EeHN*r<NU
zl|Iz~zkvsC-BzHc@pg<y9w&0jiHez`krVh@e9sTiFii<v@dD1RKbfQgY7O5n6m&p#
zQ**N@QaBgYefYH(Um7KSNOR-n&4<CL(o72W$Y7{bEoALc`-~DfnbFifF`>k#Pq!l?
zic!P(Tl!bt-sI<<QCL{`{Q2`Bu!?8BCaeGYtFYLJprdjRhKjm(uQEicl-tPE?G(-g
z6hirD`EtL~74RXkjs8hIL#M`X*tmPhoe1H_TjKofRzLlhFJ2^qwaU=LoP3k2@i$j<
z@lR3<h`H@^z7mZ64Oq_NOcr*(2K>ft9>@G`k_CNtD}1f3t@Et+qtOYJ4gyDS{IQs6
zIoMduw|bzd`}XbQJvn{r)~z$8zFs&_a}hP4jT<*sxV4xf+r;PMLZ~H9_;h&>zoOhr
zEiNvGo~x3*5+?c5w?jgd`b#I1rKWc3gF!_1q|_>M$*539vP_$^!KW5`O>nrBm`4Ax
zdh_-wSy@?d?;SFZj*faGUXRIyDjug$Fho^TW;yg*IjhivEWqM}t*z}qBkskimzMZ!
zI~n(p));vwGl-?4(`U174Z<lcO-*j0At50?66f(rE}3=f{eND+uGk`L-wZuHX5NFU
z+Wynipkqb76IE4J&tJVFPQ~25eS62wooyL9SvGZDHme%>|M=q%(hn(2ft3j;CCH+L
z-{Z$Uqv=8n!Tt@I+TQ#3O8$YX={IlQq;%xLCZA3>*&=R~9va3YUj^~SYUby6zKo1B
znL?TVLtj%@`eOKfMlx0T7PtcxiZ`aK>?K>9$#qRTyTJo|<|Zb*9^HN(;WzhZluVzq
zRCXKssyfzL&`KyE#49~d<B_|3BvftY?fU82)+DUrE}1UyTp2e{fQ^s1byG%*q-5e1
zoGlafx|tPuPYpeP@d8hfA;kNPE;A_z0*Pw=-N@(BamSPTrdo2iQMEBee~gs#$~aH7
zip%86frJUZ4=ne-m|rcZP*BjPPoK^pvK7%mqo<~(f=R2yVmClUS~=+t0W2JR`SRL!
z(>sRdS!u?35C<TtdP}GbX{Vk*d|R;}Wm?q+U+U*$*-`M}xl-Kfkh!7cXtUdQ@80D%
z7f|t@Tt+O)gZ*)Bn@}IC^CNe*EC!liXR^luJP(52w9cPDpJA^Qz5Medc`3w29~-qv
z@RO5?m$9l^Hr7<2o~q=xQ{_c!>R_G@IMCoa3~hp9l9jP1`MPsYuo(X&e_Y1kTN7s9
z^X<#0#Wo*g#gox+u*lDUq@!Rjs4^$6_~*OTe!IZlOxHz;!(tn-<*Kfd$xLi@)o8KK
zi+tJQF=8a09^HIM;KOyq?sw_w6`*@UtRRy8!El@#j*2DwokODy3=Evr2^-Kd5PLN4
zroMSI9uQ8HG(2>u^09=%r%G198hOTKzmU-bbRIx-IC=VX)%cHUrG5ySmQzDbl#&*%
zvYATQ@ne)Iz%$LpPGKP2Y^&|N&t(q;R0kF|n)|qQ*#Pzp&IpV)_b=$qu$Jr+Kt_Za
z=Pi}V;n#BYqN!%%r2PDRD-(#p2zcQ4c(+PydljO9MBeFI0W=A3pOJh&S?u%Y&vse^
zr(riNm7RMkDm)vX>8_;m!zzPG)ly}#({{|LtHR<4kQ=J^gV(HjcXKtTOBRq4&z?Q=
z<M)^wOcAT9Qz4sNB1nVcSL6eX$l2`!OBJoUp6omDJPCU&l#*mI9P3hh6n^Mn8j!+1
zc0MZND4-<}Y`wLkIe6(PZYlFp<%f?R8GgjP{ex?J6%r$N?Vpwdkyp&rDvjwVok)m^
zirQY)JzMKB=V}7qhG3W0Yc;kf4RIX7Ir5#ZhWHfb%_h}Z1s`M`58Q@df%Sj~1Nh$A
zI|mr-d0LuI&8st+iTYzmo&w?s5z)S{siE=yfK37t@<#kR$+vhMgJ9>*<Xk$nPgZv7
z{k;w%n51?nmy}rtA@Rk_j8gBiy;C-;njx$ysXAT0tP{1%Ed_AceJS(!7#=l$UmO8)
z9y3U4JVJ+uhNg#UI*;TeUc7usnPRmPb+QgCEC~GKy{M>)&+^@|F^|B`R9E{0yo=zj
zi&M&Lc@qor&+ogdo%rmTXn)NEP5@9Po2iq}AS`Q7w`JLA+1n4Rh8x3VYrxoG3jBL7
z)&z}@kNb=7+qHYQ&c>~WG)-LV50zYe0r;*mgiCDC)FI6Mji2L`<YiO=gid>zmXgAp
zwpT$AH#l>qRYr2hjv$CsqRo>(XkP(xK|DZi4%ntCV-Y;ZvoQ;(J;ba8>gDL31egyw
zzZ5*~E^%n$3kwTF0stb&=p29x2Il4ha1($|tup3k&u)R}M!j3Y(&Usl_j3@_T+g<D
z{krkx=~uV6?7g_XpG(ptX2%A_GjXfKAT;)92+SSNvpxteA4$nTJ&)CNgGZv?PsxCc
zqo|`LM6&RCbxs<f5ZEV0$m(Ka=mZRnAn60KCE0YeP6o%@NTk|1I%4s7yuw7yUd{=s
z9}9e?FZHk>8)LT%L;+Y?*q|!gcXoWHLQEBn_~q%CLm`_hHP)*{?J&X{UO5SC0k}!}
z`F_2Ysi|qS6@)jd`ou%j`_$2*F})}<psGXACB)2flOR1BEuN^=Y*yK|YgZzunt6r|
z*eC*03}z5ujU=K8dp;+qsR7Vx$apaKV#4oLYHBc`w4hc$bEWQylD!^AX-%C}yUUkH
zu426B&ZPoq(UvONch8=|Z=ufKT|6&>EaiwXBy%QiO{anj!158BD>5}dd2*vv>5OHx
zm5_V1f`nOdKF%_3EsvZgSZJAb0(i3G@lWFL%bgg|@{tb>hF)KWnqIE|I2Ehv=Y6>&
zU&g?(sYR#7)T49T$FE#IqxJ;*Et!;3_viuuJ?SOWcz*IoHFa>*-kLT)ivUEe1Amv5
zFx`6KLv|Gk3Ie#H32+3LpP4BGxfdAhwQJXqxQ56D^od;H0YaW1k1h+PjFqXuc2iV*
zU~(N8I@NjNv%H6~P<GzS^uk>b0@itbH#mCqsPb%Iqzr~OFL_fZ4v{86-k3`a_<+m?
z!KGv`3GrRK7E*I?682{s{_YYGVbqdP($c@4rg_Tu3jNuMQHtUYm2>LiH8P<+z&ax>
z9<%1N2l1JEl2TK5LJpV&-VsS;5y}K23*X)G<Sx+d3J^UnlCFM?6oVA9UP~bEQh~nY
z#UcAqx8df>=LShV;75m|Ye2tAMcq_MIS2ekuo6<ON2$wklMvb@rRuZu(I#WMc?q3r
zgOfG?Nk3&?tfJQQ`a84qhvHUzGhwQTY&qklPyy&E5mXLPLIaiq5I=Ab9FSojRXV0;
zgHPz7+SRpuvMAcjxLkVUFGPaHb3Aa|F!iNVL#=_oWN2$n4Yy>3-!!M63*}c)d{!5O
z9`ot$Q|OPe5>kUk5?kgp%IWMO=1P!5d#=QbXo-*^>uQLI2!&m%Je;OLo9Vr`hpEBp
zpV&jkn%4=m$*!3}{jsn=lbIWYijZSx4|ksU#3+6NHUA6YE*!-gv%H+$@kU%{`+$9Z
z5xt7hd*Zx@Qc3Y|-awzJCcd7z4vR1B14svrn0|5{-<eWzXs^`L-B+^e$jFx>3W@D`
zIDC$MBUWYr;m%1ljrv*@#>qNX;mUh}s$KbGy4@+<xwk5rPdH^$-=WZ-?eMj}=kM2v
zhc?{xzzrBAS@s>NL}svNT`99VjEwx$k}^#s4V2M+=I04&A&?4W_wsVM&_^FG^T{aD
zet=q$RWw$(mk50a>T3I;xoW<XPJ5)_{ElQ0k&xhyoXHxv!)AmQ<(=flges3RA8pIg
zK101=4}po%nTg(TeWk9)tX1C5)Z*WQnJ5r%#4f*5E;-wp44rHF*;ako*NTJC{yYGJ
zcqd2Zx~p=D?Y*fvZka%s^v-f^?fLXFJy<4CfM340Ozu;+i{%0n|Jay)L2F`i;V7K^
zSfM8n*}^@q#vhZT?lB4}Eo1!tGv74|F&-^W6aAm<66DGc%zjN#z2|--mb_H(C{)bo
ziN)4+dnSpTrd@XHfR<XT;g=az_l!(AyU)(cS|gg%x1CLE$^&M*8j|7o!bHERK#Kmu
zDEFra2#7xFsZ4#{W^9I#Woy<7Yhi=5C23boT)$5)p6^R99(ow#L6i-ChcujgU?=ec
zmSqAHwxF#+L61u3aui4voQ>Fhw!Sm(xq!ro+k_Lq`1TP9DGOQ0<2oo8Ska71H}rP-
zx%$HCk)Hms-C<eJiscVuPf7!My41Y@w?eH68XB@jXBM42vdVBQN(wO;jgMkBe#-nb
zGTxJR^VUqt%@Aa~2>0#q+2V08<hu%e5cqnacz}iGefkgcXMAEdJIxWaeCq|AiOe6Q
zn{Y*+^b@`0PdYNM=90lUGl)2CA=arpWEg3bKc&6<u%;&X+0d=ByNC+=56yD)VUdJ1
z>!L2s6VNQeb|UA&0=D()hlGb(;i4;`yn~!Cv>NvjOXfph+dmA7l+uENJjq2k*b}iG
z=GQv10eHm7+MmXG0$H;_+0C^f-Ly^}zS_|9wrycA`xbi&khul64%8=E&4q3OPEHqV
zh24L67O7c8oF(Y_VSIc0jT7MrV?{T{&T*rs9;{q_9lP=KUIiy<r*)(fIOv{!k?v0;
zvyr+0rGY@+2<NT@{9HF~oVjBS19n}V88F~Wke8);%-fOf*lEF70Uy|t73s+^-u-)s
zf2Jyoe-OSWeP=)L9SGU7LqcMKR3$3FFnx~~8Viy3pa@o9AN&maCJ&^eIUWr^esE4g
z4!k1Uw4FWSM$LUja0sjQGJu-MmX4qXkmMNfR?H%MPW_d%=Dxjk>sExHMOwxu2M{go
zU10dHEvKNnU@tvqe?(gWPId;EbqJy@!rvlS#_Y2@0g-L05b&pc@nnNGUoYV69lLjr
zaLdcf<AlSNp{LLx1mR_ABXzXhRd8G_QcQnThSKFTy1!cm*yL#Lu@Ws87Z(I%&){!w
z5?3^P1Q=Y%Mt=)C*DR_Z&uaxoO~64`Zn24VE^lEH-Q07&@`z}dueqZzlig=t3qr!#
zLL5dYTi^t$fJr5v-JP8Wr~uKTjA6iBJ&<*`5lW>>CQksX=N?L^OAr7QW13MQEcB_m
zItd`R_IE>q3Rw<rT;a*!?Kv0}cWg_13&MiB^w$htHSr)c0c{1e1Qsd~9$v2|IsnG=
zCeY^z6xYv;I2LgEBfCbR*8BlEn{$l}ZX~PbIba=_E*Ap$0BVoAl=b)b#{i3$fbdud
z;LY#FB1HgI8-%@un!;#D0i}iyjgWD`n})#-X?U+yik6;wN~7D1(ch=-8uKAhl13(D
z^pxjqSLUIso3CumeDKQ7DtOK9syipQAJE@ja<K|0XOIx|&hv!ckT6Mlow<m<{qsLg
z_Q*8zm(|8|hVR_AOu6UjVe2EoGL;X4L<2u;kj3f<|9myER$s|P6*FTk&^*r{bAIhe
z%Wz?Sx?i__CwZ>JKHP^WlGT-+Q<-hoIJf5fP<2mbNbh*HRCs!Ny1`3kHmjg&-N5X&
zTG%(NhlGSg$#0Qw+Abq|M|+Q%Sx@?+vHlQjrX>Yx4VEqGrgy4;cz<r`?BqidHY^sa
ziGf5ANotTfLQqia>+>2yLC=$tgvV!n5m?$^8>jRXkI>Cfw9)&j47=D`;9{dppPv9S
zE4CFg*pO_nW8-Zi@W?<KgChhoK-9nmMvaP&7Mmv4VfmD9@hUboG;lzUG1O!Z$p-K^
zp;>jRO8%2c0#h&O$ImpuT~?+sizz!KuEnr45fxxSerZnKMdYyfI=ShuY^V}I;<-DQ
zOXA$dxVSiHP_<1OK(b2$bD^s7_vy4V_2M^D39)E2<f<evzp70}CU^eiEu>Dj2X3rz
z^$aq^eAm5sa2q-TN;4b5h3r^y<X&_%*YyXWA{;KNlV3FaR_IRsm>bTJDm4S|+u_=%
zd*|bYL?DtOgE-OA46>8&_I0tm3`;~%@tu$JW9H$i+4pN}Yd;VsDks|N>(SxL<41sz
zust)jm$8&9J&OB@h|6KT0yw+lReTyGmmU5r+hP)FOWqW-k>qbt|LLB%@T1S0DT<1U
zJy4_39RZGS6A)1v5BCZQMSiS+3cwb)Z)GX4T(-ca<&1s*`>+aOOe#MW@=6&G%?hx0
zt$Ahszm5S+GJ+{Q=YA1Y{exqfcDNeN6FAAu?S40<r<BJ6#{|$wAx6u?gB+B>#EA;3
ztJvB)0))RdG@Mwo;kKvR#^+__PlL!Bk-+~w7$_ol`EU~B+aV)g5j*jv*rUtKCULC)
zkrP;5{P^tr;|X%C5BRL4tEzB`P;~X${JOg$+TKmg=6^PB1I`3&&gim-t7}DXxSHxN
zd!|sZY7deUmSluF)<`9HC)i>JwavG>)&La@Mhhe(xJ{c$JnfZ}-^)7c%DteGnngJ|
zvWiMdNyWv!<<3xXEPw1mPIJLw`Gnp6;#{GGfrk+Ue|vdZPRTat>$cUKcLz1SG~#Lp
zmL~`bN(N_{Y~>Z-{p@>$`sUdLg-+W#*r_iv4|GI9Ll6r3YJo}L)q<Yf(a}*`2M67e
z?!6XvkG)>Le97q-7`S<g;DI4~1eT0~`#~!O1}e>)OeWi)z5)pps7#(EBqZ39eaDzu
z&>+GdVh$fUd$!FW4AUDX?>%L`=fSpcDJd!a>~=i<mWrr^ipJBqH%{H9nm)h=Ys8mj
zke?M5DG{xiypvUcAfs1zVQ6lo%5*D-4yCojZnSJ7xNc3tu=ot~H0TZ$HWNdA`!hQ)
zFMLi0{B`*7?8-erN@-GneA?n#gD^BFaW#aA)K`oaNECO`?`#hODn}zV9J~l`ORYk0
z=)%;lW49bT)2Kc@(iS=WhUvFuj%;AI=pwV@{aZ(rv+c6GCSkX@xOTRZl2W5tf6Sh!
z*U$cTb#;AO!puA@)^M<&lh+z((3aB8E-EStzf=mOjAl_mf!CQ{`OB?WbeiMp2;m={
zy&o#N4F%Q8TYri=+00bwP<C$uOGS9pdVdIKSnt~SZ3xMr!QbB2_Q2NY<jK%ag_tq2
zzthQnz8Z*+cWj+Ni9cBR#N#f@@qhx{b7Slq$|{6i*a`;?Q}lGRTV5H<55$0nRv3I5
zc^d<qTk*i?sHEfAmaCH^S#|4D@55)dK>kn0`AxSi$3j)#=7b97{V6lEc-suK5=H0H
z6%7;02)SY>#Z*ad;a{cwP{!);g{(G9A0j^II@YW2jur<I$$&*8cjh`3{J38+?K4*5
zaU^GQ%~ph?0;jwT2Qm#En)QObKCpNU%IPaQQ^17+hZd+JnMn2;@rq~e(y!WxJuVs<
z3^nh~?R<QEnZVijlgCC!u|;F0O7-MqDZicd>1k=9zN+Sz0i|fc0m%S2S9kZSsTT8u
z0pm=|N*Of)Lad8kq95FNz1L+M8$!hNa6!6#dcnmnnGmTUe3)D&Ow58mSMDdU*8Av}
z^%|UcZE+yc6v!@M-}P@Shx$|HGu=l$x5d+gAb43~<Q|0~MA^d$C{rBCw)y;U6T%6A
zWtvgk-Q5qXCg|4~L%=C88I4H@sg^9-UGE4cd*cWU#5W}amJAhQE@Xjs>Ig}|tJP6g
z-#l3JP*%LYWn!M`ijsAIQQn)NyvDhgk4{2aAJ_LWvUjpkKO7-~R41RTue@huwgmug
zFcsl6fNv=2PXnU###&$w0gjXYUhgZ26g81T69k}&qhfIz5iGZ9G#jeCCu=LgL3F=#
zYEC<gkmr@i$MRjCy+OP-O)pN}`Ft^isBvCLEY9@=@?{{#7eE0NS9d~rnbQh<P!c$(
zdlO8b5UTqin@JHNihB(A2WBSFE*h1DxG^Y2TS2uq`1n%<22ifRnu3Af@F(ov_?L`R
zSFzcFgRqd2-{RJ#zI+)1if~vovNmH?^u2qBKze{Q!-kx}WAws?hl{7@C$<!D547^g
zJBAjx5T0FiWLQc-=5QbT6aqL80P_T42q`6kBKwo=p=1iRAbFsrR>oyP5OXKuWd~v*
z$YladMF`JJ+jIgq{&f?oVcb)_7xp~x1OnX(a5hqH9`kRzEC+bh5}fowCTa*!O{V0f
zF)bDTx$@gis6Zcl0<B<R?FgZN2wK!mo;+ERni9XYz{IiDrT=PyKcVJgmVud>YT9fU
z*pTpx^9sH9C5$&~M@xpm76^CwPJ9Lzw->491OJ2dtffJ8-LV;f2pSDggao|p?&+~^
z0jNVcBDIS%Z%-n8xuK!US6QYn!f_p7(Je49>Azqcq?-X?bk$^Rl1Su7P047b#Gk3c
z;1X0vEOs$v7}>}U^Oy@0{Kc;^-we3>OF&`1yW=doxBtKBQUHI=#$`H1EGjDC7kF~G
zlP9C>j{9PH(eIaV!CYq4Zg!C~-&FtjKkQOo7Y8*jk^1<n{ZZN447c@IlO4(_{0+>R
z8j%Bat8cPVEtVy;s2%Lm5sNU?+b>d2s}Ik^WnlaSiEmKecC$DEQ9QUPy&{DEfY-4o
zw%8ZI`C*3CD;!-dGDmBvGuJNK9bo33Gp3h~8P4+;C*EazWrqQq0tQ%JoSPi9i$2bw
zN*z=?mR&}!nXrrgJ>tt;Bp+#_1<&bMMr|*Pb3e=Y?mtX1CPcDSq2AxJ)1&7VHm^}~
z_2U71j0+}_`k>BN4tV0|fAu|5FHTD`T6?n79XCFp>M2cZK=n8YNL19B+v`t$E*pB0
z&1@lieB&3vEt8n7Gl%ui&iU*vaCjgsDk$5za(z{aJ%4B*Jzb_AL#oW`&2H4wE@D3T
z;#kZt@;NRU9TFlHA2&cj#M-o)wogtTqvlT?UTzotXH-xLWg5phT*_l4HPh$`tKw)E
z)rsMzk4gE<5IGobV~6uEUfjZUe)g_NCY_EKkaFlY8}YFj>#{xLtgor*+e5AkU&UFa
zRXL^`j=>D2+C{I9wdk7pA!XG$r%S5sD)DnnkUnqO;X$X$_|MN|Ycn#g#}&V<_yE-Q
zCAV(9ujNO5qsiU4O>K@u@%v2wc^RMln}}$1b)~6C#s<czAXItGm8*DW-iGX#wD-E3
zGEHBbtAOxnlw2uTI#c<m$LaK|&5PIHIa<Wn*oD6jx8ytbCKeWoZr(i;=}DU<^nQ2p
z6`m%xKXN~-zG}9{MwKT^vT%p$Tzz;IT-hMW#0ebiFd-@kAv8pyO*o=Wt{&x8_LQd0
zCeZhTjLo%>qfg1p#2&AQmXil%6H26Z(5`pUj45z8{xZyCWEi`YxXoyEfr%vXDs!HK
zvSKNwY;$J*sD6(9%dF2uwAsM|^WEcb{?kjPhx|z)oe-OuuP<V3mRbJX-pNV-U${Zm
zH;&zB(>vCik1w!qE$iKXU;2v#zQyb(W;a4I&XkYff&bbbvc&uUV!Qu`UMl@!9j`(J
zE4rXiRQ5O<`hrR!r<k%5eD$*b)F}RkO6h;kvaaZu_>xAlwOOMN9QwBw|JNiS{lb6h
zrFk-&rtYz0vL8_3uv575O?{-hOl{$)lJ>I0ZIgqI!a_X@7+_;nkc!XrQ?{=zDY^6|
zFpdpscJ?7o8FcsJY(F3T57f>NKdxr}>^JV|aH-QRT6`|SK;)7$Kiu*6@|BiAos!_1
zXQqEeyn&{ze4<n-FGML-kIw=)2z__mkFqvCf;}W(v24q<((3ShzxH5Ezzz7~nb{nl
z#MIOX_nnK^N3extJzgdEk)U>3Pc_w%{-Ld4X5=1bBc1luuu*aow}=z;3}jNcoGQ|%
zI}xnr;~=$94hmOpZn^*tm;<V7{<%mZTHKiAdN+9|%f-2IEoQTTT85D7%v-|-Nlt}Z
z)1&PI!=+g={IsGfP0W)_89jKCj`K&6=%=Patf^IeToQaaY3$qE>!hYl;@(p&Qq-%;
zb72&#elaP4A|kduH%O$L!<Q`IcXL@bR0Ib*tjF~7IDaeuJ6oHTJfM~WDsKrP0i%kb
zi~-}Kx%e1Ex1#_Otja4^_4d{Wj_FSVSe9>oMWJMCGc#$_FW(L<BZX;F=G0z>&Esly
zi*{SAd7yCK_bW^)(W$XY*N$~80EJq@y$XszLS{O3cWIhW3D9wXHme@*KNVf^G?+7l
z2z`Tx5u{?x3PHzvmh|SzN$*?FP3Sf`q_^wi@4BBY=XRT#F9@Dq@Bdnsg|Jbm9nNg`
z+T~O-RjujsDG;Fk(Q@wT;BGaw`mSteL%hg8zeATNHB7Up$EvYWauxS`ct~NrrcZZi
z3E*<prUr8^k#XfRkz3@`jk-ZE8zfl-LjZ^95}6rb^<u~{i<7wE@tKF5P$&_d|I{FH
z6-<tTdEYPEqD!>7g|rWu7|!KCsc#p(EHna(&Eq6u=5d%%0QX$&&`uN{6x67vBtbmE
zTIG&qOH$#E^al{HTx4zUOE0)TGiy(@i(Vd@=%hSpP8mUPu?gn=TIc#hT$Kw*lSNnt
zaIz&lRZ$3FkMp3OnjgTmH%k6-qz$?~t$wtO2H!I;5<}pwWtWX=<dQYU1}yEQ^hM>&
z(IV%uhZ!lRE2LMb%zSI<jV_zFMsB=N`mbiq``hnAi^2?$IsbaYGy8Pf<@v73@Mor?
z(w`PEJz1(Ns2}5*+mbuxPgWv@v|!L{*H+(LWM`!<m+l-<*qksju=hqP>`JeT(dQ7C
z6wJOo2aO&-osVvhu255+@J%~Q3G;+p!ji5HO%@Y%Y61wF#*47b`pUHpiyEN*0!d&p
zUyoJ?mmcL5t0J10%3kyzzm{FS{KVZY@{;{0O*y!HdwQKar}DPHi#hF2jGvjosqy#X
z!u5+5DG)srJFreB&fdq2G<kTuKe0_mT~kvhR$7%GGr}Wd*HfWMm#0%O`bEqKYM@Yh
z8<zI<h%Wi<^~{Szc@DoR?K0lk@VH0rcIDjTU@aVZnAv8{ZjUlboPy_13ovq~T3z{#
zZ84YJi^m%mmhJ<-gOsW*bqulThqE77FF2FZ7ITaWB*V;?!m=g*CMe6t=fgpKNvI2}
z$#(|B4>d5VOL$~U|F+T?Oo{o808Tb?{=@{FeRyE2Kl?Lq!PqX=J$zv6gwNl(WXr$a
zp$J1doM=kQgq->J(DMTOm7;COz(4)-%TeF*7X(Hr{~Hoami3l9>#<oLF07mGsaoGv
zhQZ)PWPV3{1siOLUWz;@i<2d!IUcsGL~6;2vc!Q>|M=<YQhpSAfAsoFE1bAm7#6Ei
zKOU~8Q^afWdv-~&a6K(!y()J~?A2rN@Xeor7;ZGu0T_<hE`_x(7J^Irs_=yOFY~#s
zy>&=}9O=Hld<W(G`n*l%YUGZrU<cWp9OtPfx`80ePEpI3z-IZXUP49=4l_5-horrB
z(Z7W*yIEDWW1n1AC089*&HT;w1+HK*W`-VMyYIGnV$w~|nX#>nlFPZTBL(hOI))g2
z>(-BVi-pN0bhUv(9t$TV_(&pnz;m>~2J&8o192X-Ss7Y)csLvc!?g*_9`S`*=cZe4
zgSPCrF(_<9=(!srZZ)0ufb^(r_AMmhhmR7}=(`jZrz?2CA*30X?d)nRlFy_j6WfzY
z{egCv!SE_v5%h0p-dv|Vp)=pZRg{FBZMhr3i7*V^vvH|1KWcV5&kYJ-_5H^qoj>hN
zd1}h+M4Mc6Cda-aSfaDAEc}&(1b_Y?*x=|~r|_U1D@t`^q-D~}zTe6pNDTSi^2*8h
zGvrQHjhJ+L7CwJ2%cu%sW1}QmVTE2@{AMsQ9yHoKKV9@3=8bUav^*IHG>X*dL<2NY
z&GdGM4h=obuD*G4Ar&9QsbLYoLn_)*ZhOheX>5ufcj=P7)o6#f)x2kSBV+5imGtyj
z#K5;!O8si7iZJ<(4L7R}gEP1Up_)g$%w2!JErDiN47FUl==aV;EoG`3$mz4*iB5>w
zYJPX>UER|3=lN?K_vx(#q`dX%Sp9k0Y%uMhRnqV}kwIc!H<s>dZ@O<^$Ict8j+_F>
zk^bsc@Uv$J@yQHjR=>m2{T(tM9i)4<w)uM(xQLx7G|6AEacv7`8+75`ao@=s_>hL{
z7Q;u1>V;|vl&XPL?jueo0-WDz+K=&=ea@DN7-}BySaw%*h^?8zj`_6J*F680N&eEh
zBb4D70%U|EnGZWbm1j17JsAX>G3L@PYlM-LESgN5Sr5j}z)PDH-nt4XbH~NedFf<2
zb=cFrx*5?>AEHaUx$pkw4i5~}B(tl3DAfD?w8%(Eu3YUD6wFzbV!BoO)`hCDkg@_o
zdj9Aw<J*4S)KL$3NT4G^nk1X@hZgcFxmP$~NIz8b{15_3oIWs~|BX|?gZlg7N@G4J
zElthp_5R%5Z8K_!QHkYpZSAJ3LK#2OJ(VH0C<T^RI4&gTOD?JmY+q+oHd&2$(%Yed
zU;Z|T0<j>90}rv>uf)~TL_4aCpZRRIO_BZstJE__YsYYgzKt01{E-qo4S=ZEFxo5%
z0XhhBB*CBHpMlV_nBokL8_!I)hQ7$__Ajbq#KaEQ_X&S}|Ko7y6G}P6NF5WGDVxM8
zF{K{yDe<1T5}y#t#;rWPh6#nc^^}O&+0{(S>qcDcqUZ;dAT}sNFy{0__H!-9JP454
zpXYzW7JyS<z?H-y9}X(C2!@HtI~*%g#&RyWeYKKleUrujf4}KZKxF1A(|z$GZ=d^2
zmQnM}{OpaoInB?_9|HZ|H7=ke&+j)wTTlynI^D{P6^fRCp86`!Qk+IVOQS^fxD(v%
z)Pt)rBONmhJ&!p2RIc|vR+B0lZ`7o`PXR9jKuy)(>`)@LbIf0ico%#%7zUCfh|a+&
zc$+>ocSpF3h$DiH<;flQ27p8ghYWxPYL|%40M3rL*H<o3Z}oYe-;q>7ruRi%Z5YIM
z(K+RS>f<BrWoq@R;$)@8805a{iVpR?ny*wn4bp@dh?M{Z1%<lkI`EiGm;xLrc*O$3
z>Z=yPqgXz4kYlg_ctz(_-3AZACC3r%NRL;OuO}=sK^@kp`&LF(`K|Mt<{P`-XPOi>
zdWvy_<SN1MSw{Yf^`o-|Ou7+wmu0L9Z>d8@Wyi8#s>&+uL6my4`n!>{dpRA}fBQ{(
zt3SPWR+AA9PhNedpAhf9N+iif(1~URy2PRWPOG+71dnVjA{rJ4yhxsdXrTPhLHwjo
zI}hM_avZb~39yz3JkG?>X~<U;BoWaEyVt$u49M(x_)_hW?P_KUv{a_~_B*qf5wLBR
z8cyIOE?>FssVN7leAV}~j;|1a2O7t8>9%+grY~B|q5?R(kV1#8k?&=127Xt+kQK>E
z<no_+|IgWe)VCOMI<fm0i!luPlVzZbK^qd;rA=Xb_y5{@N%`}+N-6h$MK2}2K!W9B
zA~N?ss!Yb(zW-y@zW^%+`@w>n0cJ~?2WxVW{rwlIan=a`U!qm7m<$dL-3E`*lK@Q}
zV1?g)Kec0H&(lb~p$Yvb$B#fU=-clN&{mS)LL41ktex%Hxm3yt_<p9$-w#?9H@Cy-
z9;g#XLg`94{pCw>cvuL3k;fSH(m`XD7(54HE7C}T9DIV~>06NYsne(LBf*z9+1RN>
z7Fw8Y6HSZU4?%gW2wH@Z*N!cVcouu7^xZY&1WAmN$Ed+)=ylnW*X3=WK|A&G^dT=V
zFMRb13vM{8i}ag?LFHQ>4zvU+r^6wv&5|YqE&>6Z4M$dHbX~2MFgSbm!89uk;?`K)
zV_sq8+~}N{|Ll*Xb(VAe@?~v=4rs00@L}1N*a46ek5h4GUERc!=Wvz?Ixyk%-fd`(
zfx}fX=m#~ew5G=gpG4T!#qQq=4H>|JNUz`<oXS*#-t@(=q5iIw<{-{kTL7mCbTnq?
z<Ul7uCAto2aZD}=y#f91(0+$TBge_1@Gh)KuX(UH3A#e-S180obK}nRGTPk0z<|O~
z0jw|y&TvDERL@7T1m3LkI`GT{17qVy1NN6MZ>;!T?D>LkW@WzR0ag7@=a?x<R0Nza
z;d9<#2t5SQ$MCG=hM8>GGZRVpj>0xq4-Xu2Y8d1ptm**`x$|!Y<`3+H{uo5i+C=Nl
zLN~~!cr_qrfO?LeG_*Nrx%oX(bi0IS5w{khXjYybaSi&8pg9GN&V;TA<mnX`_PnQy
zcf7y8dtJg_UF4Kv(eDAh?`&^M^EKe{TW5V$p{oOD!rh3Rk&s*#(Ax?f&D&#{kJ$)7
zyDb&#q7va?+Gca42@iULZmB>YpvTvi7Or+^k2~UX7L88Yy6d+qiO{Gr8=)$NoW2H8
z!YoeBH^Q9|jWsfoADDsOk$gBr*=Xi?(Ac;==FfF3AAnN0Fhh@JwlJWyU<2%sPFv*B
zA3;ITv9AmbAAz!3bw8hV&%Nqa?D0nW_dxlPK8w~89}i8<8c+x!p{oTQulu*`1oEu1
zg`xU#mM+Vmroyv%&`(>UK|shs;W_G>bU3yJrf??H@(>(zx>`O9zgWUa^!Ibh0=n=-
z0d0te-1onCJVG`JG!l(Q8|OK~|GgpAFa<gaV`X~Cvd|xr3D5-T^RWCBwe!x$HS_jw
zkz4zeB3F&kM#m0&dCeLmJVHQosUOAi-HlZUDuw2*%%Lw74_jTdj3r^{=j{6Z@pVkG
z$J)++X7*XDAA{qF$Jbb%EAe(qgPERL|D(%`5Lej(dVn<Gp64rro<7)*%}7fn=*{|k
zCwN2$JXGRo_ne;M;8Rr!sD2WtdaENmss&aU<VpX#GpkndWedESn?H@WPl9JD)H&Zg
z_@sM(QDGr+biBU4-k_rkb`4GpUXKrl_G+<fI*9TQrX=t;@Bf2a2lgJCp6tv0kayd=
zY10wutDt!)6Q0PGKk}w}MXU#-&G(jx4ZM(3!oXyfdcx66<XH{SHG`a#+;QvZ8d-&J
z$6LF%*|($<UCQE=JVdWa3f<zbK)P6wlirBYYF5B=L7<bftJtgZcu*$CkjKDWkq>#a
zr$8mU84fCHR#46d32%voM-XfVv&@9U_nyeX7idTfwrhM=2@kiSthqKatI7)xW|0%x
zwh?9Z`A*j(-t?@jz0K*SJaBK_j_}E-Izn$Ij-O|eKe_B7;@<9P@dr;0w~!0NL78vQ
zP7rX3he9~0(20f|c@t}PJ_5~TV)34qAKsRCc6O4cGB7I0129wxO2zjNKKVj$TWH>g
z&cV&?aMF74)P#i<{GSEDV;&e*p-wi2jA_9D;98+870xP_=EFJlm40LV@Ys<9b*Jil
zni(!S1R9aF@9#d!+xsO~xE`8`jZB;m^$^Pan4X(={~}h~nF<Ydm*tFo|C~U4GxSxh
zvx7c5o1XL4i2HOO>r&~nB2Sg~s}BtiTR}%)COp$(+s&<fsf<=+E#*>Z^g|B&R4gxq
zCi`IEvHZ$kM?l!p{L@hG5#MQxRprMWU?a+j&`6K8ORwAcZQu$#;RorxGF$dXAhdab
z35l=p{X##kejIaPt%`M4+nIu^*3e;YQSJ@YQM2u(OIuw_!L3)=IBU|+a|J>(DXt+|
zn-W)ML$`Q)EeUyUi(@gVYMZ%_aM${0`Ge0M-J(uh`EXoA#IcB&+v7DlGNSW4hBv*i
z5I=?9vE_Y%Je=^{vd@+j0bS1E)3qia;9*C^J*TfAXGh?aK%}VdF8_4$CJWbma6rgm
z1n5<F{z9pTg+EVC-O`Yg2L2sd*b}zt!-)dD?3N63HQNo1hWaW^FEdI?{L07Vpl2)C
zB?p<{IYTfir0EYizyXT>zECwUJA3=P2iVh?Z94j@vwcCVM_C{Hyi}1mej71VG<r3c
z<nHNC&;t$rGH{TZK5#(ey`n#S75p&_nV6m~33kQN4o%&b&~aA}vbHyY{x|47Bzqs9
z{j$6&kOt3EaVszM=ASrH1E-0hqm9E2o~n@8O@)3}D>(8QTpB3guYh#u7H$rRcPyh$
zFUx}qdV(}OphdrZ*hS&d=fmK>5IL0B<$xTJ1G!evNT~7G`P-iK33$YhT&?m%4Rnp~
ze@4gzH-q#cDh#J(-P$<rdc@Dq&v!sW;5Il1fyQ%VpuY<rZF;v6jXdvV=DOO<bz6IT
zo@r;~EI<gC6u<P1|Ha;$N7cN(|HIqq;24uoXrLs7gf#97kqnhFQ-u(sL8Wn5j-k2C
zMWc$0C80Fau#L?`quSEkmUiQAx1ZO&YgeD=_pJ5(>-qiGZ>>*jIfrV$hx@+nYkXa=
zYjG{dz>9Q1sWdjL3L1D{cCswOj#>V*6E8=&jes!)ntkCbnBysGo{eB(l5>qUOZZ+(
z+oKOHRR~uEC){h={q@~uw6R-_kU+zUp#D(p=yk~`eU3%bV9qC?PSU#*nE_$mzTU>B
z!=3K$xfdEVE*+c>Q<Z;R5;5NN!g-tm=Cu((rt{Org4a}5Rp&0?Msd1wA`~V60GvKm
z<$?JF(jj2>Pw`dPfFVOQ?8QV!LV-wKTe}r9mNW21Od=cmqx8gM8SvLm)DvZJE4W>j
z+*zd6W$A%eOZPn8KT}_mV+$u>p@e8#LxbnNErDHk5)2k;-!<?ow@6u5=vICvac1Jo
ziI;$JZApwpKk$q!O-Lm^k{fH3Li#b%{=GIX;cVRp?Mk5h3qku_pH6`KQnt|`>mtn;
zPZ(n+Z*X>IyU*8wkwE)~f0JkcwQDaPj!p<T0DNo*3qlT|2|-5-T*I&RL4)W2!niJ0
zy}`S6Zs7^iPa#LuT5s-xRE9ZoqQacA@^XgYzz@MA?X@{N>ZJ4NXGbrw<Q_A63ZRt;
zbkW2_v&H7@6M>hM+()pR{Q%WCMgnQgyC)Ri2D~S_x5@uVhFnN=ZhMBn^~*=zUy~sX
zUO;BT8(}<6tXfiK21pm@K-{!wm@H8B=xL{N#TlTE;B{_IytIzAJ;j^lhZ)xxkk`+k
zXTXv<(+mmERVum-+Ht#_VtviZdg{?^_M3mH8L|})3_q_fxwzCKW;~niPgt?W<bTHr
zzj-3u4Qan~`Q0mnKa+L#uJ0;v#zmMpSTJGs8kkjw^r`l+Ub9RHYm(b79NU@b<DFe3
z=5YYX+*;M}&&Q(-79j=1b2;6k7VxVv^ESW<0a)0l)zY;i_<}z)m99D^1#0B5xDC8J
zuX7sV0eDFb$+9PKNF@7zjQ2`Mw?V*%*HDz+o}OSO$VPWL8op*?GtnE-Iai`6eCxvE
z$8E4l-4mZRw6yr*P#saj!$$>Zs4i(15N+wG`|ZIB*aeRlNLV=X7HF;!Om;IgEZq*@
zukGz5d9fV^1%=6N$<6*tE;e3CUpIf_4w#A%yRZ8ME?Z8aquJaP`*NWz5k66^qFoYN
z0qa!XJ-CCqSD8%amC2n|(SQ$^DmD_rmyS6h?~fh<<QVNlVXl3R^S_k9hnRf$5m@aN
zyAv}wt=cB=Zh<UE>DP{Q!KAf4Bw%1K*|1G4DjM`?5-FfpDD6BACO6u+);&PmHpgX1
zz;Noax>M6Xg;CWCEx@;6-wG#eS-OTx)tgv*kMS~)ahbfe`HJGIiJVJEApc6QPJh4F
zaNzmT_gB){Vtunuf<tZHU4#C8AL`C#P1RpAV`AF6Ajp{qD{Y8IM|2o~=YE5RLjJP!
zbYhCpu*+u3r{^6{plS50UNJ$=hzF=1FX3<~lVkJxpw!YOwHzz2!Yl9`?gv}Ux%wL6
zNbUSesI;EG(u}ZgF+e95!diAble}2hV~^@`56M%D+q=l5b2-cyqp7mb3{7ZunXOqI
zb;$|n0ea^?e=FXISW^e+FmiARWdk#vK<cp(#vIZL1#M6Gw(O`X2Q|Xw+w2?i;o}Ii
zfu^4-nvAC*U}thTc$dI>dYK#Rix@l9JP0jE{D<4Y&JYYVn(GROd~+is>W?6ZouH`1
zm&(e}f6N-TtO;HwVUJIPXY7iD$+)?KI<<xweY>@@-NVPoK4-dd+17M%6EDfM-|I-F
zq4lh2<lTzkRGdSvL-$-XG#ffo&3@NnM?4M|qfLoDrDCz1T=UF7Fc5&QyE3g2&Rspx
zEn@3H+^I4S<nkJX2;>c3&HG_qZ0+o3mQ%B$*PQ-Vz;yAj45m7tI}*w<5<&lmaJBWX
z{BX@5cZjpHHp>^Wfv|ZKR4RJga}0=`+}~mK^2H0*#OZt_Aw^n;U((Y00FnbEmrC?q
z!JKf~%D;TM`A@{&B&(Wd0f~4v2auQ4rgc~OKnGZEdLzlBfNDLzPR&0TEAT~V%DQCu
zB+~^OmxH&VC!!4<2Ga%Sz-JZjybv#@IaSc4k72GMGG&T=E=r>@Mzds-&i{3B+@v3~
zml3+QjB==Sb$Eb;A90bKoDZ5);DmTBJMfC7b{uY5S|34)qv;HauHszz8IFG%c&ohG
z;(f&(bH0@Jdz6Dqkbuc?f}&vL@b<)suU>H<&drz$e*U{icLmcPl9bw0>qC~Cr~n|?
z3C$W5!kBzZZRR|$ES@VD4{0z4L07Fc2=YwP=-XcFBi}W<YK-);j~)5oO1QBKm7&e2
zjLXugbLO=9YNr3P;qCmCYK{fLwX{AL%`|A+Mw&YjAS|yskOt*^A<r2>(t@%JV-+PV
zBFwc+%Hc(io80*R=*qO%tMJae&H=yx!#1ltYl1-A?1Cg$PM>xPk|RA%5zW79%1P#R
zZ#}xx*kT<}R}0Dz-pi#E*Y63&6~ZlAzrXlpsd4ZLNr@ZkSCE^Sax!D!#ful&a3s9X
z%pWQmulUoyDr_(fK!Nzl`9SV#v+f}XX;zx{p#H*R!l0q>&>B&X*Es~F4=&C!vU)RC
zTGa&2EbzPmWM1Ay_$x?Og}B4<^5OY(h_j9h)pyzWsbZet=(<cSbvw{7-82sggn(WJ
zV*f8q6Kg{s;;C>BoMWgB_T;)|h$mhT8$S2uo$(Wopx>sgBMH_a9>##UC*cg#ihv}w
z$UfDA#+hKt^w-s`*u(ap*Y&&RwjrA`oAi-fTqYKa_BFy!L3qYqwt~Wd*_{OIi8KXU
z-2x8|63~^gNwwbEo96r8sON^yyFW=@y(`?#w2+kQ$)5{?u2g6%m%d`R86rk5*1nRO
z8m&eCb4l~a_OS(!k+t2k8=bGOcQUqtb-KJuAI%dHrKP&p7s`~89^3Ju-K4$hZ}GJD
z+__$J(9Aw?uXI2s`70qYft1B_8ui^&t!Wl0;3@w49Z?JC?A_6oUMm=3HWGhIcIwYG
zfn%4Qs>%MIKb^hD&`?liTF-A&oyi=I+MV!HI3&i^lh6~h^x|Oci?VS<ODp`ib--e=
zM*n{JYiPG<?O0oo(f=`HX?k9Lhx8mV_{%fltj8noVq6aGVYM|c>xBBI{fIhAy9qpi
zl~PrL&q%MYl-5y@bFO#&eT(7qTgG36dO_I#5?lgB5QzxWkpJ?9epZx{0{c%f^V|7<
z{g8Cfk?}->%VWb6RS2qfrdmvyv2L|N8lu%Q&#$i$P>m6Y9q5bO)pPqJI?^e++G}@l
zoeIqL5FYQ^y}NU+w=KIhv3uf?rj{15-${rC#D1#=zdu^L#iS1fij5Tm9JVP+1wumB
zX!p8rlowQ7RV5*)(PMXaYnJVc@ZC}3A;Rqg&TKfSxowpxI!8b2>>&C-pfAZ|{QM2t
z2zyoF7rJWOq=B*$UX4K%yxy*4I(o>=eBwyIHLs2?-_<E{k=4Tp5HXQQ_iy~udgqns
z;+Y?JH;$=%;gSKiM6$3Kkw9Nqe!Vaak~jP2p`(LGX_1|)&k*$N(Bz<@7Bl4ngg2y7
zC|*C`{ZbqtaXNON&{;(iEST{6IA_{})sSYtvI>Z;A32Arf`W(lqsiBE-2SWSK>h$k
zLKV@cc4`Ln%(q@N7EM^5np{|kLguUVbu%`u1C0*am{?6FFHRIjnC2tvGNxJlgV_2`
zh*M|EvhaLC73ISb2GKCU#&-pYWQ_}9f+tae6+{(KIJBU@biAamr)Ni=rY5hNuVQ+~
z;C?(~)4w((C?Ur+6-y>Cjv@Z=_A0Zf&Y!eOGwzn5dzsf!27g;;wPAh-p?B?dN&l7s
z2hzB-4=Dl>6Uk&f^j~TpIt-mwo1#Nv?yxwsX~mo7F1`3?)A}@$q)PgA$9%duVGZi!
z4z*RfU!BkQ6Aw+s>4>+gd0Q*+w7c5PEzUy@-afS3w!KJ{9e`$$ZPzj@^JmqR+(nYX
z!)dHuT}Q9bl<IlZw}B`kwbLb;_T}h2QvT^UE+r4y7HYfE;qJCdfi}$>lm}?+(|$Hq
z>?twZq~y0zJG(XqsYRQELLXK?Ln}Ku4Q0oWOBs`hY=al^K%1-yPuPb(V{mwG59Jc}
zL2y{XAgsz)zy1w<&7nyPw}oq@^*ABk%sE3{KhMOW=2EsgRbT;WvfQO8DIuXaLtyOQ
zsnKTt?9|RiNAHn0|Bk)-zGvnT53%UUfmu@rMe2}m5`0nbwOgS(cunZoY-@JS+O6;x
zz0PEje!^PosfN3E&xFP#?Pf<z;M|4~o*1Mdx>SBS{6WuTSCcv1J>)C0*QbbSUX-^^
zeSbW`bO|L+ekfB%GKFBTOQ`;R31n|7tvh_M^^qWDCuy~BFstFjjgm-k8s`+?Asngj
z&CV5Tn6_>%d*|-mia#0t=T=DFGvy9&;{TX;YinnVWH{^$IahY_WT0)u^baNFNaiXn
zOwYm~a5|#QZ_Nps@XEpH$IHkotT;84{>vr$N*mpVDJ%uX?;meqx8cSwHTEHxklI(!
zmD)W8H4G@PX$Y)xy1=#jm6_z}iL+h*;8YkmSrt^2XtWrlr#+ivQ<hJ>^j6{FP{Mh$
z7r)Nwu7Gf11L6xD2u}x1<r9eafJ=CnT_bq7$|`G$j;$}2%J}?dcmRZk5$u}{_6Ob8
ziqU;wsFDWyn%Na=z~Mv~Rh_9JAHOYd@nU=@Z-Y&uSvVsg+VS-1P_~9Ns=oBU+XTx6
zUbk$-55>!64nNC`IUoB{#~ggj9E-VnNktH3Hb;f3{zPcp9~dsW5tshQ(^Hw*-(fn4
zgOl~mT7R4LwAjRj%oQ<Kw%K}d`prmQsPl2(P=7tA%0!G=eHh%z!gqCa9@oEY$6_z4
z8XtEcG4`7#o;ceTNFn)j5WsH!TUgvxoDGtm>gFJixAFcZ@dN24h|MA8iwB;N)rEt;
zkwqJF5~N08C6s|gMCDI=`tY3c=^FiGN?bJDve!-}ULgr<8Du5C9P*6+@#t~vX7zax
zF*ucQs8Pz;l%hTE8LGYCepfPcYd0ij!(zApxL~5$CV41k^^_Tx6JVW6nh=dxf8A#$
zt~8%i6o|(6-}_JTp&H#R7%{~kT`)y<dpmH@T@y)5c6O6SMYQhqjmM1jPLCIq@CB>^
zoCt3xS?8N@c2`(&L<s8uSv!DHOp2B>FTMnRlz^DX6L6c6>wWm}hgy+BNmZ5c<U;CE
zc=z!q3L_b+KkbxjXwvtH_tl3c$0g|lUlY@Jy8xQpk{yKpRp{-UuDju!Fz%FtsM@6Y
zE1~CG=qWNRr+4KcQt*R>5f>KC(z36Rh}}qBDX}38^yV+^Y^5~b`dS6qceVN4w;Z7L
zpRUhm+zcOxTPx{0cF|0Tk}G0*6x0ui!m~Hwts{&$NfjeOyR54k(Yua1w>yK&(RO}d
z<9BpZPW+xlGp5%_K|v4?mz<xjQnc89fysV5euuc_K#lWf;slsVEc$)h(eQqnt)2nW
z&JFhEP+&Hnnn^_tq-9M>6AodRG&7w|avRdB^?QxE$O^G5yLdzrfAmBxGdSnS>J}|$
zTzr8Q?SXe6cy9K?1AoFZ)SKwaGd}D(aoTr+@WR}j1bIE@@3N^Nd`K{?)++5gpX(<>
zU4MxXjo{4WbRm@uLcinM0ljdKl0~2OzyK4*)<{$`glrYTFl)>p@1N>#S(&T|4^659
zNr|r6OYL~xbk@F|NWI6U7fy^L<Y4U*FVPN4Qih<GPU3Mf!?tdp^zY_i_DYI>37`r&
z`(8iX-tJr+_2;doZ*fA*Js=41Wfh{#r!M$$Lae9M%`asj!%aNA_u!cs65Krmta@q1
z7^{OrF7pv~aCQH2Bx-f=70>K|2Pl;9)^p*BkdWISS+|u9K~N+L;yV<sz;Od{?6Ox0
z-%k_rI5=7-R0-2(pUZ<;hoVuUNvJ-9U{-pTDnw>YG&>TF!c+Tts|pIHp+-c)(Ufzo
zO9oD!IH7#Mez_EeJ{&8Ub|2mXp_)gd*}|qupluc6>=#UC4X`G&MITP{gv%M7)?(TQ
zxHl=5c_7gpdII6thJ~woG6I|sUd9;pJ!4INEbjOF9ooM|NEJ()P)fkj`UacwrT#Ss
za8qL!T0@^*kKO5-x0h%VarKG`4<DX<*ZnV=`nSA5__DFzMeJ<T!<dC-@H)4N#eww%
z;`3;`ng&HIj$nmXbF&f%T9>Y<XySQ*+hIt6MMH>Z<*Abgl+t;pV8uobL(s(6dEi%i
zL&G;=fSfRNG>BICDap2LDfjtedK%ZnUb{5ozR_4&Z|8xgxLVNMZcCYbxdwhO@Mrfu
zJxQ@ZxE%RX#DAx={l63zDx9#&LKZ#1VSto^X5^P-Ca0u0Q)i^WC9M@mh1EnRVejNq
zBuXX<8bY_@@$G1RqdhafD83}f6o-M=^|cRU2I@V>ewq9;Wv+jI=B?GV<5f3L23j3N
z+kt?E2`Y+lSCVSryP}a_QiwTz9bt|^{OQ~}L_EUDgQ1*Bs!8VAgbczrzbf<1Oav!k
z4z*qyrE`SZ;kZg%pA&<Y=O0}pAKPbR740-`m4dD0z;6#)*Q!S(Hv)EvQ8s|oc?pWI
zJ+!mA*w{%IEegLq*yZKr&X*WdzYw?c{{3G;apvd~C8;($vb|fjY{@9C2y3RX3UwGD
z5%oc-h&6ZDZj{26a{<z0I9Icct=ZrqWQzfNSubLuq^OA0<f5uAI@$-%eLu#L03)?(
zJYhh%{Ng^TKo)A;iTGLb;pj>b*hq!vi)10-3T7Z#<b$lHc!H|`%+g<PIJrrlf}E5W
zk13)Ds+t_sq@>DR|7?EI&k&62l??Nf<TyB!)5Rd&0P+XzTQc-{cAFkB+_mkmT@zgG
zEyE2zR#+G>`~3TRYeP<J`wyC2)GvJv*^3k08C5lFCz6a1675IWkO`GXuL+$<E0o=o
zBrZrf109q*uOJsPrO|<UA=>|5oExXv%OeEjDx`lrJ|EmD-sfe6gh+LDTkx8Ddsfj1
zdFm(jC$l4;Y29>Fze_!}B9?Pr&J*_k1O%*J%0&jL7G#to81z>?-GU7AvUFnvt)vWs
zMhq4qD1hfQD-mSYne+VwF0HtC7xI_+!#mEUPEO#mY)e%dJE-KlNoMxdSjTz73%82?
zIY=}5$nGFCMLmvVHj=p$QTJc1A=t$Ja10lK1x%L~UyqE}))!c46nh_6bCCRDPnj|2
zL`4n5!+gQN|E#*bm5_mZr6XK+ENDjR$M7J$P{Mag7<2_)eh3so(=Z1R*_yU@c4Jb&
z-js7^;*m_Mu2vKrt1Mo$s^DzImAB=V8Pvjb@TZSABBlB##%amlkozOSd6Wh{ix?t7
z&3>y$OBe}(umhAuGBIZQKG3K+A&<61*7#?5{_?B#Ca8ODZS{V8Kj?w+QS2XYUVP*g
z4s!XO(-5|H5BXe<;J_Kcnw1&Cg+2Cyx%U#x07Ikr5@QSc=(N6s?=9|v*QVyE)Q4O@
z5oeV0D!(8A!4w%o;4|NVdSShUTYtMoJ+pVkS*T>>J;XX}zF`RDKhHkkp-~_(W+NgY
zh>=JpxQQf-E)+zsUnERVc_Z-^$GA}_zY<(%W<T`sX_WD0|C)j`QOZ;Y%?k7_;b5;m
z1H6D}WAQ9Y)Z*OB>tWk}bfHA+@34*2INQk~Nk_u*=(~>7ymBDn$&RdCb^2M%-M?4!
z5|IvLqvg^2OB`hNuY0GZ-*}!Ldy~){g&)@7^KhbyfS6e3?FFfEf}7NLNYB*X3&_ZW
z*Kn3d>B%+gE-A#qyYhyEe8dEb+P(BqR@N<)ZG%PCU@Tqfv^JY?xpd%iw~1LsxD&$7
z>^nG?3^0B)DEXr5f3KAN3d<oh<*?WzR7AUyb;4Jf`Lp*@8nVV~I&5}1*)GBen`w`L
z2&i#kOkP8CIS(=D%Wpzgj^!ChqORdZUu-ltIpew0m7zow`^E~m8<meOVKH<#SLzYs
zOmD@rl3G|TcxFlQmhgZRT7He+=LNNq1lQIkbE_~c!{3-eIA7p5>HfW}vvXPxGFJo<
z<jv#fICW|xr@{`<1Gu(94dt-*8THGtpeVafH&1DL^mt>Mo`0CZLVq3Vg~?8!8uG@`
zbX`yBBl&`a<DHTQ!Jm%{m%5+-*Gr=-K46N&lUuiLX)C|oq;lt3^!b0Iu(I$PT(g^7
z^R@08poYb{yoY7WOzZASc^dcZ3Fx+*GkcMKQ)*Di=>2Rdk<jt?<jR_wE#_@0n!jkj
zR`D9bKQ3`3oF#9q$P5?Bp3Lz_djHfxI}*}j0zXIsiLEq}<Pjtz#pBgaBIy^xt_HQa
z#d#lx%o*V=S&+KpS>jvr*zQmvB1k2oSb7RPG<Kzi`#NxwJAvGpqRg#1yoD+dGA>y#
z9Z-Y57H&~s`sx-%MNr?3#~NqfAw<jw?i}No`+8km3*0{!zJLH^+kaT!9iPRSI)QTU
z2-?6r`|g<lS#o)1cXkzxJ=A+4dSR%%XLYc*%%oaGT-;eII8@AD(M1OB-G@q$LS;>C
zB9W@UQx#%rI3+D#s^PRC{Yq307-4b-5KW_g=S#A>j~+EC-UlyjTLyPP+b!SYYQRg_
z-USjBPeG9aSsg<sbYWf{m8el8-}}XGh5EYN%3(yK30PQSPl>1c?mQLt)R1DNPl)t!
z*CT|{32AG52s)W#kpc12sY@kE79I6-fTnUR4rI7;9+Z@agJ;GivlUY>N+WD=EEoQ@
z)M<Z`)!{fY#)H%l?6)G*E~OqH1L4@4>d>x0HPqr>loyvIy#3!#zcO^g&w)AH2)g=s
zd6bN?Gf+`V6;|ux6yVWH52&agetS_U_%ZAXD4dF$HD02UPQ(FA5)ZO{<HLS~g}w0{
zi?H`c`%?XpPIb$)Mn|1%I0t&;jpvhxa9>LmUjssB?9!eSHFdMboZDOP8yZ0>N!6p|
z)L-uL7J6S~+DTuUl+-{Qx1Wh#EaFTJH)1GTq$b##sK4%Y2KuSNr<A@pqaB?ne^a8G
zkhvJl4bEDE*AT`grAe%z9z@uJF$a5Jo!%GE1gxuNW^PF!!MFiHv!wnBoY*~a#-V#j
zvUj|A;QOOaW9_gIQ&s-H6kqq-;6ArKJ25hSAWu0ieEf^~Q;_Br823wC8zru6Lh?h1
z=CP*P_1odF6UQ0;NC-SLpvKDOSU;?=CWL9cVeZnPyK#r2hE)6b$^UqJ65hvvhE&4M
z$bPK`ZmKbK4UqHFx~jo@gU_oq#E+jCHYXMWM(92>$_?X;dE;{Iok5!9UfKZOwef7=
z?-C~~TcDty_BIHvAOWK&pqwV8Ha_#JP`YhDGV$%O41!MFonSn|q7V}YmyU7<HGsWz
zRbU7&8&#753z5ysK!_t^;$pq2+ZhjzYYHPbx-`~#MX9m#nYeWL)Pl<QL0nX7w+dOf
z-XM>!t8Zx4tiQVh5#|=fi;cg_lq@QO@Ujj<l+8w!pP5|EZrQIi*<?WpwEK{KJmjm(
zwH(89g${Y%N$>3z61w_X&wq=Vv(^lEMn0*^#(n(oVO%8_r8aN)v{M|pND9dMD;S(W
zB4`6CbRZLLN%-tc>+?btP8LNIqD(^DgMM3Q>fSp@vZ6lWk0AGm799Yt!g^~$*hAPS
zQ+s~}#}iDELcRvOMVppIm8CuH_&xqK!kD-->uFkRpm_<d`><F>Z*Yc6biA(-X-smd
z{dZEWu*kt_qbdPv#!b>k$NAs$kZ@WQ2F|WA0yhu^wW_EevPc5eA_}}HjqOw3yCMtv
zJ`yq?o8H%?j2xyZsuJyiZoPqsf>aw6;DnHYa>Thl^Z3C7QLEF)<N(x>v=;>K->+zV
zB->7!Zwa=Cu&H4JqK<mkH&fKoS4Vf)f)x&@Rk^mKqIjE9<qR@EBZFy);|#Y0?yWU^
zUU~-Gp3Cb)0#t+0@lWotA!CJ@iZ;NcplmT-%x#fXqd`*bp*Q<88&E-QZ`9{*KWN*Y
zvo3I)RgZnY=No~(%gvjZ+oY;8^!MW^Eya`**RF){9OR}=5jbJ&gm2J_!|PDMP08=Y
z%P>e`4bdWb+7Rcq*Ipba2+N_nH5I}V&k@HXU7Yi*GzB&i5xp;LDIQHORz>Ova_~Ac
z7O0!$g-AQa!5<Xvw$5_oPJMb3W#^#;fNwab#jIVQ%hGR$Wz7Z|CixWPT0^S)i9lno
z@#JHzq-J85cR9rs9vo>dA^j6bO8AM#^{@UTIrsaI%|sl3^b9qpx-)X~&kd+cNom-%
zqxs-3iq6p_!N}t)Zy)wUJ!x*2Ko%i{vcvK3oE=+O>V&#*279VKZT&to0ROH?o)!0N
z_dT=jw&)g+H`R{U>{(0P(+igs#2*5Rh*L*%jok+Jr-IBdK%$NuGC-kaHz7`kHnt8g
z7ZhYKo-r|J&U3hfiUfNJzOa3#2?#;p8iL|+lkc6fuxL}-wFqfOVSV-OPadP_e4ii(
z5T6lZ!z-~i0yyac5|+<8%EOUZ1S+)AozD4Sm|nzW7j?LFDsr`$aw}Hmsd4*ze){T9
zG?{Z*`n9E~zjT_CO2u7gFFZGaNPR8qQ|-E1vbw_gZC10!9YxUJO*a3`Q7P&^ynxA=
z>LwXbay3;@C&9mPfGI%HL#8}@t{~UQlmt6t2YXB>47YDi{vxNzF%c4KmyApPvj|hk
zBTB?49s}Mdh2f^&{`5gy#wzkWFFr<QqfH5{iGC<3*V+iqcnj9cf;U-$nl9Ql2;6fB
zza<KTb8V|Zp9tvil2;fT2j8a8(?124BT7{SJ9A;&S~9Q<5*g5-Ohp8^5mP5TKg|>(
zByND;EL`<FBP|h$Flki_7zI-HTexjb{GIdM*3^!CAduB~PnCqnBS}hWQj*%S!ujhb
zPtU!Ht~-ai!AyOJ@~-}KJtV5AROkKV2UdTnsNZP3wq?0)irD6@K=l$uB|YccPGE%&
zf!vbRLa-}`KhqXnT+Ac%n!Ebj19=Q#nA2qqN?b60#m8IkHFX-dV;LZH-{{mi(5XJa
z28!E#+k;U^1POB?J;p=QURiVJg|YTybn0<8uavfAH4W=GV+Z^CkYvB{0<}AMxoXbc
z-~=Etz9M&|FV%epi575vQ;}HEnfa~+`50uxEHIPr)VuSl1k-jU%MbYmACRl1A~Q_T
zyiZiI*bJCXUw~95JNqG-8V|zN`D3+^vHS*)we}$S{I|n;I&#pTnBe4~-TV|ZgM_~g
zKHz2QIhYy(b{Mlh4yuvR^aC$|#1n;LFrC-X#4G+~ir!S|TTC9Ae7Q$q2WOE*AS2*V
za5;@k8Of9j3CU;lpCu*b?$5^)tQ+qI<|29$4#(_>BXCWCbXwD5ijzwcm4ttf096Qo
zZTnsie`5Pg`icSxzDC6r8U+<@`)mM+fTbq1pQs1r0#hkIMAmjM-<nMLgWc1Cnm!Fe
zeG~>67?9>g20;+iJ>eyW51mr_4O{4d@mHo0({>c9a=>pJ2^R@AVL8%{b+-<nX7)T^
zu@nS-NJcOSaubl^94rK8G7=OthCnDojjdu&vACmR^Xpk&2Y{%x$ica&V{jC?<^~j;
z;4a8?sqNw-n@yA+Ev%!46#WT0a0n?)s>^T=<-Tgbr_g@3N1Fh-{hNkcRISuU8e%D?
zThS$YaJdNfl>XBJ*&{+smrYk&ts!+;kxVLtVV%rQf}19~(slvf@$%}f0``g>Q^mUr
z;wN2t>-m{_1rEw0d3njA{kXIB)>C|VynFo5(Hwt=0Q9g!@g4`*HSser+^xq3HyQ(X
z9=sdXDNNCcLzeVwoCyk;WKTRjd8se}KHE`>o}%mu59cJ0ke&DW9mBOXsPn&{VNJ<I
zE1LrdI#J$+5H#ArUos;!i<~^9^Fc~>FHM_&Ytfm*%8GnT$8yjhvMY@-yauj1*3^dv
z@4FCDw53+@d`x1{cXs4|dc~<x3?P)u!jFTsJ@hj$?ZZ)V^7O=0lj%mNnn>7IL6alD
zc2a%_kVK(u^yAlXAn(H2$m>Z<jhk%h?Fm&VUgR<azP+C|gaO9j%H99*xYE+#{(XMz
zBXmdmgL>3h3F_nB(SH7@I|?P_+c1z3|2TxxNYI5a{wrGINk$z>cQOE^3`Ok0FL%?o
zn!CsG|7G<ToB;y&CQSxN0jQArk*6mN&*m0GxRXLc#4{vS%ayY;_V7QZb+Uc#5Wg`l
zB>N1J1kry8%LlmMQ@B5tOj2XAP1GCn4nL&6IWW0x6ZJ&m()bCQ<DS%+Sw+2Cx2q&a
z=KIykTQ^_rNi$o_+V?8)pO-CrY?nqHQ1cP*-1ozE$#S_}<z+L*PWsYx=%2s3#<TXm
z%q^N;<h-{>dUm+x!6fQJt%6LuYt5Z^8XGzp2VL^E+b%p=1+9p3)%7r5qK3SoOr3A^
z5OEm)g~|UHY~WXGM}2qGviYNUbccR0@8!keV>SG{?j_TQc}|AEN!hXGzZV@@jlsYD
z|GuV9CEJwp{ge(=ZFb_zCWT__!v}~_DAZGK=H>@YxZn4tSge0xZ@YjxA`ku}JLWF<
zGk0GCa>4ehZcOj-wFx#BeqRO7=;{xPlDp~1rvDHiqk=4#ACTyrG9@&&_4@(Olcitj
zJN@z(P={FwD9H=>?L3ss@wb48`}L`BuXQzNyRpWz;?50QZsnda8HhPSEx5(nHN0?(
zq=rAF74RM!u^>y3j#8nTk+b!Iom*30X?%?>pVlfauB*>WZjleVdrljc#|RJD{~#qd
z*QEy?bZ!I+w%Bs2W(sDT)mO~1e3g20)SX5?^P@y`)w$FC<rsN+vgoH?X;;g#?9R?`
zzi@7?p>F>03e2k;ISb0iVCFvsYig!jmliFOm;Bb)XO31?*09>8?9dxN4(>Z+fhLh~
z>Zy6~IAuxWumeCb&>s1nV#0F1&E{9OH@hvsMI)TWiza#N;`z_W$<#}LKU{tAmHMww
zy)H#Nhu2MO)Rp9Mr5DM`J!G^AYnWN-Kb|NXn0L2ptl@VX{lnpFQvOHrT{N59Y2tB>
z4@^UE?T3GcX;=(a4%DZ{<$kR<-b94cYEBEABRTxLLi70>O{;QTpC_j}U{|B0tN)j~
zX<2pIoQ_!)Lfx@F=lBw<d};rFS3_I%u38_ydehoGVdz#`lJ;${-S*h_e~@>*&065T
zT+yOpmu<+$x@%$CC#{M@R1}W<e5Y4m8hb#p*zA)x)p-)++TGZ)e9LEDeM&=7a|Y*3
z(U9EElj3i3ME=M6jt%r?3AdGvx|C2niLGkj=i}GIa!y|PSXY~;mLXx2p&nQKlJoSb
zHKQe%Q8lx=?GICk5@C)(h35*}2fluFNT_=nZ8paCPm`swysCtTi$l@%!R6hwn7^kD
zjLVZ}@33tdZ*_jh3-j)LAAcQRF}#Le0`j0e-Mb&Fjs06%>g%Y7&&R{hhl_1gxqCzX
ztA3W5ZvJ13&NdX(oTx~8*bp*Le()B$LPMv*T_g6fWF}`|r>36MEUl|48IEp+?Hfdl
zZm<?iC$AFx@fJNqC7fw{2D+j`nf)utJ|{6MElRraA;sX&!mS~DZBqxlBzx=^8SMC~
z-Y2<%4x9xlSw#u|?|0dBzI%Yuc0ur|H%}$a0-Mbfqr~|*P%}b<H8^F_W>>GkRu%)Z
zTX&(_%SEHQv9HXo8Dm!V#dp3IxfV8&B69|=>;}4X*Q{F2Qq9|}rS7oC)Ph-p8ZRC-
zRM?ercMsoIfxm>C&I7`<!Lc_p(nhILU1`7I3mNK^O|PHkr-3HJA)?_RRtiag>tP$;
z5^(2#yzi$2Ryr-;UduJ!rWib5d3$S#(&`zZDfT%6h5gUn-2Qrh3inoWZTl5zQ&%To
zTI;;7cJQUGRENcHBDk4*$^fblEr;mhmyc^+oV1{};BHp@@4S>FRsX7a=K;0uI~Q=e
z>tQ-x07xl3ja|M+qbC&JQ)p~P=hyUT*}t@OgB2K;^|n{ZSE$N|opM=Nrlxu=Y<%=q
zXB{2&FFjj{^6N@`HOq)y(efRW8LowqX)ic)-Zy2agAYYfrUH^%^2KN-CLC%ySzte1
zYQ8#J*NpA$3C<XJ{Gc!U_q*c>3eVI7SqCEoogkjy{uGDj^vSwT!-^-T)=P>k^*orT
zd128WOqC{jCJb=9r24jdy7^<=jfpp=xqR<5liQkc4gHZaTTF8j_vEr3$N9b&&dmWu
z30HJ=L(3xJwPT#V-Cgg&xYw#y+bi-a2YZ~78k2r^KHM|1$-Kw@FuZ`?E*4!a${o^X
zxlOwtd*?A>Pd041xXk@1jS+i~G~co&Z{7tsC=P_E;;CIrjhqZmTb|nNG@Zhlh_JZb
zFXh%bZ-rLNGk)VG_s@i+G|@C>|G4nj@&w|Y=IcW=?-c8eMMJD+?!~frlTWuhw^tWj
zVa;%l+UP4bTTZgy{~zJXYeR>7l1P=1WM2Wan*b&4?Nw1>t%p$bqWJdwAx>AV_lveT
z4K2J?-{+8hl7Ys3f$cqR17@ecJ=17Z(c0`Ms<JZnb>AIgV2XA&T*~zopBs4a&qIf<
z@6bJ1(YwSl7_s-NcURc7|G?<eA6n)`*WG7)sPC}OnHlb1hJx?uHNkvqpuCx{=XX3p
zqT1rlDp`vVMLAIQyaxKbI=4A4O#;bg*Lfn!GLQrmrRW%A!~pKawc(cF6O#;AXgqgg
z86?1w^xhhxtYBRBYT5q%`;Pz}R@g;<^{uMp21`9ca0y-&-noKH&+j1RlRJ>Sh?X71
zWoZTSHRQZH|NeP|p}X-4tox^L@fZLExo%V$T9Yfv`~wObees3F37;$vLBQ_ZIHh-c
ziZxrSTT5@%pDoOATho|0^brarEo{Vjp}kG7=FZO(KX{cjxgi<~sjHPuYjJS2PaP<)
z&h7dY+FtwWz696qlzb?L$Je{DQk9vQ6Qt2!Ge%)Gcl(=Re^z<S$dmM4B<E|^@*t7G
z(yt4smu{Fd8$1EESq5CV^jFRH3*QnFt@gWC=K2NuJJUWjT)nEvjj}HMeRzAPSB=7n
zg74dJy<fnw9$XBZzFPirVAj&AS<Cj#(eMAEV@)@#r)T~-SY)&5>Uxi<fGXQ#Y}IL>
zm(5>gsWDsREzG?|5*2YSxZM?(M1Go<cs4~@-?tfWILd+2QyY0`r+aQeYD&<#r@tA9
zr8y3{LbsN`md-U=xu)?p>o8oRcvuexU0;)(&e#GC4esEM>QZx3+Rr@yRgfh?{F<<|
zOOeVuTkl;r?Uxamw2J>0SLUo60-9qs?q*DUAd&^mFUn0lsv9%!bLv=oZG4Eqz3pty
zVuo*XT26Zxyv#DEJG{?Yy{F)jMaJ>$cURjB=S%tp2+o~_eGVXVZlF&C&JdtRHFp4s
zaFUt!^z6yWcatCuu8tk|uRHBw<ZdfWY7Z?9QM5XAaQ`ZWfwLd7ABbrz{orJ^iZ2y6
zCXQN)mk82(5^u_x=KQG({dX0xG&!#V?=U3mD`zp5&kknoa*FTr_wV^Wsl4|5O~D+z
zv2ay5nn@~p+S?!M`}xdYf0=c{_Msf!64pRU%6}jpRX$*&KZm=mE@72fx(a9Xe~~B2
z_xQAjjTiGPq1DYxp9Wy_zzIZ_!Mkj+!YS>WnX~y1NV_~DwQ0u4y*Z-I_M4BqzjK@M
zex6+=cE)!$b!A&mQ@`lmuq{r@)80WvntqPr3K1Uznq8v13eKJ3!S=?%BX_T}`}<V`
zObg!NJDcqmbremfds4fCt4X?pM_M2--k(dL;NH1@%)j$<eI;gxv&%2@7EjOm#1J+Y
zoN+QEtJg<*r$;H#CCOblLqX@x(3T!tA-_Cy<#y%E3}P1?4%KDpM6IXqFxFUMkyLZ}
zny<VaJ%zDV>GN%2Y+n0ElYS{Y$1GxK+RRNVzRn;*?djPZV=~ilTN(xv%?oE87*3U3
zU&wd&C|cos6-x-cDr~xo^h!l=Zny&(l75yIj?N)!Nm7lkZv_1cw9l!mPSu3migl+W
z>qjp+SxkW0jqj;TkcSJ3Hx0Oan>5j-n(Flb_R#cPSMx3WJ#i>nlRK@yW}a7QwzTkk
z7@oeguRDJs=Nx~xA`Xl?v)4%xmt-1eehj1o-{#GWXPTQe=a%YcEYZ+(zIAAF<-`>?
zi2=t@^;7aGOP_zY?WbNxrUfk&aI{Iy!A!|g!{WwC;y|U;o`(Y^u-&=wXHvZD#)A%P
zH5wE72aQ6P8MP2MKOZ-(>hD!R9*g8G#gq&7+tTpt@$I+GMg;nxUIGOATMsKCzV?8e
zshfGT0u#Pz`z84*G2l^swl2KRY9aaMpgo4At&4W@PL%ada$^lmwk4xBJ}PQyPWaID
zEDGh`sJKtV5_-GcQqC|}T2NCAn<=0CD&wW%uVqQn*g?taq>e6Sd#epaHYz#Ea}V8F
zee!Jo7gSX8>#v6$JX<Ax48YI!;&2PUFOT=wIWlq9f)aoDE1Unw4C+);$}Z72nZ;q7
zU3Z<tUwW$>BM0T-mCwf+_c1*C52l*npv*yaxS<c%NJ<|_u;#EH*LEbBO~_%bt(>yr
zi_+@sdw~PTcJ1;!Yo~((5>Cph;}z57A%cLj7{pYY2r;$u+l<<^$OiOORIkbYl#%?E
zKZXkQ{cmUM4(FxZix*?>lmeFpyfz6dt?ML5yS1eGNNe(x!m7fntb<Nke6K59K@M8o
z>C-<uY3tXkCwIjMsU#R*Y@`t{?l>kBBchG}^M*;hae8X^8;?C3aG_eYfG7S?{Ib*`
z0tAZt4dLM+b)Fq@G?6EbGMDs$T-!V5r^!ipHm*9J!;7H<yBj%w2O+{NN?>0^bv@~1
zUWkKjtEqxnUVT)m%b~#T3H)KC6oZK)vb^ajN--V3@&j%Py2`@*$27As>!k47JrbWp
z_0}2b=HCncJ7_cM*FR}z$BV5i<nx7(@{ei60=`d%F@jF$)QktbAz(K0!->;OlI+6f
z?er2pw8Us|BvdWN-@0Lh;>#BwfA70ELPz+1B(iqr?m?YeklJtc>2^o&^0-MWZ^n{S
zjc|NPX2~Qn<Q(BHbI+B=hq-2vB;t6_7ZjHDh(-Fn9Cy6`<x37(ufEHdmotTqE)oAM
z&-9*aRxO4HGj92Qpy7|inEOQ~q4SD~UpgF7@Fh=6azq1BjEEC#bDYN8PRMj%cdF96
z60-3vCDRTysa1&|g#(139x)sd=p^f|&+W%Q9?;F_CmkXLN75ng401V3l)8F<*z1WN
zy`y2ehdAtFs<z6F-)TDrCCQhvQ*t+2pLnam`IEZ*!d4RG^!4TEzExxXah^Q%=I#<B
z8iG=3fC=(%=N02Q_P#iJvP3U!d3wjYCSKB{MWbeu`$_VmC*JQEb6;aALP9uo>a5>c
zaBB<dsIZJYS^QtucFf4yT205xs_t2|P^uQPoAbiFnej@VyK{9$>XsG1XbzU{M5jUE
zR&-La3CHuE1n87%ocr|qJ64&2G!gZ95Pyj&$&Z&d4lBBXxw}!ahL5d4>wAewrf%7A
z?vqoQIcK&Jw~ePGTsv<na2`G6#UuUK&LM=|+tJ{bjQ~=$jfUJ3`DpDH+TJ09>X&dl
zC)DHs5GF%<0^7pZ6C1b#1IB#e`SCOKDvSRQO2cQ8tbu#Z?d|CcV%Is64Ae(9EN(6d
zRY~f~FTv8Ego_?i#r2$Absb><c|q{GCOf(xPx%nhLol%+Xa_+a?!hPt1-F2wMu{57
z`#-mQ>#IOcVOTaqmJG)QaHqx&9v1>7BJI|IDtfnW+h$aiVrDs?=vgT#V!4$Lx^45F
zvwbFq9V5R4q9~Mdj;r1_@QV{~W?2)|P5UVg^{%w+zJA6Ym&G}Jo24V+s=Vg(UXx)L
zqr_NMWuQLrS2oZ2<ZniU%!rbR@Icuq7cg}yX%<4!%TqSoVdYe@6Rm%$h)?QMen+Y{
zbWt(U-KKQkrVgRo$OOh)aD?OA+GPi=4~hgP1jlMkk}JsmN1N^Z3u|1l+Dz{t?X#kF
zed#P6AW)O5lB{>Gwy2mfN#v8yM|1OQVSG{1lAkwh1}QO{P@=)wqQXA67Hpu7>g{RF
z9GGH%M{Y{gRuSVX0e5s6rf|jE>qU&G@eGQZ<X#-B{+3H;+PP0T`BBV{y-;{AH9ku8
zXNR*uMHlCt5?CdZt$h{xlj!L7Ppk5?srK@%wlpZj_H04d8TKxAuHk~g{6+fxW+Zo&
zxflsc;%bmW|1CgZ0_|Hofmv8Y8dOXYuye$jCeq_sHTU=_L=Z+PZW5ZVeI(DynZOK(
zQrQ~1W*I(yJxos?H7DVyjeg$uwlK-wZzwf}zf>IiG~m*tUpaLz6-UXA_J{_~Jb45D
z0qireGeb^>e|?x+>`tv;X}GN_%&aK&k!r5VS!-hK^Hj|bO<tNW!|9TeitN-n(BfJr
z(w>zY6J^b~FI;5;M=mzR=@{xnCGYAsGpGeAa2b+1^5W<|@~P8E9a3QYexF$R{m)m2
z^}Gp)?94nL9mBT_2LFyo(7gHJUnlAqzK^m?j}>vhNE<L5dN0NXm>hCLy}MBgQ92+E
zT23BMTYDGnh=aEF<T<wIZX8=l9gvtRt}2#6OOPS!c&pxZR=M#he`L}somxGwN@Mo<
zd~_Jhy1nz6A8YndayA~AJiUwnEFB_L{^8y{%AdI54)bT4>+h#vO3&5&6grnM@9-Y3
zyWa+`{KN8mmFdBbmJyAW{@Hi@7v<O0M%HBM^|WXXgmZ<}&b4Vcxulvfh#-MHBPOcr
z`A4bX&taGKZ@obG6;beH<{zQJm@3v_EIO>PS))wB^y}}BB8^Tw6j)dg5LvJO^a5ee
zx76OB0-KoU7JOw{n3skociSvTUu|6!jdGb}|M`L`<gwijyk5CysmZ{3w|xHV6(o*`
zgO-=GWzb2ui@*UBEbGRW$^==o2#6!#=cNsH1`z)YcyyV8eukuoiIf5`PKatGP36;-
z+g>}LEVAKWchU9{3s5kr?(Azk2kFa2W)8B0egIc4yP8gb>^&ga6tPV2EqCC&ERAXn
zI74Eh8)t6gPLm}y)W-=*h^<GYiI%HPeT?%`D6=Y@DtWLsnH9UU&zXO;+^cl?c?$}q
zj{xuBTc92+gzSw`l?_=GowwU6Nwy)%E$s7gGFOT7>h1vqyl4+sPUrr--rj1dd4-<_
zfj8$l;zvfmySleHMO?n(Z<;Q$L|AtP<cS%1am)0ahPv`l3R^ew1n#?r>K9=w{w7j3
zUmUq0<so))I8#m0@=}%_v1|M#q)>(vtRvq7o?^tg9{KkFm`ES~)&JJkhP~wBHTmzF
zj)?B?qWo8+hO>LaYx3V}^?!@?!@@B5m;asmbaeEirAo8Rx{NOE?g>n`PezXqAa+ir
zM)Xv(p5HaREP3K^@s+i1#29O#gG53MM1%sB>0DqWRers!$?}jL$z8b{H;u-0G_t%N
zJ-X&H#CMOVefj8X!6)|>Re7!xrg-$-mFVhWV_2|d#I2xsz5dl?uJL;nn&ib0sx&6@
zeLf0n$Eb@P+2|+1IUi1PRngVMV1ojm(N_XMbGxDam+?-y;cop5-Ha*x-G~qw$$n6#
zD;}=R?&g#sg#$-&RPLX3WYqm4;Q)4}o2Xgz_e9qZPoqf-88OpW9>9^XvolPKEA<yu
zSlQUiznhl4>_~L6pbhCI2a`A;t@aiTk?x}&VLVcwr)&cKP{5x*=Vd$Z2ubT;+^epW
zD*svqA4k2QOwEUfhG8X~moEclsKd$M27wXZ*!|jX<e1eSvUU9C++-c)UnN3tBq>7K
zyl(JzmC1=n=I}}@!|z9PA9+86l_c?MQK@8In?2%*Q)r_+6@!%v_3o5BWiK2FT`1HM
zQ~~I4vBDTkK7pC?<KIdA(i@(NB{XWObzj$d>q~a`!Sg1xbt4##2I<jnwi5m-!#LyT
z^}q#GA^w{+tRMX=$m||LA%LE$!K>5{7AVQ>=8wAFdm?cDj!zLsH#+jKqa`_l{Gi+j
z(ciV(&M`f<?NM|L--)Eqd`GR#*&*33?k$Yck);kxT7&86=du0#rPNln8)pP%c>b;a
z<2u(M)<(7=Nam6^=f|g%|Gdl%1cP{%C^|{b^9y0P9PP@eCwh*0i32NNbNlX_BYx`W
zJP~E{SH!0N1HD(~uP0T-p)c0jV<U-4it?>Np(dkxQCE(x=l|M&-mHjMoU!|TsA#xI
z;;u1V9Hh7x-#1v4jm~Vvb8Qu~%Y*OWeyr_41N#FCDJi*T>19Dl3HaauTnt?wr1-<g
z4Xe$d?sI7J(Da=$7xk*Kn@B%=T8Hf1s@^PMaZH;4<|I|w)%<7MJZc?cw9$#Do^<ve
zMfge*K1Tw1A`@uPuSL#u^c_P+C29J?K;zm|zAr&L$o<;$w1<mlEl;I_IPzK;{|U7w
zEFP6sp>4r!Tsp&NWuF&#8X6ml>e1GWz7Ij_hYyCh4P06D5f1z$mI4ww{sJghG{3d1
z_3+czL2i6QX+U;RTWUx1=%{<-{1ilyJEN*l_<EB3JNnzP9kp*K{n5=A=t~;lB#>$)
z3X(#oG|deUr^*e~wbhYyR#Z1C(%xt{T*xbN^W{iu!syU}C61nOUIL(=lq{=zyUq$N
zoF`O273uHvcx9x4_Sp`Er3B_e<zElu1GTg!jOdOCx=XVO6Ht;>PDlIW+(PCayS=rj
z*nNiF$D_3->0KGMPtFVY<S7j_=;-S61uWw4Q7<Q5<<$Ii(Ts^3>QRVt5n33r0OdTt
z1L-SL8o;Ka8OT~Xyr-iy5tWpOH_%@O>iM6qdyS(crfA(Svw;r5s{LJ)1^mg-r{*0V
zIp-`-5j0RlGMZy=-vTN}3V9on!`V=8Too_fxQ~CI1zU%`Tlbwu3chot8z)dgK~tcJ
z>!V>ERsNx`2_rTnLI+sQhYd;Uf%v(W?D`JLWvXD+`~UvsA2%ARHG@Zios{Q~6vX%!
zr~KD>{IBykEDVEx`QPb0{@;@}_zyR?Q4YF<;K6{A<9|^{rCOBlqR2f<9JIaVBbuMm
zFv|NVn1rE&@`Mn1XIDR(-&Jx0B*R(d7k9QPWjHEA7Yu!k(i0S?yB9Eu8Xd%X-#cQq
z1ux9j4!3Rl;T_2UpFV2={}a>C4Fi7gt)k;daTdmzWHcaojjnjrVVnx(%Bj&7Sg*=`
zi~wmpkWIA&1^~3nE-VLd8xhY}IK8dEBVWI7S=UKIhs#F|!k^@hDlerKM6A7Vq_gP@
zu7LjnjBdqp0IhnZlX%Qm^z~gI0ZjHMuDT|{e_+a$HH0VBiLXs5zpFot`YFp5czy8N
z`4L+1sMJ)#B##ob+mHG-tl(4$bqp307&qB-?S*lnzZD6u4(Y$Z{iLNLA3a(^I?)AF
z>)+jyX0DPt0=i@&A=%Cr{0i;Ia9NAepklUw4<-YkB`wV5&wEjYBifV2Rab+^Vj6n-
z6+oFIs%m?J)m$o1`eQ*8Pp54}pRWHvTza~ORF&7_FQBg>Ei0&i`eFZb&m>l!`()OF
zrvzbl6i`U*HG*!+m#2!)!S%2_(+JeawxK{7C@8{1p;i-SPlon@NizFbpwT(ok5{|D
zV-;;lJ1`Qq(#&?y!!1@tnahARo41)6Pxz~NWyy#Q%49!B>uwOn41iN!vLg)C|G8!w
z9k;LhOB&gHR*VN3tVJcVi~6L)#^x>i!2bQU;Gt;j3PWdK52kPngW$mv-L=A1Zs<eJ
zhUa#K?k`U56yjS~O3d1Qd{`O8pvsI$8QJh8kZvqbZiw{sbm(i0K?h`A!%Nbp`~0YG
zg)6(Y(y0s6`6?|g1xQJeRRn=v%bzkZznDT$2={yB-d*U5nml{u0?+`MLZXb)yEa{X
z_*fikWsN@Q9Fm>=_R`$2kV>fB(Q8XLk4u|%>{t%B`w7~7Hfr0Jb+qL#m#T%tGT&zm
zW2`eLjQ9f-*)w4B0x}0pW9Z6S8`Dq#)(w%winAXJ8Dz0Q)?}LLJ_hszIBiF89E95S
zHZ=lo=7nyj4cfL&XYLv_%s4zp-N7m*a|fE3NXz#IXCTTV!Mlxt9#wVz=#Wm|d6Bd?
zk|s($rX5z0Jg=mmKB!Hz$t}=6wW0f|aav!4WVLvFADa56gQhN~F>V+I{oD9I1T&Pd
zP=hwgIcCLn?d-sG);+@E?2|_w=wVbkS%98^@I;dZ!F2#vz&R1gxrwF57y{dh-4_>2
zMS^e?ACu1^oFZr;U*2a2r!R1BI=hlNOB|hvI%qKsWWL172?IM@qz(8FG{xP9^^v>8
zs1jDl3(S$i2RPQu+hF7<Y{wYM>ehNqJdM%D0Dm}KMARawMjL{v!0$)Lq4dck)afV#
zg5pk8-Qjm31GqRhYFib$=px^NW)4@ZE;ZwOl9UkRQDUu|f(9-<hkSHu?XyiqkBbF0
z1?!DS&zkA@^Qw+&s|qj*o?`^YWuwQ+Uqap_J@w<EB6No^J}Xu8__nGbgrb_R{S(4z
z82vd@9HSMP3p980Ptm*yqi+Y0QN;wNqvh6z@$vBo@&{5f*eSwQ9UtW4W{9JG(axDo
z2RTC|BW&VAJK4Yag;2_ku;-)tPtx+iO=tfhtTOaL5jxV0Z2Re&0}5F5#4s)>svb2s
zpm8`fay$JjwC%S<OA|E2y)1qiHc@prbc+cb3An6^K77!t<aRcovZr1{4#5UGPOGxa
z0dRa1&gXVKUN+B2I1lG5u1Sw%25#KI`iOP+VVs5DM|88D%dQJFsao7Ol9*XGdJP_;
z>#DGRHv|Jz?1c<yS@G@x*rBjL-45V82O8~TiVO3?xGCP4)*wzL6n}^ZjuT=bG@9Fd
z7{LHhM;UwN#j+D+LZA37Pkyi{+g1wtyTP^%6Z_iYsi3NCoN*ZRs{Vwu2UV$nbo=4$
zaUA_<j?gf|oX(VqYhg>{=znb|%!`HA=zjt;6t%E>xXKZt`X8sr2<P-#*fhMva#an?
zf(xLs)9yaZ;IcEAUz-s*-e%E<ZBeS=s5_qAZe&zxntuoNu)=o2MI+(d<-C3;=oGRh
zm?WT|5&d9o@xwuRX5*-351A!mWV=1F4a4VtOklo7$GVSy#z1GB4zx#Nm|HciJBR2X
z6#400F6}-hEw*i-gY1cr98S1c%^9V^WR6v*(_~Z4`g_{(P&8H&dd<n~37Bfq(Rsk)
zwT#8<x?99z`HCt;7E{6Juz^lEs;$FcgLsHMsqFwH(K@k;sg&OCx3gpI@Jm;YN=mRc
z6NdJ}_GO6`(=i7?;}-`T<c0AlvqIVR81AOmP5L>--I@<nH?5p%2N@<KM2>(_1steg
zVxDE>29A*AitT8Owygl?1wO9Z$KXrbe>j^?AfB#X?D_&cn#3le9;yKn2XR7kgzjqM
z!E6m$akl}pP09#0i5j(=uznU=6LJP{D=Hkx<_!v1YMiRP(N|Q6m<loxNJ<J5GQ(}1
zjG!N}7*fRRf^O2u7nIaUEsj$G0|vP^vFtF^*9T7U58k}pqaBgot}x6?HG1FclLq8M
z8yr2N-az8;S;2(#9}`m&SUPUXoEhl<UE*{+TkY_@?l2!uLZM0+df_9eiF>UQcie^t
zals?;Sh$2h!J>e19gMbN<Ej@v+C7TSB1iSTO>=WI1IE(`Dn9%-S%aSU`mWQ7HMnu}
zrg-;l6hsvuT&7io5JF$QUE8H`i;1dJ8@rn83hIk6E4p-m`gAnDs>+1(qil-R*$)~$
z(){z~zQYbq7M<9JC^`<MgGs()_bR78J5nbH!GIW5gPGc)*H?;h9R}o(k+}k$r6vJr
zXwIohb0*Z9?ePJ$rFoiYM<*kIp%|LFR)Kx37HrQxWNrYVVg?O&T<w#DJa3G$kt3QP
ze~Qh4aIMwR?AtD;?yv%Q&01;9Q4IkFLul1b(1{ZF!5XXxV2MZ-ic9Z1rLFBdSE(&}
z&9K-?j>?j<4wJ{PZog*_%wSB59eIxU9s^tlgAcmX5@W)Y4rRK-61XI4ghT3{j#O=T
zGDfGG`AhTP_QBzV#qg5+&#h9!zxp5NeE7TnEgKIzR>N!Z-xBBlnG$D&$orn5Xx?3-
zu6(GSjJGWXJ|TtjjYIw&ZB(D>@TOhaKjJ0~e^cw!NOF1jo0NxqprgURE7N^=IzLmP
zXU<CAZ)oNJX&vNUb)Q}$KLo$HvD9S!pexs~kAEAPhRK>6{+AE)AvufIa{8xDp%jeg
zbrOz=xDG7a20B`~NE@M5k;{}pry|0P|A03htgL=NhT?P^l_2CT`kKs<w`ll@EawI~
zA}^A}P+pvVZqTDD=x~`d_&gEX$6RE`QyPwukS~(4P4oL5<UIAxrKYAd^rX(Om!VFe
z{D|%;Qy6-=j%A{}zqwDZ%Q!Wa!desFSCSOTunR!T8$LI{ansyy>w>mMq)sXB*K5t`
zgX>1kPdqgEx6L=Wk5niH<<R1h3?Qd~6P%B%s!rPXKYL=_mQMjVha_2Lb4vXOt+-Q|
z<(t8e-gvMzBN~evlA4_S*xR3g?@32({$HM?aUw7!P$V=M_#QALEI?sp^kefgu#2{H
z`Zo0IE^M5MJJh4Vwn(*#V1(KA&e=ik+Ar;Gvn%2%B+wGDMAeP)WFN^!D=&7t=2*{v
z5!TY79IX5FE|QLo2t>Cpiif)kU!(KpNSmQW0BJzZ7ufLtz-0wm?h`$s`@l*Q%7&s2
zG&Oj~%^q|ULgox-Z+?9H&~K)Q;$DMIf*BnhD09b8eIY^Z9%^wQ;K<mN<NGJ8vfZ>D
zmx~Z2A-_mq()Jz9kv#k!EwCF^)0G2<+bT%eEo8OHs=-ZGR^-=~Ht+rA>**@gey(Ue
z9%UU+N9?u?&GbI~Ns$JNW*C`QBrTq!WU<*v>dF!6jsCu%)zl$X#fg+m-9{0n%jcoZ
z534U<F}Ni%%h`9ymT)zlyXP1mbFBB_>P(m0BsXvT$=0na>K?t^{-R`+oj{I2)YLm`
zAFq=u|Lf(eU8<&qk^V7}o?k6qzSvWEE^GO&$EWu{8i@D)apL#hT`N|eoA%z;TsmS5
zJ;-xHZ^pZ$igM<4o8Adu%dby98{g(k^<dh>$vVdG>AC!hAUZ3~vBj;kuj(umA3Luu
z(kJ~X_+h@8JH`z@?4kVkTliJc&*e(;k$)J`J1LYGMiv$ppKjZ%Cj(Qg>+{`a1uI$V
zsZK8t=wxcn(^KQTP;PxuOmaTD^f8nZi8M}^ChwIqB^Xgd%dmWTjG?wgoaddg=<B#*
zzDPz-PETWhcn%n$gb722NSK=j=+auN!?vo<DcHsd;3}w2rLqc?TYhJmqF<C;`rDb;
zX-!pfgFAI7-(V=tdnVG5rmvloN1nAMOh8b5#Z;syL{}Z(ib0FXEzhH+<3)PttMv4#
z16k_@WyRqSPA_y0j}{)>7h6je-60n-;#l~*Z9}1`Zo9<bNzM$rH{=Z*k}r5{s4eN%
zE=F;eXb=>nhS<Wj-?S^7)>I|Uf2!^LrwVKc4YVEf*HnYMFAtv3E_KQGgSTywaq4`;
z{#bugQZ^J<Q7x5}a8hnWIrWOC2D>CpX;A%ShTXhwJNN<0eoGU#<GceALH`{#C{<eZ
zBdhSfu}-s!_q(jW*}uM|$?`8zU&<nPPk#8PRgI(x8%2$bnN?|~T3qZH#eL0p%W%)o
zFG4SM$B&`7>-`BZ3y}a>vO_~nbQHSZVj5=JF~<%b!~&HWyb_}A{5rI|O_EQaAsFYd
z)c7F#Y>~Cojr^IDeJ*&^(X$isJcT@H3XRH?0%Y!_y4c!ed$95NdM4Y_?Umg9@8Ehg
zh<OK*?<Tt|=BH1~NUC?E&kbH9D}ImeWLo^of&A(Bl4aP8&8ls#4;79HS-r4vFQp)w
z)*<ys!~em<ZK{J#h4|t`!%F8&aw)JQNJ#SFl?xsu-(Tpuy8A1+#&!R70+y%C#7Zk2
zw)AHtR{L8TuUJf;Fj~KDZhX{|#u<a3#Xp0Gw#_|EM~DcC*1AXLr)rBn#`%ksria+h
zxMRiS8jA_t^_}3pTuw>$NCr(xqhGmk!Qcfha=IQmGlvXYUY+zDeB1rvqQhls73>U=
z!PgU@+$nJm_f!w>;eDp1^Uv9)s*XXU8`07G(uI8H@BWu9;xb#EuQKzKmq0QKp6IvE
zEtG4VhD99Dsk!UH;E5o1`J1WJhDzr&-nA$T)(<}PU#`~qZ=<CP#xZXOj@<RJVRnp@
zY$#7I-MjjBF_XKU2Df6<WvPYawt9QgX*%iy+1GXH5q@DVPTPvm@V?JcMTn+()poGs
ztn3j}wyBCS_`LH}G-AmW8jd3B)zyg*zr`828ZAxH^6C2Q(~zKFw3tGPV0<YlSs;#I
z>*7gw;$Y58>-ms4Jy%lVniUD1@aX>Vkr8){xd1~6_m`MS9@~oD)HDlKnLp6(TYR0E
zIq?td*Ml!=<T3QXU2n$E)YX9yz1CoB|LmQ?!z4s}{P1!6P#bT-&7PTLNhv4pb;en2
zQvHkaqAaFscP=k5FTj|Fk~EK@Cn~KeWe%=K@?9dj%vSkFJlVIEp^<%kWf(Uk$drOB
zy!&IxES}_ReBjA3CHXIA>ENNaHFD(Zl|%VW3HsW4ah~3xy0SQ9UA;U-g!`P^QmwDu
z(wx{mbkC)db%QU*qOgB$`1wn_-*C6~nWDqIZ#sDz3$;J25^_`_S0P^!DjIo%e`}ck
z=d4s;ce|u3?+2<Ex{nV2pi4rdXy{kgI(2$~%dpROWiKEq2OnpbS%xQfA93#7JampI
zPp<~@^^K|tlP1;m-mm9J6w%woI0zkN8>FRbd4h)nb7Bv4I?m74X8nbO8lq+Q;Fbaq
zV(?l;2!oPbc8Ryw<o!d#R^qF*SdQp}>~z=lgWYO};(nSAmPgzrEUHsI^?z=3>9ICi
zJgA+YCR!Tfd9_(hH*JTi#ARD}@{Ma1LK|cGSl?q}eILSB3G?35_6#;k?(m20nY?$T
zJS*Kfq>{BZ>%}E=)l1amBR9|IU0>^RU$=qt;zNTw*05&q*$Wny8mq|ZNhmE;l<53Y
ztX7wrqpu#artL|`Ut0QK9<QBWoOj3bQGoQRQ`hx)XW)u&g|Sdtw^xsL>|f*zK_uEX
z@t!i%_>n!6#>n1ISM2Q{2=Ch^X6$g{#y~yShuhs%K080o&2Iha>Ue34gWTM=gW|sY
ziD8^4t)nUZ+?S0myNnD!L|>mkanECUfTxXf0Xs0a(>wXkJ*dC4H-`A5Y|RH%Xx9!7
zyVJ)!F7<R`Ktj8pl4)ngOggulesg<Q-mPf)NtA}SXPq`+vDzLVH`MNo^$akVI`?%!
zD9=hnn7T+Q9SN`SObzj@2qAk-z6$mYE(psiOVi$JGPmN5LhIW&IyIxuZs~p(x005!
zFF(7Qx2#zpKAY0;*I6!GbAD^E$o2zsx9?;pp1t4a#@mqO=Y7xb^|{$NZy>w4Wbo40
zB6vnMVy@%qx~5r)jnx?@Vw^hpV>FAhOC|x*8)xKpn;CuiIk3g8+h8fDa=os}5=y}(
zR@2O@rH|V*<yy-RrN3Hp#PE#vnUb5U6kj}EV*}{hogK)?0+6St3Ty0qwIakb#Q3&N
zTBL<>&5-a+S<C|;H*AbetGTu3OknVJVH0)Mm7qRNS+g4}#qk6=?-?8ErgGt1`_59_
z)BYdg-UBSEY+DzlPw#Gb8=E#F0=5Yi0g)(CTM!X}MkFT{0m+tRiqv+iC`rjmC<Fw_
z5{ryVC?)4mgc3?J6cUS26n9LjK>D10-u}+L@4i>xhZc*q)|_+95&jY8oO<a7_8u3d
zW76Wl&Jf31Ji;IYhq%FxVJ=`W(d^SalW0&<zt^VeXO!Hz<m%C;E<nllc)FiHd!0Db
zZs4r_WzcDCqf`pr>`AF#jYlFg+y`_2)MBXn&}0eKfJlS<P=Fr;OrZPF2dihm5aBDm
z^Bj`|VrUz5vNCRPC+9pBO|Fj>ca;5Q#98L96Fcxi*zs3ec0RFD2@h}>cVQ<v32LnB
zVk8%5U!LS$QACq=t33z?PFk+Z9wwz5np?YldZe{f_*fic%+M5!W?6<u8PoqWtNn4g
z9n}F44lL2eOB8)=$ewt4`nGwRXJYTydX7VgIj$9c9fM60Cni@8w}o1EOjvxX{q#h4
zNS{mIV^J|NA5ns4y?8V-FNXPY#((2G?gy;ZEM91TyP6=~dW&#cOiU((KB%d!7$#CO
zWm5DtAvBXh^~TY~{AA|e^hmE#O9Xji{~AH&_@#cKxO*RZQwRAe&PfdYj4%)<T)Q9|
z%+zHCk7%W<mc#{LrSLBMi0+7pyor$WX14sak=J?Tp=~kQv;2wY;^6wn`qjd)drOI!
zI+@59#Cd{ky7wxkNhY^YXyk)U1kRzzk%Z+>i?q%9g(2pQL9no7Rw*!m^Cxzf&(Fl1
zyTh{csl7Zl?HN$(x##;`Vu!6L#Pgzrcu~dXs%Pd<BBW#!QmNwMu7bwblq)kh{Cq;3
zihz^Zes?KhcWN=U|3M<jcS53fvSxsx$e4}Y<PTsDD?t6;J@;;h>WJ($`W9Au|G4X5
zm<at7hocBK1&Gs++N7H5?E#*xm*(Pf{k?H;h7<UNR(*VbLgiJ4$yy)8-5qjkI$G-Y
z$=>D4C$WCs={QGaB=v0dq*=0r__&^0iMw@*-keSCz9UwoDR(_=8SjKNq3_}2N`Chx
za*NhaNUL6;o*PY0fOYg!y8&%8KmuGIe#GD=yQ838lRJmtocR5SIclwK>(kvij3+J4
z93Qod6h(<}I=%ZYW4ISLk#ReYzA~@EbL*+s0zD-;2<^7`?bC3Yi5;H@5`4|5B}jhs
zoNIkS1k0?A-*o2i7%Vg^nmtsRGrp#2U~5DJ6cm#*8oM*U7vAbGN2Q;!qI8j#FIu`}
zWnc2!_3h1Q3<(VV^ceejl`b8Hy=7H2TeY;4=SqP?T`lTd#k=o!Ua8$7`Pp-!Ld63%
zr$B-hB2#q4z{S|DP%+Sj+AB&vBopRVYrS9L@BPj?`ArE8n&4K)Aqm~gM{^-|uhM0x
z6(Hk|cl}`I{cYT+O<|%#qX+2ue+ou%!M|ifzI-t_n%ix%SZiTyncTP6KPT~@qw!oT
z7CJvcMlnO)-^Vlxn{g?9gYIZpo)jepC={LUsN&Y`KCwC}!_Mu`9(d5hqf!n7O2f`6
zB-1gsJZMBP#-ns4_U?xfRl7kmwh9F(H~{vg4+MCxwauxUFODEJkT<!4%!O2TP2`M<
zX{9ZH3KLMR)A2&`z_GQp(VlhoU9`fcN@#F5feYKhDM3PdES+9&bNfRl$;;;2iZbns
zpM(*a-NvM6{tL#azs<Q_-dcH#l<R`XZ$%^Lx67@%FHgSTi)0}>Yp=}Iy*=>L#PHG3
z5UsB=hPW%sjj#+u5>2SBjS?1wd2sZ{VVlEWXUsb8s(=CB?lxQ90~4cEDT4S9Q`2}<
zSF){evUop<-n*+mchS)_NT7#KX79Q&_&3SBP(R=ii>7k+f`6*(Ii#M<CBJ%p-~Tw&
zped0J>2aXFfCXD~BDb#<W_4S<yC^6_*!>Ylr$uFtv7rgXl3uhWwllyIlTz<`6_{PO
zUsP{T@Kpiifs~zc{Zx%De<d=v#O{y$zIQRDz!fS|X~5bh^v_SThw2v-1j%18u@WmT
z=v~83!NCB*nXd&vEWniL8=Vrm=e9mGsej2<jGZjhC2$}$Mem5c-LGw0-thh7Y;&BP
z_oNE@F5qVooa3?|mAoY@T_L=1zN%U$5{=n2Z7i;tyYfwXRFvHsWI(M%hhJaARt<mh
z0v;$@?!_iffn0cT!O16u{_UkCdd941=~J%yV!kyFqTqUnNw*Wy{iFn}XdiF}=Ix6(
zXG(<=V1VrWLJtQEu#@Z?Z$~Y7j?;Dtq5nBkOxn|s7HAqo$ZYG*I-B;X+({>yR9Umn
z-)$*Zl38ju@qUKHF0FVvGdn-wDb9*2ymFV4$~JI)ReZTgs=yDuapN;yypC?dd(Ze1
zG}4sA3&AebhHwiH`QiAlup{oSD3zi=M&<%Do!2NZ`|eltgT7C#u#uh?y1Q5q=aJ$;
zT5+Nz3MpM(k`ljxIM@KN1H;OC8~OINhUfP&y@JEeqCGD1KC~vU1EB6;Ume6qz#RMV
zwWWo%1mdiTnd>rE#><d4OE8;RW7OHu(w2TYX^HYW16aJ!UJ7*P6APQX^Ju^=-8q^D
z`^F4=euk?fKF9wi|2O%cGs6f0n(A|^wAngr(_kGiPweN<GzShF003ge!!$Gx8j~{}
zRjmS3v~3b8Cr2`ZRVuf6xSX=0z|<WC-s#HlM!}MIoSL-qGFAA22*UcOAh9TJjj<b~
zyI?Ub^en&3j|vJ$aBzu&H>~V#B1!E5LqvM&I!VY8?fwN(z;(o{jNB4f2|HT?i+laC
z<<QT_E_Z+vx<_W&wdiZVA{uQiXS!7TQkln!YJ}KmUUohmqLbR{gdnNEsn)kt2G)NY
znv}G3(!#lka<_I0iQwFEc4E-Xiy;G~9Wnl<V?M$R%+Kt5H1-qIf};x;Y{B6V_{J@E
zMhr`X{^rSNHT!Az?G{ZH6@)Swp9Uocu3Z0}@xRL%hWP#M>IMJxaMI?>!x;=-+<XlX
zWeC&5+<ZBjP_+@ILtR}1Jsa5af@sJ_z-ZG`o^cGDv*{9i-Q2+op(0?l3IAHY|Nhvl
z);Dr&{Kb=V!!O&o1|EbFgD{>NOM36$LR4V$r{O&l5oD^kXWD@KpRh7N7KmbMn?B-N
zOz`XS@>1#7MF?mpLovfu@Zn+b{x=W@Zc=y|5eyET75aXO>J0%YMe!f4?4Z2qd1!d}
zH@&s?e(^9y{NNwg#N1q=_1H;$NnR9z+w>X#jxp3<&RUPJLg2t^wl#zM1PWxZL=%$I
z5*60^vGzcNFJq`z-g(kj`f;Vyi8!N%tE;qP8+ik3Ylfk6NonL(@lrLElG+SY84Pjw
zS5qZ1UcZCRcbWw5zHeDQf4+`yi4bSBsW%Y#dCZu{D_7v1-Qtrj#@F=W7{SS|soHHP
zjziRB)5lYa;e%dyFj^g!mVaC0(Ak?8nlKAC^1hPiIQ6Eh#R`YH0{#9b2k$sT7~s+~
zijQAZRQbHwHCOxbC!h^1$c+Teih0=Xts;k?n<G{Jy!n^s7)qyUMW~;cBphcIX}3|y
zwblvoCk*oP9YHS=qYR7n<;AMmf`tNk_KS<Pw}5$kTGZXm7-EA@KR2iHe<kPe2Y5FJ
z9H6u2)NLA`o$f~5cGFdsD^LHW%rNZK+KqN*u_Z1pK1-t`n|0Tz|2wj}sojlU&T4H$
zhTz&=<u#nVp~r?RnJ&@B{cB&I?fG{d9Bw+zll<Rmt%?8MdjGwl{|)K>`wLuBm}X$@
zvQWaplgELZb?N_P+SXMa_7#y>>ekwFEb_<UCk~Wr%pm<+{HI#q;np!5Lq-?Ak{BAL
zAsaTX)-N2b3Nbey<<!*Vj@)`U26mM~s>LowRW1;gz&mvYp!jw}<T#4WDeGTUv$pPG
zN}J0u2C?Ik`E`@h{NU)r^^ge5IGeA`u8G#<w1`vu=@cl}iQCPPpaum-+rMj;WZRnd
zXj)k{nK20?ZfG?@k{0!S!(+5m&K<<u*=Lr8p<7&%h{S@@uS<>c_8U`7Q?j@3(UjHy
zwHcBD!ORC5CKlFWo6!kSsK#TsG#tAgiewq*aG<0tSABXi+$_%sZGrnsZbl(C&nVa~
zyTEX}#yh5BZICW>fIZP^sn1S{ipIbI)EK<?Hk_%B9dmM6q2llOnm71%|7nBVV{3_t
zw326u5T06@_x?DOyvP_ERuDIjzS)^dIJO0!ZEZWj2rYtsTt>aTLo~&C^%ft!e?LH(
z(f$Pqru*YJy1F!)roSG`WErMQ)AK0Fj+0(0u18S681X!oh94PpDhT(Ne)=Zqs`whT
zu?zd#G+vlVN;={|@fq$CJ;KdBf*>P&vIA7swgfAHvva+kZe@%Jt}768c=}7}JpE+<
zKxM}CUEpDchIRtWxIf1ih%*EFEG)9Jt_!zhjg5P_S{amzR;*^4;6k&Zx&p&qCfJI$
z=*-We>>8b&V1G`YJju|;cIwiQZH5p<xVrkOTTE>`Tm><Jh0lK$FhXQ3!vPH1kEg;g
zq?b-Ivk@?YxZGTbZhq^{o%H}M@lCEsf7z~;2YhIxQkSPPk0VRy*`o>ZH&xa~yp3#>
z;Q#__;22z853{gubfE*Qeq*7Ak*A3EW~8m&iY6vaZ)3*SS+EkuYb?ORqR&vOp2c$N
z>gDoW#~JwpaeaFwlpTQZzT3jBa+u15wbob;GY11qd1EaEf5BgPY22p#O^gCkxt@ON
zy6jW$w^T9X4+Sg?zSq}RQUWrggu&Wp_%1Nw-o5s#45B?dz`RX+g};YM#|A0bZwHp+
zF%uJ>oJ>DgbH48}eVX~A3yydYNXAH6o-h(-4eD;Qs<QU>-x}K<91J`1Fo(txEzk69
z_WrE_NYpiN;gW3uHfQu8ny{WT)rMSp<XXQAeEN+Q*A#JNECeZs>b%^j>xrrh{sByU
zcCa&F5F`_2E!RHJ{z^KHV<x=q&M}9oU}e?A-?~0nTXl^Sj3%Iej2UYPzM<Y4%vjfV
zD)#A#igg;-sp)e}O%c|oWLSVH+<QUz$GcxJ2?jpmgQ}|@9~o>C9mo{T(;K0d-_wE1
zkd!buzu_qJj;-bvM>q4S-Eq(uIBo{Zzm;do($<alG-z2_l@lP>$s}7B1E@dCCh9PT
z3N*N*2@}cqyQeij|Hv9yq@qd<*0N5u8+s@Lgn4w-OR|*Ch}pbN_`(P@L=%=lC!!b>
z`ZNSDe$PlmvtWZ5Smf9QQJuQ(87aX8#N>*si&_r@Y<nJ?0P3vuVtD#=a?;v7ep&_#
zz<jTrE<+s!#4*ysI(AKqBp*;l0VqB732Ej3d}pSGrYx9)b-wOkAK&Q4g~v=n1dWca
zKgR-M2*{E_@e6oHJBLp(nuUSg-G&on5PF=I*_YozpuSBu%T1epTaz^+cuE~vCu9@S
zwdkT}@rJTUdzG6@nHfCf5y-Z7yV2}fH@JaCLH6Q}=%Y+P`x{94Pb~9SWlH--*CG6|
z<O1>j-MA|ZWz2E`AG1b{!#_cXhyz~y?!T@h=}(|**9<Q-(BsFPhlL8Q=$~L~7}XLZ
zd1Cjo_kSJ*kT`M|TRc6{6`PrK+A1x!Ew^v1Ex~c}KtriVQz#=nXQwG`!*IHW@2!tq
zKho|$I>ykBSGpc67M5^)efA>j!-oRVunq{0)^1|$8u%n^(VxU_b1huA#0leSGTaas
zJ2B@j>ESL}V6IN=rld_&DuwrRJN80CMn8P2+nY!8gxe?7-%1cCR#w#_ONAy?7M8=#
zTpke{9Lh`%n<l41&A@o8f%{x*-pG8H5jkF|)>^bE`mnp0t;r#W;a6+Ehh@Ple05cS
z(Fh}r2``_O1@%_!vY~Ohn3}0`kHE#kAR7|r{`!}#x4%;>_6--Q$bKPc^x5+}3`vSw
z4*o@8$v+C7kG_1FcdybX&S>^ztFSPp`&2?)W%Yi3zxwSQFYV5(%_lRd3sbt2;blZ;
zox1%%Bsne7OzkJNOOqj?1n1`XQ${hDtU3#XdwKcm!*I40dj)8p|1^RXU5etj@iU{3
zb}(Hm&$P0ky0!PRa4@57rpbs?$L*~PXX;XpUn9US%eyQ6{b2$i8_)t9as^tnmCsnT
z$6HaYot^cZ%XUo7=vpf*T_3LWV>^GY(w{xl&c}Le3J$ekVnls;uma#PF{Pz|8I`^e
zO6})Kzf%(_?qJz{uT|a5c4*(;ihMb_jGK)yc@}*ivWKD!3q@eTRICb4TETE<&$|$-
zu5*Kzarb^}$|y)h#Iotk{JTHZ!_W&X(TYHkCqU=dwL1=-J)BlB+jN4Oe{cGW)4j!M
zCwvhcs`Y69p7NpTnOIkXpNV%^72d{QCQWDW*ww536`_WHj@8v`(=!iitmk<QpY;9k
z1Mgre9Ia?5^YucC>u6$j_xD@2d&T-mo}>4D2_*9nIJ;hr%`A+zt`Uj-_3K1iPQm+k
zTt~i^ksB`U9BG&-ri~^~y@Rcp{L^%TMLcRgK39E)<5Gh<dL$8n5d2-7X&$UQKb9gk
z{kALyN*zQ(Ln@OJaLUCFa~AVGX3hPAmmcT3aExYgz?*%f`~DI$9`8U8`<y&e^RY)m
zv+f0)=xh@dVj_tje=dJpUqQjVJMZL~BmEPZnNFiGOq(bfUZp*;+?*b+5ke-{z6j6k
zPZ<*wGAKhFsX{3dL=-=Agp$89kNWVkCjok4(DU|J1Fb?4PQ4OIX~(bc1(yEW-Cr$#
z=sBj;raSx8#2lN!??023B?b5*B=b9q=Gu$Dyx&63XiZjY@BUiAA0c#VjM~0Z9a2#c
z5O5MwqvZVa_}+uxFU=_yLY_E!dEE>!`0#>gJVOn4j1}n`aH?~;wcJU(4$d(RPF}=$
zd6{^Jjs}A)Y4+Z`l=LosDxad0cNYC1?xW<5#Gg<!-FHT3k0Y;M$DKiW&D5vp2c{1*
z#ETcw)@spV7qxmiY2cu(lc7`$Ck!a*t0?B{#=^#Nd_`XZe6FWd4iy4lg$Wy7j?ldk
z<m{7_<Z~o$x4(>Z|J$<u051AjqZRfv?Xv5yDiPCoo7Pr+)WD5|!1+lfKWvL3(U&LN
zT;yf5<dmVItJMu}y%JH?N{$mIkSf1Y0+YXYb*xT;Y-n0*o_Qe|^XR*kWx}n;oG&r_
zLB%u5<sRwUWVc5vD<pLBpyBE~zWH3Ku0fOwhjrmp<&8&^H7|pwmRd~R%~qC9Or|3-
zFrjpxXix34$AKv6iDDgyn6}^`p?sS%$vG;ZxsA^SEYq$+oq=<Hz5u8+BYG9PwHFkx
zpP-I`a!tM(CSpz8Go%zAlJi$$29U>B(S4!pBvi|j^Y`*-ifCsBPDFqngM+(;Ck#Rp
za9F;&aA_%vpVZXy!*$aKZ?w0RzlLLJ@BE}@gs;JIsmM_El5=~e=*yVZOk>`(RnU7`
zgXthhGx16m0$q-<H!m>QEB*G;LbP$;tZlv3+{zTF7T49MJh$J+$fXiXT$kq;TKg+f
z3-*s%(d$=zURQ^T7Fx>`41~M^y*D-I>^?!%DsXjf8$w#kq&oSai(P9{-b9^5S5e8@
z=o^ks5WhhYxwYs#OT&P##8kOYJ{n~ftRm6MxNqEcJFX2*P_@jgx!dN$hG`5sC2;SZ
zr_W69@|a;ltvZZOU9>k0<KrEF?aA`KGhW()CU+$9nC5sV*SS%Lfi%!MTs`*{+h%wT
zi^M3pZx183JW8G3%R{s;fqt9rncB{O(yPn5NMJ1g$dM9{ioL0)-IoUXD=^ixMTi<h
zYbk^z>ev>}kK*k&zH3Zj6YOuvFghBO);(NeTuroJ*-;C7e}sWjPb7=jK?f6uhV(FU
z=5$kPZ}@WzvMF#8Q$K+xILpat*W0&$csS*tt?m7y_av{C{U^2J{f6%6b0}roww|NR
zED0BWc`S3yO0(2Tq*Sj+ELO`B%pIGBH1q?Bz!@0Em^}#(r?Y|jN}M`x8rhmO$Em8-
z5kCePb6z?a)d+z(N@Eh0<-+52AOC`)vdlnGiku)=rG&kQk)n@qqD>)N6n@6X>~38u
z-lPVpvhI5W!2;19t6pAV?r>~e@9anhP_#va3P)s;BE^LvU<7)tzGUHc8~Ix4=LcSI
zc+y{-b$5+$s$?_klANo76M?()MA8Z5WKGjO%Ms8JY?Qz%Q#ufm=h2y&{Y#`FpTVIa
z5!I#U2xEWA00C;*3qkV7vYm>N7QkU_>5T|!c&A@lvDXtazN#nYeE-Y9U?sv3aBg#R
zo8*!H*KqoKCGh;z=jj19f~5U;N8V_YBC<>vYgJV}*l)j$oFiY>KGvw7+!Q6T5~PNd
zb$o5HzD7un&u|HrqR?X`&*`9bO?-KLp;L-_=a4Oozp_3n$XfV@hd#_kKQ}BNL0|?+
zo6BUOjrW+lfvT$ODr}5Lj+8J$<ccUQ@w9Ndc(L2LniqCPcRL-zXBg#R*ve&7-Ii+B
zzFK&OTHCq%L>%QkS4|izw=di7W|O*WUGd|Qjz{Rrz2czMulws}^`eBRJ%YJjUTdxm
z(;)%3{}Ka+dGbv{|0}ITdk>IG`=6TNu^>^|nIUQfKi^4Z&<-gBU{ic<hkAKQSQng{
zzHi$+XmTw)1Vb6%(TLk>EZvE>sWF?Sd42ehjd3$mBNvJ4*{g@QlRbKzO)I<YvrJ8E
zln%&9r=A_^nVxo9Y}Hiz;c6<{&v137Xy)7?I~TH=pE^v);WoKxKaV}-Y1-<COm;dY
z?`UjZQpuh-y~*q%clKQ0!GH3jR`b#?uL8N1EoXEl(~j?w4ili(ehO4Oer--#(C#im
z7gPP!{0aKa09-1&jE#Bs?L@G^eZ|`_j?z;}s2_|urFMNl-`Q=ce21of@ErCw5Sf@!
z&wKi*{qf^$UDl_0m8zXPUOldixU@^D%VhQ^?l|8WndMHOnH+rd<^)$XGYQ3leVBd-
zYuSyzc~MW;(b}>*J5hbPWxpVj0;HpL-Zz0g^qKGn{SXUlTl@23{hkhZLl*zikGqt+
zD8QZGcjfXM6O9Nayai^-l>?WQ1}LDSL491&O>bW%%Mfprw<M_GG=ls0d>JyW$;tga
z0b{1V;+$osb@j%4odjF`{zwO%wv``YzmSZ5k$n}K2A{&hL2d%Oa8kE^>(04%i>OC_
z5Nk<a?Dx*<{l4}*u<g0Q%+$ub-6}O=^G^s|I1InX*Y{h@$ZbXQom*q89LMiA+i%zt
z_%hDN@b=yr7$LTV(H7}z>_aFj(KO0TJwtUx1WkNamoLDTlo_x(y!-lKYf(_7A#hqQ
zAQaj_D*pBi9Kb=G;V+?0Tc^K=31Wj10)2M*oS4}YF=?Ko-7zr^k%eFeoS=^4Hn2pc
zTD@c-z1uoyNGK<F;#8XWuprKCI=_Bk$kByWEq6v({oG#GDaS1wK?3c0pHGHc8f);f
zopZXE+%~+%R@TFRY{^}cWI8M<Jg1&$iduSsuM*xvU(B)Sa^>AT$U;U1CRCm+)-=4D
zdhzO#5iJjcDO1;!Tb!Rzon9Kt=$mUNzaOY312g-$aq8!sUPp!OP<iV-mg-}*G*RkN
zD2Sj7asviqaA0&zyqyc4f?2HuqmrjfIM9#|Ni~6^@*?>wAUFU^4~AZplZDw8b)(Z)
zU_~DNgl=EM*9Q+wsBG?E-)pDax^9!xO+B^M;x6cY<dz8FtZK7TN1k2$Q^!6k)X+_s
zuXLW6LJHhG9DO-uW(A=`JGdSQyRtX)=N;xOS*0VL-!>rv$82(*U#(6rImoRN(J}Z-
zyqDKBhXgTu1swvcs~yfGVqWEFQcIkGzkJjY3r>wl?4|56vi||h0h{fX?B9RPA-ONx
zU(H1TdCWCem<xzsScjl}n22pWs<w%~w1;2!mx}5TR2$0t498D1s)tw_o`Xsu!@N7K
zLRb&syNUeJwsaLK>DgzO#K$8XMa5NQ%Rx9Q9TSwizgt;)z10hVNU^@L(hg&uQ3Oe4
z790J=?Ks9j1@A*{pol2gw1pu!;Q@J*cfNl9SY7LjfUk3N!sPSqN^GiHVX9|xjJt9d
zV3xJ<{G^g%wHafcv*tx1zE-DsYh5B0h?({lffmFdKwUnQrC!MVmm@J*DnZAt@2(d+
z+Bmi`8W<F_nA=VpOh<<CSeusS^<NM>bkK0CYy+@-nFEeT2BD~>EYI22eLDHTOzVN#
zGaN3X-j7PMnRc=X4VIIQ+so5xYN?kd2zbppZ!{@8A6Tb{@7B|g29zu?lp^~FvfGeA
z2vE~uyKPNBDG@7*N_tUK-;ld~*&`F&Bz~37W@`+U`IwGd+IWwnik}*zf<nXDkqZN!
zPV->0h55@O50cCBgoeJUCjNZ2jv*LAgnvb-OYAnsIAGDp#^(YPKH0k!*_vJplRR(a
zJ_1(pA)ha=Va5?73cwXL|E#_HSME>srx4sgw;K^_UYOY;UlQ5ml!t=y92nV3J^8(L
zLh7Gq9JD(*PZ_z~uYKv0Z+Tp!Gq+2BpbIa$OyibW{N$4l2BmxfLq0bsk@U~xR6p_Q
zk50%I<s*qb8h+ASXa3_+Hru0Hw@FC0d-InT$)`)`3bem^d<g9Pk_Sz`uzsrVF&CxL
zVq*aC#l?@ASY#1;jf}WK$n7{?*oGg84CIQTLJc5O_c;&uN>}o4;g2e=v9coH`hlEx
z(;)o4f7&9wR;(>9tKQGcYgcB_`=X9Ff5ijN=QJ!XC~F%4b8>Dl%4P6{Pd+FWatquy
z6R+aWGgR{g{Xi@B`1(>{wd^U-c2hKB4u^wV>f8Y9QFsh|uwFhM#qeZcDO?ZMCSl0i
zOKfU^EI3Fp$UA$~NLIg3lbreH57;RH0xdA=!hwOvl6~w39#U3%u*p}BQ&NtG)QVk#
zA+X}J2#93ezR?)B$x;61B}<HDH)qzVgr67mlNbofyAOvJEaeZ~uBZxL^TOfxu(Qth
z+uTZA%UR9HfGM75)at_?6CnFfA^LF}up*`_($R!BHIe_jgXix4UTKTmD^O{dK{ICD
z9;gyqLHmOkS7(}3X+*aKq~mOrE4z8&s1=a9gsn+1P;VZayk8+w;g4i7HdzA>>n%O>
z*p*^yC9ZkV-MzBA2O0z{Hd@zM<01nA9yo&_cX3H48Rm`6ScjE$_X!n0u6i67X!Ere
z$Jj}C@2^m^r^uBRpewW20RB&b+-UaJHwYgYit;uSG&LDt1(A^h_wq=mqkQQKwLT1s
zA_Ty*v0!er-riM3Ad{^^ZSLUyM?0jxzVor7nBU_Hu^~mx9^WkK*o^fgnUE>6gtp5Q
z+KT2!MyuSx8YESaYXG$S{1$<nJvp`bav)-SZTtQKp@Cd>8y{)6C0W^W(?>gfVN&k|
z3G3UFec6_cCE5|8_#p!1+-|^*&|`929E@7qKL^DAL_44cQ&CbxRgVsV!_DsUlSTw@
z5M9@T9(7S?e?8j##595xflKgBiFUnh;zKD}nI&{U)*;Wa(9ggM8EjKTXO>_aPfXgC
zH&ZUcb`Y4D3O4eem@VSy>)`h|Z$ts3mO>puo(Ook&4cl^5o}0vEK~Bi0b7vn{Gqi{
z5Cymf0WAeXkxg>;Hgvs^@`9qD<oMgXA&94eshS{qfO~~ddrG}Nz-<J(ll|?%abX(}
zn@KCqRbN&Dpf3hE+h+*zMy6x0S+g*@hAdPvzFtGN^`PPT`3^CYFCR_tiTpL^u^;|Q
zfn8IkV~_5VNKsEGA?%94<h+*OU`yzeoB_I2`kRy1#q=fFX@|d-0<uETBq8|Tmg5W|
zA&3nhiAi%k(?#96X#^MKnL2!YFB*W;EW|dVx@>GR4!r3_6REaKY7Ydig!7eviI8)$
z&-=bIhlEH7Y!HKtszq-6ybSa)Z=#Z2ZCM|XUqt)0s9Z7po0D)$_qa<-D2uQ<3<huD
z;nr4z=(^@xGHA;MRS*8)XWn(ZrGae?y>2Wq2^@_`aM@YIR0809f8X+?O-96BCi<e?
ztn@)q(wG;H?GJ(FBY4t2E_H(=h#@`r0rTb7V>#J!H)?ltKXnd(ZtI=Jj<w*U-lh@X
z<Znxcjr~N>x)jJmRlx=_!NCd%p4NSU_&aXs9OQESdeIyqsLOOynJ&uh5U_?FU>Ge=
z^ZKgHPq1Ht{WQQL=M?NokZ$H)p7$-=DJ2Bve780;j0gZqVtio}_yU8>;WF-by~GV0
zR77{#&LJtbb7?lA(DH?9S<WGs&wmKqX^7^_kK%aMM{Q|<4R>I)j}J}4S?u7z+*(|W
zTyldb@-ZV&b6#F2QF`+vqzi;05e#b$ARc=&U1)O!YqWf!NnP#K!futyKNa2CaGWkT
zn=mj|hGDyqu)e;4<sAhkzrh+@qJkgSaIT&3|0LPHsa61L6u#whn8Ysl|FcAakz8Ew
z$$FU$^LOTd$JTxN&6n3JfLLy(3nbmW?sNKO&{`dixHdC+$hg_l`Wgc!pkEta`${jf
zKXqngKp<Kmb@|&LH(tK+=8Y@p%jTM<jX(T%MOW+a5#87jv7WVKJZ5L~zd3gst!}QQ
zfU+^*wgc)yr~Yf@&&C65U;am>V4GNG<1L$;-MHw<$-~S8tzD`;#Z2lmZumc_8q?5*
zq#d)e08l#nhA=>Iz>GU`wf6s`G5@EMn*Vct-5?$MvYD%(Qf@ONuidv^2>Z8(SpJ)t
z_<t&t`}+$vH@oqd3;yft8qg)rLGX(LHqSuyrb@<d4_#;Ee>X0yec4=K2sw}xD6ZHD
z?X1_ct=(9V9ay(&vLU={*Zyyf`9GBpp*o$T8{O{FT6ab_E}<_0jP&E*uCe@0lJs@{
zoxVZp>A%*K|NWK!FX)_qIS(4lBFDAXUaFyd<3=Rj)A|fIBNzVnz9_6OHD+n}!HSR9
z*8mO{DhYw5&jy(BVkL4;n2^1B)AMi74By$15zo5Z{A{5%$yHZ#*AD`O^0zdo0#1hA
zn%!4F9yPNKtUJ#=qWBM%VU5dsmEgp`e;xCKvJwn>#kDADDPe=6n->ec!*Z>=LL5^5
zxslRGtz!e%eJ3!P@?Cm52Lt1keHGLaE>C6EpWsN4cmCq<aV>SF&8jQF?;A#LII{5;
zsqRZW8pk+Zk<&*S<;kLop_Mive7;SkwBsXUQdQ}br7}75XscsbBfkE*`+TDeupm;n
zUMke?FU~P|l2N<KxGP#|V=fvdPJVy2a;*pJZvcy6vOzGGBT320<W)GH5l*<_6gs&y
zKM`&h#~BMGQ|FxN{B!5iq9V$az$m-{4v&hd)@vSYYVsP6SjMUZeb-9j*1sjiPA@tT
zf+M{mq?Ovh<LrNK*<n6I=TFfOA11Q&Xfn%pn5`FNeDUaFZu#yK4F?>dghs|7_*$)M
zDsr76ylh>1_Z#H|CLV0-|N7xW3IR<v(dkn$HP@-Pa=C^c>R~p$F!vPaCgPrZ^J4hC
znK@}v8OIsxCy}PKoIOu8F>rU*`A$V`Ifeh!6Jr3StMnlm0+6-V$zAr=t!oiyf8~o3
z&#5@_^7t;vpLeBdJwHg2wlPSqvKS<}Ii@&M@<k@wBSuF@7b^HY*es&3eB^>hJK28G
zq<`Lm>HG32^7^zoY|T_(yl`6&+pIJNnNDpygiH>EdaN!_<;2A7<Pk|KEyb5CTN7zT
zUDk@&NF7_Q%Pl=TwjR@gDP!m7%XjO#_5eTa6XY+IBp1Q_V#a8TnA-0A#G!rsT0aAm
zCVV1G=9;TZX5W@;!|k`qH)TiM<xMH%=T#(I6g!Q!<k?mFoS2M!)UG`}xf(U!Jqu~{
zukZdy#K?D#eVb?wM%55pu*>W>#rb9-AijA0l4G~MW;do?AJa45iK%!UY7*3H2^*JX
z2ZXl;eGuXcTKq61L%N;VWE0A(*flxtJfq{5y2Wj&nQh22ktJbjQODK_b(^5?__}gP
zB_b?C$xXG9%2$}uIg<`CL<kjQhKi|`e|qoB3B%uNV^1$BP(Lo{TOFWNXsCu5j;l_(
z@KaN4Ca-QkHdKF~C~bj|VO{&u0hb_*D05U<>{Z1w7NVj^2KkDot29z=E$;BNCCRiy
zw76x#XNs&VNum`_T2C9C>dHLso@Hl7GZ|@ea;bQF!e3og^?Aq$+(YhwU~<+873=97
z^AuqjexghL<!sk_p`td6!8%{`GiFlnm(0FLQP@6mhp;rA(z}Uz*xxo(ay0h~=f#1k
z;3;xeNRrRpn4d>p=G&rCNFc=^;sK0dM&93+W;NgKpQ;lqfVW$m-Y2-~07(}gt5d3M
zAvmr}kGCuMhM%@D8+A=B&JAr(S7G;nm_T!-F5b$U-=DMRPDY)AQRSVQV5`nw4B2F)
z(`+tH-S`Ea`du9>Z_3-kCVuA%aVZr33gr2fKKAFX`70qISHm)U$a7;wp!Qz;P!qGz
zX{vi>JgL2HT(sB4B3Usk4JVrZ3AewqC4B&q%b^fG;U**7vU0|Jq=N-}^}n+ob^(ZE
zBq#+uR+Ip5zNeyw&c~&Db9oI;@%a%ax{RtTeKVZiKggbdP>(pJh}xT-A4u?1VlQ22
zQml<yeYKb8+#sZ1Wnt5kz-7yxT;9}wnDqbklT`^NeeYi5Ls>aP$<*Ph;Mypofk2gb
zUw_W?=d2`WrmImboY>v}!?ylfO@k-U5;=pk!iQS!bsY%K`x4{blv@ay-jnY0og#*g
zrup`CT1tDaF}ZSK47Ym7V`T<M{uAH()V`uZ!0zL-lfWIyX0tEtf&%L#1t;d%fr^qe
zID<LFmp#^DdA>!;0QdTpAh*&}kog|*)$sJ9Uu;UIudd~fX^@{uh{DbUYxdVPD_cw-
z&?UKvmYj2Um5uZ8XtO49a@ll+2rut#HzXywf-YfguZau~v6y=B10s!BUzkx-E-&;m
z+iI-cRv&{YTCCzp6m|n9^^qhMj%R93zx!Tk5NVnhsvl;X!)=uH$Bass^;^)Zi{>;U
zWH7fYGuZd5xXnlZdEKHbuY9DBL>IA|kij-wESx*|y;S>fRw*mERGUiVhvV0^{{`;F
zy4RuczUkpo64p3T{zn5t@&*P5=I&pkFA9uA*!GWHu24W-)_5u8)DWHhA0a5CjHQ##
z=)ZL7eycYyFgF(7J@hcgqPbGeG@@~E%v!I!Wg$#Ss{Je(bc4nGp&jXNpjDCO5bo8}
zdFe30%BqsC#fl6qw3aY9Jw1I}%iX;jRP5#F^*N$FErVl}?XVjW+YkD?Ag7PI(bN_V
z8;N3^Zrw`J%{rl8+0uxFO7)*}pJU`OL@53-e&Quo^!6-$nrLB0odgBY@pWmeF!&a{
zczbodKNK~X%|LADdi@Ug4ffd+arRky5L2;j-yK(v!GVF-nWD4duNA|24_M^s%a((X
zm2a^r-m7Wo?tD#rD8dITaAanvq5<~D?RhDTx&bd$Nga7Z_VX?+n%BAfM+fL}i*tkr
z54SZVb$39pWG>YQCkOiv`yPj6GiF?l+7l|0w%Uv2{Ld{ruVE?P5O&R--{Jpl@nwTL
zqrwn;2|`z%nVKaZuT^`yMd}&9Q;0(XUIteBJV}PQZKvC14o5xO>|l8Fpmn5-jFszD
zOJX7ca!E~3UmhePDpS&NSZnj5=}+9@HD5u9%*dB^osX*>!+z;|EQ+m(k6Nb8jtIoO
zJ$vLxRj#F3=5RdNb1SO^l@|f?G~ia82!b^};*>lSK|{C2fka#Rmf#s7y|T1^e-+8+
z8cBBa@+XM&LisD7FaFv8Ud|hI4M8LID!c#5GnNjKGt<*e6q1+MobOh@fcs5h0%#sz
z*7oM5jMcM?<}NKLQt}fz&%LRX;U85DJGfs*xW;z5$QemROE*lQ7U|6ao+H>>ZN5+=
zVcF|JuXAjwRFRsgu}&A*Fkcrm*TJtR=Oog%pO5<8ZEqhjT-Hgh!%QfNzV>C`A1*Y|
z?Xi^Lld{8?T}s@FHoY{b?LX5H>mSdFb0(T$W<NepoN5}V4wqa-)=Wy;qrd!Pb+yF|
zK$R|0<%5DJ#st_4$!Uex{rx3raAN$e-^^(rh&kF+GuPT!dEcv2y#-df$hN?$M9GP4
zjR9-D;n`Am`izJnR!v!KzGLV4I)v1$y5HVRK1JZPzwuaK{t^-ZX{WJNC!{-&A`|wY
z8F?@3-RpHWBM%w4V*Kw|BwKhal<mVqj^>#N-%7Qij{P{8BkRoHPubHi%kb0lEVaF1
zhZ)z@Hzxss1RShi`J{3#mre5S@2*8wx})|k@NOhrSp+K@4O0GiBlT}Mv4EM71hn_l
z!Tq5^XSSKw!BpM`X(e_8hHD{Lz82@fxt<%ttYPCJPIzz9TVv3^uzA*<@htnUT%<dN
zt(88hs2vR9LS_j}Rdq*vpS|zNGd>_^@q3k|3ZPcRNR-b(yy(44Fx2f3ZBe!zM8isb
zu=2Q8GR|GxD13h377kdWQ`nyQs`9v6YJNJXg?=z9qt9kU+we9dz>i#I(=)oobvuj;
z`2)_5=8<*KT3$Mz6|Ldv-c)giMmE#zJS8%2{|{x4az;Cxot*^$NWpp0RQa-rQNskV
zY8!mR;_@Hs2>b10;WG!4+Cu_fe&Bcg)r!_;xcbs1A~bYAbTaUu3{*_8EyI4v3403<
zxqSQ;D*FJywRBgHwVRGpfeFmWvGRVF)PoV2(L^({j7@h~M(xWXoQhNwu!*efA?Jm@
z#Qe&Kik*Y(`?sfhOyp!wL9h`oJ_D3)ssxEWm#dH|c2d__!(uYI@&|*+SFp1-RI|mq
z70)k?MMlLQ_w}xSdA}h+rYDVzzme3kV9x>esqkv*XwDF)6-^x6AFH_nmhn@NACyH%
zny@j-jYWyzd^DwjhUXKTEOMAwCXS^OkcfoOp9fYKu_ERD{AQNl<B2MPBlMsl#F&%r
zjzCpnEc9f0nm(`k`O%NYqKF(WlokxR->;AYj#03R^b3a?FE2ybjCXVja<D#!tOU-;
z$RH$ateY$3T=G~W<%$%isEeI!%ie8>9{}{J<{B#^OV3LHci}oAr8NFgFAu+s<Dlh1
zoQ#4($c3CZrYnZ(S{A4>tLG7LYkIDeikZ@uw@AEks%uQ#Y_vs#%LCkj*S<WbProcO
zO$NXSYKb*m#KsRip8d&DE~h7!f7+l#bOJLp4eRDmc`6tlZjM+5B#Px8`%f6#PIqLO
zk$0q*az5U_FTPS`-~NO(-H=F-_doQ)r3kQE-qLh+vtRRDNz<jEQ-y9EhCHXQ?v)Xi
zHiUhMiHm-q7+T0rcAqE*)dicP-<lwbO$4c3uP=V<U`0HC+5cd$h`~&^ZDC~LtHG;Q
z0c{}<(qSFvM8+XSPN%~FU#~ut*51x>F0R6=cWKP9xe`b?{`^RC?d#W=!8nD)$!}S9
z&!~-X;rIaTdawt<#=Rs-ZM_JM^6Z;^A6m$d<m7fxbs>QY5F8dmke~|4%<K*3y((7d
z%x!bm5*TO{(Hi93T>41=8-BM_a|?~ZJk3wTIQ8>0Kdp#=fa$c>zR_&6x*|afL+DeX
zIlcmw47ni>X^(r~w!|qmGJ$~Ven9O88u$ruAHt4vO3ZicR<Xo{gMVu5Z-7Wc>klpU
znbddCZX0?G8Y*OF8*bGV)pdP>RC42{V7kIaJWszHJ21d&ZHsK$Z{Z}F=_@r0ZFpF=
z1e}q21yv;|blHqQ;a>BEy}SS?`vd3hXJxg3jnu3PA5|z%*n^cz@MVvh{M6syLM#7i
zcT=u}%a@NWWD=k5K74&Rm|{`4svsZRC;@lZ(Iujh&FNdjB}!pxuY*d^N=*@M+UJ+}
z8E$1C@JqyjSxkFOZOzO=d2WltZnAMl<IbDaglXMdo|x!e&4S7a5&A@?G28KLFcVL<
z?B~7eCSwxo_0tvN-zumX%;;&&SeXdFjo$)4_$qrSZMhV0whC<9-Y-JF?616+D0HUG
z*?DEDg^Ub-QPHgbKiT)~O@+e>Zm?EEI3O-JA26=?9S-D6Be|@iHWk<>&cNnV@=a;4
zr<QhboI3_q{Rucvx5sj=1OT~pfQbsS>I@)S&%ROR2*^6`Ygj#Ro>wx_n%DgX^V4-x
zBHVDfueGdn#VW#~3LN9ntp`I7=T!C?(ry!-pk_*GpLP!6wWh%f5o92>?ArC&WY{+(
zjKw8jBh+!hu^pH$dkRFMN8ErM6XNA{beD{z74kqJ%@;fx31*jVIr3hOKq5gglwU>4
zS}VzRG!Mg(yKjeJODI2VL!J=)PvH`H5Ilj`oTW&JN?BPEeap6O3okD5@`CNMbR%;>
zMH!_{S#)-IxP85t?AOzFF3qnk#QrX<X-};RlNd-gw8E4M*UR9B#qTt;9@m~Ds#(t_
zs<@xCDk_xWKbQmuyYldRdo2JM;vKA+Fa9>3hRAg==Ba!S;ENeKwJSHrycB$Z?CX#_
zd9{TzEJGi5=Wec3HN4mSR?iFw%eD;oQbo#uA$p0wBn-}5qzfub3C}Gs6>1cAs-mSE
z<SWHken)jQ2;8{|lGkiZ{NNd_ytl2|?1N7~y6!l7q~z;jeS&X$>Aa3NAvG<H^7ek@
zt4ojKeA!DKI5KulU_Qz1&q@00%~3`FfVKsLyXlWefpa>`Gcm_I{cOio<#X~#fMv#>
z&3p?g*{L(?)c{@YM#Y6@<mJ`LRjXEa-)hgxd-hd=LCUno4w@yr=9Gb`0+{%?y>w*r
zw5bv>;Voq3kOqsj;`nt1u4B<Sd3F&2WoH1!R70xoPS51<^P_71V~V#9hLj1ZgCF1u
z22MxcygAP`e#+tiD=MS4q8T_lhx->w95i$+Yfn1`+GXtRkvA@=1bA%^hJDmd0I;g(
zaz!m%`N#cWV63c;y;z%MD)N&wNMxvA&^=Rwc8*s}FFH3SxiM!K9A7aCqG74h``3ad
zalZS{=yfC=3B>VgJrkiXrs75NC)g6AUb@f#?30mhScnradU;0gyb*1og$yQ*Z7tlR
zf;;!RtUczIbHftsW(^)sLL~@hT|qt2==#H}pqtB&0$4-x<U;>gw##PP6%R$$M5j7l
ze0CTHL~bqcQ7h~YGpQ^#7?wQ+o<X>jwc2YDj*Jji)*0)<)QaUK;dYXSucDXE>78ga
zBamdTnM}ML|A=ZApo4W2HE^>hF4SQsty=57Q78(z{ExPCamxD~+>6Y{#A4-fYoPFL
z&`mSi*2TgT*wo%f?S?k3Ioa`tzLnY?Hv2a7vjAxk6c9!{x_WQEvo<7IPsYYT2U879
zdBDCKqhu`uW?Wrk534}VMNGqsgvhop?mMdgTC1O|YmB{Yzn~*@X4gx{E~|{RxMRZB
zX}>4-x$j7y08++)msU$@zo$>h8%xV`?=3okCxKq^5$pRaJ0Fm1or_;Rr`_*FC%}-f
z#eroYVdZgFeVvYZvjK$X_$G*>lgaU@JD1<zkiV;UMIGQmip|#ok!(;Mbc(m34?#0s
zxw`l3Vo&g@qerL+y|(E!$NlcQbI|2FoS1+x9{|#|8$nuy^Xr!a0>UKST+EB0r#n~s
z_c!N$a@fURFj<m9NCuKaB(_r6cIdKfPd)C@!F|QTvk&XRhPaLdYvv}&ZjC<vFF@5s
zDzZU=&+2#1J*+6eH#N{0OI~uGLD3Z>m<|+LL{r9%v)4#sdEHxYQ=C&_D|Cj(Tx+3O
z?^P2-oxx1MzOts#*n`vU{(5ArxT9V)=Iz_g-(IT`e5+loYJ;!I$$l9as7Mv<ekS4w
z(Lc<zwrNGc7EajH;dlm61jRT}OmdCB<Xxck$vGBI<BxvOWo1Rof+C%g(*&7HK=V!z
zY4#Z#s`X~&j`-Ohw%bP_T&8$&aHnp)cY?AKyG)6T{UHJK8>1zsLC(<RWn+^tgFSN)
z;;lM4$_9VB_EKEf-iF`#^B*YYdI&0A5S|0ra;z;?dpEK~xg-cPs--Jp-P{+x`sAaa
z38HaaqM8xC$I)?kZt^F*=;>`dFiV#s?)`?QdbC%^@cJ(^lO+<$(qkzH8i%no+LPT`
z?yDjt)U+28qJ9U2Pfxf<qTre%*rKGMiIKfL{nL{kGFGMR?lf|k2en6)HlAfBr-+2~
z<H{~mT%^u&{L`up#lR8}#N0Ou0{5qo)zlTSzQ(hp4Kjcr_|?#Z2LV)fOL({=k9S`^
z0{MC1@tqsoCH3W*$(jPZF><xcXd=;G3~WCtVb5L!ohMXCYCI}$5-CG&QPY(iinFbI
z0<f+Ep=)yrsC>b5LJnX&GQLD%U-EhtKuFf7eG&k4)si?On>*eKLj$WVZYh<XH{0ap
zmA$>TM-$D87`!mNc!+qKpP%2o^o{}|w%JUnc7YJNB+2lxJuEE(Wz=5|uoug5u!JwC
z3y<eP`sw!YvtP{~>daYOx2eRJz<y_?+$i>fB4c8<O>s9U019;G3L+tHbf)V5s+_Fr
zayZH72Pm>hMaxdICw(8G5Hk`-R9MhFSPeh|0XSLNwb;~e_(yUUa|cUGOntaWNjT$g
zM2<YQk*jG4L~WvI3<kmksYE*HhPBWM1Prpxmo1N<MBL}>T)XNUB3S8PAJ(NN2X$kn
zQ4Ttl-Fc0%x_X6`$e}&$Y4*u1A!04uhS0Hk*D3@($g9||?^A}XPO86E*XkH|m>alM
z8!VoK0#|wvsz4!YUTZ8gEI`&Jna{n<sQ_`)($wqjU-APt#FP_zCMQi(&&4b`6W>}O
zY@y?-R8Ro55mO0pq=q7#RifU7WC@W$ky4ERG`Uz*ROCdXmfEz|N8@^3ZBb0<Mo5BY
z%3TZ&oZQ?|X_mXmRjat-)m`aHMKcdqRfMJdMRH<<h1`=b-SAUC+eK7;|Bo$iSO*AR
z+e4Ip@wXLkAv&-S%51CN*uLmj8_1CI*_+*VgnUX<K_}={&G8!or~QsSZPju3k%oD5
zOx{xPuhYumilzl_3-rEYk0Zw;xqjCA)wwv0Cp3T3J{{{u$<dgvx;!6FC8-o_B&2Wt
zbNM5EWtqyYk1oA?3uyq(sa~vt=6CmQoW`l|Wo6wlW**4*gIJX?K3kT&jo&V}ny+Lb
z`cE@B?!joK(pTG!<Na~BL~<&LcEUh8Ar>>%=ClO*ZTfZS<xZ&THBnITS*$Sy<Av(c
zN*qZOmZ5%ZyI&Xoqv?wdp~kHFM@gaK-~HRa(q<Z`2g4&LR1<KV17reqtOJhXbts+F
z5Gwil+qf&)*J&QoJ1V-mK2k#wVHjBAFgn{z9&e1r?zmYcJo(ao?Dm*9|K+aUVpY6@
z)s4C+4mn^7Ta((Vq^vQiFpCNOdR0S8^I%9w#}v^56|fVC9yEfN*8yzZc}!iWDZw6&
zFwtIam!^IFHIfijR~DZT^%O1ch;pOkFAQ-=+=ej?O77CPuyO5s*s;{_EkOCO&8Ykd
z_xyR!l=SvvM`A3y^TM<YdKU#7=On3fdb4v&hn%90F4317)S+KfOK_GNjB#q%$iJc)
zw&orJ{+7eh?nKzmcVarrpRANT+JR0@n&UpwPvmzOI1v&$M02+6Din36dmEOM0eY-1
zreyVh2~>W1KFh>@o4YyuEecN8a+>x08qcO_z!s_!)jf&h_59}~Y*ri{?(Z(tZ^Wfo
zu+=m6`r;7UbgoQ|J%I0rn_9_>ZTMJvqG|tgVyVBHw@k3zd0>FUYuM<s*Y5Iv+-q?C
z3K_PWPSfsCxm55oy7CW!@3!xJfI=h(Ed3M;zKQkvH_y0#{)^M=AMsvfE|g!t5B`7m
zR{fdXw?LDWnU-d_-G(>*?q`Q<P3tR>H$8Ps?%VN48<)>o{`7BJeHX1EoqW2=RQ<R<
zV|^?<dsg<}J+;xmySK;JLF2|Xpg}IsW7F@9uVo>Jp&a`^eQtJ~zVeM+o>4+6$x54r
zP~ybMMq$CXM+1)hyH@|ySxiYfiGvao#`<J<_TA6_rmv0NO~0UuS=T$|UU{$zDb}3Q
z{pO{F=upR_A)NnAbv60u(aUyzh14xFS6ntG1m3*m_2Knidfrj5jbyjCXm`jR6Sbkx
zN*o5N>L$Cox?(M>g08@sXPu6p-DgUsgX2OsjjO?ia7>>$yk`;6TK!hF(N9g-$=a>!
z8$Y1G9@x4yU~SU|_<p6XeLr7~c|xV1FV_mBPCpQ2qFPD4y_~{|A$R7~LCPI_9du=7
z_w3tuqB!VM6O0Yt?T(d|rM1qr%P%fWDTMw*`(>_;|8WnhBb-81ukR?=cq-wT{>GWA
zEbpHEx=!XtiJ%^!`%$gbCc%2yix;V@zIpEC$`pr+I0e<h`^HU*2hRFS)16vU^<gD~
zU|P}jpLhRRS0K+dQ6xWEG$C^F+Pk;SZ_`9ZHeT=f>v&ikV|6wQ%a4yMpukk{uT!Dn
zCG@$tYL4H1b@3<k|6_Kzb0|vj8$+;o{;Ign=RdQu#@0(_)f*992L%;EC89^$(tvk{
zRaXXU6+)TRg#XUonVZ06F-7LbNEisz?wvW~6QicAP!J()0h$6-_7<fcD=hWI{cbqj
zug(ZJKcXUk@qOPS3C}_O)F)YaQ)}pEJBH(_^7-Riw{6>HZs^%}X6F4C)qCR^3ZWak
zzFoC!#wL$3vF}vhn88Ald#y=Y^Y6YtkKgZqh|MruLUdnUc&O;`>%PSya>-sE2+U02
zOKXV^?T)4F{?hYWrpt4Y5=eU=J#u?FIo-s!m|n>qI~<4`w+w}FJYt;)LO0|$B<WuQ
zGsrpZG43;i)?GX&l%68eg^3tnEv;98QwNk(r1r`zeNyQkfiz>A6jmJ13rB{B30i0b
z!6}-yBv^5_Y{y9-T^gIIYvh8H8Z%%%^TrBEzO(Za=LrB;_mF7er6bK#l$H0pV!(XW
zIZRXqYY%-HtnjwwG=0BAv^)~u(>8fFI<Cz*8pxWrj3re&^Q*&?g0NVEO;eBcc<kjl
zY+bExu3a+zc2nHKb$fd~Y3KW;zm@GQ;>VXRnfH!0G_Q2#I@)yS-EDkKa?F=6q|<h^
zNNqhErc^XoDhqnKfEcH^LE%Ty{^O)l5054}G{M_>R_T+hlf|KSds*aPPiw2Q_Wg-}
z_cid-o!g_r?O(PFRGBW~OCtpjB*L~Hu}e#1TZ$^HI<qAH^xT=UTmTDF3vw)$h2(*U
zr?TWZpFDU_vVuJamWHcc&rx4v;W}SphEc5h%98a(aV|E27!`tcG5GdwecK+}xgUgh
z*$F*oV;lj=;9O3Q)Q?+1_QUP1sgqspL)h0&Up{tZTk8k;abT~EjgIzm(GCxKkl9ys
zOw%ly)om3OyYDYgxRrz+Ig%?mujSt-yAqiN&s-4|nb)yE)_QJ$pSn0?KUFJAuv%r!
zYso1Qtdl8KvE5z{<mqshfgQ*6U1wuixt6t>)L9M%SINjo9XWC^iula#6ib;-Exv?f
zPDN_Be+%6$LWh<ZR}ED36x&d!o-~(jZHW<55~iy(8`q=eT<&5S1zqzL-)4f(h~_<I
z5F^Y|m_Q>;PP&mz=~!AAET1fXbQTthz<T5x+S<55sY5PXZ=HtB^7Zo{o;7vh3CBYX
zIbU3huP2yUn~m7s)EtYF5-@H{ajzwX+7E8Kb=8-Hz2d0+pq^<(%?qiv#%woi1cttN
ze)6^J5dV?eAA&V6m(A1<b!#ktEpr~K(X@c)i+knKj2xBsr)b{QsSP-efui|c!#Ups
zJlbR3+`K#NFx2$A=Qn)~$dMN2T6wQ5&&vVRW_XZFI<jm{fvJOp(|`{OA6BAiT)SRs
zV>nLCP3<b;=qhkeHOM$(VM&;hC^6Set05W)*qY#<#es4<1g{(GrtZR0D<801e>~XC
z>d>rqvUb9;XD?`6yIgO1Kc5}oS42fhNYqzM+jvOuM00C;DVOBfOYKrOT=;O&uoP5_
z^{>~0;rx*h0;e|#ARKLQuH8uY(xq_{o?j$IyLm!SuYG_v`vum*j2CI{ERvs}?Al-I
zF_x+Y+f(!m8fIDdTue`u8S8Fq__@@1Wp1IYx45V6MQ@4JJ}5`1a~6DY?b-`rp5$~8
zwkx7ScOpwsE0)gV8P@ObAg0D+6N`(blF~~{bW=wjJwne%=1^cm6KFkf&bGC{RON=-
zVzry}7TB1!E#--RSFUjnPTxZVteIb8yIx?c<~j2lI1l>H0nTqI<ifg6-fm8H{7Fm)
zI;%SOkYD!G8&&NUgf>-Zvk5&9?jl5X)W8<zSl(rM-rAm&dsj8c=U}Tg_99x!(60a7
z`tI<)m)RqU3HR%IfIIL%$J-ehT?;>V95nCi8NHh2D$U!ve$J(Hk&}lSZKtkXx`Z#;
zTOA??22E8<E38$<sw&93PYVq2{DG_X(Mz@AGLl?7cJxr5fB5hr&#E!T`VVPGH)^50
zUE~ix{2%~#cT9H}X&Z$~eZ5fU><GldUq~lz;qqz9Fv=R_1v4={MK)^vewSV0pst~-
zfW_(@yQoPHnr(H6P`oxGT!yZjdVuLH&pxFV14jzPf)J<7bayv3rMA7M_I9P(R0FI<
zf4tN3CS`f%363s=<~m`cOqqp6jP{L%Tj5FGzfAgyoTVr;nvhIxb<bA(T>Jd%+{0~I
zM2=stErLp6=a-tfrg5^i)_ecZp=A<;uab++dJ5`1!}Ut=c4ivb&hK~4p6|GOm^REU
zGvdHk@Z(vIH>mx?ue^4Zc`ccba5&1Eg|6%pvL$AxIJCb@`O}_CEoo1;5Ao+BSw(^^
zbYRDWdC4SJm#$23raQtgTha}=kVd>eKdwceu%YTKA5GRU{^6{>x?R<&sgFtOssd)$
z!NKU^tvP)p2KbEU@R|OypW}gqGj$R`YbVMR?#v~Pl?B3z%;GlzK9u?35{?On#137(
z?E4hSEojI!_%eUMdN*s&1H&i?tQ^&`h07XwD(2%IoR`AH_w3nI-XuZs8eRQoz*SiC
zsMLiweYiDeqKADhT+|T><+y;|8?tL0sOaZ%a;md%E}?9B=}K4W+<_v&XCUJ~z&-Yl
zwnu`&rxw)5l+wrQW`3T!bwCw(x0s?SdH+t$3*lsfz{7_R(dgQoEkUz2)1;jH6J&gI
zi?OlA#l`hwMRb1p5v1KCC)yn;<NGr0`njc_x0aASX#NZRxD{>xTi1{rbR9f6ZSAof
z>6l3*(L7d33!O*(XPs2QB6A@TamJ^U@&uBLKR;r3*?w#EcMvt?uK_n-mX$@SulmD7
z`EmL`#9sbqoIHaUW!T7@&m@ALMS#8cyPN9EU-YasO6b;aI4W=9LVt=wvmb}{MMV|K
z6}z_i-rpXJ&+e(RJvMv%LNfPquNz*4JXrIxHGu`^cOmHy4VY4?ACKAFPb+X6=jisj
zX6ZULnkp)05mT}AvPmgtntXj%#M}M=SIjhrsT`Uu4ydW*!t!~I<)_trV>2ay12YA^
zVEIsRyTO?7&2K?f&p+(Hc`;kK13$^awBpl`6|dAuXiw1p(PX!S$7MEy;9}`t`1ONq
zyZFz<dCG*tibKg%<;7azuzJG#w5+#p&tBL6?THR`{K?Z7g0X<MKHfREk~Yv??;5Xb
zD1V^&J)M?4(G%Xv8Av_=Lc<o=YE8@_N1K1+yw9IGx@Cr#SpJYIIMyOkb2o|_yAJ{W
ztVFITjP{tmhA8}Ml9N#XBG69Z&&$wP<a=AXO;sS5S+&%8#<Pwj+>nrd(9r2u;NSnn
z-kXQjy!LOy*>0JKwxKj4WGo@gWr!psQPPAYq>@VGs_bkc6|yU7KqE~m%_B`nE1DLK
zlv>S88dmdq&nr#$@!t3Qdye-wp69Qp<Jf!KS?fDo*Jn7-^Ygi`i~E%nf!3jX((G6K
z+l-7F?sXRzw<^OxU;O&z;u7w&b7STS9X<n2z3MPaV#6dK%tdvmTrbPUoNl(su-JW^
zwDQ7iO4|Hj0v8g}D&}WD+dNHtn0OJczox<m4Pg^Gz~~seh-G<SRULn<{y#eQW+jCk
zo`=^joo|{U=7r^DXJx5#1z7#}wGCnCv5m0>^=<Px50Ic-MR>~sJCdqhM+al{n_gcc
zk=2Sy0%7mn<*`32w9H4f%cFFvRz{zIOW1dtj;_zwu|B(O8Sf}7FS9p~GpKdGo<#e!
zuG()b(B$7w>wLoW%`QX{{dP$@;2jB^$@4|9zNWP;MkTVzeYf9@t84f9FY>P4`x@f_
z3I*{%Vj$SF{&N9;+kzQVr+GU`kP?6|J;$7%Vm1e<#-CTBnzeLPNi$fp#H*JmGm-^O
zt&f*;W-dYM-MbUb#*vyy!i-`~#ZPKo?;e=7u|^yV(qrt`8QB48&9oJsZ7Vl1m}uG;
zn&3U`FSNgJ!^1Y%DSID4j<I1XZ+F=!cKr$<5aWvJsrdEzARjZgTS3v$d?PEZYqu5C
zf9Oh7#{2WzC3EhqsIxcU;wLTw&d}Xyx7OL`P{BRP;1Tda!IQeRQLL+x@fPi0Heel>
ziDvRP;yN+|A9t9sKKvs&^C{+OH|&=uVY5b`gdxdrat`*@HdV$X?Tx|z3pJ@G=82tO
zmv(1$xmhEu)F<wDl^SwIuB`GydYAa#ARr&!{k3#pifn%SIW-l>z!UyXs`V{T>Th}y
z|HqkM9p1sQbU)AKxyv|auJE#eMx}07m&RD1T2cFBUiVi(DC)O>wR~639J@W1+89jJ
zjB=x=Xa|zL{;6Qgh7HXNj-?{YUL2QSOje(V<>n_qdPWitp-Il4KVQERo1GvTB-5kQ
zo~MMY>m03RrvCk`e2eCv;73UXZPwtja^d^lPEE+WX_`k(heKPG$!a;;$Uq?TQr23_
zg<&h-y$Ti$95}2#)L~VtWD%9o!o8DNX5e0*MeCk!m>ZKhYO8Js!qUV2cIPL;;a+C`
z{F|gOtE#?!PZj<$KM<8XSzx*OCdtpL5`_XBq#|@=uKnQ95t(|5nUmCW!QQN)5k`C^
zu<U`cJVEP!JO56FEM%|v%9$%SSyYC}`<Lr><p}g$%7VPNzawX{l>>yrwbx8c1_x<&
ze4r?Vn01ueqp@;boO^U4$dI}nHBvL9vlJ{IqqfL;D`9)#K<E*s-CkR7@1&DdcUQ?X
zZZNf$<|&e~Gs3^8cy;!%G7xL-it_dUNy2g3)2!#nOpENZ(a-NmRT-b~i#5>0{K})X
z(sqIS4!t&o7kq}&_~8BdYbGKaHoTknRSD4wD4@^wXcP4bXE|Ch2g=2Mv|erDK1Pz;
z=QcT`iYQkkn!%l{_d@;_3KgH9$Qm1KcBr5<5i_(UgIOzAR0Hy`)3}a5VX=I5TSDin
z)*G|qD&eQ`l|@^(k{hZLq|Zp0xg0_8u3cw~*+)GcM~eDTG{YgOm>vWFzSw$P-_*TK
zb}D&n)1J`M@N%W7NR~&}rKiwV`AT~W7p<%>tuDEi+bS&8_~_KtoQ0YcB74LP8Ek(X
z?jyN_FgE)h?3(f`B8Iy1TbbC;rqO>k+xc0Qs;L<Gd)7Y?41z=QGi{K3*nemfNj0($
z5~?k49bSdHDk`(0yTa6A$0|!E?T4~R(d8Jsp3nRR;?RJRpKAt_;KE5}AS>=CY-~>G
zIZ{r1^!pn2EjXG!ko|K^>0L<=6j&Oaz8x4`E>ze2NMMCEfR}f<9KAh0z7hhjVyn~8
zrVI-9^mzS(W<v-WE)|UPt)M>Ty1B0CeGxEQBdWDjV#+cH4@?5^y|84<wxRd(!~3YQ
zVD*G8S>37%PW{(HvCN-uIig0WRVIa(MeM%aNFIq!v#q8R9t_H_Ndd&E$+ujX{z5Zu
zEu$K9pAU3t*johrQ<V($Ie^&9_1$kHE?^Loy6=k|yohz#qStzwFV@5h-38WCSJ8W&
zKG3w9X20!2zFXntx~yvkwU!lf!&eE-!+v-KK_y1dI7A+DzIbZ1@;eO;Jfv#Py2!Td
z!BG3rZq2GzFbzA$pU(VrKrJjWkhx!O^?eqn1rIYL1n{F2>)MGzCT$8^1`AcM6H<|r
zq<`TM3h*h{B~pv?2ew;rA7=}!)tQWX+ip%snofHz@A3Zhc%ZKTfS;Z&KUqaily3+s
zP#{$AWq$iBye?hxHz(I-aXLOosC%nr>P8;uqV?!N`V7gLF91A9U{}{8kj%lxrVK9#
zD-SrydSMt?v-QfwJXz)s|16_#N5}^-0R<WI{d<TXFv%(heB&OktkmY}7hnpfYzz2m
znxyS|noTG;0{Z!H%`u7gG{9asP$osIPEkd2oe9|Y#mdZ#_zG;5Ar)GT?bifuE$y%$
zXfzojdL!J67xT5KzgOzSj_Bky5jEg(esUKMQ!TIGTuTHQd7X^ZDu<*xON|OC@3OM<
zZZF{aa@)@-khg}VZ6x?A-J9HK1K5_4J+fq1p8QZe^*VrmlAZaecqT_!0OdOQJjthY
zKXOxX;nT~!wH<7dB!#@Zt)v(0?0dUr4e>F0f)Q}CUlLxYzj<Sr0*Jh3cWvC&vs82Y
z&vZFjR1EaceVK|g+}AIS84yv02;H)M!l0d2w+iBvm%2cUv9(M&AF^0>xps_oI<vA>
zUo`AX`dxYX<^s4!6bj9=TV=n3#gX(#9_=vBJ@?bUZd|njX0~5}KucnN{#8U3Ab5Z}
z0<j}`heBAJ%s};!vp_ENk03oGVF(%gnhBde6nHSqv{j5g8WvOiRe^&gll*P_zS<O<
zH@1HzVrQ27KaBL=U?OM%ze5e(15*lEzUH3@uV{0o#mJ%)*ojB|=SjV21JgnCsKwfb
zncWWGq{K}s%T}H!*F$37(DA4HG7hsLh^{b^k${-r!cS9%$M(mEx1{%05Y2F=lxgnw
zGz`&-+Qomc?dB91xtLoZ=k;6bDpv7uak&+?Ypu?_>{sgDQKpI`YQ?#N3626`D;zhq
zT*FwdnyN&sO8V=szo0A~fYc@HzL{S#4qEG)=k~+>r=Vz+G>%~*GGfSReV6R<o)1i}
zw2R$*q3=fVPXpfr*;=y(kpIC4jxXlnW9buLjImS)+go`QWqioOJ+?KoJ!3{2_4--@
z+ES???lJTWNcM!((*{T$Go6E@W{h1|<N@!t(Zm?Z@^+~n^XAQ~4?tHW)RUfpOg(4^
zT}|$MveYV?`IN$t{bt~QsT}vs#Ry(%E$Q!`AEnhmq|f)>y4)NbG>0x%(Z=pT#)3r2
zW2EHNtv9@e-|^RbF01d@aZ=Q<B62KT5)qWz1z^q#+i8?>7>D|XcE4fpm#|7mEbTxb
zleMx4v;!vG0$TqXGjOe_20$Pd2v{EpTQn|w1A&L68fK@h7M)TNsl_Q>XDz5p8R?}~
z0t&w8X)e{^quZiBm+y{d85fu5=&qtl4z(xam@gSaHxLqCn~ntQ&}XY_9q9gCl%~g;
z3B2uMm++DoZMut`Q@uts4GR)B4E_)bB1JZ{yycR#uK*CHJH-v7cGOuCdE4RFV%8Ec
zm;+U&j)WMa+6Deh%6qZ_#rD2hr_YspIPwydbj7i^95O$S@m%h?-m+peq_x!{FbKL8
z09{gdZ8g|VY*^IR`~dT#%lxk$(l+~QAR3#VuGf9NI*7<4h$1+O12)SpJyvIP{ohz;
zo41HEw!bfl8csQiY!ln}vR#$n^PE;dn}{lGN*og$Wb#*#khR9jcGG@CE_Zek>Y;uR
z{!j7CyAYTEP3ZrhzBPHl|G5S?`O*JYO`EFvp#4l}Ec#6f;#_a1ynOOPc!U43-kANg
zuXczb^q+DhuEU;i_e0jb|1&TBf6JZY6L)6L|H*RaG;8@UrP)9K*Zn18vI2_B+LrwH
zO5e1*9=!V>3&PXxy5RET#c~Iy%716(p#DB_g$0-Y6LL5-frKYMhW~E6vV5YvdS0%7
zRbp0O)}V|-mAi%=-;TZ=EXjG;$*Lt}(xu2Z-i_nMRc5oWYgygtzLEaktoD}D{+K#j
zJC7=sV<7j+#g42rC7h2r_2U$jEvhuWUpxl~XP}<c2Kpoh#mCNE9Dn}or&nA0=g)4O
z*20ZYWISu?%MBtD@<;ov&klDoJ8thRo+}`7uZz<!u!kgeuHFAN1~gxNPhTXv`_ihW
zsi(qy`^Pzd_ES-_;XLPa(|4X>yR~?{3t<7bCr*iz)9sISu4Og+E#Ru;J;t=SE~7zU
zKMLx>g_BpkwPE5*n>fAPkDMPrNaOe4-x8Yq%ca7j4GMiziJUY}jL&fP(`y5Pj|%W=
z?Mw$D`}A$XEYDxTh1l+M^5@$I!QWDh)1HuTU-b3sljjd*)a9CS9(WU5uwG}HX2Zs&
zxN_pAQh|JSog81MUx;m7AlufgJu1|wc%B?^;l2pN7<5+0xWr)chWj3k+a$aHU-}+y
zO5WPl^e!?gV>S{u-9{wljoZkXW2vt!+Rv_>ZV7C&Ctq@BZ`_^R23v3o#Xx4Qqx|#|
z_~CJDbuKYuwaDiMD+_m8R^#994Wp%whf;}oEDHMnh{Rm4^8;jUcjr$&KmM>=Zqkef
zhFcmv8!`nd`pA(}PC;se|InT%7@Gzbm=1>BO0T->dh||NN}!Uh(!>R_RS!-)QpH?I
z-VUGX&%e{N-lb#=KQGS1Z<M^DmS*p<9dT<)9(p6tXER)%#wbiP?hGtmG3A@QkMt)x
z6>P7)pG6laBfB-RXBDp3-hReh$45$}rE%hxY>FEvChqcb$K%(JRpD>AhL1{hEj6nM
zFP(ipnq{9K9_&5YjLjP|F`421$4+rIa#EtT90&FXx-OkJ-%}VX0-g3*ls5*-|Bw_u
z?9W*sV5MC$RX}z>KAyR`dZ+^3kL7wXrB{0%JABRE7tm1R%93cAG6qG_i3hV)6B<zp
z9K?f34Dvcwo0*+$P2cAmgfUr{F)2)Z+pvDZSQ$S!gz}pos`__)UKdo4|5>j?7Uj?U
z;i_>&wwa>BZ+6a4DsDr|x~V~!xEJs8(8F5_2W0U#idpmX1MEHxIb_<~mo!ekzoO*$
zWAQGR)7vFXXX2y0BkuB@$;sO+Yxi_Wcm8$aKY#ovpX7F`#K>!jhMv;;vIl~m!tfEN
z8M~Oph5}^{ocCnKTgG>6B-Wz6XS~s9x84z90q?OMB;NJ<RQ?(Uh01MdO9n#8doq;p
zHjYor9UI07vw_Bn6LKj3b)h8W>LZC~KlM2{Vp{^a9}52+q|hR1sEAD!1zpi_mD<I7
z^LtMBoTsM5!=fKM?3aoA-X+H{#|)~ZUYQu5Gjqlx7_TZLeJG}@+xSTA_xFbNc|Gz%
zI*Yd5JE3i>^f5qc-Eq3Z`j+Ed`7*O-6bm{9=%~wO>g_qq>1Sn9GPRA`KBwPK{>{aj
zUgPLyI$D#lSI8;1Onyk4{NpFq+7q7A5>p?k>iEb)X@OvX^X}Q?YHpHt7FqdrQ%94s
zznuv83n))UU#z|`OpBQp$j1J+UPAgx+DLDmLW8o1kj}iEoAg!pUFjUVO-ME|XW3s5
z%vZ+~mo!dhhkXhYqrI<6kcZzRO<?$JZ3m|Vc3!+R(BGdsS7@!yrfs?HqrEXfjgAa=
zouaK>5#qjS#w<qN;L(pG-Cw)B_1dd$r++_Vz37hsMYa)fv*G=*zY2`(_^k4B=PG$m
zg5?Dqzg@s7XZ^?rBgq^g;o)k-23MLkAE%!lcY%PTc8S3sIoYPCS?e5zf2uS*uw?m^
zXW>fv_5H5D2j$L!Js1=X+=gOa5iWn%Q_+vhlwp@tU`BVB+uU+|B2GH3uAgY~xfM!+
zU*`3~`p8UA6{(Gx=5+Cf0G65JBe$%B{r|d}OL`QNFO4q52Hp&dsy<qs_Mc<fU*Q&4
z@t#$jn1IYDmInJhs)}KIe$XHv3Qt0Qt~KMfcYA-$;KG{0&QtcvxbB9Q5~s6UENgvE
z^?svhQt*W04uhvCB_X1@7$n&)nLnCqa&;X{eJ$SSA=gb9+k(~O12n^X;G6TQfrbQ4
zN?l6#lLu0!hf6|c<Z2pv<sRwI@-1g#+1x)CnhREAF!ZeXXY{ngWR@AaNy#$$YX9<`
zxE|Z!zTZK0+c({Q1E~lKYHE3ToD|`fI5w#xS=jZiFXnXZy|LsF$F)Xg_KnP6c(ku4
zy&dHkiK<}~sg_?8*K%5|FnO(-fdlG8BGDt~mSG3r5`!5QQltG1^>2$QyCN8k9WiTl
zR_ue}eInB&n|9^xI>{lC!~S&U=80>a**%`Y*tH9_vZ$B6^{$zfteaucoo5tHy(~Za
z(JNT_oXbz%e+|MxS7mt~9abQ|VKP!G^2EpD(!^!5my9QAuB&OI%+6qCw&wB_x}Sgf
z=>AgoX;*k^sG&1DU_#;a*YmZ|{14yGx@@x}f^xYl?4j`7r%yZ&`1zDOp!}fZox9|_
z<eZ+{aG>H)y<MUhK$oRBS4IB8f4B^}F4v>+XsBywSMkqsw7N~)ZNZ)?;^wrc4dJ+B
zcr^RiWMiV!jcKigT(5<>>`drP*1$bgrK$Y0V9#WNW$P)9slDi~m+{%pVrBN(I7GO(
z$`HCAU%`kTOXIhZE?mVya*(!<R7|(s#B(^^7|#`eA%A4q21y2dE#YdbFuj*lXCu^d
z%_-+%R}HhVUEZjy#jGPxXL+EAfB<606N|@eie;QJzT8<RHJ<;mw~;-z?)9khmcgp3
z1`X4l2tM~;k!a+~$Q1FC?+Nl@g&6672z(@@^C#~kh@`phG^_kJ)18W?Mlpz_ig#G1
ztkEwl)W<qk4n_{YEzT>LFTcXj&*Ahk%CGaQZ%w>F&je0jTX5Vl>*X%>(c*Ft<OSP_
zldY(u=(Ud?F&b{<G{i-F-rF&<1Vl_7*YP`EP$nU^q>(Kr`$mkIkcWh5lVeL|a!<Xy
zdxM9xa7)R=4Y+QOyEI$&sxqxPrDE~XcVkI(-+m+K3Nyx$Z!62rs!YE3aFX$6$Mjum
z_Hr$C)<w82cxdOiggivcai_B{1#`EpsSg!l?bqHhayM9cBHW(2KdA*cAI@A7YIH$o
zxyF&KHB_niwJm?%5NtPHA?%WRoAs>9DCdJfjGOs^z?BA$_Ipa!?G;B*a$(T}82d-!
zi`VJQ+Z{$i^>7=*QRLm&PKI~^r!5m!c4mo<VO?6yU+PEYT7vsKtuog+&Ak=d;2|$O
z`YZLNk7apJvPq|2UKJy~G{yLRhP;ayvyN{JvKZ|33fSvI9w^$^!9e?}!zKH6{Q@D9
z1YUQH7{5;JyweerzCy*=VOLwq%C58b&nnE(pLoBgo)grHOQB+<;Z|fHN;JzN)N8RY
zTS633anHA4Ae5K?F!S!oN3^!v!Oh0<sc(zMS{;6i!J)v&qLptgN{3_e4Ln)7<_jev
zk8T}35lrP-s<vr;-f)bgWPt79*HaEGXU!Xj$pox-&)Puc?p0J8KXL~san;qSBENtw
zBZH~m$kO&Nw<@UDx_OdK^C-93xw7hCb@79vU3cK~^QA^EsAxqFcU4Aa##6W4QDi*>
zAm|MXFv{jQiAGD&kaNc)PuuAE*_SA3R*eomQC@=<%&EAYz3O+DHYR}mjv-G#@#R3v
z3rcuoPYccLRXqdmy)Ps<0+FP5cV+>PVJB3kV^72Hp<xbtNYC0f<Brs&+&f*)LtYnp
zGcp)8*5AEbf|VzL*O?_#mDAi#Jr)9adCz7~;kjJFzp;zuN%cBUE%d8yaUrq1HLxg?
zGi%7-bne+d*#AZ=`EqlXktNpP6<<+GC46A)hkeF4nq%8`@bxgGMziCWvhdN=wP%*_
zSbe6)RUV1S2(VCEQk?noxcX4!4&{3MgRy#A8W|Ca&Wk{b@OA<F`%{5%?F6S_TkvO^
zuhv8184`Di^{5YV9+5_1JvY=Q9bc(8^2_l^>RP8Qu!mT!-PP{GF%u2QYzyQkt@nO^
zIZu&h$5<P@61wY#y9x{v>S~!lQ+wKnXpTjf166-v%K!DL=wxZk$IDqhqx2~+TXlBg
zLI}xAvMyFWD3|L@Zdi0}y;Dxu@I%-5%B`j&QY{ZBhT@>lgw<jObE}4GarvF~xl<Qp
zbJCrt<4k;q{P$MWUz450?)S!mnue|`jYW$=gTQ7)ZeDgV$E5V`p<namvC^5u=ly{)
zziIzuV#O`jP0qwkR4<3RekF!lr;oOTJGMSX^W>uVLBqhpfsyxuNAGEBs4FynY%v=)
zD_Ey9nLOCCpH60vTjBY1M}Fl@bCq=Tv?zK1v9`T~!pJAV<R5um9&yTmNd1_z{W<w2
z*-xkXt$oN_u;R~OA`z}6gw6R=&EnB*wZlh@KC(&@ezzS@*d;b!mY96<+@57`Eh-+b
zGlOY1{MD`8pf4aT*K+(uPOve<G$_GRg&;`%nnAa&K552zW5@G34WEabw9Ja@VJcI*
zZ?7_&n7T7_28K>1Nbd77@nw}KU-=c7t0Z{zaH_($IT8u|Y6KD~C}?Yp<XM9zx~!{9
z5!!se1*p6r)bX;*M#tj;7Acc2$aY6+s{8at*OLmzJO8lE;SmH-1+k9t&^`{Ttv<Z%
z@N(c80^ii5(nUz%j5H?ctJa38=P5k7y&c;s)yZdc=^u5L|9CkNk-@B(m8{0L6y4z@
z)Kv^OzcD#`xQ*X#%~Wb(WBYS*DZni!X007u)pmUZBdu=0Ysvamg<S;#oZ>7dPyAqo
zta{*-Yq7E2nG~n?WydcpHcTi+d>%_0ai~StyUKZwA(k#`8fzNF!S^;!ta7*&12z3r
zmIH-qyu*-s4_%45mm{L0ioWWptFKtMZrz>oS@(<kG;|9uJN6c`#9AIY?Rg31qrq2G
zBTukxG&Y{`ers`_SZU0`)bX<_F}zL+;}!8$qQ=I?syaIU=2g);X@4#}_d$c!S{^Y=
zbcS;YmKaUC>w<IMM>2PAc6rf~K*L{7&d`Jqh|Kxy+3L<TMkZKpILa7kJr_K1&&5?Z
zbptk)d#Jl2`&F;2cd2Ga1D3jxhisQeuvJeR{YpRA<@n^^2W>oTZabXt`n7_NPK^^)
zQ(K$Yyy@eeCpgpN(4j*Qb=P2p6*0&J6(j{<Q0FgQ1@n!jEWCL#m29(kotT&(XHZyw
zZwJ-o<;#~BO-)r&*G|3y{?M#C!KJqC#8yaor7H4#Ef!LE@N4cHH*LCG9-%?6fgm#V
zbNk77<XQBjqM{=F<;%N50oH5ieV88n&!N=AQy)dRnV{+xo`*utwSS4taK{!JZI*{A
z6iT%nBSX}*Ha*yT*7UE`jL*;0C;MGj;4I9OF%9Zbr<ZFbnYf9eX&7(w%UvtWA!923
zk#A21B;MC3-)#^P@xZ<={Xc}{SBi;=NfwmTX!LedQ&W%LHX6Np7seCI8rs$P7A{=a
z^{Y@sQD0yGbwYwAe+<r?TC?T?4r(zlFi<^y{MwgdB`qy2nXcTWl1XmdVw*k`7B041
zIQ@Bh{Kub!J=c<^<1Oy8u|CHMTSz=Np<qBI3mBCN5e2J4(NJcDCgC(}Vph^(K^4W8
z6`HIgA;)9Szklen-Qdu&WebJ{9vGtaB0T(^R&ju=9sBUKePke8_)h3VPS2hN2d~A^
zOx-4UC4pD^XxQ+Pvb=mkLxa9h_QN{=qXj)JrTVR9FVLgHZZX0q))-+}=(V-xukh&)
zelTGC!QD6U-B9f9?VT;Fh-vY27;O1mQL*ccWsMEp-^Qpi&OrH*x3@sov=SqfGsc9l
zv<h7@LDA8|j6S^c3`wf5n9(nG{*dD@$ngt}h28~lDsq$;LnbOJsw>KrVzm46%cv+f
zUteFpsud!-TW*f`6plUHnI#jluakB2v)i`Sx~EP_tSYeS`K)N($H~cApe&NHEFmF*
z7!I+$%F4?A9D&g#h2A2?Da9}j^wN&pZ@qN!B95<Y9lHT<QqA=$r^snrNT3Eb&NA6<
z2c!3Pmq|63RkfL7t?2v}Tew~|VBQ+r9XnI#&!0Yhs^y5HwS8}dp4*8{|Cnd#jsEhU
zt)mR1IP9}+H9hgeheNCX&EyqtOmyfvJ-a~1YQ5^}>IR?u{QNJemPT8&5+i8?o$1}w
z87~mZwlWg=q^~O|DJfBn(POQurzarK8YtHP=p)L(VN=j|($3DV_G%cs@l?X)a;M12
z1zH#@r<{qxTTNM6nZl7HMNS_R><50quzByN;48mOp2$&buY8SL2czxols2w>J>!L-
z=lk4p4Lv^0MNJ|mssC%S!-`q6M(6NPGmUQ-r-hKMy6F;4MNh<^nui{LkzTd_u+I{D
zprZpSsG=DBMOCTMu<7ua7)FI2A{ESN@4uO?`x?2qV^BNWX|u4fyCT2MT0G8d`%dEB
zaDv(ngqu*6z*^0MAMZW&^Y5)xJ$;%xBqZdv{qW!Dvota?q8gL<N32V4$F!$pyInjX
zDP@0B#l5w#fVghBN&NP@oAAL`K^Ox$Hw1aN)YQ~)EW$srX}Q3_JH`5ZZ13OH)Z{GZ
z06OF1Vt}4_HMP>Sn&SU<@!Jz_U1o?wg>s~b84R}@%Dcj*1<FR@Pp&(t5`u`TYdqgC
zu%^&-?K;jr9<OMOU1`e7Y9e(rr25dM!Hj?>&>b-PW+S~cfxbah^v~5|H!>qy^udth
zv&9s3bablWcQbXhr2O3(*vRwt2=Dag+O}=n@jjVuR*!s_hCMrkVZYW2ts6FOyklII
zn1|4DF6Y+5*fVeba_G=gQ(KB4H`}rukFAIe5UIx9^kNTeCNFqxQjR3om)JRu5So(^
z$xmh2VrI<gRJX(H&2w8xCb)#1d1RT@OVMrOp_6t!@3&jW(I|n~FUEl{A~{(Cf$ifH
z@tA_$7?hWSi4N1Bd(lL+S@gkA(tOQ7hZ?IZDl56?a|$1hOnmt8;kYw@!Ga}^XR5_=
zLsznzbW<%ZJ@WFp&TrUNpEnl73y@uxO8;B6qQ`A~q81$@Gt{go{~?X?HO}C3S=l3t
z$7rNFd2%_=t}E|SqB1i_?>A*OdTBk!v(gh&uph&EPbJ%F-Ss#ybYgwR?5NkTcaFu_
z!0iSfoY*<U#Kje1Ow|rU9psW@mQ<#u;s%VO%jDaE2BJ~>)rTl2j~!dG8S7zEq7o9s
zRtRfLoFRv@P5zwuHjc`_-H$vKyM~d79NIt1%#uG-;45i<0U;bma~>%xFSq1xXpM;J
zw5&tq@Ed^xNd8C-J@RA)c3P55+Nzbf#rMgR+3o*s8n4Dp<LW^)(dzfMmfIv12g*BU
z|K;MfMe|{NR%WK0NqSfQmt-^jB$70eNBXMB=3Dek4Q;bLr?LvQRplQa??8-L@Xl=V
zk?{wvQ{%=VaUKcz!J&{}CIaEBaH2}6f|;2a)tER#OKDiaN}Oy#21Y7NZt%0m0lW#7
za@W;WzdrZQ%xjB)Ue3MwYnEhENNLNd_zOi&ywgX<>BczFbea*1b!6#P?3-M|pFUj$
zqw;vBLOBTsN2I`u;jM{>*f>AO_N_rtQO4Qs(*Z<w_Be*hb|M}zYyOHKHFC%Hkj+24
zN|Z(R8yGb1DaI?T@jt4ls`}X}z?s-PEUmUfyw<wGiGOOJL<HG=<NeJ}GtBA!RtNC5
zwH+9Onb-UPGs2O^WbOKLe>E1`$u!-7wFn~jCK^|<%iL_q7DK%Bt3nof{_NTJSG@lg
z8JyK7)-A6MdinBl_FoUAu=+IL)S>%{oQDV=8_Vehdb$w7NOT~{?xKl_d)-K<70h}W
z2Zyv(=e^HCiUlqlg6EJdR8O2(hL%K1z|gVQO5C5#@5uD&bN|;k=UFfpuo*6K`m`_B
zy-oY!-T(iyHDdA_|E(coLYbQUApS4`ou~hf?aY@+!Z7Xk|JHNDwaZ<)GdZ$P#P|BN
z#kX^(6}q!unU%OKjjtRNwf-Ynp1k&dyWf;xi88YT=327@d2Sl9=2|krrP$cMZFqzQ
zl+4bW+s30vPy|$7p_P{#7;{b)_!cam{`uE-%ub1hdpj0Y4M%9ixFb*olQQA&pQ~S{
zadwHfKvw!AgT0ur--KtHI6Hj^odmDoQ=l?@92~gjwA$j_X+x^`tn{e#*6SUW<!#9)
zBh>f9IStdW)0ukYsn2Z=@D3#rvx8N@C?!*sHrAf;3MU(zvo5emq+V8Lyw1eK%(@>A
zCy>in;m$9M9`F+<eu!Bt`I2s9{vWS!^~8ts+q*t&j!{rkQ&V@mbm@|xP19qtUc%ze
zf~QDGNYR~FVstZ3yUbxzi~?SUyH9I$WKAko5|>{mB^8u}DC>7rCQ#;yoO*R;Pqjtq
zkw5I%zHKuC@*BeL)R?p9h<C?dU?Jnqjf9kWW0Tco%a`{iJ0gtJnL$`P1&-k2LOcrt
zk{5xa)i?<5C+?Qs4L*=p>^RzO-QXtvJT_Joj*Jz^NZ-UMseY1OKu&#6|KNGz>s$W@
ztKjekRLd1WsDLqq2Sz93NYF80|AVzzldr8h#oSPx733l3TP_UfJ~UYZ=bhBqo%V<T
zo&i8V2V&71B2nH8=WV_?vB{w)NMJvP4Aohu)ggeaIBqO;*4oh07HVdFef^i$m()Cp
zzt0TpA}6@$l3rbtdkDx@JWn>eY{WI+{ykqGIZ=|%m~;Mg;uX!nR>@=g_U*GDY11oS
z`NvlbmT_kY_IyWbzQ(@2aY!dLIy%}sz{LgpZ~o-I2u^~NO7^zqBRB=LwXMzEBqBWA
z1-6fYG%_lb6h>Ix^v_*9y8?E`EGhiH%I|vRC4z6L*9*jEuaZQcUUcSQtKW?Mvo8ai
z0hF~^q!xcCxfROEFSn@h@a6>f=w1Su;2pNSRi8dBS-SpkbGPIrd>+&A1tVE~y~_CZ
zHQNa~KJ{eV!eJbWfaiv3uU;Md!oI*fsm{SJ>1qgWR5w)1JXf7;rh4qth@;&uF|j=7
z#d2IoUWKiJ+s^LI+PjKN27v52*cA*<0_O~!L%^@LZHqE{GmA4fOn#&VZ+Yd)y>Vbl
z?>CCc*oAmo(Ux9?g}$bgHZA`S%!iMR%{2vuNB{g|;8t{gJCaSD`%(@9$hgE!wDA{S
zUI*X=NcM(qF91yOgwlZ6-tq1*A}o8wgkLBQ;Pb|2IQD(<fo}LM_HRw9e^NJmp@Oj)
zj8+s}(j?2AjM17k{FI*0;b7J6<P6`HJ1$rxrbSPd`y|pQBCzuZxJ*!JXlT3+&h!L_
zQu3a)HW(zNO>A|24()IFK;wclt;Ybrnbqbh#G}mKuk$|t_l_-^ak*{t*cLdsV~wd)
z%~qKNjL-$D-%2>kgQH=BYe+7IIe{iJB}}FKJF5)`el>QL$2f>F%pHq-#cKBYfawt;
zrlqb2Gydo&xg$DjbTE=Fc%Yk3_h;c)Ii;jbK%KD&%DH020dS%*v@Oj@-_geO(te|c
zQ0!kPaH;^W7?(IP@ob6}6C{A`>eC@?e%tb=)1Du_G`-@>Vc?)qQ5~W;TXrMubyb@e
z8}x$O?T2xcD9?0SeHQEtPd1i$pYL~#8`O0eXp}3?0EzMuH`T301qEw<=5t=?ZJc*j
z>Qw-|gy3Rz7I4@#cfHti`;$@@FE}f847fAtwA9<+i7@W;CI*X|f0MOub1q)Kd>1G$
zxbV!J@PV{O(fXx<E`=Wo3Vh-f6$RZBYJf7>loa-y7;Dq{bM_0PQ#tKl<A-DwF$6eQ
z?En}7`H!lqDlD76(5?9;{NG`qQ15`Uva%r=PCvWO6w0ETQe=%%O_~)^Guo?DcIZ-i
z%W;0MsQ!U_P%aPxX<;^4P8I)0$WiHz*O4PYkn!$jR7rYn^XH%-z}-X2%4oCx9p~lH
z*Kbn84X-5Nq9NbSl>=)k_H*i#g_&2zjxIvN@PD>~tO7KyTsG9#fri|;xHurL7R#(m
zUef}1zAo@A1w0CU6yGkCVqdV_aWEt%FLLwdbCbn!$pvQ-u`)7Oc*9o`czAg90e3Q}
zIskimBdr>Cyz!tNk<7*Tkj*}yMJE8ft!gYa43Cu*VV!wt=#jQvCdhsM#csrhGJ8Tq
zdL>NHo;^!v@bcmHWDO^#<lBac^ue{WB1#J#8Vgo?T(Oqn|N7G!XP=_MKwH#oulBaS
zYKhV0hKIs#4*hzpHphkUWZ)>OT3S^x6kJcg>EmPn)eCi&Bg~WhgET;ycNBTetj3aN
z@b?bh=Il}MEGGAH0%6AzT3BhzhOJwP3y%pqR=KzLERRr+YE`R20w&^5x~0HH(3{w+
z-{0!)lcWM0P#GH7HVx+f`FG@d$DL%`+e-a;7jsLmjuFBWY0@_YBA|h7Qx?(xdeb>w
zFDHdUIXyXDiPg9BFiO>JKG88zD)J*1flZ^8w9JY&^HxP1Ypgz0X%y38-r>4pYpeZ%
z;L;Yq8%l7Ky^kh_?2OOU1_)Bsj;s+S@9ZTfS?%UsSSarw9zI-{9NR>_Xy4LkjV2aP
zVOKe1yv=cy2v5+R7PX0@{kt03(=30bVGq}ZGO#^(pV?qb7zxiF=DWnj3tGYgYs0n$
zxws$<DB_K?Dk_0*vCIWA(>7ANKIc;y6v+(Q01r1eIAd>0CuF1k{sMXaqM{<3f*<qB
zk-a-tytUW>tkeJ{kD)e4E%){eUO}uncjFOXbZX(YQ|Y8U1@XQsL2E@puF<G+^~kry
zg6QXXfR=?|W&JrDgwacOn07T2ZYozq`TjR&pHygDw-u1}><q6YY!|Sbs-&s;)#>A;
z%F3&m!Rihj8!BgQxLp+1z!u_=L^n4#Y~9>bs!{-o!U-o4g`~kHdQRc+<L&F{vsptg
zU%c2D0N_K?2r-J77%WaeHh1a&nd7zN!bcZyVQ0Am<4!p4g5-jVP(p%_zu=O-eg!Bd
zZ#gL2JEKdGG>IbB^}|yoe+<9~uy4nXnhJ;(e&$q3k|$t(vOf}J2AhNYyA>5GPQ!+m
z!Xu@F6L#+0X%Vdt=k<THl#gZr?Zs@M(HpEtHLH~xg5;|O`9LjFD@oX42*(uQmK;lk
zj<)yhX_yK2NI-`Sx+wf<*1vwdC+|t_)NCGr^?Ltcn{mswipKQN+2)yeaPz)mgnT2n
z*}83b=`ZnyD)+FEljyADFpNJ&57A6Pfy6EP?Ko`fS{vmREw<Y+9c40W(UD^8yMsnD
zA2gpOHxHLcwB)L+)!~*r?1z$E9W#qHf{0yvR=TO|g_?9=Hy@6wIEVMdmkRi-&S&Ua
z%0!exb)_G{`(O}FM)-<fVt9lOc<}Q<g81m01Q{g}-Tat8ifxhIP)E`j{q_qAYVyRI
zsaml9QwaF#yVdYEk(%-A>D^I5o!Z|I62JvOjB&Y#)JmWU)VT9*k3r_sdrFikwoPQ@
zyFTq(yzonJ;rZ>NwphMY{K&m~3{s$Kz~do5YJH_PU9!#ZaG;#5dW^0=(=Yqj&v&;9
z8Xhe4K=&6a7?TNOEJ<)HKFiE3mg1t!J=r>#ZgS;H`>^?q+AB4wVi7eZB_$1Z-ayZ3
zRt$HDi@7|e>7Q-<X4c)FD0s6eiu|U7*{TtO!y!f&_uO{RbZ2`C+(KwD1c0#OJv;fH
zNs43PR_$W->mT(rG&qTBgos0;1<eehumKehcSvWA)d5Gtq&@0HFM!&cl^zlAmF~X;
z^Afe{toEa~XD^PefI3Nd^RYVt71s*4CRqe{XGR(z<dLA+YqJ$Oqyjr?Fe|MxggFG*
zcW=d-I%L?2hH8?0NP$L6al<}LoJ{{W=bC5@#k2<gX72h=2o%uVjIm7zuxdOt&y}-a
zYf^Pd%+;5e2!gz0Xs?4Z0YrQHXEZDtpyr^=gKaOjVc8JT4{F|uuaQfq@)^AZY9iQ2
zyA<cncr$e+uSQ2FSd_8dZp}Ux8h^l_pS0p6qbF$ZV|KDN2K9c>A~G64D=>*Xr>qr3
z6Vi<Fhcwd_A2_n5O$^g%Lx?)7BWomy8Vk7(KE+XmZBcg76KJ|sQ6e;>E@18Yp*ohs
z$3Xe4co7H(`xeWVg?)SBKJrU8D{HVk=DJ;tZt~T$wV$5N7O>wIL6V|r=D>xDl;$~0
z(mPYz>K`f#x7e?Mnj$y*0w32I0x*-Yd&J_F)M(B4(5fAxked7bzx7p_GOiyT?6%|O
zExNhgY$vR+X7E?WZOIeJB)5%CCIkM}$$-BI%Ge#m6Dde6-RxZ!<<o*ULQ|l-sAX%J
z59H<AC863<d-X$)`V**-;cg20MPyMdUy_@UNFh&t3F{(j7m>bk5GI2r$s>8~Jfcs}
zCHsQY*jlFrQ?{O@J~_UyhSVN<rJ}vH4n$#o!r7>c+xt!eUBYkqV>Ak6u^o1jRbK)q
z;G>Odwi(`+FJC@~S_kE&D2R?5P8fZ0;-wz_+}oRTDVe6WQhf*s=C`o%hK2@>9w>dV
zg!GS*K9rCBF?w!oqqeG~i?Y8cpjNLyayXNj!LV#YjmnkCE97cWPjB~B);>!~k!-V!
zf^v8n;f(zkFnm4^)r}j3K9ywXXl`zvL>slgVNJG50e}3GV5G5(lhdlN4iSi=s|N=l
zq0P|c9Kd2V+(458t01)j<16buTlylkhyr!>Iimlmlxqg+dH_y=mpdioiAVr=N58+<
zhpczgPJX3APs=e*s#$?r#XBh>1bE42?r#@+NxU#h+TwnPHtbE>jSrxK`FGPt-m2^0
z;#;pubi6LLt<Hr0kdv8@D4aa}t8j?-?ITEG{~Y4$o7`H?>BhL`CDCf}uk11!4Qlte
zV9k^=`Tq9r*%WL+FgQ2}!CLl~DAIl2&ACe#wb+yJwfU!zH?(ywSzC*&nGdB%jRfOm
z$6Na8)75uIkHNA?+0Q0Ppf$mx|7YrOmjKHwaBp1dWm8iIjoaw*WvQGHLJ#F`uS3nQ
z08q^?su9_bVdbQ8JF{9`HU$PgWXX40OH03{BxE*4MxsP&@8jr{@A>_uB9yJ8qe4av
z8e3V?EpfM^K<~exdX+SaynYI-mply-Ci4fduoz;WepyAu0nA)h&SR7q|0&nS$WwO*
zEdmTu#i7mROwYjKwGlO9{THF9%ij9K@}u3Ea8)FLnBu<|DSHcdh`u8VC8&*GIkQ5`
z)RKp3%IY(X1zJP#t9{sahv89=f&hdf^&udgPPHP$H;tZMj(Q}6wApAue{36YcS&vu
zeG*rRJj8qds))qtxdzWg)~f`_Jngomgf`7*wY`VdzIYI4Pj4}bhTO~r=SgD9BHVy{
z>C>Whx^Bx4uSR*HZXf{#03d{Rj?~F$pS`=4Rd;Iae-EBAov{t%a>dru%Sb&HRUJjJ
zwOt_l!Xy_1fMIno)ZtpEC*v#@95(O0P#`ZpUL>6eNgJr3{*F)py4;P<ydje3M9rH>
zk_kq%CT->1+c)HCI#xQ59zFU|?SP2?W8sWLA;<j%mTld%=|h?qDEx-an+t939bR9m
zzgra~atx{<G3wH`JB|+bmw0DB+MzHO9BYm0V%@=M(Sd~U_{i!Csv?BtnWS|jHhUmK
zrRp^Z$}PBg@zSLhE9){^)@bjSL}RVm4opvx-4W@|&n^KmmjJc3uYWb5%nO(JRAW^~
zIX2^1MorkZQ>1Z;^sJKJ-v-i${%_>uQqCbr7(m9!eU(Pta{Gv<lf%ZkLU57+=<ioN
zJi;UpX=Em<{o%A!_-O$7@b3biS>>fL17imFUtdb&S-U}2u*w@Zr`To$03F2W1AO?G
zo8ZBBS%I>E+cb{oZ1j%4v68ZI)jgL}uP=VyGt0!H7tp~VA#0$>6dNQUJP@!NnSz<P
z&ZzBpJge*MhEmc5?cy?Djh;u^9Z7FG>FETr^=TXY=;q>s?g=Lul{IS&@3%uw8XOs&
z6dWa_cqi8XjXc=A_WSO%>m7GtL!|BwzAQ^Bl6iTky$EY3Z)3<1s6rhjf)l|x6&3mE
zHr-Ml-NgI|ZZQu;RDcT9R#8_`;U)g`3`!8-PCP_T!0Y9asD&ix3eEh7PVvi=5!d>}
z#l@}W-;lT}3*bd)mQ6YY28MonZH6=>rTW#`edI3qo>zhwicXEPN23>~A5ee}DQD;i
zbWI=@`PxcuROnT51xA0~K9z25Mx`Jrpe(20XmN8RA!|_RiKD=)zc!5JCD<UfuRhO}
z{FdZRex`C*DZ;UzIk<^dZJ;w=@?co0Cd~pL02#UF&M?}&pC)E`D$|~rME?lGQ2@df
z%~BTdZcHL3r7LW>C(lTUg!A*3cCF)b4z{?tU580?TslU5NncV48WG2OwO^lo2Fgvu
zqcGZ&MPPD7z{Nf@1r5m8#Y2^Ky_#N!LY{*)(gs{1IaXqGnd8U*L~PRhzF0@EK<&ke
zthcKHbfvP2nOhiAjw)x>1}rGXa?1t+#4|Q--pq5q!D^u#FBGRh<_L(NS9xu$eu0xe
zC)Xz3!z}Y*rYS{e(<at-lgN}E+<LZ>wRWtL;KDVlDK@+Kj-~{>kj)V9h%v;@-w_#S
z-uy9D<lc63;YaxyW2Kv`HwoxuB%;V-G2f6>3IExwk&otsG&fUdb%)n`cIP~KB5q2x
zxp(BruEqrt8#ZikK?EVC{nS}(*kN;+F7E+~Z`oED0%;Y0b<G4Pt=uJLVpN(x8CQ)k
z>ja2ylr;KyhhdYfA;!GQ7D7b>sO>%Z(FS>U3n~AEDBuSa+rAhF0+prHg4<H1N%YCs
zr6d27yX)*6jc9Y8uCqQW(QT(tpG&H~rc4N}<h~ePo5p_#KOb$LBh@;GPAWP?(`%yo
zKM_9_kpp*;l25iPmSyI8XAL(JR9QR1&BJ5PzNiM&*2bgjouG%s{6!m4vhmin-AHQT
zCIViabLO=ve>teqcBlVmEn<RQJu=Dp+Na@YKPiCE3{oNmL+sVdpQ*fkdd#e4-R%*w
zBtV>q5db4OKQoO&^*Fr$@ldgC$=O@bRz&KqfLC3EI8bMtWfDqAr|3kzcyWi!kppzX
zUT&A2*W17Bi|)3<!EH&I(5vJaS%$>{*tD!pEA<xVLWLq(Y_<~%2=FCVUlFB19?3wK
zj!|a>N&_AD+l-KeD`<h=B7l7i6PO)UR`104jAdruzIDrz;^;5AOeB;gNo)sgY*?3+
zX<c5He5O4`NhI)WC@KkUlzJ`fnRMn^lun%^6*PiI0V`j+ID9e}Epq=|tNj)p51$*0
z6po+_jl7PZ_j5M-8=;UQDIfe*%qg7UeUCS?0H|Hvfh-wN)1@4r8)okoa2)RP8zE{&
zty8#*3(4>Z5~OFv?Co43LVKxK!`*GWqYOy-GslXon8&DjKwq$`N*vptQq@Cl@FLY_
zmuYQv!)a1dB@hd=NtYIffk~(Tf_TU<+lo2YM#GXIxixBQvzJSioo)Q^PfcIoF5}a+
z$6hQV_-o$QyZze^o=0paF`_db6>}2`X39qXOB!TElLCpKGTL?>36jhr&iZmsa1^?1
z1qo;3!<+PcR%E|{|K25qBM}kC0$Yr~hhc!tdVahl!7CO0h^M5phx8w5j+kcjRyff>
zryi9b4J$>spnU3X9LfmEfg;LozYx0+ikq~nef##TS>?=exfBO^nPsL~BYkJJM6$1{
zYidejHJNQoh$cgnG^?dE)ClM*9va=@jY39zhPw@%lD$)5N?9FW-}f#2xGu!d#V4;f
zZ?p)Djg2kX?HmnWpr7l)A&RDw^nwpbQ4wYh`Hk(w>D!{ygi%v^z})wYB71<w<}wo$
zxi^`SduOS6UmaScYX0(p-f@k67-94j_{~@`msVmKZEu_EPSZ9&a;5V1M$?1pkUz7c
z%~gK+582Zra_UAq>YCa`goUYT#Yp>=Q4FH-N@pf<|N8r3d0APHv`dST-q7ioDuBpq
zCPpSE{IA-~l6OXuO_CR>7S(N)Z!eIrLCf;MuP!sqfqpLYzUB=$GcDM=$PudZJ<{Ls
z`ci2<L2%^E+08z$P(K29@#*!gEh%|u@zwb#sE@YeNUzOIw%KVY1MREK!f@=UHcIXf
zQVHbd45cck-V=--$zaxp^z@DOB{4=jnVMChj-x8|UIThZQgipTye+fo%8LlipQT^y
zHrB^~jq9($UzulttTh?ZNKCf&A~mbQWr!+Enh3U>S^}|We-hIcsaSLM&0?AE!yb%0
zNV(`J>};;6qsd#nTb?^rP?8)kI9>w^{m3J=jWXB+tWLzn<mTtDwhQL8DrJ6p>Vl(k
zPJ`LIa*DWX#$U)ooZ^`^YlJ0OqbNYx$w;h~n_~+=)6_1%?cMX7$A$rqtpY&!^H86v
z2iSGHvs8$`=d|tMD&ybE6zTWM8jQ%gJ7!J}Kl{#XIrZw>(^ln><2DS>(OP*Gxq<Vw
z#<G7)S@K4--M%A@3R`cAS3pJSS@3@wXCL+*GY<DO{l8$CWX~SBHOcgZbdpY^cKAm@
z{M%)=w!(`aL6p!haF=Z!SzHjmH4xk*`Nu=$RM{P<{B1e?dc%QxTpW<5TH577f6&jh
z>ZojQnP2haT593<SBQ;**E4V3O||o0ud}zl7TwyB;S>qdW4~t2xg0gtvaC_>#Qx5D
zt$%g?{c|0AAZZl<zNoPCfY?nQrAxMOOmfm7WEZ5$WVN!VkP3Cs{04kX+H{FpCjCP0
zZAPK_tR)^?qH7{_(2oP4FY~;3a(&C>hHt#(M8w2E-vKufM3#{rT0H#f#~b@(7NpuD
zp4?^FZ1FR)t6+W3&nNFag-9vn`RmuOi}&n9jxnh{=C=rJ%wJ#wYG^KKl-nts{`2j=
zc}}fAA9&dRc*-<3F`>@8=8GieVMJ<aBq$~>)-Hr=4h`=qg>r3JRC-d;>0~ZzZd!A)
z@Jx<Zq9)bJ&XqAqpWI;Ykyr1}q^W5=;akvy-jpVP!yoS+%+5$8s%f1XWiE&0_nS)>
zrLN$*a#MtFghbxZCng_kqiRqRuJEaS+s^(LX(ufsdNF&7F3U8f(JPW}3u3%QCv~Uc
z{oEUaJa5a)blLaP?!VXm{$PYCiZfog1{IPn^8I?OYt{XYZRhg!?8OLDv9=l7Y{p<|
z^Et{gQ-ceYr>kW1gU%g0O(F|&ynpdi3n@O39`$JL$Gx>Fpz#>lhG)0=2U+n}^zSE^
zU$1A$|82p2ci#%3c~L&Q{Z1cy{xo^X)(_9ON^DrpdEcyYh=*@h!sV#S7^k4?s;+m{
z4ewfRbd5Sy_8|4uhW%x!&-Mflift*cm?Ji0^E!W_&vgPvj|*!a-22e;s$LBJv7t=c
zh@ZLXwZGPx;%wzMG?QuicL!X3J9i^X_Y6_Ny7D*+f|WeaWjoCv0tx97g`1U+N?Ibo
zb`c8NSho*-RU*-;tuLFu#v6XvVfFLd8%y18OoF?T=lVP#={555^60ej%*>cjbMEiD
zIo62hbo5eNMU+{Il2AEM%vV)qhq;br;i?Ps&90-W<n<@pT^BBS?3D*JWBC_bRpGmL
zE@6QVsqdeKBUy!gR73GcL)XT@&$ji&!drnvxn5D%(DV);gDMfW>uC83+MgWQGKgNV
zP`vt6@Vk8o+kjrd=^|>Ohws1$Uw>wXY$b(eQ;VVK0|}>d@U*_X5tUzi6%>NZqJXMI
zl=Ot#Pn>mNaP7EuYT07`Wf^^kMvWfnh+8y&dejKYLpmorm=W$jGbA?l{>^T+;JB`N
zk(jjGwuBRQBk6w>Js4QbTH;aXXmwAnt?qf;FVn714J!HlqCw{v>5hkNUteFHsbE-=
zVaLRtx?v5;4ek*m@#i!(H9cAOgJ3!3Lv-)COV^j(*;NA}&kXVs%`O04boonFWK<c6
zzVggsfSEoUUvF;>p^NDw0|g!eB2)bx9pTC)zv}`!X?VADNV!JG*Iv>f(FYoI>2rO0
z(GyO@;5)d90*ICK&_b?ls~~OAesGocp(|>vJ-ar;t^k5kYfae3H_yGoMS^!+E(=#r
z@q#odmaKQ+zyX|VY$s~);n9jB3La50P>xcc+7@l}xoh981(!aP$JTRoZwvRmChIoq
z2)CWbYNfviG8#&h4D%Y8HGGS!2ZOl82dz0mZ$^PV0pRj*>e-v|T723Q3#DFNmZirU
zq&;fvYAB$Mb_1hwQ*N2YJR7-gZ-Odws;o(sFuJZO{+40>*H62;8{MrKwlNrDZd-E>
z;OB^39~J_rXi|%dO%qa@{kF5d3)DYLGl|m49KQABA^(dbZaftGYRiVQQ@dE4W-Y<-
z&%^6R*BrLsp2@xd3xMomsOC>aK?_OEW*4`#ue6nk=jgqvc*A1S!*%c8Jz{W(anVXU
zAeYLwXiavG4aeNmkss^-+C7wle0UDEh$EF&1wMO~iQIF*op&Xg2QI4izi6^Vy|?O{
z92B}PcuqcqfSMmhRk|<)UduAoSRj}K4dPLk%3q!o#p!#yQoKmRKBk8|-3w2U+>uyS
zj|MU~ScNEl>pLQ)7IxGP3LZ(Sm5mM|L81A|t1jJM!N(PJd$HS_*$Z9#BKeg(au!`5
zmUG0CuEc&jW?M{_u3?RPv2TpyNZZE3tf3kPx7!W{1=0-YF4Y=dIW_@uOy*a^z(*8i
zbj*>~o@2*8t!GByaF`=htrI88f&)c~Mz+glr0I(pmDGQZ41NT`E+4SzA{eN|d*AH)
zPyCk)QOp%&e*LIFmG(U&{AF})RJ}sO0Re#=R}Ys_y(-hBRN>YS#l<QEJFY1U#uv@y
z6SJsxFRr?Ep%u0muPcb3F*DJ%J{zf>vOU0YbikISlMU6i9*vJREj#4uyXhZLU*I5(
zqLB5Hs9BsF0BASkxHOVx-@WS}(#zR|wqGJ^qDu#dSLUE5lRaa0*_~m+%TbhWsCN}{
z2kH&obyVV9uFHxn#fb>EyKv6$^%njI;59*Jfw0YjlNvfFO;?47tPXW4cI>+L`T2fg
zz634H^p>f0Md*#Z?BiT(bpZ;zs9Ak3m)PYK&O_(VpC_g3Wt=(|s*$G?Hj%Cx!UE#!
zRmf5eq}w2B>Md#)20fuaU}tF4X{tPH7(I$d(6GIQa4RuMAB4*lFeMi>E{mn=LB=Kg
zDHgEN8bvexzV@$0wt+$_0lfQeFN$JzmuM!G+g1L_$YMD-SH;E0d-8kiw7U5DhFPVL
zX<qis!Tm`eKL!^(;}{FBD3K-<idSFV=ZCydv}h$>mtfK36>eOj&#4Za+E@1+_LoYy
zK0uXbR9_1IUdI}#Q}a^6X=jy=RCoqjeZu_AN&T+MIH|*;iO|dkiu^0d7Z(V~$t;o|
z{`n|-AB9Zet~(379zDuM_~BW2jx==D(tm;lRc>9jlEbVe#5=zusZKX-7=?^TCFT#p
zBtQJ>?`o*BG?7YtPd|K5F<^MuuytLbo=by=<YmrcpDkS>JtwratAl@jqV8O=vbMb8
z^625}(==Ofx;%6}=_CDgL721j&WurkOOg(9jzIaUOhkUh&ShfoH7=aUOK6f?r?<B^
zt$t{7{r&3zVWr>wn4eA%(&t<idie35Ft;f2m+>TQ*^G47q!om#2Gu84nYb>-mNj@W
zP9Us%q&XGKD0pPAV``2#_|KThK4t@`VBG~0T^oS>MJgC5ri$5WBWn@bVW9JH#tk@o
zrI8KVzI-jW0vwzC8uG$1y`)fymf?J`?G<<<S4s1xT#SpAZ97&S{Fx?yM756oG8S9f
z4fZN|RIfz?r;6>rN<O&+dE9%F>9~JO0JA&Uc(7db$Nd{?4*O@nz-FAkGG0N`9qegY
zO5{CXd(sWqUy+n~Qs}TXW}@P&I1c4%93b_C1A0bzcb8l4bw*+Pux4g^T;XvqLheXW
zGH8b>R2X-eU+*BRy1u|MXsU{Q%Si>Pa_~CsrHDoOmmTrzxlab7nvzn}6#bYo#C(Mg
z9wJs8@c4={?mZrHVS^e}JHAAlm&O{5=E&#D59e?SuBpFqTi}ST--W^=>Rq!S505kx
zKkmXN)*4}d3-x8aReCq?y#9>5sy-5L299`CaB?NYZo1&_3~9j){m0~L6%Y=0bt2ji
zcRdaR3Sal}H5wk+nb@Vx@N^G1IvYHoxDoBtNdEwQ^5RvNRjrMX!9bfH%hq`)QT^%5
z5Lz4w(awjZ4}|!>#5G_@$9OJ~wrS@fIo5D@krb1}!s{7^1^jkb{4H+_I9R7q+5Eru
zeZJFD_jpTY*<1qzg5iPgwnzaKC`j%jWlHuy&L_K!?-Jr_%k0z<db`tMxSs@$i~=3Y
z@{^XjMg=s@gv%$j(RyN8FWXSy5wp~`88MO+JPc~cV3XA&{)Sz!J$+0Q0bBc#Ryqbj
z?R`-5NUI&<3;e91V|kLqdCc<h&MtTcNTVDn9^-w(&7+X)j!K5gwsWcag7TA_^^Ug3
zL$W|fJ(N;MZYzFZzb%j0m5az1jw}x)kCL@1Up38YTZ9T`CXH?z9jZ;s^`3~HY-fZf
z0AK@>v*}f>x=adBbs~h975?!l*m-+7%s9eI3lAD`(<9Z2!LK6IrEpI`KC`w14f6*z
z`Q_}bo#~`qFha*pnH&&Ei1(R$FH#-^-_o}Dyno?=IJB+NBF&>tC%mMXq8hYdWy!b1
zieVY6wGdT~+Wt%G85ww~*e6h}-AVqY;-JKbr2q9?Oh(^b5&Q4+KjV{RjPOT27xIf(
zRCV(}s?`3F=0MNUJ(t=1)=%Hicn~A}eU25ik!d4e!mzwF@5BhR7u)rgYtZIyJQ^S)
z+4n`?L!$YqGpYZXecCfSkKeAHLy^z&#36~7pnH~kk9U0ktSAs=p5=jb+YG}aFaZ^t
z<%mBTek2kzdr{yB?~W%*UA-&zV<vap>b_-{27<mn^D2ssv9Pc*hob~t;JgaX%Yw(N
z>KIixY_o<T&R6$f=Hf%PH!ln@>=<{=Riq{7bu*9HE}NW~=4BHTBPb#g^Ts$PYt%NQ
zEeYLL02Ia*ZA9HBiI>z+j6Xd?GtiN{vv=;&hdQR#bQ%u-(O)`g7q(@_IpV~J{WF0M
z4~%6QH7|s~Z|qEeG<^ld#9uCdNrslZAr4%t_W`WJcg2Z36IX|z-<sithUy?C+BK4r
z)3(aXXY~a}ynM-RuLmQ&J}8AK7GpKyu6i$#Xh4_gm56@NF^s(?Y2R=0aLZl?`0LFK
z8w+0+0!G7~R#`^gL+U|@E)_9)b<r_%Ew(_kAlQn1-%XA{#l<}H+k4x;?toa!g-Cq4
zN0XbwtRsO|!PB*Q<Hi?Duix#LdHdSBtDe31$%6+RBv>QRmf2Blx|{YRNN3QuZrpgO
zhwhqq{MfN$jC3)kO@Z}i_!2=YB+c0d#y}#E`ZMIpOCscwC@)p~(RZNDRqF^^aB2Zl
z6gn|S&t@+^Xgj&r1>4hw2JM5tTjDDVzTXz8{g${+*^Bfod`R_eKCF-OhK^wkYe1eA
zMirr>TaDB_Ng?dw&e~U4V`WQYaJgG!O;1C3ko(K{I@qs%|IhE1(FS%Xokdx7y12Y?
zo*lNuicu>|8gLB#%ntZdIMEbIW|`zZ%S4j(Q7zUmy>f22ziVT621=d1x`pT`Zn(Mh
zs0(_n*<%ba;0tvN-8o(eddS34Wl%gbLkP_$(L{8y%+K8!ZSdmUi;IipS@y(7qpn3G
zpZUl;I%F`@QJDD5w18*y-V!2h%pihC0-kMDjguek@+itoB%pMmN!nm*gw>$j%(NsR
zPGU2J9Cl^TTuc@^w2cHL1|hfRB7t!u!uB7XdAN!P!4jk|cd^4yXKOr8D`h>B?haB8
zTkp8oA11h9<@U7%vyukNjII!u;(a&pCPsZ9qoOX<0#V1-YTEU+uO#vxDF!CId5@>I
z#sJsH6$-nOUcik^<Dm@(b|jD>gd~p+wlx5*8UN&Vm+kxFBVl$fKH%@*z>kjow}U4U
zBpX}h{oftzpDz8N)5VjG;k#XEx{xEvh>Hs;wO3>3>)r!P6E#p=!HTMbbLXQ}5moyt
z2i2hla&zoJAvefm2n@Bys~qC}4$eh#Y{ih25O(kWa1AB`2vN@SFVfpfD*J>yG@~8(
z(CagJMRZS=omsF3j!qp^Q;`)DPHT^|^>~a3Z;v&NX00#6^3grcOA-*4)ya`YZ!v2I
zft(>*FuLDABQ4l6<$t{s<Vhdnf?Rgcj1PSkhrOFXLa}u|-rZE>ikXrC{%rvMy?m(u
z#mkqQ$c@MXpSBFIXZvm+Ff98*4{I_yi={ZC)<3@yN{zj9wL~%M?9S^57>+1TKAUsv
zg1`>@{-5kww-DJm!7T59;NX12?dJ~$JrFs=#PX(NJbnlfcbRpL@@wQ4XB&TcwHo*~
z$dNTlpnz?lYY`cN$~n~}8=^zM3)!bY18_u2e)dkoQD5_lk1Xhi`&pwSf@^#&Yhl;@
z?eWFFvN>?6>)a95qheTx<7R7U-2DHr_uf%Wrd{7Cj-!ra#RgIpq=|?T>D7^<(nJ(Q
z1e8conn>@Aj!H+RccrS7Nbg{wD7`2_AVfhrB!=Gk_7&>$Jm-DScg}kMIBT6RYaw_i
zx$mp&zW23%bN4{7p;B*T*Or68V&mdUsuRq<O$xqY0Vtg4t?cR{JPud<7*@d6|J+*i
znx+A>eZ_k~3*6B^2@<3nB>Es>5`6x0(ArnQx1RvD>W@x>!8Sg;^|IZfwD|oi)pL$O
zi*T%2KWYNm=f$^PLbwlDyhadzL!CTZ!6si@oCx`-mhFd-YXMjHL)6ba+hpeb9@k4o
zIxbUhIq;WIfV>f>S87<_q6Ua1(q_K|2(9=Je(1F0tq1bRJc(=1UGk}g=)%XEUB|fC
z+2bY=ywBN-*V40XKvHboN#DRZX7`wE#200wiM^JZn%QBorblSnG(+N-9bw})$P9*x
zqHq_Kwxt7^ivc5slT{t48gyuDPZ(k^kc>86a<sI_BW|4dVg#nAC0OZ#c`hImFmT9B
z$jKL-TSp_ji$4tk2(clkBV$3w2_PUs8a07hMz(0+%TJ&Bi<XKXfXxOW{2wQyu;^AG
z$2nbivQM8reZ6OB<LSZ|qN^Iu03KBP=kc$y&?6bevp5x;A%}wmsRsy^Ec+Ie3;~xP
zc2gdg6d!*(r0Xw8Uz=W5>WlS0=>;ag90Y?SiYlOtiV>w~B6Jmj5KwHS@W9YFW;P{3
zWZA%gO&b@ChyGBvwYBy3ix9U<qhBkDhXrg%TOE)QsUsiN-pW6eMx+1__$m)$gO%S)
zE}1ibcr<C*Q$Ku|>RgqB$BL?em3PzovPw%K^#Zgi%;0;<Od1cmg$|7=;G-&vWgriM
zE5>;r@;U>^I>=)L$%=tU5T{N(gmEJ#7+{~W@l9VsRbWz?X&k`Qs5WEe^oFqL{27S%
zT+21rfmqTj0=p8DI1y2WoD4!nb&-a}NoI#{d3p2$$eTCL2s~l5gIlLi8g_nuUMLDR
zZd`qxXVpVYCZ*_zT6ei;jY===PdC$UQkRK1&LV!)z@fb9k=f*RB!+<0;k5BpS!Wi(
zL5Ma6{B|A`6J>FZjBszQ$(_ZYak;Qe&{nw*90Z7>_=1$-Ul9SdVw&er(JHzT6wdNO
zmW`>Wr-zpISwsXQ3ibe8s+$k6yimRyEiIBS9v&`}-;6>Y%1!7fnwy);$|mbp&rS?=
z^SjL`j@W!D;-3M)TsTUQeYG>BF19xs?<~*0=!(<smNc^v)U$%5n8rAXAP!*5?Qh5i
zl(&sM)x3vllxLrR+cjKe^|sC^Bg$_}Q$XL%u`kYUb}<b2Xg8MMTMtG*q>)LQD(9DX
zo~gc|x~YNZ>wH*4Y2k0@TfPjrF?ola^q#SDV<~ndMU5l$fW1*exqQ^cw0#QBAk>8*
zA!o=6MoQ!GA7GVcYy9zA3b`@Bh`9qM!}gMV`EJYu*YDO5HSmpLS$%y;l3A7bjR!WL
zb`~5%y$k>CC3AV1Hvi?adltuf#BuGNc)p|S9aUDZ9x+=He5)6zzwaon0<~<od|vyn
zHIHrWvP|2)wG%&U7ipS;*N%d%UwoSLe}=kNOS85t|8uMQV%OEHnp~1=`Ez)L@7|To
zaTl`w7KE2C@8!GTzpnLYWHzsE$%|dZqisW$A9A_Mn!RH-Iv_MOgGX1XDYgG^Z8v&w
zBW+q#ODTzY)1xN(?KxHP3hTBp%}w!DGHLJvU&eP!Cdq?VfmO?>oflWklB5!OpuTka
ze$!e@Eg0sn(zRg(8CZ`nG?xm9n$IpCd=?QEl#yB#%a)escwMP@u@Z!kK~vm@8OBSl
z(zG%Ax!s59QQ%r6tN)!CG>gyyS2>1BmETopU_&Psnx^no+RS<hAy>=x@nq~^0$od?
z%dD?(d3lK5{(}*@$0U!h?GTO3^;H^ox4qXP?A1+~Bl(^4-kp*;0{C10`%5H`4$y8`
z)u!ibPYBrX1bK5?ji&DP+tTb^TPTv>oV?}yVA^3!S3i5e1^_^sBO|N)Df3%_fnmis
zS;-GYh<+LxaY$~^n(KV%{`)S`+c!^y+9*WY&3?Y%zhSkW2CuI3kz0p#3M=xHR&P!n
z)v>exQ(SL->FU?77yLKO^=<q9RZ`r2clfoD+&~*dzBVk{TkZ7^yn!vRi?qH~qxXxb
zc2#FtsIK0ukYjbr`;V}cl1bb(WF4agpD?@1{3Rg{Dek#b|FRjj>*RR$=j{oP7~*~G
z4Y7d~vG$AjG=Izeb-pt@7RBGZNe*CH@6tqbGk1;Vna|7P(=g`a6w13)X`hZ^_@+@!
zk$BxgE)V7Gw<j0;*W!;fG;g)n7;g8gQ*Oj-r-u9>k23w=KkSA2`qYodnc(xRo3#G*
zVHMGi8i8p#G2<J1vP7*3S?ha`X67m$XxWwJHCE!kY3Qoa8mScg>pF<7N&o)ePZ!ww
zDsn{~1aA5GskZK-;|4|JPI$aZz1D22w{=L0i5%x%-2wPr_{e9)m~<y7gH(ZIq_hbp
z_{u>+i^^U;ZT+!cK1!7dPIyRy{qZhkt-87@ug$X~dW90--?@T%51CSZ)|hS56tXKT
z&L>T$yQ5jf&w_c*H*d5eBF_4w(*^$x0;S>33YD6fSJW)|d|r~e!2OtT`KpbLY3nat
zSQb`ZU1uKP_m;bTY2+JYbZ3g(ZV?~!t3PEeS718iG~6gTdtjKi>G#5XU8kOM2!3%#
zFOGPHN_E%8Z-7#x=?`4y4tF78xA)leQQzm&jT3lzT(lFH<nG}Nv-acI9>(OZ*X8wD
zckS<J2El`2%J?uIVJ@z%yH0p@vG4Z&P_pG&3{g9ByRAT_OWd`M{Pg0{%I!7mnx}9c
zylJHnKn5<rn19H}ObqgN<<V9ilVm%it?WDyGREqusp}*;U>TkOya00x-e-J#SbJ}!
zbDYR-X6t+NR=0@#Eqnt1BH3v6tq^Ti!O<r>eJaU?;wPgW&jp&>^Bc5}Gg^2Z<S#iu
zEHw4{wS!p~maizgcO<W`M6}k6zsJz1{KcjP?7KxhZ`^nX@9cOd7aN-+$hV(XrpYNj
zwX91V284pCPJh*$ML{;U&ZQS8gyt!#=?>L;T|v)<BV5d2Efionmh~=HY+dAAi7yp)
zdCt#wqJ4HEt{ocy+JUB8%ktQajVoDUem)p%<l;>1;)kTmIefYWCv>&7_6aMMih1oG
z27<q&0OXbaJ^fMo_eP?ugIu}FR6WF((}_&9D0x;~+QfT5!*O_YC*ia}oVMZJ6jP(4
zNqdCMy_8vl6uu=&S9)pcnrOt|sXW!}aqC?7G;L+YyN6pn5;rxNgRFQv86&(f6ZdH@
zNixFO)K(+d2(^=5dGWC=>%FWnM58D-`m2k*E1Z?c&=ZmS#he%S%40|34chJsKTjY^
z9^fiv#~U8cg^2*T6|o;zG&!p>B?-z%#H=PamgxE@b)W9tUB#1C-av+OYNZR^c@_uo
zX-hY|6R)AJcyo4mI0RWth!<(@N~qSSG#SL`4ZV2Son^`8dHO7udb)$+&)XpNw|)Vc
z$Q&WGAgWQE&#8fP5Z5SC+Xu^^J3Hh<FLVa{5vB%y$N6sQ3Kl18f2l2V^17YUGvC%-
z8utUsnnxyrcQDsY;@*(Iew!-k)qeM|((mclX5=r-_s^QdY1S79umqjC0uNJ+(PGJD
zbv90-_4qK~X}MS$&9Zq<KONz;xa!kaoDF9nO_7Z+`mrEgQ6-Eo8x7GV+zA~3-H7v5
z|0)}{n^EF?*>7Tb0`-Nb(h9n|=<k<(k5@Qa3+76twn?WSqV(v65icRnlV6iKxvz~a
z*`3jEZTPe-G*~z99_DITmj_QPR`|&FS-@9z^9Wa)8olW&HK8_cRXI)BL)eagth$>%
z_f=lN%Fk@EZ!6C+3&N0J>Qz2aaNFN=@Zc^|2qZhPrJ`&Vu2#1}Bb;{})<8shpqI>u
z<Q)>BkHdnCr|(P5eNa>@_))yopCDCr#(X%GUSM{bdszGFIL9W+%vADdt@hoJYTn~r
zUdc)2h`5|Wls(M}VyZHJbrxV2U7M+RGu<<<a5sjLSy}nToy7;GI9_1l&3le}ecZOk
z%T;gbI(0`knB^lf%QC}Q6D42EA8soT67IagHF+A_OQ5uV;ObVu>oHOtjaS2ocYjlw
z>JUz9T-ePgcB)Q%;b;F+_JZx4NbBUSL=;Lsp5x5KUz&dW&`GUBxWJ-s-z~@JBo3jU
zd{I%$ma=C3abbl&i)9|T+TeYrf2g`0@(w9|n&AqhM`^2io;Q&=^r+cb9dtRRsTwzO
z+4=RUQoHeQb}@&T3%iX<IgkcLOTPG^l8ucG#NcCQtE^M&boS0%Wo0&Yi0qN-ttqmD
zBVyB6{$sC3CO0v)sj6>Q>Wgx{?>y9MA&V;>ea<3^5!I6H0!FE{By#(i1qG$wp9r7s
z!K$92H#iOqcvyf875`*EOKfFXXk(>!@w%DRb#7bv_+h(5Q^cqOTsrhCjQV*jNaJdO
zt&2p?uh(t%YU)hat#2}Yaa(Fl(yXWdHGz}sjLt8d&yQS;`kcK~l$vo`$Zb9Z!haKU
zc2MUvAx^HComy-)zI{&t$SM2Bdyo2$N?28<gXjDi_RY)`yYQXeZ`!WG)3V)Kgf-A5
zG~-4nQGDRps!%x}x~yKGdaMeS&}Wqu9L=tKL8!!=#$d)s_NG4qC~-qLUtP&56~`N5
z>50FG-p|a`9~Ir--T!g7r+Jv`1!pIaci2xyH>008{p!l}pZRoM>2iuleNK?{_9p|O
z?uEwFx5ml2rRTR~Wp<aSF+JSFu(#RuzCzUZn)xmM<xNH*mAjg8ezBY9xFnB9!C8o)
zbmww!%-s7YvDPEAQ6xPWdW8?uq0M`S>1O7fvuk5^!DCHg1_Uk3;ePW|GfTo>vIeKf
zWrKE|zCjixU%zLXIl;0ZEpXQ@jb7MRX{Yq0alLqJ9m;K%SL?mfS#(P<k+gE(-G_4{
z1ZQ*@5nZ0MtolXn5Lu!cg`UT2h{A_z3fK)h#l?I1osS!6uj)!*#L#(i!2Esj+NMaF
z=C@t!&L!bTK$ZAF*$DaxG@m|q!imz8*Z2O(5Fr<4l6SKToQZ(_0sNr{6zEuK2?d@v
z&N_YmJV={+!^r?uJ%nP076Z-D$lnL@>X*HJNhz*QoNkNPLI!2Dz2k+rdOQPCI7z-U
z8sqJ_Q=oK?NjiFkUs4A;y}MZ%m?V85ZWK|8emO5L;h)<Km-ip>*=z8CVe{nD^(uV*
zbEDuLm`%)eRl*txC-$^1nXFqmG9OBQL44XJc%0hl_)d@8A{RJTI?{WFA72!nKYB83
z@*y{|D4{N=BQi4Y*6df;zeA$#UUWzNcw^C`Pad>M084Ij@|!fj5M6%HLO04yQ2V$>
zmwNFzA9}Z{T=6U83HGi1fjtLz^m0n>%PK%BlGmarzZ2Jp?m6h?jr~OXFn}dsciPX|
z+^!!AEdJ$+AyB)pQfjqRdhpY3I=#D|@Ws0tp*&q<xa4#$KQ9YrVF|~H4)Fm+<3I?T
z9Pp3YOG|35yJ9*cq9QUkA81p3NRso?R%`C1`=e#txL2=qq8$ewWn0SAxT|z~>-kKN
zh6F_a_Co#5j9naW@JS`d1MXQu6SJ(9NCz%<#Mn(Q=|Brb_wgfCW!%vDPv{FZSZvH#
z=QoVo5A_LiR*b3fjr)zIaw_0o#WlVE;}i$Z`XehaL;acQ3GF!cEn&ZNpQl4o>{Ea@
zwjyP2h~NrIKWy7n>CntYuQ!8(_9nIMmSd@Q@<3z0BylkIF@`_W)j~@xny|S83$4Ev
zS+U=|`70lA(cu~Q5Y)iD47H!-v9zYpGI!<Yve&=wrPaS%;3nGlAQ1N~!aS05cAGUl
zhegRjI;DIz145UBw7+>6Gg)gFO#}B)PWMA#@b}YG^;p00vN~&v*t`GCg@MP?WgxTU
z2Odui5~RQ?)Nf5!Pyh$yg8#)2;G|#&1gf#%rwZoz)2Pq2X=oiDW6{ZLJ};;6$LZ~t
zo|;Rw=JB}N_thht3}!j-bF4ca6DOh9e4{qgrdKC3wkS6C{lcGPPL*XA{+@Ar#E<cP
z+;UJ`%8#SIc&|U-^|tTzDFF66EYPK0xr=<s&9lSmt;0W|;iSG&XAzRauODqaKrPc>
zhqahbpWhlE;#I5NRWo){Y36WWQM0NaQaS^TG&JF=9@}4(!^Fh4Qk^w12I?>ONzSt0
zl{LVi@R!IJF{~*l?Hoax=;L^D95h3KIsO*D&vWn1iyB~^p3tG_BW>|y7n)hxs>$w{
z>rj%2OWYc|qVsOo<3|v&9g@fg^90f~V1irDaM0O$;4mxO;>E{Wx!ouxCgUWiD3-jw
zx=)|M=aD#~>~d-H*1Q{?u0~&9WciqDbg<e5nw!EvXbt*cATd9rN@`|b>Mt3m{rV3K
zlUqkEmF7M(Q!ajvSf;#4>46h&N4b0hi)J)#2uxILWv4}H_OEhFdON`nZ;IO&^F&hD
zvG^EivHT&`nwX-lZ;gP8H)w!%Goej?Hffay`**iEk^GT>v@7g0nKi!aey5|qyL%iH
z7mL?*fFhBXK_J#7a{9wUOMktVpQ^6??D?5a$?H}n3n8t(WW-^&kpEuwu`hHB=$+)W
zJP|OvxYO$;pSrG!unsF?q*yzu#z0cCiTyX4ET6smWxPS;TJNM<gw|)44Z{&-kL}lo
zXEZe{_K>D=Nb+=!^hLSI`$+e+H>PSE0-MQS>~!WeFPW(0)+vM<0GKmoCejm=GW|zs
zE8%QVii5cMVttG-{q4JC?ng9RoEL2zYW*$D#%J0(pPgw_SW)yo(w5fN)#CyhR4=24
zznCG@ZQ)wn(GNgn^iEx`WL^Cxm`quYCiWKE5Bg4QwK0*Jnse^qZOrV`eKw`)#3_0F
zZN#_nK7WLS?!U!<G4Xwj6|#gxrm_N%NB^P+sPMWHkRz7rn!kvnrN$wQE&ft^s|Xy`
z{r8N2ndBa+j_*?HxRO``+sQ2dJylXZtewtIMGz9(MG}~3+OZ{6>{-;7us`PxmGy+&
zpqJY=Y0)hDJNI|1e~~JkXlfejzbT>Bn2ccmJ@op8&*8b<Ke(d(U}uf3ODA`GJ1%b&
zGJb2Ej4J0Jsd7mEDf1^SCj=e-8`9IDysuEUoEqN7IBzf+ezVMy-S2|q72EgQ3|K1&
znLs%ptn=!@Q9rS-@dCPe(?R|Uc!0u8FW&^o3gjJ_r>b`{OYd>XY<g`w>1>8O&tMk!
zdQ&3QX&n$YWp6*ui|vft!RYHHpQZQoGnMbJn}b)z;IptPD+%m=3@k((L^a|SHqo@&
z0HyE&J2zmc-dscDvQw8Oe3aApDhF8g5ldrzh~6D@cgS0-wC7x<4s&J)i^;thR2?+N
z70vlBi_!Sv(>ool7|X@@%<GcpkIHPC;ME$ly)o9U%{U)E?mTki_fWCuM2R`JHmOfP
zMO!8QQYuX3l+F46x!l*4w5ja_nCq3`mc=gNC&w~()4ZL7Z8pY$jP;{Nv)ujUsV3-)
z;_aBT$tG3&88DjNXf#DnT$z#e{N4ppP_b{`RPnzfKfdcKx)i;QHO<b+Tt!8x<mP22
z;jT~(C*@6l8edb7#z8Q{cZ@5lhritR(r-%4dg>3AfN0nrGdo!)mnuX*tYt6z0)42G
zvCRrS>0lPYK~!)*6&;V=6u#=*{{li)%wR@+trw+vN4oG|i%7G?Hw9uWp-bl<(uVwT
zHW4bl;J*&T!WeJ@c9EK)_trEV=rRde_-&q)47Q);kmOWlR}cS}!s53U(A9F*M7xLo
z$M#F_>PAjHKXmldm&QL%*+?mGKfQe)CrD<{rn}|-?djobrE}L&bO;IZL-lhGD1<mc
zQU`1K#;G1J5v!(0YNNf{)R<iBom3cBwC=pAkK{zkR(2&+K%B;ylqeh8THFJXHYny{
zLJ=lvfX->vdc*d*%`!Z;ZQv6SsFNJ|X+K|5h%IYWXeq2m3Ll&|?BIm7A9xi3ETU#+
z0Bhjdtvn%5wSOT>OAT^?CvfQ2;1M)VWYq33B+#n!7oP$Xd2m=AVqeV`MXx9OuB}?!
zG&I-i>7*bbU;ms11w)Ud&et!=nzjdzA9#8w=c-1<9=F-dYen;qwoZLs7pi=+4Y2OZ
z3KtaTpsy_CxV-Xy6o$xxvBl07Yd`!?;0QH&blP|uh=Fu#u$;jtQ7ds!jH0TwuLtQW
zpR#Yw?VlH1%5G<n(tK;hYT9wYuHN-+W1k7w5P9>@cPuNuh(qDCH=>;D%IGzm|A}!B
z`#VZ<iH%KuCnH0js+dX0;?O%FF7>goS99P9%RKq@FR7@)#)FD<oFGK5M>sC{W5IjF
zxRL7Z2HeJAy6!E@Q4Ff#L=fblhmzXPZ$@R)>LtvC0s~ITQF9Z`zi9tb8i3fkL5JjA
z$huYKOwQn`U7S7m!admJ?$bM614)0d<UC81&}3($%2=z83!M*DUU7ap<5Cf|i)4lF
z8)g*Q5<7*biVs-q{!9P0{CygVj8LxV8MBVD?;m|h!r=6a%*5}HrP=~T?X5vH>bs6|
zvaul(II%uY;G%Gmrjhmr&g6_yb^py)NBw~km=T!CGPMU!QsYH8B~rNj{LI5h4o11)
zzV%8LynP>owX(Y3^@jJP-%*8~<}D7A+aeVHuQ_3Zsp8rGjXwjA9I5@P(j0y#rT#h-
z`zV~j3k7H`n}ij<Fy4G~v`p3)EXZpGUF9gE=$OkY*8e?pa)B(bV%wrp&mprZHHqhJ
z;vern>Y(gJjZ;4!IY$fxRrfnn*_pV^bK97ih=tA<1D0Y7z<^$srZ3@F7I=y>l~l7=
zMq#-?lDdf>TfywB)^ij@u2Ge+#T{#6xUuY#>zpvdjxH;~mmWwBHqxkDp<Nw*1@Zwi
z!ev*+%V7aIj=`^*NOjy9XZr0x!z?lvqwRZh#dopv_Wmr>+OO)}NMz!%&qFzovImui
z{ye3Yd>h%uZi^CV^~sZCbyDng65Ux*iyebhaSWSm&HZ01gZ_I+$)?(MnvI8iGx-Tm
zY2B|--Vpa#78oF2fqZY(I*Is)?VnKNPtBz|jW;iiKrvqBo~7<3A$kYe7w$Qku#YH;
zF;(w&JL&yLv}Q@Z;yfs_^y{8Diac+&aytl#SWqqyq7Pl+B&QHVDi3?nVP}2BhX~Q&
z1Lk&GyTnOnQq?dDRWN(~*EWz?)<y~yCujx^kdfU(%C}HiHVy(Hm}CSak>A7GmO>?0
z1~gXJ>E@VnB$2-b!y`3yEG>76>fehpgGHYV-!I|gvEmu`_Y*CavUcu33R{uC^pIVB
z0Y5}lEbd8f;=FriawmKcyc@)a6Y|^tw`ex%19Ta`mhY(CvEaQe;(+fb5NWq6nW8j)
zc%TUOj{xtk#czN>>*e*Btjzlet+`j9p3Y(EyzbIi=dob1b|iI{rruOvmU;riEujuq
z#Jb_VWm{f={`a$+2Yo*cs~i`y@Z93h=L3<>=6+WY{n)PD%0Eu2DIgC9q8XRS0&ib(
zzx>}K=;qg+@+a)?TNanL>c*h0MJ{@|0!xneg51kh?+kbb*?1P##MKDo6XqLVj=%il
zC};RxkX+8>ZPK2a7dulj`M}CIFCLghd`tV=fv17!76TK{QPk+mT=w-C@DMPD<HA^&
z3!8N5lsWCuww%<{8YSt+NzpcXkWe5_PxMXsRWFTna6^2w3ETWP+8=h+lYWOYNjST?
zl~~{FT@h5P`~Q}TvYU3fc~l;f+&@Mq^);m%EilSVJaX9~rXvx{S(5cLtOo-*2l3Jt
z2$BSp+T2Kff;J{C$*qtL1Yc&S8M3}39V+f%tbc|EPDp7sEF#VIfunjg=A$f?#_1^X
z>%}HYkglZ3$J5L@%Xx%vcfP=}n}2a7RJcZwE!pEMjGq$>TBpyqd({P~;g^R0M*Q5&
zy#)T7Me&$<(dAJ?v~7VFolPm-JHRx4_t2}$-E~d@IQvs=t!LzLN<2UGN`?4+FNBEH
zy<<F)l{yeQrXnr65`8re2!n}wA{Q+yrh^uul#nQX`EYmI{<D<)2e+?+XBR9n^;c$`
z5^YSS0i;>p>|(Wr2stu)-$1PS0~ehjPf6f97cxLlx<ar)RPYc76R=KH%$USBMlKXP
zka+@{@W1lx2$vDzLi9R|n<>2*D5Npzh_si#NQy1=P9z=rrln<eD4-R{M9AXXzU0mu
z`;+lS5Ej>Afsm21*knWO=I$&E(d*;xlU~THyIsQYmr~XhaAQ}4OHrgDt1Zk5;OJp%
z3lk{SmC>(+6I-r4*)1jl)iANs9v}7nB?}Z{9=Je<On!1q+s|)TA>v;&wa6NmVv0?%
zrzF^$8C(d6NoMzxI<2zUVyX7UVksy8b$mia>_6h8Os0{`?&^Ptv%@QgBHoH~Lre{&
z<dOLep;XFJi<t)pudYu5{6H`}+&LQTt~iL7T`RKI`iPq-O-~%zCGtXVe7e%jw8_MI
zKBTnl%~umPHU^id$B=<8*XmaB`k}yl7-F<--IE_qe(rA*tnihR+RD<(k78DaF3P`s
zMqxITn@2y$U21^{Dk!6hO#Y%TDg8fCRRFE8^cZkOct&JY(7|nIjy@h=j9EOuxcJL;
z<i28b@``vVYkb1Ik8rx3v*5gAHHzISmx`^11vX~#`kyX`RA{bi!MPd4!f^UP8u`6u
zkd=5Y-0hnSNr#J_9SLLjvhW=I^Izwz4)jj>Vc4I@QNEvTG{F_+lsszST&-SM${R^a
zx1ZT@!GH6aa}bNku5Us1F=D_NsSbKx;*I^Fj%`9>QYR!8`uL3thh96Rc`-Caqpbc;
zDPtKFF({lDT<Zr&^R{r=3#Bo}wm%8G>-^SIJ;jN<Fs=Tr;@ZTdIHm1PE|SIZ3d*P;
zpnLkIf?VmspK@%iX17<$BfR!7A80n}2pboX*<n*%<MUzO1-WJ@+3YbrmpL&-PV?R6
zHn0BV&oq?VgCJ?wufOFmzua9L!SWt>c3vID)q_oNa75<@lYk*1hFZA<`VhUCS8~8I
zzd;I+4#n<0UhO)61%zOte-(0W)N%&uDHJ^^&#M-t&}*R=;|cW;J`ZQfta?P8#rQz6
z>WJyvLNO9!IcECBCQHf}##m}vcXQT*aHFB8=eEkrmO&{)+L)=%LS13{Ot(LFEVvZe
zC^?^*koRmXvqb-P3EySnvLkj%({VdP(@Qk<4M~w<QB<6^{93J~V3tSQL+cp}La2<$
zt_+1F`L?AXToihUi^2DY-w;ciQ}D;Z4bvmF@MSp7W38)elxCZb(xTPq%k7{SAV)ES
zln#P*Wo)H<bA)n_p<(s?CT*Q7$<OQyIL!AUz2pU>`m16AkjZn{y<TB4&%a!o;I6_6
z@#rWUSUE+<6a9g!3HK*^PI$3)Q1pP3j=kV)$&#$U+9X$Nb+6_Vw)^=V>GK;B@$O~T
z7aW&o=N^wLI#78Cs+jOZT#O>)1DMt61Mbqw0UDaUv=E>VVA({oF90Rj+1EdEY}pZB
zzkvSwpQ}FFaNqw^e)fMV<yI@kHju^tuj&t1mG0X7QH0=5b4&os=Ic7tk`g2}-tJ$H
zx2}Ea&I_b{A#aRwfNBtSY3i1_j-nE0H+v%+p{pN4UD~-d@e1hcIjda1^8L3FZy*7r
zz%r-YAw3tOrmOaBT;yp^74LCWOptCrkm2DWf@1qCvF895giQqo^xEU$4|l?4FxV_9
zJ({SR1IovSzemsYmN9Z9cRyL8xW%D|qpBJAEIh{mHC4CvZDSqeHHP)+aDVunxplSL
z4`OW)n}83k*Xk{Q!=3O65{{O=4s`Mka&k>^G~zH~TJV6RsgiBI@@?e-!}7s6d$oVI
zi#>xNqBk`{gf!}UJ>T-@-kHZjT*|Ohkaqy%Zg_pNV{Ew)?GD7WSMEgpbyFB6wdK&G
zu{5<=P+fA2T00pp`0on>b=juMj=#Uy0xOB~qVbh*gZ~h6ZzHZ1_m04ElI!QG4|@I|
zo6}lkpa>F~FRQCO<T;3F82efY*M^b(KdF;VT`j|c?;mkN3R;_7#7IujVNLFI<r=Vb
zCtRVte5mhF(({ulp7Jb`v|@(>vt{Z*k9@Itwe$@BRyKo5pP*!XnR<1!H^i$!9Ua+a
zx>U?5EY8arBY^Rf8h+Xz92PciygFKInRWWj3ft&LLX5cS3WT095E+7q6CC14K1jfN
zqIdVYI&#<01eapTvRxHR8Kry9vgJjKkJeOWB~-)rMcdv7%2;_d{Jk7xM*nRXWbi(9
zaFWjh6IXh8Gvu}P7VqcAD{Qe9h*+Fg3k)*z`3gbkg!+^I;OYjBOi4`Nll^DCtUr6j
zM1(sTUzJ|!`3Nz_lTpsDkgaBX77!IQ?(xn%1u9@rc+RrJ1FJt;s_K<cf5Jb^uJ+>g
z(*y`uVa7e)Q&WW9s|G;BrZt@n_qAn3(LVIxsseB*DATyUioEnCwhzB&C8OLw)O(d}
zp6WOZp(~ztWG%y~dlg4nG&%GVqgkiJ>$QYTRwb=E5CrY!C2H>5&tHLL=R7_tH$H`z
zSj2(yODONQ{OYIKFu8*$t`Ez4xrN}^Ji(?U^Q0lUuM>p;<5QgOezUsZzlw(=vyB>S
zqTWL$`PyPrGEX(QsId@IZo+Q*!XR#FT{Q|Z4O#GN-~xP(`JGq74)sO<$wn)3@nzCn
zmPy)q$7Aru5oLo7#p;DmzLJX~GMpjA4+L-o<!KMV#sLSL;EN~f3XvlduK>L4uEHfS
zriiktJVRAgLKWa^JZJIMxk7X*6fiJg#5TuBL&7mf)}V*@yaYTt8h67D<a^Z=`b!7)
zK)n+rxMi5J@@~)}yQt8122B1(sJqFFEfB(EOVk-71lq6$g;chx*Lw}BN-H}`*q*i3
z(1@DK5$)vDq4Vc+KCMyo>vEt=9%i5#&C___hOH<!N$$L;RaaA^<ao?o%*$Wm1V>rc
z4}WMKf@a<y$QkW=G0MiNw^trQa+TC6;96j1JUl$E0&jivm+1WN>K!Z*G5)I1cj3>u
zGP}eZdx>H9&q|CBDPVh5jXbTWYa6{>Cj$4RNkz^;U=Q-AsdAsDO@=5nldg9w#xXa_
zZt}3@=YvF5$1)F(Pc`$GeVAO8M($&eCf*V52prF2Zc*szLDf8txw{yy9e{BO*$?v&
zr7%#dV;$+x`3Oq*Dlh0E0WI@zoo>)$X^b-jxFW+dii|&JX1|Yn4>g6uDJ;xv1!MJ(
zTmo2b<^F=(az1+FNGjHJ9?JWH8Hn`c8Jeo8^}Rz}GJmq&8qMQN(rUvK>Mh})2GQGw
zuCIj(4$x8>aIC)DdKZry#H3^8xg?=+r}Ie6jsTXUsc7*@3*|-hQiJX2W6Ixzrl0<e
z`R?v|!5`WE4M*0ugnHxf+fd7tc!J--&>=-9_b6<nW}*48XI!jFNXy*U?3x<>?0)AF
z=EZ^hDc$U)kf^V5U+an4iXlRhZYHl&=CwN<E8WVgacN3gZh#`6^?At5jVK^c`h^qs
zENmu0$PKB=BU=Bi)@AzcK^fKMVB+;LTUlACDEd5I7q|n;gz7swP-yR3wxhDQp3%Ea
z3;NUP3YBlMetwcxRwj72E4nN@SQeB~I9N?<CReO7%DHKK_NK&VAN^nJNE_c&Q!4EB
zYU^2{7~R66g&YqL*wL)!!~PQU4I-{(=@|G_l}~$p!T7fx%PFX8h{}GM&(5~ky)9RE
zA}K~5e^Lik4^);lt9k;ReGw%Qnrx6_hYDTR+-cq1pms=nOqWYar|OW@pAwJv)z%Ht
zVk>?8pswT1R0+N#B*LON^FqvfX0l7IQw%Hvsw81_j*?T1PIZZa1#z#Vrjw`}K>f!(
zis7D2Y2cCCbEU3XLVsoc`Ye|X%{M$y)c9n6*IccuZ?qHnAS5+-IbySlVJ)ytqWjTL
zH&-q(XrKC<u=ElvkWgx->m1guqve_h4~PU*jB`e$dlKhRm8<Fl;Y{X`8<d4>h34nt
zrflcN2$DmKtyu&0meu}g-aw|Nzw!`ceb_SAHUBw;e0ll}-~0rweXyn=xo!qeL3Aok
zuqgc?WjR$75pm#68>LgV@JHe&nEsv)E2D=mlRWCB1s-laR1U^W>(O&4l_WE^QMOYj
zD^?PqDt6RhCjF7>*F`H3N?kpgnk^^yNZr19+i1eLWo8@HVX{QqSrq>r=U-Jllrjgj
z(G}^&OiY`4(bwrzjx(&kd#_@IeAX8hqML4NKC4knvuOHqlnsi%4$6iO7Ve=1i>OHS
zG*DvNl)e!}pDr5_(rQ|-{WAa$t0+tu8cZSL-l{6iE!xGIgd{E<H-LTb%89U0@;oJI
zO+?%XDkHs?bQH$i;ClM`M(jq|K|elNUmnU!J4JkXn+@aT$$Y2?=K1jg7_zdsG!!2{
zW@I$s!I-EQl|h0nI>@VQ&r=0a589X~;g4CJtRqK9_M1$--ahuFs4k1q+zV**faFvs
zFPirVl5>pB=6QEQ$RGXFN^?|R^gZV-VRf5*apE}dl15<(T7_Ic#^`;!!>#Me?7Idy
zvhmHKWF4u5NnMq~AC;6*US5a{_?zVVGfADHif$|t;)nROa;ovI*E2FR22<J>Sp*e8
zAlk4g?OB*@wEy)|0s0I{D*zJ+*;{O7J$*`rLEt!x>rV=2aSNYx!O2P9;r&Pf2&!B7
zENK?x*pkw83Q*=M_;j`FBNu(du3rZQKNC!0&2EMWN_Ow0ZurVSGS?Y^57dK=q^B=M
zxpV^SJ73Y&EtG)#Q)6~@o!g^SlaP~?canCAzxyQ;es$YVKdV%al}pyZd1{lVaUyP`
zJv^1FVn+H%4%U+2yKkN?hsWLxkv`7vkBVel(%LU^ow_plqatsLZcM+WI8(hPMtUFx
zhX4KC)(RxhaeWI;C$49l;P`NWHr@DhMyTyafAtn+$XG`Z9~u&Ho97Zvl+F)U9f~pO
zS37q(7~MKdI_jVSt2q$H*N%v4TzGf}DaA8Ma3&iq5z>4{(RQ~|t`~Fm6sInZH=}2F
zz0{Kqzh46&_YG3Q=zN5+z`DgpU5+!aV6rIn#xn%wd3v4e*BDm@B-%zsqx16{ONoo(
zl5U_0lVn2=@i_>=#<hH3L`wk#myp6}-{3A(x(C%MR*k}Tr0hT6)(B)5vM-52bUqX~
zvN0YX;eby;y#BB~L@HClzyV|{=ObL(Im6zN!GB(Ma%&N~#zv-R(8t6!C5{yTD%8A8
za<U@V1`$is8mA`TKVi9`g(TdYDbyau*p0cH_-17<mwz=J9ihMI*pK&@2QD5YOnD}S
z#Gi-(%_=Ur<TocV|EXJCvbR^8JWssYoJrMMs#4$D5|_DnZR>JdiU{%8Tz_>rSs!MB
zf(w-+^w-<efC?*OIqDNrs;lRcgo^iwH-pxp7j-tC@2k<iEG0loJH|3=<6SRq*il*`
zEI+RpDX|zS;xI2NUMx&Yi%UImr?J=}*IEZOVtS*CZAZz15psK=Z`OaXvPtEoChU%w
zyZ4A0dxVi}xcl+U!##)TziCP80}~Aqq{WjJc7k}SDge^dNY&jB8*wMs=@gvG;HgHN
zcExS>PJo{dI88`MW>?S5kusaHuyN4Mho}p|X*&kmyUK7sHUWXmNftzJQ8enZWvb?-
z$?xqo)vv<$Gt<m~c`)~<G1=8nyN!?UMvUU!I|Q0{#E}d}fqTopollf0w%y55tX*&t
zD8Hc}gR)@ei|@zVdRC;6Cb>kAHiiLsHkVuGOUv&5T(_#xIk#E$0DtHemz!|HAB-L)
z5aIIvckbN23xV|9*=%&}V#BL^LxQ+CVt$R7WTX>OaD6a^Oz~f8jU9tS9K`qqn4fJ3
z3AMy*NMH9bsHAZT2SZ3YQSbWeWfV*1sPEO+eIk}uBu@2(DF1n)I49%SfMS{^7>`w>
z;3S%jrUQSOP7W;$Jj{sacL+gKLN!u{6cQLtgY81ec01{_Y1_Crxbw(FfJSP5KTg1d
zj!6Fda}|*K2K(i5OAz=npft0av3jmH259>L`6MiYaba$RICwVtSgQ8Y6BU=moYB!_
zUhE8{I^mRx{z$>DR7Vn+YnGqomJYE$VQo&tzjde%7Lt@k(_B67PMstCbE)zcl$ry>
z@(hup9jv_TY)~$rL(^G$KrwcUE<AVsS8qEbA!+!dubJ4#Pe0CK+XRWJcI`l9`h?kC
zU_=HZ_qS~V5?d{?#_GUFZR6MB&hCCt=(744^xIvmF2>q6Im+bM(ar2YkEWfYmQ}OR
z<Tai@Qx4iZnP2d4Fo%=CO}#G@D#kmUaALF&bgsri5r#fgKgP{As}4z~K`dln1Om<K
zcm9uavCN9~#Zz8j0b~t|R{9-=Rvdn}5~a4xT+nkY)&TWdbsrK`oU9RG(8O1gzo<y}
z#0U1EN5HwX@>q^)2A@;Nay_FdztXA?4I8~0(vg|VQ=LhQVxC&m*UhYZ7WI|=(8=jJ
z3@QNMQ!`@_WnTwIqz|%{J&Y%&)lFu82Bh*y35oOa8q9$GWhP_<VU-aZ#kN|=mR$~}
zlbDU*+!6{YAlm{}7f|yDf`Z%>XEP9&*tYz8gr#4kz;<9?KwVg9hWUH!jtH0NT5Ty6
z&)p--<e+C%Dtu8R>BQ7XKxwm;k)bP3qK=hZBv_WfjSWcVM05t&3@ts)fTyy<ffvNk
zB6w)y(0m1&dE|g}y3mTL%O1|}vvX8}MSSDyB#8I>k&<|P?jClIh>nT9`1<dZI`sDa
zL$H8Be?;Uucf?wOHC7VX0~TLgofI5`ajY7JZ2$0hQMc-hEpkqrjjFa_M#9Mzn<jpb
z&IySkWaO#%Dn~3b0ej<@ttZfn7b>HLNU$$YSRI^`Du>e*rgXyX>@;+B)0<s@fHam5
zkVZiPBXw(5|H($gRW<5|N$9m7=)qqO-UhlYBhxWHMH@`<BJF}STL<8(!Qsqer1PN`
zAt6P3v}QE02PiPA#M}x=z?vcxjj94llCx7%r2$w!u$w75t{{U!IVP4{#m9x{>4arS
z%(q&cDOf_<`_qrgFIuJbnkCQ26VOPQSBm^sM@2(R+nB5BI;`2sWk5h<dj<M6)P_79
zXan|kS|)KaJqekBe>;(Uz*G79jUV~Jy@!(!OJ)yAf$|3B5|u#&%N;M8Q-U}1>*3W^
z(uxM7Nu*D&QaI1eR>R-^d$hQE3&D9P>g-qw@z;~U9uynVDg3hV^%I(`=#rQe;%-^l
ziygddU7;2SxLkN(h%(!PpN+2#mHLPEPOLm@Ooqe|)H5v%Bo$iM8PrR%0^wbwnmLqr
zk$Q=dQwbq@-oQ5|n-#&WtawhG7egu@u^6B{w}_Z^T)=?SW>e=@`-O2R%Chmf5%%XV
z?A;KqC;`mq6d}oWrbT=)v-76<Ij{x~N#`%5A@AvOox`QZP3Ry3oWZ*a&EU+vH*K5r
zhVz50NzQX+f!&DIkm3rO;)#-&ZeZt`x(~KIrM-NK8F6NHw3F0iColhQRtfH{ELW~D
z(ni2aBioYltH?>+ukdH=5<faNrR!>7klBe^>)xEAW{B6<Kn9s+DiX%utm?_54*0b8
zz2xAuWZ$1FayMol#~au|dZ$4x<Z~!`^7$fVqjX0B20*yk(GQ0Nzlhq-^%NQrSQ~5T
z>%r@1VO{FsM|9tk#_0U%o#SS;cI~X6-=_UpJ2I-LPBRCA$BR@INAE$3!|x`QHncHr
zoX7?C@CeM)lr2L(yNW0Hfb$|?L<Ns0AQ{DcezmE`>e!DsK=s74jCu2c0%S8KM><VD
z+><~xW^5*3BeQO}%A_02x`O60q@L<xoE^;WB}wtmlY*u{kJx3;x?In?t%Zz`=~qQX
z7v}U_zkUJhQW?=fs+3}Z{mnXlY}+pB&H-1n+DPb)j3Phj=M<9j=PmxjM;?V(PGXrk
zs%y!%;@6|-2mB?5ti;?-iXL)YyLpQp<v}EKOLe_%8$pLTSAsv`;{|)9N9|Lbu~$*R
z2vGne;?wU=gxmKm1yv*}yQL9uJedg{$zbk;S}rjl#{<rKGU^R{6+nmJ*w}>Te=OK9
zsk(VxwMg>>A=430(+qV3@ilJ;YZLW|UUYhIbUGm}tJoQRAR^cFLRdnIY4^z(D^0y*
zP&C-a=LU!nQAjEs*n1z?L+Va`D6$Cr=TlWxI&yE(AL$J_S64E%;Dk2DIYSU?N$!S_
zfA~?4mqtNl|LX2gf1?R-Zu1LIhUT-#b~hX;wIw`8yOrsetg2qu+=S-_c^l|5?I6()
z2Qe%tKJ76{qHSH0CM2h?(YUYAzrB%O$eI+m6cgO}F=w6%Y}%&x@037&)_EugSb6w6
z^Pi}q8_I*I0qo_g?keo;>tTFjNzEH>>aw!vNK~XyuXZCi$)7$CJ{w;zrfj&iazY2b
zKm1si$3X!7u(6>t1)<MA>QAdFc%4S1NqxQBy&h7swMt;@^o9x=fB2y@SPh!exHGS7
zlz3XT^=!oXbt~~{qHNgeJ!w{s$ie^J_paaOh|BuGp2n7NH^19FCwFVH<bwa!wQr`b
zoJT`n-3liY+1Svzs$pS;vIh38-s{7D+YVL4;Q(#2e1;EHIHCY*<vaVz+!}U6>7Az&
z3-wsUtqr5LW&BG?Cg6%`=RQTKY(ya;R3Wddi-o2ssrRE%5ms4$Ks$w$CxypbLs|%x
z^u+U5PUM$l6_t2+blr*zC}G0)&5C`U$nF&^kb*z2-*ef~n^QO88})QNA+JQ|EtHr+
zF~0CXwWUiM?xU`r3vu)Hp;=Vx)}QC5JU%<vJ$oZ&XlNc!*NAa@Z0Qm;H+y}IK__O&
z%B40YE>1_!#I?RXY$T3aw5y=0*J+MJ0j}j&>cEZ|)Mn+vo=w&_&;ZAhGWFq%-{lrm
z+sOTiD2z;|{;yW#_)3Vv_TO0Sb7RXfQ*`{(T_q{i^#?N?0EzAGYpnZaW$YxEykUtI
zU_T~GY)!U~Y`R{JN_g_NyX{f(7n%JO3a9N*D7rxcTId0MM&$SbnyAaQZh2;Qi*}mo
zxFyRIa5NY)I)_j}oYK;wT>wj*&KGAKG+gd;l}0Cob{_>wcK1t0=e>S<krg1b10}n9
zVn_`^T@-cqx>t9vZqS>5jY?&VK>UA61|O;I4|OOn?SM$RT5Il+f%KIXF*ZUaC^esM
zVSc@H?NX#(ZFmg9hxIhhC4h2YOJ*^_I_32!;N_?%cUA)IGUBg2`FFuFDk?{bpqt1D
z{E;uyXCs47Z=unke9)yzRGAKCMd-kq^t}HP?*|m>hS$@r%MBZEPTiaSeijvsK|Mg$
zJ2>PE%|qdRl+2ew$C<AE>bGEH>v}w(sgP?Pwsy=+hLKheah*G%9*#gmwyWVUmp>;V
zv$gi!5M5V3NOGa0oYd3T)Iq|#S*Ix+@QbFk*k&mBFsfP7br_j|98dU5$PSDT=G#FI
z4W@&d!Camv_2A*@5L$qP4d`3&N|kk{Isr}9ce+*f=|52E9aV(0UeqU>pi!f+zHAwO
zG5^$n+VWRuTDNRCZ+B_s`!!HdT?zGJhp-P+x}Zo@q4956JLC|fJm6E5=!E_P)RQ5r
z&*r;_&fEVDUYB_oECyBX95aT)UyLZ;5vY0PnB<=g)MG<Pl{=zP&v_>uaIX8Wp`-S)
zvbT*4)@Q<ZirSMEjZp>;@0PD*aNxdYzN4a5Ghre<*j(!=&m(Xe5GtJD%;Ah;KKk0~
zD@qIHaPCf~pqwmZy;@aJWpnYYSKdf3BO8}E?|>zI)ZOFL`IS15)i1Wm!>(GA!uIRW
z^AP<Wsh;#gVd8=bsIh_Mq{73j%RsvoK8uDZnMI}6hE40Tk$RWm-U6FyA4}{KM}_Y~
zNSh5LZe^i6U{l<Cb3SlY;7uj!Laeq0U41l7(<K<R>}@!OjxHTb`}g2J^@GRYbivv;
zR{!{aTWWHL9r;cU)Xd=OUDu9@qMJVzq7HY3Ng#1X|8J=Q^r8Qc_Bo>FZ^eS4e!l|5
z$9hAQtT==b3q9;Ew~Rm|u4m7F;ON%GRbeSQtYIxdE#F^Oqf63GZmhaj9s0bNSUDtv
z0@D8yr^KfQdngU5Pi9TNf7bA_#Y6C(tUt?{_f6?vEfVBjeGH>`?8d0Pw`8i=C)37i
zD<by%S|y9OUV~Tq;Q9Vj+1bj@gF7ExN>^6qz2^IZ^pwaNykKC^cZ*BH^pk6Gnzu<F
zIlHBpXfhI|TW8n<Kmy;7gaZyX>PhV>O`Pu)9%Ej^82SF<(t16}mXyp)0l<RK?4>(#
z?J3##Np@XboiQLmK7RZdfx_FZH6wY!>J^Ii4!vHur{2iVz|R1p9f0`O*%f_kfku$D
z01)X9{j4h=?_wNfUhZxOAMSs`wq`|e-$c+m^O8XqIdTBr^8}HyTYHc6{Jj!(>V45a
zqL(*}?hRl*0J4TacZ5ZWC;-<8bOT6K|L|~)UCqZP=<XOzUMoA3@$(u5UAOZ3<PSg$
z92E%L73(L;3AhmgR=k>NK7f|eBR+VG15nQaw6+AvNgAe{CITT{ynvlRV75@OE9s`$
z_O6{!2p!V02?Nu(!sZ!25NS^-X(DW1ej;ps^B<QI?s2a*+H(Kx%eQY~+&2&yDKynX
z9dZHL;|vU&olPH*Rp+jhed*|6LOrleq2VIN4O$GBKcds6hX!-^4;<`qWmE@bJZQ^S
z4oxNx@)!O3OTQhuQ)8jsBQ$c6>W^e*W~RikE^ud(qD=xWCZG=PzNn3-XkX-hXbb3)
zhQOw2X`yf1#Tp!-6Y?4XR@ze>4@~Xdz4XFDaa$X*Uv8YZE|GB10{#>}$ba^1>&z3j
z#E`;HKZ1@$k2v%$l8NbLRw#25?fNtw$F5LT*ySNI=)vB7ev9(Q=W842&XiDC5NllK
z;ausypbwZzo)pwUk(L(0B|{541j6Ovu}l_z(5CckDiNlxH&dk<n~;!D?=o2=4}uNB
zhicysR7vWFp02*o!qM<ztYcf@wY$)H6gBjNMxiXHh5)6T3gl~}4Lb!;DYsj63vJDy
zSN=o+8Cvko)nwb{0Kx(fbtC?~Y-eXzbeNECWv5xx0`r`QlNYc6-!DxVT31F8bSQwA
zV@N7xvAoUXQszPL@YBQIj)_)*+mPXqUyU6i1N3tLC|60={cQKorfi9&vGZh`<~`$_
zfbaTX%Z`0kKuk6BF3>^H(+nVEsvSmvRi>Mz7n)I{-ck-FCx9>V0!$l(rfP0sVnS^{
ziuy4cZC6(XlsE*)(ho1;A=tTQxM%@Tkxaq_YjuEAiiBc98X9iv!UDTWi-JzCm?S%S
zZAZ;{!>RU*i0|A#wlES3yM+shemUc5(+-YC^NB;Ltv!W)AEP&H5A$w0C4s)L<z?Q|
zfW2m!beVHD3p)79zH9_w`Z$0<6*vhk8m}A=IxH+CByVJ7q++56IBK51B?64rE5J@g
z{pS%*8R~3|x)~1+4(`J>c6PErpMOJ*_i8|@&_b1SG#EfspK~Z8jDt07GZTE8FSH$0
z09<?hT8Q9CW%@y*#qjX(eOAy4)eknSye-=V3yX&^*2}_aX#pe*Va23O<d}Zjr=4T!
zSx`_==B%TmW7rOj{t-6pw$Tx^k0Qt73k$n*bu22~N*3g^670$+30|qNWbQxi%#p0o
z1@y*z&d|ttJG(ydedjI(lHq&HuP5G<enk1fpZ-6^<yA=9bN4!OCx3W&<k^qrTiTY#
zl=HB%(8;mO{}g9<;trq)7)%L*L!Zo_>5aewC`A~hDu@>gNJk54?ccr~2E0Shd<(a^
zcEEfI3QY#Uo;h(Yei#bP1=+J#fa+1>UDTIdJ>v^39BK&(7i&rYKT+|3xSZ_#uP4$z
z(5kT}5B39^HN$bo<K}rk9s{BkR-pa*_3N>zseI{fva*10+EQR+V}k)?&9WQN?7L{X
z%NsEWuvu*lY+%KQM?3Zpk!I%dEW7uaphpf(AToNKoLgY0pnz|uT+e-O4;Nm%wU#Th
zuq$OQB`nw?2H-wSNt@<ZU<xB&`}s+H#U`eC8dtbP-aO-X>ey7Oi-=)evbQIlo0NHB
zcb&1rV&5~;sN$tZZ{p(EVM|YU1EoWINUb^L@H0FZU4V#CF(IcG6o@7NbH@TTjy5M0
z)Z_s&U^F1Sl}Vwt<US!Mw3;klt3fm96rDn$^j^T23Ct#HmW&3K<>l^6l!Rr{U!0%O
zDp!UU>iC-{QH#ZQZ*!8J?1}<i1%#69cy1vL`)8*KK_^|bm{<2=>0w})KJne6>pJae
zoSvx*=6dv!LkV^`pz~swEvYSte2q!AI)q=<2YQ#c=}sY_LZDQm3V=2S=tzlI_`&{u
z4}@PS1#_YRjH3d`6KKoNjsZ{~*D1YX#|d{6jjLBVT2fxUI&W%WZmtq|{Hlh=q}GQo
z0w%CWhBvge#c!g1MeaXHsU!lWdOXco{T;G{p7vyu(u@_!UV4dk<=TIS?Y^_FNw@xB
zEtyb#Mq*$oRmw^Ve4R1tjY+b-Wjal1z8Lm69{>`smYo5lHmRvnAjy5*pw%V{7opX3
z2)!_%_W~HU@J%h~K&lqgUg6Iglids5q_;`n7h5`@OR&BKpl(ItegJY?2t5w4;QOeB
zLXQJTB+|4Qz8x)L=P$*7V2m^ij&V+QrYdAFqHXcmJ<M*&^)cQb?^LTS<IgFfx3VZO
zXbr@SP_9%9P&D;QuktjX$_4RaY++IFGc-6j%Xi{9KfgbSlA65qbc~p|_*_Tnt5@8B
zHM`#`KNvHSKn21Da5nRTfyAS@eE4qJG?sPlT3scJ%Xp(F1#r(F2O<*wes6M?l-3&9
zc^HvwNgNs@lZI>I+z7gcBeUpE#q8Q9H%F~JLT}34ny&E0m;2xr$o6k~!a|*z`7FEj
z>bx2&i@1pClZ8pwqdn1&hlgssinn5&G{2PX;AhO}tGH2SUzhP9oHGZe<kyEC+a!7s
z>L5bU7SM$z(>39O$@L2sfEZ$Y_wL0Sgqd8}Igy4S(-2+*0C08x3{WNI{(jd&G5ExV
z+a4ZB2?Bs4`UFT)3D_5+$sKhIF)^`>(;<O@I|o_?O<H6D*jA+yQ8N>%07RRnjzzf%
z!Bq{l9J%?bfK6W;A7MF8qNV&zyTsuq(&gc-z;<A*bK=k8G7PI%&khr8Z&3ktx}$WO
z<sm1Fxj7fVabasLS$$$@*+-czOVz8+I0IUn9OzKPNB|`*Dsq0;eX?|ZRCaq4Xth~B
z{Wl=Mkkp43&KWr{J&udvhV{|RfLmAYE^1gCeh^nQdJ(W(CkqWhu-8P23LpSoi}cHY
zbKSy#mVTTJ1fMQg%zK5Jsu^a*+1QmQj@QwvTVI(EVF&#h`5<Y{3AwrVGMC%2miZWq
z3g4x?GtqY)I7?jW?Yi5ioQ2ugPDVSMN6!ARbg0&FZF;h&fA(V7ZVQkGn))40O{e3N
z1^_)=0R-cfD_6$zRS}LXv=gTy$RaA|c5l;mad83UYlY)MUMA2*9<265a&pDQrZXT!
zkzhu6IM7AEaVQ+Ynghfw=pX=>J&Zu5OGOdseX30^Y^DsQ<&H9g-A8k?b->G`c0h-+
zh;~Bs^1(||`Li;Al^by>$jXlGY3UVT@onE7H5tc{J<Dyzy6Cjs4y(?$`*$sph0A%x
zb$#brq?nLQwaCAVn;AUolp39&<Yq_E>m4aNd<}Fe(91$jC%}<xJt2ZncR($?f==B4
zONXFrVzyl5<AdtW+3{9@{6MJlL_s6inM}i4FMx2%TUwm!E+j6P<4lAE1?2#L6CvdQ
zj_zzNLJ91y*p(`4RuhVu8=+!LGu=f5*F&(VoFoi5L;C<48u}Jj!i2`~U?+1W%S_r)
z$s4{d8#c^Cg=y@ih-J-_F7J>V2TEIKtEbCb=&<d$cI=R1X_aDh({pL5S2#P$Ppj@>
zFKKUeDT$L_@;;xcMFS$ht{uTofc=foHPmk0h-_X23oz`r1TdbcP2vI3(hrRKGFR9K
zONevrxi)%$77Sk&5X4CFfx+a#y3ntH`iP^c>6aoG0}SLiXo+8+4dB;}WLubm`(Izc
ze&@F>K5Su4uCqg!4ek%#y4Z<z4#TYc?Q>5jN~|l1x2(fF1`MP?e&%R|!%$|AprfGe
z_SsbGbAW~ni|+SSg#xF($OJTa1!$y<aF8!>MIC^FdX69q@U_Ps3oyXL1na?|OF5kg
zA3m0mc=<ITT7UM@a~$B1Q-V>@IH^%%Mo(E`V19IkomVOXx2;Rp{*cjxj|jOq*7_B=
z4a@ZUu+XO8i#P530Sq62FP)cDasnt8T?t5EdUnMlh?JNXXTbdIn(p@Z2Wz{g16;0s
zTGC@-^~cgaH>*lZ_K$L*1^96s)<nBWJdT%m77gXkFJMGs)g6r@FP%B<6^LOzqtGjk
z-k`poM0<0^FjmvGRP3Kxu)1MYPRC|5st|aJIT2xYm)V2q`|u>Rtp><be`G@DF0*2b
z>wvWw5O8c}rqw$^Z!fPdC*quLU~n*Ji*i!4=K`pKIIw6;N^pWxC$+phj7?3Ie4yEO
zN0~j)gs9#VAce^LXar1tw!BmgFLDg*mEiHZRstc4%)R9t?P}PZhW4fN9g)G|VIRO(
zE$gTW6L?b8nT^+tpeI5LZ%@4A(j1YM?1(SyLbwY%PUam+`Vi~q=SS60AOi*D)KXJZ
zDT`C3(u@86i`*&z#Dt`Ril`g3@8_ua`t_@)CG2(Vl{et9;4i<92I%k`_ug-zq}dho
z*1<l5bNp$5N!YCI%uf^4^7Y<ZYdgEjoHXGes_<iCTbA98sXhZ69PLXlI>iS=r<)S!
zc=Q-55aKp{(&g9CF8%PRBS42J`wR^Y#epl%#s*M;-2jAAYl^&yM?2_tJJx2_iSdq2
z1*l4isx@5!SnplCb}giZfcvDVH+xy%91th8<`Dj!C*Tq4F~R&6(j);K2lQ1{B#|$-
z<2jFSTYD%5yRRE|sm2B=9gzbzFluidiwYo!F=k`{x)&EU7K`g%sj$AZ?%Z-8ajFU-
z%~lZ0mkRGYI8&Z`2lDU2A{1tQ=doI0ax(%pMMwl?9i0ZMl6V~GJ^+E>VqjoER;&QA
zv5~g6wiW|T&w(p0Fj;*w2r*dH1!zLBnLI~O!~peLf4E1A9^Blp84!37Q9!Wq$EqUO
z*f>=pLv2n1a64f1p6&)pM_{Pd15FT`@CMsREBEEgqi9nQp66J{)Z~vnZXzb6Dqfrq
zieEq&13*Px9I4&ZCv){|iWB}pL96e3C*-F{(^v7@Gk%!igCleM;3D<KRE4%F@0V2&
zhEgwen9FbGQc3r{r&&2UhCxhV=-!FJM*)U#EL7fWn<Mym(Dopv!D~S#xv2$gSz;no
zSOP9}?ePn3+Th86)Zpkvhz!WHKO-b$*o(p~7oW{$AbcPI54O<;srKc|m)oOqvNv2N
zzFGnz&YnCHcuGjZ;mtt8X!W(VwuXv60cQ+A#asKP&=%fwYwet{1!p&iOpgXX-VJ6Z
zy5z$`Npn^>oU_5NrI{?9@)P4Mu^y1K#0xK;TqFincY`pG|L66)4zMOYEn%bwU?r^D
z0ipthF9ZPH-V=07jXfCT=>Yzu>pz0~=g#Nn97rgq%s{h$w7!6}vh%nR*acwF=MX={
z0lo)92;Z7*i>`tHn0)F@66gSqG{nL0UK(q{!q<{=$Ed2+oeBB3>0sZNV0UWIxf-oC
z{e9xYuj8nuG@q$@T!#%Tr&w?-1fs!Lbk&|~CobA{xJ(hkECIbXFeJpN0vHzA><E(%
z`z^zuv9+~zNDP2O)4<qAAj}}Zr{=<uwnPRQ0zp8KfU&P%zs4_sZQ31flI96$oIO`0
zt^#GE&!PAV$W;B>a6t<6Dv?L#Qw-R(p|JZ(05U?<Pbv-y2|+<5kU?DOx<JlKVW$mB
zi|No_oXdu=i>?y6%8pvAxb;W*c$!GM@ogrDGTIrx)5GfwMlWAt|5<Lv@7>YZmoI;~
zr|JNXC`@O8gy1`Y@WHfy_PMF0<q$0`5W?m|{1b`bHB#C@<N^SFj;aX>!BBxpRZ~|F
z2pbw6?nn{@?7`jrb7&lI`EzWF59`eAMoRwO3+r-m;*j&J{#QUAw(Hg;%{G9%`sS(w
z{ossCarwC}%WjrPU~z#sGgX^XXYu&EFZeZsBx@$C_`w$o1D~ANVtnXXG~d62xMnUT
zIr0)Q=>M(T(BHPm9j|yByJr8Pw`g9-a8m_6J&SXFrrUB1hx!KkhnogPLBPkG@uQC0
z_1ASfO)yTP$n+l{uLV1(A9uf%1}p6v<tni9On>w@*f(R$*lX+Rp8DBSH8!>o{rbq?
zgYLSM%R=7H+7?U&pIc|w^$YssyHohaiT}mkdxtfdMgN01jxtsTQ4wj11sfou(m@9l
zM^IE$L`oD?L<B^nlLR{`#fE^Cs3?da2uLRhDn)6L8l(jY5FkJdfdmLi_FQyEzs~OS
z>^}R??r%5GqcbLN-rV=zb5Hr4&pG$#H%#(^*m#Gd=+`@i5Hkulc7zNEpyDI3PB9;i
z0(vMKuY0q_5BL&&wmC!qI8A`bx9dg(6w<F3nEi4uzkly_>_3;f(Bf*mr?K^gztLt6
z$$oP%(7mT$?>|9g=ku!Y`vPeFVaFW4)!yEY#`P1dimu%}p9tEXCW-!ED=0v5>!lwq
z33^ZL#*;AQ0i&r3y!wH+)98moIQ{vFsK3F2#MHu~pnuC5!*o6?#42xH{OgUPYlcA|
zp^H{X1gLG@`k&9K-u&yx3km$I+yBXvgTG8*RZ-KB^f3DR+`FvnH+KKJR+&hBtU{mP
zF(D}~*ZXx&KGdLvL7(qXn82O=`jgzFH|MXKmhkCG9r?gBy87#LF7r)*37wv(536Vr
z3x2?D=<8yEC!c}@PCY`{^Ny3uTizsPCGTG!F*x_VS~Hr;PXDKGe_aW)XN7_*)6g|Z
zd3own*i{Qvstu3H>Us}<*B|J2(CbF$(ARm$*%cd)Kl>W#_s&lm7rPIBdpz_$dKLdU
zIL!TV*{{zl_2YRL&VXN(`(?t=Eq44mNc5)I;!XdjFMa>P8u=Ape%<%e_qlObGXX?z
z;l^L434IuN<@x{A6w}{WckF+KOZU7OAM8edzNwArC;R6wt#!Yw)AR?kO#i2}PrrHK
z_5XkA|33r&51N4sJDwF5fT>tf$(2uETgH<2G$Z}P%n`fe_+#rfs~OzYQBm(G7%L4h
z`Rzj{Bn(Q%M@KA1<p0ej>us#~Hya~%<EEj0&nkpAMzf`unkB&wl_T==Ry-MtW=PT1
z6{mK5`<dd`?A|n6c1svdqKH=GJ+~gyKW<Cr3*7rNCJffVo|${?hu6Tp9gOFG9OvrO
zszX>9!HEF(-TO!mGgh}@Ddg2<P-U}~b{B246V2m2YAszX;fUMC4$(u=HZsM9C8NK=
zwa{@F$sEQT_}i19IeX3u-?r@W_UzI9hu3uTiBx&OI(6J>K6kvdH%H6;ycH>72GA+e
zTk%rl=C+4X8x8y4PlQcl?(fT*?+aIVXiP?p3%Hg%-&a|QW)-}C`1u1nzNvSMt@g(M
zW=AhX6+p@&*uDLowf>)fpqxkn4DgA8y5&T_23=785Hc8O?DJ*O;hR~Bv4yO8yGlMP
zZlrv_=MSNIO^e0XSOv4yw&#}8I*RtlNZqmQPfLsPADZ$RP&V9Gh4K9Sd?IZ6sovN0
zFCnz3F$4NaG6M(*?V4r$Loe~GgB=VOOPlXE=r8COH!o>(W|V^*^y(@c2s|F|tEw8y
zy`H)#vBI1n!!pcSO=F`Go@mw{zNXHOuT9`Oh2A$js=zWBc=7$-&(_h9shoZ-vr8jQ
zWsdLUkV`lEFHzGUyH6;4AUY@&L5N!>ZM%8RUg0=aeIUxgzIzYZc*Y<GZ00S|RB5lz
zXofPK#8>R|Bp|q#9L<RcFqw{WPcl>2-?tw#r0I6k4ZV7mIau^Si<kW{ZG)DO3o5at
z<*n&$Pz^%Kgp614V8-<l@gKa69|vNUJdbaBgm+mSy6i4%9UA85^P%andFH#!@P1|G
z-)|VTiZgA~(dU6*91${zKmKMj+5ohJVq4PkyXNghi9JZwkJIZM=y_5GTc0`5H2e-v
zP0KAB?A(waa=S1H5M6us_M&5?*W35Yc?3Y7de#6jAuJe0N~sfuv=BgVQl<l3v4!^x
z4bv~~DaVdbC{^B<(5(&}Bq20&`n9>}`F`P^wy{v_E~=WhF>{_svf5m*T1n|q{M1R1
z*7t{dk|-e~;Q?9(UM(NpyP_nfQ^YV$&&>D9DK5wr)jtl`9g<S4{&w#>KMnI1Ptkf2
zTIjU`-(AMW4T7G=iLhz!N=$BrNx071Fx@Xk87`G-;+}0LhmyK=bzn%d`hE>2#7>M)
za5x*pvqkR80qZ)j4dCPeuWZMRU%V%=Vw~oewyfFNq7%1c;7%v-zxa=E0dF`V>=p=F
zJV&VbcicVJ2e@wWx*rQZJttyvf8H0CKZxb&gJ4dC0bOFp<^TNF4EEiI_1Z(cWXj=g
z-3@5qW<NH<x7&!96o%_;*e^Ub5y+48<q{bGN7q#~P|Rg75TpzO>`CbSr31x3cIUTS
zT__IG?>C=p$F<E-yp>=gf1iZ}X7T3#jC}L-c2A0@GPvR9<5>ad1gOWw5LGSOU;qaX
zz@Kl?(YM>e-^+FzXuAgxT49*JBt*kI(D|Pq-w_Hwe&Y>dA}*Z$pPxK{elnRrc(@He
zQeJ`1OPmN3M|1W|%pz7i!`rVkDYJL2na)O92Hb4Ne`c)1T{$F}7ordmr8_oy7?d&W
zm>&}LZO{wDkZPO~=qH$z)+U5~^j;0`{}Pso6~A?d-`au~brT5DEG@X=PstzF=i806
z_Jrx4G?VjwcN1uF_od1qc?cgE|70P)UAOQlY@sbmN(PtgL4m`2JB)us?cXlxTrt^D
z!ghz}r?;EPM@;JiAY$yAKzID<b@LI`t7thz_-qYL{Y3L}?+TMH8t&^Ul0)(9OVdlc
zJ1oRdRew9^1+mW8U{!wlu9#R?+{kl0-ri`6X|xaR8xBxwxF7v@hu?x3x#giIWU)cM
zD}bqUqc3+ztvnr<uhQW|)Sw*<#BLpa5N>R|u1e4Nmk|5$V`9Fu<rJZnBqI{~c)$Y|
z<2d{wU8ERgQ$!OTQIiu+>iLs+SXjs-%?q4y$<wp6S6ZkMk1yD!V4bCkBV$d#{E8PR
z8CXaX^hF+Q<)rurtaVeDe_6V@O?U(TUsLTEA=p_EhwMoLD^%puJCS$h?N~*W*us+{
z?p0-nQk5|X_vL;^!<pjKtKHGeY)p@nFOS>2mUegUFJYJ1+`1iW%m`Y71oa6IMz`)-
zvF<@$I&tYMih-h`Z^0V7&m{efp@}4GdJa>1ox^WhzY}xljpI!;l`sauwc2}e=Ze;x
zp2&m#jiOuHcz@ex2A+N-`r@s>2>Rk!(%vWo_em4FDPCQFzxKqcgU_D*7Wn>CskD#>
zcE40Y!GFucP2^PvKa5V*zhcL^waaY7OrRb8Rord3WeF#J62pdx^=lV))F#lg2oslL
z{YFei<d-yyx8lZ9AerKl@!Z9E%HG4eiCc>I@Guihz0ne7ilSLB{^S17VsOc}54KtA
zveNAj^*D~mFA(Ee)doqbCy!{bKW7=pd!)xHnhUy<qFut%aO;FqMOk22%3ykSyoLPi
ztu>lL?9n;({wCpJ^OBC1mdv5kOEOMRgv}XrB)f|CwQ<yFxB0{P73yTPNc9^HddT%7
z-M{MQz^na+1nf$tbX+8r_VU`Cz>`Tp2|9MEa-Y>21zrHNCctFo3Z<s)LYj}Tzp2Eg
z$5FYA=uMNv#2!qzHs?k%FH)GB*E^tAJ~C;Ym7`KH%&cu}j9>-L`ui8vFso;H4J5tQ
z1f`>U;=J~PW+<L<5FDbmk+F&3d|1a&P4A%!@2!DXxZnV0z?k<{VY^1d%V;*5n!CgF
zHqh9CS66tptaqo%S1$4((@3inFj=a!+POa{P2cv~+%mUTOqh!`E;=ejND!?8P1PCb
zhwsPVHjfq7mb6i<<14*41zyP!ekor>mnwf)`qbL>)^v__ffnS)td~-4ut)5NF^cCZ
zyi>0{`=5I_@JfcjJAHN8w75>k>$Akf+tx^9?kr2^lbyl+ef;>9(-b+FeL7NTzQ*jp
z<F)wV*b<-ChnTXMLa!cOAm02>RAk57@pd<zMf7;`;2&b|8$T*zwbXGi+2B^MJBH*A
zJ*zqoL?VuLY)5>EobTZPn3%P_xQ-DUlEac;gZ{-Kk@!Z$rn@5zhDJ&`OvSVcZJ2=a
z-`4F(9~#Hn+e~~8Msp8~;Cty~sr2eH!+=o?M?Sgp7q$5K#MESI<Rbb={r(!z(pqQt
zuamvMjGWJ`MuXeais$VGhxTUFee=l+_EYaD@zvhXu2}rU)>#~eA-COS{ZYJ`Cv-6V
z20_6pJ;spv`$mMpw+#7*LGk!*_iIoOX0vixAK?25|4w+|%(d-}ODKZ!M3fiL6Y=-4
zE5a-}@^jYxDQ#|`sj5%jtNw2`Y32_LUyO?!9=OHAlGh`?3#3KoHej6<!%*Tjf?%ML
zRxo(z`gA%E3C!rv;O7aSiP9!anKYxu;@$6Zi;xdxGu5MAJ2FN2mRUjH2sAqUvjZ0J
z2KZ%B+UaSOA(p(p&VJFc4K(%3C(oI-Hle7&F1I??QW`RG-$+aU@+WWp?50Y$Vgy(l
z5s&ua5uVjo>;9$TWt7&*fLJZyRjOb9?bAq=2YX1AwIP1;qq!6ZvBI#l<8sqJ_`e4v
zYFz^g5E|d~OHNp4YpYIorj|j@8bW}8FB9$}qIa3JV*|jo3m-K&C6#pHkNsK6bgORh
z8hVHS;H~%1cNePvu(ZvNX#T<JcTOX1NXwtBoE9AVj9D9CFIt^8gA}qoqPTpIFW?r%
zD}RnC1`#O+WwYWHr7`0)Ag``CloYoJoc^dNe$7nqM*lq+?B<_8H1^<q%z44-DSPJa
z;QW-d@xMS+PX)L%MM}{T@#B)E<+N)tJ>UyLKYWK`gMO=bm)O@C<sa^vz^!+b^#R`n
zV$DS!=rLdme1FEyKY!TfK<o&gYG)o|u0OE~{M$P{Qy&SYA&M@-T#)kr-RtWnIifuw
z=5p2#S$o8+Hq=ZVwlAXd$dqYMX8Ico!C48s)~lEr3V*7<r4HbOg$|-IGDL&F2X0CL
zE~~n$-^k5>Txv9PfBmF2-*-$u!#^VsyZIkC7jF1}8{PZA00jPj?$XtV1H3MxKi|m3
z-$miuf8>6}#?jmVD<hu&<LS{q{@(@U{>PI)(Dx`N2BjFI*<Gc#6P`VLM#GXO8`F0K
z5s8!_@dCJ!K$5sG6ArvrpiUv$;a|YRSwx3)^t4|1IijDQoE7OPy9t?pb<3kiAF_^#
zH#WVpP5|<phF#u;lSd^jDA+`^=!?e|t9yERt-WXhampe;oWXRoCLZ&PtGy!qQ1an7
zxw*={h(%gdq(`fT9|`>J!l@sz|MahlT~7gKeaf}<N?l>P!yml2YNY}x+t|p+Xsf0s
z0}+~vPn!IsR?wI3XaeVj=}7|i9xysM@~k_DEG(oTyA*8*tg(r(l9fuplm=!tI#3=f
zG=nJaljaZQJpH>n>@InE?FQl);-W2TwFDjnE9k;8IP1)M8sw5|`ZWyo%{W{8w8Up@
zpz+}G<Bw!$7b{gJ!v45<eSz%uZe37w#V7auGR_O1p4ayuBL(<Q^WA`O2z0gRXy<R~
z>;RMNMjenQ=Agt@=j)?CxgFmI_~mn+y8}$2V;MU8-PjoM-Of2XYjC{V+)Xyw6=^X%
zWtT7Cf>+cyV+I^F;}YFcb7s@4+l4HWZamcK0m}jC)l1Nq1G=OLLFTxT`v(sls$;bP
z4I%?F;Z=EwiEA@lK!$>|5n-n!pAj#c6nk;+gNTSB&NfJC--c&9RR%}eQ=HoM%U#;?
z)X`b>z~;CW6a=hlt)2%K_APIm+{<JfjStp#;)X6!3V@{=47{LCP<0^XJe<!JH#IRa
znd&n!ymeC%rv)Omg=3Lu77UEV-R|z}$4!tZ4pENxQ9_5j12y+UEIr<t*Kdy3se!XO
zVr#M({=jf~Q#CdW*X_E!v~-?Y(Ve_7$UwUTfur=<-}n8nZd{=r@b`()6L3~q4ux<v
zh=kt_1e30uR@X|KLN>j;Jk=^|QZETu1ZQ1bswZuB86UQ^MAR+%JyTVguM7~g&I6DC
z_1vZxKuoL86}XnuWFtvQn7Kue#|LRvQhEx4w^Y?8$|JZ2giHgkrlJyx5lvESfnoyJ
z9GqG#SzA|k&o?e8DBGF38<OY*XEmrXLA4)rpla+%s(0`3WvtnImTOlC_fk><It8K|
z^Dk9zKi_;uiwp$yG3yej=8%!Lxv=wSjy`+~NCNADu#o_i2pGjh)$08I#F$0bt%$FH
zk1ZpiKl;fa&O?>ESZ3^@veFjTXQ0{BZ^*g=MMyE=>)R+j-;0D+UaTY31ROqkw2VjM
z5pjkI`m{p*HOB?E<@%pDZrqpvB$kcd6bfAdNPfZ8muYGH7psruyh`T`y$V_ndkQ$c
z8iXNInlEe|#1P3i*Z9)d3HogmKlv|iHW#h@Q@M3eVzc**D`}#)M3`cku29DWp*8`g
zAxIE7W*uhndfJGD8%t#k4i08tOV$Kh+tuU#nCzUKGN6-RtjJ*;m-ipc0D5#A3m9Gn
zl#$2rFd<z<oSNHIJO81;I7i@NBGP%19#l5~L+5EiLIRDGlAPS1do4MaBd6(V1I(F)
z8~8x)iQ;$yn?>&g^)={71_$ON6zX?Kv_*;WP$Ch(UIoBOt;4^d6k-cs_EbhHm+9Y*
zL`<M%X!jf8UU6!4)uu(l9u<thWHe`<HvL|#pajp&1s0P0>yWeIi2nr~R9o9PtHS5c
z*E|IJIkN@WQ{q#TIlzhC5K*y#a6I$W--s^Rl#WqE6$rp+IVG=q^4&F@MjBA2Q}kW{
z^`t4yR#uHXbrF$GqdDO|NycaEp8YM}t*5J_)75obZGSAIgY|xLjOhR)3U+{9$X9WA
zr0%dA2tR9k5uFy*MnJ{WsTwz68X{Ge?TV@|KC=p#X=W1#fxxkr6W@mDX9DZv$1@Eg
zZ%eC%!52z^2PDObh=_>JMl}-f?y!al$Uy+K+M$F1{UiZ~2bEC{zyb@#*7sjB13JDt
z5k7DLt`4fR@DYqr={=E{nyK?+0dc^r8qDQE+p!b)pEE7fd++fDC`3tBN{rv7|DDwZ
zysGdZ@4aV_TU#dpbNEwwZqhm@DEUCFlxVe$8-eWiZ?(fgRS$ZoX4$H6y)E6@tCT7#
zE9oy&(r%%}%EB0zfDk7nCiVu}(S13+r>n;vx<f&Q`^PnrhzYGk2bx-)V;M88P*pu%
z-{0$Kt+}tSFOYl6%MG|0sKDmv$_C*lD6~4VJ^R$hdqB)QdZvh>Z};Zx!GI~cB4zPK
zL=1*oHTkzSH9b7?u7T=r4J=YdtjGSNH;@XOn&606k&~)mf2lf)^z(rwv&C?xq$H|N
z>T)#XTb;21ZG+fW&cM<(hV5NLy-0CJvhkfnESh9P!9~{IC=k9yGC<S=2VgburMiG2
z6gEd{?Wvq?-)b_%BLFq+JfXeiM<Qc-f&<^7stDs~Q(#-Am#P89dY64bxxDxMiEaKH
z>p!FV9E(p`Ccp;+Guiuw3v17}DFgz&f?wYg#3`#n59#d8#F1W#2sV}1xWFI`Hc{|h
z4I&m7-D(lgXaNSK>-h6S$;V)32v#sU`=OR>kW|Ywo9J=5>Ue$KgYVwt0(~n_z-^WC
zAQH><=cOKfb-a<`+3GRmhw}n!w<>Nw<I+N?*%{7#<Mid-^<a09ry6I8CaCy%3IsRG
zqD0_qn)x<#`1)<U(vpzN6M@p#T`>Vhl^gMkQ_}f3f4G3Thz^oBT7ZF7eOmki)Gy=W
zGa?KVS9wXPV|_z%YN}b4KJd7;Ul}^pJ;UWnFIiFw%ql4l9t|%tuq!2vZ7Q(JJoPb<
zp?KGJ(gV1MjzjfX^O?Z)8_dd6rZP1SLuuij5H~2K!SR5}6a);_C}v;Zo++Z^<;I3&
z3-KzjCim85+zQI$b@+Se+;mRMPoxcjq+1axfl4*R$!6vwio1<x;}L;E7SMl7@_^X~
zDoTG^`$&v2fa=n@<5z@RZZT*xWO`%}rE}v(riX}`PBu`tgQAhg7!HiE%887KXX+&W
zaG|)~8PE|kmrCw3js<@qm<^_N^Z4z^gmOi^o_hS2(|h-qF9E_aswrt}ZeG@Z$&Wx)
z-LRoz!-f`1@FAcUD<1t&?B2^@wf;nPT0lTW<tklSJX9u_;RebC7;lURj^HH(vmb49
zo~@S%^+q&`P(h!<d>(1n!eCN8s-5Z+7mRCnygq4UKh>Cy+m=Kfcx5(_WGLu2Ab>V5
z7AAhrZ=xLMFO-EFPk=SOQ60=n48NW1s9gv9cS|2NR?FRfKR;B_5ckQM01k>#3oD~s
zL3Y%+=N#*4N>C6zOc#n!{Ozv7e2*1+sqXsgYX1KGmIA0%nTn<atWBcBuHtX9^czS{
z0&t5!6b5{~s%RGC;fsf1nKRySfq>n>%4bP1z$XgiBlTK_*x?>_WJb2$pA6V$uhVCz
zS^blZ{pM3Nn*d!7<XXz({@Q&5yeKHsMAaFHs_B#T$BXRjZJ@0@aP0}<29tqt7HQhI
zZrvl-eD3JL?HGZbc&55KN_`cBj`}c^jKlm@JWv_S;Xbj)FV-hQ$%v6bj^oNBsw@_=
zo5yvj0&eO0q}VNe4wD<+RFuN}!=C94Bmgt8_{1+@nb^WS#EvY3)wY_oi<r+YlhxQ|
zCMo&d+Z+#MxST(a$gDV?_MJ86M&Rt!GJWSy2MMr;DcK&|qPkLzN-x*w0ed}wU|++{
zzUJKU;^2e<BoG5<$p3`yOwUE}S5#WHrVO#|OC(L^k2}7*HYb=4E{^z-`4&fy=3scO
zn7aPaomisa6;y9AusrXRji3M*j!(#+TVpML$lcwY+{$}?4Vo4`u-N~Rw;sIk`DZ&{
zp8Yo0-~SH8erjo14h{|9h1i&4i8S+meqw$9x(&<6sq6h8Rs%m=;gj<{(?sl%<HwiZ
zUaGQu1YE{&3T#&^bI^b_%%agcQ~p>Hc<Z?s>c&f;nFX#i>b*=@dR1By6#i~r@k@A7
zJi`;T=^%B?HNWR!?CmIENItZ<YX*kaKA_3UQT`3n<1x5FjDWb=TMk&6<8we8V<;(L
z*~n?q?EU?RQDjnd^8F30>WVITU9Z6ph-?=)<3Dam6sSM2jpkL^Z{EOpd5ZckJQMfF
zp~sD;1C?K5&q~UP`Pr$;5qstD=z)guB`SzlHfK0U(V<3Q(Bn&kKaJn9Qn9tE$?H=M
z7M4qVD4Tl}{FHSsf!i)O!f*j|?yC(6wLsy|0NwW`%=Q}_K)Oi>#1=@x=MUi1ibg6*
zbdc2SPZza$P!>3mfr>jL{4>;x?03%1$yr;L6z?}6Bz_Q_8t&_Bc4I=gxwb5S>7P)^
zeUTjRNcrtCiXW2bC>#amHph|WT%RR(mR=UB&G7Ai4uCGW%QM11j(L2p2kFjqlXf$l
zfQaD{hoql=nxdovV>S9U_tO~&3t_#8o(`D~qvMQ`N~pm5#&q{6rlX>Q*e3k=mzz>_
z4~o8bvBN_(OniNdxgOitJ^-qu7xXXhMlPOF#WM8^P8O6!k0COepLYh<bL+Nk@}D^8
zq3$gC!nvAQZTEL`luro*7`n8N=b2XaM}Q>{TOOLPb@;p4w`DaXYr<+av#6(DTwLE!
zFqm06sm~yRw==zn*pd5$D&Bg~d8dAX*&!(mboy!C9tj1nGLEt8&$5x>hq+hJg;kgl
z4mADcuU~_k?zp7V4D?@dc57>ELUy)ivB0l478uKS(srt*<@Y`+@tGLu(Oxpw^U|df
zq!d|r5#IrZPK>9%ajFMxx5k>-Z}nF;849nK1Vg7S;TVnw&Upx`j%iyHX>)JFANF2D
zW8<0}DCTo5mLo1%Ft%xdZZkwU9;$aM8X+v3rf%0{zc>f$7VHjM<!C=}s*9iensmLe
zqYe1`!E7+G3BdaOz{HNFVD^Q0tp5$nW9Jp93k!_~_jNiDMzy=3F=LzJw>llVbm`J)
zz92Ei6%pO5v?BH*>hPWPw>u!NSakge)KsA$Ys_B=(+^<884=WJ*xin*fwFjG8FO$W
z+Ah`a!=|-DS@?ZrbAuHOD?7XRk8<q&>IVRQAn++MnriC%pC7WizC(XrCMu8yn<uc#
zMQ)_JrKM#gbil>;4{;i@j-AH<Kl+=KFcX`GfElF9@}Xuzp}`pz^UlU!)dP<DPx)^A
zF4e0?z==KbdxQ1KPaS)~kA^@m%uqOv8X7!U3lIXttf5ewaH=O3IN$qyfhV3oB<jO6
z>5X?@tpy*`su1?cLsi@5s36Dzam{CX*NPrHey)z^;J>~V&#J-q*F9&m!|{3tjX}w^
zFt_!+3Q5Yz*$x<y6f)&7nz*<)h_K{LBUP&(e1#BE;SQ$=Ic9WJ<+M+;{lUjNh;QNJ
zP$)Dv429Xmg@=An1uq6U#hYvkwsJal8^fxgYT;P#4&UH=uY!W0re5KWhx{H&n+KyN
z6wF5z0W=mC`aLt68X6We;=Jv;JeEkpQ!IsW$ZCxl1RmmVt^v*a1ZF;Q`!tCN>6*uZ
zqXGB)KzEZ?$=5+_Z~y+rf@n54QxcOFo#5<=eMpbkXt}lw;uCPLGAT@uXN`ldmp}`b
z06+%SpAdF^!=xOSydO;j*Bd<2i_nD7NTQTouBZs|qV7A=9ouBEjHdE1BBB&xC^`gG
zHH$a(Jj(bMbU%IZf`{1|_fG-TZ%<(oQlBR1qZNVBIZU71EWpKsEM!1nkT*GyqTvB6
zV%1}*uVR(?jKUj-3a?v1dmeb$LhKw&?PC@|I}cSi+ErAYem5T$6-A&jZUD&;vXJWq
zQi`G|PCh_)6&n%;_JKo{dMrapjS6nX3hAFqrn;>m+J^edp~$428UgzV2KwxqLKkTB
z;7;V?mLqD5*!7dp1Y){RLKdbePTS**y$uFKWAO^Xpt0X83O6TZQz7=`FenslQwXe}
z)q$~-Q-2`8sj+dvxgjiwDeCQT3pQA6IQYpSP<oG>mj#hm*OQwH6;AB{Hz6DXx4v_r
z5)c<ulCM1kLFDq3qpxm3!;3M094s=LoLCJ6z<@CaY;Y<tj<F-HVBqCWBGu>!YBWKC
z$TX$vu8G3ICJ8aQd$8P4lCYBFi0{y?^B984oB)FAr|_rP>9$4a$;1{SCA;0VZ5dLt
zdeHD6G-VwV2f{QB6G3gPz<&C|;uT2iSvkf<M8#}%s>4|oLgWPYqzn3Be5i8iD9WcT
ziUk+dXQC(40n}thz{ChD**c$+mKOHC*M-KjcaOoQp$bS;!?_gtl^iPs4+R-sXw4w^
z`k5otI35HeD#PQpU!q{kLS*V$kHGq}KdcI$E-`{4x-c*y#$e{{3ExpV_|7Vr+KW02
z{nKU$$wPn{lh1{Z0p)Npi__T#Q@w@i8xHP?#H0={>FHA?JKRK%PxoCDdr-4hz7T%X
zpWWYo3wB-aRGbK{LB)gh8Q@2t;!Qm`>^6EE$P_&_tL7Gh#lR6rc=_^N@z`vB$C#%L
zW`YML%Fv|60Z`7`hK2{eYWwxa8cG}s8Dolr<g4>X^IJHNu1@5)@a1NRElkvxkZD0p
z6!=31cjKMYAwFe@dS@>*_@V6<U%R9uKTle<YI0T#3Dq3ooKAopb+6t=&6644jPwpv
zTfs>nQ2TQl_ffp_!fR}K*!a!orcxdv&Xsvx2}yAeS!dbxj`6|xi4NYvkLMRZWP(8|
z(efNfcK>)?x)){OJ{dtJKj6l4ug4e^g5fhWB*Sv8wYBQcx}Fn<tWZ3Q3W!lbO^`P!
zDS%f<(|^HIhU$CpUF`|H{_6Ork3m9r85zC5GcpEv>SBQHqO$?UD1yiWE3BKmJf&w`
z#1VqlLO8)%N_?yll-;9(7yjw$CnWEy+G!9Uv$Y3JRr%ddb197nOy?~eWy}=Qx&Sq3
zi%uKyD?zHah~#Hq*qrwsoW|)_;7NdpRBH4%Rk3rU{4Bs*00awFImO1G+lK>}XiFMt
zav;cu@pr`BH-Yaz*4P$yeJNKkt-?-LX{=g!IWvI^3wEb^_sRYV?T|mv%opDobe>~T
zqI=zx_)4Q;%cHA3JG$XPb)MZ~OBg>i>YrM;>*gc_fS1RHLPLY^;}E-%O^Po%27A>p
z&hsb~5UoM5Nnb*ESWpmha}hj?I_7L}eFR7%nEnO*e>3Iu5Mm4I!1pyZak>utlyo@1
zt<NDW`0grDO^d`ocMvY$HIZMEU=mvKJ-HY-(-nGYWI*?Ts_{H}Sf%&s73P4n&sjo<
zlarK$VuP4(L`E3aYl;E@mv*L62=ju~ASysq0M$p9ww^~)L2r^qpR28z8x7GE9l;*3
zHv$L>Sg7el3Cj01Z4(?i4L@=}C}@1L$d{d;MFA4P!puTZ52nl7yF*4&k`eEDbQ47B
z|Kv#*8iBr0KV9(vYv%}FulO1_@Nyu2ReV7GZK2DLr1G+d;F{V)JC5Ld*qa~>U~#r|
zvLW*VeK?kY>kSCxqSI#5m;iUwC*$DZZf=axK2Xn)Ss1)8@!(;ZMYw_A0Ss8gxadWR
z!hqqytR-6)IPmnp0+0CHg1j$&u-*cqwY9*Pn_V4u;-6)juM3I}?2VKMAk8?yn<NVK
zl0k*x#@{QJ%~6iM6YcEg77k#zraS!vfUFSSo-PB;qrJqS$Ik}F08u2jz#Om{07PN6
zpcoT&fKnDXmn!b6{)VL)kdA?9WVs|u@9#_iN@=OcF#yXCOC4ls=ewqZ-@)5$Yz**8
zEVOggwr!1Pv}&NnK@0-k0N^=?`ow*x!OXI4=MKkStXPljZS}7PUAH<13T-`t*{Eei
z<ZrK_6m~pZG#=gzA$M<)k`gMO#2G5<r&}7&A2%3#!@x3`k64tV;xGN>Dv)W}5%1Dc
zq>anP`v05G><;}G;Q6T?&<b(X=j5Tn^F_Hd9RJQdAJD0&Xb*hTRS|njt2JqIsDDn2
z8!Iyr6hG7sF1s)U)6{dREmqs(DI~ly%we9u16o^?4c|Lh($I=hChoujF!A^IKhp}^
zcyiOYFF01;>Rv@1o2)WdBMXL0_n>fWv(FuYDoSIR67T?b10+KzKl&YVPhIpR-g(#s
z$qpO(%FMPswe>J8DAbPM^`%YTgPuyL3Vmc`B-O=@G;yXWp9nbb%%$sxhOW$04ML8t
z4}fSOW}Z7n-d(r@JdsFU9eYmGE7bbNWT3%<KJ)o=>@XQbt64aZ5}aRKE+@6hBy7-I
z5DzVn+*<k8>A6*slFvm$<kAfMR5|txP1pN9mbWH{I9_MUP9X|4@s#EHvCeK2;VSF@
zp3*#Akg_q}S2%H2RPCk&I(KF~#=O;gFvt-v<iOVQ*$|<XlN+Ls!DG(TGFCx{lWdAJ
zkE<=~+i+0bui?c`$Dp88o-bwFWI|V$fuXoR*^=h}^=&sho%D#~c!K5p6{&WruCBvi
zl)6CJHu!P8(9$k=9{|(_>3j}xpx<(6D41~9a5BO0R)#~F+$ZWc3NJUDsQA|s_3@jV
z#{vRtJ0yw+@>L?Ub>T*w-s)P2_)#J%C<vKsknye%jhbdPi6BrGx4)~iSl@MxsJqo*
zbB4NmS4r%!?6SU-Rv_#d5KZ~?L|7sh6Qz9|W8KRP;>zQxZTy|b6LyDIXnSC&T>!q^
zN+RHN+*Qzq@O!+N{{wCel=FnPxjv$do7_-c#El6t=+&PHyXy_M(lo>(`S8=&v+Dqg
zOgmQO<4(|Y8w!u<yVwYO3`7Auz0A2u7qxSsEfc^Wm#X4)H31XxIL;qPNe=@6qufYB
z{{d&L8M1>QW!<AXpn%YR19znUj$4iHF_ihL(x6oJ>*Rt12dRYzhlXAu0|>}$-gXqz
zrtjKI>>nI7d$4(zG5D8G<nE!APr+^Lc)FwKVUv+2sd#yED~U)QBIpQ4k6jRqS?$tp
z#bCG9fLp1~Bh@B240)64nf_Dl;tE055HTF*bFJN=;TA|^W)uG(eS6#)G@Lt+JZ0L(
zE1rq%#nJj|*`@vU^rsw(dABc2aNfx;@9e@Sn&Q06a)*mFG;jm8CVag_$DEE4!`J7I
z1U!DT6$gfntp;`c&{*5SD*ZE6dw58fM<aL+DJhkO%F9Y0JyN<x+OFBTOh4W5FwpKp
z#7QDSp6IQ(Lw#?xRVziGnVMIWxE8L}?L5u|-9RReH5t&-gMv%}@FZ>bI71N0vL#F-
z&)B|CQowEn<`Em7t8W{FzdJlE!ZdPinvol;Q9&fUPgtEZ#*^_m(fCp;=h<r2!hx41
z%wg?BM)uU?(_KW|Y;H}#AWLMB#MHh6B%iJNLZ7yr0AI4<Dro{9XA>Zt&|Y#91uJ5k
z1B!t4x|qncRewirl^+4u@ll>3a+t3cNSx{@@(sp&V;~;{Jzq8|DM6LKd_8Z{`|f3h
zuWz8}9EBEHy*#~9)TaRy25BWNsg647Pu^XkE0MLlPZ$y}k<;SQk+1h68LmLKp?B(a
z3ItvViziETLgoSKrrx4nln@&eOCzQ2a+Ba*d8_kNqF|x4+hAKX>yMd_P)nDPbX!@}
zHzbEV$qy+1cpGk(DqHGG7I3k4xi4Py-SNF*2VhwMCx%wFq4{Ge=+cX-Cnv|t4dai5
zJ%E%Ps8SBVP^VApf_n}p$`2wfi(>F#YBCH5_2hz-Wmc0L*e}SEtmy@GL&JBk|6-J{
zTsxu=5;F|eg$~^mJ`~jWGhU>n)#$iFf*)1%r%nKbyrwL--OIYh3RP8?_<)ybrFqf-
zB4ncqT?p**AX~a{d`xb?7jf*U-e@zqtlE^kgn<=S1eAY~Kx+;XQ1;x??z5YA4O!H!
z>|V1=y40NDyH;Ivxvp+J#jx!ev7D9T7VfqQ6Q5nimDkO@b*)3w@6x8_?<jTP|In{c
z@CGDLMx3Bm*v=hthrV&{pO09U!j&WL!3jN|9g#q~!^~iper<bw;bZ_q$oFs0VdxLM
zy0*S6ZqX~)Nuf);+p}p|Zm<ni$EO(drst;qD$wb|XFQ|4s}52Oys=zXGo*@A$hXp~
zW2h|t5=nQ8fLGpas`_y<bwRgmWh5_}<K3EDJ^^ui`o(d#z$eG@&mAF99mB_DHOpoZ
zL;+-I5tnJ_*Aw9`ppq4Id0)undZ63!@gf%5kTdYR(POyxFR`5O0}S%wFUZLcHsses
zBrWBv2;km?fh`n)_Vq6?yd_E+s5_e{Aao%nE@UZ2<bw@td{2+iELlWeM{GEB-mu~s
z*j)U$=4#CyXcYm7%|O;_C)6zj0S7?ykT@p*Y0`oO*=!qpI2gHcBsClXxM;}fK*vPs
zrlaHs1A%MC*4C|o%<Y<*<p6R|!rb^I>GgwDEc@C5Fj|y`<9@;#GotNn=;+k*V9BJ%
zSB3Y0UQWL*MDd|r3>`WaRd|QQUhMEHk8^L8_bv-|2n**>CeFv|f2mrAt@0m{A9~zp
zr6(n6gsbR$avpkvNCGTWH<U|LP@L)%U!^puvfK|k#AuiYrGn_9Tw$2OWFJ_%d&$W4
zVsHHz)Ims$f~Sq4O`Yl5U5p+UMg}3ud>;jWT5~RV_|UJRA_PD?B_+O7IN${8&?%!T
z|KWoNr|eP?Go$y`l8qN}_qv1^QLBpTG49ry(%aGqzkYfk1@cx9JwI&bfnf`RSl8?z
zaA2mBb%!^2PUGs+Ilb6#y*cXcaDe+zhI&0hGaK=-<%-|8L7x<xW#}A=Zy!HQqJO#_
z0h>@CyI73qHrki^Tja*xs$l=4sX^`z<!5?T^S{3H0hK+@BTTK<@J2E>>&TH{K^o@u
z3g)(l0s#$Ji>t)r{D-F|hz~0R21e^wDJ`;soZ8}o(OVns!D2}55}!z}Nf!!v>_)PX
zIfGZ|*<Yt6@*q?eDA2H-mknqML@cvLSBmN%?r`(ivpgKVY`mq&SDPhzrOOK8$zd<q
zT>Nr9cmkBGjbG`KnM*eh4Ixoq0-ZZ%!q~<A9?a+V^1}@t)o(lQRW6^=c|-QbCH=`v
zul9m*FfzkbXBo-pcZpAW1!W^WR)*q|lJv5$P^t2ej~lMFScr{%@FvSbw9=AJg#b-!
zd||iu6#z$WnmNJoDE#t-6vbO6mWGQZB^}N6)eN9;1(n6vm+Ta3E}8TK#6Wpi7A2}d
zeVx`1dZ7u9s96Z`DsGO_Mo|#FVfo(YhumvHuY7hS$fuJg&*_adSg_k!I88|8+5>0^
z{hy-iQA-8LHAIeyJ=eD~*Xe(@4EPHW%dd4eH-_l_8KhKmU2SVbuK4<Wnx}>Bcyl2L
z`!3@WXbzaAFc(6#A{<MEx|cvIc+}4p?nPxjl3HulH%7XqZy;ocJGN&bUlaB31Rw)7
z3e8L_jqiFPY`T8=XO#cu?cO9@ChNA`DgV9EiBqLVrYX6IjXabtG@xZHd;z(M)n(7M
zA4toE!6Q5c6a)n&CJ+k&iwF=|E3)Ri;rzc{KpmszpdfwGbgt^y-%0gI+)FZu5#WPB
zdx=tbzAoSf>~GrvJu{Yp8>UU500bumswxIj?C{VfZ3B%doT-JQX%M0?&lHnfM>c*>
zIz!etA_|jp-pbwvB6khP8nddgqgqWCU}2O@A(7e?8i|0RrqI}{)&7vNRUC!p6aKHV
zG?tTc*PannQ|W`ILM7oBQSPBR^()VT*Fs$Sp)JdPm)=-k0{bhLSE{*GHG~(c5Z6q~
zjFb(Pw!veYa2NrT95$*LA3G&5QLNr@ePTqK^vT)%(~cZg^WE&Gr2U5a@qVMVd4eWu
zI&zPcsj0zaFz6W+WJVn0@xc698>Xlzk$QXy?O5JsXMr02%RF}R%OlZ-`~lGX8f%O(
z!gtbLOyDWlrs&6yzqjz=am}%(@<!jyqkr7yyognsSRIqamEFs301M==vT(Vk*LgJX
zCgw0U4V)pfs%_wfK&1upWzb&6L*yK9leLyKbzN=r5uJH^Y0m@R4a1^vv=MZds)d>Q
zKiE0M{^}53$~BzIt;>MEuB3A02gVxC^cT&?!oH@r0e<8`(b=ehnCi%#N~NRwm8^o+
zUueqQ%ezX6!cE9yL(q*(m33roR@4AC!K9r0%37M2dQ5VjYu-wsOM8Kxp$OvM;yZTe
z3@)fo{8HN}QA!i^&`LxWo=#iagyw7lh4iN_ew?Q;k_2vSO2Z4sw}&vpU|dSZp<jy3
zC^HGjB8w8i_Kbg~;FbdR6AoYiYKJqyVU&mCr|4!)@w1Etrw1q8c#w%eC>&xKLi;j9
zaJLb*2oOU|o^&E0u)+~F(Uv5t6Tk?u<sg6>6QH6|Ag<usefJpjeQi>Qh>n;>ZE1M~
z+zyX+M0&8p3&xItyJk;DJFdXhjb}TUZ<vTc%RiG*10d+bRiM@faI(TEf1dx3)a!?X
z_4f@!rmGB=866FJ4hdJsp(DRvSl3c0=JXo6!`-c~m**WtdCA%9Jo|jFVlc2Fkk~KT
zcyx8|Y`-`nRk6?Mntmm2J8A^Q^jd-K*@*cY^3-+qU?~8oIbBAKIA+_NaDWcX2-(e*
z-Xu<3$vA|I<{|zY+bXuX!Hkf7=hZsL#kq@&!b`S!;-v|NgB8cT9F6n@RUQ*zrD6}U
z{8lRuB%=ra(D)LfVgH#X!rBvvmFKz3^v@lhs>TSQ<OFGA&4+5?L%Lq4Ze8S#H}of!
z_tYmztmiekv}X36^J_bxcd`3JUf&eQp{+S1+CG+eJ9>ARoQ&c+l~9Q7PQCJ+5;t51
z|Eiw)tXKnnyU)eyM|l^^LdM%ZJC?Vw0+OhikCpM`?@Pv$D0=nI!L>-~i(pHkyGYe&
zB~Zq0yv(JPJqJVQjpxLuyAC#2G41LT)~P9VU1s48IlMSs?=wW6q$CeAlp(UZ+o3&N
z5WrPs5gKPo?mIV~ijWlW&2jfUBx})@M>{4w-s|`jv@`Cyd?dwBMYDx7v3|MwQwq;#
zRK0xufW~Wvem?AQhqntfORfOl?z}a4TTT8x{nw?ZZ`yY-0qXkz$6SiU9>aP*HNaYm
z<bcXyXef0(0&2-~8&v0e4J<j@R2D17dej0|?iYSAnJw^}c3kG0L-Rou{do`kmTnq@
zHozv(7S7%kh+kK6L(^G%NPD1eNOn9G=qGwp!EarP)=P4Tz6iK_X=#+Pl$S5z=)--%
z_*`fVHITI_SrbqyY=`Ut=o@=XSIOQ;O~N8LC=arci|C|bZD@NuJhsvXH9Kq~>9Y#^
zSn&~nN%#N)f@o#Y`QXl=?9{~Z;*Qzg(*Kk|?6}PDZRZ)cV}MJ$jDOyIeZ7l!8?>&{
zHmEUVWVv&%X*fXf@kj4B*ru$<Nza~jKQ40BiBqU^H>$P-3L_w?R}F?iFcn`HIYGOl
zV78%<ZrFQx9Q^;Kh<B!}qlzIFQDkTGynx@eFpmP+-+Rl*i1$$7Dt-vk-CfBc&@64{
z!{tNM)}>xUTIKkIJTI_1sBIS$8kO#Xlr4Feo&N0%)%@;zP}r2?68!Gf+iqLnI3s+z
zY`QnM|B|A`w=AJlQbJ#t&K4-@$;4pVa#-^&e$pQqr(1b|sI78N%iR*=8Lq!Ha&(<A
z`a+qEJ6dslh)kmk!Lg?&69k(wXh`kOqGAZ^u79?~Kt^%+Sdo^2UyD<8K9p>A#Vd%c
z@2FvjUALBLUp%E`U0o`zoOZ;x#KKVEWZx!?p`Cg)795V-nj-fC>e|NZzz=+-xftM=
zKF>HcTQ937|DzMplv5EV2)v0Vi}K3r{Z@6XU)f@@<4rD->eP*CLFr@bR-N;kVwdn+
zVvr|?^)ftgd^rl6UqQ@^sh`m#n@WawVj$~vKS^BS!=sdb`rjo4UH;&>A+Jp;X1iNW
z)in0j*kSPE(CdT_!EkE6ENl*GjNkgSSoKxvWN#<b<q)codXV-;Zc<QCR#Ln)Ay&(v
zEPhm3-QG~>Pq|RbiNE>;wZUp4-{fsN@Dg05(wTanPNEbs8-hP^K`~Hsrm1(rasa1r
zJT(w!)Cbu^WQ_MS*yIe-H?zYTx;M&gJes;^s!(9--5%j-<Hmai`6Ls-B*{!X${(i^
z!6SN+oc#A-Jx3w<@P=)j`r-fw`kO^<Ua27*_9n-C05)mtF^x#^n<#htbl2@gRCma`
zY12ev{y%tCoB!BnF5Fxe@O37;)Ks;?`+*?Qaecibl+2)xU=TPMJYbzQs>^!J2(g>H
zZQ(VS)`hNfDj_X-^HLimoy6N5Suy>9Q*aOMsEahmPu54v&OurEgan7;%;a#~Xu?&4
zaDYNr#)&SEwm7G+DMRpkO*yydGEn1^H>MXM{9m;3ihozIGPGxYNnzG=dQ0M2?@j%e
zTsJm`4qz&bB7M_hU|=19a%?iBgT{wJi<c>i%qHqKe=Qt>3@$h>@-+NttsPGu+=Hib
zi4cos-HK9DLg0rUNOW*E&p@>+uI^FCEuV{?EgzN3L2hd*@DQuAK^J`yQ99boEf041
z(nTBk=kANRxqbWLSCUQ}?d=<nZ+MdOFmTD|E{lvg5074Vk-XMg*O4Y+dM*1v?yk88
z*}2@0a}U3KTKM#cee%XR&s|g2K6RB|nRYy@dg&+Er2>~Wq40!9MXblY*lX8jb_;OC
zfM}+U1~q{3DEj`LstL1@@ed~U-6jT^Carx=pZ~g)Irf}o;rHR7af!0It_pLz-#NTD
zY3%53n!mV2jSg-n87Dt`qKI2aJ3V?N)_r$jCE*@-ac7Y2+XHbj{Ey~mh77xADt_qm
zAHFW#Rqs&l<?MPx(Zj4MU#9*o#rktvR@h$=nb%DORJ_14azJkLi5&q`-S_F1<cWPx
zMTLfw2e%4a$))J0D|Uws9?JVx!1v~}{)2wH<AZW12hkRTLtX)Lb!0rrv{f192kE4%
zX^2=>Mys7SckVP(`26S0!x->DZa(=7Qlop{B<+i7>NyVZh7=wj9<)r|-Z+Wb<44}>
zci~7HzEEw`COA{7qQM4O2j$S^{{9~-72FF+(Hf3kI$TK;xw~f#MN=G^N`yk!#v5S$
zlIRbCuR79G=`h+?YsD-aYqFLaGF8oAoz$6n<;s;jZi}-8?=Tu0kOm5<3LRyajs86k
zYDd`1^jH~AWZQBY|07mXQhn^5M?$BVf94lcHS!`g;?&*%mNKvO&d!<iB6G_@?<Zyn
zCgH=Q$pPY5?(f%0wq|-Rec1rcQ7sjA*idHzB#HOCov-wwV;nE~p6l*t`t<3}S%e{=
z=6J6%pvWY$)*E7?HCLh#E!y?ZddL&pKZ}~d%TyLkjZ_A65l6|DS_l}AemoibnMoF5
z^@@f+j_(@U{l!%L4sD2g`15vrGf6+qI`2YwnMxm34R@hZg&n=#B9kP{=hQGazgbIl
zu^ERV2XAPv8A7e&lSaW`)uxv-wq59@D-+tjIQO5_j{CTDc0+Hf1|`HKtLWx%a=7QJ
zt()yFPgoYbr}0Q$k%}M>yJ-o`CeLNu#ggvlbUpM2`w}!JFV68gM}fY#!>ZN$a+s-E
z`EowZCuOiPxvrsKZ2!0s67-_r>$_A&6MS<`&E2dTJq-gWq+r)d?eF6jO>53i-hu(?
zY<3E!0g^I7_xCzXO-NneGWPW2eP!h<Q2+q8yZ(t7wf3KZ0JG32rsclyL>hRxvF|T?
zN$fpmKFPH8jcNpyBgG^GIw&J?bT2jT=IPUgCJwxOmy|Wqw)r=cR9>%_Ho7tY?>8}z
z9{sLfd-}?B+Yj{n7q<%4D(Q{Xm@a?Ad^Hm9KEF#^7PkZ=01RvD=1s*5m%%e_^(wmC
zLKUokuwGF1a(MP1L(DpYK~zf3U*UCbD?);_60a8Dt^tqJ)8{@0j5*8ffWrBXBJEmm
zLBb%@;u_lcU`-xyDAs{6A2M%AO->F5;YckXh032jZ_1%-ct#b(s{W}Rqe*y$KbB*B
zRdAD^C{Kmg@scFtqw?430gv;v41ij~zTcRlVOKcVb=&_GKhi9Eky{ZYOI!wr(GCsZ
zL9xk~_cuxxSYq0HHpj$Y@DtbEBcY)6x{^-R9P-DSx87TNI9J(j;BAIZon2mi#~+=`
z_0AqhccVv8?U*Av4!c8d$pR&}{z7)niA3H)1v$%_C`p2XZVr`q6Z^g<x8oMg)v3zq
zbCYO-;4|dCk4>}s%aoHydn<`&OHZWzc7p6hn<<K7E%K}8dLO3`84AovmCedamMAKm
zPT2p^TSn})xo`gjt+(*^zK6Ueit(&PE8fpD*DRT5&hiU1$1FSz8NS<KzlUp=4Yju(
z0QNYf@RG^NkkA@ZhwwhNGEuZ|3hc$uQI+)Pg1D!-@3AOZ8XJj)o|jwB4Q&ca)|IGi
zv92>phM9i~D`4#b@%N`!ohp;tcm7*FY<r=9mvo8y`<qZiF2od#j%-w?KbnAa{1<J<
z(iitDx}p-os;pghv4)5TuE4_gLqd4}8!BvB*1f(}b^+{CJ6ajo&aPOGn!mFN0K6hd
z&psNOof>bhLvXG^C}+ol^{rCohP=NT^sJ<rgvotV<=mkO)th=gtj@RW3|GAw+uK=>
z9<?mkGufn)`$o32VaY7PWT~ZN^(_x&vmizAn!~+D1g@NiD(rkH>KelGh9Wv++ZX5!
zzE+TTV_3VDcG{)p=83z-8*=*+;9PJO;xQLt+-7@YSkf1+vk&0>2Ah|8R;*_eA-R@K
z9^W<f<SLJAc%G&}Rk2yd@}>COSG_n$B$;<pU*1#*eoo`NlPbklP+X65;{qagD9CMj
zj4vW`UX72-^h~JE664B<SY^*ARA&_Qz#*qy4P-r){rcET^M^~x5gwg7&qOPUIyhKG
z$Oxt&qfIR%0EKN}r4dAAL$ikwk-wJI_w;r_HZhXd`BpaW`gY*!pBdd3z2$jpt3Loq
zP~#xLbB-Q9e93>XM$Wf8zFnj7QP0Ug{I^JdlK-)73(k(NS1x_o8d*{yPAwTAG?wJZ
zyOj`~6+-=~dXK0D!;@T1ZiQE!QS@wiud{YM-S(S?Q(ue=ht>y)Kf+GTxi0^?UY0dk
zfEqQ|+Cc!j`@8lv2fu=LnpH1!XyuM`;|y;xG|7ua9aA@n1w$hoKUS}U4)?BuX;%}O
z-<p~}<h17yQ<qg@Ddf7fVg<FH%&z+o@1PxH!aY6y`XqadnRa`^5+ff92YQfk+|NEw
z(^PR|;NRMklCC`F9*LWEsHZFFiIIP5eEc88<p$@E<x&N<@%V+y^)8$U58=e~ijw%-
z<}Y82iQBf3q~m;aDh;ZkG+k~fYo0&Lvx&~_lVx*v&K%i-0Vk9s@@3#hY=I4|-(5YV
z+r<`F3@%p;SWSEWny}pckW+{ZzSr*a(VPQo3*3N=kh}u=<U(T2@ppApas;i<4-EkW
zXur|ji`)E0`(h*Iv%~eLo+S0Ih&eA2G;qrjgY|SX7eDpqzl{(+EtomU3pZ6OSfNVn
zyV5Kyi(!vXE~x#gMh>NI)l)=zGxCw0-$VqlfVlGN>@r_MTF^eSfZ9Cb#;>V9fQSRo
zkNl4lFJHYH`U*Uk1^{%21Z}dA0ilmkF{}(WceJc<JLpvZ(;{987<T`u^@Qu!ucLPH
zC}0T+f_f;R3GS<6%6qrnoh$&Hgn8ePca+G#%3B~KSHHnf))3q0c#y|*?Bd~@3s0JL
zm*Yj=&hwYuk$E$6bEwq;FfS`iWn-=zS%16R=X-s!um(?A1=r^}G^|e=-LuC$<_b<=
z4{NC&(EK{DuZZ(>EYACBuQWM`xm49`6R%D|FC(`wzU}ps*0&aG6sJx!u~l_gMIk~!
z14j1{XU?7<gfuC#(v3U{MDN2Rw1S?8S|>|_j4`dkc-XBa1C82^ijp#n{l+C3CW`H=
z_z@DH)1I49UroynD23Cu3`HC_D};1Xf2+9SI@K_V#nR<T<zb=e7;oEDTAsRaIEH2>
z$J7*!pP4FsBA`FMy0C&bnjszg_3jsTyW1v6CU|;6YhDSQ99b0Z;@;;!m;UCyc}P~x
z_^FVouV1w;Vdn3|QVW$J$O*8V@fx#1)SwO3e|*li3DxJ+qNYi&DYiMQyD$XX;w_EU
zrL7SwHlUX&wl8OGG|;1+-Vupqx-ETn#pSWColn8Z^jYfJPV-Jq?)l7SUuw6Qh`%B@
z3QQ#gjY0%(Y~1!;pO<V2*XJI4N`wkig;pVu#V^`<aeAw5704int=aNKMUm}#S&z3J
zYyYiLJRz|_!RMHbPmL8));)y}qR8D%cJgGEfc{bQ*yZI4#Er|IOeV%~h^;a}UXAt1
z`~vW*0tKon6~e87rvl7K8<bq0>)-dj8TbwD$J2rPuy^lXzh^hX1{Ka`tI0r2N;3U$
zM<J{+B1Wyy9>}88dnHs>Gx16p&|EDvV|E)O+8V=;pLs7KEGWG?Z<CS|7;cyJ>suPr
z?C!E`SsVl0$VYYxZE9^TuZ5Xj{`KVhEe{3luB@9krI(yuaM!mtpV6i4^h6gk2~cMj
z1-HFMFvXBMsir~VX6NyBX-=9Ui5iG<V0gZDDY#VC%LfjBO2-6%Qum=(Ytmz&ulN9E
z>F9k|^DFoLT7tp@RwuZPy_YDTMVK%vYs0dJ3;oYSCk?Gt?wdrfvHp6THV@=_?b#Hm
z(_5&b3-a7BwS+7ZSTWtyf}GkX$7HaleaGXe_b=N*K)|r`S?Qp<O37=uEjr`8aY^Up
znT18|03(%gH9LYPfx>vc`@{GSclWX_(~bia+$2^<-|r*ybWJl=DVO_SiCCiB`SVDU
zl=FV-2498m=_z>Z-?94K(LRwh{w}LdEYRR3aB*FUV-zw2c$vKhvRi2Nbw=+jQ=1KO
z-cV|oYiw)Vj<fW(<T?S77e|P?3KljhtCg&760RT*thS0{t~{uqI<2)CNSh^4m1^Nq
zF6-B1Nmh5Gh(Dq5dnkm#F_%FF(xp8j;Y3Hz%rdx!4vqbTf^2!)AT708;m{l4WtNNp
zr@=2bH$wO|0r*Sm49~*M^D%(NE-o}Q-e6B*Iehd|tPyUJmeczE-!niyJvslylwW{S
zuvel`iE2)cSGd9J!`9X@1(#DH@7qfu5ZK10?NG?OKFQr%w7HVh2^efupEEF<ul$y~
z-17`n9t3-#VzhwAN?2VK6vedyUC6vEJM2nSUAZrEYYYaPq<c0#2%Z{e0zS5Cw5I?(
zj~glJ`>(0%!<x$MRKdh-+bEfs1?-o+fk~!RWs&#S&b(6<57t3MfRGA^4>pgr^r~2Q
ziC0FJk0x6b9`-<nOSvrEd=v|Tp2KHN(%o$h$p%CG+Hz=fU#oDZ=Y|Mrp!AwY5t73X
zBnacp<y$5}MJ{64Tsml@?XY`V5Rnkennw06-V%}Wa-Le%AB~T;JMM4GzvQ%G#|zMu
z=)*Iq{vFrmB&VA%Q&+knA^Y%!3%DxoLx3Ar0qy>zAw`d8gPhljWh@PXaMUiAZAgt$
z@p-A6Y3o=IsW|XS*KPnY_Uy<ZarReLk7PA6fQ&wS{<2TcU2u>KFNr0?1N(HA8`kL5
zSXf;lT-!V*ADUjY6we8b>58DC^Ck&0qGUK((tSd8o><>|#8rn4oa_ZQsEl=C;i*D=
zpr*ZOqSyu2;we|~d^l~e9!d>osrNhv0ySN)hO66U^YBaYfn&#(LEN|hx-kkPZ_JnJ
z@@9)+1HV4+@P<mtXQcAo#;JBhoh4CV%N9XZeliv4Cqxs8R-MsLMjT?HuO)EaYc;{X
zh7eqM#yNP8!B;mQ?2Ng}fyDCn7e5{u%hQCy708e2Qp8{IxACi;#ozabMM+wcB#^Y%
zOris1!0-(<`5=ncm+R7N8D~G-G1e87r2{!TwhRY?Gookx_pDj7WIT9qoIy`vs^DE;
zZGsd6PCfat%so4I?nIe@MmxwKozsQD)Z`@@h;Q#DOom?h@f=;An5D3av>&SR&)7`n
z&+EFXxa<)tvu~%O{+DaUorg-&#2!)h5frE$7mTI`+2wR=P)CxlN7?ty_g{nDR#lv)
znh><kQ&tmM#6SF@3d~jYA3G<9!*LBgUmt@}?J~uT|MirGAciVo3^|wp37cshRS21I
zTMG*tVRm{ciX0#6>kqXkLZpJkI%KG7yoK7;BI_FD)_$?FLvOVekLTg!Auq`Wb4~}t
zO;4St7UJa5J9-w)*NS))b|&CkphTtI*1I%Yv+Yl5{6wWyZlV8$Ljaq&zi+g3+{EcC
z@I-NQ7d*xyM3#Y@o9=FggT@yC@F1!1CTWHhL2u|y2x-&<(Ce3wMu?jUd8R=w*TC=H
z94p2M`sLW$s<+T%v}O5uLI)x>$KSUTVa!p!pHJI%^wOSH_b5UJ%=8QeQc~&rZB}`=
zd0OrsKaz7?`+{H~dh+le_2q`gmlNXhcvmT6Vl6;bTx-yL98f<Ay|00RmjVTCkS<)r
zVxdj~kX{LhoV7!38F+S86NM@C9C5rHMo?C?jz9kKuPDERCr_U2@*jlcef;EPuyXvK
zO^6Pn-_bOD5xd#4B#r#ud$sk415mUOPNBwEc(LBTenZYO07OMQv=JP!Vds8cO7TyY
zH!!GK^ggn#9UA`!dx058#gn$Aldm8viKvE9z0n9IO-nJtkw}e)`^YO(6Jp9+%7#BC
z&E!5vNh<)?U&l1icsnpI5p@MlRoMypw|ntGeT3}dLOL8F!fa%FTSA4XmN<BI7Z+xL
zTNnya#IX$fUHch*zD`e8BZeas;~0xIL-56o_LKO1jfuQur0u1hsYRadZTxn(d8c&(
z+b)bXT3roNu+3FPiVv6R=c#m}pLkWgybDedtQ3N@YW#Kz#nUn?%`s$d3&_+IS(ID3
zQd1hw&63$B8qg#MgL{XhsKgQGnqn4x?_fPrjH=^Rj$6tKH=ELsHbox4a*8EyV2aU|
z2{jXbAxcW_=Mls*dN!!W6V6p^A4b57&!zT))Rku5s<w|LW4D6gO+9%?Qqs_hs3W9o
zqn?Umgu_XchXJ<REt<1x_h2oK$nK4i!5(qCd|$G#H)lu=d}~?%H`PcPd#bknmQC`l
zRIy@k%9!btD2h!iIFY;a8qkPhM6y1OUZKx!ZbpJPKJdS>_vX=5umAh7>YSX@Kyn%+
zlm?9?GKPw%6cwk@P*g}r=3(0!QHDxInTjM0q>OFsil~IlB6gXlZJRe6dq3B$)9HN9
z=llHeThDsddY-kud#!WAp5E_!c-^nzx~|uggC5C=U8W{pgDyfsy$D^*whva6@MO4>
zjAfJfDAh>W3e#&pgMympLs{ZHE?^7PN0Qmw%M*Cw&sn6`0h~SlyI5}J9&PmlIKP(G
zSCN)l7G7xrr|$}9-!KI{_IO7p04#>p-#}2_JC3Lw4TQ3FYPSn6Mz*`S-NOx8zXp@w
zp)T<ibA%?kS%kfa%+zT_DSlUS8LRC518_hu2}+3bi#hJ@px3qb`6tr@0O&BzQkZu&
zV9^f&E^qa&P18+lj8WYF2qtyOekh<IK0q6(u(J68lZY(dDMYgsFBn?NK^|dwjmGe6
z!5T5z+GI;p^Z~i~TU$K29L?WxR0aTyy%j}3c%^T@WH_iATd)N~1}_YVF0w;qH%s1{
z_Qko@#&76&h;e26%+SB=Y#!-E2y%fvSaU8M`7Z2~TptBeh_|28&>k0+U0m*QSHykz
z+m_n`i*kHsUWxkRW}$7VtH2W5s6?`Jen&zXXkq3wecp*RZ0d=R?+#FV?ryfv*-*8V
zLkuPiXQJ)~!TIYJRl*Ml+2TX|$fPb&hA(X9dJ|fYT-5vD0%}5Lh|51LGY1yjbMXWH
zh?<yMF(m0W_B2YgdfJln*K^>4FtUIZDB#sjpO-4S;%4_H>jW#dD>I(6MzNaOU@lQ$
zr9rdCm-oI3qK5Y?kHU5bQV(Qj){S)Sgk_xgQW?s(>B@=y^{>x2N&!87o_}UXirW#!
znK}klRou0!*VlKxeOJ<mG(TTkqqx`bH?1S1h|>r!zw<e1xI!TH(9fBTfgX|0stW&n
zelso028*m0Jm-~z5{@U>{m1S2Cl5M-fx08hr+XKUEW+F{q{YWuMU9IJ@kIz{C$r{j
zczH&H&)q@vU0@#!8UAaiFFJ{uhL&o`v-=gw>OD=Qx|{5fQ6*_sMUm3<5g_Kn6%*w!
z&8OqNhdlCzvls70;Mg^A))>Cl2iI9O-E6lm@q{@-gtk(q`HBF!zogq6-<kgI!I5I0
zA4l>L>iT1!UMaE4=Gb$j^wf@Q38{JE+S}mD9cdL-{ETz{?O%ZM<-6|uAr;}ccOkgF
z1VoE^BVm^nYw$ctnmWlO44vLcf6hu~A(&ddXX95Vq)X}n?BXA{8sIL{=8Ax*;g?i0
zo6vEqZZ6t$ZcmBB5EAl?+rc+m;Jh@V*~&zNT}~os;8`YY!t8lyj()JDJEgNmdSw}S
z48r-zu*w*r2GAV~l<WwOuwuVy06MKKvz5nLe~P`Zwhoq8lz^tRwAMhZMd+hEnhC8~
zv*u%bJ%X_E!do_jwxCm)7m;@ZN#%P*COiG`p!ma@Ew`m<ZRcFa+4LZvDm9o*!+E?R
zT2;UC0^@bApYEnJ!x;VqdN-ZdC)4YwsW}F-x;@LQ^0q}DDI^e=ZpnO$Li3>G7YdB_
z{#jw`t@l>MBG*ACa~8s$Z3A}o&zHepoQotw@%+T$aaQsCIA{<KbDXLsvSj(-3RMVd
zEDTFKwSA2otm<&JpOkh5s*(K89zpL?c`npeReOfUm}a?M%^$om;Ax4AK+@dL>$Xh2
z!r*cBtPA#04<6cmG$HZ0sy5yF<mI&_Q{&kYPkQe*+z{6HzmC*jAsaEzJF85ine*4(
zt#dF(I>5fGL?_L|_P(gxNkg*h@`VAgXu32rX*@vjdEkbQ8wM&frhIT-I5oL{Qjk%Q
z4)HW<73m@x9%H?(XL2r;EBBD?Rt6!^*HidYRZUX+Uu0#Bk$YQ)W;&e~QM<yeg=h&c
zt_ymt)AnpyB8yl-Ape6?6n6Upa!&OkI2y|-_PUjxu*CVIOn_>m|3g5UY<<*|sE7K8
zWz6a>nF1UY8&x|<S;)7@l+54r0%_fpD_5?Nrm9S7M%Cn`N$#cH)SS<?2!IKS>CYV4
zw~4O5Wpq>i>L`Duc=^024OtX-GC##qCY(mtU8kT|6R5z^>ipRS1BSB<IOB_mNk#SX
z_{KGlb^$7a!epzwb1J=7<^X_l<03Q^R$mZ~=e`7^iR2B|WtRAW8^lqhy4{rVWFwew
z?>VPm0J7(QH6HX!shV~Txs<{|z%O3}em(&mjCd9DZd5LnFCO2l@-v}J*<?BmrvhAB
z(lV5Ev9q`!R#9H=sLV&yQbg|Upy|?;r6tYa^pkcyOL&Tlj?}$$ik}sRx&rYq7Q%Lo
zL_T^ldfm(6FpL$ct6~#+f|=}(+@YX|{_0ai^dik8=ct_u;A?W6K;@QDh@3R$<p7jI
z<VsGO)Vv8G$t%Fn{YwD)nLrtjtwuY+Sj0%l5m%&Nu9%Zso*JPbMmZo;ho|SqMK~Xd
zt|u+BTisb;2AM<@kNfR@FwO|w6QeTId%Gf~qg;BeDGB_YDxWx;5<l28Yx-tqSmMi9
z5C)NKlOcofkY0IDGEP`c33ntex?ax7mxrhpwL95o8yZNMPRn1ZW*Haf*!tz&3B0nm
zJ;}V06aqc`jRG~p62yawPIh*<ex4zrum+p1GPW@?VfBV%Vg21kOBNnD<lK#9Tc3gc
zY;@9VGUl+VR7Ov?6GT4i`lKOUG~^wTUQD#1hG_+)1sc*Vr?Lws-xYfk@-k71SGOLL
zA_5Xy<l%v0vEYHkxpI6JmVkR#_QgFh+FL<6%A@d+bdW#7#6ea%B7IkgQ0#T;%GT5A
zhHwXjJ#<qZgX#BPD$1Y0fQIfdC+&b2XOYL~>F-S&9T+_ZSkr_SjB0oKlEI!hlvzlN
zLo*2R_+<dy5lD)G<{t;5Zi9p}ml)+dBdsou2nz(&55Hxdk(g4q?C(s|SH6n<@OM)#
z%05Nnx}_*0tZb%jJ1P|BWFdy-s$iuUX=%X|mJGLIb3HH2X+DW_jgTrrAtDk@e=+NE
z(d5VO2B4IJSm&sG>~WlRb*7ucPOu5=9lmz!M}K?(4pL{pc`+L)wc*ufRfU(0Z}Wgm
zw5=L_HAT?TwanV|*4i8GC8ke;s_t;r7_lY%3%5;@d&<fbrrX&DA_)VC&3kmo!XbVz
z=ZRNHv&R_nOnq6?yUq*TxBi9Cdz|#{Ch4vUY3QQJAMwDVACVS4LLV6GFK(q>Ao4Zn
z!yETT@_Pb9!H#M$X;E-bY-C9Z<2LOi_?TkcT`w~;GwYtk0N*)Stv=_EKXL&=6D8-;
zAVz0v7iV+?@&O?aV_-l!)#iPMvP2%leuU3%!O2J*r8x0ubYTC|oi(eoDzUhh(apkq
zk`w(T11Ph-f*(8DxB&z~Y+VT0X%Z-lS`YWt8YLH6YbARG79vWG8}(Qu`g6bY&-$kO
z85g33<B|wz0o%nQ1k+H1-Nh)sG!jvo(wT<<is>C?@YF$hett=2YuC$_U0{>c$7zPv
zkY17iQk#J<EmptcAYv@J6CZsck<&z>Pe9%PjL8!gWIuTG=8fUiiU7s>>h6qLNu5)i
z;inK1X<X#>+m8ug-&Wn<7pH%o`e8fMo8liF8B44i{buSn)7DhW{4vluFXZE$IVAmC
zLVe>aM7Es)v(lyBPxtu+IZ7`uz-(!F8OherGxQT|uZPQdkji)t54^mJCc^_wd)X~j
zPFsxXjDEP}{s8-tB}Djj@eDSarD<Vx8KEF$&uNcy8O@=AXpDl_)raVcy@HVULEPyW
zVqGVG4d5pBoln#92>lp1YHU8UrgzsS)+=-c;x@3<ecJnxy%Hs~Wx{I1ZrUqxM!h?|
zaYAzpuC73S0)ny-Q!nL;1i-kh=p>N>W>yjmKaf#+gDz|(z=`qzPnjc=J#5x6rN$;-
zu_~ix-u>eCZYM=~`P>M2k?^IHpzc%Ndk1ng{^Dvc3nbEQkrSJToFho1gwz|~zesX#
z>*q)l(RLLT3Dr{PnQ^A(1SCSEC+><WNGRHas_;ZbDWp@mUbtpRdAu5csg?n5X{wi2
zi$_a${$fd$EOp{6#m7Zn){&sd+ZQ?y)*QmbuJVQMBD64qAe`r%Sh%ulb^Vv@CG}p`
z7JtkXyVGXpH9qKnye#CNxgGP12=z<Sk`kA;yPHesqLT(G&91+h*6@fPP3QO|k~Ivn
zjf2o5)XSoNGd~&ZCAb5}#uo%Gy>F(=G;QQ&y7iOM)4i}@>)6QR9iKt0%*XZ#t2&a8
z0WGJOl}<@|UKeJ76^L>_Tjhxx@X$o3Fcg!LH$Gjgj&{A6-^c!lQX2u%MD-c}@{F~D
zSDql+f0CNLoDqxFvoM`Y=gFA07LnXNW2J_S+Z26f$DF!_5VC)nz--;4;d5d?rL1sI
zf72zy(fT=zpnGpw#V!XUPQsZchL)L9wO3-xe0j^=3#nthFjwVEBpwnZH7scPE-v;F
zsnoFVMyo}nK@*LjNKZxyfb*_|<CdMVJ2KTAD2+7zj}$PwJ3OsbtENq#&i>qgl=@h4
zo((%Mxi?#2)CWnAK)ZV6Rd_H`4Vk|SM|+h$AhEH36+_ka^b-g%l8hyT#@A)OPi<h^
zn(_Len6dKU23F$8q3nY8NOS;gs6)fJIeeqB**zJ4RfiZ*jA%!(GD&~5JK7G?`+LGp
zwsyMQfwUqPUo3B&!HXDlIYpvMy+-hsPyBL4t83cc+vqqdIUJ)_H!{l(S6nHW{~(A4
zhhAWcku#$>m0|^yALnTOK#~Lm_ync|KM$w_wT_5H`Z(!m5#<iq)w;uWVTdns`Om73
zzB@rA3!>Dsas&l+v`AWw2#)AcSv4?w-_B2ZDQC-32kJMaV3LkUbQZJtwp?6Ue>$u`
zu{GgdrgaDsV9S)%(ieyHKS4o)I2VSrEbH~PBh}Z`GV*|l6++r)`^REvk~yf)C6X6+
z&l+_we@BR6-<{Fg;&}=t`~|mLg~C%Ut#_+O0<y};VOLyhJ#4Xg_m>Riamvc^g^B3Y
zDL?R3>Q6=wdryDA)Ly12)zLaLakwWdm9jq8r*5I|W<?>|<a6Bidp_oM=XvuJGn1F~
z)?6QD`9<H;Y-}jwt~bx3DUKOr>oO9{)m|#t(zvYIln_&1nk?suy|H*fZ<{fFY$Vt|
zKY+^R?xhq~nR&hy8IgW`_+_73+T$}L2j$0GpZOXK)*pK5XqDE%Iu%Cb5l{qjrap+$
zpn7#I-q)V87MRDfBL%5Z8qR{zJ4t4V5TNzWUTx<+__*xE@~S8s7l4r$fMDP+73KN7
z?j@~H&LF{j?o7ACM}Vm2+pe|Q5POY;HzA<mcnNK+y*)6xAe-H$&vyOTSl`V0J)<VA
z+Y|NDiHCRA{b$eCVcil{*{aA(`vIxPR`wX2vMTE-o`FOOyMur7(EZ9(^Gq2Wob46;
zPZO)AFH9#%p$1?mu0%aCiD+YF9@nk(e&B1oc&A22zusa(O;;ysuR@R36Rhg*Dy);+
zh`^G+h}?s+o_h-5m-_;(5S|wSw}Bu>(5y7XU@a155tr7b1Q_qzR~h^4F1%tTILQuo
zLP*4j%yVhGPprc=@snlO@MhP(_fo1e=6qQ8a8+$OEN_F!?`7@V33Gkr&L==|6ID^Y
zoY0pG=6-UHY<9O9X!2sc-=F}u%zp&Y==+f=9TSKwWad71j(!1Ufk;7(WZJ4K7|*;`
zuoVuyk?XgM$`yN!jl~F}kall3Eeu*3lIcewnlSp7Vce!ntfh?l_|A=e!G9*T$D3Lh
zpZI!pvFy;8gZY+<ttHe~-ku?u`Sn&d0n7FqmvwU|kEUS*iI2Et&=7u{nKrK@o`Zcv
z8db;lR5Q3kY4+7eeU4Ln|8zOIdd-@h7q-RP#XJ_A*ID$%F|HekuH52ixSqXmWmqLs
zN=oxj!D1l|<qAK&(RWE;TN3}%|4gmppq&UIkryKwmt277x*bPIjw7ih(u25BBhqLZ
zbk~^FV4^7y(n+Cp0jgyVKWM@&;bAWsBw{CT=-piBtHCc4>ob!``aw8J9L(G80f%8H
z544a9)8U%m={CXQvxsFU*nHCB9Us-$5@r{O$U0XAtox)Rug~eV#$j=g2_g!!2uISP
zykO9n8W3U9Pf%}VUm!Ll4gXV=)DzrJg<XMq3TQk9a(R(3V@MJ^H_x(oH}?$*+;i>G
zpLSbj{oGYIY-&HBdxS%NZ~j*eUcUyE&UvISdp`Ul;m!miIyKGg4p4I)M(`DU!|bw^
zVLuG=SJ!6licm?Z>%~F5eoH9v5}*gN2MP@n#&iKu{7CvTXTMQWRZBva^%G|J`{o6h
zosUXfLG|GydbM__$6qjoj0@ZSG?f_F(@EsRd$XM|Em9_S)2}^#`gGTTJ_KHzY~rG%
zXml!6z%~RTa?9<6XCMn!xYk+#pNR$up~(|rQS*<fyC34D5@0)!lGzZV&-%yxAF^Y+
zOHyQ+1{QDAT1+aAt|$?$O?^A=;-&F`((xqSsea7WVKmS)BwI(^bo}nD<zKyt!UbT_
z(EnTjPcv)wv#{)d@nx<Lk*`|5GxSr;hIw=5Y{iCv@Fi=%!)tC#Ya)!vk4M{4U^^7l
z)tpa}LPf~{izi;3)w6{#z$GOCjPzfk-g9<1H(z}&iuTPkLzp4GSpIu6L=~RY9f#cI
z^C3YA^~|~|P+O5O6goldK`3N(@`g!nhX@WK`ZgFR*%(3`Jg8C4>B$ka_$3$frUOUs
zksTyEWwFk{-rsiNEn-w6WuiL6(Q5kkN0>x@ao0sLm!RkIcI!Oj8^4`8m~rO#8l&`Q
zIm&+3b8b8b{E`GgMBR9eDUwrgvvmFIAV);PE<l9uz0eH%69oaX)BUosUZq;@GBrQo
zfRXha?kP`&uWp9eM<m|{?-a>rzvh?N*`<#<10gb%#_Bd|N^o`)@vQhNlJdiOR#y|1
zWyAjT<W#F2e$%!rA=w2Yc<s(5C@Mcve<KmQpI{**Kkw%eUvsv3G2#{Yu3uJ5Jhw9d
z?a{o7ki2J~-Jw|TYOa?Lc3gnp5Ui)W4Yl^zbVFVGzM3IQL$04Jg)>l2U|c{F<-aIa
z4?8(;?%W4OXX{#}B~?5V2^;0Nj6+a_X;8b12`Bm*<laz>Gi*b_$>7WBoS7ouTxqLU
ztnfvy(2xn-60&#UdzSFuayfLkkwx!IvArl{b70hUBd;^gyrfRUKWD1o2X=yEfwAIo
z6X8~Un*8OUjgo;X&Ie|UF#36Yoje6bY&RQ!sE!nz%ttAIJwn|5ACEJGD9HQj2Z@PJ
z0DQdaoF*VcB(Bf%U$Bhy604R$X?y88O>D&Hm)>@fme8bMdbG@8-(6t{PDt_sRiWi2
zQR4F}T1bK?xonD=^M0&w>><Bw5R99XB|dKnts%37(=e<JL3Dvz;PZ>?oaBd~xOk_(
zy4@CfAdu9BRASA{=v4sTf^sRvAv9<I=F-+@uva-pZp)x<M*P4wYg^myA$6t=gvo5#
zV*$Qo4P$35<vfp|!!e0}74B<XW$ON$L28l(*!L&XesvgpKm<5T>VvJHfSN6|3T@P*
z%97}ic@SpS3z(fmOZp41w;mHbda`Wph2+sB<mrP@b5Kh-P68uqXUIe|rzXvrJ2wwG
z(OYd03O-0IU;0EcvqoQS&`{>%s?qC3TSB!X-FJj5*q)*#(vxfs8&P`aH9n0{?ax}R
z_MibL(ZIpRhKJwswP6h<#3_~O{=Bw3+>3B3f9HF~nEf}l>H7?MY<K7T0D7l~rzqJY
zl3Mr4NX!aT0IP7@FR5Q#8v{fN$}20E=RpL=QgP9PLKKaKnMUVAQTu0DZJI!)G65WE
zk=H=hO6=0y<D#P@tx?5RU5;3KN!XEE45%@v8d(r+j8FG*dinRaAbj<QP9Z@&O^7jp
z`!0~bX2ptkzm<L-SL*IW1XtO<o|IjpBbZ~m1m_(Bzujl?P8))Fu{4FsR#s{vd@7Nn
zdpz6&j3KA$=bU;vu`ZTBulY;_D;^TdOKTJvo({CdJH?oz2+1;ZoG_dxKI&U6HiUij
zV;A}Q0`QfR<Af&Mw=9V?S5U_ZhBJ@t6}sVqRa1Oiu8km1^GnvZsD_T?x@IlsI)+Pv
zHG;Nka5sl*FiZWL8P%z4#ZBz>vt8oy7b>{!&erAQ+txN_`gcx!VuUvZJ$(F_tXQi1
zn>rUp9n*%0zY;MTG<L@lAk{w0J?^gxAir1I9!jzU2#xe|f}9ndkQigRBplt|epc=C
zeV?K(@f~Gzh|EK@@t!>;Rz3R229opc>+AEi#;Ne>bo)hwh#}LWfuII&j+SDY)sB>#
zZZa~W4v+c=%JlV<T?FM2#4RkVvMPSKCuV&fy0Ev)uX&<cdj0}L%Ie!yB8<(UVY(yP
z4tql&=W}Us?Ev57`kpJMW0ECBgOtbc6iJQ<sdynFGQWD~->W=Fc&xSUp!DVgLR2ri
z;=ynwXaUGoMq!R4^_Px@ry;#I${O?1=8cp|2W&S@SK`EG6|+~b@Qt}7A*wS|L!sWG
z`ksB&uJ`>TTvfV+@FVHV+$mF!)zz;KGrhduq-M5$Rpr~qhg0)b%h>qE1d7eo5l~&O
zZs@+{hUaij?>FIEsy+oL;c)NuCIt;@bGV`9-hN<`$~rsEet7tLqKXQa#3_!Icf?2A
zDZPm^i;ve8y;`i<Q0dk$mzv~Z8g_g7BULdM%(QD<$_5;$M>axWA^+%k{<pV-xvTQ1
zL+74!&QRmDp?8+dgTRt2`WnJPW5=qBmEt_l><pJb;YfmO`!%MXoZAn1&4~?3QT6kd
z=&LPLKhxm1$DW&^d~wHdRRtUK8KS+{R*VnFi?nKbG-mb;$n|zgRpmd3^Ad{-5EYfW
z85AgZGvewV2Rk=hhga3`8Er9%Rcebnzf>R?iA>nVoiTPheqR2boFE$)Q931cab>*=
zHQMgWudObw+{v#Z|GmlG)?0qM3qUW>5wxuC{$dTr(OC#2TsFwJq1xGX=4r;IWwHEs
zkChorQss>m^TI7#XB*8CQvQ{`@L}ncm<bW9N_as2@ZGe0^^liX_3;tW)A2-3xF|p4
z?%hQ~L&8EhNxrP!ytDnRS;o}aPL2V@mcbVz%`Ak3pgQ&kEGMd_kxnBM+p~SMVb)?b
zrN^sTBJJOd+b5kd?nTBzswU%?qgx%v)s~DeU_gj1t>ZX@tuLq+UZQyV-Br|>+sQl_
zzT2gh`_4e$&p=&ydFOLha%x`R@w7a1jVzhQ6tY}MNT=|GvT;Mv$B~MIIp<00<79>c
z8QVSP#r|~OhpN3P$ySGldPgOEJ6V}(La+MCitw*!39zZ1owzHqw@OHMMQ308=AEDO
zA~No(h>w-j#eaINm}+x{YU3(BC-;U;M8C|a*~X!=(e-Z<6x0Sg(>ou;+SjBf#oK5Y
zq%F?gz<%W4O#bdV#^pD|S$ay*KR(91OaV-QJ^2Dx9@}x9eeUV8sVpCn*CwKs>X9{R
ziPG7!fl3dSy4SkQ^;9!guk9coD$7z$TRu6se!o$85+Ke~-<Cu0*+rC1VU3Ek)+Y4-
z!sj0JcLn*oVXxLD(zKY!Y2|;?eBNql895YgP)>v@X1FD*8VR3zwWbGY$koKXad6jk
z*%JA(6M1c5$zUb(9w%lmAjxCw?q!I*%#c&{Xg<K4nK4ypYu7ZJn(;B}V8#C0nN2_v
zHi=i<6yIBEaAxKoosR$&i#-=A>3s3g@#$vBy=*UEM<T*3@g?gSE|QW6hR&GK6*c`y
zbho<k0l#7_{~r6Vu01{)MQvg0Jx;{I#Gfci417TKSQaRz99`!`@>U7i!&iE>Yl`PH
zKM#~AHun7<<wwl$!VP29UxpfWTr4g$bai9e8XhDXi(TpF9+fG!bS_M!M+)t}QJ~Vk
zcqgs)*--EB$MP%YUp*M2E}r9g0&Ggj9G+BXHa*3`;$zmc^>OC?A9N2lbX=iV+dec%
zo%O(xamV9NV(G;r>prT~Os_uq;%kANaBEf45}jO_joJM@)%q-J_90h@;rRD6ADa6t
zJD1IOSMfKq9|8BoOd#q`NU%+`lT!<gmm1W5SaRDU@^e^ON$0)wV#>&SdN^hhJwRz%
z*YhdM9pe=t@@cK6V&cB-pxt)CuJ#1v&`4q6S1u`D&Xq9<w^!Q;6?4BKAR9a=5>R1W
z&lzf>K*lhkcJV>D+1-QVu`Ci6JejmHCa;A{=?0el`K7+D?#hl4ky;U@W83@}c$}Ca
z;Radzppbl6)b|Hiq7E&2&-qzQ`9C`RHV8^>u_rEGWv_{wmF`9?W_1-#GE|{<xBnhr
zReIiIs({Gs{HQZ~A5pgPCV9wLxkz(Hr4t>>suJ|dgP8~FoW~h&k7`bhGwHNsn0_AH
ztNpAZXLa}c`D~2RTT_bHj?Bb#C9jd;;zroW5cj89yW;}SJs=iZHs5&W{f<X<`5M%k
zSf(v2wUZ~EA~6nrRo6)Ci8Z6859T%GNZmT|WVE5I_}IXBMQhwZhu5S{7yh;Wm5v}y
z+g-tImMgcUIzoqf;GGijh2cSmzd1>QKBR_|uwD&+(>EP};bE0<ARpFMvHQgk{K&!T
z10)->^LAhBqANtU7{Sxk11%koc?);$MZSW$DJFpw$2};b8SbFZ_8U*;znaFVxt&6P
z@fA-!u+@}Yy3%a_!%xvPYUs4n3*d+iGhfW?J#Qzicj31zIBpxWIj`sQK2KNqqFp;o
z9P8zV#(%Kft7vA8jh$vA&kxIOxzs@&d2BeVY`ECu>H<|Y-}Yexy~{YIJWh$%oDApO
zRPOb=3=H{URn?g;?#;1lWnm)Ixka_++xF}sA5UzDNI|YHnvslg=m8}b0aq+K6mk(t
z-juDMuCEdNo0&UVy<hL0)x4Bjp-5GAI)!GjR-R^Eab~YWES9H!9^-WGk$1Fw#Cq=|
zQCMA%g>S}5*&o~D(dSPORGl|Y$s743N=$O-#>T`Lp7$i#dmYgSoJM)NzwAh1=7-g~
z+#gDj)SXo(Bf)d4T=YQ4>-nk}Rug?;S?B1ld|o*ds!88X7XHug3y0r78!b6pJTgm5
zn|vAzAo_b$9jT%>p(>{#Cb_I85j#Yjzn0jko^Ls%;96pe<QdTjBA|qWX$0M)g;@>u
zl6I*8?})u4qP^+>!GT?r-G!ihf)F9;8;_(!5)%au=1qz^aaUTtqMJlVi=`0Zy$!t_
znf4``HQ%jcrJ72;m?>R0hGln4TJItwd8EfL)_$;%5m+GQxx9p0wM$oZrrBlR;f@AT
zgR>e!v^NoC?--4b=*}+4>IsYU@R(M+0T#S_Zin2%vgRN>X~?km7?60j`kB?3g^Vvb
zPnO89k~Av`qF$YLkki&y*6{d>-N)a|IaQZhXFH6L^G~)Y{311Eu-bp);0-PB(qKW2
z1+At-Zw*z|UagRvee^K8!fN{DRTSLH{pe6s_}jaV?FRJqQb|$c{4;#xO>YacM3mOa
zS;n{YmOuBIDSjg<DrkHlI}~fk&j|^u!ry{bY`#>N+fVkcZ%PyWdqT($&q4+a@9x;2
z7lnL1@_yYDl;(%c09w>F9=R8}7XcG%_WBtT>KjYIQY91@&!9Xbh~;VjRtBL3xKx0=
zk3<G$5{M|<avWKXti7#Jy1tg42W=7eE=ml1O2A0Pphk4%JLLgKN0tUu#?}0q^)<!^
zvYr>WlltAGN2_FNp~w@{|J;}pm@{=|M^e(n)qf#oZPmIJ=C$zF$l(en;CdSsR?z?S
zUB?`4|95Spo3^(MURNKgU*A`5;5_~4hr)P^$ZJB~4tq!1p1^H!aL<)p24-T0xlZ&r
z@defxjJ=L|UfFj|SbygQ!8&Ry+hFrfa;zLIPRglKJ7Hd|p=f>DKz~H*ZFN__8%Ihm
zHB4O3>GkoD6BpKGJs*k99m`H`zv!QoZ+zM-ktxX6r8i6X>h1~3!GA1!fdeRF?MUW9
z9chT85Ed5ZvBuX5;XWxLnIvYY5(msP<myq7KGoD)NKx7nx!a~cx(6UU(c+=<GIsT(
zy%6x-ksO3vLwQyE*`po{o){jgNqH4y6ie3`KyqQ?T$c1guY+6!)2ONvZr)&Vq#7;1
zUU5iDg4^RG%*+-)l9z3B_!c{<QC~Se$0=~3^G@vprL}fUf8Wi_1Uce?-P3?Eem+&T
zIj6mKXIr1jTOILhCG2iZMsSHsP5Q^L_ZA<V+*dl~QtA2Il9JL<J-5X_GnV*>mBo&C
zY-j$uX{IO3L)DmFeQk*uQm1}=NpX>`>xFU$3i7Fu3tiq_RdR0f)ytpi9eMh6HacYg
z<KdnC=-$11X!(Rj9?7O2%oK6a(FxjGndaG=vg+#4;Y2u?`D_nU!y9wUaie34;s#M2
z6YdAv^SY~z3kfIV8VMEXrBi30npj<5Q?PzZvJw1Qgi%tQY15|F7-u7wESngyJ&F#9
z*5C*31OAQ8?g2p3H#r8}ymd<(9`B>Nx!I`phKJHIta!=sVDam7gp5@b)K-q)$wKA#
z%psZaJIpn0tH%ci*fs()d<G=0mZTkJHmWIbhZsDakSgW)jdF{6Ogp1GPe%m4iFp3&
z<g5&eP7u>P;rXvCoLV%GOC1{!v){SB<xK4Dg2B$Oqq<=OM;;`c49h>2uY7oyO`uAu
zOST4lv8^ZdQ@tOwQpX*m>k{uS%8R7hMzi44ZcCOJwd$j|;LvQ5XYhRz{)y_J7}8fJ
z*Ts(|Lmg9`gaz-fUOa4<wV~As-h|4G?HqLVx?`DkG2Kz2MK*t7@GuM6NL!bYU117?
z!{JT3NQg-eEU)T`LJld{Q?37_oS&?-%UEx|i%LB-Gzn6cQC6}xqv$g_k6g86sk3Z|
zMxmt!>Aq3{w&K-LIzkCxu)1!J?-F$VFt`9>O1j~4wP|*CE+a@2#$_jbkB!qI>NwjW
zMEtjk+S2pB#Qo`i8F5jZxqU6<bd>`%kj~E?OEjjX<}{ZTw-4~G5Sa1#oRy?xefzz2
zZ+P$eveo68t^S^_qfa9|C}E!`-%tr&yJB@1d!ci+2_wo^qu4yPF+A~(%CzPWEdgsZ
zTKC=mRhAsinb^L*zU4d@_WR#0nva`KY76_X5j+F0VrdPaG<6GF^F-}Vu~P{80`M3E
zCM3&S{#Xh<^94CRf<Z2j10)Kvf*NC|^VWmj<+m=(Xv>b$DSx7FuQG$Af>@Q|0}tw2
zUpyu)3$$o2dZLgU@>eEWs~w#KukJwl<6%xODRQIEB{ELjyt?h3n@K`Cu7CjYOGuxh
zy!8+R(M=9nbMSiEP+5NWj%~a5lPHYj^qHx5?<aiJ$NKeot&V!p_Gn6#vCFc_QO<%V
zYYr1=izQ*9id}k>0*xI196^nZmjuKXIDnskO9@Zik340!HIZOSCLM6}tPddfil8&y
zUMwM)TTdU|P;|CA+1^}^qoAHG-8#rX736ShVGtaSW4|a-9(G;uZ#JclGz;WgyAP)L
zXS12F+3Dj4?fA84E?f^{PrZw6z%n)?xQwdFWm7iR+Sg~ck2t4|!Yg;Ti9#%gv~qpT
zZRM!XMLgsrFJA*bq0OViPil!|!^OC$?E?}{UC&l5P)V*D;^!;<{lA=W<U>nL(xlnz
zF4Z~xQMC8Kfl#48pgUY?b)=Mtb|Digl(agt9jc2(FTdQ}Z*sf88eWI}C^JopQ>uAn
zh~Fa8?L=CY7-mHBT|3}C?dyJ7uD0nRN}Mnpdzr}kO80WQC#kfPiu}WvK+?Xze_cEp
z^4JBn97D;+{?lguSS}=6YGQg-)*}NX(E0@QAZU9FQ%IdX?+htJqetV(s`B#ObHBnf
z9K!!+o6kd)ujzfThmGkHNg^m|8RcAKC1zsYzWH#(uPZUZ%O_`%Px)plW*pO=KMrzS
z$2E%d%9Y!Jv@HLFU;uoM?u7SiUt<*)dyD946>Z*GWlE*c5^sitNEHPGDeUCRjpcWD
zntK88Ws=RIAuFrXa*d)t5|?i=Fpfx}HIqw%>`N&@`S2j;m<~6^H6(=H(ng|1M=N*n
zIRCLVyp}*QvA~eE53PE>u{ujA>W-i8g33#E8e1uKd|>7ZPZyFRDWi@%kJd+Z2Z=3g
z<)PG^*~OAjRc1T8;OJal6U5+c($X5^ydU)A(m7){GP|bpQ9}OZ-dA5K&CynwzU}h6
z8K*B-&q<xYlTc}4(6E+tje`M#hu`qcM?&uxCDJhqihE{Qse23zg6GF%c}D?)gfh~*
z`5u@S$Q8`TOaoz!80e!P*{t!W<9v-LEz1%!dy%-3WF_+!pc&&A5VnZc8D32OAyv(L
zaJi827cO`pQJZ9*zq|%kiR^S7M3Abzvw(H$u&p22N^{;M<2>;ngidYk%z>Ky$r08z
z4!4+NV)$IM2mq9HU{ou6zwds+tU~_=@*${k!=Vg-#xZH+Au>rH?b-BxF(15i>Yi4H
zi8+y;Z<e8El-ZCjlGaop#c2*zwG+FUEFuW$%*MyWv)|XDf*7OII>ucO_?CZ?9lEBJ
zk6Lh?u6jkH(6F3n-K*$h<r-9Vfhaq>Aa$Nu8V#xSWi?CSJQakOjqcF!IynPdwS-Lq
zWiD&{S(y`w?T`RDW?4^CFR47P20ROdo9inlB6XytUj(v|Fgk^bf;R7}-npEYj}Rkx
zsK4{FM2dB3jb@O#iur9gYo*QhFMd5tDi4`udb{gh^7E4Rv-@ur${c6%syMCdInN6>
zgFU)LXKBI}l7nHW*Uk!y<T#mS1oO`9<a<?LPUDrLCC5J=vq?{_-)h|evLh0F5eX0@
zx_uxK2fR=u!OC-9B5_4JToH)ks)zTnYKT~M_(>zW7sco38gNoJg+tCEo(X-Sw~*~t
z5lh3KuF^c^o`VGSkmWe?83e2(S>B3zXq#ge(w$m+4sFtgUQJ%cGk9<Qd~phdD}Y*n
zte)2W$^OWk%1w?Mnxk0fXy6G!FM{+=Z@9c#B_a)nssGo<10#pgShT^@7@Jf(R8Ikg
zRfhFuGa}gpMNOBH1&;~7f5B=QnIMvlyShhfbkZ&lB9l*QBqWPqXpBWDviUFp;<yZR
z*ApsMc3p8S>2o-l1=O@TN)3M2saR!8LRZ%j-E7z$G3hem(y(zA<9(ECUj~qyRi4h1
zp6jXXW<z}6M$<@&0++Rm;qP@YkY^WV;~QHwW~0rsYRt>?(O(0SL(WZ-4&TXn^H!u$
zVXPzGzjq>sz$|m}iT!nXL{E}I19H1jZ60QYIkG3aZi_g0A=^Gb5nT@fS&><#-sd|X
zVX|-aoKsHaNjdAcgfH+KH1u>Fu=2~sDdM=gD}Ht5c#fv*@u82o>X}H~ko<+k8jm;m
zdhb=V>F3VP_uyvujf}ij3}(>uMHN$vFS$>;s=?n%`^T!lk8Qd{h0#(5c=fnJ(q08q
zq-+P_s--3nCkaJ!z@kn<njrmiR>;V(PG=x0CCwPlh||#R6)Ng?Hq5Z3?lv{0=bL|o
z_|rsJq38G%QbKp0@)AY9K(zn*Xcb<k84BPOeV)Zri-qX0H=$66l3-i`Bmi>J$gtGv
z;Vu*oPoX~C+8J*n-dY%zRyElHC(29DfRuUZ6_M77SqkPFs<a`G+6w>_0oNASSVv%$
zkc0g4EgMzETpaH-!vf&2&Sal}`#~xyq=u>&l102HA`o+5D())f6Q(KPTHJ}LrKj9G
zs(LT#d#xgwHDuj&V^C!#|2883HGg{cM!9+vH_Rj6%W+joxMMdR*5AtD6|wTWw$ICx
za}t#_+rO;{|27<UNc?bMXf?y=2CH592xU08RH>u-s9*Lj{c)AX>T+bOyXpO-N$`Bh
zfA+ixMv#jHCo<RFLXY#<zn6{->5m$=B_L@B<VQa|$xn|{LrQh;Xb<cL`3O?!_UC(u
z48_tdIi-Jw!^4fp=B7_CVhvIzc{?_&{Et}b2$ZE(VG&=3NEBqk34I<AFwCD`RV}tE
z$%6KhQpOwsLv%esM?B9;Cycfk=(nUzj4M!vG3X%!9K$@g1o6koc%pJ83yLe+BL)~9
z7xh5pBfbiGi3xBajtspV<1@d{*|8rk#R2H6mZ&K>Cv>Ky6%G*yCUWlN^GJI|e{(|X
zN0P}O;x8`qhYdirgxZxa^nUW5rq$n()q`_JszV};sLm59IO5nvLX02O0ICGk-u?ZA
zrBZ47%!m-6{TzV?JaLMqn0#?I`qP-(BO@zyE{U9bL{c87Q6B0$X9RYv0s^)$Op#!<
z=aVWtute*fc4?1|yj%cZCN4k5Ci11by0bIa(K!I1hJ55FMM#SS+C5{j+kh`l)VoPF
zTE#eynQm8;9A9vDdj=V0G{Mco;kFR9%J<bQUkwR1>HZ5-q}N!4U4gcmL2ps>idc|n
zBT(zXA~p-i4rkXwagZ@dtB@wo?mDy$@EaoSemw;~vp<HLitRTYd;8?u4wAv2$Ub5*
zs4O%m?jg`w!W1Mg{ver+?w3|p(L7{*Rc1CTBUdQWSn@)e&b4doD3;2pR8duE)bQB+
z-FVQ$l@>S7*U?&)Y2~6Lrn+WH`NKGJl95Fo*Kb`qPlNHTlYA~I){un#lUikjp(dZf
z`SJa?<57@+nyyw`0WkaK^_gxsRWOa{p2T#_a3sJBXu3>vBk@HY+ZEoU>P%`!M>Uye
z<ULlbTGdfXCcUlC8J$hf97<F*Z+%%0)4kW>&SQ8b1g?xz#n+dtT1^4vrLD6<>QV|R
z`}0<=UCUf|dUX}$WbM!=-pt-=wU6<Ne*mfstFZU1rkcF~!2$s3-W^UC%JNVj%H43Q
zkf^Ak29R66PZw4OQ7(I%7}H9%(q=SEs_H|xxgIbPy7`O8?*RT3;M=xO49<ezBC?3Y
z-6T#hT&llrPU?E?(b!udcw%OG`#X~UD|$n}A{Z4qp5@WyMthU_a(y?_le2=ePupk5
zHG8|1_n0>#dF8K~?PXp$E5VVB>4T4vw@Vm+M}@K@AgCB(;rx>O_Jzgq3mStrkZD+%
zhXhHS6G^t0yM4YkU799uJ*%v`zc|3lqX+t-bx!}C3wQuXDlT&`6ZHv<)o1HknH4MA
zQhI{wXPi);1)sQk&$FHSL1m<E2dO;?37wxhv*vMa_frQ~suI;BIuG*$t#Q2+v`~2|
z-;I<2To>5wTI<n>Acu`%KwsHb5uk-sP2KO6=DZ3LUL((W;0#Yq78xWJV=hT%@1Mt*
zUm%{DRyXUxfIUg=#hFWI@FGcK?VRn<^`JoYwR7vnbCi%=69`eoI<;>Om|m+UEuo$y
z-$H4vbgt6CQ^RyciX3NNHf=w<71`~)<|>{IS)sryVW}6<yRIllnC1sAyyg_Hucrh;
z<|MwF#<;&)iu`rBy*p1jgbU>*1LjHa3fTqc!bxlnUOIaHc!p@sBQW`rY#<UGOwy42
zobze}I@X0(b#}rljlscE5vf7tdI^nfEndAqMLxkKb!mM~hTI*~QRB?M(p$Nm601}f
z3$$x25)j?^u%J=;<)}|D@$IZ_1FKRM@~Gpz8jW>6*;1r_B_Jlhf+INp)3^DWmoJ;W
zA7?M+2(&Y}DpB+^dOJ~Di>SQS8QNaZ{IYOygpqDWLa+@_&_>Gg+3J2rtT|bS%}yVU
zc8if@n~H)EEzm_ef4SNI-%9I5xhqLUC>6xJu__6koVua&7K9WvPbqCXJw}xP&m<5{
zvC3;#Yzhl|^B@A5jcRdavpwJ4xPKRBHWGu5HADhgt%=6rD5(%)A0u{i93c}C0JX0#
z01+nBZ@2+LY$U8k0ya=9Zk;4C8L_V>RQTobi5i@epcW68q3JYJ8Jp6aXKfz1`&p#0
z9k{^jR8U|oR?p>20?d7(yJ}x%)XbT?0h!=4VsatPXX;M4RJMQMx+t!BNXuVNp^{RI
zTD^~2U4CH4J7@s$Otl$XL#XjOC;7d*m6RChy7`aCCesuU;<QE~nET#k`_*8$?0-p+
z0BE0;8bP4!44V5ZVo#tzL3(D)9w$%_n2siSZQz_&ZL}r$H=JIqx*C}-uPn%yASi1Q
zXe;v?J*7!p_h>uh>h^GY4M2V4qa3j1t@@7=7oWS)U;ZcYpM8DFfCBWc0%zzZtMslW
zOb>#ho2>P1xg-z+xs;i$j=CV}H|&Nqf9Y^p6!!+cJ&_1j1a98C^&;E#Zm}D(x31m$
z^}+EfOK~E^S0RHF#r|H(Q>RScWY=T-qt(*)(de^;k1q>^-~o8fD0c#-WseSzTj7gm
z>rN3kLJ*4R3*AifpK=HoOn-D{tB?j*jL7^lj!)`xvZJTS5u|SoWgKY?0;B0OUd~7P
z@}Gbvd>Q8@k!yz+_lN>r0&Nr)zyuQ51o#V@VY@Hhne_xz-y(?J0q(eCumZ?705xz8
z)o~<uKirpT-ETaV??P1he>g6SiisP7c$AQb4H<US(OR4qA6%@S?GM0M5*O35i~?lF
zWt^c8YVh?FQ}&#50ccfKB6^zMbX^xs?30trJybqfh?P<yX-B+sxJp5SQ3vj@`uG+}
zB8z49LBmN;ORJpgxhq@upV#269t%<hj-Ni`sZD=kN^jh_0Y#iC+DDJx`x?7(<(f4E
zkpew*Z2uMA^*#C{(o^_U9RF>aCuZZ_yq{E-zZdJKsGr=UzyHYB_TpcOwTY)FxBhkR
zlE2<9{x`CL{B_{qPu(o?`^3XrUH5O{!ykV`J28uY<%K4m;;i}Ki~Zk`<@<lW4EAkC
z$zo`2iiWAMs!KNP-OrWx*H1&2i4Mv$mdLuhkP-c_r>j^0|8*~Xl45#xKJ^UwaZ9h%
zH~rjyY8`a0wFU0?-7^P^6K$p5-0^<nAL7z{qkKQNU)Qympy5r?<GGxdo*}<nJ(@3S
zx3p$X)W)?$%;EdvS<p{?wpZfH<HB*vYaUB@Ld0RxF-zC(i&`F^j`}pymj1YsA)%k<
zp?XQa`1orrkJ=$-Z|SW($ctPp<rJyf_cL9VbF?E2Z?T^Lcw4p3Pj}%+kTK-A{Dz*_
zcE5Ak&bLy-lzr?}E%eUB*IOR(9E<tK7i|4`*B+-%jY!RAQn`h4_N)%-N0)<qdw5^^
zWvSm3g(<C+my**sg9R>DKfbVQ$<Miemj6N9bLlE|w?ol(?+Y1zEJlhXBX$zSkZ2lZ
zJ>~&H&OMZ8eKWY|y^Gu5AD}s{@2AEN|0Q~cr+fLvjKwAFED7l#(=h`Z&q3Zt|3)3p
zr4!$L`_-iG*tG$@13)DRT6@ivv9bE-IzDu<LiR3|=NSTI?!@Djx)!Nga^sElM<0)m
z-0=+g>+FB!bz&2bYd`v?Bh<cdOpB*`c!7CdS0Ya9tI$$tg2-f>pty*R*Vic{(jrQm
zGC4HH+XCLu$+4DpPIW59gH}+N{Y-`2D5Lp@JMk<?=x>1Prl6I;$)&Stx{Zm6cjghX
zy<Sc#vo@xsRlkY0^KOs`8U0bt<HqV3jZoI!ALCHXFBZ=F@qv6w&t|A)u7J)^z;`*d
zKfKes9OmVAsM-mE>HGb$iS{2O7x{XM;FZ;Jl*QSey<3y|UT;X^SZqjw?iQq#+LlOf
zY<)8SFxO9so0Ag*w!UY`_pIZnzZmxf8qys6dBohUn$gD4Aku;91JTnZCCx@f?eY%W
z(Zvp%x^3XTXr}iWi=XCOsn(qXHQs@q=<h?@)p$wVNh>-lrI%r5**i*hO4l6TSeV6Z
z=IgDjLM%Y2jQ(Q}n8>+)Ju0+##e`q@E-FW3cetg-p%>EH)CPF{zw%`zK&EOv2bK5`
zEN{+z7kb>flKO!+^xWaga(%{guj(W!j(bE?nq(zDx@@Nu{g=NpbnBW_$g-LZ8dOQ^
zb-(g0w2Y*FGo8&8lDgSKTk5UeIYnaQ`V#JlOeEg^O1))@j>JvYY|g@;yLw`j2Sj`X
z7R=WX?|-dj>P|k!x7*|EJuOwWUw-k<YNfpOAwbL6np)@wg`~>2(AF#pI;l9eszltq
zTxdi(zWC?DnE1F&QGFp6`<K=*I73fMu!o84m3v|5E}l5K&JsoLm>>RhS6|hkVOVR_
zZxE#5-`@ojUaCYLML#;RDJQ>$_C#Ih=YE~|SjvZdeTfK5dUC96_aQHRMV%?$l-eO^
zZ<-c|hqaADC$u-aAqQ^orYMDm`=weQgXabFiz4hmhFv7+HCS$E2HWD7eJw6Ll=b|-
z$6zHH19Pc}h_=ys!H|45>yQw*&cX1^?&g<|_r-_0fBxt%I7ID`iz<R?pwvHWRKH<q
z2V0Y!<a(PLyh*|UCZspTIzfM67iX-g4SjvHbvqq?nvRLP_|$3y-IQDm=rT?=JEz&c
zzDXw6d;`7bn+4y{;aZnWAt$=$sus_|n&FxaRTdZ4k<S|b^p1GEo1*ZU^iZ#gE-ll-
z;wayY{e}H3p|&L*UL%G^hqKnj@SaTPtzyIuZvXW^kpB4Mp;RyEyPjitu5O`>Jnn57
z5{u{Bpm)UBMTY;#bh?P<RKdVt{Z&^sPvOsdCnWLS<vri01V}pOTUHNjIc4Lij50uV
z_nBaI4P|wQUW<NXX+B=3a1`g*6Y44B%pOP0N31An|4t)L>}UJlR&~)RmHyy85Dv&L
z_{IGbCgE*au|lpITYVPUE$dBqVPRZpM4cLp<3rnj+USW9Y70h$y3TsOK^QJjhuo*H
zugCsY+9AGbxj#cp7mzu^`Ms?_mVP_9*X}x&<b%m(tJR&{wX|+f8yZKX=TuLzL&u%o
zV@#PBmt<1nUyhZ2AHkFVc5|^sK0#DlR3lSaJc}*S_*x?IgNriXr$%)zZ8yWhbP_DD
z1I_j7)>`^@+iWhY@nW3ldhm#RY(_OsAGw367|xATzs*|Dk^lFmvho>VNknA~zp$^o
zNS)IuVLXpFux(f7%RvTqHlJhdUy9R>OOEFw%`@6cTgazk52--==BmVi4Xau6W=*Gj
z#ETkrsd74&E&n{VC&no^K~N(o!qM3u|Dh;npAR|K!*=;BF0*1dk#`Em&*@F+(8P#O
zj5FP!%4mKysrj9``g{U9(&QIg?)m!>jdCm}txa8;t64#cX{>iH2fs^tL9F$J|Hh1+
zd}ZW-nfS6F|2t;icK58kr553A!Y1<j*PRc&B*7D^n#Z^4PTdqUhF9m);l@Bk^HGV^
zw-VeeWt@#3ZRC5mYBFTx9VGr8XLx5dcm#3fvuSO$M2WkF_6MIgr5@vvzxeHVBe6X`
z+TtOsGkgM;|5Yp?7v=5wFY7aLrT-gv@cq9Q(h=KIokl{`t}i3|Alm%z$AqgaGId5<
z6l?Zh&nbBmAGEr+MFR2lX>Sq7>U*+x>7yn;-rDvLJ(Yn+5q4Q~^zGaicaQk!G(>eq
z6}TwFA*zlEx@@lQdh7<Zt7+J9L@IjXg#Y0vyix~(>&M4sMR!-}=eu}~1-rI4@9#67
z_Q{6`ZTFTIBx)4~i#D`Kd=VpV-YTgGVWRN!4_7bdr@j6Z<BTo`o{g!h(Jk+1LWH`l
zF_r1MgebL}4HlnlNU&qfKhH0Ii*^0S_g3@&!^6lwMQtn$<xmqY+o;yJozA$d9}&sg
zdv?lBm^4dv3jXLD&ue`&OjVTjz2`G;g0lDhgN9^(n#49CRfhXxq%eab#!AxL-Z(Vg
z7uJQ`3KwQhiLa2}%>!heoUJp9vt}tWyex?KJIEoL)TX8zWcJl%FP%ETR{wjLqW;4J
zTQ^o19R{YQx^tgS<Gs=Sxutd#HFzh6i+65H6g@P?oo{Nd{lsK2CcW#5!R$nv+Fork
z9(~4=KW=$+{!hEtmBg9HUB=DeW@s^vn}*NUr4J6y-)MOxyI=}uLUpk;{!fvkJ2&Xt
z`jQtin*R<Q1b=SgSK>6*wfxyka=)P}&G5W_ofV?@^fLKfi_w@uC*JyBk1oxhv-M0T
zmEL>eyH~Af8X-2pf|Q4F;9z7j4bt2TCQkGJn;>H2;3>^$<KFl(^Y3omrVpPQ*!ggl
zg()(04*35+oYo@}i~kmB@fQD+>lf5Y`^9@k>#jRjfuSmh>ofkb<oQN_`^U&!tD$mt
zMH?G=x@PN6es`J^TH-fUkT@>=KL<~nf>yaRJOEtYbZN2XRH+)em8<&y{7Sx8lk9r#
zp7k5Tgg5=qk=2jEg5>T0S>k2WmXWw3zdrql;QuLHp7!(Z{{Dvl*KE$u{qXm9{h!{=
z-*5c!!~b6F|7R0)O5O|IcO!gzX8O}E{Ft`?!;7BN^b=v=t$_00HVS2+L<fC~M!aO5
zvw=X;hV1SmH9#>?;Cnw|TQ-URvCwgMF62%o0=JQUr$2$4f0Qoy_txjDwjknygHAy8
z1YKG-*it>RZ~y*~YC4b{(+R!}^3uG`a9Aen?$9JJ{qhYz*YFV;LY$RcA+;ZgX$YPW
zsR#SYgBEWg7PA09kJLj4;QPaS%B7##)@mQfirvp9qPbdHM9T$*PJ+AsZb+X6iJbm~
z2$2|7Z;CfV*y*QqC0}*1{CA*C1K^PUD7{Z4u(zw7fVe<>;`Hg$`;F0cmhY8U>sO@}
z5Z%P%nP87cbOI(|DLLztA%Fb$S?@i?<ga?T^4d|z1ib~&N{-X{9R*HQMOLg(T4(z!
z%G;k;*AgQ5lLJYT3>pCqe`=g2&^Jkye8E`c!^Z;tv_#lZ5-I%1xp_~i2kVvGSKM(R
z@(3E*7m_NH=v4Dv)tCrvsWL|NNTX)P#0bAqZ>ZxJTgV%X<B?7ucr?AI392CR)aCMV
zKKY$Iy7(cmVNMioNGDh#Rp9(~&i*FaM)Ks)VxQr=WY{-FwXijf_h0>)r|?d2`+AnY
zL5<~x;1u<PY17Wo#2!ML8JH{rAW*RVGG9mtIPuGy!T*8|r#Nt=b&rVb1~BwU`{Okg
z8fX_z#@vdC$d*^(70OT1t!E*9oN3pH_XI*+DHJ9BH1=^eQ%4Kw{ecd5qE&=z_4OrC
zCJ4b%w~1Y84AM|<wI`SCyx(;<y;}S!N%mvPH?G|H5TjVl`k5W`9^XkA^7H2DfMNcK
z1zG@8J~<8yRA{J19gqn_g$-p@)iVOJ;6VFZL+ct6cb~i011<wmDgXJZ&Zhu(NTYor
zP~(S08-pngni^4yA$YwuMphv3arvO%J4DvjrAY`8Va@pcl^)RDB0_$F(1R8T0f6{Q
ztu5_ojxxE<ZS3yz0)+95N7FTipi_j%_bd%=Vf+(eV8u2Q2ppJIo$?pJ)45tgxFktQ
zNjc3m=dKcM8Uao8(ZU)g{jKx-MT7zOt8N^(g8&B#g8tx#fvnJZjX8M#*XeU}QT8gc
z`psZMERDeFCTb`O`0{5G%ENchH(bSfKTa;@D!)(eX8WGaUW(;^{xg1tI&)`bb7mJ5
zyVg&>f*~W|62I)aoEx}=hEVfBKO(D%T2`e!mh1CCk30xTLKAb2s&khw=?l2zempJ|
z0<-nZ)At~1q%_u(Bga8)+YH?VWskkPN@jQCNK-JzR2ae>%0ZA_xn;0vuM0$`*B<PQ
zfAWN&OY-h+K5vFQ11iI1X$L9f?F?7ivxqpoS6^rfO8chqTIr;Gg@?!Id;C}a=n!}@
z@f-Qe=xr3$N!4rMCb}IPr=nQ8WKH~EB0wuvY^zt72VN!}js1kpO`*Zi3m*8fHDNYi
zFoh@v?i#?HWBym0y*~G=A76BaLu(#zuX1^XZw0|z(4s-Bm#{!kr0V1bVVGOjJ%9-A
z(4mPAN~GfFmrXi@0ttmq1brd&h0xB~S*`}CEzz3#WA5Cc9TZ&VtFz76$snzeYkoI{
zKCeUkpZ5R|%kmo7T&6VX*dkTKya>5(EYW;)ZJP~60KGxzl)MFmOzsv1FA!#8c_N3x
zv;`al8Wtt(=^4YEDte?P1B!14A;mUCx*jSAWq~eWTXEycsZr=^e|b_c7vK$Ysev{q
zAtqLkX4VT2OdWpp-9R+4x73+ek}D*SBN_ysis2!g5G@`g0xG-vfb)xYhK&Tt-G&qo
zAtXT53p#WK9e|6Sqk@K2Do=T5`Ne$+*PckT5S<k8b21M*d@3)$aS|*NN0lM~NM?_g
zU8`$-tO!VvHtw8&-vBBDE$3NIb0WIkXwg6~+}}y|kibHsHI>Qw>e5V`K`w15nk_b#
zpwxEve4lZiSNuOjW%*t{f_VaV)#1?4Js<JQiPZ5<OsfK98<<mt)W!$O{D#o3Ky}8^
zlLotY&#E%<upyHO9Cr9ayb&O-y#?V;l?MsS+;9|-YqAMk=3h1h;s*Kz)iG|+8qF7G
zLhiLWxgPrtd(}NCH7gDvN7_Pl(&R-8>XiYc_*^wUajg<8<#f}reBPML_jBfmj9c;R
z@jl}>UjJ}gn>GXbwb0?CtcScdPD-%O#F*J8IC?Fk980$=2dSN^ex@~wb9Bdr6%p<o
z@gkjM&y$r2%yd-?6GYmb$x;BHmbte^xR}(R4|U%{s>BnA&(M-_92%Uhxky=(gWKDr
zO2&Cy-M9N6UdZTeqLKq5s5#_N#H2&kCda`v9j^V71a6Ws&T?|36Wb^Oi9sR{ScJJ&
zf@UYS#zP%81qijeLoA$`%o3H-<6&2f{z>XJ3rw@AoeSE+Ia00hRvXGb&zJ+`E{`O<
z@Mt^EQXMuXuE@`(Bz!}{_)2@Ur6$@jdIfR(Qvx9FR9lNB@1V`VmW>855~gY|1w%*X
z>w6WRETmuO8O<_?(<2S3#iN2F1>9>yi4;Q~=~p|kPeRE-?OngF=j-I}?mp$!tMglb
zXZroKXTZQ#teOeSpTonT1Rsb4ju+rOhXr(?S9LlmAYsaJuw=|YHnWEij}A6Q<sg|9
z*hON{mB2n}1SC8VHcI?4kuivCCYn6r5kZb1Pkpe;0M9|G<6#WoxCyf+iUVD9_$B^h
zt-F_u3V7{b=t*2PbNceUX=K32V`vW+r0-u~l1GW~D<Hm7+y2sL;hAmPq-k23wTPO#
zV<i_z#89-oCT<0nI@GO}{iv^K9?wNeblYz`&S}S_p1Gzh@T+9(zRRyyP2TbL{PB*l
z8=uZMK8!n_nG##+{_CMDHc!oC4Qpba#;m=&PpV?2;cDN&=!#W`q|d1EPjR(gb<=yt
zd4+2Xi5oM*A};(gdG%2`BXPe;VSiUj<lw>L`t>tBT7!w2D@+M`Og?>Y9s*$}?2#)t
z)eZo83~9^mv@B1E*0S3<1tBsFrYuZepsoz`!o9#rvv0X=p$#ol&o0PoyLO@VOd!|-
z%rpuKUIlh$^_BLv3i9qaem4!*Ox#Xh7`i3)BQxMF&;?=V;uU5@&x0Umfrmc4Q6@r9
zF=HPrr+R^kYtPsD8(mKuq49DORFj4)620aSmdlz$$txPuvBH3>^*7~ls&=)U+Kwp(
z!9hMy5gXEUdc;sUpgGTXgleOA3X$-FZHfEbZvs-{{TO1p_`Nd?R|yn$M*9=T;47b_
zrAf#;-Pr4aCGE}2h}Hf6urz@cCs-+STXd010yjb-F$L)T@mn<gD0O?Z!N`TE%mRq0
z@2hMiVwvbMmF8B5ljwv$`<O({Ve9o9hrgab=s-t@gu`o&UiO8$k3nhLgn?fqP*k9=
zG7;&IdQ;g}5|{t()pz&&W8541@#fiM6B#*{Y^A9YJgG>d3xlF~Z4B$Y7jp8)3ki?P
zBWno#Q%fE-lG~#=Q=hI(uSvHz&vV5a;O!^Z_G6d4C_Y2(J0sS5l??9t`uAC>DY@rn
z9BsYh;%<*;S2kU`Y>>b8ZG7YPz#oZ{t_J8HeVktmkv|X#svDGv-gn+GAq=je!X83m
zc!_y8+)3Mh6(U2J2f*3erz(W&U{ztSI?rTla>6k}q^W1h(&{^*21BoPNIms=HpofV
z{o>?n<Xf+1IyOm(k#X>Lz9v!2%kmkz_cQWQIjc_L<dQ?*KV!Od`Xao$v`ZQCfbZuQ
z-`Vi^ZKKORKxu((a)bKQy3TMoPj3~odjsZ!PJxc{B=UJ&8NTl58xvLz)O5pTz2ICs
zdlX@Pn3Y6teR_!c_0?ICMjj`TcM>hVIGj)rn{2DbN9nv#|6Yg$;k5w9XI6ou3@7e|
z;i@@0O)k1B6P^z9tM8aC`VL<Yw12hx?{XzyMD9HL@LPD4)(Z*s0s>X#UA>qy;^g{g
z5M^W-qr;g+L=poCe1g!PuV`yDz+z}L_L3PUqBjR@9l_Cg3r(6sMlS%#(^ExDjtsft
zjV}s4)?sh>tC3CW*(l1e?0p$E-eqw(i<@v8W1T%WC<<zI*bZIJb;j(|K&7o!7lbXm
z0<YsZvVj`(LJxBJ&t8bTjg+W0=YPO2d@3)x<1^c?g+w{}Pq|E${o6^_lZ?>IxAW=`
z^Uok26-0l+)GV+Y4(3x^<f8l_k$FsvhCM-mhDPq~u_FC!29=tJD|`(EY`szf(AUHo
zLjN$hv$Cp6@!$b@JgHXWLjnNvjet`hfKF*;N)>?CQ6nEM$h3$w?^>%2r)7N}5VR+s
zw^`*}nn}dcLKSQd;Ur-?k7F#4`4g2c@M8|%#<rh@Q$g0M^uDhz(Tu7*gxI?}hC*(m
z`rErP+wD5!CXdJrvm=J${;|BSy+*SPG}V-Akxu`54mvz`eZ$ew(NES#fe*elNL;M}
z>UzFJ(24Y+QNnKx&vFE;*YMRGMJxdGa4n^q$TX$2_zEqFMz5xc%LH)%4pbgGw+b1*
zbo3(w|CAQDbtj}|z4rB%z_%wawTC~k6(<7LX&VTS#IQ+9M!L1!-uILo?NI4`7mD-f
z5T1vvJCzxiBcS@ko{6A8A0g{uqcq4%b-IyPV5={&uEYE&cJILl63AU+ChP~fUTB@4
z2^tc_-7kvR@m6Q-nK*vj6gO}UOIL4V>F)W*()|d6XXG9&L&OF+s%?gb$=uPLZT7kC
zfhi(~6|j7B;PxJDCBm=-0=>NI2?W{F>fKjc7y2?|cZQg_TR|6;Uf7wcjR9I?n!OQj
z*b8w&XEDE4B0%U;*wpg3|1b951FFfaZ5ze$b$Dm2D2jl9qaun5BGRj4K|x^@=}kd;
zGtyhaj5C6?D2O0crAZf&USfd+X+e<Ql+df8Ljw8l9h(1lzH`<(|62cAr@YS^gh`$}
z+3jxEzV?0R90xhJoNR%1n|C&-tI6#JAxYPDX&y*VaB}I21Ep;q4WVR+Q!GmzXR(g@
z9ul4_l<HKoUE&DOR+fVTGZj_%;9|#m5j3|J_u<d!3ec&<O;^~~!Fk6sps1)JvGgM*
zcAyARN&qu5JXx(6yecG-N4Ewzi^Ff|<(OSnFl0+Y6<YjJFb9-<mq-t=b?Lf!V(1N2
z6rf6|D6RFc1Q=bk(4sIzPS~@DqW7AaOHi(}9M)2#oEc0A%IODAn1xe6tS6Lqwue<=
z{#-T*#ShTe&@3fzq>vgPn{`9W)FSocWZ{Lp%ltg(|GYH^_a#f7%v7lt*`Y01wWg78
zDIlu{bK<Nw5dhWX;oNS{P?V!I4?4qV@`((=V-K>#a6q>lD&YW7z_(DLbST<xiR4#5
z<cL}e|CyJ8T0y}b6%s*7$Qwf1Mn1@I4}?KfIKsKeP;dM=NIe`y;DTwjM#*0cLA15u
zG}Ja;S;-yJgU<(H1c_9nRe(yF<30xeB8ERtCSlpVm`daZ0^}m{vrvczBR6L;28~3A
zO;NT#WX}Vf4j(!(wF8X-%3F=B0=KwLg?mgJZDvbvhFD`GW}tgn_5`2g>Dp(fe;c~|
zwqBhq&rQHie}?oUBq$>HU>nyH$0MM*{sg7Wca5X0ZL!eevNY4*sHw#J;uE(X3cZn1
zl6h?X2&ngg#w4{^Gk@Id1(f;l>C@bih;&FT&2*!|?Z_BOY#1VXSxw~3-RXpB)7-1O
zX*AhLNPj;b3KvUimVI%nE~Nx%s~hmJu?cMF<3*OrTT?md2IeL<&o$@UQhXd*i**5U
zlSLPGe`$~p4Rb^<tX{!d-F3U>ZffxJ+?V^K$Wq<p7g(pG569gWFpk)~coTG6-QRIj
zMHlCa>G389zO%2FU}Is~bwVpsRr)87K?#+oM|d`|cyCsOyXJk*9EDGL@8~<M96lTA
zSiiPZSfu?6)AizBKR-CMA8`9bXGlOi3nj60pr)M@r1fEA^9que{`r81&Gbm8Owh>_
zRnh}B5fR#@RvJY8)^9$fN9XSA785g6<*8+^Q11m!*S_%Kt92a>of)BgEBEInnJ5K9
z6?j0Bhz`z%N#I6zr6oUfo9pJwi4?zh1%uJ|e7^-zQ!zGP=g+6<mq_n}f>B@W+P+8{
z-OxX9|L1KM`l%)9$r(XnaD1e)F_n8NP`>ZU{<F6f<EQlI-uEp&c%Yq!^-9wz5~nP*
zJubm@mwrxinb_CtVcA#tYM~)E!mF$4rWR={B)FqYdDMUZc3uANt)`J%1I>z!kh~Eu
zw@@w0N#P+IsAop<;7i`#Go?7(fUh<x=?y+Q)!f)v&S&VxZ?!y~6fp8+=Yjo7JZ^Wk
z$<DSMJ1%6`JYY9qLnch$0Bo#Gq{KrBI^;PUAo>zVz>c}gv3Tn@9TryD(b>emO#fyS
z5`-L>M^oTi?Us9TdQ4)&nbWmwkeP6vKa`kc<SHUBe^=3m{L7;%al5ty8u*ibTWc5e
z>#twdh7s}v0(pK?N=iAU^lq0M=5y~SP6waRr^Hi0)^3M-KT|tvqTBCa8s?y=meSLc
zpTdiJf>mBZ70G<({_3NdMTv#dlq{Zq<gP_e)pZnHFLHATh&_AUq;zsLTU0sJP`BVr
zMwGnV370s+Soz*C{oS$L3Z;!(uAFiMukGlZ;32NLQn6-_?8Kv`_d1=j5(^8<N0(?b
z{<x)niAYc0Lx-@`DkC#l4uNevTzPP4F%2fppD>$~79|r@@@+VkJNCY>Z(pjW7_CDN
z>dX?woTHk*NPU#2KGbF`j$oiRrFr#)ZrM$c0DoRwak=&Q_kX5p{ig)3wT%o+BtW*z
zb~yT!GhpA`BwpL8uCdn#2Hqu6%|6$68;f_Y)LDXx<CTOS{C2)0JjfS2XwLJvTg<&b
z`RBIS$zTL0Gq1YOf%2BF7cSVidYIH-cOLQMw)6YEhan{tD=r#?{Z{^}y-;lEGE3R)
zWI_Rfj+dNJF~T$4mY>WI$?ZJC^YHIRyEb-8t(18lKd{UdN=Gv0yGC2Dch}WPhSies
zeAu}n9TK*$aO6yozpv|Xt9iC^xaxlCv!J71bdD#vFD=f0<8gWGTCH+Ii}+8NQJ3d0
z4XSn#a!^5N@I^@_>V0#^-She~4*hnSZVjWYm{tIYa$ICO^fdNT1g=??{%t8>osw!o
zkH3PUb-LsU4md#ZCfGCx;lC<V1T*cLooJRh8-Lv1zGHuP=}gl;d~)a8<MNDhVR5|=
zZ&UfYowNdE2BKbdzO}?VjJcM)H6wRtqz7&V7iQeH9H$0}fmO-Hjt8Q<Pk~~9OKND4
zZl@f+`xa?UbvVaC)B^HONNK*f;B68T)F4O}HsVA-Y;2^koqi5P+)=cY+4r#@;n{xB
z+@|BL6n1GIN3`cP;<9ccL^vLh4xgxriPk7|_)zyk1UuT|>zi*{8x=sBNKWxPxB2I?
zmg{j`1B-Jb99m!$I?j4HQ#v9bx%1Z-K3pnK;V4f}q(tWvO!RqW<(__fPe?lZ>(*a;
zrXL?ZeCSPO#11$dMe*5Y*|=0)#8`H<YkgzJmzkRCk2-0MCCM?`<>v0}9Y>G#grhu2
zW<B1L!n~G7u9*#YXBtfl3e~!g7MNBUw*^WN^D^LI<ud5L0J$!=XbN6ND5V+vKxs7l
z`=yL8q)w`pEH7&Ay}9%~NQP@Fln3h?C4cYE7rU+~r=?{eI)Qq~vx*&$lCaM+RqBqE
zEBa)D)`Yyg>)j5hYoN1$Cg8Z1KHFRe)+6=a=y2swLpG#2KK<Lz+xPEcV*|xrD|n{J
za&}bGwzmSbPgk6EuuO~x=3+e?%X9U?m@qyir60^oZ@{{V=sj}r>dL}rVJQ+BrSxGK
ze<}66P~!8?CPl|MMv1Fe{_8bk^q7%*FEyzrbS9IZ$7jbdNL%DdxrmuDdnIWcjnzsi
z_MY<9A}TR}vOE^!amEh-Z+Qu<r!4pfoEK#!YGQbhu~T{)TE1PPJ4)lx)W->|1Z-~{
zKJ+p^KR>I*y!k3=CugvR@|P%{<_Q>J&!x#K%Iotx13@8Nyh4tFifm;KYUa@nixrOp
zNANsig5&8am4dSF-{uJ2afcFpIE3xq92kO9pLQJ|!J<H7#i}#EKH!Cexfzh68G}1?
z2x%pq5zlYMQ#~&M3XW;8?{>G=)cFkdY`+5IGoCB9`RVM$qu}8A$tTA}7N4ja_YF5<
z`lg3;$epzd;4HA8|9QKggte71h!!Vlsi9!NtVA;+o8qQ$d$4XE&Z0mTOS7@I01xZo
z8Fw;|%h`Rr(F&F~I;33e=<^vxXM*&=?C%sd>=-^N16J&b(?rqu0xaW~pkTAdmzI5a
zD<yY0=K>F~r{0>tDa;^f0n@Yh`|T@AKY8!S^f1IutL-IjI4SQoom4oqn7H+Dv@$;r
zzxnZXFQp}L&x0qBNa4hYk$+z*V^`niplj0gyfBk>%TI(qYckBk-b4UP4JyCHr3pmG
z@-;&$i0j_jU;vPoM}85eBM+i0qUX2+=ZF_*tDaz}SSnbz@WE|h?0VL9>*<MR;qii{
zSt9kZscB%hJ$4{k(yO;3fI`kptKN_2lMzq#wOmNizyKy}TM6oKS6=nAkP;FE2bc-i
zO~QPF+EZZ}rP7rASVj*=;6-^gIhu`TLH#f1ea!YQZR0$93_X4xGPqY9^VWrdBX}(@
z>=#MvdlLo{W6CbR9d6mz;bE^oJCkX?SGj~rQplw_xQ_q*3$;;2=u<`Z$2>?xGcrGM
zHMUFp1AEqzlPg$6k$Yvnl5;Qp&jgi#HWB9#Ne6f+t)OP2c+U(Zfn`J=(9zuI(&29X
zg+8SAnPA^N*j3_TvcPe+Z>Mz%w@P^FB7ux22hbhsAA?|BPP*|~!C=3=xaY13J9QGm
zrs}$ODEE;bFBlw7`1|<v4J+<^7{-|+idHcHNp5G^9G2cNKU5<sie)Lzz5x<8usq+S
zM{Q{!3mO^YM|IO2E?>EFDY<3`8Y=j+*g&sca<0g<iYZ#ke*P4isJR*Yui*UD3htMN
z^(Tp|kN0v0IIG59oYo?>=jdqeAIacSS&u*FSLxAfHf&EkU~k*<D9fC!eJ($F@}(LN
z&a>lngZ#`yyTp#6##Bu4;!a$JbP_Da$P(v1C=10QP_oc(C(4KG!06xzR|f`^2wf%F
zO?uhRwnZEw2H>1st8JDzduQ);9>|c5+_A}dn460XD85(gR+K9aS~$WJ8|g4ALb_9f
zEOH~{bx*U$$(Up!amuQ~?Wuc`&gZ#nZi$r1P1++bdK4^cT{6V0l7gM5#BthuIGg!{
zLy|~Au?8HTEV@LN-K)s+r}>(pdA|2(jF?aguOWM88tzmgmI4g?87<yjrdMS~^(!5(
zPT-02B1yzoY#-y|2i{*%+B|rgIneJi`2x*jaL1cUmM_&~2IGghxgw$n{SUZxot6u=
zjBM{=%b;!<tR;+^hDHdU5Bk?#*dO6FI~RrwO2wNuntTkiYu9dO8u3k(%o!G$yN!@>
zwGlGdibqHB*9HbiAlDHFsmV*@%|$NRB#D`pNsUxzz29e&)v#|qEr0>LaCRyxH>^P^
z$R_v5Q2KW6H~m3;XX4A7KZ7wa50z-N>*`26gi7j2!tAE)P8ooVW@?aLBI>lGMU-dH
zL(FLRlEF5v(_g(8J)~%tI-All;{;FsW&NV#hYl@brw=2op_*!LDE+It8}-r>jf%BV
zkw$KgVp8L&Tn;0bYXDXLL)Zx3>wf)b%NESs9AS_7asvltq3;AGHp!5uyI?UDQ+7My
zijuVp8fCizN=ANPP|=e!o21khc8{ee8%O3@TT@`2={jM@`fF<BXA_`2>}L`m9$wGp
zrPWRkUB97UOdd}yco`QBTZZLdpc<!Ov!%TlZc)8SKQ<2E6_*o(8%jtk2#%49lq-dx
z!+IRz1Q(C!KS{jpy`Bs2{-jw&>N*7`DyKWoNee<$H!`DNg7u2@D?D^)dCqM>jHc@b
zc07QDoL`agw+(Hc+wYM=$R%~!9~>)_<T;zY7JA|jZ&FNZ5)0+<s^3Db&3!O$@{#ol
z(`^}a462ymVojPn917a>pXiO4&mti>hLsfctf41j0;^!C!_bXd`lpIAib*29@>47C
zo*C=x-Pz^hto+Pdf0~rn<@b+DOaLinF@2I>I_jx%K>fl3hW_ZcYfq(T2D`js``Zkp
z$l$5u&s!T=zd2%sn;*QcH1^r;THmRYCv6(!!7c6@bDA~1(lkCTo4-J47Spg2vv}t%
zo;la$F_9zH3}IEzivkDAiDrYmb~!o~D)r(g3Qr)1!LDd1aVf{i@$Q6O>uv^hFj#xO
z1xIXaHpKH@?4<aI)IR(rmNUfhEQ{npgc&_kCY?*BqcNb4=RSb3fyLqI%9=1q@ug=x
zPV!DZe`6ilsrwnMNFc4hV|RDy*sS(+uPD<|Sl)uaaG{LacfTiok31VI-<QLWZSFIc
zaia}0kta-llH7$n2hXAG>q~7Tw7v)==pm)Hv)T9E*~>AT-!LX-e&gq-_8nKBbzfrI
z@V}wlP*0}UDWuxtr>5pUm5gOXB_;1pM1GP&w1?d^=&M3T`Y|i8!XD8Hqu)QakClQS
z7^d+PB>8W);cSQmaLECpj5a&B*}P>hnpq8s<3yalyfP!ZjRlVWR3zu63h}CcEMrh9
z>)y=peCHce4CDOH9PR#@4)_xi@CR_ZS)FvB9E#7w|6R;zCJ<Fp4TCfoGs?xZuBU(>
zR38^8*GkggwZ)+5D9=uo9g=RzHxGo4@6*fk+HWuBxeM1idmBsyT+&g1i%Om(ShL4Z
z1_%AVbt58wd;K=lm7cFmpq7(kxm9p^Cwbkcvs_J=tf}<LQ1tV#uW+dC#B6(xvykcV
z^)GT+9zVC};kvZB88pzOvEs!g-I-n^YPhG<W7)CWrE_tfX1z(-{opOyX0;@WSxMOX
zS)13|%u+!PO;$ZsXF|8jSmHIEKB=`pjHs{9f63$JoRWO7So2M(KdcWl6uD@!sUuO|
zCnA;*Z%%eD$UHK7tisA40{;jxmzEbk<Cq7ISS+&BNR@M3i#Y&6dwGfi{WmNPj_1VT
z6=G)E+#&3zOyGIGlC`-EJX$#->De4C7DiiOK%@<J@!8N$i=U;7b#*p9LO2YIcNx!<
zN_;(C=(ENq^`z(PDC@1AJQ!`uD7o=zNso@9>qQIE^PLk~M<NC&n^{MjN21}4{TkHd
z`SK4+Jy}WE$ib4$qsiwzLdyt@SiUj}S(ZbMK3kx@Sj1tXV$g{#n0;<S6Y!#qn)3lV
zYsQB{R#*=0aZV%LT*j4qpZybnLdRALi3Ea`ieXw%Q4?aB@9mGXBVL({ANk(&6Y)He
zVp^bpiu5z%^Chjv!F}`dKdM$6f#QgeTG?z285H^vWUEslSY~7EgR=^URi567n(7rL
zmw|;o>oz73>vq(7JpS89m&k(B7r%k37`w+{V~gx|OEPG(92Q%s2<8`|q@+ev>vh*X
z$}wVNgMdD_y(E;Kg9NQHMpo+mfC68$=ZGE^mTn+kA<ss~bL@@qf~dF;kM51#B(Kp4
zN+*HNAH*kn`e$C63o;8)^`HWk5{k-M+vNk=c8<i&eq3A;|4|oyx1nR7R8HI)zVpLM
zy^mC&Wo*V}X`*~%YQFi^{W8+3%U=ZI=9Gf0=-+6p*rmw$xJ{!u>JMUfC2dpq?T|4c
z^vu$Hd-vtV+$$9YdybaLX=rddRB5GG3YH|>Tlh|ppY4&`DK9DS{^dI4^hTZ*xcx+o
z3lwjG@Kv-wqo~Jkzle=?alY}zOIK=;ugL55_0OYKe$F#6Dwwe^$$$;zYt7L>Et=Mp
z%o4d_pA67FuUry90K^gv4V^8@5*?lnL=gbrb{k1f6cY<f7(zww60E*`*stJh(^UFJ
z;_L-LdUQx(JlJ`=sZ!XS<K@7J^(8qBi0kcZ)CByZ%H8XfJDs{;#_DEM7IH$5lI^WO
zeE|)w4UP~(r6AbDQ%y+XZY9AzJ?ObaYuQ6D$x8T1^OG!!9|{vEd%n{%u17TUFTWZ4
z*fRgkhytlcuS%nHi|^zc<U%=00JxpIY1o@^;|l5a&Q~?eO+9$`xlW0n2XV^)R%m>A
zIgg?+9<_(zSv$}Z-ldec;4`#IIs}b(L#gK#x>=W6kDd|jM%3)ko;V9(e~Vk@q2{sC
zVlHFV&!{D>*>QGBlbJG5chmzoY9y#R*IXOL2|v%Ax}YobU`0%;qai2_*e`BFD^yQ1
zix%zkJMj`0r8TzsuOwez<feOg5rBDE5ury1_7A|17cLY7CKl!K`63mj<XQ}Ji6S%I
zU`57?xgcx;00^bB+4}e}%?z8#h{H+&7IbU{lyHWao)e!501ya@D6e60K86ouujfrB
zPA>KJAVldVaF<7k&nc<2w`Z-#$J*Ll0kU(}VHgn>YSIcosRiH)di(+g`VsD<qGc5A
zG`d~Opt0ZD(1Q|)fj%S0O%`MUfD$vxh^aZ!PUm+jM2X~$Ol@INd@~95?=ghMNn2my
z3QzA~wC_BOM*YCQ3zJ~FiiMD0kKR-=EZv=`dNO(gg_VA4ST1Msq2)7X61)o1w7m3?
z<fsWC*;V_Y^wv?H<nwy4R|S=LN->_mlDr6881-2#KB}D9-=ogZ|MvBD#q<q>0d1g8
zZxx0^eD+tRxuRPjjG_XZRVDaGVN#0VIDj0;HGFe$5JKA8V=9o8&mVzh0VV)ld^%<%
z{U+^X1{~ARhnSyOzy!NH3Yd`JKoC?&PCN7h;W#F>KK-?UhpQ^vJPDiea^lu@*PNUJ
z7CHucAk1|w%FV@;CVMa{p^z?>#KXa1boU&4?i==W2+2RmbuC~c?!i3i{Bsk+LoR@p
zDy3)Jo{3VPN;$lQ)E3s=&hx|kVQ<|CZGsTmAY(#?bQW+ZwJ%Hp%b@p^dlWB2udc}p
z!|VIt^L~3C><H9q%BXSWbwR=6(XFM<10!KZF^?4vaTy5%0I(Y&%1tGUR<ewG6`f`t
z1?SPyb{pVCC`*U>1=EGD?=~=Q&$R_l)_+dk#@9t54L@h1S5JkBV{uN^i|={P+`+-y
zJ@$K2pRn2Q5JI+@*AwBs*H?<zRgM{3weG~te+-A(X%tr|$LJS+uY$z7-50-;YZn{C
zpmMsM1IH)Ey&UCuR{8~Ci+*77+U|V2q3)1`Kfnoyb!B+bxBkd%WecRB(%!rz2lDZ0
zK!x%rTb3ZmH}3Ui<K&k@D?KaTLJjHZRpqCHAB$pa9f;-tTN$O1fr4$oo|Pcb$}9A>
zB=HhJ&uN~!?tuI_GcQ`Z&J==6=3u1@8+bW|EJO+(l!jq174>p|!p@OL!-|{ITe8wi
z$#Pk79jVF9W)97AC<4FnI(PpWi$65~)GnJ{vJ?Ec11Y{VhAPl;!fzzsWWONz>*Q2V
z9bE_@mG`+j<FM_y^VT;0={VZ*eOo?3OC$xesW5^W$;A-gUVl{SFZ9^Y(Ta9}ReS>~
zl2TsS{VqnmvaCxPf*k~a$-{<u$QA_|8bAc)3q|Y$a>cF~&EIN<4l5DCR7Dgwfq?EE
zFm$|5q?a4fbm^1k3f3nj5SrEjwKfsZa_#BXu|VN#&vt{bis`&WF>ruX-;;cc$zE`|
zAc`0Z{tcEI0*__k;YhTzNhtO-iaEo72_PtN7$arPz$j9Cf$V{FzyC!=HnsuP@Lgze
zM=Hn7HU&+-cslN24-`J}QbU4U!?jcL63E;;Y3YCNwaz+)HjCt8XO)`i&_9}c$BN|e
z3Tg{IcNmGN^v_5h>z=dumcMA*-gCb1YTeMxWm^X0Jzmwt|Bd6hdZ4*_9|)bx3+DIr
zy$m~RH3aERfr6?$9BgbVe0q-@+2Q@o&8&PEzBKYj|Ma{eIsA`jB8IwR!VvYc)crQL
z=rUk1=0BNW$ymIPJnTRUZD8qa&@ma=q4ejWH;O#Nt4R-a5nlmPkk}u9WVPap(?cPS
zCv`1J<|fW99E{Ssr#Fr=O5fL_os{935tA9d<y|9&USg_T^0J2xp{<ysTfN}TPZ1}E
zTC>Y1W1C{swX`^dPa5%}IJOw9DD^XB9G(1gGX<hts4N4vI#1ljq9Mnn_O)kYigtm!
zljk&0oA!XlK;}^z_<TZE685#>GElCl^<{i#YgSi~wbBKMO%GP?P>>Ch>kk(XJ&JH~
z1UXwbWdw$%YAKQL?+n88I^9J6Jm3!}z)^DXz(N?CUYM6V?gTC>b#$vR1Q*u!#cZ2{
z<ivmG^{_EXOq|WhA$MjxLq=Dk%Tx4ertV&ZErMP0#g=$X%(__(#{kr;+mXjJm$MM<
zVhku$y8{P@guD;ncUDeV$y<&?yFZtB)E{S&=2wu|R3~z^=vz_NV3t5}60ChipU0}w
zD@p_Yr8S9^C~#3oQCxACw&B4G65wI|>OD(6x4DOM|K|%A+LfPug>jMub$n?XchfLs
zu9qtv{E`;qAV=&nuK{j=c0k7Ji=F7(gafa{=74Y5l43of3VT5y#7cma%vz*_*Ko|T
zFUz)b1peA5nnNlbuXua78DTh|7i>GTdFC3MMphAzw-45Jn)l{Mll<PjW4e`ZZ&4}K
zA_&*X+}0sMOlAo*{hjKD19w0%5u)GuUd;Va;Z2UGi=Lj5d;R_Kipz)k`u&IfrX2^9
z;H=ruzgb3!wF&Fk@Da6*E%7=t;EPfhp(+mW8V;cH9`tSo4acnI?d!WoO;!Y!Wp=xR
zOH)1dTI=iE=V1dl0izFPwqPrrc0?F`Bf9S1QeTfRS>Cq6o-(SdzVDRolbIGEjdBx&
zfr?F=ASghJI3OxBmgeH@yGuD8&`R~cs9eMaJUCzn6l3VH3ohoCp4+=rV~^c)pLM6I
ztIrxl<h^uCcxdJO;9tdo*H9q}QZd@U`C_33Gz1ajGG<M#CKG5Is&5uh08FHpjZ%=#
z^U?JWz`|&{^NYIP)YGsqiDw*Z&yjqc5VC{C@g!5M*C=VvH%9=6<to$#Fv$Q8<E5Yj
zt&$*cdnolP!Zng+z@Da#W|LPE^eI5~h=9N1_3R4xYoQXorfC60_o76^XJ{@4KF`CE
zOoDt?$=Y19%nEPlUPXVP|Cj)UhSLGK8i*!<(jSE@3`9Ag@r%1-2|NW1Borb-Jtyt~
zRFw+T_41-W+OTI5x?~Zhjp&LB+ef&xy|qN?3ekRiy&htDFt1Tow=0NcwsJ}5LhfN<
zILN?7stM%+3Nuu#M#ME#G&7t4yY-^PAxCMHGL$)b#(6rZ1}kv>><@&6g_-X?nxoW(
zx|%$;(IL?vI+VTMA$a`QC?X~RgIqjlfE>$*QUXf$LxJGx{dtM>SHOof@$3uL8V@N3
zYENY)I;6q84uo$kca|D=pdH3RidBrhp<!wJjX0hR;2sB1qg}e5iSPm|5J*5`K^&)a
z*<mH0%8-KO-vLx0!8aOrL2la#OcyJk=iS)R<7*GE%i6$$SR!U1otJrl8ki={SQ$j6
zqBf{0L_1YOV%IZ7RL?zoBpptWz(fG`162s_5mN=HOml$e^esi=ycS_m!^7sc^=H3F
zYiaFr)JF``{e1T-enTt=IbG|<6b&5*SQv-}Bo;IQ1TDl0nWV$XfB>MX8bvu(1A{!f
zfA;JIO!chU$l9a4Re%3MX48z8hP5~;h)TpRkW&uz(z5%3Sb;d))GSm75v6Y(a-3C)
z1V&WDycaMcp%~-Ik#I;TUD!D(r2F<&w97gxX3+PCEmM}>Tp+ZcF`>iqHsi?#h76?4
zv^=2p>`cO^H|s8#ckbjB6y-Co=Zz?REKujh3j1N)Lq$p<+dU8_4w*o)Y(W!QSdp6P
z%u`N4=D&sXGV}7T{jp0{C=WkKD3CB#g;yKMpcgJ6mXTfQLjUC?290tJ&Iwr3OCiZ0
zD5Zv!98gzuXY$6f(f+X`r;%7vp&nxU{1T!fqZNc!+fkkk(f9swDL4U%)hxh8=(3d>
zP|T|KcLV({uv<$*!&KH8oc|o@37`PZR>`kvBbMl}bp;OL9jK~W=4T+UZ})ifm81qt
zt7({6ka<l+qiZx|Svy;+79}YHq#E657a-#Os64;^z!*Gh{Ucqjo8B*xF6{#KC)dbi
zX?l5fc_egDf|CMCyv31tg7OP=K<POnr=Xx}_K%Og^~0mz4(7JoRqZ#r`+iFn(De3^
zb@J>C0=OlFKu@zHs@C*ayGvf*CFlw|&qAbn&2@4BCpeG-{|CXOcH~ry*KDiD6Bn0(
zwP|Ew{rLy!_XqX<5|$xGA4p@6_%aJLbec&X5PBdPX5hDvKIYX%&aI}OfqBzuXbt;p
zf!#peJOL!fr&Mj}=q_P5^XhOmpnm-_iVn&!uh)dJW%Vm-|EE~%@%=rk$vhA|;49eL
zs{$_t0JVt?Wl)8rajwAqN2zXg20+V`s-KDKIYk4t?9LP6F&j{lH2w)7av_EL%lO6@
zC~WMvLF@r^UMga5!66ew$>hY3Nq4ovrzp*YWvBRtblR&Mh%khd;Sorbt`sZp)%L^%
z4s&2WU*s5TC|+;rKo}5yo|_~~I_ckxk``LoVTX4WS)ZsTp){eW4lX)*<xf(Dl@SAn
z23+BQV7tDRBdpV0D?1m&T!;Ha;ADtb#QL%w?C>;RPjh##1xk9gdDcSZ6gKlH%q7I1
zM(L|zNg#e3qD>!gtUHHFzk*<SL?we+0e*G+7_UoOGp`$@7UqC>*E$bEvz1G6@(1PX
zfy!2bYB7N|c|}R;;M5wN!9p`M+@Ke&eU^nK_~km(xA9_y&c^21`m5ei3IDnEKO^w}
z%n=xh-^{{ORZrT7$aVkax<&Y;vJq9Rzo~fR2f0~)RZ3;UZm+-iDEt4Vw>}Di-PPcr
zwT>vVZUFn<&NE?zFZ?{44gxOUlvV&c3iVlQHx9CFbojNFJD<}X;{3y;7**-richaa
zN|*;I#h#T#k@L#sxNAdSw44yY4To@2Qdl{T^89kJ$}coklvvKn7scFWVBRnN?+pty
z8fxOs#{*ESc#uR>6Y)gjNN~`Wx>taGVowhQ1r*%o6INrQwaicQ{JmkpXWRbHiW4Pf
z+ZD+{O9IDZJnU`K(rpjS3666LY}?pcedp{K?!9eqQjkBKkys(<!n3?p`{yUmaZ(1t
zO4t=jJPe`l#tW5U6aj{~gvogQlmg!noer@2N(Wi$&TV)ew=zR_N{U~C5il8t+qF3N
zJPHT8V}2j2LeTLrgU2G>fYL`feh>%_T65zSSvS<Iw=;DHS8&XI?_6~_?GvFUkg?#G
z!Fv;$#B$}rxtj%KlKnn8USLFAQTo@8yYQQ;JX1J7)H!ARf#G7<VKnnclSp?gR)fjk
z+Pm65?;S^efJt|3gWY86(vVhpSYr2nZV6kvsBUdNZc(!?Af|Ug7G=^-p55g|?Bbi=
z`dq}zeeR(+n5p{1L_|BT2c6RUHzw(AB$^}_979HAK}E~#iOAUKf~hb+&z=eq()6;$
zRoY~^^7;W7i{OnpYSXwvzE3HY$}6L@a+Il!y8)p<amR>8hiI(~Et}e!6$jLeSjPja
zy<m|(_QRJJefaCI`2h!cjy+^94mJ6?-%o1OFUS%+P3yC~57hmz6G8z@9<YJ6p-@%a
z5MkO?*yjUW-cNF@VJ{mSBExWZb%i^g{K}$Hm#+6@T2^x1%(FNG!(*)_E%s>d7;U|i
z)?Q-qzVu^Yw*K<vAF$5#7Z3ix30i-V<=)ecu~~ohKezs81pZG(KvQ~%MUnJoI%~_y
z8JP7ogZ^l-|1o@8f9nzZh77I0s93u}Cs==xrT652ZvDSC0{_i9yY<n0ZM0z`)?fUO
z#Q$dm{(m+C>*(w*Cnvp-_4BCfBJtX&7mn!;x&j4x!!!Ni-Tz3@59r4Fxcu+)91fm`
zbHgutzF>avbk@GMMR+3)SbGf)9sGYPMgn}tJa|B9)zfbaaWUHHDa&)wwLqdSqnNf1
zrmWxbzhFUWdJt)$qwDAztS+9|#{8=;V`ZpE?UQf*U%oBBYZX9!*Y&+rl=)f3q801@
zny{dFlKBecb@@oEUHNlNnduKJ?yet-UjvcrIGu)q9as9}y*Y^Km3klPT`*^+M1s%F
zde23!3`twG%PsVv;78!8uZ@88;WfKCRx5KFy?tdJw|p0KIVlA8ywP>{-OBhq`WN8^
zY{8<-J6AcOxO=73uXnn#qHT$Tza-zh5GHgbiFpT*Z$zo`&^6X@0zE+pw!`269ovd;
z9vq@75WRYrcWoK18h9hO43iDR9MM*g?`mZEiMnYm^IzK`1%)AauTDr%-syK>%}k9K
zT|u+$?Yq+AM^VMazBdJjR-4D-__Lc^I{{@Dcw^i+9Df)dt9W5WDP7iV&bT75`t8p}
z2b)eYpKSLtA~3M|^LiW_9?m_=j6_x@^T^83qfexNPEbMf`n>bNb!XQD4Vh{HmNUu;
zD}l@E?SjJgv^Ci9Y?5{JYP;$(N*5FS;lRf5`+tD@<A8R%St>BtO6JL6%g#dn^&tsL
zQwc+}tXOn{Z#qj7JNT#tBEJyfd~HrN_YYSV%A>P<;piL|T+gLo=%u3_Aqhr{K%x;X
zXHerty*BZ!XI~Z2)nICrR@BjDUBSJd)AeBIcI6uM{q@&iG|RNBS1{y!nt+1MNt1|s
zt$Q&GTA2@%aI~UVsqGPtC}Y+=Un76Cmg?9XNA^*dX&cjg_)5Z|LdPr8(3Vkk{&Kmv
z;nJd>@q#&`+On;kEMYXk72B%9#)hHS{f5zBcsF11Sm`KF$c_{x{L8`ifx&na$75Tz
zY`K1;Lli}EbwexDH2Ciu$4#%UG?V3y;IWovEaXHv@D(CDDmmnY$%lDNmg^@RF+>H|
zu3hmq?#V9}McD!Ycn1bG8*`!c8(JRTJA`w9Mqqozhei5nVIkUAeuNS)cy~;F^I@AP
zjdc9gdq=AA@1{go%f{lh-P}=`<eO#ZSYgC0%n{<?>zjZ-by@mXmZIxgd18k2B|q1R
zl2ch$GknGk{WVvV{@P*R>R)AIVr$z(r=IsIo3<wGgJB2>f+f$h;{3+}1A^t?Z*FdE
z21S=Vzn`nWvf8oBy0>5Kh8>=Jy0>qii<(bXgY2G`acWnjcQ^`y<)zdpG?jHujr&7@
z&qfyZI9^NlsSFn#NjwJYBA&7dHrt=H0Ti7Ze;z&XyF`2L#bVm{EMp58gug2TsP!ps
z%mn~%wn)?u`M!J^uU>cVOQUTdAV2~<n`cw&>(4{@PEc#g0L1*lg_B-3=j!u*VR>zY
zZpt*8t67=7N(ic-b0UNeuGb+q1z$ct_%cIiXl+C4NW$yWL;sR`;oQ(a-#H~r{L6>W
zmj36R=O&z9!=FCW2JvNoQz>v($s8?v>4Xm-{>opF>Gn<5GUP-3%6KL&I!;^QVb0K5
zP^o|1fO%_w>d1uLovGtRY<$>oG+hb*b-La{wLxFI&R|uHqQ_z$!Jn^_YLCzsI0$Te
zdhtsLMJ3GhcIMV+8$6QfQ=3>uwGb#nHp)K<dWXYYZ9kt;>GW1KR^B`Kg@;ftS<b$A
zbqwhS=7m)H1<)KxlD8Tq&X&F9F6GwJmoxZfkK^x1XB;)Ui=k)rtD$8#_yiWI$k^}+
zC}Xvp;`1`Y&KgmfpPye*qjhY3eYT8KYihDLh*vH*Oyu)8pnS%|q0OY1q!?IjuQ|j4
zN^1>eq+Q+40t8;rH7ojtPS8pT34(dxS%ECPgHrVJd>y6Nb>HaDfBtF5S?;8jeL0bd
z2W;$#<F@C~)!}aHz}7qhhufd4b1B%_z+4+n-l@Ni8b%e`4xLm~YAPw}c3#b-bNBg3
zn-h(LR>o(&9RK$(J5Fcb%=9;se|s89Y4nZq?|W9d_eAffb*hBp9T+5_>#gaR7Olxi
zsL6}whW44q1%S#HR$krjci~hWEP}(8JM8J$j}H`>>Qj2#iZ$Xfz+x}lzP<ho3ws%?
zl$v0uWAJ9pvBVn0Gl2vtqnlB4+O9<+=d|uPkAmZ6^w8%YSI3ysag6InO=lqtEyMG&
zxyd&Xgl(b5<Ium~$-e~!aul%U=jwt&<Ij-s8N6F;f|hul4m<lXlT|}0`G?~~#^06-
z+C}4yU`l9pej2GED|qaIgT>a&`=7D1Ux;s5SBkgn+4s6lxG1=Rrhuq__5}#=W2SWj
zleCgu<$3l{S10SeRhLEj1plhC<5@N2wMRqSmfv@vmA%>yMe8xwOf7U`9Zi-Gg$F@y
z-nA*uZ_yZ~4D7m6vA6<SK2GUEOm_k(JGkoD+&Ea__j6GwC3@`SRivt!SIws?_0`%7
zb!)rm?+l0A#K7JH+X1p01gkP79@sED42tX+TR=CieUHVTM#-D*y!vsY?X3nD3##*C
z{EXe|#~lCNS)|0iPw@6i9|r%mVk8e7yO9jaXpC@e75wzR(+fgzQQDyJNc4)x!Kr=$
z9@I*2=ce@b*`3pHB!l|R=StG*h*j`x*#hd+4nDNf8Aq-a?_$RV8SKYlV2RmuazXv@
z`iCoTv+U3}D6|p2U0J0f{maTr9xEW@yFb&co5%R(I}4pWj<1X^3(J^5sNZ0h+@Z0!
zg_WD5pSgITzjipnO1gdfLY`fFRd^RpVd%oj`z+CVhF!CBx2LA^2m&kKonlfVbEoB?
zR&U=$c6J-#JMIjxf7XneZBCr`@v*r1I-MsxSZ!i{znZ-%k9x<{*JH<ySx`a9(3jbC
zEusEah$Vl)ahzG2$!y>HOrCyv=qB@RPy$-b8Ia=S*sZ@*2mf4fF$*}M$`j^P9VWE!
zdjO}CvOkG=-`!hNLc8EE#SG<yT%2}3bob&_KF`-n)?hk9RtNNmaCFx))=Ii$X-UK4
z9EN<~<V%Gb>Fb}HU*_kVdrt1*v-cbw3*<II#tsZ0Sl<xp<gmhp`$pj_Gq$RbSPn6T
zJ{RXTfBS;h(kx`85F5I)+FqIxtj&a~*&hBrmACcq@SeYL5l^lczfC>wKI116rwWxq
zade;T9{8p>@RX<{-6w-06iPy;Ppv#*MR>dokPc1H0CQ^7o?8;0{NgsPIVgCQE8$(6
zp%OMWf$tx%XQ1h3i@uCCG}L!#{6hRIAy+b9D>MH)olN>?04HDS-uTwFzjYv_G&*YT
zoiJ{%3XZ0~lFx+Y@}m`?HzG`VY0f9e1q>1nCwBIZ{OmU$a4u(agbbL@6Ew{6rkh)9
zx$?q7d-vu}>K2bzM%`W1rARwp=vAe=P0a~wN_n?1UIPx3BE9u-=Lx7J=GSvriI<Zj
zhOv-FA-GTi@+q~kq-cf6*lF9ow|i4HNlZP%oE^o#R^+D6Sq697tvUFp_fmq#+*%~?
z$i&Zs_kaTJldaAaVSbL4!kX8~w!Mhn^Kv+6gquL{7%#yLSA_J`9|xMPq=D=50A)s^
zJ3xs;;qmm?%JXY0+iCo(bHx0$!)C$F4Kp%lW>$lnNwK6ZwK4=!|F+cH&WGKP7s4_P
zUU3PexiSe;EjT?nMfXJ-hK1z_{||c@@c-UH<Mp_L(~Eo!ki@Iw?}u5IQ!=)?<_-NW
z#*<q(NPnd)1UmRk5AO|u-0UvPHrUjr3UZY{cqMW6v2k(WBSI0otb0y2ZN*Z#c3y<e
z@q+w;_aa{>7)oi&1V&CftwT)Rqp#JeQ!Aypd~qgoEO*`t2lXfSmCJctnj8NIbCn<u
zOkK47Qe`x34Av%3kC-_7RT!7-59_K?Xu-t-Uv28cw=cnmcekmj&&9G*Hv^`&8r{0F
zm4LdY`v(Z;JP9Xx!el&12G`ZUJCR4+7Ar8GKQ(~)wh#*y3XSNr`_wXZwLDi<wBi<p
zIf%(gQS8vc#!(Ex<6C(+_M?kSr0t@ZR$2J<q_aUFuE1_xTAU3EQHt8Xr&jtfMH;a@
z@p8*|WZ!;${K~LM{%~{em4UNeD(Y^DhHhTjTNF@hcUBWbO^hb!t#qQ3OHJ0t2(2dK
z`K`P`tk{KAIrkm9*&H=P&3P^Xd@k-y*2Y>eWwKaDl0ng_t6ZYPz2VrJW-d}}q$?KA
z>87LM+QXpoMRd0N`equ6or-arUC`_v3G$NbYuKw(ZfyIh*m@abLMjtbpi<573!Ol`
zPiwa$yN;o8VR1b2Uk2*5Rd13g5%t4`T;h`16vgnzAy0%|ICJ@YHvdJL>5+DsQe4CK
zQ~OSjegCB9DZB4xjlIJ;wF_lPB`7J(8;0O{>QlAo6osh0Nip|sTrK_D)ADv98ZC}U
z!c^eCt*-J55AjNkUM^xW*)k>g<;zfM5F|X{UcAAKLZZEA-<#u@8|6v5C*7^=2N;<T
zPwhKAW>fu2-57qjsuCci6c)zP??*<SRB3CSvy1vXJma%dMn0pkXL6sBlFS)}!g=a^
zf1pHOekMplkyniKe6N5!FOo8mCB5!Ike<(pCCvV}@ckDMzwUAL+=9ayqC&U>$&iC#
z)47OE)6Q|vgY1+}_voVnd8VNQNO<Ty-FyKu<8(Lr_&*%kwY084(H=TOEUVG&0W_sl
zj5185qKS?3=OgRV9vLzeJmz=}G`t1^8RvIf4{HB*?l;o|1qn{ap8wU8V09vaU2o}y
z1$ENG)U}KxZ8&_`_{6R9U)%g7n^YS8KDrKBj2x`2*YruWNLSOinNo3jjAaw)_AZs5
znj%;}Nf8t*&O}9p^!{tN^G})0x*4}|b6wp_UEL)ijlcDJDVy{MSVKmN4^!k%$8PH`
z65nX+Q-8NfNvV_`m?*{Ab?F@Sq7(<*i-j86QUif4*T0L-v3C1^_$!F9_gQwW<SFxC
z8fwYLnDVVUGy%23gFo*W44ZS3U-&dG0{2xNyKSZ2u914eq1LD=$tBg=z5SGgS&5QL
zxAs$qT9G(4JB)$HtmNr^%cC#MRKmHsViV0&3F7E0<tA6SKW#6M4KXKU?Vo53o!Bm&
zKC!B9odTr{1MNR{Y3WN#nb-_*SM|s=ceCf@=w%0$e5X5{@%!s2v<OSh+?(}nDKOn|
zq%gVL&k)kZ*)PXYTlT1#Rij4H=VJ;2M@~<^`bMqW>>{ymi-AMuc4}L_gs5@?v+pPO
z)XK_@N6!7BIiBb&H2Wzu!5qKYgr2W1+Ry9u<@<cc*N?^venB2W=#=nGXqZ{RsSMZO
z#`9^*EyaBw1E>?^5>b$e8BTr;m+EJGDdd=Ntv{Q29Lz3e*4MY()Y#i#pD#618X*sQ
z#$GjMzo<F+lT`QX-|mYxS*vSk=!-dBO4FN*4Rmvdk-CIm{QYY2*QkI2&m|}Id$k^o
zePMUJ45}j;7S*`ktbi<9zZ`paL4RdHPPpvQU#?3v-A;omL?eq6Gt{*~M89nxsbyXF
zkTmINK2vG;v^48vq9?6Lsw!YuJvp3FVS+}9lhPd}E0SqFBX}xMAjVU=Utv<aiO${C
zy+5yd;WknG{4Wg>nfXVtwBZq*E$65B+)kqBnAps-eVi<vdvGH*QAgZ<;WY2^C$;Q;
zUb*4;SsaVZ0u0z2B6C20fs<0UV@=_cV-v(gpl!~`L4K6ULQQz?KO6>6v(qd-(zq!M
zeQ|yhn}MHFqxW)5@Xd8P=@DBP1vbiQ$@*c`YV-yBWM{5kC4B2obMyC~Bkw;k(jYV9
zUZ5P#^~MlJuR6-hnm8|}WsvK!lj+esk6wXI)<(mE=)LT7^j>FA&k|+$gmBINNU4#g
zv=4EKsK1vs)rEf+P$KiP_B++U=zbY3HMKuQ=F$UMiMn`hJ9bf6&D3UY$x+8pN;5s9
zT4%W7xqPVKgg#E4*z&ii8d-3gm71w(iAm#dC2<T!v9SF2jK!OR`{b9V0<v<8Ra`n{
zgv~#x-`_rAUtO^$EAC)&vbq{)NR}5ZdM-EIW5F*}XG;83ot5r*qdo}RKCR;L>$^4O
zEfi~4B;?9*W$AZacV;4TvfOLh;!S!@%PYG{{ipPTgU$&!e@xSJ!3CEn63*{@cphrB
zo!d+!2`IG6$s05YY>-4C4&Zfsw+R=TRg&NHkKDb^#6F2sO|4w*>g;TzlJ7UJN={7^
z#~v%~#Fy_C&ULNr@#A=z>ujA(a~SjZ9*eE-i3+vuu4&;FzjODb>+mzpDPi~70!@5!
zdM6h==F-CRO`O)V?OH};>%cZEOu2u0#%*=Ne6t@~qr@=+WLcc7olE5x&T+rm*XG1I
zhx>l6<c#uDIIm#bvt<B|hECcWSvz%c+sEvosPb^1&|H>3bVzfV#&>2G&*^oKIBTLN
z`>a_`Zni9ha|H4ei1q{(;W`q<m;uq?F~4x<^9EjC^!CbbrSjmg9;1Ci%F;XDrW!4$
z*eV=s)7r+>qL5KA{6^Aqa3GkOacXsGjFvCYX2*VNsZEM{b*?<P`cUGYAeqF*-7mt7
zEK8mzB{MuH2-3Y>C!W%!Gbx7iGgX`yFI-c}mX5^w@CG+y{7)GAF5XOOq&&^kes<mO
zre>22{MDN81*}UX{lqa)tDG0F)##`fWVHSj|3<z<G*?1HBS-sdPIg;cdRB5uibzA4
zs{Cr+y*kTd#%&iFCEu3jX9Fh6hsEGn!%w5<Qk&BPRWhTvl<<;g%xd$+mEC7AORpC&
z0bGZ}O1CY0G`-I)miC@c!qjFboGEQ|aPFHs4AS%Z{J31VTelve^n6CQrm2@Z={@U=
z-<vnp!7pLKbS5k`l>k4H<Tan9kYm{;5mwSUK3AG}&p=a3-I^r9E;6RSn>oyn&R)D)
z^mWW-`IJz}J*#>V?|+pn_fPbE@E7v;;VV{RLY(Wv8nKT(a6i`dkd*v#zF8Rg6yMqB
zodZTWg=Zc+S$ul*-lrT^m<(N-#OL7{ur&E<e;vWd(7Ii7Oyjf@ER8m~_SY}&i{>iv
ziplPi6~~1QAdwd@CS-LwFkQU2p@$O1Z+!UI*;gqULG}isr<SS9GI6f}%aU9ZdWf1>
zEp-3*lKR#WukYgWYpneIS3FNl=Do4P9nV}q@ph4faOS2&XEHAj?YE-xavI4cQJ>S~
zQf$YIW=mm^=vAzs&J+&M-7j2p=fA4>pwYUCsP2#DHR5A1_?hXnR=;nMr9e5ba&bBc
z#C)`FL{rPY)g(bJ`cp(@&~eu`gO3lk1<}R}Pg#3{ns}vOBn0b(lW%!Q4Sd|sO1PlP
zoC&0)h_-nh;oALp`9%lgW(3Z&3|g^^<h;*(TKvTEU(fd}`V@`(ixRy~`Te?eC3V{B
z*T2mMm4lS?C0?;&%;?wq?oO_3>L6>^<t^R`MI##U*k>^-HJMBY>z}6;&YF017EL%^
zP6V1yxEJMZKo%@iOmoRpkCuv|A3Q44bD{0^3$LzpXqa<_`{?LHfmldiyNvNMV#W*4
z<Mtlmd7k<zH4|Sn9vucqRmfsqC}A}(?@FWU&KbHdga(XRXB4Ix^vf-`#F^Af)Pip@
zYBVwU>c)%N`fPK2{Nb`qtaJ_HtOq0}uW$<Dlse=d`qV7I!1c3fR(?-8xDEIEs<d=;
zCY(QYem1?$#wO=+gn?3VLOw3mi&xzizus54q~YWQ3sN=3_>;>2MAneLTpny>ZW9K3
z1SXeon7sbcR?55lv8UW7lkr=Pzma(>BQh<M>tL}>#n3`xM`M`!(b*{EvC?+?IVtX5
z!9?X7-D+W`HkrBxoRN8+EyHfC*kSc6N)QvC;AY4g&wneD>jps;&6PR-8*}?W(PK~_
zC))YYi;lTg&*rT<3fjo8aB*=ZOX14Uu<+cPdb%^aG9V-0aZ-rm=e_&b%c?n>#qH+6
z5`zjlN(tZ2EpBEL>s}dNJizFA7)x$3EHyUWU6orUFERhRILNy2=(Xmwl5O0<I)CL1
zwhrjZB|-9#qlR}?S=0Ymep)i)Oo{b?BzW&OEx}u9Y7_Y;wQ1o}URKpn@?y2pl($5$
z5r)TkV%A|i7cVS+0k24A(~7RKsmDZ!&u%_D^PUxVbtTX8N~7z}@h%U<f-QtL7J#cC
zsbYZ?`1sCJ4tPk62$s}2XKup)B}@WiPaMl-?+Q>@vgT|TX3XZqhY24#w4!MOd7W;g
zl7K>YC;b~Co$lq++f{6;5=maDe--jl%hJ-P*HSg3+bdan@&<AC`{4&U(qst%wE&nB
zJh+rW@Kf8OrB@`D`s8GH@M~n$Q>qwh+qlnYyD?FqwXKNNp=PltkEnEFx;rMQvkD%L
zhH$fFrj(!m9DXD-GFaoFBiLeM|0zDRfJR733370TSQ~lQEVWq@R;}o--e8o0yVe~(
zJqg8GVWkc@b%5!|$H?ulp@xeRO`l$qqxLpjk5zWMJihnZuQ6yI{7E|x)Ct1`-)oxp
z{pRCxx%6i~oPLN{u4j3rc240N3=Mn{Ta0bh;&iQ`k(F+*Q+Kh?o2Iy&0S$0^y9q;!
z;dlFoFx>`u7a>nZHEo2c4{oWg@AWbJ_sGWwH`$;K&PqTQ_`c}&^6DXVlj=d?OW;Uf
z*Z!_R$hZy<M2bJ&K8j<n0`5#|uUQveiIRL#f$UZiW{BlC@j&tb(rGQ;jc&^8yk|nx
zZm5sS=xO~2FQ)fJ)TZKV{$izyC~==0&C|zJr^L*b=nN)qzv!Yr<ntd1Xy|#&ieoQP
zR>}4&0twF5)&9Z;PM{iR`%VQ{wI?$}(IT4A45SDr^c_rz^C^v?Iu{L*vk7LjB0m$1
zhyV&NrWTPd{%0UI<ho*Ra*E(``jz)gv{5nGZzEkH>U`baFG)8<`r5mh%kfh3)eB|d
z%9%eoX`7OQ0)bPt65!;DFdma4I*nk#*b%0>0_tCU3K8-}Kj7+=Rb>|MV`Dr2GvB_C
zcuCnx*6kIN3{Z8of}e**x%@Ifo63$CjpU;7bsZVoOYK^m!CdYx#Y}RjRuqyG>`(fO
zg^oy{Y=9M(H63WmN%riYwx;;02$0T0xx_=xPtK3g=^U_nkn?<E;^WS)J@!H#$V=ed
z8slz;PaCpU>8`HmPJMe844ncvm;oHvrF+wZ)MPaKIs>RH$iNLm&DD4uyR=QAn94Ju
zq05DrosTPy(YjDJ&21O7c+(2sp@4=&QGNw*LVu&HH~B@tPyoiL>eywgl!V=ht7;ws
zI{$P-`}gYPGQMRKr|MFSE-~twe{4jA6s>9BfDxz~{{ff3!9TE_39pIFE4!9gZF{oF
zYCcm6V!M6nrAwVV$np+N>D18=)%9sG)>7SnqS1)7d&UjBu`ymklyG=8kZh;6S46Bh
zyV*#BpYja!@T2S_$?s8{YxLx+3+$2qKf3iOY0kb-p0e<Ewixo&xs{7$fsDxAn_zZf
zLGbeb#2{DHx)G~f{#R1W!_P)CqWv|vv*H>WeNJ7lo-j2|5@qw*0{t2vzT5)G8uRU9
zSb4p~(>|v_by95eFdbQ356{j;9{0<JBoK9K^oYF`6$>s|`It)=H|p0bwFGHd8t8&$
zQv)LlYQEbPUroi^ugT`dATlztMi<J!T10kgK^v-D9eQSECTyKzQ1EmKH&(4#6>Mdl
zN7PU^FRO0N>kqX@V)lhPaC`+vmrk&Q^McWiz8PPQa0|b8xK2fZRfujO(5DoLNmYwz
zmj{w<XF7cdQ>|&iE@+W~#?2fAZ&f?BWg$g~Qixv(OEw4YzB2+%^b3h+k1%0U7xsj}
zmH7f2Ptfk%svP8pY+BkGh#c>pj|xl2n;3HsUg^{9Jiou^n-by|6zWoNpB?<1A5AU*
zy<l!*?}{_=CvkukdJnmb@}sS{qepDP*VuO$0$xxZwWL5!Lt%06=Z}XE8CQJ$*wdI`
zPprf-&UaZqQ|kvs7ytz~iYHQUFVV1tCwI`lB=wX)zS}tb@`0)@U0#UVBMtnqOUp+W
zr{yIDn@hPP^K2|-bBD59+>BJ5XNn(qEJvPSmX@bII~O?j8Uh_S@z~Wj_cq^^F-RMF
zv;XXC+%`^6?KJHL8X$|HeNfEIqZ!`V6w4z)A8jQ^ZSwYN-JWe1XtX?hk-!1NCIf*J
zbMRLGQG^-;RX$V*Q<%Ln_A#)A<!1svq8ZJa&_a{*V?^=j2HkVl)n}4#Mv^V9z({j9
z-_vS38#`j(HF^62ccl+k6CvF?3;bggp61wV#gvanHQyzJZ?L~gE3G48Dzd8KE}my$
znYokV`1fBcd#^t>1kl!t8#L+lcV3hKJD%w1e|!Fc_TRBb-^r%}m{O-PGm5#T@3g=l
z*bXfU*rFyE;+Q69)$-^)rin92%uX00IBk&djUxx^O_)sdP2Pi6hrFo8ttX)~wQX~2
z-syumiK9FYv09Mx8hqp^k=)F^BB5}H_Wdv;w`>2$?$jk5Gaf#IOzhOrC{6*~x4)0^
zojsW8fJ`Z<zDrcJb-8xc@!P@*jQXCSzDinyI-zXpAJC^Kt`?jj2FMrG3<N<W7yv(M
z;EG9f$qF>x%urc$Zczc-!t?RLjv!xOWXeGP)`Vv5>G1pc`D4b)e}F-xQat)Ef!#90
zw*oW+y11zPW#S|pYe&{AuiMQY#kcYH*0EU<xM3pr9X6f=wbJ%CY+iMSPvwKjAVTC4
z610Afa_u`_SFwxm$Ah1x{k?^rMg=`ft&39#^y4QWO=oi;R?0(_9pDW)k7?iA=UGX~
zNdXVRqajPqffo?CSz(3=%3SH@HRu3mLEyhRNrV5R?1?v`<x}MxvWa2f>zmaUip6<b
zny)V1mha2N`9=tTLErnQW)`2Ngd;PDV|>Jw*&BJu4YkMnGbKOt=~1SlS!+A<_bvRf
z%hK;k2Ny>Y@9gdDzz&pP8ozMXJUuO@v8rzE^{3|`Vih#$hA3tKiqGhH-AlpX>B<i2
zkB{?~ON6CJivaHoToEWhwL0x)Vf}jQ1wx74cO5!hnr%5LNik=R4n!g61k@^bo)JV0
zuK-m*XDAY`3zUO~YsjAnDw?p*-JgOK(D!bvco2`&p~X3wvrQQu5`s^Q*%?{x*S<8_
z+0MA9r+>a8aG*In;dTi!rIk4&#t`R}3oqv!LeXR6jOEaxO!t)c^3qGsI&Y%&Nu#VY
zF<y2Ue;w|7;w`Ulo1hmmJ!Ik`EtAXOZ=5tkY+sJ{;^Ld)s(dc+Sjz^$Q!tOlfW{4g
z@OBzJVKmeIZ}Lp0AS?WEy#ysMvoxl;WR$++!UfNn6LA#Kf({wC8)giaYb!NlRnB+4
zdDDgYfFWHV$H*D?UjHZ>L!Bb%?*=6qGglNmvWQT|>IycI*{V3MSo@C=s6~QL>4i1c
zKMD+UtVg{dI=?+|O;Xf)wA5|qSW^^|cL+@4Q0KB9azyP>JGJNrP7)_+2e-5&V6V9t
zTH4f6$bYrGpW(`g<{Xgdx4Lmt9UL<U-1ib<Pt?!IMMj7y_%1`9BN3Kapfja1^InL%
zTvvnh9QxF`5bgoX6!Z-NAp!=w5C(!^Gh?b+!w4CmxRV*KA`iB6Mrj!4Oo@TyN+D;M
ziE@I%bQq73bH7uKP$)D1@HOoK&#AL%dhj86RcvZfqejw1RsB&9kViQS0Htk|!-r={
zBxL2=dFFbnTc!=2o6b(vl211;=1$8Z@DyPqBTJuhmLpSAboCkf1>70k*`z<I-|x@e
zNmuz8aaOi_NTQ>|$_-_pTD$6`LZ3caJ-ODR0%@6V8Hp}WXPVlO0dw^)7h6~aC}t(-
zLFOydA(LRItoe(&ketVX{abOfe`NDZZwJTG7x}NK6%+LBThwYoPxqZMoBo8<O|EM+
zzy|%rczyn>*AUdI#7n;px*!(th9HI6!B_JOA*VpjO2!+t47m`7{Lhve+(Xqxq8q}S
z`%m7kOn~9epU7zMnK!|ArPEq9Aet44F__m*ogmkae6P5#;0IuR`n6`ujK7aJ(-DS>
zJnjnjwO+z+o(b>G%YsAyR%GQ8p?_y`>wu~F@MZkwQ5Bd7vY?Mn{$Q)~GaxT=n*iE=
zM%nHGpU6qjvewk%JwXabkru{yz&lVN>J*&k(SzKqhT4BT(y+@0tpGXvlCl7U%33B!
zT!4_d93r>!vaPib!40H-Y_|(CwJ(X*T0XIiy{CDOyhlx*2cdjV3E5{5FoOYrq8v1U
z3AoSP_#tp`Ma}iOwXQ`!cId(@WPEDjJv0A0zo-5a<QleeGCc|KqxNjm<orA(0=9RG
zNcrj{v(R(V65py3wp}!>k7mNIsE-(s1@b`oOp5hI(9I&FYuB0v{)J>J?~j5?gr^{c
zxv3bzQJPr|;4zkGlTQVqPZT;aI3X#*9|t`D$YdfV1J0da?8^bZ-iP1-$ytb!1F~x)
z;b0dNmN!Q}=!L#E7ttWw)Z6FJ#OgITSyV(?^JJ7x*3W-e!}%eE)jb*@;5{5sGQUBn
zBwiYeo5wd&0lF(k&@CEuba#M5sg#>>b(EZWSj>9v5QusTwlBAXWB5O)`|h|VuP<(_
zRqMjyV#rV&C^AGvWYY?wBA}w|B?!navV{;_h)fj$1tBO)WQ*((R0s+(WQC0qnPHEx
zLh_y)z+&6q``7!=n|`Vop6AYU&-tEtSM|xkRL(4F=xL!BO5U!+nAQ|0rAJi!<wVr6
zP5pSVh8+yHRa>DP+LKxVjIowGJxdbd9eeKS+;{g)g3m1AD&nqj;up~j>kcIkE{3uO
z=92C^Yu|?DgGnKgdL2M)MtLAGP&>tM^<*H77f3GxU5#kbe_8&xz8Rv4@@)JrKurW1
zvJw^KO;-Ai#~|@j7U^;nWOCN*Ge0Sb3|$MbyirG#Qa<Mld$mBN8Zhy=%mx#WZtz8H
zqRPyridg-zNgphQiGHuI77}pMB0aRPZvG=kXtT)<*ZWN+tHyHROg=~n(=8OwYQj>7
zV}!>YE3bf+rdONpRRA2x&vB$E^x|>H(%2vpShUJ->T8h~Lfv#hjhm^O5;Kv`0JY7i
zS*L;oV!!_62{@^CV7<sD6M6qWF*V{(CI?yWtfd43AspaZ)5ipQ;*zX06u$V-!4m`b
zXN~v`0fn_X(xw|ztDCstXcbho0<`GNrN!;6a1xr!pE#D4nmg=e8rTW`qMXr}6}$$x
zim}j+K<Tk-8D$7p3b@bpvKvEB)$=#Oo(?D8ViZ}^Z=T4XTfd%<)A>As0y@Q8%>!>?
zy^sfwL<z6x2msjq`D7eGWWV>x-rlXlIq}WnWVHkrFxfvAX@u+RoccYSN|CE+L$0<C
z-P?OMP%0#y8Ca@)5nnEN0eud2(rhwHwJiCGNKZ2Hn|-qD?*(Xb^Ou}@0-S>Dd(5@~
zrN1fdNfb!d7RRDET+J8ITvI28^PKfFVntbUeX;sFbEdxbHZUvoW@USt@l@ChK>^Ei
z%&ZfRbSFn=L08z$33+*Hm%-tqS>ZdmGrt$P((8@ZUyv_(X@;u+AA`eR9TVC6aPMCs
zWzt|~oX*PU-e3O|0F)K9N}vt3W|e96DqHBLKFhH6?>?-ab<(VE0U2(Erh@|G_Uq3k
zVdYCeLHyKI)bpBJUWi;V>b+P>ZYg^!z?H1B#-%7HG}WdI<Z}Z<9rIsbIwN@6^I0Lj
zlJN^Dn$~iMxxZD6VJyugQ^9<bq10OlSJVp*(?3VuVsAx`PK`%Zcj%Kr1u4kH0Nm1d
z2_)(W?r70V4nCtG?+&JQ6Du){)2zi!;bZXzyFPfm)g8EuJC~VL1V_dSpfBkrI2F@R
z5iOlX1;@03vlUd$gFUsnNeDpmhK<_vkj%fnWF&Lfy?vXMX|@=Y#n>nZz5UW|CG^6s
za7ZC&xoCd&>~mm(OSVQg7KQU}7XrC)<xMu)l%TsHUN7q8XO<e5mxIzLJKxq-&|{+=
zQx|!{w)u@xZ?d-DGmQtA)fSkguZ5;egHNV{BOj#B)<ZNc-Ld!FcvCIhXJ>TUwK1I>
z04ubf!Nqb>>ea14*y@4J4YiEx4;kZPin5dd*JD>73q%dCzRrjEio=Nh^Ti9)423T}
zf#dVZCm0{NUebCCnBx!!e)+6Jm*RB4vheUdMHb0&H)fev8lZ&)AdBeQ$q`n>l$7Ft
z_9O;9?3)4ZBD)M5IBEUHkZ~RC0Hvw=E{F8>=1h~Q)3V>M?0%vID)VV`^RvhW<h4mg
z0O3aR&4|*T%6#>xhOb~KF9pr!L_QW~^|(l3aqQ^NsBQfG0)EKOd487S41qV;PzO#!
zRsahn$hUj8nwt^H4$=CMxw^GJBZ6M*+*I?9y%oSmi%AD^t#sRiVFCGpsEyHOw?ym-
znOxeuKs~9BO>LFWkW;jc$6c6Q1Tuht%!%vGBDq;ufB`^}Az2pTLh3n$Y8^WO^yhSq
z@QFosvTyFgUeB-6SaLKC(%J=Yt{?`A{$`W&c<u2^ZH^-a;2MFP@tU=)3+=NI=F%&F
z5u!68Y!qU93Lo;uN%w(n{ye??(Y;eFEJzP(Fdjd2U;v@sR=7~eO3e%T@27G^qVa4%
zv*E<&2<b&iyE)9vWrl)_ASFy<FUSB^1F5kI5!c!^;(>?3%VW1W(q+8gh58`g=)-(2
z@#a@g54*DGTCTymf*^pbItuoK4NGd|QWE6`_#-oQdW8|<o?Z+>LW5)4&7*Md-dM0O
zj?;j{@lrw7WTgu&R0&~@vAJ-(k_1PMJWx5ZERU6LljQ-fsmdtt&6F0Z1~M=iHvXDF
z@+5;=)M`RQv}26CtV2gfz-f9ktD^j7uk<vi0NT=~VDYTr=W79Wjl8r7jKE2FoOv4Q
zBe%<XvMUyb4k6wM=Do2|RSyo_E_Y2oFkd5o>GLub_>*Cy9hjLg0#m^;%4Q&BWG_sz
zM|LR`ngA#%+)+ioqym4_DX?<_JO$2V>eW+gN5(!gX3O}axFZ#OS2EbPk26%ey}Qbw
z;#3B0K`O0x2iysbC~YwukRsyqloF-eeUdNYFI|AycG<l`psOQ{ZEOX?tabl1<3Q!R
z*nmei8IJaQkQeu6Xl;_M$x*K}5>#U$k|7uw*K$b1Jc^(W+r1wvE6Gt){iMyXzanu9
z@d1Q%@Yx8Eo+9YfdaQ_*Vfs!snFX}9gc}#f{vCqZy5OdO<veb=Up72uPD^#|`V<c`
z4=mr?cMj5wPujkJre%!04UJ9X&g#SIZk4@7b6_R190bK~#9{w=at9{$Lr(`f(4+Oo
z#*!`LN>R7~1_Tx9>zyqYZ9)PEKk{4V*>=b}mT!&o_6D|N44%7os=SZ%EN#UJSRB_p
zl-Y4>0&!B^Gz?IZH4<B8Q>mp}fIT1S@CTu(U^dW6^Vt{BErW=5XiF2z5PL9o1K%8q
z=}@npAJ8~Ga*4w5k4|*x;5|aCEPX+b_e+ec`pCfpB8r4_7BaC&1HhYHB@M=L^}zn$
z5d5KhjP~l)lR~C$B$2N9XYISe^Y>0K{#4wd#8Stdg<u!3T#*xSdM-A`PYYFQz-uTZ
z!_xiROS4wNiCQ9n8Zp5#^C~T~=Z!s<g`?z99q9uaW0#AN4KqJksfeL+^yWibx)9jH
zZY;RNfWgPVHKK@!vXT6EV6ZrvHF2n~+_4Q-mH9C13hB2v9*Q2Yu+bs*&I%44Fkc{>
zzI9kUQn!(F2Wf-GR4{b<Bb%*dz>-xMe&!F90RM<iWr*t4Iz^rZapU>#!q004#B+V(
z#|7`V1QGmbMg`PFGZHuvO3``BGu@1ocjNhP4Sh?hy|uM9p$LpGFQF@)=Odup1i-)E
z5GDlgOUy*+=Vvm5rRae1{7bx~Z0bbVPS<weYwhJrfv<nB>O)`NxL=VNMP>^v5)!e;
z;#K{@_@EO(Laid*3}IGdcVP2xd~CIA0UV7>*nG*THnHk-s_?Je$%L$CQq-@~u9Z5u
zly<)%7>N;ZFY!P@frH+OLUdWJQnk(Ff;(H()Kj&>r^ANaw<wR;_PXBKVdc*~b<ebS
z7c83{1VHt)iCOi1Ef^++B?`4BJ0ert=|@DM3*>(xc8LcS+3BCoZG^o*)*7e7ib_sG
z`TwF}ilD;Tbxj(AV2(ODs)q9cEd7y<=h)nL*q!g-KRODI7+r)cP?$ip>c|}uQtuF4
zA>e3`NTeMm+KUvKC$`w^Q{(CavyQr$?pStXB#05-M9kE83oYjm60)4qT^|YVs#3EK
zlY?LOMqh|eKqm}^iRIvS#VPwM@?d$9GZ&d=mTWbo+xC3&z-GXKU3oa=0g4qf9!Bv^
z$WMV(I^+$T+-uc<TqB^e8TZ6lQg{-HC?LqY>0<HmDEf=B%1_u(5#%k@%pR6y7>OR*
zb#4<r$;U7tv(mL$kbeki+IQ%b42Df4FkFoO#l?1E?y2}f3t>X&r1PIi`WYvXg`2>c
z`vg=Mw7vy!|JkBd9FawMV^@~s@B_dI$#%%o1(!&wDnOtJ2k`}HILv@yPCCD5*D|?`
zq(G{fL=+aU9{4XRYkCG$RtZs9NjILa1t@ZD2T$gA<QLEPcw(ScnSxlyNpitir1PH$
zIe;{Mv}yc7K1~-lI1&SUN~eg*=5`%RvXk3&RFQo;(o&fN9bCkePu?tf#7^40Umfnq
z1H{X$bw6vaQM9h>+qw~Rr^>L93qw{YU<^FtTGf;D_9K2QAGTDJ#pMTG#84#DCeDXi
zmo7u#5GfDm*b%d{BG@U?t!GfDRk!3VwEh%aJAS<q-#*u6YzV!PyHMrEP>skE!Is3#
zLmGGX+}VPl>u_!E-v?{)Cpn@zQg+&bkr+=BtNg$v(q1}Y;EmK?=e7kB^Wm!&X%K?P
zaJRr_svlDZ$YkF$3$A%n|KtQ+R%BS!XJ^Pnh$RD(LBbTkbK{HYf_xO=g#-_n2p`&G
z?f0KY2xv*cewvvIaY)E|lvur|3%enm*C}ZtrO0gPDtNH$8eN0N%em5{y$5!&E?|)5
zmKmGvM(KOhl=sg$Fn!_&Z-AtaBU&jbh$9lAdSA60{KzsE8>DKH6@yT1S99;qGGMvg
z0t4o=+L`RJa$rxhs+&c&eNqw4{~!dRpx_B$VK385dVq)dc8?_aLBxj@h1#>h5kc6?
zaL}mjVpaa%6gjzpNRAI9WpE>o=88H6^et+ff|M?I^ZK*M42V3IWw5Y-9|ZF;ctBpC
zPuhO)8gwgn9tJ`&t%}^{+=jvW0f%|&@=m-`rWN^`!0K6VQH69^YV$S{1b05z%gnPC
zdEtpt$kRw$*h2p@6M&XJT+H^9X2x2icbx<;tx?J7hg}mw5WxsstToQDT$4C0MrdX|
z9}uK+QV6k+!}Ex3v^b6s5STC!bWLdZB~A}hlt1tIuSFe{&Wo+<cc|TycN@FVz0r<T
zX}>ks37Of!EMk@UB<@%kgd8BFz5L+8=3I*bzk=!^2*EhPs_Y1Q3ny5SOIcWk#@+MB
zZ#s4lO3sI3X=O7GTDV08W-wD_rZxcu5DYXgr};6}lpg=T_<NFD0Y${@9elHDVP2Fr
z8w-J4b-8Y*L{t-}i2>71!NkPFW-Gwv;*9d3!t?i7Fy6C)WJhkM$r0!41%TAk!SAOn
zWd^Pjh@+7sQQl;S@L^VH$V&_I@DG-4uI%vc=jR^QBm@D<kXsd*ZhOa8ubcF37E`HU
z(*YhARP-+^F4M;g4;`5DypY-m)=hR}WW7TH3dTvG*`tsRsqwFYC@_LFBT8)l9Z*JX
z_P>}D6FWG^<%q~OT7q$I4-si}kPJnnf`T{Cmi=qWo&symu8Sfg;p9HyV`+o}qI!{M
z#d+bne(jfkwZA(a423nBXiDg;79AgmLFPE5{`cA;!2u?@SxqqQ_ka8smDGT<>a7-r
ze+RP6z%);T9hno-DcR@6Y@4?NOb-fJ^m49zGx<_Ui48)mV6Xa*N(M~%F}r^b9A11G
zMN6)12CnX|V;Kvj*G`>{zg4Jcp@Z^(w?3Jxpf~qmSywR~Z%E$FyTNJh*!)r++w#ln
zmEh*i%xJ4adh}3P;{J#Y6#axSl)14l{>69E%m%v9FHG03{2`zH-rGh2d&rdE52Yku
zaQJmG9qvanXXvre2J54aNCytamv3Td<IcH~3tTqYFX^+w8@3-C68za|Kez|XYBzP{
zEp+5#f)*3G<a9*04~q3s9(dnYm3KINUV=UU)K5M)xpn8_o!zx>T3E`*EG2)*xt+81
zebu>>rJZ)^<KzQxn>A<SUnWCWZ-c;B`xB6lI3vOJsADelm&HsRicLSBiWzP6wwZ_g
zr^D9<&TSXzHm@nBL2#7>x~k}>;t>wN^w$Td%4rlcf^XAo&)EjP>ZFDK8Mm-EZ^wZM
z@5X~h<!X2jY!HfIJ1ltU?8=~`hiMKHyjSuWnYOSz92=kc@NURcbU1uQf~9io`uOF`
znrsF<vQQ9Gj!zWq@{o(TytGVAXD+}JE#RIUVSM*cP%oP_@=z^P^4vndI|`fYyT}L6
z_r(wbB_VO}@Au?>sZH?ClU0bZ;C(M#&G^3Nc6}p$`%!CEiS^2dAl|Qfvy8yn&4V};
z*)}^KTEqtIYSBHv)J)R{4v(t`E}i9L^c_`kMlnVv;1&HOZ}L}s-G!3+wMdJ-qt&S_
zv9{*H6R;Y9@ISkF{rO@GY3qP8r?3HM8V)R`&UvQr7h)8fvD(d8xCAD_ABFG^7uu_!
z$hN4rG5feZMk5dMLmJ>xrYCA9?S2fIKJF{x_+uPOBQuh{^;t1@qP)#nIb|m8?M5Q(
zU&8DC2j%`OlJU?Lpf;bnSev1^XbV^zi>LIyOu?75Xzw$8OJgZK`})Akq654`Be-p9
zV5><P7=3~By(jB-&?EDEY!11@_2L!12#0-9caTM7rVhW;V4=K^!MaI{Z8H9JyYTu1
zZ>H!{lIvh{Z7VNi5Z+cj?LZE32*U*O#<gESJ3Kr7iJ|f{VqZbcL>_*G;gZ~@3n5{8
z=<8il0Hm0q2xSKOtx#e1$t|T;y8W3a#5<LKG;SXRZ1UlR$lF+u^;UJ|dNI{7*Y<Pa
zM<1swXA{o*IOqWl@ow1S-3Kry40Au05oonEiI0CQwf^9YVm<aPY4z%+V?UqP<Bwin
zSxm;1yIqT&EoL$~@3x{;9<<{b5o59Ul1`8cgH(!(g!JP5%vG0*TP$`o%9>z(4wALu
z(<fEy$O61ZZE)e|p5*28I)pPA&(zGuWY7P8D_}8Ek?|G$(bUTzDV3!}(eELz+sAJG
z;_x$PE0z(SvO|nz@gP+u(kBA8?2KCYIcA<>o{-GapBJOXXj|?u%*=3AOT<ql)C_UK
zDsYCDTbeyfREWviA7L~S?Y;ivUl7CMzpcmtB88WS2Y*w%=VX^_NVFWdvh5L6lrS3k
zyFed$w23b^OF@3QC`64DV!MNSKQF~R+}+K41quN$+HMl<A7bgBgB6qh=VO<x|DI}o
z3XR0YBUL=SqWn6%Kd1)WU@~iIs>L?v6k^DanbVzr4zwFoTVgY5+33U?j{IHDkuhkq
zm^zk(<fTkvPp8K|XNdc`UXuUO)v?;8O>U~FC+>@g`seSrL9+jorA4NkNbq*h18lY8
z{t4)+SY}V5^iqC%jmRZP^{vVL$KI`nf$%X_#xvki2RB;em*k&=O9rQ4(r4g02F7C&
zDtSWvzv^jRtX<WoncyH%o8SN!rJad&rgp;h<5N=}H{~m6lV8dfgKIr^&Pob2%|k&6
z$oq$S!ocYuXFD6EqqXM^&7i^<a4(7CO@^$6AES(8E%t7pC`l*~W4z6UgU-diOi7U$
z7$65jMnC%Kos;0YsG-5bLZ86yLe0X>;tC4)AZ#(}DFYdJo={qvqM>c5&zX4MJP1FI
zAzv)1F9rPhDpj?Vl9!icaE8$uQ<DztMQb*(lrrQ9e##3q)`}u(SFdj0Id^Ce;|W2f
zcwSyc*$wz-pG$w9w+-$Lj4s+cVdJ@Y6vqh{2V+RWOGs}}=~99N<f}?&l~T|o=XdN-
z_~M~(5sDbreql7&cej?-FU|OI9`+1MmRLZYcfB(b5dqe%WTSb?&?CxOl=clDmh|W+
z=H#rQbjMc8K>-18Rd*vigRL)mr6atTw|__f&{@8|u<as_t2VDW-<svRbep~QB?FvK
zSXeSlOpww^-?rfyqg`)@7U9KGBx$y1iHZ&rstK*~ENXlq=i-f9p*u`|U<cztrt7|!
z`P(%C5-d=B7bp|Pj05V4QRiO*RB2|hWDuXhSi6q(u)Ix0g+f_26OWcwBOh)GR2*uw
zPPd+?^ywF1w{Hih`Qk1~3+OGEscFifw!5?*G8(uB`y35A9Aw!qib|#?x0p-)GZST*
z>75=5>2yAdFBE*=zuZKLa5!U>X{l!cbw!~)J{wafDdV4;Ql;v$I01=r*jXSL*3$VA
z9w3y(s|=Y8RnI_mE5?VC<{&S@^=-m(A|4`|fIt+Kt*uuKVICNzC`5eW7krH9s)MZU
zR0kIHqG4)}8lFLvz=ig{mkq88=Z(8-jrQKAHFD8;!Q_dlLj4;UAa9Z4Eyg|aU{rs+
z<@{oZE-u)|`*zGJ2d)tQJrM6FlajC`AebITUFPS)((IM%8;E?1=>whtON_)5b6FzT
z;dY7wi`p-j`W>jVq_9`1(^-oL)M2fts1C-H(SC8qnI-5q&yQ8?H~>cBw967);GNoL
zF3iuEzFhnp>sBX|#guioXAYR9sz$rnX#oY+pedvYCot9|8C5ZXkEe<S(8wbwwar+K
zJjcZ=Ga0{wKiuU0s9i<b;Rx4X*!eHNQe`tw$$OR1&S5Uww0Mpgk2mpw-)uF^puXM;
zz|Ue6uCL*YHd?p-gyf640p{F^t?fr{{N?cYn$vJ{4=vYlKyT;8pz-JJR5;J|>c!nd
z5h}}d0P^8dq@nUfp~>jRGlef0pbD(uIw&a*%J!Azstc^y)~%FRiPLtBdP$38VsbkS
zO<seec+ntr=VHkPL)!~#8KReDZmj?qhN&^$39IWH8p>eTmkV`8aW&M}pVnTP^-`>_
z$f72x6kB&uEnjrGvgz9l*m0d~z?DlY!RUMFJUodwjhb5c5>YWpd|V`IfSgO?Lw~hE
zS&mhd1F$9v{J|;`YX?JmcP^KtVCt*4$hPsv^AB=E4Fsj1aL!N^s7G$TKo=`J=Msou
zmStUGYi#mGSP81+FL`%itI;qXor{HH9e)o)P7)9;Gdjt@xR<9k_y?Szr6iffN6}+%
z!)syd=M*W6U(G*<`NQac6#qqEd$xld5QF$zB$*aR<GIhOwMcp;NM{;600~Ft<VNe|
zl#bnd5-v-?Abuty8|ZTvd<$%8$#cu(`RnXg=EeRQ-K8kA)Y*&%4lK^-Ol<8%4TGPT
z+368)oZe;NtC#sBme*h67M%N^BJn)+VBD<Msfj;UD?%QF;lE_g)3su;YIYnlYFPsZ
zKg(8Q>7JKj`m2eFy(>l}be5$~2ttjQ6)8Esj6#)_3Z0w=>Iw;+<u!3Qie^v7M6J-}
z<upKK`PZ7$Jr^@#Jlhz{^LIx~a=SpAiJp71bZD7wBqshndd73sK;8ZW<Q*c5Q+TMu
z9~^*!lz*Z^ITp2Dv)hdq8`i#r8-KUh;o=v14<H@uOl;kwbF;r1Q*7e>!heVV88w^W
zfxb6zA@a|3vJ0hDT`p7=UOW_0CXSAd%e%~IGHNpjpg;JRtKNHt0KbM6T_!!oGvCj`
zpz04VUH`p%%TLMddCUsutuGkBHZK;rV9N8n{C7bxcwbKAg?GYc_rI3V>Fk;LcPmor
z<U(I~A5u+#(qv0&qXP>tzn_M<TlJ?78AAfm5W*WL6?>_FS-q}Ns3!ueUqK$8Qinhv
zmPlSI=I%+I`LeQO;$o$Y#pag(Z2HfN#+3iODgZ{X$kUnnm{v@H(bRV^R4upp<M00m
zamW8vl<@zzW|4jPAD_3`1C<RI)pUYH8ncsZYt!Lc`US5k_SSaad~nM?jxk;}|0*mj
z>{Z7lNN%Z(-k0Y*66tW<Q~LD3R@p70b)-mer?9Jx@nEnIF(?2EVw*+E3K_e7ewA)l
z=hu9;>=(*KJPj*M*eq84kuBe@C5cUP?g_eF6uiFw7}xb6vYB!<zj(`z4c>6RHvO#h
zz{7HquR3(OvO6(4q^!q>T0T^y(hfxGP@yK;N%xQ6M6OcB&noh&ZjqtNC1IScAyRe0
zZ@pbf&EBAZU*-Ox-a>0>#MwFaZCxcK)s|=?wfiyFzf>vGw#_ERyPsg50Uq_aCquJq
zURLBdceJNlRK6xy1NJ?otgI|GTC?Ea%Eyhp#3^zdYTq1J{Evm%>&2a0rlcB4n|)sp
zunXq=tNPuPS2yh)Pp{vmR~BxIM+KN#R@4<=T8#W5=$z7jd(S;_hr0$sv&5LaX};X_
zP^=2rm#lx*&fpc#5@~}m-Nq&nMXp`@rIl`Q)5jC>4<OU>pfTKd^&#3;s}ruMBu8|j
zc#vyQHte89L)ew{zFt*@?mW@-$x0$GFPKp@I32%#`9iOu+4bb4_I|E?I4_3BB$T?%
zz3;`dwdXrmyQZ38%DcQ@D4P0-R^lf_;BJwz`wjR&A65@`S)CadKTf;zoBG6#5HLf2
z2YEC*2DI^0RU=(n=wtIUQ*<|xkfK>_KX%a*DpIr<zbTtAyWY(9D~?l+V*}*WlDR4R
z4%<{0$&Q(J@S^xzx_>mFD-$F{L#2s%04Yn~D{M5PsnSH&Zf4tVFhga9a(nhI(q?sz
zEzPe*6O9~AOxcN1tGX*?f~IygmW}VQHS^>8t9X@2*JyMXkv>uiD=^o)@fbxTMJHm+
zild`n*IqQKTW5qS)I%MeXJHYE>Ws=UCk!SDplMaBN^w|r>g@_9tCvCZFWn7YVP*%J
zd2YBocPh`>iK|F~3y~g(b$aYY#OF7rMsOEB&FOKugO~{48_@Brq(b^!wdVYAi)O+1
zS-(NdJk62QZPM=I<tF#i(@G<5r>e^6-8kd^@YK?eEM+B+K6v#~Bhx1Aug}QT8upH`
zNMfbMF!5VXe)T;0t!Z29q>9+*vGC5K`WY%mk?<yVskeGX9^omo$EpP_sB^DgL;d|P
zE|p*Su;OGl4mmTTV1!D15c8KER-O8+nL613QY6|Akq*G^d-lGlnj0duYu9J;6W7w1
zH}(zE27*d2UI24FLpFM1w88xN`au77IkWN7v3RHf=(`c83~$L96*<o*UmUCT9h+I8
zv*Cu@%|d%~JsKw&vrOL=Uuluv_e!){LyA?bO=_>P)pu{>t`u=uxM{Ro1G`NvPA^zQ
zT_#P6)?cK!t3v&TiF<6<R8sD1F^#evYQp|kEY%e(34R>A#B`mFPrs<Jiw>+J(;}&#
zUJ`hp#PuTTN#u+-r+FFQXrHf&)0N3=eiM>6m*>*QH$l2}f7q5n%@ylp;p22OQYW-y
ziV_=>d=94;CZ(svipTCRG@7d?lkOU;e$K_`_THRt&n~UrDbvvv)?*CJ&u(Z+BYRFp
zS8D8WPTzaTMTS_Ft|Z&%j~oN>nrSB!)8bQ#ga{G#7LDnFGNUf;<3TvTW7RyN8XaEF
z5=3HkkgV2r9;%(O?s)Pi@oMuLhoP1m)%kGY)B&4F$-`vv;qs{)?ao5ot1C#2;WoBe
zey{rHJt#Bwq=Aam2kUq|qDoUk=dmY+qyIYCDJ6-=<xi++*ro)GR7FN!nR`<4q#~X$
zV`tVa5K|tUpPM?%x080fr$aivfgBt%>7!#xliRaxU(zc@&?lJb<NxsFc$WBcVa}oD
zGqyq$H?gDI#1CM8$)LEHNd%Vo+|7Qc-`f}%YZcDjMt}c#$aD*p;vrRui^A57j7@0)
z5d-6GH-f?!C2je=$K7P<(~?kTfqxr|h)K(pv9BMtytSmjG<FN+%(SU1J>}(n{aUQ_
ziMdAU4mG;W$Sl!T6Q}X$f~CI4l$c%5ENT2E54TGnEoWi4^<_#?iXGTPhwUmp^IYSa
zZ*Q*4APg5w2P92By)j!4yrigg`pZ{Rplkry)FZ#tnA?5kRsnGsHoSW7rd1+3@mifH
zqZ_uyd6D&GEpHMy#2|m$_i!8yqaO?Lc0R>bQdr%N*+d{SIPxhCsi8_mqT&`7E%^0P
zIOn-!XAf2bY0L9y;*v#Teqd&9FQ11geZTU4dpgN-_OY#UK&Zija(?O-ImMr?XK;?>
z;*VID`yCYQ4;G<(aHH>uKKZ?4-N+~Yv}bM;TwsunsU*7f<SJ;{M@ZA!p2Bxy-&J>(
zwuO&)KiV7csmb6<;h{*~Nn!t1<J12BBGClX?he<^rx%T*-R!2@^>K&e^jl_nLpHdX
zc0ATo$pA5Ax>2WmT}W9osoJ{DCfPksP(4{I*uDr_dvGXJ)!&y-|M5hD?tb0MT$ACX
z_9`t6gV2nx<iW9Cf`6T9Dg19DO~MJfOQ|Qh^BE5!j^3_T=cbiudPV(H72-xfXbST3
z(_O<Nru9up&cY1&KyYh#e4pm(;oGf|>*IA!>1Ju^HsJ?|WP2r@K2#oa%JohH;r85>
zmh=3XP^8P*s(C~<nmO11Xq*B5eWR!vO%U-2C+qP_gIpWO(+{qsq>ikmQ%j=#u|j0E
zo$x?qt`nS*UAWe7r<iTW=BBIi<4YGnOo%IGp-H1YVUm^4a$nz6Yb)?I5N-%hv@a4C
zQwiUJ&Se|@gR9+GiPD=CNuW#dinmM>;aLr?zql2yP%jbpV|?<WI;oV{6I@VFM<9Uh
z<~4%m^l&?=N@wK3Mj;yRQj}NM!*J8jRa%Dj=%fPcXp8-fu#72W-U|dC7B1xX+2Bm&
z_vn06WcNOuk1&-HSJt(^T8w+T_|$Y+$poLm#j6+FjvG74%QuR!e8~Y`q@BT!=235p
z;X^$pb*9Or6w(GXVf7pBV4nWdkO=_7*`!iKyY_IAV?W(LJz5o91on6uzAGd*BTUfB
zA`zJ0^Vkclss;Om@<zJ|L&wT6(l+?{tfZ;=Z-w;Vqg81)2$=7+51q@q)kt?qsy^P=
z?Z+Bm7v5~RjTo$kfrm1Q(iep1MCaHvsk-342d8u8>_vj>wrbpVCH>bQU4#$|4-g+{
znyHVM3C=tK9JI@=&P=Ss3?L#BmYVph7_{Af#(@&!eFdF~UQ?XMEUeB`4T8FYaMWuA
z8eoHGj#V)ebm#MISQUABskvg(n0u+c-G|C&t_E(T27+^(AY<I=<F~r)$jaG@u#{j(
z^s}xv=QH6vM(3lmk;)<(a%5nejfdOq-}L0s?@w^x<Nbi6A#^9wd%v@KZVoXLZKy_J
zk7gIDQY0`JGUcD$F{`I5Hqojz^69n$y>>>1M`ZHjNu$0;;>4j{y)?ZJa^vVAB2`Fe
z0x8!cxlp6}Mk(ubz{vx&Z}ZM4QtIF&Anfs`(PHdz@2-&qLE6ytVJHGrFcs-nn*a!p
zT``c2J=ERu2Ei`1h*mCy#jR~p`xk6YYefh-@l5=FMB)5K5IFPs22g1i;$ctc0f74O
zbj)vIFAD)?4rFB!dQ41^^EK1}$s{+LZuf;!VwhP`yYi>01W%9EdwE-Q4Qut$Frz2q
z0pGby-YO&cBw%rl!n<Ufo<7PjzjZ~vq#(c7jI$2#eVb^n;#g*CU?sn6^9~p#WcjGf
z7LWTuz#;t*H-Ep@<3|~Anl2ZNRuq(5IthJi-jVBrvB?=G_zk^$|1!s>+z+al#o89_
zB#R|gYnGw!EUOB~8Zrpip3{L{lQ!b$MvY-@M<><+zq^)AlnjlF)sWnE)a82HNf)@A
za8~6q$TDy5I+afX9vmmWk0woY%%{?=>;r&#_fl!2eXF01n84Y~D552T-0%q=IWE&V
z8z}Qsv>GIzsWcreH9Fso^UrNrz5wg1JlG`xJDJ`WUrl&mATC78c|D+vZUb!3&rYT$
zidGiZ0m&R|jDMHh86JL7Tm7=;_H6{*HiX2^KXbZ5NJp%tQo)V~GkLMG$rrEncxquB
zm>~f;Gu&$5JpZ*LIV53~!&-<ZSmqZ?e|ttKOJOe|z)NUCS`GiYFz0D%JO9i{H)<|>
z>y?J^uG_xV{zzmHT;Q-E2#0WZ$vKdV0h}kKdR<O^`&1Q@>XJWJjn>pvf8>r^FQ=?!
z8?kl&2!P>WQK$az72(nzlb;N#ICRp-Bh*vtbQ3g+0F~URdPZ(9pQ1YJlh*>^??S2y
z0ikR4Z*{;Po0A6x4+-|~pj*CQQ#s57dI!?Ca^}V@yW-e0Nbr9~`Q39jud&J}gNhWM
z@m)JQ&H%glK&0#;gtYwVGLn61goR*o<F$y1?u!QIl$P9%US0d+j)NabZwNjceBb!o
z2l1YLIonlP`{<1lk;)=g(ah!%G7?Bxzgd)gQ#A3<j6I(EE^1Zt^aA39z!w$uFnWZU
zs!rkHBdhf8ji~=)NgenV?kS8F_Gge1&HT+NPeDwy3|)#rh}I)(bS!D?P+f|TH<yXj
z{Vn2BUOaY}tHy(+hx%Cd+6Qc5mpX2AwY7&Iln$#u%J*Ow#D*SE4{>%&=AMh@fcz#W
zk;_v(jT>!{=FwjMEK$DKzq62=SREEQF;n|kpFP%)$0KKdubr_XZYzFvNU1WU;|Z|$
z2feB-u$JNjAEUzsdp~L4scaY<b|W)1n&;Kl&fVJ4d+yxtk;;0N_Np{>2+l`{s5*%I
zW|DnjHKMA-XR^*s51*6v2Aq@t5#2Cs`8K0Yg`GH9q#LVVnQQ_g7AU@>+1ne~`HA3t
z!CM5X#j8PnAQ_?vCzQ>xwr{5O!`d?M4}s<L?W_9){)4js!)uNE^Z6SY6TxBOeyy$c
zwnfqD+Y|aT2>~)D*~if8fWQ&cd0l(q$kz1eyWbJ#bN@DBa6ZZKd&V8+3UL{$kKY6%
zry)(t)ZhPPSD$I1t#y(6l@y)!IFfzv2$W@ZM>5Q}cQZ$t+kP!X8U9zU*ji-CB_w2P
z6mY?@3bOBfd+1mftZU>I{cS9E04ZB9->p+$*fP{PAhLwR1<Z;lPZHbuJy$bdpODJ+
z$psLR>7tS{O=75;BYQx?gb6yAUva05mGNYgZ)Q#|j3GVhM74AMBSo{qYT#~7JxB9x
z_2#f7uW+;PZP@^a{6?U#ovawrJ5??kt$VoT=Rg%8w85-xfwBpD<&VbGU6rPWRkwm?
zPhm`TTAE`ctDtwTbG7+c6X+hIJ0D8T1}Rtz9WmdMugx^|1t(k1ftc9+-pVU~H2^~x
z@`zCN7!S&Kq$%=X-s<#bU&E^o!hVLegdKeF_{8VN6Zff8oo{pK5AMlYPZf@wSv|Me
zYC>EzQ&h`Xk;~P=w|B67{!7bq<>VCIhLn4!pe6y8_^HL2XzHJ-Zbj6GE!*$4SzHPs
z0@ICy98{}sq_K>9fe7pQCko?D1HZ3s;`*1_q|X6qPypt;+p<BQ?}Fa_*ORK7hsfJ^
z>@2-I)>~p8@8^ruRmdPYM;*UcdhtqOLbLq=1DQiR7bcqz@(*(0-{2BQd(cKScO`Wn
z?yw0Z2LOW;z)WQNrTg<(S!I>HjysTlEnd39It;3&d=t+w5HlgzRAWejV#nu&_Rn%R
zG!VN5u1Ww8v>PVUHAs{)9xNxTuKTc!!N};I`-rN|{4j7gt92xw#v>vkbme2FVs0v6
zhtM)cq|)W69iEY(J90r$d~7D@P2&xSk?Qi^nb&Y5nCK|nk!h4&WP%~#hTR}VT4z^9
z$IZRSy0TO08R8LanDI~&F!14Y(O;T&=#j7uD~ywf-K43`4iEMVhU}><bW?f$7xipq
z$lTj22=M{3^V=36Es|114MV6#z+lXY+LJA85*&FM2tED6tHU3!e69tRAp32F=-SC$
zPp_2JUz$~M3^)%veC`?s)_;gHfthXSyjCbFnF#v0bBCKE654K58p7F@gIy0oOB7i3
zpNmi$CGnP_WDMoleG`8~2v%RzfjL&)e%*5}F-%g1w+pV~F6WT^o=T6?8$P^#9p_(i
zjhdDQ8OnI(y}ajch78{D0uc;)5jP-ZWC=l9CM|7l8bY6yjNiS)ewyph8+$JdmhT9C
z@NfNt)f$?q3Q*0}?LLAgpkRJB)i3>1sHzXJAm&dsfEEz2LdU)Bq_uh@t=!R4J0d#z
zjcCKAT)2t(Y~bMgV1xv~Od=kL1)ECie&WM-r!olo)XK-Ef!JACG=DCc@1st7iMls-
z2qkN0SY$^UO!W*rJv#K-FMUZ#sbrgPeqTlcqd?ua>85(JtxzS$eAk0$2wm6Uym<zn
zlx`NO^JJo__i&`|HvA1;PO-T@0v#!S1W1VUuaw}^NWZK^WY1dHkr;3^suQw9LyAl_
zKo1f<0TO8_ECK10VE7}w+$bD?`|Kt~c5{^J6khfC=fDzJ8c!9Z{)<cxi?bUe1qGpP
zN!vm`;{v2%xKwP;cZfhhQYw8k-fkhO-|k&$FJTQUuGMO+3T$rSqE5vITr~rt+Why;
zRTB?uWai+ZZ*gA@r1v-4YIf%60V+Y#CL_m0<2!%8R$8CI(Uj&WuqT*3`)np_uX#V!
zKz`ULOt(4}6ewNLVA20=9@EwcD{D=wX&A6}Mo3GO+eVaeTmXl6z`h?Nm{sQ<0=nxB
zwg+t58vE69DBm)J5LTp!ZvFip>yt!6)->xPeLx^d^ZIi=mSaG9725d-YHIcJNE=-v
z;p~I$E8Y6a#C=PlDYM`_uqKpisWg7^2#UULr7<a!<E;MW3)sNI1Shp8C*t1_0KODJ
zfi5s}p}j%I-;}3w({^or(cud+fd2LcfG)tS`G;q~l_w7Wpgg9$B1LX`ydFPCF2IqO
zF}(qoo&eoFb)Sv#TR;YymM82G*8m2hDsHR|Vt)SftN@%<*e4noW-#}mxO=LMljYif
z<>KWTS-g({EY1WE<_Nj1nz>xyw*l;RdXh0R>M^tl&|&?jpFTml)0++E2!x~m5#$GD
z1dO;tH!Fdo7=x`E%7;(*8zboUd7`Wo@mnR~JOMC#a|4Vd<!5AUj6$k~;wI@Efl1Yl
zYNjR6dIKxi^1tf@q1XLKuAi!kAf`{=(@+2UDE?@b4$^zIJK+$KB>w`%#!NR6=*iug
zG6~o@@J*v|=sn+^Q0NA?eZTa%mq0Q34tQixCfGk{8WWWQ273_<@3h$mis2X@WJ{Ub
zOb)LkK2PYJQ$aQ+ElYP$AdI?ZgN#V)c9B@=b5_8r$|amXetqGO<(3^zdP)z%em-e~
z3_h>wRD1wY`5-t20L};uz;@l4p(d46$x8GQp;VoswVMw@X;9GDXOKl4vIi9bk(#;V
z%zc5?Je8T6V;o-w3PVSj9QWB97A_hw9vI@WB7@U|Gm#Qw)U(z(MkOA&CSebk5!q`=
zkO8f~b7D9WH^p55*5EfC$-?e5U#`3krlEg(Z1SyPTv`eevrs$E<l<Jz4HgV5(AJQ+
z*h8WE4q8ZXv6m?Wc&8e@>pBt4wHdGtU<i}X6G%paF^?PRsIT@0f~ryOn3yqa3HHY~
zKDq(iB1aQ*OrdrEdy>df07$QPY|BgbGH#4+<HCvSVfp5+wZl(On4GT4b<!v6K7%3=
z4nv0kKl0MzlV0aOckZ~UO2|(Gw2^c>6`5^ZD42>l(;Ys7ARk?fzNsQMe6-5?rfx~V
zFX>*Ei#S5w$NL~zEkrbHVm>benPsK|blnyjkg?g1H?xrww9)65Q~=1?n!lWw?vXrt
z&KGv4E99B%M}9{i@0@Qv?4T(h3yVl}H=O03l@Q?3jGTyQ7N0o0BXwk)itL;KRIBGY
z-Xf_FbelQjD2f@FvKG1pIi5aed+8&7&iOAc3mTP4c4U+VOz$QV=YizvSt>Twq(DmB
zKhLKyel9%e{j<0=Cs<g(<{#LvmRc=A&(DZQ=)Hq@7#c;q6!4_k5D2+?&ElZMyZt;x
zShGg)&7~?4S3WFcg^VFd7aJsOnN4;Y>5%5eM9q?W_<fO1f;6~rpUjpI02ZO{b-HVB
z0r-RbrjczmrQn3yP)hh?y-g0?u^J}HpTN#o0z`j|5WwZCd%w-{)S*k3!}M<jPhDs+
zNn?Q5N)b#}wpI>Lkpu%An|RmLf<U}W*M4M*>G_N$z16bLqab^hp8c?O>VB(+P*v`_
z7ZaVLy&a~+H@REm;7F9`M$SU^Jw&8;?H8X$yGa;%rrZuzr2NY}*QUk)9DoMvwfiEn
zL{OfGzaiiu^SO$odXiF-wDlPhihw4s*EuTP3@MRqpT2%R*WDs<jRN9p$O?m23E-H?
zknKSU3#Ct=BSBZ#=W%po40X-E=1)Yr$VP_@gT6uqIqj)Bzz7jMGgZ=cazcmwiz=>C
z>tVwe#FfM<pK>9nUrIuzIAqidzS|DcN^8wYH6dJB#@)DAX$Nhd&E82G1MyydaJwWZ
zp(Gkl75U-gRC8coNQcg~MFx8K(iiF10Ez`e%rhPRN5Uqek?D0OWWH*0Pt*U>_Z=ZM
zeTgp--YH-+WtjrrqR)l10f>=NuICaPLJjH$Fv9_lBliRF=Ru~;>r>6h-0YEVXxAv&
zx)WNq`*M%9EPBiLX^ahQJi`Raaw>2zO_b@nYCA+$Nc8`%_YMV$<U8stMOIR@kh48~
zq3tEyu<~ooOZ?n5yY1U&bQzawdG3Q?${35sDytk07;s`O;1aH!(Pp@0hiPArTXrYM
z4&g$!z)pJLSbqn`$u*MU?`)N!t7-sWE2CJqM&DF&B)EWl5DbZ{udlxrv5mz)RxI~u
z4}VGXqED&&H7fN#9x)S+r-h#!E#?-vF6TNqLX<UIr6vSgdmtp4i9qp)J>_#xN?+Wc
ztjGxkYex3XRO?STOTlwDpCI*4=d%__|4bdrjFg2%!`HE+gd01y484vZ^6|b*Qq=+l
zbwnMfYEP~O1;bS~JPUa^!(X2eErKxL4_=%dR#kD;qByJB$huL#Q1FrQ@{%Lk8l0oP
z$<V<Vg}|cEYUY!>k^f1*H}gJ>K@k8oRA1#$kZ<j{7Xh%ml(6N5>1R<ie*U3gjoC{n
zy)_}J*&&hkb<?l<CF}J^9O}qWdu<i4rs9I0mf-1l;Orgl^ZqlCP2GibFz~PfAU%NQ
zYPOCmtE^*Bl!<~g#ArG~6nxO4XWsJ~9G5(fCH?CYgoqwTfeuj%K2Q5vIL=vy9lq{5
z`fVM<>cy51c0A-xJix`pbbYnL`B_W)ImLf4q$oAlqOM#Qu%077B}W;!d_)iU$?}nM
zU_Z5xpW;4ut#H2%_==DGODi%I7J~_&UUFHK+*(KRHV%+DAv2YriVRF8VDfzKIE)PK
zF=l6Lv!MXVRZy?lRoKP$@bX6LOv<keBu4}Dbh-p55}Dl+{rW-ueCwhQ@cHS9*lvg)
z$;<nXf@oYL=+q;hQb8aO@F&gDk7{2E;i8P_)l3erAo1iM^JU_KeCdP8q&ov(xT~~N
z;K4fXJXtVJ05DC(iR|&(#Lb~_&tg49<>Bb1jMwE}T3A{_btWO}30Eb3_k;%H09mJN
z+gVxpFus2`A8`)s2}osN)pM}}dY7LH8SwV*({Gaog<>Dq7AC{MrHEd+my}jp{LDMZ
zt#;R!>6OYK9gDGD41Gn-MX8ZH3f&xlv7?xk2R~{U&S$-U|Ni8{+tjT2f_NOI0U|)p
z&n?ADEe@ma`;ztIVNUdE&gT6+O93p5-x{LWYV?z52^Yln>lvY2;C_54GE2LAM%T{H
zZj-E$W`3m@<hfnc)qOr`y;8xcS+jK2XOtQncFsKFhR}~j;0KD$QagRynR(`NRm7L?
z#bZ3=CbmSm4jUkS3+2(}OIJg+9|h>MHhbk>$+0d4vw-qI?T>f#5ntI$lk@Tz>ShMb
z*8cC`_BBT<ZtBDK3E^ZRY4l5mVqlEz%5FS`<d@<KBFZ)J<K6OAjDpomeHnJfEG?Nz
z_eMU9%p?1i3(+LDB)X#1`WL&o9$vkxhF*g@tsPtWXrIy2#?<tKA>5#2Z|}<4crHcV
zNJI!fpPZGx@e^qHG128dI?A>{B?pvj+uyXZ6^B2TSN@3#m1@UzLty1^2hT6hv$i)-
zGVWBs%6WP&SG|XO!l0Zs)UIhBu!F1>s4Knj_@{z(a;!^nRh}y3x2c#|y_KPUOrAYI
zMmtBfD|=h96d|=ZkQ&bA&DUN%H|-0_7~$;(P{?^xU#D>YPjM;^SC^+!uQK1F;bi_(
z8vOU=^reWFNB6h1#$r~^^M`H9!2;{nWcEK_h1>V8KKE$R$RMc74kbb``cuZ8hd-Li
zJGngAn+7MxCS3hjZl|2i^3K=Iw|<ZbBC;{H-1V`6qs4Sq{*UF0nowI%ZG17JN}_P-
z@Sd>2LATLqP;gxHM{n@M;F@I;+3)_Xq`H@S?5E#COd8|g4(lN=rFzzE<u9AKAm5wu
zg{M1kr7}2BqBQoEPqf_OJ+S)&1SWX5w9s*d^MQe{3nplEbwb&n>q6z6`*Qv~_J{ha
zO7AO5;f9Ay{@nlKrH)U;yPK(3C_9zkzsb$liw=KiRodNQYW@pH_PaM?qCwW@SnXE7
zJ)$Qc)buv9+|P69(y{GHYNocoHE1n#Fjq`(8TnrI>GQMC--(|Bi4$XA_w?$*fA&>=
z*LuF^b@XBqE0)IhIM1@-T%yv-(Jua6eDc)q+dO{_;#1AaTjXPeq?C=UlU+(f5;THv
zvd|i~P$B(-gJ<WmS@qxMZ8y}_b|6>2X&t)Jnda$M`p*VE*WcN_6x?R`umelSaBbpj
zyme=lqZiiL5tz%Srj5c`Q`7~h=}*LAO8I)rOttkE<LXy7^}**yE1uB%D^{J>%-Fc9
zflEwGY&V1pn&MdXt?JBVgHlti1-`_b4N4MX@Z6P6cwYVE_oYy}BTTHq`t`=)+{8r1
zQ|h5`tzO#AZ>1;naz@=S#&ywmmjWwSyiM4Dd+DfnZkl3!|9!S?E2bmkvUp0MjvfSX
zoBPtr=<54!s8`b_rl-haAH1?O0=*`i;>y;qjEi1u&`;^t<qp`-?R<aSc+Nq3JahBh
z_hj5df6om}#cU426UMNdauw3JE2C4Sxt{FE<G&s)ym>qZvyOQnAoy^S(9&&ge-F`f
zkHYfw9^R@NO}P7eoQ_QT1?+S-Hu{j-0UbRE|2*{`^WhgvFAw=LWop9$l{IxL2|Li*
z`GwE6P^&7i@@<~{kM@dpJ9Opne#uy{ab9qo*mw56zWY0eUGc_oH+qHB=AOWFM=6x%
z&i*MemC5`F>&MDaFIZJ}q4e<FM@1Q<JiT{jGL}<^(COXlwY+t^S9i7+mZiB@@a=qU
zs+4IJbU;fFGAvJ(pD=%Hk#(7zB1%{8t-_6H(McZ^-%=_J-sDOBJ)p0hozzSVXQ>DZ
zrOad2%e)n1ps$3c%oaqOD4d@3PsZXXlmwY=m7kngP!zA{`tBQv%Vj?aJ|9P_2JW%8
zZX(m>uurx^{uf&|jG%w)^^FgCAq(r0g_a+MEXC2>QXKo6A{!^+w{ytWv-W$KRjBDT
zWuC`HA?^~L19fO(r?>yH$Q+pD!c+>zls=3L;xu0+KIh5E0~z2IJnyw8Ok{z+xk{q5
zA+~DtP-4a3VceVE#3|Q3w<12A6csZIXov^lc*HQ#Mws)l$8Yg4_F{QBg^P247$@d2
zJL1)yuhD7lc$SID&pTh8eVth*{d>H6=;8@Q5AK`!^WD&$VUp?epUTgqng`Tih-_)C
zGQnc|7Cz%C5{arv^srt0L3`$Tqw}4+LhN;Uvh()AY)WAC*EMA@J%Wi!e-CtPlBW8R
zKAD}^aW!=u#QqjX=>`qe!pNiMa+(V-WWiCBL9}Qn&scLbl9>MMqff889#xh7mFfKN
z8+&%)Y^LA)TK_cIr$=4i!0K{d=D`(B1ueCVdGVF<$B^vyRiV&IvF3^un9$Sn>h9O7
zL&w^a<z3z4ZCI$YBkJz`0g~$qM*Ncc^DKJGl4M|-o_|20tm;h`bRFA*PXlV`xzn7>
zn}z=M<3qT2kJ!uX(iuCOt)(Xey*~UHc0$?yjo#`O=hKZ2Cd#C%vGDLym*19xmVdm7
zemEj@{+X1PSUxNB^-dkzxw{SBu#cOb32$$ciCS3N#~-J1<(r;%q$1%|t{RVxsnwZz
zKw+MHGK{p|c~bT=fX}ua|2<g$S)zXEm<$Xr4A!q9meJdxAU?9`^n1VQ@bF`00}P|M
z((fg|7JsEk7R9uV%sg%|S=sgC&zrohYxiN&`vUwZvp_fMp^)T$<a?1rSp>T^Hp6Yt
zH*~_Erv3M<Qv@pUg3&{^1$&4CkAcj*+TN3o&HH7{1mWJ~U4s{kkN%*tm0h!G^ccA5
zoo+P<8e%->xkt=o{95~<{!<EtK?b3l;Bn0#{9@(1Oe7x|ar<<4rnz<gVAg*1P&lqf
ztZEm|?>nneNqySTjc7Jx&mwUA=}o5M9Q)Sz@!FOY!%vqIm4H6jPE4d03MCH}X*%3*
zh-JLU`#)Y(&Qdz|CT=>votjJ3My$R#EnPY6iTcOdWHHS9flG)HDE%P)mHmQXbacB~
zP7!YwGEojUbwoK|A1usi)(bWnqjS2673k~={15Wz&r<D<wK5p*cTZG;=h&RkfKBF~
zTZP7*kF;X6<r(|myCbB>IG~~CZrDGRp$pQjrG<+dGB}viKCl%Hx#GWv+;(n<z(Z-v
ztcGrQ$j|%oswZL{4=o*C;SJC3|L)EPV>4#<I0e7N41_?TGL%O=0uJQaR>mP<`tLUb
zU|HhCn^W#i9S+%{i6lX>H(Ijyc_!I{d!C~Z```cj9OS|Yi%c7C+-3U)v06_SN7&!3
zjXMOiEF87qwc=ND%iI(G_2c7dXI=W{mk;AGvhuJKl>=|!H>c}Gn}tAPus2rX+>#qi
z(Bee@^55NNE*-VV?km}>+IlcR&;3Og{&K7C?7f!1I8&PNGEVr>EBe9D%^;6d6^Wl_
zHUVmTdPXLD=9n~=vAv8G!PA@n$7{eJhGys6o{Ou8!eKXjkYrwWoUe8NgTKx}t5IVA
z<1MuVs*RPy_wry*;K!^yl*d@%{^G0C*;=Y)YDV66__twwnwB2?{jZPTUEy}S_>KVi
zBq8Xs_!3Ts%AQG^<a?tWcFpk+JYM|jkKgM~5*@$Y_Lv&Ms|)Oe2K_{`JID583X|#w
zjy}BgjQPII+!yv6)Gvyn55jpo_jxe?!gS<GPj$XZ5Fh;($iBrf{ODWm@pin+MLv%y
zrG@!$d?Ohzb=6UvZ7+>nyI*fEmEI+N=PhO~MD^Tbo2Oz10f97@TRWIe#~R=^kSo=$
z7E&j0+IkxZ4+GCXdpUre!KsJd+SLA6yStuicW@X`A`kX+0&JZQ+OgssH2Cea?OF?y
zW~qI}?>r?w;M4Os{jTa*3?vDyTK$AHm*c~u8&78a41+W*8MFVL$@AOvj!q8DSe5Yg
zqxdvLBFmrR-`qwPrl(rcA2M@^C-LANN(OE)oo6bfCqH{6ss{qSzCDrlq-Hf!$N+PU
zR2$_nb9P~jy<Ts!(E8%v`sbzld=;Ggl$_fV5=}im57a`lgn|koy*!6c1H6RWTV%Y+
z3-l4Xrrzmuk2)i+3{m2z2EIIOh-G5iA7^ILpN<#W`*8iXUu4&<Vq$Z}Eu1eZ%1W0H
za>-*o@DOqStGPp+6fHFEy$9&_3SQkjGIUI$635ga&$FZoVSL-b(WQwP{s~b_dl!gq
z>KeCRjE^6dt)sW;E7dT0UcCBY^_Bru-y%atcBTVS+0`_a?(oE^o`f_s3WbpNEcxzT
z<=2ee;WCT94{)e95SYUo))-!w>bxPRikX*G4_#&WL>v&%8$4|nrZoGsC7v4l&iOaL
zOH|HZnTk0Oc#nQ({JN8(4ARyHNq`?8FGXsXf^|yrmp}svBcQ#SXs5C|i3y7BR1Id!
z?=DP+CDe){?3JN__++8g#Rn%zp#iVR@7G+Rb{mKkf%0nT`I`~PIu82m{2VZ-x0oqC
z=f1gFqL$tP&#R4;Al&Oj@@)^AFL7&29^HSp-+B@YV<kPzJmz&G<|^42x*DRYBE)2r
zN8L3-8$+pE-v6X8AF;Z0?}*;9vRFwU8=|sU&%j=uXGV?*OoV5BSgNf8ubE>{HohUU
zaDE%1X2Gy?VgrumPkS+72Qui$D$bi@YwCWFW3P)Rr(C(0*S&3H_e^vkh#1eS<2d?k
zq{o7(CLY_%C5<1sKQ|SA_0;^~cSMIy11SOQ0y6{Q-2g%)JpWH>xs9VySzo{M;JsSd
zYp*m}Dyd=dj!HgrdEJ4h(;aRG%AIsp=?PW;_12=GALMzwlL9H@wP}%z-Vp=I;hi^+
zeq%iW>P=!%3SnT}^Q!Ya7s0bN3)^bOz@Sg5)jQZjurt)@WFhnV4D7WxLU`(pAKIno
z`XM|maMEBzOK;6u60WG1ScO&L+*O$V{SQH%Id<jhu5VYFPM?O|g;R*H*@iU;|NY}+
z6CpL>>oHs=s39cHz7o3~p;*DI3j_JXHCzffqNu&DdgyP(zo79w!&=l=W5>d-F1%?C
zdDSIMFCQ3(vwiR?X{SZYZ${_pu5U8BNne<D><vq0Ypi@Kqt`h%Z#x>x?unKaJC<3t
zNo+bEPEd1%s^!*q$Jy4+i2ugq>Da|8Y|*MF`PQv^!fVPv_;5q*e!zv?N0N{PJAdt0
z5tD#rWrit@`;YU+t*vI*cwzc<Dn}zCgce(y1D@+WO{$#rY6_=ipZ`vHJB_23hY|3~
zOkVmhT}=NidYru;0qg8E<nmbjI1}P~CI+czelwoSFFVm+C)R0!#I51>-QI^VepK!c
z9;0pe14*q@n+%?>a_<Wh7sAYc;`opUh`7c1Yg9w*s#CXdcK|h&ff98hgzD@nlU<VL
zp`;uEYVvi4<o<D-*!Vai7Yw|*f#$Zo|F!r=T}E8OY%^Dw2qy39g1zkb7dA{@W#6(w
zxBmHb0J0Ncbo($Ti|~~2Kyrwx!0{wH#hLzTkx6mheoA;X-HA2moD$pBxUkTpOg*~F
z^WBxIKy%|ycf1_eF|SP$+Q@dC!T2Spj#}pL<sKtFMm-ep*N=~<-PgkDP9i$qn$yX6
z`dX60D!&bCapxQN8nhZ}W>4Rr2feKLWH&u@WLJn-h}6O9%^RWN;)5B${EiCXUHOr5
z0=|JIJHN-<+;2mXM_ZZ{sMOt<0d>&0j%;XmReW(Z_ZW3ok(BXgQtxh%?;oBV3YzL1
z&TUN_E^TyLsh0r}ovfLw!?A^=J|opKNNx?2w2Uj6Z&O8YUez&!)x{6p<_AY6fdO9C
z`!ci!=3}@$EK*cC+ui8J)%FKL_(ez}a&LE>$UvtmttG9^x$7{KLk6J6(eBv>;%#_k
z(+0*_leWndA*K~%cY8MMUnx}#IZuuy8gPX0xPPriD$gcRRLy~Tu{AE}kbO~?&({Ml
zx#|kvT`zy~34QY<&uuEgt9wM2{+!X6-=SYc{4d5=7no>P(I@$kz&Y4BU148Vt)HH^
z&+q~w_~JghO3qNz^Eew#R*;DQSO_-a)ci)TZcbtuyv(#!K<8%o)!8Y7$TUzFNuTr6
zpI)71Fw?D`7n4Trgcz(ZGDW<B$#?@CjQWJm=g5F${E_NP<Om5|8whgf$U(&O4IO6N
z%=}lM^{}7w`^UWf+(fq@7f_7^{q-@^?squdV`XVn;Od%sTRrW1N>V+{H6tY&Y@nOd
z>0s0#!*TeK2QsOOf#nFB5LH%<+HR`Q5SK-RIh_tlBkWv$9xNl<b_O-(O=8}tBvl7F
z|DZzn!Sj3sS;AIxSn>b|)9E{h)P8%g`ba^Z2lidsbHD>IO1ADBy3OiHF+F1XpV)c1
zwF3hG3Cfm!U3~XH0sr#LPt&Z_Sv|iT@)&!m5+RXnfM;)f)=5*3_pm3xf^161&-Y~S
zJDXvqmn>UUp0E;Tnb+=1tN^_Bug|7v#PL(PH}@;v`T({rL+`r*Tw(&mp&3PxBDrR>
zUgREf`Qg<1WU-DIfR{-^;5sn842qOAaKnL_2L=OW_YG=?rK@%Hm_4sjK$Aa9RIM(r
z#dTs+Win0%$}O4qe(IS`5xpEQJAbbzdtMxwnzYc{jkFBr594s$YbT~bFIwovVl{Io
zST*&a4F+i6cNXt)ED1l;Vl3fID*%X*)-;<UWSx*u7ZN5RJ=tr}z;##ysNtv17XM-R
z@OCN>F*-Q>nbHQi$LN6iRNz6s5VB5gNn%V4OoGLiLUr_*l6C;s)yZCn9>#pVT6A*t
znbG=ed^7<|EBY^88O%T5B=f1-26Li4kAFEc3M~)M``&K=01N{J)?04sxGJqNg)m}1
z9oZX{g~W|>GJk!6C0%~eK<IgO>&=C``x1uuWUqYf4A}P;OYBS{21bD3)42+O;ol$6
zO&GIKgKDapacved<7Iba&&}d!F%2fau$j_laU=aiTd$xhK53$({`5lWhnCr7zF<-7
zForg(d3$%<`v1e%m%vk*zVEAMv?)zmWJ!x?LCRLvN-5dOzGO?5lQnyEP{cHmQnF=>
z$i5S@l%h!F*iWb=JIR*)f4xUFGvE1r{^!#)D$aS&`#jHmU-xxg_kG?B+#H>A&sE=d
ze?J9bSxa|^#~-zG3)8kWrsE?1_j)_lmc&|)i!r?ZLhOxrsfFv3m#esGtN)+NxgFQ$
zIxp0FuFh{4V`9(5QiYI%EvO@Xqs+fN$$meoCGow~ok9_t588ga_gvFuwS}^UdMQ;2
zD_Wg;|H=Elr3QX^J4@uge<C9D;Dq~0{i3FmE139?ws0xb;fiwlL%4<TPtw%J0+*tN
z`59#T|6B!lIcWk9woPOk>Q0`kYj7f8UB_jxw6JpOfSSaFM!`Z&BR=bC{S^g*tRw&d
z9S^|%Z{sx`?r&*1VbJA^?9yPmQvq?N3Y1jS2*G4A08<X}$u#vKa9jU*oGL3}cYB@w
z=A1GenLMr+DITeFUb7pyNQa=PJ$9`)AL`NWI!qpHAAM@r)~VKoL{N<c>AQnSt(mjt
z-VP~)QW->z`k%)UDFSTh%&jde2pDJN5880#S_$7ip?{~e7k|7ETvAkT!l0aQa!YQA
zb(5y<CXcf{c5>DNJWk&3WkLTEB!0XGbJs((yXKE}uj!wDi_yWdp$CmK)jJ$~4BJX_
zip^*h^3Ge>B0X=c-OV+Ny9uI|lP>0-WnHY-{+j*8^;Wd+`QJ<S*nm>$08d(R|5_{?
zk>+CRGbN8&F1Ymg(8xXhPs9yTocrQyczDu#3V&y?p?{`p>N{&mHbF7|=W%4!a51X@
zkG|A`C^$#{zvf;G*)ddEN32>b)&AW1Cu!;Q%cP@a-#)*-`!j=$LNK7!H2-<JZP$&s
z|2IR>fD4ha7cl}@O2H-JV(#tf;u7YeL|lIvC%--Uzat(2tpk887^-L|7%7hL=3%IZ
z2G<rDy8pcP;$O&X{-4CxkMH(adGi-~{6C(6->@Z_kFK-Eb+{-E>OuWTmOfF<Bvmcp
zXP6%f>*$-B8PL+`_fNB}44k{9+cg`^r35aBAZPyf;bCZBjMC=H_Y>D|g`Yvl(Ilep
z*RF;6hKQ1m0lmkFhxTO-qvPCmsb_~~fnp$J@qb=%{`qa^;iAcLWvWv4u#eB!sQyzE
zs5IU!xaT3cMD=!J-~D~&t%8f})&IUM!<|vx&Dq^k<kl>wlDFYf*7#YOTGTC^vQlon
zWgl|3Xi<pL%?vCUjZPr0UHaNKE{4`;rK?-jOFZ{i({aiIQ}!3mn-DLjKVKJlalL-j
zKhe>TS2d6qV|G5O7PioiD%N*B&{;pL&VruO;QQ$C4i{xDN*ryMlt$@VIV@o=Bu-n|
zg0m`qAYvUC-OA#A>qbHWdU<m*G_C)AC-^fzT~T+y(j)rB6Bm~_Yeq8x2jLqHYKa`3
zLFDMlV!i0dg-<!Lg9Q2;(j&*)5^TCET^Y~V^vb#UaHp}^Vvat9>NS=`l+94^?`I9$
z+CUSi78M*#o~{1<Z$boQsV3E-yTbf*8vk`E{Gk@E7kv<U8=TsrjpeK<fJ7&Ok8_C^
z;lw2nN8NqC+f@|wrs;gbyIQx@{-;FZ!&uhgp2QG{5$6!9mKdq8roW)kIk~?0P!00a
zu6~YM%c;mus|EP4p6i<ZDmT(sSRD1Czhd01%LM16IDW1nW_wX{Yw9C8t1P@2@i52`
zFnzn5o12@YV`>_IjxVTT*WW?`@eT87$P;RXlj7EzB8cX{R4ovYC@}e#0>+NN*;Ry4
z*1mr(A+&g5|H`ZKpc5L-s8p2T3>v%v4ZFov>|3E1V>xk4=ZCBpyy>_MuGv8itF9TU
z)nBOYV0qq}TVLNBcioD{tKJ}9nT{bLH&-}Z)Zui1{m}cvIeB?uR$|ue;??0|d8UWO
z#B?<D$vJFmeFhv08{)66<YHSJR;*8!jHD5rv?rkbmflPpz7%SNaB>)`qR_~;XXlg+
zu7x3h7Q3V=xjT0Sdb@MCi*IZkm3p5h#XEhCb_*C*9F>37Oe8?V%jILei7m<sqI>9M
zIoz(!7naPirsQ`MF{jvcu6Wt<oPX$A-t~8tBopG|;*L&s+KcA6&AGHWH0g#)xffdq
zTeY2ce$jbJVs4DGch8;!ZU4)P6E!@j%w7tSJ69Smtu-3g)vxUpC}{vxn@pY=8XBhI
z)bix26h1nms;Sh~t7fTxloeP@X-ThOq65g~>c5j_$)9ZA;$BO`&)}JJcHH@M@4kIq
zj)g+56BgHxZBLSW&i~iT^92K$RSfRWKYmT;5Mf)}|0T>?am(Te#a}mX<mToa(_y!=
zf|JF$N0I-a?RlJy`y9QTRyp+#W|h!%F^?r5Gx}b=s&Si7G@Jr{C*l}rSLW;ABps3r
zr$Drbmc`%etjsMCq&>Av&MD3vdDN7;I%PC=zcOK!%DXh^Sol;gjYK_u>GP{Q&zu6T
zI*X^qN4ka5{TqssZpbW1(*(r`EGALJ(Mrb)VS=(r!v)gVryW^CU6FID?%HF&C&>Xl
zziR#-^33y(O9L<Vuc=~`{A&6$haDc9zVrjvpHk7)4d=vmYwT0@_AUE(yJI-7fT79~
z1D#&n+PLa^_LV8y6FdG$Qu<e~dMWcCfPjWm;Cg70Pm4|_0q0rZ&91p7X(>)Zeejhf
zuxa`If2AFZmO3g!RYk}5E;?7*VKW#QaTfpPQsgaVl_wU1nS6a4R$Ye%#}KW_6L(}A
z|Bi~*bVJYgRwCQwe=QC11-)@2$3jNKE;{Cyo8FYXO`ipfMNFiL?MKR2oIfVxHgd5x
zUHtO53;)Q)VCNQ#I$U0`w>SONoLgCB%t`;gx<_&a_Pqh^<VjsMHMMbSjl|@8qwxfT
z73_y?FTA*=rlApJUsTa~*2pNP0RsC!9;Le*K)tct4}Tj%ySpfiV*zn%)A^=L7RqQF
z@t{do0i7=|mQI96sU~!>l0#8uPAhOqecP-wFhj1gs!B~=-Gn8SiGhBje}!?@TnROQ
z#QB`*+Xu1*MO9q~Eu6l7I6BvJQmXFZiJP3V=8ee*#*DdG{Q69#W<m-I3hLjzi#8M7
zD~l(h_-+xn7Z#Q@HQF8Dpdso|6DqVXrr4#asjhB^tnDE-?QF9<nVFf{7hbP#8JviA
zPT1flGoGYBcRF4%yiY4==)iQuXk&`bT`Q;A@0ZFl+pL1hJ~9VPyP8{A+^gwUImEX0
zTk*egn6J_;sp-eWa&%<|+rfHNzT{WkSb9u2Ou=7bBAB%9E@${*yYhAE_Fvv?>H7Sc
zvuy%5J|GscE=8|M`_8EswGlx<raeh%XLiTB4&|SGX24H!RZ+QX*wR0q7#+Pmr8Y*@
z!O77vE;&i(5L;uST9SM}tC=PF<@p0xsN)zTrnYSzf7{#65wp&6Kkecxm+Q7AsCK{C
zIeYf(u|c;Ism=nQPVIlJ-j6SRort~q;~{Uq)<=4)e?|6ON?!Zv!Ze#h$!3C~f?j(9
zaW3(x=&uGH<2TyYrz9lE+I7Een4g>R8E1LfdC9V)SoiSZ!=$DrT^&J|>K;wE5`C3;
zMK!#3<vK3eRlhCWyLWHhUmN!wlze;2Ml}4QrDb5pFt-=Z%Ktn{fBU7_@UMFB)IpB3
z#KKfQ-tS*=_v{MX{>FipEbK{<sMei#{`~8&zdnynZSb$~nQeV>{y^K6(Q1U)EoUsP
z@^qrlJnpb8EPLFTsv9<PY3Wsu_g0gSR~aQHCf4;*;sYZit!Wy_|Ga(-%RgTKf%xUR
zY~FqQ_6@peYin;{pr^D;BFR%C=j~;lDVSjV(AXG7iE%1t&;I?xlMlqV`oFhws>>bX
zkJIG2|4lSmGvj=zp=y!8fcEoX+<*&NfQA39><#MwMxs2M{43P7v`DSR2G6c#&k*^7
zM=V_NaJV96Fw$+BL|MlbPf2KOR1cSMRS)9R#U2W(Z)r)uySi7wQMv7*%^?exTc7Pk
zT`!8+_uRg<RU)yxT!vEYIP{*>ntOTF<oBglV=cG(V|$(9xbpQXJ}hF{AT>{Et3P*d
z?wwP|$H&Jds<KR~l>rMx#l&)~J0vNc!_>Sq)55oJ6&o5G*R}`|YUjTnM=t&X%N{R9
zMMaf!#n`|OBx_~W_2nfdo{m?FY=mL6jVboCZN5uu%saDVHYy@`BL@7BXJ@aJjp*_P
z;r=LlAF#v+fxb#rxO_REL>+1?WJ>kJnKLytt^1mQPCapwREFjo!4*}#_I>%?5h_+z
zsTRUv__b>FYKNZM?U#$%V`o&=)%R}omkYpO1K6D7)2KX>^84ydV;0@E`Rm{QZ4LSL
z7Rr2nVfpk^;#-3{hMW2tk`(eT6}G_)<?SFGmeNt|`7DaKLaP}+>nmm1yjri$T5sIA
z@td=_EEU^e!&;x^Wb(sz#6+rqTp?lMy;4$Aq_C>4y6N$LrpA*y{>aJ6*_EuHXQf-&
zUpqPNM16WWtJkf%y4q9H{nv&3`oh<D-n9ScpAI@A5K(d`CLF`XoD}_~=AZ1ibE?uU
z!lf_4*MD%_B`_?EI_yXcacja(;nmK5+%YF&_5SgZZMU;i9z8k%pQvYnx6fMkgO*iQ
zRdV^mnZ{MBT3R9L^RKxh1%EsAXq9U~?Df@~Lv!=b@m&_*S~Nf1uU%lD5Iu-e%~SMW
z<l5pj`GPYhzLGzcp(+2)Opp|Y+}UQ8N0^TI%W+%Q6fpW%7_C@yS_7XlQ$qDBGo<8>
z_cv9U^e;?|1niQNr?yh5%h_Ml*VUbG{bHN1JY>Ep3XWgSl8%lnwwo{IXTCa%&$;o*
zZ`|}>Jnxb5@uwMR-#}ZT2I7wF0={UX@dTeoob5l9UR^TSZ*yq6Ev~4jE!%SFeLjhu
zTkRBD?<whekyU(!JYA6qD)FI1VSBG6<Y99#^dJ6tyZ`>bfql=yoiF%vDf9Z9FI|q=
zBL*lFSoCSc$}jo(`32u9_jTFk!>3|!e0<(LE^T1IqN}@GM|TGu9aBJ4znZ0Gibd`l
z>yIwt5l1<sh%jP_nMXVByh=ak^Kq5kUotTg+m$Q)IYip5-aR}~W_#uD*Z%pHFCXn>
z8JxQz6Qf<|I2bjvhnKgZTWaAluU2NP=`~^g_V07^_ZCW=i}Z*^VKzkMQ<503k8-0I
zW4m><DT9b3d5|G{(|_mk^GZ$SqvXmj{Xd8*en+CZBHpc;s)k1V!-qQ*!bR17|NZxG
zGjo4cbP`ne4Ku;SYuB!AU&)Ig<_VnJHSW^T-26Dpw5G4;U5w}2W9Ra1A2q}a^|4F2
ziKh(45oU@1<E5CF2rs(1WD1XLi^8wW%!3l6Zv^)8@PJ(~D4lhaS^~)9dz(BnL3(!W
z_qaj6psK$03dFMxPUDDqr>sTrIK>%|osyMhS2`!kb}OQ!`^%S5E2qBtgrm!i{*|C<
z_tIc&G02`$;arcbbmzTQ9#VqgH{tTFku}_rHKq<*b^=gTc8~5^w?b1F)2Eoqul>GS
z#-Ukxudc4HdeAmm;!u!kDQ9%4`_i7)^-=yC2R&Z$<rNSwXOO&--qW_Q4NDB7HumN4
zr1_UOAzs9+e9xy(#VNVBZr#eB{`2MeI7_`Wr&^)7RZ@Nxozk}K%D;;~vSWY#F@0jV
z1KHQ&`+w7gN5-NLQ+_u_8xyhdc_i)=GQerT$P~97cUBn6Gc(P)l_2q%w+`8hrto3B
zuI7ctWUV+$gbC8`?1S&~DcP1?m4TkAm$38VEPK6AJc`NAwl8fm1o$NaoucBck2S_Y
zy22L>&(dz-zkXxZTilk%w9*Z(BE&wAeE$5HnyP9Kwt>rJn-hR!gSCE}p}c%*xhAp^
zu}gyV-C78jr^g9IW&-rPiXJ_=X3d&7OKdXF)B|c92#0$n{bXViQ&aDE3?mL}?B1Y!
zh)w+vn_{zLb*NC>9GkdvZ8q<wn^+@G%YD4Ofz>8*Gv}NJTZMZ1|Bpy<Rn~nI!9MaI
zZ60*Q<vo7-^qfe?m8@&eqG;I;HplG0Zr&7-RK%;ex)u^i-cM!?(-R!i`+T~Imq)*l
zS~88bpV&kXIJ(Nr&CJcm_Ge{f5#T{{v!4u+a~$mLceD7N4nRpNxiD2@KJ~3@5BF`K
zGDDORYVXWceHb~^IoIDoIMCCJuqx=~LWJHOv$CfMun9l=I6q(Oomst2IKTs*LOu0d
zLUMAlTfbo8{OiwMU9Y=rcUhX7n^O?30&=IW6njlGZWVuQ8cEKLcSJ4KpH`x`Pa{=+
zTHE)xw5BBBdVt#4qu81TpPG?lX!(c$n8^2QeRh&u9UO9cO}kKnQRWVQv^k`zruL|^
zveGNJpg=T5D~qeQJHc6;FR~^`kn?rtNKb9Fw70|5)D*U|Y)$;*$EWZ#h<qz6o{YW~
zQ!rQBICM|m*!U4(_ww16E&tjgv_CAX@Fl$XrC!x0{VU(zIKCr}Dlz}P(*>V6Oo`xU
z_mffJzV3AM_znrCPlep!*3?|yn9gL~LgC)&cBYz`caMcFnhiv!ic?b+72{PfFVO5*
zv#R*krZ3fDcNPD#zId^(mx8M-y}E3R!fyYU=Uemb;<vibUZR+Hkmm~g5uwK42-G}=
zRXoKg8$^O$3;~9=#c@YosT*?{Uwa<04K=ddV<~2az03>~V`sIs6LHJ_2(cNq7j^jh
z;hEPu99jNL$c&Vzn8orHO^5xh=4pXtAJ5=YZZL6Y8&#}rXlU3qh)?6WIQpepTHQ!X
zORH|0lQi<_<wXk%)uTs`9wVDX=CQJ{1f;t6CB$btk9>+HFsh%QA5pT14L^+m?7x41
z6UFEdEr;*!9UmG#*OaUklay90nlh-;JD(hx*e2iM@veQV+jm2`=g0pW<Gh(@*!9RN
zfOwP-#>_;lJ9+YC$=y4hBTquZ!W7Efr&W}dA7Yyf;%%H^$}Hr*c{1jmn{-@3O<HX1
z@$R?bDkn~ysBy_!7k8l|Ou{u6M}=+e$r5V3jz*^FO~7r?F754ng>8}_%mp>^wn@6I
zy=Cc1oAsOxo6X+}z5>9KXY1<fN=!>rnx5LX{zkAjQ%FKW!j`%kA;-ctL7vmfGLdO=
za&ih%a^2nCRsG|k-c}~I4?LGMhPn;y<>eJxlaZK|B#@1qMJjE=VGoIrb5|bBv+X+l
ztF9vU)N!6o6twv$P^-84GOhK&RYhd;iiw4FP<|AtJ3Y2M!8aa}!ns11XSnUsX=z4@
zSk%0sxhG@J0_yzk`Rr)JdItKyyLV$SZ#dz}6X(*o7o8)%Ww)>`9IANpuy@WxpV>Va
zwY|4&<t#oS3LJq_e%lf0;Ay=WESm~&6^jjrX9hyBZ>oY*HSx|<QrN$_*xK1Ow6q+4
z{FM(IsJO*Kc(A=lCrKl1YkfDrEUNxEPnqR0h)32>N6I}suM@}ZF&f&sgn<-A9S54D
zB=hoebN7mfG-Z>C*!Qa}!CUgk;AQcPyHe}lGF(rkQWYjgU5b7o@SPuiz@zeOz}9$|
zlnKCWO&*ihq0uRN_UH9Fva&Z?TU+U$y4%@}dT_N^BTxazRR!&@aqa+xb+75vw2kc*
zcZdA8p?hi9IZ-mWNk@81<I^-xpFT~WZ4K50{L$?ul-Y9NpXhot+}w&4Bg7Nx>gtvZ
z;^b^(p!XRR2(C7{3oKnso}tfnS5pgI%XVm681H!2O00(-3|&ifmm`apmzTROFX2O3
zUfT4J2$H<v=1Y`z%JT`SsksF|2@vLWv@PHvX!-uh0b^G|7KH-0h50$umvJ)=O3gz9
z1NHd8@F<jx8Yw9$D2h&Be(JN;<<yAtl_TACGYPT?BgjqohXCrJV!r;ib+zG6?W7fQ
z0P;Ag10rm)0T^E-PdyfWrZPPdVe)s+qwEqcs#xYaJoC1+rm$~pGppTLE@CN#&w*4>
z2HMB`c1x0OBtD1XmRS+jr>JGn5w#LRN@cHoTv11^CDnd<jMVkz%UV~z>({S~f|0AN
zxmt9&NYBC1G4bKUhaKzUtUwiD?OXG#^;?^wGcwMiY7!>f_8yt8`7DGd{qgX)WApjd
zADEx;XjTP<qG-fV1yv?%%p`*NrdrhQp_xTRMX0K(()m!Z&d&^sv{m%l6BqQ+W-K|Y
z1utJitlE8EojCC3+-)Mv42k*qhf`j+o8a!K>glx$>?wNq@ECIQ9?zHp>I21iJ-4Z@
z2)l`?D`@5uNYMyz`|8Q@7&wtcy~Qr3+^DUhViYWHoz;?U-o(c)=J-aibPoWPRUYH_
z=?jTsQI(64+S}#k&6_htl1TQ%LCJ7gLRb0$H;agzH0oR^xdQ7bUr;=0T6OhRb#((O
z#}pvX$hiSiaAe8|Xf;P#fTF5{4@h6We0gQ0`^jrG@=ilq+EdSUP>3Lpxs@X7S*@Q&
z6Db_{A33fLw?*`^IXaad=XJP&9yo<xM8HGh=Oh6P5#IyI_u1wU{a8pA4nCekRgk4&
zq_YBX?h*QEE&>b`OthLWpA&r>DpWNlaj?1n@3upO^QR{bJv(OFCsog#vv9~~Qp_BQ
zM2$|fkq`@G@Mas$n|z9Lgo_PjL_YTe?vUc`@?=yE=Ga20_GMd(9S5~jv~w;VVJeZ>
z>c8D9fqHe>azWRLfqM>ebwo+b)sC>4l%1^#EEm@uCNI8Kr0wK1KYyZic%6@-e1Bt#
zK#}C@=NaBQnd{=(o8oZ@0s{kOC;g7^0R6j@Wh;OZeZ@x`%}w$G?<4JS7*Rd%BAxjd
zSyVLMs3WZ&*=9AolAm1>iN3PBIxu!S$8L)}s&O9Grz<DB#p3>NG;1yKhEQ)rK740Z
z=_5YTSX+B!or-s6Ru+naySWI1<Av@#o8)H3f8?p#i?;nz{)4OE--$(}$mSaCAWyc%
z9hDBqb{cM9qTo9@GZ*(!2IQXX7GG6u?Texx=dLc_dMe)<08n)M)2u83!!{l3qDNqs
z5~89?vrBf#-4D(Mh+@z(J5nHQ*?MoRz!7DZ+*GmiXtjtd*EG<xuLyP;&F-;y#kgjV
zVe+sm$(j{p<Erb-tAnmSll-&i)t#N{kv}pA|CgV&kn_g1J}S9VUrU#f#yf2eA^Ry%
z#Y9C9rdERqW4NlFWuj0yr;@{X;R7Jf-KwtBaLz~W2Y$+IB#MM=#A%arRR%wjdY7<c
zp+r~zmQ~kfvP}@i?;QW9x!G3%Xn2cdiD}K&B)Nz)xmIl#9exmGrNJj@-^nkJ!dWHP
zbiHP_RhuX!_o}?f!l%t8!I^V?Nok5L?fT8PD>@HYin+}?myh4tC>O*Bgxv2`sG7!&
zjOo1IzXI>4YjQ?SS2yJp=lOz^s;*2zRr>ijvL0uGU>?I-oS#iky8xpm$wjU^pAn2=
z>6fFzNN+*Fi&$1ot8(8hah3^OSz#e!PD4?Bz56i~#0G2P;4n^gUxY{Y2v<;X`kOP1
z;ye#2AHMSaYt&l-6`Wj>Wl-NZpenP{+XshZ9z1y9mM6FI^FKJj^hSK<wLBHIjLF*v
zA?cFqZ#<5Pkp>=B50Z*Sk;F+tQA3h=a*31eu<eV!ACb`GlA-<k5u$J^_W%!<DIq3C
zO@9xnp&+G!soKuYZu!%+rhfLu)??AP@9)=_jPgh*_I~Iu&v2p?!Nuo_WXGS4goKr&
zmZYww`wzx@+YPXw)6>(jDB3h=MCr+^N47;5<>y~Ma#Wt0XRYDt>ROlU!{K%)MbhUX
zqb$llz#t7WnOt|^#-m4%TAy5s0Vfs9xGa?ZVM>aElH}Bdx?F@ZeAaZBRajqi;Op|8
z({uAn8h&^te4Q54I>}`)r%5?ipFG|`n(VSUbWqgM{h2JNml(;kr{5~0OO8kzpc+H~
z$tYluI}vl1)(^;hRxhoI-+=Il|9J4b*xTC&OKup6a2>kCNhDFyIzj{ywr=MsY>Rkz
z0B8c*%spChNV>jz%?XZPUs7^X67fyQVsW27oo}&N7MAGHSHFkivTKW5T6;%s(JtyQ
zGv&5?LZrfjc^?3$N-pEr9+}?nbHnbDnR7cirvBX3bm1|?u#Fow_)e{h!&_gxQWX@0
zj)SenuqOZgU`i-g<kQN0@wMZ^Ew;nw$M-Ot!p4#@Vv#$IPiJp5acKGRz4TXU4Boai
z5LCJhmVzq&x?v|uumUncMt=u^e7YrKfJEGmzvP6rAt1;`dN=4m(E!IeK2$hNh#(T~
z_(KXG(J2d2(T9bVHOG=Fj1-MuzzhjFIcfxBI_tLJ5lIhz;OB!`4@w2DOO`6WRjH==
zL}42rF2KGJXkaZ#ft{Vb%&i^yBQZJojdKZdEmQdq;=tGNjSX>%>e9i>LT92(V8iW7
z)`39LJ27{Ct%9Jjv2h$xCJYV^%9h1(_9BC277#2^a5{DH+tihSSgZ$J1wStZ1G7JT
zc;*>r$tq$cuc;_3d~n?g6sK`lo)~i}`&F~8BB1O#E)<GDnq>tINg9miKbwEOYr53o
z7el~w{Alx}Lq9R?T>e2rU3GQ!O7i&(%~l~A8IG{0<9d~T&sP6<hJ2S#H@M}cgE@Qa
z6I9eAkNJ02_%jyx6KksUKePpE;f8F>*8#is1i2zV7MqSI#9CI|V&6k8(o4f_cj&F#
z1wjgsUp72E9AGTqo~`)jGg>(p1M#oG(FwrUkKX6H7PkMSOF0)K;_YL*H`K*T&Gp`+
zf&$AwhaQx?b{F%?IqaAKbz(ypudCl&^8G~8eifN%`ZW+?xVk3hbTP(sQ<74`Nezvr
zsF~mcM&1qa|G16BE&f1@dPnMniS6WpWo>7YsV5*tL;T%|!%YnhA-S&NTL)Wn_8Go;
z45k-pTE52pF`yr+Mf~E`OyAa(+eRIq|8X<69bN>loS#OXAf!PmC{f~e`To)8ZmQEE
zHe1o~xS2;T%Bt4bGJB{&ygK(srf3P7{F>(vKN%d$3l3Yhh+X~`3$5v24}*(<F>#h*
z!j`8C+#vqQHZAu&di_}RA1Nin(mN>`$gcOG0O<>d@sh%-O(=FX5+V<~e}otVvqcl+
z*m^&i9P*4~b%cbDc~k13lPk6f3JA(XXebLM7c5<FZtlIgiq1=vC94C#>ExKbd+1v;
zinTAZ8TYP;miCdS7LWK@YwEUppr&E{SI))tdL*FiqzGqSx+!;`=RlijO@zcw?FFcH
z2ixNxJ$jjqtyT5WCiZ=YRbCZJu%635A}_OO?lUK1ZG725fY!aww_DQ>jR8cB!}qU-
zCwAP)p259q%`w-gw7eo2nQPJV(11TUn@kknmX-=EUmy?VoPW9M_oYiH^X35ek*R{`
z)^bRS$IfB9+#5vVs)w3(A&)9hAl!z+NZH%i&k4*8q=xLd?<1XiCfE3s#X+eq>bUyv
zJMWRP3-*Ist~{t(+4Gv&kKePf&?l3N2tGvO%K<Sl*XFl{2??*W2}zkWo^h$OJiA=@
z=ldelnyE^?l(n=DbIt)G6wQ9CBCT2BJkeqb*<OK))@B|oLf}4)z5DkoAqe#K^qfKd
zsx;UQ>PN`D(f7O18_wjtx>k8q`&t<kGgu6Ssz>>D-HDGL?b<E~p(M0%yjGf#G~8Yk
zFwID2@du@H+t%jP-m6EBfH{vFL@IMD>F87WH=D^2t;(1%VEz7~*1EGa5}_iBBiVVp
zL4&dCaJ<WhXim`2oGEUbcr^KWej+?(x5Z?&1#A&2GH9(N%gC^>eW;lZGQ=k&?CDH@
z09m_-TiS0EP^yZotZb#_n`7BvzJ6r*YzdGsUMo>ifrr&1)2P(Hce<}O)Ty5$$L_A;
zgrzr;Vjv?3o+Ci$1dWxY^~B+47_vqVm=n4^^LD&LY@EtNbfl(KU0fB|1y=ht2&<TA
zrXaTBB9AlZsD|3wC~TW|ZqUY-uVuRpG*{6nJH3JT@7E{3x*Y+*7JDw%5(XMotVId=
zQ25(eGCrXS?hljq;$8>06t-FY#BFr+X0z@2#I5zd-PGRz-U@;NeRfH;i3-Glt<E2o
z@ah-8x4(VNok%w()hu$$w?Anc+CEG%$?9z}jjZlz#UJ5vl5Nc<EwVfRxE_XMiBXSG
z+vk`!txa42fs&Y>UR!5pK_cC$>8>)1w6E}2jFfDvv-=T%_-%ejz5FZ?6o2Hj;o_N8
zBBx0QyHugrf;5VM2z=*;yM`kgSks*~D|@C%-+eB9EDW+bs-VQ|?CcK9q{PJf_I9f$
zn*hg9&n9CPA2q>y_K$~0#_p~DNvWw;n*JFM{f&Pd4uWXBhU5<1k}?R$C$OXY#}63v
zXo-2!R_pwt_}J|+;c$oz@>`i+3~m-Y0wATKvJu=<Zy7g_1Ej2fDE*APufWEk9wuTf
zEYWmTufjg{Y@!jA|0;W_!nV}bR&9xiW~1qbG&fr908tF+?dB$4Wp(xY_j$C=YkQV`
z1l8#S&Vg_PycHWh6_5&C<+UvZDLEv<D6wB4xL@=hId)$|2E94wy!#S5gF}E>FVAPh
zT1x-%{2!RLRMQr`p`jFx;~Ab!tP>-qZAJn<r}5>t5hB-0^RlhQAZDw)(J6wlezn*b
z$*f@^Obred9ELvHH$HVmx-}2BgRcss&-5yuu@z3v<1Q~N;3HztQI=i{0k&>oRkCk6
zgbx1u5WcH%Gf6rmQUXeI8r}bM6+HgPq22knZ^OmZ&YcsFA_L)3SUQ{snlpT-*%L20
zwlUtu{!BlnsHj-efozPUxM<}k%>O^0hU)>IWS1_O9W@mB|MDsNf>~NLt6VfQW42jG
zd3~3gA{vCFbhczpqIm@Ill1!$!b;M^2Ow(nVq%brMYL*dhujDH2l_Qvc6FGD61D~y
z^7det-6D8ZkC7X{L|LZOkO5RwRO)iUSyq{J=I;6V?f}xyw}A5{g;9Fz(FOP5QY4`U
z($XI^$Mow6ouTu3CB?;hP$l>H7ZP=*?y|HdjIIPc!*NOPkYr(Dp|`g{v5*Ogl@b}<
z26?rFdP*6m0F1!&8d>7_dVI9WZy?r-c$A*HQPEk@9pM^~3vBpP@>~2j{JxV<&7&40
zul5F21&%}#RJ$Y;3gg!M;o+98n{FJ3%SWCHLKd0oV3hf7xIS7pt@sUlPkD&LPX^rC
za^iBnMpsszhUtwKot4XD!IMQuF-py*H*^_z!2r>pS;a?zKobX*h#0>?XSCkm@yBuE
zHzb4-``VpKkNy$X<&T5#H}<G)bLx<YawE89IA`D-A0JNyv)}575+iQF3Hrq<Xjg~W
zyvKoS_o*i{+c4MRM^XX;)-Pg#P+U8TB#&ES4^TmY=S0gM9se^(2?WzJX9ZFW(_Z7e
z#^EObl2CJW6lT<TQ)@OWe(la^o!ov}O+~9{4X$3hwiJ1}tiXW(RkbDU4x%yP)lPp-
zU43osy+kCv{Oi5~0X)$ybPUM_FX>epV-F$a6!^S5r#Pc|Q5mMB@RFV!bFYA$002o~
zQ^MmTTW6kD1R+v**PDh{UZ9DngTiZU0mkpedhy4ho`V<YD7$ME;S-qXstW2K>!oD2
z1RtZPV?K;_3+oc8m{>+>Pt+!lZrxfdBqGB7+o4qGDd2`KSa96-b{4mK-3^7zW8@1#
zyK;rXFEdv428>uTpQZfGm*-dcl;IamL0t^PG63NhL^W*z)M#eipYP9OS6_d>0u|mP
zkq>T`!eNbR`qr)O@84Urs$(l=4kOV25M{xCG<<q_bB&$QX*s#&s-sLw;&(EOGBcGm
zbR7bb-=pB@NQ#O&qH*rhiDNb|P7%=35{rR9UthIq6=+q}GiRc(Z?sbA=*En*TJA+g
zrUCePjgawO$cpIOGmt-I_XSNoxH{j}FG7~>d^50l1FD?Xr<VnK-z>|v>sAcBckfgH
z;5p^=n?=h#)6EtG**t1>(LXj_sTV4>IB*TEZqNl86Bi1H3gieriV7}IRYhfI81E$)
z5SbypZgYgRUGB%ae8Vkb<qn6xz1PGE{a^yVG@%a#%P-DNkI!utXj%3WJ+hYAcT8^g
z9qsL3b&o!3I|;5KM8MP@RtcgM3&5({_ow86?PPe8i&bXgR@}W|RmjAan=cujodx$`
zWMy%FQS<|4<v?tGhidpY++YPG%9%39A?$u2@dBHV$F$RoJ3_yG`$jN>Lhf))GEU7T
z4j+y<Y$pRy=G||WN2Q3$4A0TKxRD>Z;_P~icx~e{_zmnynF3uN)$$anz0k>8M&$Re
z3k(x-J7_D;+=2RnCeJ~wS6S9KoYSO7sC@R{KFbyXJ_kt7KAHqN#!~V3=u771<Pg_I
zAV5%(PcM%OIt{&#UA6%;8V`dpi(RIk0+Ry4wc!1aKM3MH%(j*|AW)*TGcUZpeLZke
zQZFxBQf9K0N%kU%)T>njK}B{M>lxtwjW=JeZ=7VWua$TbJ2`WK;6ecfW~WA%&$V)k
z<qb9Mh3^*ml0|KJ|Ih78M;BslWhHDm>MZU#-{xdxWmRbqvxq_X4U6FGLv>A9uilLS
z8GuuV?=56WgLxhm0S@R^#rr@Ad*Q=}=U;dRBh0Ge(*iGnI`@^Sy3Z>x%QLvusF9<j
zBaK%lm-&nN1bzTFNofyUHG?kLso5k77v+pJP%xBGbr6+cTD)ucAg9SzOv7EroGWXp
zNGh1ob!;(~aG!K3g3w2@WI}~wSVmuVNG@xxuwM&ioDxHSpdFy=VW$ULnV~4mfGBg2
zio803$03Ny5azv)qZd(R;*=SR>It^F6byEh==+O*J5@OuNa<C@XRVc_#k80+qs#!?
zd@r&ar}8d+@WfzNUU9#enAqK0#uiX;p*>x2xrKn$-;~w_4-T^cDlo3!BnRns_Mm9@
z?&6McK88k2_nM#>yzO-_1do{L`z{uxoFrO>7s8PEXGJHZDFJe(@v!TLWm~ehlfTOi
zqL7bg+txeoqNbxm74Rq>*xYMUa)^Tjk{8JLv}-yE&;V4~-I1KTl2`oJLP19Qi(~uz
z(XlWGL?XgFdD$vs+@w9rXD5pE1BX1e$gW(bT`<12In#Z?t*q$fg^F>QRcGe5F#4{&
zevGgeYJ1vO(>wpY9hm2E`+A2<c99U-q-`I-@Dny)><pwY>lw`Xx_h)2r5izU_aFL&
zv03ZOE<;`{H<Vul=_~>LfqQ`1fHM1l!UjYbme6^;8v?m0%p)Qs6ym)ER_us;1ZGO8
zJ~IP-j`PTQ0>=^x${-c{0>Y}>jD2An5a~d=UJ$`Z=yc#DOGfS=todWkFT6hmadLmr
zSO6HXd|#=^M=VKOZX72ZFZkYmfWQDrhQU7T_c~4zZIN44bnmKG4C_>(x^zJ2itn+A
zf=8qCDM?9`)%%}DY3N-xepTK#zPYr1W)`bL827$E1$D@;NASm`$G;(yG2ai`ub+yW
zG08)#%C{#~vDtyU{87YvoV7w}CfgKr|9)KCNo+IN8!6K-3&s}cEeASEqy~*}ZRV(D
z=hl9<xOkC}t!7C2>aa+t1F^{{&4QexAQ`A3qC1O6Ot`^u6$;%J&d6!@4bV2#p!cF4
zG_hxgo{s2$(5<hJcsrebB5Pk4C8L}HG#a0gT>0D5Ek#OLLZU!?XYh$I1ZZX)%h0r_
z?f(73C%lBH<LsIS_ZhM2LTk4w3`h9+D32{>3>z{ByMt9nc(2OlUAH23mTZKXgi57X
zx6njBnX=fg@*J8J4JT$5_s&&_3EDb3V4_`b!NTVAxxo0jRUUEsp~4Bal@B^X;IOZ4
zqNn3}m`Zd78$LfhZYQ+qCTU`zMONAZ?wzN4)^&3r`)An0Og24-?JFB>9rglrROVYE
z4-94D+9_+Cq$o*+JFd7}(=8|J__o)6;@og?Bz5W4BQl+12=@THhRG&49H1XR;sa8O
zK!6ZY`w7g6Em{7QUis$un3%G$@6bnK9I>m*cv#e-L7quTPOgWWwQlREGkO$&#<<0=
zyh|QJivIG&q)ZgJMccokvzG*2)_Yqrq<unT^Wt}K*L$C9sq;K%sMrz6>Qw(M?qT`f
z9o$#{Sijb1js9sw4y0pyH14o)MGrP-NJ9`@CaDPJ6-}gp>5@Of@R_<~tw=;Y^cT!~
zO#4=JiXvCv;*d&>T$t^4!OFU{5=Ig*abP&yCW8oPfwWEs>n0Re2U8Agy16U-&yc{t
zM-Wp2_4$1-4VNqw6D^k!MZBTHgN)-%3!VEH=dP8m`;OI?+srqs=aixiCS<iB%~t+=
z_h#7imal}xlPg7%(Cb&N?@M|7cy|i7nX!v6oD%*OF^J8M!Kv>*Oo7qX7wIk2Z|#6V
z7u3L9dwfeV*|k;a=pc}r88QQy8Z|e!`E<4z9e!q2n2#38=1;zpQjP<`DDO*@wEA7$
zP_#px=o0dkiP`cy|9GRsnYa=oI?o1j$#9_l)3_qu<t~lx69QA7J-?=^8GM4RtR7{C
z_uL`eGEY%OxJKcN-P>E1zXj$y4fxxU+c{s`4?Q!ess3p5c(IUF7i1YcY=r_59LF|r
z<6};-pwQr>jxn0LA_*tX(FST^<j~>G!%s(VagtEZdcU5e^LSG)G3xIkw4pwcx|*0}
zW3P}~)fZ5ng4&|&8`8FX9$}tl9=>OhtOqU;XwP)TQ=Gkv$fa{rg)ZY4%Q7M1cu6|m
ztmxFvIDZ|&3(j(K@s%y$uIfIP`RpPy>t(x6TIoUz2)OsPB^tnY``F$V2NWg5v-~FP
z;O{grFCTPz+q#}DqxrD#ZrrqqtNxuUgD#YRlsg-490z|l{;g_1t0YHx=cP8Z%6PYO
zxb$qNXd_dvU;0--Q5w(*Xsk6?6+jfBt{!rFYUb3|77%WlSx{A3nGLQ&`n%a=w<4@_
z&AHLh&&KS&ee0^4A+tl?g@?c4-8;i4?f6*;O1SNF5j#;gX+rPfKSuEUnnMwv;m391
zIws2@dDIQs@0N}aYkkTHqARrheON{3J8*JiA3PZ+SfdC82^D|$M>!*X<cZ1mc1q7T
zO9)^sNPU;`hU{z#+v4sH{LqkMXC{jb-?g-ae7%m1PPF87-0;A@(VzXandr;my5skU
z?q<FojfHvh!4~R6^yj%W3Tz>K!OZ%45-fdFZ`>(<`NU8~-5Ktt-9(F=T-ok1Sbjos
zbzKK@=7u;{U9T(fv6&lh3TqF8U8^36O<}oZtex+LYtIax?|*Ufrp=)T-?rXHRSIDN
zdd=AL)%%0nJyBSpr9-;%Xd-#}I)>wul<+t7%TbgZz0N<bjyR2SHI8A2Na3c0h;J9U
z!jJMuMy7Sp_<Ey?Tf4|91<N8q=tx9;a4eM{P9JZdocS4p>G%)esQbD%iE26)>N*yZ
zU-*kL3x`?CH>{>JdX}F$+B#L^NBkEMyMI$#G=`*+=5v}}W70%Jm)~kcH%JZM4gfwv
zZMnn2Vp+?%S_d7$$hUzjE<hKrYq=~y`!04$6Lc45xh{A=Cui>7x|!KxA!_sCh!Qi!
z=5=KyOKx#tMbNI*p?!nVK3fm+gbf;HwJeq!+ahb4>~!HKdj8R-HS+A6t*OBfN>Pb3
z3m}i<`R+=}*P3Jz6x~WHEJ<FL0%U#I0{Wl;*J5M2whN$8CANnvTX@T5$0qXkuOB0d
z(F36P;Lw4`>td1o_|^FvX2hhV^r58-_(onq33zZVA$K$HBYc?#I{==%_v<UhQ@+0J
zxxpR5Z&3n5AbaMPObo=7%Ga-D%`>$?+u)So1Hq#4jP_yZfPjr4!}Ob$JHWcCs%k9i
z7PmA{B$UHT((;CG7)RIEDyAZw6~-xshc<pLM-o8gp5JD5z3k)mlx5QK==_wx2%Ubp
zs<Ey#@u<K0xP$KzRD%3AbP^^!oL)(u+Q(={CWS;;AC97ByVWtTVEek*dSCJDH=-M-
zwGsYFh`GJ6R|13e4Gajbse~8dCP_-nap07eG_dyD2#F-(TRa&h&+s$ftLVHF>sDr$
z459seYa;{{!t;OtM!1Vy#vT*j4WCCW6{rd>4K7P+iF-*e`2cb?nhVGvM5l4~>RVe0
z4-BPX{@ebAx@^maM76jd%>$qft!m8CdeAb;V%(~~w=K;HX%y>=kw>w(j&awgLsxgc
z&d$jRS-TVkDDiamiz-hMeA97hi{7*fkGHFPQgDan#=1*tce<;jh&5fgKJ!zQBDS|d
z{nWGKZnbmsLcBU;pFYRgm}A_x_Mu_2!Prk0&<=nHfl6-05kicwBO`z@RGAnaE<(^_
znE)98N=&XfH9x;4eHLcGST=JrSX4-qIKv{D)th*j8|PumQ>I^z8?)t0XhGYMn`ap0
zKfuGoWd#IERzoJ2Wl^l>ZF%yRkV2YXn`G_sW%qq~UUsG@h2TOb)sRx)Fl)<VyK&qe
z>|gd<O8<DAxKdbk9DpBd;~K}}K~$&fFZNjTSYEo60kW5H#G<3Zvi<4hGlaXx*97GG
z&Zyzd!^Qen2u@N{QD{$E8hUOx<plvFT5~PKfS4MvB6xVM^gw7O_=#igxCKe-DF?6Y
zaTE=QuZ%Dp@-x@Nbrmpy;*S)1p4GnsEr0`F+VGPAV7L~0jn5rqMGkN*WU?|l1n)F?
zy74R=yA*6Qv+wJl0P#zIOC9?dG@qEbm*@_GCWoiJ*VM1@cqf`hdxOk1W30c|sdUWW
zqRrgmA=YVAKf{6yF(=CF;IpWrB8lGV;*N#8y<*N$dDw(r@rKaEh^3dESxfIJyWA4A
zC1lZ%#@g1_y+m;EFEh#7BO;=K{<8;g8#!#w<uEbqBuctSGlWppvu6!iE~ueS{AFoM
z*$&$#jyoDOx?js<0ppGygCI|0&g&Q!A#>PEHSELlAs*H(xMubc`drx^>`+*%rJ~IH
zN1Ro4bj+O-)!ZxO9M;T8CM4@jGCg-;yr0ox0YZ$wXlt27)QZl{hQB&7h|QS1<K7-S
zh(jo?aP<Vz-n3uu0Y4WKO}SuCd}d}Hro_CB3n_l4NT~bIg~=78Z7%&Oa}$No%kGr?
zDgB~<oC|SOr{i#@{=#&ViZ{PQ7TQckTu``^s^1M*vuS4<B+hTW)jTP5S~xd*n7Po8
zRV2<~&FJXp8Y2#l%b)LLPso`T0@SnIUp|xmqBvR(H7F{AAtx!Cmz_JPs$qBrA;y5G
ze?f)M<7hu?a{Z(nQIw+)tl2z<5Csk@_*9@goHZ+iVL6M02WU<Ix6x6wY(=9c;MIHj
z#FUKoGr$EGu0Lh#o_Q{3veJACh01%s3=%p(l`2^IT<Z?26~d@}D4{~;>x++zh={P(
zJ%03g4@ELkiBO?ecxo59<g~lZSe6O(NAxr!95qj1(t^<3jwYw`5!g~I{B85kA^xH$
z2{NgPuzc)_f@mcZ&jDMskJis)wwLk3(eUBEOxo}}x|nlLyD7xZ!`L*E@kd)s2fAB%
z$yi61MFtL&ih$He5o^7Y8E|x>y)Jpw@UNd^2xlE2jN%jPo#aDiF~gLbgq^@;mI!U}
z>=10(!Ila>d3EvX5rZQ$aK>uz^74j46DFu3XkJxTdEDer%9*Z;ZGfdF)A!;)FL_-(
z)J7ngC#FC<ME9b$bz-~=e4Yr{cA=sU7waZwhD$nZYWA_C=7*%jT#Jtp?`ImS*j32U
z%-eAHJs7O65$E-K-9!BQ=(V@86R6~6P^-fS1CQGd#EJUx;OCpg$gybz!CkWYJO$En
zqt+A*|GP`;#b!MK#@ll!CNZ(neye`RHja1-N%U>P{;+Du{8WMBG{}$qB{osy$w4O`
zt$bVK66*1ovt_pKcKWXUtek}1-A?;%K1^)_qRag&DAtj^Jz`rg5x$yXS0J28-<JZc
zcbhasn-1*XUz7fRGUwGj^hAP1t#6iy$Q=HD40P9xKS6f|qsO>xGb~1T$8JtyH!#S)
zMshksgy&*^4k;_m374Xk+vSVEmm~F5^1n{DPOlBKE+#dbB46*}R)7h{97`|3l#146
zD7*|zzui?(m)rEbzPih{H&8?G9rQETi}0}#2E=gZ;M8_~FF5tFMdkByS}a_qx`Nh-
zxPeW=tT;oj{RDNwyb2S8#&q4YFeHHM9%<>pnd^=n`a_doyyT_bfWCvikrYizt|)Et
zor~d^dzBqotkls*gbkpC?6>dCpzkBQ2o!ara}Bn>2aftC%4^p4x>c$}=S7deMKf2_
zTMSj)iVygUisA8@lWa(`Ug2sDTDr6LAwGjou<O8}qidZ9XIAGUmj&p3;>NrP*r#0{
z6dS4^v3@`NL!G0oHq-CX@*#GRvx{7vDldDHJ<Y71e541G$o7Bdw4lk;C=i!s4MxK_
zA(p8b`kSOhlT}pR%4MQgzS}%6uuq$U{KAxa)ZOSy-I_+0o{86E<UwdngxL0BZibcB
ztV{Y($^3X4w{HpB3}_BX*p)O_Z{}kQFxZEs%%CkLO3$+Nr$~~qR4f-OS2bcC2_St>
zNwWQTNbEtF7v1{N^w?B1*}jh`j;f41_J6bc@}@VhX4&$!Js5)!N8XB4#jjP}KRzM$
zN0mty%F%N~d*O^#Yql)>w3Xk5dKyLiTu}W@drE!xyf^dY93Rov2sDa1wa@81JN+<d
z2ba#Eg;Y!lA3xt;C0|a6=lq|iy$_O2M&idqUS1A$YKt^m@5x#oUOc(X1*OU9{9#c3
zCasPX1(8SZn@qAoygxpj`V!`Sb#+37Vm6|%Tg@d<$=)9Z-|c9i6xrI^ejaxj2UT-n
z>_W2qn8=wJ@a!q+Q9DoG3eFwhe6PW^@WN4fWf#xWE`>8gg)?nmif4x8rrYJdT;HsB
zs-S()ang0a1?UgirjoHbIZ`Ae7ya{~ABUItU+M86o_i##w`{awe|0j~5qKmBOQ9b(
zoO(|T55uLy&23s*0U#>9Ui9u;=aP3lmHW~LoWhD31=!xM+a6B|8Ic5Q?I~&1F%tL8
zz~;<w()>C1x$&|_CwG`0(B2us|27>qd(-#v)WJr=@Iq8|Tl_A8i)ZdXwPA_(S)NS-
z^67wLdrIV`rh8&Q#r0}|mrlda_fC+l_u4BxkrTT5#w6>}Y+V+};j-WIaU*habK~T1
z52e+hniu}a+?(EF;cdPidX=Bd@&}4AhORNxKvxLpj9O$^WyQUAhuEY8{$#K#Dhry(
zWlLX-+Dxx7{AtkgaP6q>g@($FUI+aI5{}(MX?@$a19C=4E)tG&sSr#n*=0U;E3Zeu
zm0_@-lHTJQnUL0Ak`4+N#}F&pc5mYDJ>{ZYv`xKwyR(7mRci5cU-tB=99{T=D_uRv
zkL)7BR#USF!=2g>fO2~lONED<AcB__nDlxdF`V6D!T!(1!ACj9g|)37e<U_k|GeL>
zLSZ)r;AxsYGVfwTqF07o@2#YMmhz0<)-dCw>qoweD>(pS)%ke878(@FXWqa(R9m4S
zq;4aQO2{JuO}avYf}HFpQPzO!1}C@&G&RBP!eFmteh!DMRI@yu-GCX1rYU_EA6^qT
z8-R~dcVfL33`sD+c6}q5ccw<<l#9^QwkWjsr9?$-Gi<|Im|0^~d7P{FIk|-H<c>Q>
zukQdwUB2$t#udNStulIE>xw~%#LW61u}>}F`axor;p@%|Hp^suK&rCbuYUfQ_d)qr
ztB{^`axD(5neKI6<D%~~#JvagU5NL=aq{%NjTm4e)FY|<`|0t(A=e#hUsbq{8hHNU
zUy<J-{7jQQ*KLMfKXdx0?;Q8igR}PywWJ|AX}+15;POY>Z~7EsR*YZdnK*P;zUs1l
z^xg!a9VJ$;Rw@X~WsKtdJB-4V^KCv}dsLBkOq5aa#dp+-h_K19v>}rWwq%_oWTLz^
z^q!FZ17f#_n=|0(vm98xlv#$jbRNPzyeALVDad^iO1_Nro_n}ukbpq~?z)n%Rp^+4
zW03#>pM<jss?4qRZp3tBttH4*`~)o4fgs6RhW&20Pb+d+SX(QJu|I(kDP6qz#(75Z
zuO8d~l%3}HB^XCk7Jfu?SAV09HM?pvlk!Y&jeE3&tIk;8yV^fF!d`3QChRoAs78!4
zSyQ~T^o6OEz`>HI{p^+YKe&V>CH9>I;0em=hEY!*h@C^h?N{2s91Ifq1ioH5X*5ll
zkv+XAN7U@DH|?s7o>>?tT(g!T@9kLqyanF$A+By|lYY^Byjk?`EzGGsQ;Vrfbo?(c
z!}Y@PTNIIdy_iX!GhOfF2S;)+Yd+>!giDe|JC~P2uLc{pJ;5ApmCM@mhNW42>d?j_
zU_oYl0genrYxA0}nTy%5f)GUwVY*m#olupqSw##ZGR8ih>qNWft=3C-Z~>kUgecw#
z)gcVTM-7N8+5Vd^p|&zq5p`)k8GYO^MLwT~dkpe1YGU0>FE{Spz55J);?sz8i4fZ%
zn<H>9W!F4-z($-=V&Vm1!I}shaE5lQFr(D5F8&$RC^a;}J)b_s`4GG`2x}6uMgdeZ
zIMyZ%!+nL%9-i-sDfl=&6)O1`_YERR9I>WkW!jgGk1h^lT_w{DF)f*IJ1?!9)1VRw
z2}B<vmtwr#5i**_i3SAq$jT>U%iX^&R}b<yVAai6QaL|uy~2=qzMl`~9hf5CkNewD
zrmq|Serg%x?<}hcrmV9Pu!T7ONmVTA(Qc=VtfSAEy_!BP>?9a?f${TAnV2%iRQ1;Y
z6FeM}SDO0*c<#VYgWb+9YJZ9-r|YJwI=+{SB=e!A#-RDarq!#rS)zuBHJpMb0DwF<
z)HJ!;3`Sg{Lq+8QBw}>bL_w97nEHG-?%4@cg!uJCU_#%yf@d^3EzxPS5%~5D21F=?
zYEyM}@B}EYw&KH|3E2l08*fX%1EcEIw~wJAgdhfB{BCG!LhBZ%1qN~u0s<BfJ4a&n
zYZ>}R@(RW-ZLbJSVbjQMbeodvV~A9qQF2SfCoed-{l?`t|8;6uhdj-^l$ax(B*&}<
zv4cbfQGC#C6&?MprlrBm;1+xL`wcjXDLM3b*61&D8u@hM#6qWgKj4H)&v@s>i}OJd
zHE%@Pf|IN*TvYE8Gs@(vX4^zcga#^tBLW`<UatzAOi<ce5okHS$7llzm=2G~D-DzL
zH$d6DxStn)y=Y}}`1E2WF&zWOdhd0k^TaBHHu0VjAg6WO<fGAD!5n?JByuB1;!$qt
zcS`DMHUp|TuyrDYGkiY;7{U@@SKgC5UsIAORkBdh>!&|osAplxefuAdA5Qj`tQwfl
z88V2G)n%;<m`aZ6=h0R(su8KL9pPi!Sq^3kpR}g^)cI0P0d8grytSn7N_ig{-t>wM
z_2Q6|hQnUxwxI#FF4U>@-Ma%9x`QvuKL{!AWHZWWPWKB(vtvNVFvtC3m0mHfOHcj#
z<$VCd(IpEce$F4N1GqA6;*&v2(+z|V@iV}(du*FBKl7XKRiwNh*0Ah0RM@DO;U$7u
zrxwj~gwz?k<TO-&#9EjlRL#wkNKasXQ!zA*MoG94Zm6PRa*h49b8rEI7bChW(KY8*
za>TW$eThDGU?4hVwvSewNB{NLD%9W!XlNxQ_&m#t7vb8u3&vr}_Rx!D2IJ?=<7M3?
zpb8hj9p<2Rq79+|63i@kv2qtTcLmYSEzkwr?#qsr*s%pCuu(`_w={RZFq;_9ROZ#S
z4Qnv=C1F1Vj2a2-B7e`%H+yMI%(k+Y%911Iaz)H+Rh`SV-b-U`*)>+^ALBwzDRCik
z1Xw*(@SIrNv)>@4W=-41zNFC&dEF#g0M4|ciBPxMPLBTNQs0l3Oumh{@=dm^C|Pwf
z3Vm&dcXSi#_0bYW6d(XKCRcmO#9XRe<MrFhCz)f7>SASy(aX9e1`&-5QyRR5H6q&5
zM+X0Yqq*gI@{?ZCIu^X!j<3=0+lO@_-1^>DAlY2H0yX401e-*7_N>1F1NT~4{xcm$
z^qxoIH*>4_6ZB~I7ypShcTP7!hUD+DWA(*8(b3i>`i@8nMUPm`8gvl74G*`>aBo<(
z%R=PcA-1(d5U|QCG;KRGF9n|ve=GktR%UwOEVjD&tpur%mqRm^i(+mFF$@U64^BT-
z#drZjDg@?zn{JL%<I(gA{)!kYLiE@X4d`GLo;zX#LDL;^et$*@5{Y}M`<rVq^gHpE
zupx-yLSS7`Idh>lOh@<)-z8hgbi!$y3MG}kp^2=bKa%opESU#GYh_a4Cc`uU$^^W^
z7&PW_2@TL_ZQo1M!Tv)wY1noCL8u@p;67iz!Z@`!p;t?b_)Hew4$j?<yX7&<RO5=d
zs{W*c(BQ?|*8T1`*2S&-3?L}m644jbjd*<gBBY}^D*<(>1?r$9QHnx3?k=X_>g4m3
zCh9XUOxkev(l$YbKWO2ZIhc36rHY0vWfPVcKSh5ODZC#IVG7hQZ^OghImmTO+>u=u
z*din^GPbhk=FG1V4hHGB23q2Gx?*TM%rT|6!!SgCl6*O(cr=AO$Fw_ZI;)V(B<hu*
z0};q@-Uy5xluFBjA~du!Q*^;{HD(}60-A%ZvKHNhHd&0`WjkDFT|zXN)rq=wd<cao
zFkYynqobp}U8$`1qYsBLj}*GAR~ikzvA{qcG^B83Tng$X=2S2>j+6BzMqV(H#z9vQ
zE(pMY?DFqx$_<|TFZ$6T;&s6pgym^;1HpqSWwO)w1fYY--H3Gt8?Oap?BMrKf7bhi
z^Ru}*_+4bN$Xc-Z<qq~rCP^tNgmskZc`%aT#86w<rAYKSqQS4BCCij)nt|R^^wOu}
zHMW`i9hMyqx)bm#^X=~aZ3b=!P2EpkwN9Ch((dzWT~8!2wzBlGvYuWlG2;Q9xt5@a
zh(V&A>L`Nh@NscvU*Eo)y}a2-zcHIc44jv(!{<MVUiplK!*Um+`<jR+dLG2}r)s3%
z%*><t2Z!zCso)g6lgr`J2+2jxg@d?P@`O1LS}FGO@u>q})J@>!*6l3@?vJI?Bg!oo
zsBdaACn$i|uMf=TfBI`5!wk`ol8u1-CHt)<ybS<nk{@}(mq;gEdps?<W+<0xCD7*h
zWVx5Y?9O}tND_4N_FntPYpn9ndQqO98XL>m^<<!!Q6w!ndBBOy3HBvyQ;>*UKfp~Z
z^wH;zWNDwFl7;zu(bDkD8Y+?!?O<0IY|t!+r3s3dnHgX94g2yEGz79PO~jo?AJ6+?
zH_-gMcI`racL$}Qnue}Wa`!<^Lf~nF3tJY1%-oO@BxW#%iojS60F{)rhgkkRadXq7
zoVHZm!u5?n(MSjhuu2fjVsf&4|13=^Po(sM{o%;9Lsgl+{-}KEI@~sa-;AELSz){a
zoLI(V-S|*Xp|P+5IVCQj4?+*~8o7V}{*uXFn?sN-hrGtgOc66&ZN-=%Anp3jM;0t1
z+yI8U{LJ#fUwu9Xc2+iGGVtT#RGEd@Hg>OrOQyfln<8q|38Rie4{mMW`m2|chD~!X
zl-NIOuAe*ZW3Q(Jrrk8+a(Q+e&$^||doeMxx8L|tK&-Wtz?0#>m}H&4*GaiM`SkT)
zw68$*x&J6~fLsfJC)1F*eNs|V|0GGVO-TgDy%jnL01Ni@^P=lCGlM_2XRP>J5%e}J
z37>)E^8T2AO*d<RIe2w+)8&9IC&pi)pb}|!HqxF{1B<Fao&Uf%Uz+~ZwySc9K5N#I
zop6Dz*c^!>q;g&PeEV`R$OKaj-|Cw~r}B!6CA$uk0VW+nI=^3SB9M#%CxoOwC-I1P
z!>R<>G`q=LS6z2$?|$8P(6s|c*Ee-ZIoGj}pP&@~FFk(ryYiPSlKRij6%(fATY-Rf
zkO~eaS7Gz63A};v2p9-q$P)yJB)Z%bb3eQf7$I;IMg-A$xRR>|9m6CoBti(u;{Gt^
zE5$Na1GR$VcC5P`t=_}>6k~%DAb-WCoyC5|@Gm5B?Xu|$qi0Xvy%241bMyX2{N-IM
zj+-wLMpB3#qv_(KhC8E&rMJVWaktoX=B+O3{0ty``2~HLBUh$%LLfakOZXsU;5RN^
z=lbn6_nIn#7++prg96V~Gc`F`aBc^s<3gI%>uYz>xbeWAYG3A!yG-<Fl@-vGb<Ba&
zD*J|RL3(=yZ{>n+C(Hoy3fu77>Y~Ag3kqQ}yP2ZumvGcb&R9H;)uxl)iMtA7^lSWZ
z_f}tp49(>38*6)ua}lz<xn0IKG0?AMDovkx^NG>@tYdMKT=+*7^&o+ZyH@Kje%g$|
zk}UTu%9K{I)36>TS5?Ul8%IJ(1Os|fpw-{QGy#+|bKUOq@rKm*@6S<6<H5LZ+^5c2
zw17rBOP0EeIUqi@z}ym}RsgFYEn>QuLwC5-L}6MBrHCk+CfS3kjHjm?p^>b0dz_jo
z%>F$SUahiBB1LHaKgQkz9_#jfAJ@{N`IHqcG>t-5R-$BuqGVULB&(FsLIWjbZ=uY>
zO=h7~_TEIprp)aBanaMKKHtyl_5a<k=jrjF`+mQ#_jR4)IFIu<%l+$nw%cFc{Gm7H
zG4+Ayh^xmv>OVa`(aI2fx&6*9qS>*0kxx1i+lU;?g(pFyV?2=2ps`nteP9ligh+nf
zH?#KRA52ZEcmD9Ex43APiAxfk>j$s5nj}#7D@XEdVM(fow!B42s`GhFd<E$>L4B#t
z27#?i$EP||%B@5{BzoX5cE4jX@4d3@JE13ICD7XjGUqLw=o8jsB8sVv9Koeg*hWEq
z(D#Fi521=6LRFt01W@oSIk_qkq+De}UM<agfXF@`B;mQdarf^1radEeDx%RA$)`~4
z%T3DxK&5G2eG=Ib9svwmjT?W9&#*nJYdaxP(QeI!HWl4wT<UrjpUVIY*rsQ{-Q5#^
zTtebHN*A2an;N1j!4)%7tc3zeKl+a$z_IjD++QGxz>A%=Hq!5>*WKm|iav*HCJQg^
z{KvDjqY^9ebWeQRA$VBDm{yc(8xpVO(ee*ZWkGeIgZec-PrfpE(vQc$UH1wqe9m7{
z!2$N-X*CHVF!JBd@xhI&Tq>V;5ShJnhdgIme6x%!S7v5r@}gL@yBeLMw99g@Tl?|W
z9bA|ETvIMYWDwRtsPuD<;j%~h-vusxdG9nTyCGW%JeAQ7d7UlnkYGHyNA0L*1IE0?
z6f&Gd1iT-@FI^LJ!GihokYFIBP+60JJYGlZG|Jm3@a;G_9d!oCLxtUh^XxFl=roHq
zqz|+XPk)^@90czY3LMalflaIkehl|9CoX7T+@CbUe65n`3zq)C&q`nWov4jB7f&B<
ztE?$n_!z_$RMB-WZ$_aHVc^qi74<sQj~6doK!8b+(37ZJf*S(s!#!QH^TTk1pJpER
z0&M*B<k;Ba{no*a@QA*{O-NSR6o+!_q;~!qqc>;t=ws|$xI|Ku9)5o+f#86YM|GP~
zLXzLiZjjn&Ju%#M>te`J)(UJ`n9o}lL_h`)XIFta$_zVbRYAoNS-qgYSsRfTV3|rG
zMZnk>gJ2KmJsxjW?;OX$8lkxRaN)xf=+{B(f_GvzT<E-aRob%VsA0nM=Zrk7g()aM
z;5XN4&Gy%lngQ{dLaGVq85M<8P)|>1=h1YBnW^#R3uHf7%{o5nUEq#f9q$91VOF|G
z;A)RUg1=iK;VP^~TbT24R2PWy<Eq`s9rJ-5xP&5(!Prr-6?WOjy}i7K<udoL_b6D;
z9y_8nlP5MMnMdn{K;6G3qH`mtz`z2TYML(<ayXwyBf|Hm@V5iKwt9BpT7&;q>dl|D
z{Eq$2U>3X1(1=E<@bVz8AJ}AZ%XQHnyIgzYxTnCx8f?D&-d2HK)?1c2z3G`ez4~(j
zY9>pQwV&&_gVQ~+a+OZ>HGPX9)@SE)MikRtFt*8dmO`S_GahK1(QT=yiC9gL<M2>%
zT*5lKRB^{LsW@tc$kFhmce$j!_39IyOpAj|kKe2&j<XacRAm^(bOc*gsH~t7Y-F)J
zmsVySZ<-;9$uhN#eWPBA>v}}BNXN=+Mjj*~JXyhGy-B5h{dCy612=J=BM;KaEVA2n
zV!)&UeJ1#Ph`z}Y{yPz9T(Gwpj?q&zOTK&7QXXPp<hTj&C!Ix)<(hNu3jo{Y+hc^_
z?-#c^2JEdeYn>W{dAx}jgu5;D%Cj40rU%X_3OuOK8%>|@r|N=Yo{`Am1n6eW?X^)L
zUP!yRKMT4*g>QNkRL84_%n7<0QG11(h!&3ap03<yU|$-For1_u)jRML!L7}p(198>
zh#b9R_H6b7q6tLjY_&nrt@;3Mv~V&edYLv#x~wv4&9*l(LthSYg@FgJc#fwaR&Pq8
z&0a}W;j;CJ{f>??TIG*bcqBv<lHC+g`0YGWiAUA*@slTv?CvN?X+TW`2o~fE_75YX
zsjjF%6l?{sePl`ml`xVt`uFc>sjaGt1`yr0QW?Z~#NoNOUV=c#*QP=E+ow<0Cv94`
zI2nzW)7XnQQQV}h{gHoXeZz~hM{*<5oSmH`YKfSZGm%n6FgZ9V8sLTU0bxgd&s)vJ
zzT0Lj2Y3re>+iYOLiVStn7_3OCz`gP+uz--JWANB3-eN|FslI*#5FONhPrhh_ljGG
zLL-d2DqQ$4OwKf}*6GCmdp+vhXM;@H>-v&u<h4iE<#MNs43|j~-b;0qtA%Ncwc|D!
zk~V^D!>;lDxO)$nc1_`>O;7mSN|=3nvX49{B8AB`{)hJqzbc<Sdp6hphMbkylJ|R;
z6<kOio5~e^RLYDeoIcSV<1)TtRS|lRVig@HDtDFcpr`S3DDAo$^elVG>+$2Rr`}qO
zRiz_HVZlf7qjY@xM#N$wCC>QP5zvZy`(DlT6Qr$&&<IHPVFB;r*fTITTi;*Xf?eu7
zZKUNRP}Dy(H)hx9_m;$CUO1sw&aCd|=#N>9fe_?AtyvPSOehVX+H?-xMDPu*2>Cqy
zqJK7SM5ohn*jxD9@_98AWZ?5^C%h&#dn@-{)5qBx8ErI2mf!WO5y7s(v-nj}@&FK+
z-HdLG-Nhv(HTaQ9XCt6fh@ctN_oii~?z<YI)mm$^W#}PDGkC1{=T{pAL%ci`&%o|(
zSUu9CX)A<n|G4JWC<WP7a=flNQcMxch0qZSX;EABOt5k~ebEyH-Ys@L97Mkb#3Hh~
zkFraeXIoLRCLpQjzr7LItba8B8BEPWWbE~+w^1xQuFyB2XMc=vLn5lS!SnzIue7Y$
z4@H{zpyAd6maB4Hncr`06?iswOB`*fmj=<abn=iJ;=))2NG+C}S(8>mfe`vL`Y4LL
z`jNu|U?PMbfw0c520}<dyr253G?E;cn3&{q%D6PrxOFvKdp?a#LJ|(HV0YdK_}D$m
z&!ND87AjJetyq4eIrId*u$^KJnPU~lxs*Ox<m#vog=FJs0J?ATY-TpE&IbC|5`C@w
zMaiix63<^>^a0302E#!`8?%;YAF&_bSg!q#STyRpXEdqbtwC(KETi8H*w!@lK5!_N
zNW%|QT;o24w4_6wYVv7TUfcVf_lax)f<d4d+pkJgqKHj|h(PStJKiSR+~JGJrWTEl
z$$-%pEMY^YEl&*91vS)RKt{x)I?0f;I%4&J3gE?6m%kT-e+uvpEF?c0dNjzEqvSWi
zycm6D)Yi1X1*oU0UY^i3aytB%uTE5bt3C6$n(e;vDwngzuOGIDMqRR`@dU_&aNUxk
z&W#sRfqyxcSxOg|@CDkr82g7hWTj6s6{UO_9_e-n<k{ylcGA}E<`r$)h;P^XYc);M
z6Yk`-ecE~-=V6wP<PD&7J<=UV?#b-wFiE`+#k1$AH-q?rPESZ=-0eC?K|WIHP|Pk3
z873lx)G@?14C=q~Xg$D;!F#8Hcmn+Px60Lf{^9bpJO!j2cx!z`=vEK{qhA<W@$5~X
z&7L*O9yAC$?~`FVtBELme4q*B#HCdo(1H6y=)~DE7_F2z5#UjTBd@0IZhZ}83l-%~
zboKIWiV|Kt0JpC2Gc`LduK0m-Yva+Trj@r3H6$5$v|Rq|78LB*9C`~jHXVfl8h#xS
zmeLS*@3D=5W0No(P;8>ygD^M598uek&zZ4<+)fu{EJ`}Rp&SM!L#U7-2V^MO0meL1
z-Q@#rEeZ8Ht#n{5f!ZR%XYI1pM!VyeHq!DG+HVJk1_x>QLr4n+T5JB5fMtCK;psM+
z4Jg~oOroOWLqGsc8yia7bifDef%vX!HEq7$N8a91gt?k|1=b6qc@iR%y-6Z(d_lS;
znoUF}Ktjwce6sa^|16iCi<(W2{-SaI?YK0Q1dXz^nro9L?JG5JVmm>8sY0kUJD~u&
zRMb-qHYi#I8l93D*m6=wps6!kYfi+RVY_?j7`-d{--mDQ8ymg3d1_0aV@$@t+k;Tp
zH(F8+Fv5PiN4pjrl!}@9&Wi%XY>+AdSvH!jO~m;pJ4{am1z$l;SM}peY}K^YQwqkq
z3$ONgo;^7`TOpUQxuvp&wd(qd<2-wJ%kuPxEvJ97_V)2L5{5V4()LhG$i{8RTGUpP
zd~Dac<H=6Zd=hK#9bdRH%;~|F-OJW5Fk4IQ?f-fwYqeLC^`)W7ynzVcq5xl>dWAzl
z9zE?9mZAn%f~`wr2CvA^F-_P0pg-IWLN?r>i->K({_`LIc^Vbvve@m&Bj99!)e2Hp
zc^5tn6t*>fdw0WD-A^wl23-|T8TaWO4j(nR=ugCy;Qx_hlw1_Xj(F$Jd}cB!|MIBr
zL0uJMNI~FT9(?%Toqzty_vU<w_}Pa$7xG@$IWm^cF6UFmT4*D%N%zevDBVT(C2#00
z+DLQHb%XSYobaG>p<<f{_fl0f67$;8`;ZI(|G}y$>m|aw{b;q`fB2x3pp~`F2J`CV
zX&G4d>D|g6|HcI9L=LH=dqZdubjfiT<bzJoQvE<o;G%oR#>S>eR{)(k`cVx!KNY`Q
zZc*h9dI%xWyxdQUsP#Hg$sCqAQS#wUX(}2sA!YEfXQakKnzYL~FK{Ym$p11nxt)65
zvDsB@8rj!gfqwfO#b!)V+vVvOdGqR)HLmr~T6;#w->Uh9{t%GARXW7MQf+&&6KdqH
zYq$TiY%#C>gjHVYtYJY>Eb20Z?(E#59r3;3ve5e@jU~uD5i7y&Cvq2l62ch?3vwLs
zI5KU0USHo?W6z83<w2zY4g5sy?eY!6KmAzcELqdq0jMp#E7CuA)ad)Q<ttb^E(1%G
zqUDLcS_Cf(s&fj+6)IyiIj!btj@?>k0oPSV%HO-J0Vz^R_w&hp_iYY#4`g5tpkeN<
z<<7Nzh~AJBIH~6Dbp3$)=@{}|^$;XQ3<J6wi9xBr%kcqS=(L7<B9WzpA|9L6s(*OF
zTQkXbU7HeY056C9*tw8r1vf3{9#2G$Z~5%cF3DML3WfoB8h}+|32_H)%g+PZ`S?!4
z2P+>tc2`+hnK3io%j+L<esH0n^m(zyX=bQ;@?QFKl#QMJxp`|gJe}J_O>%7PUflWZ
z#Uj+T>krbcTfg2Kge-p9EvoA3exj4TJS6KxjGHpxR;zW@EWEbs(yL@h3^W{X{xmr4
z;MiwzOhKVWica&K-DVpgtD~7$f4rrWzx{mCi^Y<EB3<(_kRhhCIkA7j>4xO5{uzhF
zyi>eyRvGi?7nOAcJ95epuMOL6eABhPZ;GyWi?_G;j+|Dmt_=5{Hzme48Cep{>D@Lb
z9?dlSaz}>-{&TaChLcO(9zUQ|MnHNNJ-69E+gCD+UOV;S!w0lX#iU#JY_v^WPQ~jD
zD2INo7a-F6EPH3cd#4494job|@&OyPt0V=+7z!9EZ$z!dnAGpim*{BxpPA!2(|@+#
z^Jh&gl@m~9g`-UeU1+=WP(C3X=?N(Dj(GSofU_I9(7oGV&@vKfN&P4B#0ezz=j?>f
z+^9Es+cV<aHw60?y;a8g{JC>GArEQAeLPl&b2~njky}SR+yflXXJlK5Z`lG7?uiLk
zTVW;$t5mUgAD!G5ba6G6_>c@56f3*#|MV3kgH?jX#QM+I(9+!P5ERscK$&r!JonTN
z7FGKL^`?}DU_m~9mprA(p{Q>(me#K{QYMoGYuDc?){mj>HFmdND*47wZyXF<8?kEI
zPb=bob)f$dr@lVMdY>xFH=Wtf@42LAbBRN7xeS-8LGCxLAhcuSpTe)k4;7rK%GQ+M
z@TsV*l;;4M@fhGai>1?5eAeA3n8h44@K{|LRgvC#p<Q0+)~@IaiHfo=U-Fr9|M`c;
z-{?N9hJ1j)i#J0{^R58cY57#zjeb58zyKBlW0!M%Py}oaSreI#_F_6q%{zDQD0xE&
zu&z_cPgz%2SEKgW#o*1@;ht8YJQi5DpdhY-D&yTN@w~%+(I&5*7PzfCyn_1H+p7b9
zcrebZm>cv;ZEc$@Ty)<P)WM%GU=fv03xI^}qPD0i?cw4|IC<;M;zi*%7c^Su1#Lrz
zPXnk{)#n#kJexh(;&c4;A1gHfrBmd^$T^9DEkdvi^taj}0b{!{SlISL_#vMg*b5-g
zWky#*xM6$$n#d5H_j0l(a-WK@_ZXYTv#=+Ww#rFh7j(B|W#Io9d1udhh(u0JO;IO6
zZQyXAep~MC$dWrnMMXY62>$O1$s>8BZ6q85Nb6@xG}dn-UlVsDqK#4;$?C8~A!RQS
zC%g^NM`Yl(LU#qZe`Kyqya~|ugdbqsRAd9nHgCE^QrPWw<dl?C%v4UD(jF{kbwuGn
z)+FP5?n>)-3<l9CHj|6nzkfe3ib2SY$qbV5pex@P@;as<o-UiZ+%>;r=r&D(-T&Q2
zREEpv<YkgCIZigV(lk=jGM+PLfcG$7=8nh#?F}&?l93+i3FI;1HqKCb(m&NvpN_m^
zLkbH@$uQ<5i+~zf1wvl*Rd0!^+$AHwZf2c_r>AFh4~hICXN^`sG}}D|UiJ+AY^>L!
zL$|8oNgt^iMR;7z;*C#%6|U)za^72dw7JhVqZwwV0@UMSB&_dyM&9-251<nljNrPN
zy0ab(kSn-A0_#?X$vBeoLpcprkU>EkF*am1_zZ>VIMmN|pCYgrp~gThxXJ{PW~~C<
z6e-jA#T%gbymhkW^N)NDgEB71@xsJ434oOm$4ZMFVI@t`#)fJ@k&(h&s0#`VWWJ>3
z0R2Oyyfk)&fVz+eiS6y}4?=bW1;O8f^4d-`C4aNA%hEyz|E>FQ*l{AHhuV4Q-Br`8
z!=1Wy8_l#AQmH>_zQCV3D+c8hwCp{pK48;(DvttAsMOS6O~hsJx5fh6u~a8tufXYC
z#-JcCpYp$E!_A3asb`>lvNAEwadsy1iBe9uiRL^{#T#~n*#N{ZsB*#x=7l`MW|P`9
z0Et2kjZN0}X!n9aM3&&miU<glRiCYr#b2LA1>J4Ph8M;7LaAN5c6qY8<b|%?E^P=}
zr&6AQ-jDHXN{iId?COQa$NijaY*OG~bJKL6Mwl?=;CRyn=^4?AmcCEF)g^B$8jj)N
zh#fRGbYq41=I-{NrzF&fIygeBLnUwU)`vA)37tEnFGl+aFjx}Y*kg@Jv3wP?P{f7i
zbf_1|<622x4J}Dp@7e_IoQAF&v)!9{cz|J&-$H~2s=O>BhJA~|yR{6k=w!1J`C-81
z_RxLWS6U2_6DG=BAVOMgaAs&3fM}*ze3r(eqc2f&WJ$VFU<wd{Bnu#~0%drLVK@E_
zC96e$ZaF7#IR~9sU?e=E>9{vm*U&c_J(loJ!<)(}^1Rh77dX2(w0mQEkS-iBJ%a_w
zo}C`(@iU1p&%M2p&#Zwr(6U7E<NNpA0XycJCz@aOE!ehe&z_Z6mV!H)-V>iOH-GOB
z^To&^D0te}*EeO>^AVZthaZUt%xPO0eifbQ+@1$gT$RsI?Len`aBUCm^4HHuR6>N$
zwo{0$T(j(!n|89HQk5Nn<X!UCzCahIAuw_Iob}<+&!68-cLY&Xhdx^mjXQ|jsa=jV
zTNE%mn<2C%hOACMwQ;2V9v5TDBuKNo(d4X?C~{~kI3?Uv$2?&>8GZz~ZZ!O4B}BXE
zZP@L#rp@Uo5{;*9v(S+0hBbuv7xYb`&4dJ*CN)P8{G68ueD>}HTxp!B1WnCykjJ(;
zKa;XV*O}{Q=nv9JhUf)uC(pa2#Jz4~Ps<triAwoB+?Q$7n=j;DfxtCWX3J$-mV<SP
z9P0E8R3YaPN#?ySK%xli{LwQV$VgG?4ESGU&H_?&C9yO6d3eH|Uo2Ezws;}q0n=0O
z)6nCgJ~)Mr@;_ek$l&C$g;Hi22iZ!=4`Syg(TeX$MK_ytagK5I?mP<2Y2NXOkl|sg
zJPO2kZ@Hm!v6dzZ)=F2GXXI%_1g}6{^j6gbE#?$^M43vBW(Uqxz235&@DDjT512Xv
zIMa)-h2t<i1J=^b(YJZ4#WoFHOGDF9IAs8x>FtzFD58JCBRz>~3aFGubw7mEIm$-^
z8L(*|H(xNX+V6KvUq7;q>lC~Jv*iq$ppP`Upc-L(u?9|ayF1ZBr|H;d>8^pRTU&q-
zt#DwhAj>g8!Qhn3bUGj`mTTW7@<t6MOyuKmbIxW6FgaA0Qf;9y@aWTvT1u}hG`)a_
z0Qmn*c#sR--cxJ%1lF2K#u~&^Ivr=n90@=0!PpIeUUP#!|5!%yr4#GCaS}lvVjY0(
zRG%S;VOP(YseK&-<>4;6jX-<XsAcI3r|`4ZMTc&?EwcpnT!lHL;6B6pF*}Iy)2B2S
z*^&MZi%cv9vW|?%Q=ux#y_W3Cb!4bm;nx-8-kzReFkaI3d1xFoDZ7T$7*|cJWuA#6
z6HaLb*y?PCMkQ3F6PvrNq-pt?1TRJC`YXLZll&>{9#^)&w^39dY7@<%t?<pZY1R^a
z;Q|`Zv~PYUVHCuwZ?jsQJF8>7bsNd8Mo?2Z2?F~-AD&ws1?*4RMZ>UU7>u$2PUGE%
z_g;a4aRfd_uJokZJ@V`~&A7N1jeWWUOBOr-ErUo_spf_j05&Q!A76zSM6F7V#kcAq
zkMY>s+r^EGgM+rKliB2S`61nIMj@+c6137>-P;5XHBBQjQ4?bZSZIp`e)SFq6v4aG
z5U+no>>DZ-^I$Af2}ZB;h8YY-^78dHqOY+;**0xVidVWr>+HdwpKi*hXP!#8>0?Y0
z!OQq+j>9y~q7uE^Po73bGE$_}BU=YN(lcQLsF&)<&<cwoE@QOxJJk`7pd0(|Vza)~
z%I4>eIg6=InZx9eqxy3^71}be^{p=(FhUS#pZDxL8q#V{#63Y)1H1*-qcPcA1IZRb
zNj;{hX#TKNC^_KEmvcz_)Cr&Gzh2@Q5=5R?d=Hd*s-wpjT^Fw!#W_D<JPu7p<0pOY
z8#F4t!j_yI!CayGnyX~6*Z~OpLCu-pcpUYMdwX1;A&-)Osks@n%pxPeENGDu$wGSI
zd5*rjN+ay{`qQENLYK?iyT42CICt(GukpBkiN{1y%W6m==<1x5HTrOsjw;0H6a(d)
zGw6Frx$wZ34VxI;DEO1@{_DayZW47ZC)J{XF@EEjQnA_0(>;h;5irA%@tKI2$$-|C
z#7WAl@m-T+1Lk%OU<>j`M*`v`wwHq?v&s)LOwz@{0Rg5X?D^**8-<pz`z9=qT{TXJ
zl|Idq|7UUe_lh}Dy5#1jzli5uJ_w;>SO4M~$|Z4(C6H6}$0o3T#Sy8Npk-02qN*CH
zh2F8dYuEvHS}#ulrL{JC9D*jsBka7wf2!>Le)G961d8VrEz6_@H?4}1eZYz+Ge*|%
z!0gWgF*(Hyz*{kev<TPS_0NpruzdE*1~`rbiO^Yf0K<U)*K65XjIqOuw+Lw8$y2B3
ztr;_#SyHl~n*{@7c7hpNhLKSt<JS<Wa8NuLd%m~jVK4FUnPqO3EWbe{4uS7CMK_#f
zo}6f3u13Zjh?pV8M1V$b?N?MJhfn`-A=RbNo2Nt|TxoKFe9W$XhLMyf#|8h_^-v{i
z&j-VLKb*U&==Oa2QXn>C5kn(A0Y9j23OjN}D<So5>I=kMN{weG(hvw4<FLzTBSq<u
zHWRbzJRWm!>Dtps0sN;f^NouBkAR!pZ;kJ~DD2r6H@u24xNXh?%d4BmIz7RS`>L0q
zPEsFXEmfJIEtW?Cg5aa>T-tH(Y8Fx~XEPWJ4$8CyIRu_YN8C3t?4JTc%b<YX%dj9G
zxEhY^%?%mYa;G&9-JE+&|MO<WndThaYoiP3t#vljzv<k*mgA=p3hR+iUI1PE*1B(2
z5v1tw9?0F8HT9sPZC*9{WYtzw8TmI9krS<@g~%8&*8WUTHu8*)z#my_LJsaixxLQq
znvE>5Kxl`hZDhI>pZd?9g+<*MF2iTq)0~m|UvowOy};L0bLx0;8p%4_gG=cwXC7`p
z!btI@Wh7LD@oR{f_eEu)TZpz1sLokxnmGt)!pN9T``Qa#|N4tzaE1k0THb{lQtTml
zw9gw2xNK;HJ*O)QdDJ_C#mH2{DZ!32<6HCaDBp}U0h)q=i1U5iCIOtk{U^3CW69Z3
z4UdkXa&@zY<YzM8wJ~a3G5mkB&i=hzNWTAy$f#GdG)0d?_`;n2+X*o2kb+1BIzpe6
zq-N>11Mx&0UFh?D9xJ45ornvSkRaC$pM7`#PI@NB&9ra_ka0$s(^mXSIB$5MRm}Km
z>_srdJ*i!2NrXxvwKgS5Q`G;#|E)$Nn>9eD(X;>(S0Y?vxV%9IM01RiplL+OU=Dz@
z@hE^^^V$O?N0W~Szw51iQdOlZ@&gc#_RWqs$JiTT%x4p7nMO7}B!kMNGY!t2KmRtf
z^>D=riL*cOkUfNt8beLk*$ha{6Vv~_mG$Q4KZQKzSs^<oKkqZtXnFwpdbNon+qdU&
zpTbS;*}i?d-Wl*)<6nLAOZ)-11sun@XAdW54bC%o@XAaZiJHNwQ$&9iq9IS}Us#VS
z0uR@{iaP?v!2F`PW5@__0j-v8@&h8?ih>Cf^&2^;Hs~EE1Xk1pFiPmAF~Mr`Kly_%
zgEbZH{^84KqFR?`*a2m7Xl|}#$^q3!WzrgZoVMZJ<vD)`f6ElKnIja8)eqiAsf`%?
zW>P1r^O`E}D$ZObGT-e;3X)~Iy1FcCD<2$xahbyBXBc|o;o+6<h~!U_+5cV{#sW;e
z$3}6DhqZ7vBTbu7eJ(nGf3uiYWt1X6O*sR%juT>2K0toB62b~5yg`^kT5n%m1pQ0P
z0%lu!=NCs?Z|?)Wf{7v=ShA7!oZrDKFM)W{HWHo>qO0zjGv+4&Dq<Jt^>606vGp`$
z*?5~2y|wI~AySAzR({O0<=T*Z7TQtQO8VTu5;LAuLjmKlukSPe3+Xb5WQpz$s?2wz
z3-S>t9aJM`#ahgIphXke5~QDF0Aj46n3b2@hIp|XZUK^kCsQvppG)E^?U9d73_>G*
zH(*YZq_N2$ZaWShK~hzPa-?E#JbuPVsm(I*$zlh;xABux;<t4iJLM+&H^HO?BZ`d!
zG(eD6g1xp4m-n0C;3U~uE}#-H`w1{3QJT1_D{&hq|Bl(oF?>z`%VHQCKi6#plU$x-
zyXq$oRutfytP+V<2yzUX#)0%6P7G`kGTteZe4Y!%VFm^U`Q)W%Ws%@B%>2V~@ME8i
zta8;w*6lA2y#!VP9i*z`0qIC~8UL~Q{NwT=3RlpOgeQgswYf?hEiY-^5^fJ@15+7D
za+jx0O+&v$=3`OO2^{ODMl<KUHrFc-Rjt})BCc>iq%TNmQFXf@1ob@Ld2DVq9f2M_
zbtybEgSBvXaImz5959#eQGT`K^i))RO359007On}YQ>BoWMRlQAW#Q_2g26<@0X4*
z&%8E#IZ1^`1cY!xr4Z?=GIFPIc!h%#pmBsb->sXg+-kwj#h+h#)7F`msfJgWYZcG{
zg{UNnp?C-|BGor3%S4ciN9cN0Tk0h$Ajl5*3|l}-IEnNaKP8|>8!xA~EQB5m%Py(K
zYwQA0084$qu9de2t}u=>^er%ir*8`4A=(~}0E6FTjS>#}&5q*2LK9C$1l<O82QGek
zt>0*a+erdq5DEm%mBisHTh=6!k%#~NDqKS%pE7EC>nD#Rkj?vRm7vyO1>la_WhQ@p
zbj1ViNHR;c?IN#<&b_rRdF3J8kyth<+QR*Lcm#NB;6R4o_k)xk34ICb(i}{fLTm9`
z=67VWEe0h-S2kh1G^`VCOHg_E5q<&Im}jtweBD2jPhzHcIZjf$sDlKO@?w@;)@MqE
zwsRDzGvTE#fUhu6XqknQPp59CavBBJU){Z~Ar=V2kxkn02f(&Zkv@|DdO4k+_aBSM
z2(vuOW#K}hO{*|KKnY9B&3w=k2NbtJq~9!-1TD_<!L{qtzlSUrkxVhqnO2>HX~4H@
z%BZ^73aNILP##<!CLNtJJ5`3W$domM3@Po#OJF5P_e0FH$0LDgR^*IbK`{Hw{u89?
z@CiQnmTkuyFg*d_tr-d^EGnwP-5#QVn9-9|Dyo92Quvs~*~K0nzV?;MH)`c1$!y3f
zE9?UFI-Gz`p~l#K<UY@!mF%gLavAH|g#lvw5=6q!GA&z7S||jxQ9+4o!J}2!gF48|
z^joU%4n6mIN|udx42^G7z--B6%vE$XgZ%=7;BmG8pFQ03E2nd(rgb|BCy_t!n--Rq
z)?&YXUM1{1U$xl=aYMjC$2_5txJTxgy!=Vvl3oD;u}F-xSGk10Nr8L9wN=M&U$d+e
z-&BJQqcPz`M5CdludhGU`(+kGTns?~NSXYK8$d^|2kW%3snKv}Ihem&hum01)Lm9F
z-%Tq*fb}+IhJa6NmKnlN5?X>8Ek5Kx85^iS-J+)Vfq#*XOW++_dj=5o*o|~Q_44wf
zUP6U4McxwSBLuB+nisxb17P^L@atWH1W3uFQ<cwgW~xEqE9nJ6G?_OlNiNhw>MWvf
z%o$Wc2=gj?X2RrGi7I8}h!DG5oB_CSU~$|7a?)h{++G(6;5-NhZ7pEP$5!MRL_|cq
z@3MMlU+StFUf&b-q7X!VGC%_q=l3rjXJ;%O>nz{io4%Tqui7qwkkWXV9;#o48R&R>
zoEDh_q-q%WtJJjtBIWR{G}wHE{r}{)RLKH%H__ggya3rZ90(%TwT-sDb)n?kaWuAF
z+zGtS(|EQq0APe}ox*XX?Mbz3OC9#%q%t`t^B(4Y{XDcFWfyP3#LdZFHG*s8FSZzl
z%DbI**lX==&i>%}ixDWSP`iZk6=YvT^`y}B`BiC^s=5=645cq<iHI<=WY}3&;)3Z<
z18UKzoDWRYu(@bVuyNG1w6q>&H~!aw#Q!EQF;Lee-!3B2!_5ZuMRW2WQ7B}pR1Tnp
zzuR-c>woY)#7-}YyR6h1Bayo*I709J`)O7`7!D>1Dzru2#eX(9&VP=f#e9OX7Hmu~
z#_!juYG~{wV>0h}M!;%gR{#@~H3+b9E)n=lL)<ScT`h_c7)+BMJv4buln4h<zzuHf
zmS60o4v3iB^eQmFI8IDV3iw7I5_K_vO++zFFZx~-un==<S2_RbfBvcNRoqRkPsbhm
z4QGhYqCMZW5ASyzjE(B^7%)XtBcOb<7K5UuZ3v3`vOagS)S~N7@#)>W^Uh-`u6(d)
zGcJQlrgcdv@wbW72t}ZBOXai#xi;{)+;?aP65Qn8(1wT%QAQ^MKC-d!Qv|WrC`9&z
z-Q)Bmpw<L{yZ8IinFALdwRz^d3zB+o{1VVZJx(#@KnbusPUz`{app`7J}@%@fVrED
zek1mbprIrE&BF2O;T$+6)`-11+B5F>+H1`E_#sUJ$ouYr1yU#2438^KxC7DIsiB58
z0-Ob0!0Fm&5(r)p!7~q-BbdaPII>aGQvYwX5fZnJ%$f?JWe{`7B%uvrsYD9u=%h5I
z#O&q&5kgUh^z_J#;$^wAPLNs_if@krRH2@1R{v6p)a}#EB!K1dHE(66@@t$6Pr&PY
zrM*C07{NrctAss)ecwET*<j?qpi!4(-aHOG0!^@8KDq+ZJ$q2j05chx04K1F#E>dX
zkBuH!g~TuYv%7GZ^Qsy%qIH3uU%1@%76ZJ`+=<B3xH&oSmQMRVgWo?Nu)MUbih$4m
z8Djoew9oA+s)NXwi0Ebbg(yI?(_^g(x_Qo0O*H^AG_ValUS;3Ef8Qr1eQusH0#cV^
zF=*r_Chq)mU(J2(R9XKk!yUo_N6cqZ=YUxDlx7$!v3fwfoymj*ggB4UOT%CguoaO%
z_@&Z)55N!R!<?lUep)J48FYUD!d=@4<g)4kJC*n(q0z`-vV$+;tu=g3CnoxRuOKf#
zQ;t!U9cF^Ej0g&Q;`u)V)}bWn(~ZZ1-VemxPp}*1O8GG%j+UN#i@qCF18T7u(c;gT
zA{LtnIb!?S$ySf?lI=1uRsibD@Kfv^|11gupXx++N?OAIHFJ!2w?tMR4vBn6S`Nim
zBIJUSs5?2-qy}|bGYnW5f=Mu%9_=l~pf-5YN5%R{IFI5Lw%0AC(LMQbdIc4k*rNd&
z0KoZsCfUx;`$%mTSTuo*MHC^OhU-UpPmfxPfz(>yMb1C}h7K??{Wj8D6Q72Bs6bOi
zPfzbA<>`wXla?roTa=!GZAoox?$wp6)v$EaCG+I`>^J{)7p|pSTcduB6p7-v;iIrV
zwb?gr``05xe4Hxz0f^72nmA07mY0|5hv9rc{nNtsbW<mSj|VO^9gSY@q#6#aM=OC}
z&mT_{L0K$D<LZP0+G3(yIT%E}WD}euXa5yIHzR0uE8tTEgAr9V7E7V1N`{my-28mp
z#~lzE5s`mlnaZ>^QLQ0mW-~RM&(AH6ZrI&VaiXfKW_Z!T#)<oi9k7M8VPYRSaW(dT
zp<-JcRu}m^eH=3rCNA$*{gmv<*G4XQR{1-Y+B14v`>V!J+#}z2+W6_xE5NqQFXC_&
zuzm<VWjyB_bxCQ7w3!Tng^Z~);=hU-u`M)I(YTrod{bN1kF!vP*v}!vXSm<v38PSn
zrB@L`eZ8pT>)_xe_~*AL3y{<0-B<*nu(n~yD;jevW9`V>lhP`Jw25#2<`7GvmGp)4
zCbL!PIR{XT+iyyaF(~-i)1!?I)(F$$Y&3s3pSDLe-9p~H1`A9}8YWHXn>v47HXi#*
zs<rqn1{QyOGLrCAn>0|p{w=1FLf{D9h7HvUwivKWu-c32;omXAt3tot{I4TiBs*2=
zuKW2L$7Si?+X3!{1a25HEuMEU=jX1kqN8c6#zkQW&EN1es1Lg9iwv5uvDuh@s#riJ
zeg^vcQRrG?qAXpwpx!j@vqkCGOS^XLID#cE!}n3gjRcdx#i|z!m<ZNgs3jtjRrS86
zPGUCHYV#?;g<}dAH7w3)-Mr5ExEf49W_+PZgGya+KBsUw7_&6kn~lMFE18;N?4!Vo
zeMzF93BkFXjMCK9l<0I~z6^;zdjPAhZAY=>)o2fa2tLdHY-01g5&EIp0*24B(`x7x
zud<d}Z|?f|w6uh5`Jp&ip7%de>rJtDD}f#1ac;24*$V}5+z6Rwg08ZW%yJ+qm8EPT
zSFEkgKwSWw<O7A-e+92PB_gQ`s;QO^5#zFla_9#h-4t~zOqb^|I2fWEB%$g(hb~3k
zt|{l)Y+-5B6?=OqsBE)$c1X2JtxIxNj!CL?%Y(Nod8w$P1aU*)1jQ7(-YeE$xm=y(
z%++iudpN!CJ)jSHnC4DJ<#tl+*0Xq0%c1`H1w#-46j`{$=^Gdn&|HM6+(#pgOqFJ(
z?sE`W2>TzXiBsEwYVBF*XVZA6A_jl3CUSmUJ<Lvf!%_|o_2}x4kN41e=pt&$|9l+o
z4Y`&f(Enm(a}O2~nnvR7ZzTV<jgmK=IdtQ~`=8G^r)2Ir@b#=^P7qjI5#-N*M9SQ>
zD)xv&TtvRRs`pCrm&_XAFr1uaj~*>+&PkKMH|UrUk)NM9+LS5iHyYz&9Try6tvqkK
zoNTzDhi3eM98&@kO@f%jGDc`*dJ020NsJUy^GBhnH77^65x7R~JHp9V5Yx@Q72QK(
zfUBDiS5|G6M8L*fb?k0-0yY->E1;OX8T1t-%Jjs>pl+a)`WLX{G-Ah|G2HD*$9v%H
ziBpY}88#+gXiqmB&pdtIk1<9TJtkC62kybfh}){Yd@^luomw++W6eAA%*d-u2#%ip
z8!vV}zv<*ePr_$)ZCHV4A)%mc6{DDW@i-9(Kn{{mAwdOqaMsl^>3|yW^V%*R)<ogO
zyWsO36S2eVP3(VQvG<!IN4w9M&n5#A!Z|Q8XO~JOuTh}2l<<*uk&gLK{q-mBW;}_P
zJ6fN$itLvST=yuq!E)$ZCq+2PI$|oi`YDM6#r+SjsWb{h3O7-l&|ldb;Ns=wLtj(!
z@Ad1%A#w4kwCZa>ArJd6egxTWRh1RYe*5LrMrIy?orWM=JDZK<-ML@GfBCzPN{?~(
z_lU@UIMQ~KY<O_nU5eP}|Gu!C7|tw>+xMOrcD^1?q$sYM;N|Q&5T`LhhYa!K{1Xq6
z-|E`MYx(xPw_*KeI>WMRBVDsMbcVlfEh@(_R6*jp`0GS?CI@-t0#wNStTNP1LLUAj
zk`|5Q{?|ANDymPs7OF0*K8}A)7|A%I|4c<s`P5|Ql2XGSO5d+zXoi-_s8HDFPX3&9
z#Ux7>Wo5mv>aV{(un&1+<g+dyj=E%qXuG-rVovP5@s42rNs8Ku6IC-gr5!v07qA+U
zPij>cxy{w@|8l#pjlMmX<x*=4V`KE+w>!2^yVb#Dek4a(<eGdd#*FrtvcnZG4S4Oo
zT#S+Z^;aACKwvUXcbpjtb~gJ#y$0RHG5o^!K_@XKdRNt7`C`yztp4X{MQq8+veV2$
zJFgA~+Vy{ks@k>h!@R_JNbxo-s`rBjAsLPq{u{r}YRTNWqw4+3W+lra2#SmZkhI_Q
z9>42{`=ov~N!d{|{wgA`jXNM7?Sxf>$gvxH`D)J}I4tXld!%h7wbU@{zwDl&_ODZ8
z)l<r@t~od0FIi^szLfRNnjh?p>Uq*T=u%J5e;-#%ebm%B#2T$QbrjMBS|~__yv~qv
ziggaJbn>T|ElFF|J*zO4EDu`jD`NQPX6yZWGVt*wPacGvVL#XP)gV|!nP;k)f&3_-
zWSO4vk#+0V@fu?}3xEA~!&89kK9wlpFjDx`LeSLhF3{35f@I!D{T+#p8%aizh(jk3
zSpO*svrgWo*uzOVn=M_<a$g8MEf15qQNVo!=jh<tvxlgA0E7jWZ9MC{9JKu6wKK#l
z{C<Uu2Ufni$0_rw40=v@k)8c-Swa0ZER~)@l4<?RjR__|wdNpWS3xr38MTh>6ht8)
z_&=~1x#@cY=w#6+6iA|ADbgqd5LURZ+X!XnusN<qehMdnBJT@0AU@o8Gmc<Opz$f8
ze1$MRVH)*}gtQ*+!j2&Z-1*PHmT>M`#Z4rCPf$&E0@p2CLh{8zHw<%0s^UY9E01zI
zN&jttBMPt1W>BoKtxF?y8igEGjiP%<?_E=4Es*Kx9_*mIbtvCHMU%+h{*mUniac1*
z+@?d5({st?w!Q*Gt!qEtruDc-IJo}bLgDMKyT3;k8EyrZfCg{VYZ%HlQmbt)&<grQ
zlPMn%on1UUJabhBB6cZY4p^5I0ZD#tj5t#FGip<2X_-KxLG)#aHz5JCc`zLKT)Yl<
zM(PE<K8rn$pgo|ehY3vUwh1`DZ5J@jn#A92`w2BcjTZAd?p_X(QpO<Nx^EW++FKlc
zKi+@8aH2r%uk*_X<GCT6<hu<^=4%!)7zRJDCxlF&2yWoX(spD(|H3~d9#|n01tX_a
zKwHM>meXcwXo#;Q^dVA=7)PK7O+c0dEpvnX=u2#?PpUn``ymwdWCiR+Do&bedv8+H
z?l&d16%WU$vt;TZvOm8AW`0D5rIuwi0`9R1BBzu`L7m(L<VBR#5EH<Igd&?%&ijnE
zH>9iU4zzr|#1KzLsiRn-hMyue*G+rO$}DhkOZ(+;?p^=h?c9IORO($O<2dIml{()I
zpO7E?@=wO{>{Y#g8L#A(uqY(X$R5iY=(^fE83d0@m~{g7#N~;HM`8>NU|5s7AP86^
z8~nFkR)tCzs65pd?GW|B@8peQ?=etNwITe`iJ7sS1k`pV!QxkymX?11^0PJCfsU9F
zMivwp$kGux65K|Gt?prTgk5av0g33IdI!REQbj{LC=N&nD!hCFHbC3v_)pGeNIU%m
zEW$|T4(r6Ekc#DX{TzN<?JqlSc=giIH^Xn?iaU>EfY;oTl<h{DoLS7`kgb7O$d#2r
zUzae>uaqG>(DQp&(aaG}s+CgR{=m-=b1-FX!tLhf=0;aWV1yd2!+vE9oggiM{o^=s
zRb|_@lffFCpiNWvxqyL%IF`DYiL@pVynhs`j1;B9)r%J*TXe6h$#I;O<{&fQe!rYj
zO8Oc&Of`O-Im4?zRXp(}q_lgG{4}I`tLrmnyKzNXs~@*_>3&v=SI_&`-IvKBFKAzJ
zmPoqgIAozE^Ip||2!&__qvkk^q6VS+5yq8~<)usbZK5cKWcy|+mR}KfIy{VfRzYnF
zY?FqNk$LPgNn!!i!7zMI3PJTfq2@&0JjUcH0uO=xZCT7mtHt^I+Q}C^&HJ~?dNj?7
z*ZuswL&31(%T+$}H%Tk1s!nOLlb<Iu!ktLoVHWOAoed0M8s%bJ*7keRMNu??ogo#+
zN|0;L8yKV-E>qFmE`6WqDiV5(9eE<)EfCg@MfE0{vv)U4&DR4q$ta`zeUm~6|EP=X
z%L~SyC8l=`D-VG+fPD%zVHEvy^oRx9kNTpDQGTwF-}nsX3$%%HuaErO_*-Xu>y}WT
zz81=9t^E(k8P$w#430^nf}Kg}a^yY?H>hXRtyXt?)3vBNYHZ0z`(6v?L3_pu@|#&H
zS7L$!hNA68FP_%iO@5n->SDuD8JThd*+WV!&t-KFfvYjo#R`<PZcHKY*hBRT4>lQO
z#GFmAWC@?o7$`jGl8^q=Zy=+5>C#Ki^v-SYFVqQpkfoth7|668XtKk#IWs54rrK5m
z3E)Cwf-x%8TiX;+pQ}WDfH9d95+NV}G(%GY6=SeUeF=Jorf9|gv^pI6W>hqBgVcC{
z;X%y=Vg$)H+9-64476(hrwgDa<a?aX<tN}jBZPx4_1dAIXlu{g5{Z)h0pqKG9lT@~
z^1SZ^)T<A@6Drmolsnq^WBm?ZqrogjetoaV7M|0TTZ>~z<2Mx*3P)8Xf*DpdxmOgU
z4X3F^rVBa_HC(<9(3ZUX6z5qzj43pzm8)G;$;4(qDuCX9)ucF*AR);iJwZi&IE~@8
zXsq>ud9?KR)3cZ0^p3GPEuY1O)dkYirLG2jd$?p*GuTY?iiY_Q`1R+hLc}Ia`yHOg
zaONE18PxCjq^o^&^5aR9;hJx8c6)7|o5Z?ItY4Ae*11C}dNm{&ihh_kGSwbc)ogv?
z6!~Rxf(ISaO8-rUsHo&W{V3S%At1`bqhgcMJb$u(e=zS&OCj6x_E+P62gc(QDL6l!
z{k=<hhst+gNZ48HXXF>l+L!4a;xO<oQ5P6k-aK@#F}L9cSJ|((aH7P)#}I6%kxW|p
zYi=CY?jgrk3I20aC%D8W1MFBcavScoHiUUrF#n3AIWWNb*3rLiBmQ?FP32by`MPcH
zAWt5Xk$I7R@b^`dFE~C0lxQYjzK|U$pS|a=2)W%9nPSa{`lm@7ORgT0>f!I~5)(C;
z8`ekuq7ysZH707eyP6TI@n1xfuw_+M?+0f0$6qP2uz8Vg3T~Oc?9noS7}Y1ewL=9J
zznVnZrp^y)B&E3<p|@@=c4HLOP+Kim{W&K%VfCojY0ZBnIzz4lf<<r@=}IWY|5cr(
zhk<(k<bjSggZMoGWrq_k*Mhqp-MwN=2ORn)UdP}`@P2qH%*NK`d9OJo&qz&ct4w!&
z-qYEi9!XwxFTzWNVs2Jv;Nj$!bTvsizPFcSYHf*)^5!W2aW`_ji5vze3dW)3lV5h2
zY!$Q{o7Vj3JALLqbE|ntL<v}FJ5hnH`(tA`MPJC^IWy!K95t7JFXVlNylePP(Ei7L
z%?a(P6yBb6_h5mwFIR<+Tyc)rgHH329?R=6JwRw#<He{9m&U)cdqAyW@$^DTw(Jq`
zz~*LUJ8cA?NRFf~vGaiduCa^?;Rzh6UOvzm4frdlkCBHo_X>k6QrvF-zM_a>wV{u}
z1MCd9b<xktv!^%r6w9AUf!&KKyt9+OEcw#O&da3_tey_{gx}+mEB7d|=#EViIt5D@
zawo7l^rk~aMuPi<KmVpR<c-xK`8xjz_%Z8_9ea3qD!cbPaU<+KaFE}i$Vc~&Z7l9n
zT}szI<I7|9J(26&wF@nq9%l~4&-8?Ly<}sBhtW}2xy?n(>~q1cK{A+SRfaQT%+ENE
zl&$ifRY@+gH{%sBEm9+5$Zm9t&#zG4Y~$|<pJj*PMUi3XV;A_$H*(Dhm;Jgr9d*3|
zclCq(+KOCf!fNjxk~F!C<D<Fx^2nEfBh^VRh26^6qusqWS5MHI8+Q#YiR|d|@`-q3
zw5YmcYGu{-`lp-O*>}M@vOkLod#Su*HdWno_^X=svnEG5OqNX%ow}UE+EpBPrd_=S
zxF=RS!DbSV(dfiG>-3+w|HLcKUq>?0WieF42gOa#BE5`&Pr4^$|50(`mYbzO$v1zM
zU)THlKOw&L>(+URj4Nn5{9v=wYr6(yN2$?fDu21W-?fAbIp@QWaJ+849DZ_nRaIy6
zm`#^2TWLXW>XvEY%SIO)#7DYYBn_-P%S=<)Y<i;)+tYPhDRgii>#9`qw32+M$R;D0
zGnJyCsut6}`SHZ}@M$c!{vtnIRwXj^s#P9LJjW!Lu0GK!N_R1EA(fLpUG%eut+P*A
zyB-Xv*bm7+X6@Rn?Z_cBQM!5Rb=9TpS^JFijFLF!NNt2@;*;WQ)-!%REcMiLoj<$M
zX2WAUcJH>H`nlZxQdyLzZA*3h>P#Vr_QRj)G!#o&IIV5jWIZe5GY?hRw#lQ><<s9*
z9ZTZGezE$gw@LjYMWfNpL1hX9{SPQlOX&=U8rl42ClAgzGd&T$@>0D}dphZfsP-Dm
z29^(;)5Cr}yysq5AM344FKJE^vLab}CoCSTJza&@P@#4V9%%4%Dc!{68^z?lX4~BO
zf}^S^a6OKxIl2uBXbmq%m|CjL9=(j^T(oR0jppvji#enHv!^!q{_tDz#`OM#{jtE3
zl1l;8k~jQtjSA}*?+aA|hWON%hoy|WbW4n^gs|=4xfIbll}P4+zKS#csRv{`m05!~
z4OeIT(B*8H>09;2yE}PL!f`CZbmyihSfuf6-~Ut6R5<c~JTdm#u({JyvT=E2wOs2G
zLgE$f$S~SBFVl3?l#W@cy?;Aw3VHHgqW0E!-Wzb}+e*bMgH{*HE#awNeV*~LMH~rr
zve3`99*Y(t(vsyj@;+gC&Moq`CqInZrlfpf1}<uQFF{N-SoxQ67%J^~w%NAl;|MOZ
z?A@CDTWPFp?A?c@q~50iNZf6AHr!#Xbyn&%je6CcyT`I#b(s}v`4lh9K2d8Q+VABR
zA<JpAr|;t)ufa#6LIw42yZ8SUbYLArs*~7QJDu+bcjpF2bgCt>z#NxxeWx8Y-?D{@
z<LzXd==98oC}ZKzObkNYnrEFoP8<u)R`qU*FkQa9+qYM_^qiU*cjZiueQaP$v-<SA
z^hA^7c%7XpQ4y@o*D4p&GGF7X<)BL5CiW`Cqos+FasSXveDf{s+;w;^MuimRIQ1-r
z0>uEssfGSZi05+``W=+4=u!l%QYKAqH#51HVcMc=rFxc){rjI|wtY1}{n>j$mqzXy
z`B)goxjyQ}qa87GOE)|iv(Hg!t&DB$t7D>L1u1#cTsc)28)gNS<4Z+nx0z0TOO<6z
zp~Z(SyXyN*>Q@r;+X7G(b@}#I#K>xuRTe(!ObO%LYPNWB2%FDxoo<+@U=RP0HpztY
z)65M8bis|V6%|nl$`ixY9P3|NeW_D2a~#l|KL43X=(50IHV)e@Qfe65crd(>^VQMR
z*8NKT!2w#=Pg0d_e7hoN@0AYCX?;5iHlY2rccEVcqob>y^GVUJ(C&WNt2}1;=<&~B
zW?~T;lV_$KCr@pdjrL+ac|z4V%GUN~>g|~bT(sFz2{~8ULx*nk&%8BDANIV*%jNh`
z0azV{q-rP@v0(>kg_M8E+}vMjf&nqI3*GgBG<G*mE*$AC*VN1i3eR_!A1Yp!GhS_<
zGOMjbB->`usLx!xFDK_frjduO`TLQzvdwf|3NkW``wc^!SFuFHEqqe{?<3=6ht2RY
z=vowK&d+rsFD^RdJ2{2%A26=jo};R)S2@KYsKf5`?8r;moXjDu5y9Dou(h$A^~xPq
z{b3}2B>&$1cq}WW&urT0>mJ=&lQMwOJ=2;Q)ffZG-^we&P^&2!yn-t6c<DLs6?7cs
z0Z~IE-)hPn?BAN3mBYN*bzV0*mNj@OM)s}Iw&N<{wylj%4W1m_JaQ!_9>(dZ_T$Kv
zc7Z!;JxU*cb}``pz*EPkw)(C>_Ae)+?J)BA<8(pt^tA2gRmRU-gRP1>*QWP+-m6Mo
zUFw0=Ru%q?>^drzGmPWsXrt5f*)eTZ@ABs-)YSHjz1V?B<7FZRtCT4oUak-nt6I*)
zG?FWu;B#zmHoOw;5RGbZ3*CFfchz5IJwJM|R7M5cqtG7SFjijBFl8gtRG5Yj<JD~%
zffw^SFuw9u@>YhedFHWKs=GZeGNxUqa@(56X1-xAQtNAQZZG~=?5`p`^=a6YR$;TD
z_36Ic0f*U$138*u9du&V#w|A$Y!BXBNY%jOP(vp+>1b8vYY=2)J%=6QZpz}PTXQ02
zg^jE?7+%;B6SJLq@#5luA5P9REJvgCd3}7TB10EdS{KOk_rQS1a;8>Keo0h3)4Hqr
zrT0obg{zYs>-nzL9S{6$nl+g+GoYLr+irfBD!_p<a7{7iij`{q0qnhI{;vwTT;)1P
zK6)5WJM*UukJpt_d!p3fMIA+ZBB5WzO4X&Nvg73+Zeh5sU=k(#Fa~5i*lcy|lD_()
z6Nk-Sd$DFs^;#ZeT0~WLtnTs&ezz^`kCy4}rx+Egiiq-y=`nGY8M>mzJ5uCHcStMk
zzQ#4(yYKF^>>5*?crLlePS-sWpW-+<xufBgNoq?AMH3EEu9S)9e0uw!Y(tSOZ(vf{
zrp~EVRN_5{);zKXxO(M3%lA9<dTocaoU73`J8H+qlG-14zjH0@M}S+fx!9;$m($R`
zXfd~2G5u4fBbtgkhNuyk8_u?h)?mq!D>H<<lY_Q)F<zavojx)b%_Y-qc>LIJ+GPjL
zK>hEU*_{LVFt{A{+2R8O4a}AeXB-bGElQ9(iCtfPzThctVsiDA{D6I;tp72J^fk48
z>uAm!yOoMPBuql_9;r2tt}Nc?dw7kC72e!#YHVl(JJYo<Q#_A`Cnw}VM1Q=cbx*_{
zv)$Kr`QgCX|9HDLD=UsSUMG?=xK6%fFYi*J9ISErn*4LjH+<AtO2feXyB|FA*5fx~
znaCm`*H`+X+qn3Okhb{+x2d<UiFtd(u3*TceSf8iPgm<j0OQ8FolI6WMr8@1e9_Ud
zRXyha7}XapQHtupf@wF~n#Xj@q7}wzRR43M|43)1;Mzvcj4#`!zp2&3HyjU%lr}eO
zc<!y`z^AWWfxXD5|MMse$BoKw<5?HDD@~+K<ccd{8_r65l=&zz96M&3wQB_-B9+;#
z%|C}rWXFF>B00{C{A`+XHM@3o@wVmJyj-V}4;LuX?-*xiV>kZds{4^%RPGM5;s7d~
z<!9~2vI5m}LQf&Bc^8naqU?Dg+vvvr_zY=-!0HKy>yrQPt5Z7~IM8+H_K<bvwyA+C
zk`evKUB%HXkgHjV5HhPdW4J&}B;lruy>n$sq&PdaS@MxzdxC5jy~$~nfr^oE>3{=m
zf`*y!awmu1NoRep*rPP*X>&}jqO?H1?0aZ!^1Y5Y#Z{BZBZ10h^;+vj>UTsNtoH8r
zyLK-=ZOT*C)}A!E{ING4T_Jlz|HpnahYVJ|$+Ugpydyy$;`$eC<|s6!Qi1nOx2`y>
zY4_vyF+-OQIjQqcMeF*i@78MZZ}|9y!82aw^yj%izQUwjaAooJk^$gVoQwCJ1{vW=
zLDEjD5RuOY_CMxG^mD#7_Q)EQNt>7H>i4wmBoa2n-Kp!xyJWDp7SSn4!Z>vMvT@zA
z+LYiy75PMs;ux$Nryawe%DCCPX3cwyfpi+(tNQcn*;hR3Qid$CmI&~k<V+agh-~S$
zl3W^TQuO^HqHKp!?|&T#obWzLUm-R&BiL|8p52l%cjC66zD_o<I@b-KqV299(9PFA
z)<2o?%Vpk5`O&ww&%56Hn}k}FQEuA4?*3zx^e?L6IB(|W9LQDP;vEsabwvg@M{m8k
zRGr06`u}-5Jcz*48O9cO4)isj&m(lkTeZT!u6<o~V3VND39L(KHT8ZxrjRV*)0%OD
ziXBWXQ6iER)~#N`XXH=Os5{qZN2Jb}hQ%`<^m-j+=e|k!dCmnpm6+C3bo)AEIbm$&
zKQbl+iD*2jkt1b}I4B)`!vTQsE-iFK<95)Ah8LTAA2uDBH&<<q+Zz@naTSY|GA6vJ
zojt+)bBWZ6uSYz(kfRPq<!(@lS{cb`&~o`^iBO@R{jvY&TU`c(z_6I9hu84~&)P<8
ze53B>M|?#*@4J=D7Zwd$&?ADZPi=jc?>>COgk$&aJtGrLQtG2Ge^?}iCE#MIz6ZXX
zp7a_z9HeVV)8^fG)3+lQarVS`+HywGVa8le`JIh9iZL|_Zj8rvoo15THMg}*q<@>e
z&zlCBYt}oyuLTEaZDWBO!&B@t)6>Uk{5*WUzeVI9KJT6*k$3Rsa-F*>^73vr4v9w!
zwf1snX5Szg9@}*}tCB;OAw$Ag!j%$oH2{;p{@A;M%CPk3Y3->wUh~|R?pd3EYXX=5
zIA{2Do<fnTt(NrAex}z}aF~@wnH$JMR8yT5G~V*a;Anck|D`D8WjRq>$qkz8=W=bf
z)A3VI$ZW!@<QGwMH(U0cqg7x!x<zeKKx}-?1V4Yb;vVgNGzTBeFz**Wcd@YFfVd#T
zEO<PRoGIyho&CoM^4IyMtA1@GAnxso?@o~d^Acm@SWY_mPpH#~jOm3QWH?K!9q?$~
z`VoW)SqP&6`vk0sq$cRq25-$Usc}mJ#F2_@o{_hx_7=Pi`FjXpDCt&nH~PmPh8D<*
zc6WH^)Z}IgA|n2$X6A!LaDRz|IL~JLLpaCknw)+|VYr#@@|#S_Kcbx!7(Qw<SGFwS
za+G)Zq1qq2irK30*50faQ+)7~8!Y^Q%ou`kFdPcj(!Z!xcgITWXOm%xqXgNz&X7b9
z&^dtrQu*SdVYa@9y%hs2zE9P>Geb<`Sq?8#Sw!Fx!pYFm9K5mdTk)OCZZfT!2CuGI
z5@Zo<249Cp+=qq0|A^o$)T1E<`)FlwIdX$-l%<bUU9M0Aj%Iu<XKaBIxr4<dtER}7
zlgl%?`CoN+8=LKHiTJu_CU*UX4bGL#4uyx$&mEGOD~l4l9h35yOtez$=-PNMHb*l_
zI?J}SGf6`Jy5j#QTw?=Jsp?(H`Th4!>zyr^FbMiE7WQlXogU8&XjjYzCa14RRs}c1
zY<K<hBOS&20^aekYUcO`HTOE&x_w)Vob!x7#rRDa8_D+bjR0Q`7YYxYoJ-j5Q43w_
zjoz3ue50i)olWm*VnW4(H;eq)eun-I;I>4Y&We6L_%Q18hKFJ<!~oTP@waw=v?ibO
zPEK1nD9Nw&A&|3fzuFP?a>hI(zsb`(NvSCMXPl#$2Z_)Y2P`BJnvlAtMB^K6hw!&R
zL?lRlq3$(%)!H_YsfI;PJ&<=?>xx*Df%Ply5A(~+5)c&U{X`@jb%N!(#_Yf(=1^kL
z1%|P8+1S{n11<n88a#LZYvccEQcacxFs^AivgNOR_1(7C%nRkZ^u7|)uh<myxnK&&
z<Xk=X<cY}mKW$WIO@e_LJIQt~EESDHl5;y{>E!Na8w1K*`9g!rP>p1FBppotU@K+H
z<zRB}-TCH7Uk}mH^&1|8<Fo$PZp3joXprIrR9b2Di}1+1!CFELkPcw~x%bxwoTJke
z0-QHY0RVeGJ;O6)r(?YC@gl$q>B5r>7W%3SF7#1P05XecKKd&cXH8S<v~B(;o;%`m
z^`JkFAyr@FzwC$c`VL+z9lLy^pBX)rJj9IzsltKWqSvVqmCq`2X?BsF^@o+|-4)1_
z>EsC(Gwjk-kj!oFJ_l@z0ep)1FlLM=c#(OL_)4II1P6FWle6iH<i=9<IQj*0apcoF
zpDc&ekS`!s|GA@t4#68=siRg`$rc8ci{zwn=m}q!i&Oc}*<Y?>yl7&iFAf$)e#!oa
zhS2Ex>lGp*6lF>Gb!xEIc`N5S{N4J8gW-e}MZ3s{)u`di94X1FxccU~aF0BrJx>+2
zIfDEXj`TZ<&oO;~$RC<rPL)X2=54lqft=YrU-8KFX^Mx}=9KhvK(AD9Z(&bfv3&V*
zM!rjFTG~H$OdmA4mT$D|oH6r_1#)NKwZ;NEAxET+cQJR0mi|ItQu8eO>3?#f<mxZ>
z)}PnQ!AY**>fo+QI0!9D4Y}Cy&h><K+0vRK+|EmUbIYk2KUkq%3*`E4p@dMYA##+E
zfK1;-yH<YrR$Ojot8Yn*RldhR<vE$mw@k;lv50#A9Aggl6ZuFSC(^T!lmE+1m0vh<
zLbcoXZDI0w-?}^_5{amdHOFMzbAEF9#IXhWZt4NE>KjtB+nl+;T<4x{AC*bB6W`q?
zYnI<)zqzZtwYd7u-Mg-RB3ILfe})SJ33~db=O~ls+Wk}S{M6!FOarLnnXJ#gzxd&d
zl&Uwv#SBX5<s__1)haOokux_dm#S;3W_-_R6?=v_qI3MMA}Ll>e@$NbpEPMc%N)%5
zmpiTVbav8v*l|Z({6e$lcd7h6UFT)3GTU#p@gfoO^WxLO#UQn8CZ&YZy;mfV$?pr$
z?|f|~a#4{|(p~nZ`;zX9?FH_}B`V_$UCqod?3;X){On4<P>(1*pUtS^i23Qijmq^%
z{fzxYUXo(hC*9z=w@x=1EOzVeptgh`s~J?AHKor61o@g+LbhwqXa(n;^XWpZ1ETT&
zW-b?l`*5(=4w}vkCY5#tlxQR&sHLX3tE!dRAQwVtQnORc?*C)&J;R#X*0xd9Wko<m
zML<AAK}A4BdR2NC0YR#O(t9sLY&2;qQbdaM-lT`NkS@}DNsuA|LK0dC5R!ajvfS>q
z*So*>oL}eHnb*a2X$Z+2b3EmK?xzg3UP|sQ+e;9&rC#s%<w%xsZduRl(K&UV?SVR5
zyx75b4Q<dS<LhUbORnCOZ<fh&u~1kl>J%1UWJ-5CpKvH?`T&)+@iFr+w0G5bqO7#2
zWc=ECcV`uUm!{~0IO|RfsPGkvv5#QvXo=GhmM%M><~8Lmz|wfylGsDoZ27u#x_Az7
z4Zf~D=`Kg}APA)1taeFz^-&jz{^0Y31Q5Lg&;&<~bTTChy|qFJEkE(7Sdd667OqkV
zh=oYOVAlAoA#T1Xzwv*DOgsWFK--i}eseI*)#2*n@jf=3&zCkq(?WV2AbZI=)nA<x
zAini&(;DgR>z+r}wC({%sXlwKhjfa8;8-GA{s0w*Q5qe__B&(nSn_3j-_Sup!3j!L
zlts`V?kXw+@%<bheCBALExFUPKR>Si6Wk!=nM}A1=t~iQ`80>!iL0QLC?OUoH&|_g
zFX0J|TJ3wQLIp7`tz2EZH$a1|ASC=(ip#5I3u4+DcXU0CNEOG;4^n-`Uk>S%cp0yD
zIV9Hu+C3-7i8F%N6n3!(C|ib{>ojL*WT@!DVJ7(buU02t^+H;;rs$^DC^Pu~Hm;#h
zi2nGNYN_^qT<K_3MwINKkAN%$0EL4f{W-alH@{1s*%feu-5sA;)|meO;A<`dMEBVz
z-hTv2?kYSr$_L;bkg8enK5du51Bc=u*W`}DwKw!ov&w$*;qme|{eMPs+UN%W+>e@2
zRKLq){Sa0PXN*bBki(wr-`}=e|Lb7UHBpj9vJILXl~9JkOT9tV(p&^0J8p9!fFC<o
z(QHRC>hK3`eAL5~z)s+Hs(|5k0EE&(NJK%<^xs6Z{57PPYpQ&UAQh9Q!LTxS3(!G>
zrs0#xz_DjfOYeLDUQ{44>lfvhxe4Wgt<!-J{42ZN;t8S_z=3)WH2@<2fXv1&V3-aU
z7l!N<fap?Hn6#n*w)?haO4ZhP;M(f9b|>Q5;~oi5DN$*QLr5p<eW9;AGBE^WdFaOf
z*zUaC-2TZ)6?}UpU(g?}a$i;5pCIW7HULBT!bTmNZGh}d3ptG2dPjWpd65NFQ}&kg
zC2I}jP3`GBfZR-IFE^FExUO;c+Wjsl27q+zzr_Ht?jWo!E+CgZY%JAi=hl!*ssy1o
z*v{<KSH%m|%4om=Ef%U9;s?5l&;0rNyayx<J~vFo>uZ}QK!m!~DH@e$MW@%|16J@n
zRtr$Dqtn+0{vz4NuQDtFIn8rQp+0tIz^hju*HEPj3}v#_%?o0`!o;BD))P5bfSNoX
z3A@C(0Rn{3OIagMxQ3|BI1i`Sf4E(!`5Uk3$@tA3#Ltznb?Jx0Vi&iM&zWM~y^`|R
zEQ-0FABPS__`*P4;fvV~!StJaUP=sHSOr1y2LWPLMRT07>$?RCnID|JMD^Ji#Cg|9
z30mxPZywfv7nh^{UmnsQ+<(~GmQ$SA&~&|0nSkx!&*u7|{7Z++H+L4BPC#M&?ARK}
zCVYWENz4*zsDBjI^NGIH;g`WLk)eas<td17%5$IOpP=mJ<ysX2+iJ7;<AqqURg~vw
z%AM`-3R^rp$6xvQ<9o&_7q^!BecVnK7yp$U`n<ZfZ|Q7*lS4zEz@_Ga+KEErs=L7Z
znrpzo1GjlR5rdg!I1l9})cZ|AzBVCe5a8DQ>t2Y|0DnJ2<J$%w*VEfS5Xa`k=81RA
z{W2J=#jH|A0TGPeU6ZC`)HB*Ns3n>KCs^3DkNb%Pwj_|UvE2y^E9A{bT>8I@(;xYO
z;$OxKzbW61@DMX`xxBEM^#1)F%gtk%bV|Ce>ru@IO*Oax{KrgEN}&`INQOj;VftPy
z!RN9*Ep<ekhXiOG=6&zCd_`$?4~zD|Qo_LMpL<A&u4wnSH7<kPMpjniFTq$IB<>AX
zO53b5qANy6gI>?d-FANrZ#&7ROhx|{+PZ}ZkA%kgk0BUH1VBp!`Yjq11O5k@GLcnJ
zlo~J{sZRyyAU;8An>q{_<Hd4iVJTp%g@x-21?8O<qhB@T4AR2I)alzIv_M7q@YD2j
z`M(quV(Bn=(|w^^?}K%Z9QFHV8w>^T#B8LE2S}QgbAy$G@*=m6s&t8eVG;u{Pe;28
z;+p!B*UB2UAw~V`8UZgB$^%GBq->P}Zz{-g_L4t=Fb)z4=^s)yj~@@P>4LJau@0FA
zyU*@^w{aqk%YkHG&>8Uo!;?I?UU?Y*Nj5Nc)fgTybPVJxK=l9o;Sb=bJaIgO`F18z
z7cv->K_Za`E`}*z(qwwpW>Dd4+%fH?cpFgMju$;7*+oOH8^~l{*=N>$j`$NO|CGT>
zT|K=nVBJ6tOz28EM=YFgKpHzz(S7A&3djhNqsUo$4;xrF4B4+Np&re}@ISlI7%yW4
z@h00i6tjsos2K;sS7Sf%Meyb+doA+C8rZ#qfV|*g2as@yZsB#kTV2Df=5k-E1Le#Y
zp8rKlUyp!#zjT5p?hW^~OC7)iUnlJ@&Qfb{rn@CNaNfF<{P_95Fokn#j96Hs{L5Cz
z`7-*Hd4MW|0-kO85m5JVf>9G-8GR_#>*U~P2piv4Xdza;dkh;uqEfN}`#dRk%(AXm
zUz$z$Zga3nv%vY;$~8>4ukZL7mf~a5y)S#^G<l!J?u*y;-&~yr8x76V6DP<6vwIu9
z-(0rn3|qV0!PW-T!LmU43eZ$$z!2~)NFa<+wtHh}4_!*v(v=7WA5cJ&5Z9;#)cflM
zpqJB1B6k46qYb)R`ack1g}^V$w$Zl%xVs?^<n$3hfLjHGje@m=?J{QO%KLYY{q}(h
zr?mgU|BPUPEYMyQ%Td2-2*TlnY838Qx;4|34azQq{JbtGhKN0S=Wyd=-*&&+a@Uv|
z41CD{og)yn%*`367yWRcV4DNq^vYL$zT8hBnKdy$-Voj2cR%Yh1ZWuG#Ni-;N2ElL
z|4ePSoiu$<CWS*u!Y8UqB?X@4{veSfh+2A9U*n<LvbEbQzb|dR0KWc3hr9cp2)d1#
zsxZt4hp()<E`y13(y-M-qDe_VMTo&bMqUAyiX7<<`X@ja)UYCqSW64r^-;QKe=}W?
zcGROeD6f{g=F!&m32-Kltz^wABSauCltWMS20$8BQ!Y+pP)*A(E)p8-@TUz25G#M8
z^a#{kva~S+Q*#A{nZE8L%_=|Q+;~8<VJw7xKTC3iTn~V5c>j8i2lZQqP~i-eLm%-{
zsd(zA{Oaq$<@J-waTz5IwC@w{$o){-(b{R;Q~CL`U1z<gb^`xmROj0BD;~d?@wW%`
zxJx-CzxKiXUB|LbyM5)_xzkdn_n$80wrdHoHgmD+L3eLk8hduitEjEyfYN}s8E;WH
zgXdN_k4r!<3gnINL208KleN-VtAhT~2vDT`bTvGXv&tXk2g*eD;(O)(@tlXG015dJ
z6c3mCxBKlr)_fGrC%vs24u9F$7cviuI10bi6YYZMe6)(tK*4}{SAw{9_csb<P{GqL
zc|Dn(3Q);JLIoPX$(ABuPlxn-B|Qd=+uHGlI63O)7_68cHA=FH7<3p)RzbHgApltI
z{|qI{pEi{|CrFKD(n)O!iN#-!ef;@3<GFJ&00d!=6x-RiU3+TeRtVY|5<EUV&w@C5
zx8$BErXSFdvhsi?s_&9)u{M*nIBSr1E-T`DFg>u#M0|GDpAar6;_w;pBMu{&1K%a+
z_i0%4-QP4UQ72$Cehao)>RDH%{b`!F6rNc9M{^t~2h68sNmwwvK_viicMNfiKFG`x
zqFl#naUANDZrFY)5oX|X{-FExhgxr3$^WK-gJ9aSEsKczeVFuiD5wmA4QccissrXD
zqQUX?5tEN9+h;VWp&Bzlm4%KeKx<N0jAR)OX2Xnb5vGTaJ~aVFK4u=u{E*E2D1QOM
zrThLpjWR+F`V2hwP_Xq$(MsMPaxc$Ez#z20@D-=h^x^LpuS?&Up3$tBt4|W!Te1RJ
zU}*Wv6=lc($t=gfJCf3n42ju)n8cfvsvA}=uhs0B%|U?5wZlsvX0-d#>=+n|Vr>9A
zRN&G?aM<zq)rWBdMW<Va)*+U;-0Bbhf27<*5D+-Xe?u?kJ(dmC1T^$Y4Qt>W^Sj<(
z0kvF3`MkCF;!M3uf%}@I&Q5{wxdPIjMPh||-y|opg4!cAEHZXf%1U=H{fq7&W=B#=
zL6I39yRh{+;86sLbega0ga67S{@zLYv|Nz93#C7|&O+w>VAJj=4w|#-{6OzoTIc8}
z!lMXmX*O6Xm)?2}AQj{Rb64UkOl1bSDB#6ukKcsiUPCCmM%D}jneI@iMb&viSw(HA
z<8<=}-=F99b1fGEqTq(U+q(Cd`I~>ljwVS3MGsr0Z{T~Qx$I=kD;p_}4#dAUum1}A
zSH%QAntFG!j#Uyr$L4X>`#44c_=mr0&_;$Lp&it40{CI4areQmT>q6oDJwx;eQh8w
z#)-2dx^c$r+35nk`qubg_)}Z_uUrbKv-p)uu`U3HPgjS`VZTR?l8O{F1xfuOGAx*u
z!p8T_+6`1z>y!t)N+!>_y<bcWj6GLJ2*3}!uxx-ff}^05E?*Nz?agMB`M)UapLJm4
z+63!CjRL5xee5wVlV1W1&2D#k*%e61j-5N%apx6^yW9g3<nX$2APxH}UkDUsVZ4Bs
z%9;-}$6m4urUmkLEo{&j6o@E9TrA?|ZPX!1ua*q|{G4<g>6c_ImY?ElXbeqj{QK2s
z+po-IT@7`x<)`ostw>9lfgXV84;LWn{^9F}%s-bP8WAdD9jPnrS$+Wim<iNuQptol
zgBDM~;adDIGWgr)s`G;CC=xpXL=WKAk`I5C*beQt3^C2`Px&in1AN`Dw(Y<D<?nyK
zz6AF0|9X`h{`MXJ<vq_mL2&e6UjOw{pX0w_<9~VA1ZX1vFE9UkNv3vx<lO)54c1lv
z&Kmuf_h9~ASovRm`x&u6n&H3vX8)!Cf6@Qr$^3t`(|s~rnhy=3wnUy;Ir*m@&QLey
z)qhsjQT09fz4>ZP?j8mmtJBh=)*i|rm<d^4?ptl5Mvw~j#~}a5LY{N}?p1sIU>eEr
z`eb8`O+NJbeV6z9)3Mtr6dUMc{&C%5{4J@`MXd2mx9dQ?@qSW}8dQ`LzQ0Gw2Kkvf
zC;va(DyZPp0*;A&4(aa%%1*%77C?~_NLH}V6)nSRpqKt}{cWYQw_ICF-p)+-d@Kef
z3x&MUSG%O8Js?P~Ds@zY1bZ%M$bA?GvLXL@$wdF|91M|dTkX4)1+~V2MB;v<^Z@Xd
z4*-rA#OMjQ@3n-!U8~xY=voFZ|KqZL@Y@o&D1n90Y4p-EdO>BpaFR((!$vaTpde%_
zlb#4dtZ%xo{to6Zo1J$}l_q=3+PWZC8#Ltq<Lb)*1^T~UD;ET8xUK9Or+-Oyf#($H
z(b)Vm{LwPN{`~2RIg?QVSF+2>E?QCgmR%1}g)F5|ByxYnC}uONccJR)mK22bUwsPy
z@iliu|FwJ1k9Y%sygN6*P!7nLw`-tcv2OrHT>u8+Jm(Z#T)rdeOwsw>_4)4)`TPiS
zq5IbznO~KG%e(1rn*c(V!7l<{OCAU+wzt7h&*(2t{O`Zr|5u;=Z-Hep8|s*0T3{>y
z^kUdZ(d1`97Vc*T(m}whE_=k7XTP=z+RFdvj)gu)rtG)fvd#ca$JVpGjzhhUb$7{p
zjRU}Q#$LgAJ7o`N9-w+`0OUKzDhj*o-{hmBq*Mak<v%WilmDWUW$2Zal-`!9T7lM=
z*em;mZ~s#XK>p{#?^XQcqn=xq><xc?JM*2n4Coz3u2cN#?q*qYMRU4BI2dA2_p!}u
zEE|K19icV#kk2y$46dpo_q_PZ;OO+TLbhj=qwlY@k4Khl06bU;`au5i>Ck_(3qLv1
z(SVY08?!@kuNRytuLkES1E%78du4pzEYl~M8_M>E@13hJt@QLp&Tae@nKT3B#;G`E
zFSV15oFT_~p7zgXZ+^4uvJ0j(pziBC_iTBo%J%d#Fff2(*i#M7Qj)j*6gq0oZaTDH
z2g4+&J}a-$U;iIB@_aCaq6&>GvJJ*~il?5l9$ogjz!{PYc!PE;yP2|`isnz#V+zOU
z?|C0FO+U(-T$JAa?W!_SY9imOYGq#HZW)}?WW!G2RG!eC)m3Rco39GKN*;7REY(rh
zf^)@y<y-h`I`2QeTV^mPFK-~q*JH$o!Lyh|NH<B6efg2<v*0zKY`HR+c$udND%B{{
z_@kxABkQLZt;EX%hJz+%zJSx6Tv1o@yS~~KfH_DvUn{>)_HzMfF%>}1txm78_A;U8
zgClI`duW*B26_vRTY!Ed8em$WQ01T3pEl;*@L`vTqkW#>j%{}G0}aTwsn3Ez?<PG1
zB`$yl?kIy<eS4Qx@{WJd@YB>7m8G~et`z<I;(Or9<A>N742;ifXe;!pQKxis*&k&G
ze_GL$En%0=!z^fCP6iu;Y1HCSFf=}65DFgh+aEg024!hVwJKYSnVEsRm9rlpBhokj
z-{eq4{kzZlT6NnYOjFgl?0e)SUL@~$8rc7#3~^3dVr?e4$v8VjKU+$ps#P}GXcd}n
z4sP;XErCJ%j+wnBX4Stjd1B#UN1u?KpXFuyqaGNFcgpZpD)q0Rk2Yo{j|7Hgf$92%
zuPLgq4rdkVsvtUMNXn@0aR1A~{QZe(9D3^4rBgX-D4sabYn<Jk|E2yZu#lgR*HfB^
z599hSp@j>mYxKH(?0H$pX5Z39eb}3$z9)mYNu+xS77H!hSWMh5_;{t9F*9<{?$ts*
zF`Smlq4N+y(%R!V_*(J*{<Tq*nJV^X7_Sk_?Y*fm&|-61hJK>bA9%VJ9x%!-@_N-M
zt=H1ZP=rMrn8`kIOz(>-eVgS7ZR7fcYfPQCxyK`sh#}ZRxEPPI7c#&LbE_#f$F8fg
zn<k;y2^a7%4g$A-KL2Yb*xwfn{@o`61jF}d#m|an@R8qQRtA7H)K}E#zb{`Me<qm_
z%>_-3uAySOe(Kne$)rPPe*VM7#nSbO8PTZjm~I6I;do)(+75e)mv;7ay75&%aMVHe
z3m~{W&x9I1y*n;Nf#x|ZoaER|#(bYx>#eVr+h9$Z&cSatZmPcDg4JoBi#hi`Bfm%~
zhI@SY^V8kNP0&}a^1hse7?@Z~ZW`@ysZ8&$aD-Lq;2Iiblf+2(>wPyLn77LrC&eOv
zSbbZ_8TA_DQr_MDRE(c#z<vF~WN1~62a&1UVHOeZOBvmcRiBVxLe!1IM+D>N%e6S%
z{o-WQ(q%&HvaiPIkraB+vz-E4tEp@>%sX_HZgG39*uC{BDQ1jc3(&ki={;dVLtiL!
zq>A>RQ*2zqot2P`(eBdP5+ffN4@>JNy%$>ozd)yb2vcL(fRCnK@jy@T%zp&uTUc&^
z6M|zPp?>r21h8}u8Al_AG<UN)##<TPV55>=R{~c)!MkXZ+4QnA^Mmshqmw4_guprb
z;3fYH1(@y7xrv5!9q>mVHW8AAWT^-bwTKZ@*z}PoFAMCaCK78M9haw?P73vILXqeh
zpw2ODJfp$HZ}+etQDl)vBtG<XT5lb&l>RRB)c(8UX3#w_Bu-Cml4{8)9b-Js<2{oH
zC`qu6*uD<t0RH2WVJ19l`to)rl-}|E6@*tWiQSCHZlv(xLc}8)14YoK-&Q3wbmYic
z@Sy`<EKh@J>MQTEAkdx?be_nV4C)?SA^Van^OTw3Sgz2RC^2R<)((inMKDPF<%S=6
z_npOu0lur)pF)cD4b2S`r(Qx&f3DGAr}jHqF;WYx>W)n|0zP@kf0R)Q^X-oEG|L<d
z4%e5~s;T_m#K)nAGrYS1qvV(s`?L7Gf)OxqG2{|wN6Z$qD+IFnn;F+V(_K8dh+rEv
zvrzcyit?)?w6U8AQOB*se8cD~+M_byPry!&cxE68Yf=~l!K`DKnf}QS%0O`=%l0Sa
z#JXjN)Y8mys$I}YfvMgm2T|u$nU3ur_zPzXEqvXKy-Gn3tK{nH=EMwdQWD(dyZ7J*
z^DstaGS$VR?Gvp@h>qSZYxZikS4qQ)5f@kpx6#3-&-SXKzGClM65J5PR~c`8fzjN2
z)^yupTI&WyF96&_s^digljb0kd?|)ahx^&vkF!Y#B%N(>ZBJy+@?@=PI+$TkNP?%Z
zt+9%?kJJ8?_+ZE!u3b5r|K3Z*7AGhpI}D43Kb<Xn-yn{9uv=p%>&3)m&$xH7fO%QR
zbhSam@w>M+svK9M2`ty?GaBb@J_3_b6_i0I=%4ff!!x+b-+b@o#^sN<gtU7X_=M{D
z64H^t4#IaBgacn+9)?`bq*H?|<7lM4`{NGa+M+}Pww$bjE=~eZgdZ6An$ra)dGBJT
z>T*ymuS-ArlE)d;r@j1x{h6G*b>BrH%2J8*#ra{M1m9jCS<_fTjaUf4nDI5)WU}v%
znI-lYHh1x(?>6oiu_j1yEW3^t7#0GTP{2YaCd;~Bt<|ZlQiIIpX*8`#x<~U^c%%hl
zXSCqjz^WO?NxNK_iNB$X%KOdfsNP85fIGu31&w?rMn<RbKB5y+dE!ODkt|3E=?O<N
zvf=fgky}yh#7ory=@uqlEV4&@Hc>A})u)5ajlG)u`uMWdgzLZKnMZ7fw!`BG)oTQ5
zAIU0#0fWi@SVjZ^oy(sc;pvnMlN!>cm~fGZ&kj@laCd0~y%F2)0yC3Nhw{kNf6;hA
zuVf0RNn~X}6U+7T1*r7!CP7396%~GrlK!ekVngjWhJEgdp^&eVrj_&atr-zL(p(wM
z9<2=19pJc6;0X%K8ui4bGE)qJgKeo;0fQIy^a}e9(P>7FvrB`Q>81#ezkg;HF#F>!
zSdRO&Bta2VXXI5QtX3y=<=Kr1*KW^=h$`f?^j2{ET}{ic$6f*@8hX|EEa&cw*1HkI
zs&uzo*Z!nrnlfa=Em-Heo$SMy!ksbr(IG75#}`%P_5RQ3Bd;B_GoHWn7CWU{Dqg8N
zKseKTj4^WfQT2S%8TI%(ybBF)GXR7*C3yeFz*g%C<71vwQD-mRhZ%;;Ez3+_M7c;T
zryR8;7}t4B-(Gt-_`(f%)j<|*$0*+dE^srzt7d%_2RH-HZs$HE^A=vwP@Zwi*8A(a
z9<{94*Q33JY;yIj1;N`--YUv-j|z)Tr8NNU+x<LbcVjbER7(0Ku?FjJ4=fFNcegEm
z<3RrfNmb<;cIMK1D$BRsrlYPHC<OsXh=n;P<XVNmU0J^k!zAPBJ(vUtad5c1r|o1L
zMho|@Tgyo{ju9=&dA=;A8K2^|+{0iWcJ2%PP-dAn8_fCAf`A>V_oP6V|IgMKb=D^g
zI8mpCjc@iM`lO!<#KeeAM!)f^acISQbBekr!s<d<JO6~6W`@<UcTbdc`&!my*}bCZ
z$3Jw+{ZC_98J230Y7zZCGrK8hK3?8F;ODt5rku5L9&1J%mdVO5%@KUFJ^?3gZ|sep
zBJ+{pHm<R`BwepYc{r@yj}HnLCyp2@=5t$%Cve?9{SP}1{>zg#pY;B1Plh)3dlBZf
zZQ1yTjr)!cTtKl+VlX@cEJbHDFR454L}TM~fEAWI`R?5;Zfs{{!5km~5le5GI+pV3
z38MmPUhFvmiAzYCmsLUx==XQLhJ4XpA(20UX-9(}VKIq6l`fsSb?z&$wMERQDrnp3
zWW~=B8#nE~X1HW6ufmo_E7B#i?%4w-uD9=lc$pxov?lAIl{qHZyZJVjhzIr8^Ei;U
z-|`jnEieKgS$ne5NsuLjUeztJea)c8R=#6(o0+pEF*}tI2Hj~PIJZsZP;h2~*ywi?
z7)>sIR>#YT{Q|%gH+-^NhDx8=xs~2-qlxmNZS_O2NIooL!!KWSgWXx!;204_sd!$`
zOsTD00ILC@<C{(i>nY`OtLw^e%Z`$_ODKt*>ZMCrN-5j`)d^bvc>L5z_`!Rf&9;dW
z)XN{v8GT=s4#-_6O{uWmQqnUTnRfmN-7vrdj6qF9G};BVQw{Y*`2zJ_Y_c;l5Rs0g
zza01~zOYI!%EXK~u~_pI$mkIxK?u(btkJhuSR$57@U(Ep=bka%%op#7nAvAt>7>L+
zKN-gp26ai=>AcyF9U2IKmmfb4I7~JOJ{ebxib2y+qZI0ek(3|hCAZ>#_?({?nLK^F
zyWip`lRJV+J2iGK<g8jWFxvd-Z7T1Rjp5hk$69ymZcG|xsSZq?j%o!TJbXP@yM=Uq
zFHw-bk3;#W|53a%R<@$K$+;aoV(a0A(R)%{IIuZSjl>^JPV*E>MuG?8F&DoEpZ!7x
zjhBT&PKdK#k_aT<JZv3?SG(6^A1FJWWSsBMIi2pY*RobZVvvZ85H0QoUwoeb^>uyI
z><o?f87S)5z@%m`%jwf=0p~jbHtT!w>Zom;me;g`7^`K`JK)p4CJ(;s!VGUn@c5g#
zjFsIlCovuSV}6-9S3<mx@OuHk(w2W6&<;j4%N<sLWltY!c}ZyL;%!g^3#sr|v}qxF
zksKrl?VVXT4=^t(vPZ;Y`7Hk{&SyjinPCc%?_Z`j2mc>MeOI@tih<^QemefYndkt#
ztpBoCM!~d?&$p!U1j6=Sd{-d|`wlY@PAnNQt;k7U@y~%L59*r2HYxxTJX4xZjMlt)
z484d0!8Gumbc_ru)qd}Y<{pyS`3)lLfe`A@x3X0ZO4{S#5!RP2k#z=O*TH+E*o>u_
z15*|>WY{QMqE-Lys{ydxpxc`RAKh?$w}}8d<?)f?_9OnHRd5hXYdTrTV`)XFu|XPC
zLWjw|WG{kW)+I_Kt*U#WsI8@^8Q<Fuzx%l9rxOwmAtTzQaF$#Fx40e+gbxt`UzzP1
zLcMHwp8-gKWdy<N^)QIIvdmCe+|^`IE9oFVkJa&zJ-y6|Gvq`Xh$jNLOox&>>uD5p
za(%J5*y+v`4j3vkmW)>i4gz$G-r$oGFmgmZe)+RFpeh1?i2Eh#exI&h#t3W5f=Co|
z+T;#uh;{lyfFtI{IK79jfQMr3QO02waC#-bqqlzc`j2|`UEVu49(-;+nu!b<H3fu)
zS<@dt`{1Mnalk0T16E0FLnBPN>5W>2cpL*1AF&c1cgGn&`v~_SmCgi&R2Bmz|1gFp
zn$2ZTeKcl{d=G9K2nk1!G-IHboPnb=EMC+T*xwLFS8Zvdg4|bfeGNmDl{fC{BXn?n
zdfzikNVcV&Yu2P74<<n=jweRIF~5G@AqSt96Q`hImEeJYaGJI<GrRRJ){r8QgDuCu
z8kv3MSnh9?g;eT&pwJ5jT**{TiC&-IZrlAXluowNDIh*XSiJ)dtb*9HNOoE<x|Mge
zI#Ma+5eP-yH~1V+5HH>~@T{8^ozBu|<jSB;pL1272xK43+;l?&6ve^nM2RDpyyZ>5
zubfWRs)X{-DCvQ>^ACt!9yWJR20>wju3v`pjdZWNT|$*o?<$Bdw36`6695|Gv9U>~
zn=>ybHLo>v$$#P+aI5Y2xws^C)}{t*-M3F0)*bZ?s#aDlw~CceQT>vG))Q^W;P5T^
za;p)g-ll$J`fUB^0nkeHm*?3px%!I<>YLc7-}>PHPA81m(cM+UH}i%c6khgvEHpR{
z4+z#u*U0J5qU<>--pk6JJ}qK^GQKXc`DaeEE$OF9TastjR;<l-ycv5^T7+1NP$g2S
ztB_fN-U0DoKJtqK%a?9|GsVy=xWI_05i{WjZ(nP%;0cdPqJ4X0Yj%HrSaL~{R=_L0
z6W3u5l>K<z{LR^m7DFG!0E!w%B_F5G;uk|*4oqM?>>{^Z&X#LYKTf;xE>gJw%>O~T
z)GZ%95-%Es9zBiT&7VGwuog!LACnXBp_7o1ED#7F5e+g<@uxpMk}W)WKq~p|v2@ZU
zMpNc@S%P9hAlyQTVj|zdIWSR59__n(Ic#}P%BSF<-}~5*9);}WP8OU`%x8Oi8ZE^c
zXc~tv?o>M9P>Sux<NV%96)#J3E7bNXy~Dk;Jb0~prAi+^LNN+Eck;}V6k@0;78GwC
zZauM)2jjg^$T3i+S8kP~lzLD7bkUjXD*{NXn%(wH@*T^fR3L5dkp8pB2i}D@Q>SBU
zck#@|#qWBe^m|p_ZJB0Z?DK$Qn`GlIC?kv7Z|>QhZ8?h;D}+to&dVkf^~&KK2)^ZD
zL@RNHVG0I;$9bgX=Ckur-o>?#NqQNkOkZ%}wh-*lU;|y2?WO_$gZZQ?*MjMb2tV0=
zL1YaVL12WZPv5Qs9xlEsfIwnlZw_PNjbK84@Ue)6!Z;S}%HqvwGt-Vc<l?=*n2-t%
zd}8~;jm#ABCq}@mca-2tdfksjU&-85eFv0`y`lk-A3Kek!RnJ^z9iF~=H<dkvnqh^
zle<mrt0lnbqPW<zc|d$I)lrnKcTCMWWPHBR1<x^$L`>g;aAjb)pXbtLa87kRS{z^v
zfQ&`}47Bhj|IvJL`OWYP5fE|~KGHgS+mSrD!Bl6uY^vHXrVZxIBZy(wcR?`1K4(R7
zjGg&{W+fyByK;Emqr;*_qXI|Pm-EiiAi-(Mgns1P8EFQEMsha*FTVbmytgwTBDUz!
zrX)O@iQ<#5CxaMA76A2oZNtU2_D+wKj&6Slz~;2?^e5K6bphTzAH3L64KRL4K1TzX
zAlm;8&raM1P%9Y07a^Db=sg+TbP+@*;!mbhOal1r;eh8DWLJAXuj07`jIa*S1a@LN
zz<wn*VMu-E+ZWLrb4XLQ<D#BPEJ+;5X!Nq%-IS6!syi(khr8|tp{HNHda#@M+NcW9
zeNjG6Q)EY*4(HwHceQX9173tLfO}oU`Oz-HXfIONaz>?yu-=w%`Kr!ewbpyM*sl9c
z+Qiclm;yjvSFXI}81V-M#wJ1l;j#CEAqdm-LdGOir<rWAgL^&R*hAiS$P;W59q4uM
zD%hU=q!4&ZFp&L~1eol7WeJc2_k!pyN}Li>C!rn-u-^oSmQe7IH9B^TD53@I%dnA~
zCe?Qq%8W>;J%U#~!)+r<qQNb~QvB#!00^*kBrKSvn6eQ*zh@acvySof8*>Y~f)KH+
zn_1sA9g%+Gy)mMmML@|8TFE(R*52kRNUl<?j5i6WBm1nUB!JKtxDRsU#wg3iL|s18
zWem_Tmg*NiF>Z(zQX+{<R>93#*TE`RM0pGlO`sN1bHuMbgfOnTi{10_3|RCt%|MlT
z55p)m8(Xy&SYfcvc1yC*lPQj}^b{wM^y2!Rn)w@6F9(xOWqNsyfyfPo^q<bI2T?qG
zvs>~riG_7^@Z&uctc|?9iAwR;g4}#Vp-3j6+rUl-mg6AmVwFL$Ap{Nyej&4p?pmub
z#J)l?P|2;R-6TzLcJ8S%ZRd>VF;>eMRb}=UJnuL0!luG`NTnuuio{NDPM15-jH8(*
zNqg&tP!tW$DGc|yIQx|I<R#3v^0y^{fElkyH>tjN1;D@NEf0U@>4{S#AIH^Xz7E?g
zu{T@Z<G&nwR*61epkmYbmOA2o0>IV5#=`H422C|WSv{QrVg$g~UP<$cN3&o?TS_~P
zmb6R(TGSY*gtW{un<<6E5&`4&uCK&`m3>_fz_wlm3~TqE!*`7hkEqhKtT%L}>n<CF
z$RZ5T!AIk1&V=cfT|o%hxOS|ToyI!hWv{<{VN)t`$6ujir^b3sn;*r$v7=S)>feD1
z{&?yI`~WM^sZS?@4=wLg6gW0&Myt)6S6kWaccL3oQwo99kM7c-(|RmGgak~JQD;%e
z=v_L!s6O9zE4h<$`Ovhu?UK_$T~ip+C3|rTgw@Lmsm=UgyWp-Z-)5<!=%ajs^7VjX
z6My3Ur=VWzNhh~NOpdXoh4f&;y&fkpS99U$H05rGbH=TnT{BZaLpX^&v2B{lwxdj6
z)9)>ixpZplrUwWd+Y@oUf%*8^*@KuHYs*0A0wpFPV<*`>L??9nfpm*4faT^rgPCOl
z3*xWmf>Vh?sMM+W7f(Hg{gIN3NOO?<p;DH+s}o`Qbxcir^f4IA-NeoJ(I7xpq{kED
z=6!8!Qh{_R0K8>kn+%^lp60t6M+a^YFr)0v_*a)QS5Y5`*c#~tS0}(o0a%nn<CM?#
zSqCO*nM}&SAz7A#tRPZXLAv(lGa>0G)dAZv?{;xo_*W62w*yqK{Ey@zmGvvnx<-x+
z0UQYZXvAZ|`4K>=9*G+P_KK2H-xyW)rD)?%3gL%KnF8!x*Pj=dEKJvrB=8%bd3uxU
z-r2S6GY1dwP8MDN=*?hwv&QVc%98~aTct{#PbHr%cj>jRw7A|kQcXHOFq<#CbmXL6
zr6=p;!u0@HUt$tEQ9!^7EAppAN>p%EQm;o5+6_5Mva%%BSx-%kIa20&#kl&5#L?xn
zT-MnSay_|VnhCc=i+dvvT7seDlS#Ky#CP1kxA$CI-aeOb?33NdckVM77y33&k^aVd
zU+Tlbi6VJfIjhgjISHP+{PgcRE?X|Bt&oO`t30aJ5sFeHW<Ty?GuF(}*TL+>#O9C?
z1}4+RO>*PFrb?Re$~++?q>(fqF6TE)(Bqt_A=uzo6KJCpZ^XPo31g36@g{a7*0w&?
zZrtk@OV2KzE9yw{HvLXk6Y(-nGyX1+Qx6|paz}1l_B!Ls?q&t!57?Q_AAg=bVkX~R
zo3L^3+#8zE_`T5Up`MNo4%f35rXE+^Gc&1q!OAc%kuv$7x$et4`JB(_U@nK^)d|Tp
z^0g;pF3t3qQ4?69_N1&;+k?|dbd@*Hy6UT)((*eIIC<7Bssgp7-gzr!$~k&#{)nt3
zVUThy4~hNbWTX^nF4VJhF4w=4Up8uKQz-D|gUW_4g8fo89bWh40<M|!&%rC_rC|BN
zqi6AI#Y_**X>+NEEzb=5us>=X+YM`hCo!h5z*g44&3@Kq_h8%64@S=iJ&zD^kqe$I
zr{xO|Nh=~PY4hH+m2OY*(a=I;xZlvEy$PX}HRpIkz4g7`>CN$DcE?-njyrX+R4qi>
ziMvUo8WiCIo}K;+=lrJSR~QAV$n|&9s_p2hc0p^$-wZGnG4-%1(KU@kCm@Bu?#7us
zdz3~>dOGdsMbg$}jj1ZAr6;uq?0v6$nw{ig8>NwmQ+un}YRWaLo;`>enWU#DxivpE
z*!@nz)-P>a1fQ!g!9LlT>ZAnDAMri+Ui@RtnD6CvE`i3r)o0lRik0E})F(CUw=trw
ztM9;a<K-Q5n&e?#E?T6ACvz4bZa=WAcVY2*XvK-F>Y$kjSv2uhOzm85eXXAPAh*sr
z<UHbd=(Wv)<wen3a7VTN1CI)u2`4)1aZ);@)XPy%T4r#fbqF|hpu7ixq@{$d-`#aG
z!S$0xS3Nv$#xPUqtCc);ykOFjOq}@|merb25#_%7$cX>*Wxm%XnZ5Zaqw!3sPZVw#
zDa%1!o)m}fp00nSQx7dX4o$j`4_^Q3V1RTmeN=vFIVG2GsXFgM5>2w5s$-4`#f!kV
zJ4M?2$rI|3;_s*(g)w!!Z=yFJnJVV?{X~73IFs~Q0W$M0IW^Ri-(tl4V6v-+<;|&y
z*f=3Cn_8^(#K>8E?@;?2zc?;(t#40^%Z&UWe8|dC=Dy}~s2`t~(I<`Uum+qf47S`e
zc9kGHI!@&EB2@)Y9#%!sP+dIc%Xfn9Z@c>3q`xj-bi_$N&Owi^I26bl#!<kvrQ^b#
zlH1}g?rZN2=khm-oCJo_ZIyJxi<qOglS3rwNkBqdUb}I%Ee=YvvgMKQ_cvX#3TOS4
z!*1RyH$tFgiN|d0xpB6vwX>S)#4BT8FE7ssmd+x7%Cogkb$$biM^9YupBS7hB&0Rg
zibxsw`S#-#<en|0sakX*ycY1|u+>z4uyKigTRv;xjp7n1lGlaRa(HT@zq)Zz7#>{f
z<JQAIS-}2rO0wR@!pO6;K*J$goPBpmoq6M><(n8k_4>6*;WL<`tw|P0P!tsp+~rY-
zyudizY?tQZCTqTPR6|5;?Ie?^`IES1Y{c7;o^Oc8DXaTMQ>)e3j(Qxc?|f5Ql`(0t
zIdp5V*HLY%YPdPyZx0d{(q_J?Q`m&It>4N8m&fRD`Zq3{Bc=UCOA%hN{^E`X?y8^A
z)6R&9(w{$hd<f0oh<YvHM^3Kg^NSdMo3HcR!Hg-qc|o}8jaMRDEvY_)wb`pxZQ#d}
zVD+_ze$Gi+G`*Q%o9b7Qe<JWs0B*8tu0>1G2bWqjVrXK*+UsN=0zG2=1`E`de#z<t
z^kbjGKti;x<u1Xd3$4^OxzDN%>(<Ogx^YF}Tul+jt-sTFEYomBT^P^BQ`ZMiXush%
z@cN15uCd5MezC-GxODH;)NlDq@++Wu0<qC_iO%kEM0C$sX7-_Lu*yuAVlwRsD&mcQ
z7=({b2!E?I(oX(@d$l^S#~&Gt6Os~HOS!x)mNRS|9Lsha1o_D?U3{YBnT3Vr<`#ll
z<Ot{@;|oAmCLJ%S?3-|*dG$8FA=HOZ?YV(4K07b-Wy3}ocX1RWgC?$YZt8Y_W1(;H
z?$@8=p8P;WbWY}k#B^b~FSwQjG{aj;lLa^4q{%YEEu3ECHe(4af*F(k^G8$wxw=>|
zb$m(FX+j_VYJ&k10R_j$2Bi;jbtJZaz|)c$($Q@#b+BF6+Elfg-Z11Xa)Fyz1-WD{
z2v^bfdc;gQ@ZKN3>*I{2D3Z(i5-hq3W-RK}$L!kvK>U+eTOflv+PQXtqJorWIc%8q
zAXndiI>GxHX+r3gszLA>U7$+6rh;5OlEgY8;!SX%Xk5xP({w$`bQTLUHYn*GAsG10
zmAi`}(%UQUD_OKYe`8-y-RNSB6sQ-#S7JBf_!^ifTez<EgS>_WpJ4{xsQd<JpW?b{
zcpjH5errTLgTsl8?S2sVHk&I-z%OHPDc+~G)tHqF=YTlQV28V~!VPCW=DWh*9^=bE
z^*Cjo??1{Pi0{-m=~Z379<nr&s8?lY5(fDw#HB2q8|R`(Kh|<!SyEWP$GSI7T<x0h
zOv1t~HPP*gaxHZ=8<1>rFmJ!hH<yvW<FMml@9U_2b9*9g<6g2s`RkdJO!|y&6wntj
zwAt88ePw$*w#`HuDfwt$Tjsh)VQkWQurJ;BgF-r}pT^%YTR*^{Gcf!%`TVP>3r5Sv
ziyxAYMJ~TVR!0&%5njCY_1&Qq9(K!DM;^9)595vK?M^U$kCJyntMv_Tm-X0ecw-_?
zy#O~YT?i{}CMaTSh~MSo6k4ff7&nXVS>&>aS9ysVWu!mu0`Hk?OJ;$7fbE$x^qL-b
z^uFH}kIlx@I0W&>#>KTijr;zli}&NXh)>LON9m;B9-I7*0q$weqVLad-T@Y}v#fsY
z;>dSZWFV-u&+Ii>MDucd8_QNESt7ZqhbIk&-{x%(B>M1sZ82C3x_z4PA1SY!Rv3*4
z9VQft{%F(Y0smfdrP4A)6<x?=ns#qL8jN@BvoYKn^)ec)%o4$bYi}eQ@-$}4t%zm?
zv-s-IZa`YtX&azPA*{sUmU;xr#0eT+xLRT4cCm>#Csm2G_$`?B-)uRRh>T=IfJ0L#
z(YU|52JEVErD$iPJmz|ZmY<5lGY=$wEq#}3Zb979R-of)(^osl)>ewUNX4i?Z(19p
zV~uhbW7!weR7KXCW2nfa$+<i}BUVT>q3y1vM;U7Vfqhf|2%Hw?V{)ze5FNtw)`#4y
zA7*L^d#Vy!ui9(tV42SIKR6~yb%lQxnb+fqRlao#j|7TCq7}ne-Zf~jh~7B8vi2_v
zTDM@nIpSYcwOk~bDHJ;eFK>n$Cg0_gZWKJ-=Dyr%Ocy_<R|hQl8xt=yx1snj;Y%jL
zy{2d@(xDU=HG(RtCmh{;t={XfTw1Cl*WMIcs0$1PU-w4_(*yy&1TVpMI2UUa4!Oa1
z7#9X0>3I)n9lGL3;O5pcMK{uH47CdaR%TxIb^=*x|A>kRwMyAj-l{QK+-aB}$*gDk
zswY_|23ho}^2JzyhA-^PuP@);W;yMvXoE&B$7*cb_D+{{6r04JOp^<k0fe5_7O-j|
zU`>#AL_HN%$43*GQeC~3u%>wCfIYd|6x5L;9`brf-OQ8KE0Hjh)z%g_Hy~rxGjQff
z|E;IDKfWJHRLM;9^;Z9sS|ypO(;JONdI70beIQJ=g8t9Yctx@3qjZ%bk=XOasa-wH
z@wzQyWajQiHBRw<f3UZloD0~o8cB_dy4pI=Rl$xyeiBTOd-P5tdoHkz!JHH=4R(2(
zy6x)A5Gj$HjF)t^_)8Wqy)L?;gY%~=c;m;WKWtX-V8in5E%*yXyk^@3o7DNRxTyqv
zC&2T%5RJp;zNlK_m!-BckhH5iK;Kz$8}p|*{8q$#VZ%f}4@zyGaM9dWL%uND5$&@U
zx`g5a-u7_{u+&%jvG&_q8!!*YgL{LYgwFd@8u!BD&R`;6=4`c<mEno|dL-dxl`PB|
zU_dc19+92)+*#@6oB*a<uGQ2F%UC+ouKA=GVg8E84chnI=&aTu<-yC*opQq^>Fd~F
z4^0VVF0l+imo3q8fOC-I?vH0T+PY~<mul28K?j9!wn#fOejfG*4#Ty;pFlgww>ySC
zZnD$(IByr6>x(TIJcBN%gULezK;m6>09*C4%fM8i{`CDv;mBjKZ~jh_#HlO|1hph%
z<w$J3Px0A-^1|!=$+ul>i!oN{$NeFY!$RLO+N>Bg<sL7!;a{nq0qwVHoZ17=`;&(T
zdrPLK3lDrQ7Q3aee@Mu`G}>PV*o79kfxCye=Yr6VEAG+)yvfNVpI?{^w|QlDgdQR7
z)}QGzo0Cwt`g}hop)c#|>Pp}GFp&cksz=)DUZRd+^!78bTVT`6Dp)-i&3saD>V;?$
zghKS4thk7kwA`XTEgda2Z$k99BhbDQA-O(!ZgHIJtbX5JSc(SA3v-+89)D}e4edl2
z7iNzoxZ*8OHLtbPs+Lc0W0>o=jE#qxM_ue{+N;WDWLt+wRVj(5*+ga*>)?i_s^B2{
z&_Cbs@Ht>TX@Hqev_=K7c|38FE;Bd_Uoez5^fSB>^DVjd9xe*(i@c=xXKvtQPoK`m
z84fO4O+h#p*`IX0^5&HomDUYr=Jl5$52bgV<6aHiIHJ=Mq?q!J`mzCKo{s*&4Ima*
zk`*&gY}n)@*@mUZm)_=|ugD&1>o#rVDFO&0^k*+=Q`&rLtW5Pwim@)?UDP?F5#N*e
zGM*&5KhW0;i_>EW#UVJ}M<eMkgbhuQ4>sXIm7K=On;JeO;bNRNK5KBP?kNYbW6re?
zBvlQVVI!iUei;Hyj)7;z_z*jYOmWwC2T0AcD|=a}^=R`}hPJ4jKQHU;A2|81jitKQ
z(?}wIk@H)Sk81<+Dn^<HPKBN%vDxtokq5cf0-whY$o1?L#Mn=%{9wIyVD#pBV5w_?
zE4_-eQnzs%_vniWL6yrSAg?&r6evpcaYJ#%V#aFfe>_>ljx|{LX`u^&X_NC?BnEGF
z5KtOM<kk_>v-Oy=UI&$O#YB;`!D*OlkKFo{R4s?s7td0Hfml)`2xt0%^d@-W)tt5X
zedok_hM8w%b!GErQ+4w<Vo@flg|at+V>#==2Q1Y}4G2d*c(=_<y%G~R(9q}Qbr#<D
zkvvJAV0%2%788@D_Xb<b1!*SGfG$Im??ek=#OX0~wA||3$B1!Lr9%Ky)Sf->h8;&;
zod9-a0z+_9J*8z=ct{SOb~PlYVydrtP=lnjA8BGoygaLrQ>DFwpWsr-;USPE^Rbvl
zCBurI5XTU16B7UxD3>?-^)`O6Zw&hRTJyYsCj@3_v8J&k+*a**E9owOuF5~YoVU>K
z(RXx5#J^{WE2_r5(3LNY6Boj%T(aSJo$l1;)ZkgJsagC)?YDI79L`^nM!6iex_XGk
zF<K*=e)Oku1=p1}Sk34l@GX4fWL-K+Bh@f)Ac}JfZE2Nu$l*i=75z8hoRBdFXyU-X
zuQ9qOw?9H?z2!@<k-JUYE_`#g>kNk3(PU`BOUS|QMqcl|1HAcc{vuBG?qbI7C2Fac
z(o9LdhFd6|8!_?Em`=Mmy`zsaw7qVb)H5V*w{R}>sr2N4eo3!6*ZbZiQfpmjgCxs$
z?eDMWL-tOkPK9<G3vSI>aZa>qNcBFsUFzLg82Xe$W7j#m5eE1grE+oltaqJH#7<Id
z{UgpZU%s{RCT#8y*F_dcdA&ipxfFy3Nyy?6APCs-DPsB9pXEJ6l8!6m7%9HXmmyc)
zPu3zuvuqK!cPqx-)?Uy@My@f0cLl_%WS)7Uko1u%g@|Z<Eq8VjhMnI9hHT>?52t#3
zqBR5YV#qb@p2q@7>)N%fJ|c&nWBhlsVAhA5Qhmbbm{ds^E-UxkVsN5>=PRC1z>Q<P
zcp|C!63!nb@P(Zt@bcwN)9J#l^*fTnZ9qf}1=^EVBmulUeg_IGNfLw$?hBIMAU2*|
z7S(G5@%y~P-~-%8RLW`a3EaCo-eghwiM;~y$K7fuh+f#SYI)awQEOBDvT#XG_SY+h
z^GBL7JT)&KgJeDT?)aoDPvIk?QdBrk@!rZXh|F;@T~@G4M6cU4y0xx~W4---N&=aH
zKsMIrj``j4vPUB82U%+F2Dknp3vKKLvC1l0H#^N-bqU3|DSxZr$$8e%H*a2q{>b&A
zZ2oLPr8HW4YE=O7SP>`#H^q8<l(eVob_QeK?v~%sc)P!+ew6AnA2itG-&YA66miJa
z0;mAOqQwWMHS`ZaoOOk>y|~)T=c3Q|(`!8kj<$n97rq!ucG}yDkgLUK5GHX37Zq9E
z<Tlx!S=V_j{+Y%ViaO#jA4Hk*oMQ>~G)#R^lTaxrPiYEn1CrjNcb=ysAH^MZ{>n0s
z=SyF#Zz0;@xW=ONb{`bH%4;?t>V8^<dIEHzHF?espbk%w>tfNJEdU99!GJBdm=Ad;
zxlV%U0c$=GQD{Y%3rkl0<sjp*p>GbH!vxusTg^m_wu>LVm`HQ`nvNG%a6)T3kh93^
zY+C<ADmhK#_8R(Cal7Bl8v^gQ?9)#{kmxZ}mx4aws&kvAia$yV_cz?&vYrLbQms5J
z36i~<=-tT&Y7}&`w?u#Pqf6y{!nZ5{@C}3G2A14)XvA+sN-TtIe@i>;g9}D_!^*D;
zAG<7Uf5H`rpa%+W!#B2WjC-bMgb(a0>)ikmDc_9{>xFX+U_NZB4fT1GPZ+mv;nZT!
zimYyb+^$vSRlC_$-<TJq^E1%-d)@3TZOZYg=?amD$i~a(`Dz4vk|d-eCHWa0H%D;O
zZw^xzcSo|dsb84H_)>_CFa}`$n1Hl}{eq%PB|QL)LoQ!`1VJz;0`JGXyC2g74jbvE
z{_@G^X*;S2NXkluJ9d5zLI94Vrh*waPT#10JX3*bI0URT=e<K5mpNhPDruyeN1e|<
zg;^O7%?RpH)ch~!K$x?Rn4@DrArHTE;%z8J^rBO8HN(3BwIhdLO|CC8)S*=wL1^82
z@+&-{4%pg=gCV&E733}gU~o9DiZvfN9La_+)^|Vo1JSK}oH<o$3L=TnxBZd3_G>$K
zmR2brJ*<*q33a$P%JiIEMfs7~+7QXPy};>e-qM={lS9uN_PZy43-zA?mxNEw!|fP6
z^BZd@-s<~?zlXfnWHww1=nnf@0La7=H>ZG;+IQ(s3%P38$jQz0{>h$gxhxuIOv|?3
z)yX7S1hGb2qcmPSOii8A>#g~MXaFp*r>isIARq(my*nNe>Jiicvra?OD-OHoA|Z1^
zbVGMGiF-OmX{t#}i+!0FpH>+<ecG7zhiw;#ge>+B&rKj2fqhdgw=!|J$#{^<x<dwr
znSrWbOA;V-3m^+;x*EiAyS$@sYcb(r*<K={KHU?F=0M~)E}Q=(anH^^VrZq1ag>F^
zIOb;~TGLhYe{6z?q?3C38_fk<ZmP8GqB(+IePdU<&}He(ITW9hjTZ^LAdU0s*OCDg
zN?RQ~O4?ID%@~{{TRj4ZyHRY*4nV3K_b$82mcnlzAOlsM59At3eqcCMx{^a#Fz)s_
za1fOu!0uF^$FA#h;0X)D3*Z_le$w7pshi&l*uwKS>x7_)-#iJz<u2Ga$KL?6`k_9~
z!2Rs|_rU2*5AI4*IV>%e>i9Lq0z}6T`5t_``UPgY5vhTN4g1#mu8m|1uBsD~1xycO
z7|1R&+1c{IARi`v2aad84Gn%9h%KHv6$xQ1@C>=foHmLU^j&c4buQE2o)WH3K>S(;
z65^6cqQZ5hfTVk7yATe7F8$S=7>#V|pd@!fy(b7QH)1``CJq`}lAEp0jLtw2*Zd$Q
z>v4z~05Jc;>|IVEFk?Nw`<>=o0mxj`ef|cX0~D`p9IOJ7cqjAR0#Xs$YOwp|j0bhB
zryugx7Pq$*Aog)#J@#ebXyuN$dMc@I5eH{m9*hNs%7^_ySVPS%9FuDHAjD?w`#VTo
z7vcP&&P5?15bB&EIQZDO#Vub16z<_Th7;vPU|vGkl)=pj+OdT~;uFqygr?x;g^&d1
z@(JXQEpqrG<iJj!I)B<_FwGENo>B;r*!TNliA8VQx+5UvZjtKwB;MHmD&W9l80i1`
ztuNrn9JbNw8h)n-zF4`<o&+e9u?10yT&*aL#Hca)AFj}%IpM-MTj=3fEW~tnHUdV4
zld}e;@f-mJAo1DmbPMpWJ)c@8fm#8=Itmzy52IG8r_!cEOCYl}$9Ex4&kooDXuq~Q
z#<YA6u-4#{06CkK=LH0OeYu;aZ)Z}oN9kDu2%|(c_5{o!iFm1EVB1Y2+Ck&7SQM)~
z3|Tj@{xE<tecD%mW9GbPaRQ_2_49~K`A{_TNS|x{PmN1Z<fKEBySz?dIFXqPHV^vJ
zmL13Ax2j1+tuDaYh2kfv`LEr%3&&Rsol$XqfI03HT~5Il;eO(UXEW$fJVexC)9_zd
z)=#p+g9U}vlUo~g(VGtnC?L&PV2WUEi>0B*DUbw2g|o!?AE_8|RS*C4_8BKFlm4UC
zgl)hiaZd2iqkvJ2QsazH3V{KPFdumFY(frl<d5wsD|yc7Q1BING4j;w_kvwh%p7b)
zIWfkcY6uD-L6yU5A~Iy%S*S{n0Y%dCARIk`^a8qaCM7|XW9=qHuk*Fs6pqijdMCY}
z(9V^0wRjK;^tLUcoCx}LecSiaBxj~V<ymBRi@>+A9Le{P2dZbfw<nE4(4jO~*+@s(
zn7D?MPeGznl<f92QOEDz#i_=dfYOuf9|aQWGZzi3NBjAtiUSjT9(ub~GE8AAV05;6
zHO<BaJT(X&pd_6Zx|2*-KZ28OS-WD9(fXBO2lw6kdOXKIdKz{s3g?Ity$nUqCWRXd
zJ$x6g#Sx#ORq6{<e&*`jU^S=^EA4@3ZsiI==rgU_bs0?V@Iby5`k*@Je3~e!VGO|l
zM0(8JeEQxF(2WwOk?&P9*YA};3?szGL+^)fZ5&-d`60W3bbu&Y5Fhzw!~(K?qb(0C
zJ4I3$S~QMD?AE^hC%OPX29d8X{R7rED2WV<9uFMUp^xXSvo?74wEra}jI%$;PY)9c
z$38dLn>9zJT&tEK7)-1#YM(Aec_nz!iil|BNwPx^(a5{MT!`SdApI;$&(0LSjg|9*
ztTw>JN&c}FMy5QyLH!;U=6HX*S?xiJR4GE&v|7RsJ8{CcAm_qZCKHs=X@Z`KpPJ!K
zuuceHi9pZs`$lgF`4wFRAmn?ANmkv5?5L&qP8g#dl8PZNpI~3RgRa8sS7S4dM{gV~
zhM)q7TFyf|1}(y#hiiBtirx)I2RvqxJpr7|r)u0n{(-3ySPQ0*EOPhH_Uzc55O$2D
zk<N?4@zzV;fI7Zrz|<Ptb=W9-e{l+oVgFRH&mYKp?IF?>&D{J&M&KK7pYFNsgx!PK
zO9YkxZd6H4$hdMdc|~po@*OW&3nM_@M_8+(B4tE)UVXC|L{wSdt3Rvy165%J*$8X5
zugf4#M+F`%2Vx)1&~RU^5#*>)>h4&_dd#q>_2Z`}3oeXV7V^+1Xy@v<E25pBU#HJ*
z%VaQ(txCbLltI$5kg)~uee5xb?Vn-A=ULtkA@Thtl8^)t8tUu1?Kp%_&R~S8HM3Q+
z2O%1%%12`|-wdRhA-HG1F$G0d-g9`L=n`?)jZr5sSn8whY8epQv~E8ez+J4>*Tz{z
z*=d@#C&m09_TI!F>ivBm*Qrk1NlCkKT2;c)Ml_UYQ$&l<P*h}1vK!NBLqwg*QXyo^
zGTC=SNU~=c%$O<LSZ0iM24iNv_jBm|KD{50-|sK@csx3%Ff*^$bGe__ecjh}zbdbH
zhRqk%8Rxbucr^|kESxIn>kG-4z}a@-(ZPtXVHB)PUdzO)GQ+wk^m53)%OGq1$_>w&
zR_L9{ba}gId6Lc8<O;Zb+29U?VZ(Zen>z652WLVZ<?728zT;r6C?S_}B#|Aiz4Ezw
z&}*nt<lJhI>ln%gW~IQzaug4bwHzeY{qAyi-0qgPN8Q_i&z82kZqBqe@W`*cJff)q
zR59CItWdHc1dV^zeQh-w966q9{=5aCc{$oFWILXn!h3kPw{FysgEXZ_)o)bQdu#b-
z*%d*#c0_9jlMqYe4^XBvUy)+X$&G+}23|6QJM^V_n)6!YPN4mX!4uuYV80FY-hije
z!nhiPckkjd`}#N!%s%%%`YiD%Kx@b`Lk{X?oozDsRS6e9ba06=LA54>aw_>)03z#^
zuGuuyJvIBhR&H}_nA_TkmXMfptri|nas~N!B1AsgpDxUATEkGEQ6T=?2+qFNe^<r+
z)8G{SOyBb&I<GNU9A&^SdAUG*6wJ)Dtj8+Fe$Qeqd}rf2o=~td*2f2Sf7jI0<%+P7
z;--_NOd79+e1W*oiK--UeWPmD3dQsudUjTuJ>sz=j9u84g@_b^g>~^`9h}hFhJ!${
zcx-!^kj$gN#@CWer~aXOD_3nP){*(BHL1w{Z1#iuTeg6np(|DTFbag{hsW4fXwsPB
zZ=imF_+&f&w5=8?-KHPIe5{pp#o4r>A`=t`wWnkB5g=+~hg%n>mgYs!TF(uK57~7f
z@=14)?6tOMppUN|qmNE^M5HY9qFy@rO~KSNv+?ggm9Ds$Q!(F~SH`wf<ksUzCX2x*
zCDHD=7S2Gc^g18QeJ7)PczV?bvb%>=#hK5y9(Nv4{+7KOlH^i<UCv3`n)$m&Qzig<
zgz|C=3JzbQW$!q6c>2PbQ02^0KB_>#C<yC12O|!_??&CKB6Pt;kPGUJ-oQ~iGg@xo
zw{!$x+nTe+UXl>r?Z>9bW>m_Q)&x0^8Zf;li;5-y#uqVZ$?<CRnlNcWu9HRJqrbE?
z{Utn{sgnsW5gV7T%YPqlz88jKq;dK&3MhqpvkHKvku(_t$T75Jz2~Tmq#6f;fG2CH
zClv+~ej-Pz<4djG2do16hHZEiMA)>h?^I>)M;ZQ3?HkpX!#;z{3X~>vgd``xD#<s$
zUzp(T>U5Zxx;ggD+xDULx8ZU}U_&VkxP&{H*9Fj(4wfZ_8f1_ys#2%wl2tvJE(uT-
zFlfrZ39+EiT`<3xFASrS6|t-AiDAC#Gc0Ls<X09s(n2b7a0F%==jqbV)Pv~7QC%SN
z?!+tN;Ilqb9T6Uv0$=A&<N4-g5rVj;i+4?7Gh808dDP|%bv(3UFyCAN9O%}(eSSF$
z$_RP@)i1X|h~P76!R7ztvuyT-L_^Y!@@++^wMXr^d(h6#pS6eUZ1R_eHPBB_wH1nz
z&cC?0FZ2wBTl~S5oqKkq`@F=`-(Ob0cGH@Hd0+R3U%T<d&Ap+m<CNGO$9|^m<9{-m
z+<Pnt0RZx~NbS!baD%s7@u?kE<c<m$(N0Qwo!^K>c;huml#_;2GZe{1aIImYqm|e9
zjsSm?%JvQ{4+_riUN{76=Kx}NP+?w={&9kTT(f|8v!XEpMW2BRsem{oTmR+iURzjs
z1Su2o2%?n^s?@u2v`@fc{yA_U!XJL4T9pI4(+rig9n){FYes+{u`Rw{C@vu}N6AND
zz@%M8i!Mz};tc%fz<U}K$jo(XmVUcat&%4|D;RMkI?WwOsel=AP4XK5Q80EGqQRNh
zf8{oEOi>~+!F#ok5C$>>M6WACG1u(d!%9gtSp!P`VFZcDCUB&MsN6DQOXc3=Q_A+G
z#Pp_0tM5a%7)Pi9Xnt#~$gi(G6G~@_UcmNg6{<gBDshZZ?3VIS(69&4kF*luUe4xb
zQwcJGPk^10e?&U~z?!L=RZ*9<zjwk=@m*A7-Tf<P$*(&hck@-kb8fzMAC33%Q3f3g
zR&==Usr#~tHefCQ>3L6lQQX<P9+k+pY>B#a?ndCl_3R5+f}nR|62wvEi@YyZ04J7Z
z5O5*|PT~>2WTFpZ1G7^m*wcH;y(V6w6LWo4Pryav6hegUE&mmwi2+@Kn4<1^D#@%|
zl*|1tt(a3v*MQ{+)dAaxLk19hO>Vhw_qeh`b^N29ptd<J5HnTH_|QV{dr<nJi+7Pl
zlL=52iFxksk|5iPUu?GfA7KZBtEQ+s(pB1A^6_q5^yQzixU*H=-_~LjpXY6V`A$n$
zx7N13rD>}Z`(`1e!&}32IPHp-$;p4lYH%+<IaT^-zpeGasAB)=mFJBsqLpg3t1_F!
zISs1Rk$|W=1ACgwBZOfODq8}ibDf$>4&&ES@;thzLzUmthsN73tvsI+p7(g^1SniQ
z7_Q?@+^tF<(HYPlP5(oL9UFk`<9XUE&ySoI7@Yf8h9tt4fYYmDz5+ydj{_n%@$uOZ
zL;}6z8P?oZ$rw??{+h0a^Yp^>iC3MQXs{{uTv~34i6OpWvbR&BOWU!RxzCAnoaWJ`
z%xOuFj*HL+As8g4A&V13Ac9s#tbk7|{<}oIWZAzz7T5GxT3v5omHS0lp!&f_WZ^tO
zxq*!b;se5Tg7fyUx8hwYANjHk=vdQ%f8fRU=A$-A|N82Sc4kma;7yu=ZPv{&_7>6G
zNHgVMjpEgmD+T3kV~YdS0_OR#jR(X)y#wz*Gzt5zEP_r?|9Tsd;(2jU?eye?<4^68
zaHb6F2RG9%E>Cy@K<p+Ns4NLsvZt|YxjCQ=2(IJXWMN=`dD^uw^n(#<+;rsE%A?34
ze^5bfKy)lBQzy|r%8#@G{l3e|O|#4;c#j_>GwIC6TIB<KL(e2snMt#O4Vt~oo-}S$
zK|#UXWv=|+%Zvt0Q__QgA3$Mktd!XE(=nY>PX+5fq{D=)$Cu>j2bZf^L3(Kpm9TW?
z8={vnB0C1s;4<&cKl7nUh;sjP@8huuYeI3<_rlk^A8=X_qg^eV2b5h#Cw+V_6R%+r
zzD8$NjQmsFNyu?S97e`%Jm8psZfof<BqHM>=T8LeMlA|vwAui9y9DR?@Jh(`7M&{u
z+zNf+gT9|lWZF|UNqAk5reWPZE&wtfxFaI+MUS6yEXtJV6(cY70KC)Xj!AFj&#1?w
z{Km$}4q?MBb;I^2H*KGYhYgOZvdJ{!8bTp|aMF_559fx-K$>MKu-9d8h#vdM;rp+p
z6(<pq2258yUy-af(XBT-<IIal6h`nWlp{Oi;MR}O-&3&zOWD%*L!O|%zak>7B&0cQ
z&7P}B?8MBC`}hs`6*_)u`F{rN=U>JR6ZB`h*(`dEo`XE{hN&8Li%d9;T`IDgIoTEP
z)W_%R(fQi&&;NcgF3vV_c(<rvDxX$9rm(-P-AT7>OyOV<^la%1$_s4y40?uiv&oNL
z=#BpSHLfyyMfJ-;+2WGgCy~9_^tbQ#(teznNQFNRcbmDL%Odi(1f*=#7jBiGFMUTE
zmvs^%%#TF(&PwSD83DUdBSb{`YGM0$V$S#zyuU>R_f~@TzfkBslNY<^UZd{b_v3&=
z1(tSeY)niBw^L2u<Ma$(R5ht7=C>o>CfquKzb(;S&cwETt$-za)-9sW_~T!E=l1Rp
ze&wkc`G0o?aDO|ycl+Mg7@O=~|7kyv5#=wJ)dq^|#s|0*jXl#3ULt}Wg>mepv3N%*
zoZ@4?J%TLHi~cG--O71ZClmhlj98I-Qq6?fwOq{aUV)!HR?Ux7*d8Rw59gFEC*cp-
zO?`G!9C*26*|p!U5}h@B-sMb>hC0xbmAY~4ayQeb>b!p482NwuUEMFtZ4P)tzVwV>
zGzhCC@Y5SBxfTOWQrs`pEb=Z-v!_YzQ^OfLx7pJ?_gx|wO3=gir8M>Y9K0h0I0r}S
zx30KJW~o}8oZWeSv6M0Qfy(G8sI(`b&d+7D(c;K+{&<{vIZ@8^)n(_>3DdQo78K7L
z6u99pUcpUSbjFg4USYFtGUsMqM5ORND#!quX=6ijcryww18H3j=kJRnpY3Trr8GxZ
z&BfYRY2V-&M%j86Zs3dF&t1y21Rf31<+i$^%FV5vBF{Wbg5?T@ZSUsR<Yjd?ez_)h
zm{TC5!ykspTPEV(3_<JU0!6e`CQGIHE4??}foYg^>?nVq86c4nZ=1#(u?RDd!au(R
zZ~`TWh&iQN*b{T}n|h9FYJvc(3?n5r`#Eee-f66GbutvZawi05GXz7Qc0E_=dxv6a
z;XoMc@V4V`$0N(q9!J>jLLFDo*Ry5-9!QUMbunnQj-V4?Sc=U$@G5ULuzdggT(HE+
z32TB(duCkt71#$?2_bh%rbZ~breCs1_LF*V4|l$w4cTxcd7<${SVBuvNTg)2v}jjC
zvKhSu+FEZSefToS8)K+o{A4Sly0TCjjX<n^aG8lSu#Ps*2FdnA^6-S|Vl|D~4mztL
z0(fBuR*AgZ7N9;9qRB0PToW_bob3C({Z8L9q*m-|H#igOaMU@<QFq83fipM3ld?1c
zC2yZ<DE|m1Ttwt97PNl=RAb~HtU49f*hV`GjiLwV%H&t^BUX)sRm`os7rn~cCekWP
zZ4`9)vSB@@H*KF?haaW;YkX?~%QPSXpv~-vfoyyyMCoF+)4w+Rska8ibAx~*Rc<{V
z<nA(0<Q}ed+48#Jyah0<ujYnzb`sDrK4@XQQ5%}J)z3%zA%!gd7O#mx+tld>@2*z!
z0KZ6<^hUJu{WmG@)lWz{YpetN0qLqh1H1th*<9TlKPx+R$1BfZyg}u4v4RV71mMg&
zJ`}<Ue3-}hY{PAOaiaYBgFwcen&iMrBvJD5X%1A|gp~GFm!@aRH~SRz07{++!~<;%
zE1}JKaN3b$52{Kg8_^daCGm?O7Hkjq;ODwdty3t6Ra`0c21c|)ttFZ8905TPIoXB>
zI@YNvur_696R{YbTrMpNkPnrUovj0iu!2N*iU4XuMUu==gxP={AR0-$%LN1Y8Az(W
zw%mp7H4^z+Jl}~2Ma(DY0}*y)nb_f$-=%NLqPWPRoFYt|N9$0B75(Gjpj`+3Sm5Ch
z14rwQT>iX!yf?q1nbRq7x+hKZzrrAeFKI(k2~Eu=T(>#g?G_y=#kB7Wm}Xq0R4AL4
z!LL^kbjB#NL%KTW#KaLH^~Ti?hp)($%;O}@m}qL+0M)+V&dvvp_~V*o2!FWm^@zN8
zkHUodo>}MZK_{af`ZP}Q2NWD+S*BuuD?mDAfPS@qe8ifEH8ySAh(5-rb>9!}{UtBD
zjx|eLr4w7YcS>vgRz)O3B{ix;@7xg&oIUP_b!R$E)7xw>ZNbm;*4_<93v^PiTG<{h
z3V~U7?<NQECPN*7U)DMsYo8b!)Fsg9TGlq^24c)|&`VQ$9qgAZ$g$|*m{n=NF}E12
zjpu%;P;pw`J48o|&BW4G4P|Hc>Ixx$<#yEHOL<GDbm^Vx$mM8yyqH17a7T4spv_;!
zfG)*=z}BS@%+;Ka>y^w;<{+_xFJ$ZK6P}JEPusXXP0yp@vE(<M23oUQ?%=XosA|1b
zX*s8iE9xCfPS2Z8LB(JL+>cRF5+Wd-20}@Yr`qLq#a=GxZYiikrOSqJB^NJ*1a$&$
z6y;8SM)k9Ur2f-HF^}*%L}wFfTTsSUL1{B(q|%3A{?`lRumG5at}i7g)+R+KbL>#^
zH{95021+ER)EFuZ0}1LUS_|1Hst=JdEr@DLT|^QhG^o$HasTlUUCOjq><Sgi<PKc4
z%!edKPVM%mhBh{m#7L%RwHQLZFUPe-3!(Kg3)|+F7aU#V1DP%gTAC<}Ey}-c*lAP%
zg@e>#3DS1<R?ajJu%2X#WCNS`j7$efcIurrT${sr<8~De5{FigeMU;<gT&}$u6%Y~
zi;;Ark54v@f^7mH=c4d5z<&};R{!|_XI_`@aXN(iWJuRJoiRuv$U_sxkEEsmsR&E;
z>H5ML`CAbN|DV9{en5uOhJt4|v{}ATGF^8d5(C9_kmzNSIY8=<6xu5ULMciprq^ZH
zLh25{I{Q%DArewh$7*F~NDTkO<vrT*PziJg%2RoWB2@mcL-DzaL8|zG-x4`XJxl?R
zoXu|wR2(@mn6R)uN@$TW2M=P2RWCAVUXCvNA*BUYy0!OUvQw{-B-AR9%u$rktZ`tC
zV@EAe5J(MYlMjbWJk)2Ltr3?lspB5FQ~qS+gqPaHWaC2C3kptl$KfBqyfcR^Hlxx9
zU58H;;CqiHUaH7RwV*Q_|6zG1#;<(n^NC~Pk*R}b%Y`#~pB~wh?lZ&9p0KdZMQj1R
z8YZbBqle^1x@a*(MqGvj376h?d-*%o92vY0qvO{)=5Gjf0MQDo@`C)Oi1hIjt>(@g
zNGD55WVW<;q}8W$^R<JVCR2tOBRh{rrVbzx*8MuZhIuF|j6w1CiP{da@<MUH4fz?U
zKod@DT?xv8f>H+;i_g8uYxezq%lb@5gGyZZ;oS-uamh?ou7{3h1xY*dH4=IwIfP_5
zsio_KS!v{xCFWKj7wy{N&unsP)+0Wu#eqV?o5;#g3qTrcXRZx;YKrLo1jr`t^St}4
zejY&R|EHruhTmO*O(X?kpq$d-f6TZhkf~gm?7x)?n)=j<SIJt<^`Vu$a%h7doSF1R
z`7+8E{^`nrji8*6729!&ksEnX@)i`p(HlXWYyYv0i8~A7YG0ki`KG+E!b>g;iWK@`
zomzH6>7S8TU^hpXT3aK9q4Z5pl@HzqCm<n;y1!?jRz=Rsh*obmsRR31d8|MYXp+c2
z-c0e56YKsUgsAm=(p>xrd=fTFha=&XqoyJ0=#LR&ZfV6TW?)M=H5vD0l1Q(H)KFGM
z8RdAvziG9P35#bTFwoBo&Zk~mDhKuKbu!H@tJkE=8^`wF&AXaY1&dy9gyeDmSpcRt
z$Mt(8SG=xuuA~NO;d0yGcVtcsZNw_=&{3V(s@Pd3Hqy(Y`lB%I8my^_*l|~OWkd$o
zGX?4v3b$_nxd6)ZJAd%-YAam?gWn1`8XbmlYb1?Yr?DOSWA&UBPm>8YPvgS*4xJ#U
zF3m&uvv9Nkw06c%mVWoMRDFmz#I^{KfbVAE^s8NC>vM8|&O?qfe{f<IfN$+Em{O2x
z6cyJ&ek=ZB$C;s#u2dyYvvxPonn5)?K+>a=e~bB)RwNb?;^oEmKs=Z3SpnCzE8D&d
zouSGKsPwvSrY9%+Ej@_a39{O*Hu}Nx7rM45o6<q#F%s%0Z<`*3D#TFpqK>wZno}z_
zt<xSV+UKwbmGn*c<=T>b9a1OCDv>$KOx<`W-y(v%nxpn{cY^@AIbjc%@n(vmA73B*
zic85zStrs*{x#MANCK%}L1m?!_}|Fiwcg>IH;@+<gG4vX&=q$Nvor=O{f+Nh_ZfDz
z%Lf*?KsH9}3S9qCGrL{De?u|{m9hVJ7utro@~><jyUui<s(soNL@e_eLwXq^(|j;5
z9wCvPZ{-Lo%7z+TxibE+%ghE2UCQmTD1^72r9rm1B>>b9=xq^exc&Z>EnE0*CF_>8
z)I(07@DNzxvscDl)>U|0>G*>NM4aqm6NspBrBp<^n1dMd=CR*(Fm4z27`y9gYEs_|
zf_kvcc`TUnvzxkt#?JYpvpmF-+ET{QAe{%cMwyq9S77Z_LMnQz^aIDJsIwU}s+oX=
zE6fWxpB9SmsQAA1_li1G>MA9g!}%x{=*&OAUexkAXNkEu{lj*jJ^++mW29=GCSD-P
zQ(lT&(zTG7U+;BX6S28(51U=r)EvjV2wcZp?0dr+^U`&ymQ8GcVHO`mRHyT?otM<v
zx2b7JVhFp>`N3i%QyKu7ZTD;2+vDKmwP3yQ!5m#{ji0<6MF<*v7s7P{Xwfw-QS{mt
z6{(O>aKFI7QIB5ujIhV(Sx%O*M#!B&Eu<!?_YYe67{SF-QOq80LDg~(#D7eF|2W`W
zntQKk@Qt7Sp2?Z&<tA@cxqhig5_8xO7%3@Q9=G=3v5f+tw70hdxqrMd$dvv__H5XG
zxn56Tv)}x6&{!MJQK2b@mW=9wj}G_zz6Tznkc7Y(i8kC^mX1gAsXuCL+|-eEL>I%q
zTk@=gQXh>L2nYqQ+|4mf1&O<oan*8CM+h%~a=R4xDI}JoDk@wMbnBk+U8atavp?Lp
zN+dMV!O@(WGl`O$VC-JmR0aT_av**xi-H|1;<yhWG9w=Xp*CL)m_S&=^kniIj;^&F
z848@@AUJ-J^I1Os`X#EX8C+JHQ%}o2NN4W<oz83?bqR*NDe2t1Hu}w)09c%FIjS9y
zqF%Z%X{g<bmWeB)#L0K09+jn_AX%Nr9c_zv8qq=wu_cA;zu~1&M!a<SUcZYlXkVRK
zRH%$;F;-B$RK@X=H1(i7^yI^PNd#P1Z|iXM^yJVta`c`0V*TJonYT_u?=|zicmw+I
zygiSz%)V~HcYcHSket&gZo#OF<SO3ugzQ{1bzFOdVEqVPu*+#pMoj&-Dbu1!tCC8F
z*i_^;F)@3hp{r3fQbI0Vn%V3EaeWd6Z${iX0Tex{hrWL=OVfDq!5H9lwa%uY_#nzD
zZf?mzX0s~z@I1kUw(R$o)haFaMSO0-v%fV;6dq}a86h=6+4~Wo-F+)-<)C8S^234o
z0pMz1NG2-fyS+%+%3ko7T&~ltH<8Oa3NJzB)Su)v@+QjKO7?bKec9yNM>}XI7)wa*
ztom+2R-bzI&>q*YZWFwittlDc*qFw~rC0?h`9E9Ezr|8U0iD00jSmHc>)9Sa;~gwL
zc&83;H+*bJEpy##v4&j7Fb{0D+D&l!rhdo0FlIrFS*9~nmmHmJy=9AFBODa5H6N2T
z2J7ZfjEJRNn9d0hJMIX|RHFK}j@hBp&9^vPqYL;gBzq9kZ=`Znx8Q9^Eo15DXpc0m
z838L1ztQ=E8IQuzF*YY;QRC!{h@>s;(yFTy>+|ypyC^Nr%t8Ydk7~yXO!*a=M;fb^
zNk&le{4kGmS$P`dHTxdh3{qU~7CQIvk$yEI#Mz{iKNW$sr$3ch+I#^3S~zZ0#x|hM
zk>%^drU`P1#Eb)vWp|7xMccM-%wC<>qS{`k(M8p$_$$f<uRiY{PH&(iCgrN&$FEFY
zv55<9e&Q-7<VRVmsqRAzh0g${d~d+WE=%zklT_N?z9QME<0cIx-e#rIx@)kUSo*;p
zIW8rs%{Ijp%r7@<3bv#&`Yn{$l)wEkFQN@-*|9a1<Fi!u_4Q55o+@-Fb4C?RPG^t~
zf6RicTucn@J~+-Qvt)Pwp5>;)z9=l?gCoYywIod2UN^%p_mVLgB07v?l(o@Var=Gx
zUXb@AJ05j3Xw0<l3W&zP<nvoF&(+%y{-qO6nN%<r{*LT_6<))xl$i<gDsHF;9v!-!
zV_7Lkqq8_MXQ=&ATLg(eoO&?u;!xp!ezjwJM;u!tWDA=jyCV5Czsp8Y@ZC=@DagEq
zifeqX5&1jw(G8o)5piEO$P5m*k9BOXT2=Q=PQkwaPBKsd5dF?%Skx3mb*v2a!LS~a
z?FzQ0GQb>FZL9!iATZSCfCUt9bT%Qt2oZ~7M-wVt>1te~CiU|Xi{Ea571wbt1WL$C
zSAr=dio^BIsK%;PwsVV6L((wRKVs?!aQ~Lert^KcR=vgNHOt^6t$>xA&O~atyDDKM
z7rS#-9$lS27*Zt#Ul3~$pydao^gw12$Tc%0KCOO^7u;R_X*K9s{-JQ`)VH+Y_EGR<
zW~j15+!|usgsMbmcB+cvr7z1JtQ>?k8cC?%GB#M(fN+3};3br2c3Y|2=Z^$9bJBq)
z=yZAE<AY2k@kP+c=+~A7R|#D3j|8AB1^t0TC|h-dGPr-ID5uKEF5S9I?LY^=_^$7l
zh=Pd3bLaGok@MQ7LkZ8z5|trlGpwx<B8{%NGo%jn{NXA(;q?nk0nlwK3=WYt%@QRc
zH19e#L8|}?DgaHo_ls%H0c5E9q2j2fl-)?O8eGyVR<8RSszHK!kUZlFT4T2=6&1m{
z?uW+6Ha6Ol3+T=F6uW$Zou+2>jCb9(9RqZoFY1D~OMKZVkG{{FndynJz)JywM76-E
ztSofsGU|{<P9sRllz33VKe}*b>{@V%!ffo^ebojaWWmamS}Tx9uKSenqam)nkYL0z
zx4Vqp4ALJHFE8tvx|Hm6j@*$Hz&)Xsrc-T+e(mxuXTVv$S`1*il#*QDc9iT)LVdO?
z({v`b)Zxq!-F9JV_hT88i<%vP7lmVsO7}$1k>;q+zens^Y4c*R>BWm{M=%(^H5Tt-
z;=#)-8~Gq*a(>*^wwB(zqa9iIMyKtP0R?%(V!3|X%pS2&93xtC=@w{apfds19K8#)
zTu$9`C57Eq`M?elI_kWU4i*Dp-kY8<v{hO=!?E-qBmsxxyI|VyxkSr^y`U(m)E220
zl|^eWj*u#?x%A&;=H1g-^@}3C*aZ3IVs&1xMd}MwaKCWm^w73Ws7+QITXcw5o_h|F
z$XPj8Ju2r^vzW)H`9=dppbt=lb5=C_5Tm|y6*Cw=q8}(#g`lt~sb4U}_jMi=d9$`c
z%JE7R77BBEAYabsf#o)82ZiMa2f=Emj)}5NXwWX<_n{x`<T)L6%dk~1)D>eoY@z(A
zY*-aLV|0h$4b|TCcz4hqRP!pV)0p5k@~w}8YN=W(A6#vhK1K*76jP{94wYS-l_jA0
zCI6ve1mq>7F8Ana#5hG^&#XUDrB(xnhnb=AJpJUeP=SuOIBSfk!dn(^Uti9G<)HG%
z0aO=c(~&mRH`+?&j{s0@vo1kIQBdlO4{<T|yH>GWcl<@=b@%tNkkG1JiJS1)yk%91
zm+dLglE7#n_ZA4r*JKi~OTrltA<Dv2&zz_mqx|{0Q8#f=Q&4&P3q?`WjwW6kcKHIa
z+(Z}Ua5B)1MVa4vEsPqQ$kDZ{*V|nF*fjG}HA^(C+5Pah=M;CpT%`fE(bTBV@?CYO
zAA1%~<tur3n$Ej7{|zw+Wu8C3ZWn(I^Ct&EK}6Z!aL0=_g-@rSgnDAD-;a#dg|0->
z_sf@HGPE9*FalM?H9uyr7GM87QTE!(+}8rx4V3eJUY1qRW8rWE6|6{E$XN`shMM2a
zk(>cZB;0Tm9zlC7pai-I+?>BSoZF8_K~E+N>5eT;pNW@cfVXd3d)N{kW$>o?Y!{Hc
zV)|c+X74&!@ZlLSqDU00IeaRW(*ac8sRe-<4;3-Q)W{PlzzS3@cT5B!8mF4+FAQIQ
zzJ?d1;wsph^}P~A+*S#Gx?5G93a_J3Y^~v$KbxrfXNL9cR@VIR7B~gh(V^8sHrd5)
z<qa37)q5^4mBd!%R%E4fbcaHcAhpe>wW;LXvj4h#0|uDMJWp&g<atQW!c1`lzI1z=
zuE;x98%MATVY;7R#q$X8QeoO+K%}lk7N3ze;P0L<-g&DIE-6}@X1ep^`;hPVS|aDc
zOzu*=<_Qo!{pjAp8*sp2T1e1JK^h&Skh86-8iaHlX(;~Pf`PC=f?<ms{xMAV0VBEY
zkH=OFHcdkmV}D8gf}tZKqtDhcump4pP=p?^@tA(OEdA(Flx)EPlj8-1X{XvDerp#f
z)yMm#>wbTb3`$wIqi1sGiJ%q_QDGiZdE%$X$77$Ol1n=_Zr@SeWJnDWtG8-GEyK#G
z;fDo19A^ShKD5=VqLw*Ajht@|E-PgYW2`eeGp+(|f@r#+YF-Rvz~X2JA_eu(D;A<k
z1g<soQR*>n+7lwxMFS-0YF}}>NGobGd^6Sk&K0ss{K%0}a88`g@EGI!wu;|tGK>qS
z@Xke3Xt{Zg*fm>~CgBNj*^^cOR!56$Z-lZ6a#<t~zXlrO<sTMPklV<!n~KmP0+l+`
zpk$sT?79)2hu6xAaOM3hPsAw0#kDPIK_iY(36TAFh|672I0`eugW?$p`6pU4jlLij
zziAp}SlPsVO1EL~K9@Io*hC;YT$2kX+f|#7DeNzL#&d&#U`#ZrT<)hXx`fh_Q{#;)
zm(Ae2qNOD&;!-W*^A?s{@(I1D#9cr?IixsfNkkNsOu&cA{DUND(a|TYO81usuaO*G
zFn%`os7v8yAvg+^MBX`b9I*5Q6M3iHK`#^|e~qwvhsXrvo*b*Q<qsVu9>X|^h={J{
z(oGNjtmdKh*-DuBykJH{6!aibBq00J;-7_q#fsJN?ltZdkX8k3Kbj^;`5oxr$mUQB
zTbe>zHM|$p0o4V4-zEVlhAqu&Tek_%_!!j!wLwKNk&zFt#U!kbyaX`QBU1o$C88Wb
z83a8rfYuLL{2Ov?rmIJQW~eO!{Hp0>WF&zYdIE}140>|ii9seisD-<_VQOVEDB!*@
zKk4fFfs=mMw0r#eb7DxS7DzCaK>0T0R<HpP+4Ar112oo<@l}=t+>LPwKDRCu>~w#P
zr}nhno%9e5gmkx7q7?W2VKkW+o^sfm8#SjJijj}5>+9!QnD*rT1|v0F&ilECTL*R2
zc=oF{?-29YF-%3;tx2B}RJXA2bg*Ca=Nj=(<A@ainqe$R0oa9E-A_E&Atq7W@cuE6
z`x>Zu<juW&XYku380Tys=l`@{1c56I>Dk0yI{x|P`rd`5TTbJW*;xRt`bV?mI7h7^
z(1#S#q+R>?NUYFSCk20F)JZ2}3Tv1@!{>>zaE}j}l@TFnq`(GfWg!!O4YMIC6FHlK
z2u1Ah>O$1014-o29~2e`xUyXUXl=%d3I~=2S9A#S_M_Zm`x24)Y%D5tMPb1yTaFCv
z<~%%96?{1ZkV80>Iw^ey{F^^<803#y-d5}zNCtKW<P0aKRfHiMOLhjabzdfqGX1s1
zWH3M7eVX59FwyO_5ae@wjek2Mi%l-Vu@2HlWbap=CjeTk;TkRX=n<rIP*|Uk2+;|C
z3X;Aukjg}?D@)HFcOKS*)p?Mz9ku`@E#;_Sgt#xUyB~o9MNz2}q@2Kr)*BDuu3j{G
zR|?Ft#r(h9)1Z{6jdjl+AJ?3Q)9hKH3tE~`XoF+_WL%@KMG3^Ih*rBY->qrt1PFp{
zT}9KW0@Wf2rfUmU+$mKCO-sW(X?47tw!LKgeWZU!+Z{P3+ioDz&RpH=rZ>rGGsrDb
z^`#s&mjE*t#DSF@%*Wj<cPO>3L}aV(0!@)}3D2_cLY=w$_@U>jL9e-ir14gdI6z_u
zaDK^B9b;Iq25O3v5HzY}4}wlhoJsxT?d}*z0Zvn_;k-Bn70=s8`u@jf+-Hmkx+pAc
zKEPxxKQyO6mB;wVLY)}&&jP(#>g07naGjcFrV--4uPFvtS;9n^>|8qtXpn#iR<{TO
z?V}x`C0(ie_uW90G{#(gi!+RTmj<>3%(P_gJZ-}M!c}6G9##;_3M`6!UZ}n0O+k#i
zf%ocrz9?P24#LEJnjtKr?d>3KF>0770@ML_u=FtO&%Hn^uSAVG&{%;iRXid>)y*@T
zl>n20KoDxafTXrmdh)T=B3s;*x>M`9H%4V*@8)0?yE1%yp#BJn17LVgdl5t7PGBWS
zwFgp*9FKWFVdf{Yvdk))Vmz}iihekg;j!=b?kI~o3y(Vy%UA?=d=%~-51#%pj{S9`
z?@aLH4|PVhkVn7u>Tn7X*`CaS8lGgz3yIpj2qtenBPLdd5nSP{_@)*MnG#Ye&)|6d
z_?LMZQm;H}uoG>Gs+1kDFyV}Eh+z%(i@euBf=YWspo%oPz{fU6(?U<jm?0+FSzDwL
z5NHtA8Enu!wgwPVeqT-zw?xYrQDs2SpaxA?3pkb)Cc}hCm<Ro;6!NGP`f-E#R26*~
zT&;;=!Lro#N^C}%!xJAwVt}>Ry_;*LoA4BAq^P5X4juEjfiSL&^laqKDjdZ^$?eHf
zuW3-Z`3?M!(YXsMH*EqiMnqPG=X38<KE6kkzB$*WHPX9h0_%T~W@^~vp1WB;*L+0d
zG*8DG<9w^Zn4_yn`t4cXs#R~es=9+8t9>v(49b6xohQPm`X5%=0O6)645a8PlvrS)
zK~Goz!#(#!4f4n89gu^rGOAZ(l-~A$(W0o-76Je=RAdJl>RQW={~4yU4ilLVp)>@F
zlV)vyuT_Czht_BxMYB=HhpK^v`ldsL7yOZGgqpU5u5%^>wQJGh7%<**p+{OZe+H>o
z0x$YOdBWs&J`~$5@Lof40x@;`6y3M(M3&e;`=OlR%f@LvKBn2Nu7qgg2C_2=Y8cuJ
zlo3b(nlit`R>hHK0<31i$2f58=aASdTGc7Hv3n=uLmc$W!s!ijE?OU`GO7MC0|lA-
zA1by_W0qn#(2y$B^|5>|w^o!Z7{Untu{5~whyR7$&0Q7ymHxbKpCDxtw)hGKn3BWL
z*hP=rqJCcbr-|qOyc0m$tg6W0zCU%VT-UvT?tnpLKk+70?o^z`I5VCsSt7fQ!_Ngd
zjg~F60gFp~vLs`7Z)<me%o7X&)vwWoA!9XE5DL=*<?aw7vo@XlVJ&im^S{ad*RYKI
z=~QnrRvp%KPrCY>?88dycbU~e2e&0Z9_<LoZUOoonGvsb9HXi4Zz%fFt0ieSR=2Du
zB-;iZ0)I!hVr1wKNr*5+hL|XD_;eK>TeKFlYx=1YKe5C7!pYPU3?^B2-eN>;x1->i
zKM20s`;mu`s^TApW2%~xtl=1#+txaT!*bZ<(OEC_)(jjnI1bC%HboWmRu=d<D&zEm
zOQ==e!fXld$i8%897i&ZbSC6m?SE7$n~%4arC)_om*4B_G{A^@2Cy~Zv~K?4EQzsr
z@(NUk2^A4KdyJtFei@lcod_T~Le8S;6>9rYPnEmt&yV4^lgMw5o-gKK1G%xUMIXTP
zrE1<rRZy1&lL`_%qH;N^k|KACuhUYDE_vBPWciccU_7~Df}$(fYHzsv)#-=d5fUIg
zro3L~)s<J4mZ;|8MA+15_W5LCPnHDhWQIbxlb$!rAC7D!PfbOIDRf>VclY;vJ7^`b
zqkWy1yHP%i3>5#lrW{qFq&TXhA-@227b@pVsoJ4t9BjyM)@5Rcc<IpDkQwlN%aeRO
z`+#X!a1slO6!HUkulIJ{huydm=>kwCvDCa#5_Kff8|)za7VC(7FaFhmc&~7`(n>ls
zwrcOq1H^}XvZ%!x)ndiryZ92@J2DR=z?*BUgD9a*fM$1n7y<;QlL21!j5d3yM}m^n
z@b=zG$hZAO&$Izk<Y>0V^CsnCs$@$m%#6KY>B77VD|Dr3;8RvSy;(^lGWuMMkIyyK
zfdp*d*)>i`6;T-{IE%(maY}7VC+c5RskSZ=3=v>&i@3~2mLZAHO{><UsEVpdsJj&<
zcbt8YL|A|BdCpoR@0XeD;+s^85kB7@&=VIcz`dabOMDg+Lp{uxze8qV6#%uJ9YHw!
z6jj{?QKoI*JXTd9vlc6S)3m_zPwp7p1d<TkU4JkW9HMUX)`PI>4uQ4xqrL3-9~cmw
zBDeX%h<!*Qj%q@OO@USM&rKhjzss>=A*njz%{q}#oj7yIG5D)Q+g8G6=q`*KGMp;B
zpNZOTHkiPALhs>gVW}-Z#?18s1bh(?Z1N^nG()vPc?e~7;wRRK7K6A75hm10SFlPg
z{rwhhhXth&*3SLE55rV-fmgT;oUUuJE<>%*yD$H6HVbeH2venyXHabF=xa<&J!|Wu
z)p^iPP$l`qPz3H2bh^?k9zyqt_U|9Iu-1`gzV@*Fna*(JC;?4iKFPYS@VL<;26Rk`
z`lJf{!i!&pK<p0<arnax2nQhxn&J{7KxAQXaJX<5sfp330Q>bS8(EDCDqHc~$_>8G
zRoBNLHGxhsPeCjj4fUQZ0peHy7jE0JYTYRR1Bbqlfoi^J$1<*WAb^Y7+o29_%XcA}
zg4>HP1~~i;#C1+2d_nF1%xFd$Smc<3h<@hGakNNLaHL`HT#E_>oyszu`iR>@Wtymf
zh&~ct`UFBbc{#WLENa3gO3M9Hrg}5SsOI|KHtWpod(40zyqwD@DszU4XO)Qu_XBh;
z3o{r?l@WakFBIoot~$U^2;DdO8xD26>R?&o<WT;?rXxD8#ultJ*9kRnUou6G(5AzZ
z16m|yR2fIJ?b4BXrBSZ#!CKU%#Puv|IWTQi%a$m^uyvYLFOPy$dZkPRUkM3B-0Fe>
zq@e*&?CR|I?O{H;IuA!i4#UsKk>s1T>Go|Txkn0Up(pgVAPp6T=#TcL0OTs6YugpW
z@IQtiutR9hM6EKwH`)N*8IccHEY-qOm^N?K+4P(t;IDCjH$Z;NRV?5^Un$+Zf~@v{
ziXFNYPn1FPjps~t4koMj?@Xbz`4~;Mh&WSHkZJ-2`0^57RVVb?+#Y~~e{H9FBQ+4T
zo>XYHhn%qBSyH*SU5ykA^#DQ5E0D3$W^p65k5S#^lAXi+thx#rZOc8pMg3n`>G~jN
zL~?Eq&l$Xc)=KdX_WgZ)q$a`UL99dUD~t0Mc`>PP(DJK2Ebu2XT+VK(wt~4s{M7aY
zRToAZbWuYtOr&y0=1oK<Z3EeGjLa_%?0bbD0EiU$Rs!^Y9rlp6ck>i#nuhiuvh)Im
zM*Y`JOhMRChOQ4?8}<_PYOw!}58KEb2!pQo?XQKNTNr7w03;76z3QF7f!kf235e}7
zSW(N;fRjMOF0|Ongd&{m{LcuqKzf4wS>ufZtH@aBR3Yr(g1Vec^!xZ=A{SaqU49et
z4vx6Z$T5qg0tJr6CBl{`Xv|>~ABPd|Is4uV+T4{CIX)0KswE?fArgHkoU}FtLA0&O
zdYwV*32;r;nj|I%9y2Ccp^{ljvydT}$ta4vdh(cdh(^_vI)pgQXMlUG3!{ghKzeoV
z_S6Y$U3-^&%8?i!Ohq2R<$N;ox8sbU=Fk-8)NUF+UuIiMe@mn|1iP1eHoYt7u%?bu
zrzV@K1<PK`DkvzdKc@r>xQ(t|h2sKaRQvdKhT3B&*q;A}TfoM`T0>m=Wia>@)FCr5
zM6}+*Wn0*XjlGOaC$Z~OE#3x6P{dQ|8?vDV&ccdya10`Wo*S#%2U9mec~=SpI2JCD
zqdk`>Y8u6O+~1ez!F06)?EwLhE~qMz{Al6)XGm?sYRv|RqOd;4Eb1cew=j7_zYDa;
zD3t&nK|)_1ba{CSb>=U|R2Xvf3cWFuw?Ym$kZB$QcJ#Ptt_9$Z{JR2%^-tT}_d{qj
zgdG<>P-7yb=aCHP$s2@J;o|KnD0KHXO)U_a7X8&O!En;H!y4V*iyQQ9mkW2F>1S-~
zpwvIlLbB|pJj7lNa9cFNcFj$yPlJqKUb&&*924qKbvjY}PP)J?;x)r~=O6E8&2*99
z-F$uSzli797`#wEk=wphXJ;mAsTn^}#9{Uz4#(bY2#olCeT>XJ1pud#3hKm6nE6PL
z^czG0xL%`vn;)Rgp45@ESA@nxy>f4$_!QP2r$M?JS?ufMgYppMwIq1Yzxy7J=9a@B
z52o6{;Gu2-=}feYk)Nk`ET)jlhJCXz!cim{NeYmo7E$W?=Al5<AfMpK=$NtUAN!|)
z3qfYX`z+F0xGmiUnb4L)=m-B>;n85*zLfs>p&(X2^ZOf=JQLWa{z13jd0$GFpG>j0
zh2$$0=z1Yd(3IZ^KA&>raIA4uLF^XvThN|&4`M~k)pvS>MW7{*yZX^e_XARE7M``I
zsB>SVq8`K&WViGtHN&<=Z-?CBDt`<!mY~*5x7{FmIpbOLM5a@abdV+QB*uM^O{*=F
z=5qpPZ6SXSTGMh49h`|*E6N{d$8XyIv8iW#iA9*|u7(s-VjgIoi%rg}s!S<FtNo%L
zR2Rq#4HQRq@umXB@camUgQF)}l5pGXin?M8K0ZSlOQ^1iqs~NbFYW@|`n*EQ>rX@+
zSyBot?(?9hHKHcI4kA=vXUcb*vC%dcR=-ApS$G0&L2&>%X;sKdj}E9T9{UYE5dc-J
zQ5h9=-|Jr3B$Qb~(-Tdam>7b8(5Cw{(tskl4`A)6PJ(QwhYM@T#RSw>6bK1t9@rcA
zD6D=5e8UwC{cD-m>UP$Zu#S|T^$L&*9h~p_)AJYgU>Q1?QK>-uhY~VIzFFJxt*7`6
zg}3`|wNbYet=5YL*7FJ%)>QC)(g27=)<fy6cG+&guj^@sY$g(Kp=7YYdII`?RY0FX
z=MS+c09$5XQO7v=8yN#oa2=YWclMYTyv$KBg1gD=D>AC;pqmFCk}rbo9mn3hWhvF1
zIcJj`p^Vj)pVt*AJ4hihLtdcgp8r@S=PiaNvDiX9G98Z0JZTlb8O*gwLbpBFPW25g
zbHektotFUg!eJtZyo5;kgK9R=XvQlAd<3pg=0J^8U1@s9%!b7tL_@&z-Yf@r@re<k
zp5uA@veO084}09cQ;X05+R#!l9#;@~t0PI$Ff!dLM;`~x?T*i<a=V6*07Q>;4zwPw
zgB<(q10506TNs>xk+`&j1Tm1?jR7JaiSdLwE%>k%Igay0#Kh)AiGRj!nY9bC58Mx7
zt3l{NZXp%jS$X}D{v~GZ0tAYEcD60(Xc7Mu2VUH3#b^D3D)Sc&yzdBF(j}LtdWaZP
zN2!nEok}1y>oXly!qncSjMYANW#}4(Ys-l?@fKVaG&Li12yc9TgiRw}`ZqIp`^YY*
z_!?9y;kkiUY;_^l&24I)<ZWmj;qGZR!{792wcfOK<^`_jJ0|DvO_R6ZsRtv**1et2
zTc`b#yG8&1BJ6Yx{!yeUD}Yv$ozQRC4`L3v1Mv?iCjdi9W%TJn3E|5a+kd5nl;0uY
zI!d}M$Vf^qA%*);^H(fjQN<gd7y90St@7WO{&ax+ynyldp@QL1BoatXf)++mFy>~4
zKsh249l`~G1JbLcjWY9^@`W!cHhK9!#)SG8(7TudZKY?i9O{6<b%d0)wXI;ESn+Bx
z<Um&h6Lk!A*8j$i0@vBkj~D*my&cp^C}lwa^?rnso!ysZ*PwhXjx6X2+USvsB3Bi(
zU*-Mssy>7;{eT^*_#{CHgf3LJj)hRfMco@vcg3K*>mnk`-@{byTtGdEOprC}$glp3
zMJW&`k$)cTCbV84#X!6+ayqOB?h_dOYn@6WA`C4g96<^!)Xw7Gf?toi@g>N-4x0gd
z@w=UN39pfHZ2Et$R`~6E`u}~j(tqz|-0;`=oc&cb?O!ie_}zMoUmN$$zRC2SU$02`
z-6Ij(e*uHDzuK4nE88{uU0l$wNs#cn@9KW7q0j#6|6Q!e|BWnA)Bm?-k3{^(qBV}0
zn3zblC1=@i3&v`ZO5>-~ZFbWfk)HLsirgz4Vw3Fy*T`PFP9_vhfB0qF-3$K)zDkDa
z+zx$NoN=ph)lp5!goFg&AEn+E4i%E?wjTHQS%IG{)q}5rj@fsg{qI%j3(n`j8Bd&}
zNLyFz-@jk;*s)_~hG);7tq$EM6MOc}rGZh)n1qB~!iFM`gnsOw@4;B~pOBRo8yUGd
zRyRV*;;qB+{Ypx~d2e-cdxDHRn+;5B_%7YgPXy(?mqM=KzUaV!=s-1<l!DQ(`oaHx
zoY)aD{kbTA&!;)jpyK1T(p6Pd_rYXK8=LAZnrqk7oT0oyGcKFyJJFJCyw3cyzi-4$
zx6Jd?OldqjIX>R!$rG^qHFTM{{&=J>JUM?}=@A*G^gb{#!<Xpo(#OmF;AzYSJ<ZL{
zzHAG%vCzx;&bHNIs!AI-ZcM9^*toINm^OW>`t^atru=Vl7{Sa~jQnhs`QD|kqPwBy
zhrZ5j<R7OV`p@B5j+&yd+bk;l6pGdxTyfCqOs`TP9tLtZL7UNd(2jB$jE2H5%jBdv
zU-uE;NeQ>O_j3+Q5v(I`f>e>5O?`d2g+kc`sK%|zXwiOnDB2Bt3V{#^tK|l{G4`xA
zNA=C?*PRn2Q}nHJn53xO+(TQo9DllTjZC<!ng6CkVCM@EjK4K*e11a8u*n(9E+!t#
z%+?$SbDNI5119eMz&R?@-#VIodA3;#k2i+PEExW@%-38Wi<PX9#(TcuWl@7+(QOM-
zI&k0y8LkDEPeV_hQGioqS95FY`lnBywmIIRI8>C^M;?pL%TxJ~n3(T*c=i_A9y>yX
zf2%+73M9P?x$9<+8*Xj{ar}<ZQoi@zs-5sK0eFh?j!$?Po{+^xPkeGlzsiaaGN^^B
zP?nsjq0O9y6}hd&R@Mhr^e!FDL{n=K&ZDHxm_u}*7*OUi(#gq~>{tU++yTN+3%sT}
zL~(2CSz{WWY@1!4WSFkvv`0chqU+N#g=$qPx!tm|U7scF{VQL{&=>CQ8PfK18f+<V
zI3XQos~e_rAV|TKnviF7c=G!LMcnjwL02=(0<5xI>5z9}vuq5rfBP_Ze+B>^g@5f!
zT%hRmq!cZQj}a;ZUrJ)+BexZ?pT6m;%`XyvlU=YHKiwE{8Y}t|hDtKnk~s2NLd#YO
z-qpF(1Bq`h7q~iX!i_iBKK`p`qq>*p6}O&OsM>X18qINhbb!^qhr38U!KP9$^Rfe6
z=%aGx%|SUUE30;l6gk^Iu)i^`Lhpp+nwpv#OqyxONQ<$(mZPJiw-ZQ_6I2G`qum*v
zvscZq|2pF_Yw{k~;-}u%84>89pS0>0a(uq}__U5otNR9q@t^AlryF1<K?pwl<A9i$
z9;cywJ(klD4{8(T?q|nNV>dFK1QVu$SC-OVlRqTw(p^V7qmDgIA@Zkl*zMNhRd8`p
zDJk;syz6RLPCiYtPF>)MMm5zAo;RwJO?9`nY5lm_#B-$Fj%jLcZr;??)GZgG;$)?%
z>A&&7Zc+7_;Sh|6^Ol`f<xkc$z$B<omaIUH7Ov7@C4YV@5geZ%!_tdBUM^u@Am&1K
zvxuTG$=N3$YRycOhyfR@>LOYd@)>EuB|g}a>}!7U{CRQ5-s;LM?>{ztOEzz4f1#_k
zK|5H!rlm!H?1#6slzqX-@jckQ{bKbQI4&DSgts_$8|Kn%gevwbRlg?eD{#d0{93&o
zJ_+Y%V=g1^!{Y*IAZ%jOx(Us6=eq|GAx>>aK7aH_Ow6HkNweaQ0>_7Y8{%x*(zZ7Y
z(TI4eO7!ukrxz$-T{@h^Qe}4b1*i`Bw70k4$HhTk?v=4qWAuswx3N`KR@T<$ElGxY
zrl!(yVa`U*ZV;ZENTlpGyrMkp*n%6nn28G}5iewP1MG2w#tu_G!4|>E#@X^xp2H;}
z2W^c?iU=?-nu{Al6wS?QULR<?2V385tXB)h{R#xiwyV)FbQL)cU7aHp(se_4TU*=x
z2M%lxAPxU0CC>~ES+&)@e*OA#wjK7ug$vu%1l1O5;^`K30mk-)2l8!(D7kYx;htIo
z<DE}OjQniM!;adUpb^$f14p)Sg|Xtdc42tj3S`AMai0o~k++B#p7DFCXkYS489z$<
zOi_^YkqMu1K+P6j<?ZP^0JG`)XC%}{N+0(myG;J@mT5=p{p;7Sla;z&-|S9)D_>^{
z{g;<svr5j&IvDOgkO0l7z1ZnkDsg&x8rmNDX`t#haB4SeUax_})9S*dOE-h-!ZG<*
zX%N4B>)*qj!Dz3AlK^(7%eEjia<AXK$uF?SM8?MM@EUy)(f#PJ%uRuV1fp7MQe<Rg
z_kr0J@lwN(HskUX-JM8Z>5Of`*v|za3hww2l__y(yD|yB5ncTB`2_9uxWfW7^F4VZ
zEtB0eFBSPhGv~wO!y6;dY&r+A*W{c&-0g*n7uRI+I$UVjzwXAPJ)CqobxUee^10|1
zSO(E>J!CseOP|l5Kg%=C?R**sniI*(1D^QAfB5hOHi9CV3c(Q;2R)g?w8yJ9nB?5P
zmS3^eg$Tx?E_HsiHn;hFZ*^#+T@8eDMW=zLvNV|b;EbEXo4EJSUyj15yQdbrr<tcV
zy-~nIEt>D~T3Z#R{d{~3-gvEX>EIF2%uRr+y)z)c=*8k2?M3Dm303#yp*)j%wdB6?
zc>OW+jyxydx}lt|fGF-E6r_1Gu(otFD*QKy!$)gPU>rKjG`W>B5sYy!X#8YpX?b#w
zgsQWR9$6>+@S%nx9-BNC@I!bKI#2h<xwNt#tWaBzmU_YTK;p<iB4I67*S@l&PNVh^
z{jFwxV&rAvJ&17A)6#s>9%y4{&u9kb2Kesp^8y*WXYXXQ_oh`!UQAg<ZbZ@Q6>0@L
zwrr8l?PI~Nory`3lZ!m#LYWA2)fMm^YTF<#?UJczxQGHCj*@nx%B-(Ga-ljo&&j%A
z{F^pRuUYw%`-9aH>gq5(e$y#%mO1Ct!g0KcNfdC23ht&m&V;NanRwV{6*_c%4mn_b
zDK4PGnot;INos1++<lP}kpUWBh<?`}yuFlkS*$8pq0Wm+p}f6JY<-ph7zJi_pvh}I
zNYVWBYTVq}+B&9yXL;o}T@>E&5!P6s_}!<58_~bGxj#w+{1%Qum1*I!t`bmH28O$<
zfEnW^AVIGqf1Y3D#qE7FVqax|`dDm#>HCkh<dr7FF?wAfM1(bk{CK@+6%Z;U#fR7$
zZE|kC22U$nsjrAISiy}jW^^Vv6PC-n14<E(xOm~h-CUafhJ!Yj6Xv*yR>I3rj1VXt
zk^W)diS7D`{;^3!N6JB;GMPyzGax#f&#-Hh%-QNV0F<?=7FRsSGr$sw$GOge0?w_<
zbFnTJCv+v&NMmeY9+73=LRZ(8ZgBzxQega;87>9AllMjm332A*$B#qQaPGlefHtHk
zcp~bSEm^kYO9LH)S<kngaK4ofyE!QDu5g_0{j+m$o!AYr)cmGb!fza5ttx9eAd2{r
z;(4frOQ(lmG<lNaL6lyho_0_;P~V|$1EYwPFitZL730$`aP_q90a)#KYsO<?QZ%)+
zwDJevI@TU)AmRn<VJr?_h|h*?8&ySSYuchSg)n4l9esQvjLVG)HW7B-K_9=pkww_T
zpCLl?9O2ct>k)}FT?_8M7Q*{`^S>NjB)Pg#{m`yh{2l#*_6)g=_^j<MN!WFSgS-z-
zG4muZ=iR+U@RrStPe~cN9R`<Dmgh8>*M#5kqTl(cx3rgQ6c$drQtuV;_%zsZZ4q$p
z{WEFP_4%oybxV>RsX)C?J96%cJGo!^ySL1x5Vu7JT~4BIS+lHx@)1ewfo;&IW|gpY
zO3ZjXGImW)X%qXJS+Gz3GgTKhxiA(955Eb!V}UA+kEI|4kBW+_;t>H7U`!mbSS;mE
z74(xMeJ^?7QBcIwvMZj&B1cU1TNJiTYn4T4V`ufQ;{khbX<&Qn(egQ>SrCU8DAO6K
z&>-eTSKo)tG4hK}+cm}Oq3vhGg&;9-$Mn^!R~;#Fxw*L&Y<MdBhl=UhVZAE&#*&<+
zlV<@uhQRplla{7$kSds^Dj+lW^ewWg3X+q2EG7wX#+Qwd0UQWg6N2eMXig%{ZLLtj
zcEQ$I#jJUw#OYIvhwKX09<*FaHPhN-T2xSK3(ylfr|9!DK!XKeABnqFmH#`W0~`Zn
zXlnV{1BZGSbpT2ao;im4@}&Zgg&Oc^g!DO5J;$I3Te%!-1oPX#BN%1wZcqc94i^AO
zKGaeP614N@&j(6A$ji&q%uh{CEww#p+rD~{wCC-YuU=^x8X5vROs*K1z1^#<ow9y?
zoB(};x!X@N)eObE<QdP-_U&TpC8pCHJlC1xHu%(G=ulUb(5knPn=vpj0JmA01=$cJ
z7rCWOxI+rW0pA<+Fc*_JqB?k-W~Ro(Vc?7}HD$r+<xnPeqU`>{Wl=>%YVgZc6+q=q
zQM}^$EAF<kEY!Jenp}Y4HZDA~fZ0||A|9rpbJ?uuUyBOUp~0qL?z)bsj656&*~fjN
zIjJvjA?7#TDDmn6h;%X|4l>fen&MH%V&Rc&!=IUg3M@5-6#<Ab3I~zkI1Y!)Cj<Sg
zJkfOC9MVMx_~z$ZabauU9JKvvOn^Y~*?+_NyEMqa8|v$yT}DStws93~peRT)w7Jyh
z5IESUiNdKA!5uX;)KtGV+ktG;&S|ZeF{hzl?HqHw$R9OCLLqm>C7$t~nXd(tt^Lws
zMGHFqy3_q7J}Id>iv+nU>^s@@@-IOQLCJAI*Rvyt{&<(uaR_SY{77YFH0t=3`>i{n
z5?0HFr?pNiL)M9|y{!kOxd<8Z@KaT$wSyj0qdmSwkkpu$++XNWvT)tDmcq^_vZKGn
z!nz+V>hd$4F$4T|LooPZ^RdU<+7$}N^@F*y+u_eB2DH4IT?*s=UfwVB?$3X)M;6^D
z+uBJw`Dufb^wZZXME#D5ju;&4I|az8B?T*CUJ+39SOP(#0JZ5pAD<8*Qa?OWChj{N
zy*AN+P`gZaAW6Y%#BZcaTA&QMc`())fM^BES`HjIpy)X{+*;t~2)SIht+Aou1~}*J
z(^+s+A?kRqEr+e9$NM48fOw_qGPEbh6x}i4nbfNh=i_vq3YibtOGzg)Tv*hOn6AHE
zhrioNo|v7Sf4)vLmzcNnD)bFzZ?U6ZA?nQibAh+lquXp{y>+S0ne4k2-I-&qzH*V|
z-E#?5f6q5^a&m%;DMM_@wUc7c7q7QU26TlWGdgkE9C$RWD?k==80)rY@7FG0zI@?)
zFy1}fE@xVFc=ztz?Mytiz)kUPU;TYtcBVbtPvC_Q!x1EUZ5X-Nq5qU5b8d-CLNqOl
zpa%G)@Qj5=w8*(Tiwb3<l9HM(Zd(77KI!wvPgf*%e$(b}e!N0eXR$bA`<gXtQUSH*
zFtf;J15F9GDM~l1L(p&m;i2CD96GE5&RB~u?HR~iQ8t+TBOxyQ$pPz@)smO?+qP!_
zsDdmd?)Z%xH%gpP=8Jy3&eSut!z(c{(Ht&yA@^1yD`owmJJ$mzX7N(J!K+s=p2DHL
z$J1*o5xWs<FcE^PecWt`C&O%V=wzvYpW1W-4gWcfe--wQRs!u)!Df=Tn&}pw1NVv?
zx<Ht>FIlFziDsQgO5m?>g_UmxAwv=JKOi7Rzii$5>a>#w4bcyf`j5~AJenfRuRMpW
zZ(bJuS0eCYcBJ29E~vVDM)CTNaezg_nM~!2`g-wZ@^=c?05`ANSZsv;GsJ~C)(b4^
z)K!ku_3`~z3x8w!Ef7OG-U<`%fxHJcC2Xnv?n|)qE*KbaF3%!(5e8Xwci?2B@y`SK
z35gX3O5)e}`@)&LS7<lZ3(cWs_l^kkxP(Yb1Y|fnZmZ+=tZ87u-YWlF*rW?S*5e`o
zc*I@=0aALIw?}v-BGVteSgrdUW?#j=bwi9ty*RK%^vqli)tY!I<w|IF(tmmiiip%#
zOn4Y*zI>G@tdELVl8^R?-QWjx$j%+u^@9V0gI)gnYT;N*%b6Li5|3zZYI>PBhZf<x
z81Y$feATpx^$fr<y2_uGf<ilTmMu!l??+%DL64C~?H}Q5i&@=*ATQP)r`aR=*#+m@
znnahEc~9p5?1FSUDlKjAC4z}03}}q}><x*eP4iw=&fY3R^{YN#?C-+O7v~-rr9Au;
za{HlNdbo`Tuuh5)9#6*1gwF1YdpKR<G4>2iU0|OeD;(r^3bNW-<8bSSh6%EVhC_b{
z7v&K`A|yKy>1JCM!j)>F9X6z{#i)ImH%qWhzu&w0jK_K6T*p7*{lJl|Fu+N{2-=l}
z|7KjgA+|_z_rqKEzg8^H9WgX4gAwLY^#)E0f3r{at3LcH<op{f33qbl7J%?a?G3Dz
zbLYZ%QQ8F<Am)_!Z>{-rGc)(Wci+)A!}}QypcDk^OXptkUagGPKmBX9=N|7Uk@#e%
z>dsExexFwCfYsbDk9*L=iAT??{D)^0eqW@R9|g(w15v-7W4h+TgtQ)e!-L<u=V8M5
z|9rg0+#QMTa@sC@F@x|`l&?KZT<{KeACLd{4ZT}7U1(mX8LA$$wX-fJ1+@@{^iRVO
z?(F!uYEILm`dNHBdkye2`Q3x-o~!KXti$_Hj!ADZgFdUmX}W6K47lqC%V(#otkd@H
zU&pxqERVlC>i@NOrBO{JTeux?VcZCdEXGk(L==U9qcIv}bpalm0umN6EE2YW2}A=i
z8Ra31q8@VqhgBIE6@hUuFoG;PEQ)vl5dyM=fl+}Vh!SMyRk{;QJmZh|(>d0Ubf@ap
zy<gpX>sEDFch_Jy{<u}i+)+_WTNBw?>nBSoHh=7!+9bU;h0nO7)008lKX|4lO)nev
z5LieCyLLr9nB2fFEw@H`ovh(pEf}fSDA<j~M|aL`y$nw*GxD|fU~lj=!e`y<W{ss5
z%Zzk4Z}nGxJUVvlyKA$q1GnKO_9=r7D#V&EtM~Sjv|dMn|Kk<OlQRy$`wk4kUr<&>
zflt}1!Bsn(-+$x@`<h&*hSZ{(hpskX#V+h1h#s>Fwd{$fOmbqeK3pf(E@85K?glSS
z@5~redV$X(;|?#4sg0lALi{)sJx&2K-%jYxDm;fbQ8JPf#BJWwr~A-yW_{1Phn9;!
z+uc^v(Qy@c(Fe_TEeofaO}{GdWY)Iz)uT%0TnB1l2N*l-J;A)X4O}A45N52>KZCs1
z!EqIeIl*nFXvre}f;SynCH8{(<Nv$VI6hZI)6ytR@kXEL4d>i8=+JqPcR`&Tgf@Dy
zaS=B@(#ZB)4{J%WJnBgFQe|Ufb7ON`<6S{j3o^IM+I<&f7Gt46Od%@mXuKG+v^Qy}
z{lsP!jkrw<O2{jDyJrmRU)wh)?+YEui{-(q!Sg7=$>jto+apC^d8Sj6pAiHph95FB
zKJxEt-M1D=`tQHefxk8rr?3d6u@dW-t&7TL;Sp2HQqL8nwoOFJzLbf}u(#lgUil4>
z%a?qMz3{wz(}Ly!|I-ME71{ja7Ri0EvFkLzV@IE*bznCOncK~o@Nfxrdrao}BlqVJ
zI+l#R3NF%~pey{Fk@aiZzVhM8E6nKv!A1zH%w+Wa#o%&XA2iUPS8sLKk(ek1EZ4|3
z?MrbLz7~G@rGQ%+%o7X`&6)BKK@FA7DrwF1N7XqFlEa>d%M#2Q6DPdzDIQjxyC634
zZAsbNJ-k4?9AsU!W?u<~Cn(6H`|uB~&R3Fb2`lir4s{8_YaNI0K6;kHrST}_!NI}8
zw1tqC-+e-rQ(0JhS$KW;5QR|x(l=`fMiQ!`_jS{osWrk0>gBe8opJu#-CJqHQ$=&X
z33MQ=9jz<WW_sqzfw9i;C(F4-X`IH%GP0DCOl?=;A_*2R21bc6_@J`>Y6kb%`18cx
zOH4Y<1yw%zj4|?XB{PCoT2v}{))?x>C#}vM#;*l6M2Qu+zLI*-T2JUAkKZ=$;wjnS
znP&if`G?Yx99{>Pt`4Dd(r2gh#vj)h3L>Y-r#k&zY}!w`3BE^eD#46AlG!2XnwAZP
zPfl`TQ&TN-PYAOc8e~?^?(Smn7pDc!UCb}n?0TQgt!m1TAn;?LVCS%~uwIq&>Cld`
z)ZyyRj~!Ey<;)?2^b0Cw-4nSdg6<J4T|<Jp=#t)hejPyDi>+qPmNX#+7a23jy!iYx
zy)HJBMQ`>_5nU-G1Ak0DatLWQNNc2Tfu@hmO@1uz)uK&LAL_Nd6kcD_g(`aR`gP0U
zU0q)Kl~nzEX%dF1&{%?Ti#k9H^W+eU-~uC0S{K76VpK6b2rmO!cbxBH`agL8N;eSi
zxiuxZ{s!NVkIb!LML_7Y@=e}H^BnIMP;Lo?o(Sy(_nKyR8%|B=R)do)ff9rb+vUm(
zjOddYj{9J9+Jdj`a=k^tDJ2;Zi12|bG~@u15OnXpxlR(03_NuC`}V1!OT#nWW8;mN
zhJEo1q4>X}`1u!;gCe{;-u3WhlU9&$YD9fCLcNHI@X&oZGHH9$P*&+todm=#zy0(B
zeVmL!jg(9=dGzlgbZb?PZl%yJbv^|xhYMSjo$4|Zo=a<fV<q*PV@~Ma;(~T@!RidY
zUrKV^Q3?G8WWJ<V6b=-tb8wBSFbG!k6E9yW*L@0D$u{->A`or0sh-0z<Aoy7M7V>m
zMJB~(3>V+zh^=E}x?)&VC_J<VnOGh8`%gNY#d_ekt&!#?ZHJ%an^2*g{o1)sNVSGX
zUaABe<Q)F(js`MrvK0#2?jeSPAZzDb&8X{SSlc2>)&>P4ZV`iP&ZCJD2FJc$!Ixl!
zRRoNlP;n$tD_Mv2moZ)pI3N!>!h{vh-TZf+_LedIKo>}KW+^&aoYEDkKu8oE1%gp#
zjkV$Sc|m7=nn>)PRQXTBDx5VcsTVA?G3oVUBX>tGGhNHzairWB15o>L*h%%-^UUh}
zwqa72iT}bZgX<!btc`dy%rb^pdFafEh*eqa7K2YRA*_#ym6jJy?FN6ZJDklb@Gwl@
zuY4Sd;BXf9D*LSUL2XT+0@C;oNPzJu`OhZPQ8%vGU0^ybv*>==X8WFw`}b9mk)k5u
zXRD|r>nLfF#z5rYh=>Gg_g1B&Bt{aJEC6o2P4o2!(mZfmu7ecG##(H=Cm-c}$C2OK
z*16mU4a@hSEH_=-^h6#sQMAs0z+Y%$^=kk=exxsR577$Ff>!(Ls}XUZbta|e7Mb5~
zWmVp%d<bSC7f2O8C`nB`zICA&TlmA3Mr{1uf^conXZXmolu-Y(H%)ydd17yarKrmj
z{Q}5jRN~kwv1xue;vWNyz>!AiYZgtC5w)cpahr;MwJ5{vs~WMwuXBr&k)MgxY9hL(
zwe+6K(^t1axDh6nK`uMGjjAs66A7zTERrX_)O*^zC5)!~-($$_lJ4<;)KIHD;OmR7
z0Z}A`L~aCOLzpVA*#fWu>frmYlIm>L1H?d`cZ-UmtB7r4V#nK@N-tHS>ZCNWt%;S3
z2SDti<4OL++3_Z)l8TEd;}dKo0*uF>a+ts?HRr72s@6{<w<92%7ok6Hx@yc4%~6E7
zSTc&lmnLAO@GFgfby7L5>URNRe^xf=2BVBo)3rdq6d|c7wdw;DL7;uPEq9M@_q^}Q
zNkckn@D>nVJ~Bq#RNS0g>LsDX$zf74d;u=use_JF4yc&>24RMdv+ue4&YoxP<j=Mz
z*hnb6`+__X*W1#o+DpG6ps(SN+-25;D3K6~oz~hYH?FxEh=z6+F$7DtePp5-9ynq#
zCSW<I5*z<lIYJ-&vtMqmmIMXspJuCxo>3B@5o*@G$Rvq+-!i``<TH2prjTz6nb*KK
zXP8$7a`N>kWOlLphf}(zO0El6AvCGxN2y-NsoprxliuI}>Feq5*oMJuGtfJN`4OkT
z8>hcxtDYWCPj3Ti%vY*HAlZxLbNb5_?5(U{fC`)EB~VF$-W2Nbz~C>}S?Ek&D%9s8
Mb8E9a6OXh1186buK>z>%

literal 0
HcmV?d00001


From e3e4bcad74504cf501e766806c76f5cccf5ecd9b Mon Sep 17 00:00:00 2001
From: eric-intuitem <71850047+eric-intuitem@users.noreply.github.com>
Date: Sat, 30 Nov 2024 18:40:52 +0100
Subject: [PATCH 098/107] update licenses (#1109)

---
 LICENSE.txt => LICENSE.md |  4 ++--
 README.md                 |  2 +-
 enterprise/LICENSE.md     | 47 +++++++++++++++++++++++++++++++++++++++
 enterprise/LICENSE.txt    |  3 ---
 4 files changed, 50 insertions(+), 6 deletions(-)
 rename LICENSE.txt => LICENSE.md (81%)
 create mode 100644 enterprise/LICENSE.md
 delete mode 100644 enterprise/LICENSE.txt

diff --git a/LICENSE.txt b/LICENSE.md
similarity index 81%
rename from LICENSE.txt
rename to LICENSE.md
index 15a1df5ed..c12c788b3 100644
--- a/LICENSE.txt
+++ b/LICENSE.md
@@ -1,11 +1,11 @@
-Source code in this repository is variously licensed under the GNU Affero General Public License (AGPL), or the intuitem Commercial License (https://intuitem.com/license/commercial/).
+Source code in this repository is variously licensed under the GNU Affero General Public License (AGPL), or the [intuitem Commercial License](enterprise/LICENSE.md).
 
 - All the files within the top-level "enterprise" directory are released under the intuitem Commercial Software License.
 
 - All the files outside the top-level "enterprise" directory are released under the [AGPLv3](https://choosealicense.com/licenses/agpl-3.0/).
 
 Binary files are generated for each edition for CISO Assistant:
-- Binaries located at ghcr.io/intuitem/ciso-assistant-community/ are released under the AGPL.
+- Binaries located at ghcr.io/intuitem/ciso-assistant-community/ are released under the AGPLv3.
 - Binaries located directly under the ghcr.io/intuitem/ namespace are released under the intuitem Commercial Software License.
 
 intuitem Commercial Software License requires a valid contract between the licensee and intuitem.
diff --git a/README.md b/README.md
index ff2284d2a..668f78001 100644
--- a/README.md
+++ b/README.md
@@ -534,6 +534,6 @@ All the files within the top-level "enterprise" directory are released under the
 
 All the files outside the top-level "enterprise" directory are released under the [AGPLv3](https://choosealicense.com/licenses/agpl-3.0/).
 
-See [LICENSE.txt](./LICENSE.txt) for details. For more details about the commercial editions, you can reach us on <contact@intuitem.com>.
+See [LICENSE.md](./LICENSE.md) for details. For more details about the commercial editions, you can reach us on <contact@intuitem.com>.
 
 Unless otherwise noted, all files are © intuitem.
diff --git a/enterprise/LICENSE.md b/enterprise/LICENSE.md
new file mode 100644
index 000000000..a53638542
--- /dev/null
+++ b/enterprise/LICENSE.md
@@ -0,0 +1,47 @@
+# Intuitem Commercial License
+
+## Preamble
+Usage of files in this directory and its subdirectories, and of **CISO Assistant PRO** and **Enterprise** features, is governed by the terms set forth in the Intuitem Commercial License below. A valid license from Intuitem is required for any authorized use.
+
+Access to files in this directory and its subdirectories does not constitute permission to use this code. The full terms of the Intuitem Commercial License are detailed herein.
+
+---
+
+## Copyright Notice
+Copyright (c) 2024 intuitem SARL.
+
+---
+
+## License Overview
+This license governs the use of the **CISO Assistant** source code located in the `"enterprise"` directory (the "Software"). These components are not part of the Community Edition and are subject to the following terms.
+
+---
+
+## Terms of Use
+1. **Production Use**: The Software may only be used in production with a valid subscription for the appropriate number of users.
+2. **Testing and Contributions**:
+   - You may modify the Software solely for testing purposes.
+   - Modifications may be submitted to Intuitem as pull requests (PRs) for possible inclusion in the Software.
+3. **Prohibited Actions**: The Software may not be used in production, copied, modified, distributed, sublicensed, or sold without authorization, except as expressly permitted above.
+
+---
+
+## Scope
+- This license applies to the content of the `"enterprise"` directory.
+- Binaries for **CISO Assistant** located directly under the `ghcr.io/intuitem/` namespace are also released under this Intuitem Commercial License.
+- Third-party components incorporated into the Software are licensed under their respective original licenses.
+
+---
+
+## Additional Licensing
+For a non-AGPLv3 license of the Community Edition, please contact Intuitem.
+
+---
+
+## Disclaimer
+The Software is provided "AS IS," without any warranties. Intuitem and its licensors are not liable for damages arising from its use.
+
+---
+
+## Contact
+For licensing inquiries, subscriptions, or more information, please contact **[contact@intuitem.com](mailto:contact@intuitem.com)** or visit **[www.intuitem.com](http://www.intuitem.com)**.
diff --git a/enterprise/LICENSE.txt b/enterprise/LICENSE.txt
deleted file mode 100644
index 20f50883d..000000000
--- a/enterprise/LICENSE.txt
+++ /dev/null
@@ -1,3 +0,0 @@
-Usage of files in this directory and its subdirectories, and of CISO Assistant PRO and Enterprise features, is subject to the intuitem Commercial License (https://intuitem.com/license/commercial/), and conditional on having a valid license from intuitem.
-
-Access to files in this directory and its subdirectories does not constitute permission to use this code.

From ba95c9cba2576a6088bc9053f1f5f792f39d6e81 Mon Sep 17 00:00:00 2001
From: Lorenzo Bernardi <git@bernardi.be>
Date: Sat, 30 Nov 2024 19:06:40 +0100
Subject: [PATCH 099/107] Make Login UI responsive (#1107)

Signed-off-by: fastlorenzo <git@bernardi.be>
---
 .../(authentication)/login/+page.svelte       | 23 ++++++++++++++-----
 .../(authentication)/login/Greetings.svelte   |  5 +++-
 .../(authentication)/login/+page.svelte       | 21 ++++++++++++-----
 .../(authentication)/login/FormCard.svelte    |  2 +-
 .../(authentication)/login/Greetings.svelte   |  5 +++-
 .../password-reset/+page.svelte               |  2 +-
 6 files changed, 42 insertions(+), 16 deletions(-)

diff --git a/enterprise/frontend/src/routes/(authentication)/login/+page.svelte b/enterprise/frontend/src/routes/(authentication)/login/+page.svelte
index f34fdac3d..b5269596d 100644
--- a/enterprise/frontend/src/routes/(authentication)/login/+page.svelte
+++ b/enterprise/frontend/src/routes/(authentication)/login/+page.svelte
@@ -8,18 +8,29 @@
 	export let form: ActionData;
 </script>
 
-<div class="relative h-screen w-screen bg-slate-200">
-	<div class="absolute top-5 left-5">
-		<div class="flex flex-row max-w-48 space-x-4 pb-3">
+<div class="lg:relative h-screen w-screen bg-slate-200">
+	<div
+		class="invisible lg:visible absolute top-5 left-1/2 transform -translate-x-1/2 top-5 left-5 transform-none"
+	>
+		<div class="flex justify-center justify-start flex-row max-w-48 space-x-4 pb-3">
 			{#if !data.clientSettings.settings.name}
 				<Logo />
 			{/if}
 		</div>
 	</div>
-	<div class="absolute top-1/2 left-1/2 w-full transform -translate-x-1/2 -translate-y-1/2">
-		<div class="flex flex-row w-full pr-8">
+	<div class="lg:invisible pt-5 flex justify-center">
+		<div class="flex justify-center flex-row max-w-48 space-x-4 pb-3">
+			{#if !data.clientSettings.settings.name}
+				<Logo />
+			{/if}
+		</div>
+	</div>
+	<div
+		class="lg:absolute lg:top-1/2 lg:left-1/2 w-full transform lg:-translate-x-1/2 lg:-translate-y-1/2"
+	>
+		<div class="flex flex-col lg:flex-row w-full lg:pr-8 space-y-4 lg:space-y-0 lg:space-x-4">
 			<Greetings />
-			<div class="flex justify-center pr-5 items-center space-y-4 w-2/5">
+			<div class="flex justify-center lg:pr-5 items-center w-full lg:w-2/5">
 				<FormCard {data} {form} />
 			</div>
 		</div>
diff --git a/enterprise/frontend/src/routes/(authentication)/login/Greetings.svelte b/enterprise/frontend/src/routes/(authentication)/login/Greetings.svelte
index 7b667197d..070dbd6ff 100644
--- a/enterprise/frontend/src/routes/(authentication)/login/Greetings.svelte
+++ b/enterprise/frontend/src/routes/(authentication)/login/Greetings.svelte
@@ -7,7 +7,10 @@
 	const clientSettings = $page.data.clientSettings;
 </script>
 
-<div id="hellothere" class="flex flex-col justify-center items-center w-3/5 text-gray-900">
+<div
+	id="hellothere"
+	class="flex flex-col justify-center items-center lg:w-3/5 text-gray-900 px-4 lg:px-0"
+>
 	{#if !clientSettings?.settings.name}
 		<Typewriter mode="loopOnce" cursor={false} interval={50}>
 			<div class="text-2xl unstyled text-center pb-4">
diff --git a/frontend/src/routes/(authentication)/login/+page.svelte b/frontend/src/routes/(authentication)/login/+page.svelte
index d7fcc0f30..2726cba53 100644
--- a/frontend/src/routes/(authentication)/login/+page.svelte
+++ b/frontend/src/routes/(authentication)/login/+page.svelte
@@ -8,16 +8,25 @@
 	export let form: ActionData;
 </script>
 
-<div class="relative h-screen w-screen bg-slate-200">
-	<div class="absolute top-5 left-5">
-		<div class="flex flex-row max-w-48 space-x-4 pb-3">
+<div class="lg:relative h-screen w-screen bg-slate-200">
+	<div
+		class="invisible lg:visible absolute top-5 left-1/2 transform -translate-x-1/2 top-5 left-5 transform-none"
+	>
+		<div class="flex justify-center justify-start flex-row max-w-48 space-x-4 pb-3">
 			<Logo />
 		</div>
 	</div>
-	<div class="absolute top-1/2 left-1/2 w-full transform -translate-x-1/2 -translate-y-1/2">
-		<div class="flex flex-row w-full pr-8">
+	<div class="lg:invisible pt-5 flex justify-center">
+		<div class="flex justify-center flex-row max-w-48 space-x-4 pb-3">
+			<Logo />
+		</div>
+	</div>
+	<div
+		class="lg:absolute lg:top-1/2 lg:left-1/2 w-full transform lg:-translate-x-1/2 lg:-translate-y-1/2"
+	>
+		<div class="flex flex-col lg:flex-row w-full lg:pr-8 space-y-4 lg:space-y-0 lg:space-x-4">
 			<Greetings />
-			<div class="flex justify-center pr-5 items-center space-y-4 w-2/5">
+			<div class="flex justify-center lg:pr-5 items-center w-full lg:w-2/5">
 				<FormCard {data} {form} />
 			</div>
 		</div>
diff --git a/frontend/src/routes/(authentication)/login/FormCard.svelte b/frontend/src/routes/(authentication)/login/FormCard.svelte
index 2baaa8ef5..fbe008c82 100644
--- a/frontend/src/routes/(authentication)/login/FormCard.svelte
+++ b/frontend/src/routes/(authentication)/login/FormCard.svelte
@@ -42,7 +42,7 @@
 	$: form && form.mfaFlow ? modalMFAAuthenticate() : null;
 </script>
 
-<div class="flex flex-col w-3/4 p-10 rounded-lg shadow-lg bg-white bg-opacity-[.90]">
+<div class="flex flex-col w-7/8 lg:w-3/4 p-10 rounded-lg shadow-lg bg-white bg-opacity-[.90]">
 	<div data-testid="login" class="flex flex-col w-full items-center space-y-4">
 		<div class="bg-primary-300 px-6 py-5 rounded-full text-3xl">
 			<i class="fa-solid fa-right-to-bracket" />
diff --git a/frontend/src/routes/(authentication)/login/Greetings.svelte b/frontend/src/routes/(authentication)/login/Greetings.svelte
index d21c67ca3..83390118a 100644
--- a/frontend/src/routes/(authentication)/login/Greetings.svelte
+++ b/frontend/src/routes/(authentication)/login/Greetings.svelte
@@ -3,7 +3,10 @@
 	import Typewriter from 'svelte-typewriter';
 </script>
 
-<div id="hellothere" class="flex flex-col justify-center items-center w-3/5 text-gray-900">
+<div
+	id="hellothere"
+	class="flex flex-col justify-center items-center lg:w-3/5 text-gray-900 px-4 lg:px-0"
+>
 	<Typewriter mode="loopOnce" cursor={false} interval={50}>
 		<div class="text-2xl unstyled text-center pb-4">
 			<span class="text-2xl text-center">{m.helloThere()} </span>
diff --git a/frontend/src/routes/(authentication)/password-reset/+page.svelte b/frontend/src/routes/(authentication)/password-reset/+page.svelte
index f78f314b4..cf4b04955 100644
--- a/frontend/src/routes/(authentication)/password-reset/+page.svelte
+++ b/frontend/src/routes/(authentication)/password-reset/+page.svelte
@@ -18,7 +18,7 @@
 		</div>
 	</div>
 	<div class="flex items-center justify-center p-10 space-x-4 w-full">
-		<div class="w-1/4 p-6 shadow-lg rounded-lg bg-white">
+		<div class="lg:w-1/4 p-6 shadow-lg rounded-lg bg-white">
 			<div id="password_reset" class="flex flex-col items-center space-y-4">
 				<div class="bg-primary-300 px-6 py-5 rounded-full text-3xl">
 					<i class="fa-solid fa-lock" />

From c205a930a54375a9ceb6a0d515fe42e734f5618a Mon Sep 17 00:00:00 2001
From: eric-intuitem <71850047+eric-intuitem@users.noreply.github.com>
Date: Sat, 30 Nov 2024 22:40:47 +0100
Subject: [PATCH 100/107] Update status.py

---
 backend/core/management/commands/status.py | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/backend/core/management/commands/status.py b/backend/core/management/commands/status.py
index bbee0ed8e..f8d345a8b 100644
--- a/backend/core/management/commands/status.py
+++ b/backend/core/management/commands/status.py
@@ -22,8 +22,9 @@ def handle(self, *args, **kwargs):
         nb_risk_assessments = RiskAssessment.objects.all().count()
         nb_risk_scenarios = RiskScenario.objects.all().count()
         nb_risk_acceptances = RiskAcceptance.objects.all().count()
-        nb_seats_available = getattr(settings, "LICENSE_SEATS", 0)
-        nb_expiry_date = getattr(settings, "LICENSE_EXPIRATION", "")
+        nb_seats = getattr(settings, "LICENSE_SEATS", 0)
+        nb_editors = len(User.get_editors())
+        expiration = getattr(settings, "LICENSE_EXPIRATION", "")
 
         created_at = Folder.get_root_folder().created_at
         last_login = max(
@@ -41,5 +42,5 @@ def handle(self, *args, **kwargs):
             + f"threats={nb_threats} functions={nb_functions} measures={nb_measures} "
             + f"evidences={nb_evidences} compliance={nb_compliance_assessments} risk={nb_risk_assessments} "
             + f"scenarios={nb_risk_scenarios} acceptances={nb_risk_acceptances} "
-            + f"number_of_seats={nb_seats_available} expiry_date={nb_expiry_date}"
+            + f"seats={nb_seats} editors={nb_editors} expiration={expiration}"
         )

From 3648de38679518ae12336d531e4fcfc2092c6abb Mon Sep 17 00:00:00 2001
From: eric-intuitem <71850047+eric-intuitem@users.noreply.github.com>
Date: Sat, 30 Nov 2024 22:46:17 +0100
Subject: [PATCH 101/107] Update update-ciso-assistant-enterprise.sh

consider we run the script from its directory.
---
 enterprise/update-ciso-assistant-enterprise.sh | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/enterprise/update-ciso-assistant-enterprise.sh b/enterprise/update-ciso-assistant-enterprise.sh
index d8ec56384..699a060e8 100755
--- a/enterprise/update-ciso-assistant-enterprise.sh
+++ b/enterprise/update-ciso-assistant-enterprise.sh
@@ -1 +1,4 @@
-./update-ciso-assistant.sh enterprise
\ No newline at end of file
+#! /usr/bin/env bash
+pushd ..
+./update-ciso-assistant.sh enterprise
+popd

From 6f40593c6683249fbf1325472456bd1c0418323b Mon Sep 17 00:00:00 2001
From: Abder <smimite@gmail.com>
Date: Sun, 1 Dec 2024 17:19:51 +0100
Subject: [PATCH 102/107] Import risk assessment through the CLI (#1110)

---
 backend/core/views.py | 123 +++++++++++++++++++++--
 cli/RA_sample.csv     |   4 +
 cli/README.md         |   6 ++
 cli/clica.py          | 228 ++++++++++++++++++++++++++++++++++++++----
 cli/requirements.txt  |   1 +
 5 files changed, 337 insertions(+), 25 deletions(-)
 create mode 100644 cli/RA_sample.csv
 create mode 100644 cli/README.md

diff --git a/backend/core/views.py b/backend/core/views.py
index 0f243c4fc..e84d2254a 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -298,6 +298,22 @@ def quality_check_detail(self, request, pk):
         else:
             return Response(status=HTTP_403_FORBIDDEN)
 
+    @action(detail=False, methods=["get"])
+    def ids(self, request):
+        my_map = dict()
+
+        (viewable_items, _, _) = RoleAssignment.get_accessible_object_ids(
+            folder=Folder.get_root_folder(),
+            user=request.user,
+            object_type=Project,
+        )
+        for item in Project.objects.filter(id__in=viewable_items):
+            if my_map.get(item.folder.name) is None:
+                my_map[item.folder.name] = {}
+            my_map[item.folder.name].update({item.name: item.id})
+
+        return Response(my_map)
+
 
 class ThreatViewSet(BaseModelViewSet):
     """
@@ -318,6 +334,21 @@ def retrieve(self, request, *args, **kwargs):
     def threats_count(self, request):
         return Response({"results": threats_count_per_name(request.user)})
 
+    @action(detail=False, methods=["get"])
+    def ids(self, request):
+        my_map = dict()
+
+        (viewable_items, _, _) = RoleAssignment.get_accessible_object_ids(
+            folder=Folder.get_root_folder(),
+            user=request.user,
+            object_type=Threat,
+        )
+        for item in Threat.objects.filter(id__in=viewable_items):
+            if my_map.get(item.folder.name) is None:
+                my_map[item.folder.name] = {}
+            my_map[item.folder.name].update({item.name: item.id})
+        return Response(my_map)
+
 
 class AssetViewSet(BaseModelViewSet):
     """
@@ -395,6 +426,21 @@ def graph(self, request):
             {"nodes": nodes, "links": links, "categories": categories, "meta": meta}
         )
 
+    @action(detail=False, methods=["get"])
+    def ids(self, request):
+        my_map = dict()
+
+        (viewable_items, _, _) = RoleAssignment.get_accessible_object_ids(
+            folder=Folder.get_root_folder(),
+            user=request.user,
+            object_type=Asset,
+        )
+        for item in Asset.objects.filter(id__in=viewable_items):
+            if my_map.get(item.folder.name) is None:
+                my_map[item.folder.name] = {}
+            my_map[item.folder.name].update({item.name: item.id})
+        return Response(my_map)
+
     @action(detail=False, name="Get security objectives")
     def security_objectives(self, request):
         return Response({"results": Asset.DEFAULT_SECURITY_OBJECTIVES})
@@ -459,6 +505,22 @@ def used(self, request):
             )
         return Response({"results": used_matrices})
 
+    @action(detail=False, methods=["get"])
+    def ids(self, request):
+        my_map = dict()
+
+        (viewable_items, _, _) = RoleAssignment.get_accessible_object_ids(
+            folder=Folder.get_root_folder(),
+            user=request.user,
+            object_type=RiskMatrix,
+        )
+        for item in RiskMatrix.objects.filter(id__in=viewable_items):
+            if my_map.get(item.folder.name) is None:
+                my_map[item.folder.name] = {}
+            my_map[item.folder.name].update({item.name: item.id})
+
+        return Response(my_map)
+
 
 class VulnerabilityViewSet(BaseModelViewSet):
     """
@@ -649,30 +711,46 @@ def risk_assessment_csv(self, request, pk):
             writer = csv.writer(response, delimiter=";")
             columns = [
                 "ref_id",
+                "assets",
                 "threats",
                 "name",
                 "description",
                 "existing_controls",
-                "current_level",
-                "applied_controls",
-                "residual_level",
+                "current_impact",
+                "current_proba",
+                "current_risk",
+                "additional_controls",
+                "residual_impact",
+                "residual_proba",
+                "residual_risk",
                 "treatment",
             ]
             writer.writerow(columns)
 
-            for scenario in risk_assessment.risk_scenarios.all().order_by("created_at"):
-                applied_controls = ",".join(
-                    [m.csv_value for m in scenario.applied_controls.all()]
+            for scenario in risk_assessment.risk_scenarios.all().order_by("ref_id"):
+                additional_controls = ",".join(
+                    [m.name for m in scenario.applied_controls.all()]
+                )
+                existing_controls = ",".join(
+                    [m.name for m in scenario.existing_applied_controls.all()]
                 )
+
                 threats = ",".join([t.name for t in scenario.threats.all()])
+                assets = ",".join([t.name for t in scenario.assets.all()])
+
                 row = [
                     scenario.ref_id,
+                    assets,
                     threats,
                     scenario.name,
                     scenario.description,
-                    scenario.existing_controls,
+                    existing_controls,
+                    scenario.get_current_impact()["name"],
+                    scenario.get_current_proba()["name"],
                     scenario.get_current_risk()["name"],
-                    applied_controls,
+                    additional_controls,
+                    scenario.get_residual_impact()["name"],
+                    scenario.get_residual_proba()["name"],
                     scenario.get_residual_risk()["name"],
                     scenario.treatment,
                 ]
@@ -1070,6 +1148,22 @@ def get_timeline_info(self, request):
             colorMap[domain.name] = next(color_cycle)
         return Response({"entries": entries, "colorMap": colorMap})
 
+    @action(detail=False, methods=["get"])
+    def ids(self, request):
+        my_map = dict()
+
+        (viewable_items, _, _) = RoleAssignment.get_accessible_object_ids(
+            folder=Folder.get_root_folder(),
+            user=request.user,
+            object_type=AppliedControl,
+        )
+        for item in AppliedControl.objects.filter(id__in=viewable_items):
+            if my_map.get(item.folder.name) is None:
+                my_map[item.folder.name] = {}
+            my_map[item.folder.name].update({item.name: item.id})
+
+        return Response(my_map)
+
 
 class PolicyViewSet(AppliedControlViewSet):
     model = Policy
@@ -1501,6 +1595,19 @@ def org_tree(self, request):
 
         return Response(tree)
 
+    @action(detail=False, methods=["get"])
+    def ids(self, request):
+        my_map = dict()
+
+        (viewable_items, _, _) = RoleAssignment.get_accessible_object_ids(
+            folder=Folder.get_root_folder(),
+            user=request.user,
+            object_type=Folder,
+        )
+        for item in Folder.objects.filter(id__in=viewable_items):
+            my_map[item.name] = item.id
+        return Response(my_map)
+
     @action(detail=False, methods=["get"])
     def my_assignments(self, request):
         risk_assessments = RiskAssessment.objects.filter(
diff --git a/cli/RA_sample.csv b/cli/RA_sample.csv
new file mode 100644
index 000000000..904518c88
--- /dev/null
+++ b/cli/RA_sample.csv
@@ -0,0 +1,4 @@
+ref_id;assets;threats;name;description;existing_controls;current_impact;current_proba;current_risk;additional_controls;residual_impact;residual_proba;residual_risk;treatment
+R.1;dsafa;Data Encrypted for Impact;Ransomware;;ISMS Scope document,Statement of Applicabilty document;Significant;Likely;Low;Risk management policy,Organization overview document,Main policy,Competency matrix;Critical;Very likely;High;open
+R.2;;System Shutdown/Reboot;Unavailability;;Information security awareness and traning policy;Significant;Very likely;Medium;Management review plan document,Main policy,ISMS Scope document,Responsibility matrix;Important;Unlikely;Medium;open
+R.3;dsasfad;Scheduled Task,Cloud Administration Command;Insider threats;;;Important;Likely;Medium;;--;--;--;open
diff --git a/cli/README.md b/cli/README.md
new file mode 100644
index 000000000..be0afcfeb
--- /dev/null
+++ b/cli/README.md
@@ -0,0 +1,6 @@
+
+## Examples
+
+```sh
+./clica.py import-risk-assessment --file RA_sample.csv --folder "BU 1" --project "Orion" --matrix "4x4 risk matrix from EBIOS-RM" --name example
+```
diff --git a/cli/clica.py b/cli/clica.py
index 5ecbb1a89..1b72564bf 100755
--- a/cli/clica.py
+++ b/cli/clica.py
@@ -6,7 +6,10 @@
 import pandas as pd
 import requests
 import yaml
-from rich import print
+import json
+from rich import print as rprint
+
+from icecream import ic
 
 cli_cfg = dict()
 auth_data = dict()
@@ -81,7 +84,6 @@ def init_config():
 
 def check_auth():
     if Path(".tmp.yaml").exists():
-        click.echo("Found auth data. Trying them", err=True)
         with open(".tmp.yaml", "r") as yfile:
             auth_data = yaml.safe_load(yfile)
             return auth_data["token"]
@@ -123,6 +125,21 @@ def auth(email, password):
         print(res.json())
 
 
+def ids_map(model, folder=None):
+    my_map = dict()
+    url = f"{API_URL}/{model}/ids/"
+    headers = {"Authorization": f"Token {TOKEN}"}
+    res = requests.get(url, headers=headers, verify=VERIFY_CERTIFICATE)
+    if res.status_code != 200:
+        print("something went wrong. check authentication.")
+        sys.exit(1)
+    if folder:
+        my_map = res.json().get(folder)
+    else:
+        my_map = res.json()
+    return my_map
+
+
 def _get_folders():
     url = f"{API_URL}/folders/"
     headers = {"Authorization": f"Token {TOKEN}"}
@@ -138,9 +155,183 @@ def _get_folders():
 @click.command()
 def get_folders():
     """Get folders."""
-    GLOBAL_FOLDER_ID, res = _get_folders()
-    print("GLOBAL_FOLDER_ID: ", GLOBAL_FOLDER_ID)
-    print(res)
+    print(json.dumps(ids_map("folders"), ensure_ascii=False))
+
+
+@click.command()
+def get_projects():
+    """getting projects as a json"""
+    print(json.dumps(ids_map("projects"), ensure_ascii=False))
+
+
+@click.command()
+def get_matrices():
+    """getting loaded matrix as a json"""
+    print(json.dumps(ids_map("risk-matrices", folder="Global"), ensure_ascii=False))
+
+
+def get_unique_parsed_values(df, column_name):
+    unique_values = df[column_name].dropna().unique()
+    parsed_values = []
+
+    for value in unique_values:
+        value_str = str(value)
+        split_values = [v.strip() for v in value_str.split(",")]
+        parsed_values.extend(split_values)
+
+    return set(parsed_values)
+
+
+def batch_create(model, items, folder_id):
+    headers = {
+        "Authorization": f"Token {TOKEN}",
+    }
+    output = dict()
+    url = f"{API_URL}/{model}/"
+    for item in items:
+        data = {
+            "folder": folder_id,
+            "name": item,
+        }
+        res = requests.post(url, json=data, headers=headers)
+        if res.status_code != 201:
+            print("something went wrong")
+            print(res.json())
+        else:
+            output.update({item: res.json()["id"]})
+    return output
+
+
+@click.command()
+@click.option("--file", required=True, help="")
+@click.option("--folder", required=True, help="")
+@click.option("--project", required=True, help="")
+@click.option("--matrix", required=True, help="")
+@click.option("--name", required=True, help="")
+@click.option(
+    "--create_all",
+    required=False,
+    is_flag=True,
+    default=True,
+    help="Create all associated objects (threats, assets)",
+)
+def import_risk_assessment(file, folder, project, name, matrix, create_all):
+    """crawl a risk assessment (see template) and create the assoicated objects"""
+    df = pd.read_csv(file, delimiter=";")
+    headers = {
+        "Authorization": f"Token {TOKEN}",
+    }
+    folder_id = ids_map("folders").get(folder)
+    project_id = ids_map("projects", folder=folder).get(project)
+    matrix_id = ids_map("risk-matrices", folder="Global").get(matrix)
+
+    # post to create risk assessment
+    data = {
+        "name": name,
+        "folder": folder_id,
+        "project": project_id,
+        "risk_matrix": matrix_id,
+    }
+    res = requests.post(
+        f"{API_URL}/risk-assessments/",
+        json=data,
+        headers=headers,
+        verify=VERIFY_CERTIFICATE,
+    )
+    ra_id = None
+    if res.status_code == 201:
+        ra_id = res.json().get("id")
+        print("ok")
+    else:
+        print("something went wrong.")
+        print(res.json())
+
+    if create_all:
+        threats = get_unique_parsed_values(df, "threats")
+        batch_create("threats", threats, folder_id)
+        assets = get_unique_parsed_values(df, "assets")
+        batch_create("assets", assets, folder_id)
+        existing_controls = get_unique_parsed_values(df, "existing_controls")
+        batch_create("applied-controls", existing_controls, folder_id)
+        additional_controls = get_unique_parsed_values(df, "additional_controls")
+        batch_create("applied-controls", additional_controls, folder_id)
+
+    res = requests.get(f"{API_URL}/risk-matrices/{matrix_id}", headers=headers)
+    if res.status_code == 200:
+        matrix_def = res.json().get("json_definition")
+        matrix_def = json.loads(matrix_def)
+        # ic(matrix_def)
+        impact_map = dict()
+        proba_map = dict()
+        # this can be factored as one map probably
+        for item in matrix_def["impact"]:
+            impact_map[item["name"]] = item["id"]
+            if item.get("translations"):
+                langs = item.get("translations")
+                for lang in langs:
+                    impact_map[langs[lang]["name"]] = item["id"]
+        for item in matrix_def["probability"]:
+            proba_map[item["name"]] = item["id"]
+            if item.get("translations"):
+                langs = item.get("translations")
+                for lang in langs:
+                    proba_map[langs[lang]["name"]] = item["id"]
+
+        ic(impact_map)
+        ic(proba_map)
+
+    df = df.fillna("--")
+
+    threats = ids_map("threats", folder)
+    assets = ids_map("assets", folder)
+    controls = ids_map("applied-controls", folder)
+
+    for scenario in df.itertuples():
+        data = {
+            "ref_id": scenario.ref_id,
+            "name": scenario.name,
+            "risk_assessment": ra_id,
+        }
+        if None in [
+            impact_map.get(scenario.current_impact),
+            proba_map.get(scenario.current_proba),
+            impact_map.get(scenario.residual_impact),
+            proba_map.get(scenario.residual_proba),
+        ]:
+            print("Matrix doesn't match the labels used on your input file")
+
+        if scenario.current_impact != "--":
+            data.update({"current_impact": impact_map.get(scenario.current_impact)})
+        if scenario.current_proba != "--":
+            data.update({"current_proba": proba_map.get(scenario.current_proba)})
+
+        if scenario.residual_impact != "--":
+            data.update({"residual_impact": impact_map.get(scenario.residual_impact)})
+        if scenario.residual_proba != "--":
+            data.update({"residual_proba": proba_map.get(scenario.residual_proba)})
+
+        if scenario.existing_controls != "--":
+            items = str(scenario.existing_controls).split(",")
+            data.update(
+                {"existing_applied_controls": [controls[item] for item in items]}
+            )
+
+        if scenario.additional_controls != "--":
+            items = str(scenario.additional_controls).split(",")
+            data.update({"applied_controls": [controls[item] for item in items]})
+
+        if scenario.assets != "--":
+            items = str(scenario.assets).split(",")
+            data.update({"assets": [assets[item] for item in items]})
+
+        if scenario.threats != "--":
+            items = str(scenario.threats).split(",")
+            data.update({"threats": [threats[item] for item in items]})
+
+        res = requests.post(f"{API_URL}/risk-scenarios/", json=data, headers=headers)
+        if res.status_code != 201:
+            rprint(res.json())
+            rprint(data)
 
 
 @click.command()
@@ -172,9 +363,9 @@ def import_assets(file):
             )
             if res.status_code != 201:
                 click.echo("❌ something went wrong", err=True)
-                print(res.json())
+                rprint(res.json())
             else:
-                print(f"✅ {name} created", file=sys.stderr)
+                rprint(f"✅ {name} created", file=sys.stderr)
 
 
 @click.command()
@@ -208,9 +399,9 @@ def import_controls(file):
             )
             if res.status_code != 201:
                 click.echo("❌ something went wrong", err=True)
-                print(res.json())
+                rprint(res.json())
             else:
-                print(f"✅ {name} created", file=sys.stderr)
+                rprint(f"✅ {name} created", file=sys.stderr)
 
 
 @click.command()
@@ -240,9 +431,9 @@ def import_evidences(file):
             )
             if res.status_code != 201:
                 click.echo("❌ something went wrong", err=True)
-                print(res.json())
+                rprint(res.json())
             else:
-                print(f"✅ {row['name']} created", file=sys.stderr)
+                rprint(f"✅ {row['name']} created", file=sys.stderr)
 
 
 @click.command()
@@ -260,13 +451,13 @@ def upload_attachment(file, name):
         url, headers=headers, params={"name": name}, verify=VERIFY_CERTIFICATE
     )
     data = res.json()
-    print(data)
+    rprint(data)
     if res.status_code != 200:
-        print(data)
-        print(f"Error: check credentials or filename.", file=sys.stderr)
+        rprint(data)
+        rprint(f"Error: check credentials or filename.", file=sys.stderr)
         return
     if not data["results"]:
-        print(f"Error: No evidence found with name '{name}'", file=sys.stderr)
+        rprint(f"Error: No evidence found with name '{name}'", file=sys.stderr)
         return
 
     evidence_id = data["results"][0]["id"]
@@ -280,16 +471,19 @@ def upload_attachment(file, name):
     }
     with open(file, "rb") as f:
         res = requests.post(url, headers=headers, data=f, verify=VERIFY_CERTIFICATE)
-    print(res)
-    print(res.text)
+    rprint(res)
+    rprint(res.text)
 
 
 cli.add_command(get_folders)
+cli.add_command(get_projects)
 cli.add_command(auth)
 cli.add_command(import_assets)
 cli.add_command(import_controls)
 cli.add_command(import_evidences)
 cli.add_command(init_config)
 cli.add_command(upload_attachment)
+cli.add_command(import_risk_assessment)
+cli.add_command(get_matrices)
 if __name__ == "__main__":
     cli()
diff --git a/cli/requirements.txt b/cli/requirements.txt
index a857296db..1dbed4d6a 100644
--- a/cli/requirements.txt
+++ b/cli/requirements.txt
@@ -3,3 +3,4 @@ rich
 requests
 click
 pyyaml
+icecream

From 1892ffc90e013e1a51c5b841d36cdaae904c00d7 Mon Sep 17 00:00:00 2001
From: Abder <smimite@gmail.com>
Date: Sun, 1 Dec 2024 20:30:19 +0100
Subject: [PATCH 103/107] sama frameworks (#1114)

---
 backend/library/libraries/sama-csf-1.0.yaml | 2273 +++++++++++++++++++
 tools/sama/sama-crfr-1.0.xlsx               |  Bin 0 -> 16149 bytes
 tools/sama/sama-crfr-1.0.yaml               |  443 ++++
 tools/sama/sama-csf-1.0.xlsx                |  Bin 0 -> 32982 bytes
 4 files changed, 2716 insertions(+)
 create mode 100644 backend/library/libraries/sama-csf-1.0.yaml
 create mode 100644 tools/sama/sama-crfr-1.0.xlsx
 create mode 100644 tools/sama/sama-crfr-1.0.yaml
 create mode 100644 tools/sama/sama-csf-1.0.xlsx

diff --git a/backend/library/libraries/sama-csf-1.0.yaml b/backend/library/libraries/sama-csf-1.0.yaml
new file mode 100644
index 000000000..1cc2ea5b2
--- /dev/null
+++ b/backend/library/libraries/sama-csf-1.0.yaml
@@ -0,0 +1,2273 @@
+urn: urn:intuitem:risk:library:sama-csf-1.0
+locale: en
+ref_id: SAMA-CSF-1.0
+name: 'SAMA Cyber Security Fundamentals '
+description: 'SAMA Cyber Security Fundamentals '
+copyright: All texts, layouts, designs and other elements of any nature in this document
+  are subject to copyright law.
+version: 1
+provider: SAMA
+packager: intuitem
+objects:
+  framework:
+    urn: urn:intuitem:risk:framework:sama-csf-1.0
+    ref_id: SAMA-CSF-1.0
+    name: 'SAMA Cyber Security Fundamentals '
+    description: 'SAMA Cyber Security Fundamentals '
+    min_score: 0
+    max_score: 5
+    scores_definition:
+    - score: 0
+      name: Non-existent
+      description: "\u2022 No documentation.\n\u2022 There is no awareness or attention\
+        \ for certain cyber security control."
+    - score: 1
+      name: Ad-hoc
+      description: "\u2022 Cyber security controls is not or partially defined.\n\u2022\
+        \ Cyber security controls are performed in an inconsistent way.\n\u2022 The\
+        \ way of execution is depending on individuals."
+    - score: 2
+      name: Repeatable but informal
+      description: The execution of the cyber security control is based on an informal,
+        unwritten though standard practice.
+    - score: 3
+      name: Structured & formalized
+      description: "\u2022 Cyber security controls are defined, approved and implemented\
+        \ in a structured and formalized way.\n\u2022 The implementation of cyber\
+        \ security controls can be demonstrated."
+    - score: 4
+      name: Managed & measurable
+      description: "\u2022 The effectiveness of the cyber security controls are periodically\
+        \ assessed and improved when necessary.\n\u2022 This periodic measurement,\
+        \ evaluations and opportunities for improvement are documented."
+    - score: 5
+      name: Adaptive
+      description: "\u2022 Cyber security controls are subject to a continuous improvement\
+        \ plan."
+    requirement_nodes:
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node2
+      assessable: false
+      depth: 1
+      name: Cyber Security Leadership and Governance
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node3
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node2
+      name: 'Cyber Security Governance '
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.1-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node3
+      ref_id: 3.1.1-1
+      description: A Cyber Security committee should be established and be mandated
+        by the board.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.1-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node3
+      ref_id: 3.1.1-2
+      description: The Cyber Security committee should be headed by an independent
+        senior manager from a control function.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.1-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node3
+      ref_id: 3.1.1-3
+      description: "The following positions should be represented in the Cyber Security\
+        \ committee: a. senior managers from all relevant departments (e.g., COO,\
+        \ CIO, compliance officer, heads of relevant business departments);b. Chief\
+        \ information security officer (CISO);c. Internal audit may attend as an \u201C\
+        observer\"."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.1-4
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node3
+      ref_id: 3.1.1-4
+      description: "A Cyber Security committee charter should be developed, approved,\
+        \ and reflect: \na. committee objectives \nb. roles and responsibilities \n\
+        c.minimum number of meeting participants. \nd.meeting frequency (minimum on\
+        \ a quarterly basis)."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.1-5
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node3
+      ref_id: 3.1.1-5
+      description: A Cyber Security function should be established.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.1-6
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node3
+      ref_id: 3.1.1-6
+      description: 'The Cyber Security function should be independent from the information
+        technology function. To avoid any conflict of interest, the Cyber Security
+        function and information technology function should have separate reporting
+        lines, budgets and staff evaluations.
+
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.1-7
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node3
+      ref_id: 3.1.1-7
+      description: The Cyber Security function should report directly to the CEO/managing
+        director of the Member Organization or general manager of a control function.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.1-8
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node3
+      ref_id: 3.1.1-8
+      description: A full-time senior manager for the Cyber Security function, referred
+        to as CISO, should be appointed at senior management level.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.1-9
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node3
+      ref_id: 3.1.1-9
+      description: "The Member Organization should :\na. ensure the CISO has a Saudi\
+        \ nationality. \nb. ensure the CISO is sufficiently qualified\nc. obtain no\
+        \ objection from SAMA to assign the CISO."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.1-10
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node3
+      ref_id: 3.1.1-10
+      description: The board of the Member Organization should allocate sufficient
+        budget to execute the required Cyber Security activities.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node14
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node2
+      name: Cyber Security Strategy
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.2-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node14
+      ref_id: 3.1.2-1
+      description: The Cyber Security strategy should be defined, approved, maintained
+        and executed.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.2-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node14
+      ref_id: 3.1.2-2
+      description: "The Cyber Security strategy should be aligned with: \na. the Member\
+        \ Organization\u2019s overall objectives; \nb. the legal and regulatory compliance\
+        \ requirements of the Member Organization. \nc. the Banking Sector\u2019s\
+        \ Cyber Security strategy."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.2-3.a-b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node14
+      ref_id: 3.1.2-3.a-b
+      description: "The Cyber Security strategy should address: \na. the importance\
+        \ and benefits of Cyber Security for the Member Organization; \nb. the anticipated\
+        \ future state of Cyber Security for the Member Organization to become and\
+        \ remain resilient to (emerging) Cyber Security threats;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.2-3.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node14
+      ref_id: 3.1.2-3.c
+      description: c. which and when Cyber Security initiatives and projects should
+        be executed to achieve the anticipated future state.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node19
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node2
+      name: 'Cyber Security Policy '
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.3-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node19
+      ref_id: 3.1.3-1
+      description: The Cyber Security policy should be defined, approved and communicated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.3-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node19
+      ref_id: 3.1.3-2
+      description: The Cyber Security policy should be reviewed periodically according
+        to a predefined and structured review process.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.3-3.a-c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node19
+      ref_id: 3.1.3-3.a-c
+      description: "The Cyber Security policy should be: \na. considered as input\
+        \ for other corporate policies of the Member Organization (e.g., HR policy,\
+        \ finance policy and IT policy);\nb. supported by detailed security standards\
+        \ (e.g., password standard, firewall standard) and procedures\nc. based on\
+        \ best practices and (inter)national standards;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.3-3.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node19
+      ref_id: 3.1.3-3.d
+      description: d. communicated to relevant stakeholders.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.3-4
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node19
+      ref_id: 3.1.3-4
+      description: "The Cyber Security policy should include: \na. a definition of\
+        \ Cyber Security; \nb. the Member Organization\u2019s overall Cyber Security\
+        \ objectives and scope. c. a statement of the board\u2019s intent, supporting\
+        \ the Cyber Security objectives; \nd. a definition of general and specific\
+        \ responsibilities for Cyber Security. \ne. the reference to supporting Cyber\
+        \ Security standards and procedures; \nf. Cyber Security requirements that\
+        \ ensure:\n1. information is classified in a way that indicates its importance\
+        \ to the Member Organization;\n2. information is protected in terms of Cyber\
+        \ Security requirements, in line with the risk appetite;\n3. owners are appointed\
+        \ for all information assets;\n4. Cyber Security risk assessments are conducted\
+        \ for information assets;\n5. relevant stakeholders are made aware of Cyber\
+        \ Security and their expected behavior (Cyber Security awareness program);\n\
+        6. compliance with regulatory and contractual obligations are being met;\n\
+        7. Cyber Security breaches and suspected Cyber Security weaknesses are reported;\n\
+        8. Cyber Security is reflected in business continuity management."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node2
+      name: Cyber Security Roles and Responsibilities
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-1
+      description: 'The Board of Directors has the ultimate responsibility for Cyber
+        Security, including: a. ensuring that sufficient budget for Cyber Security
+        is allocated. approving the Cyber Security committee charter''s. endorsing
+        (after being approved by the Cyber Security committee):
+
+        1. the Cyber Security governance;
+
+        2. the Cyber Security strategy;
+
+        3. the Cyber Security policy.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-2.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-2.a
+      description: "The Cyber Security committee should be responsible for: \na. monitoring,\
+        \ reviewing and communicating the Member Organization\u2019s Cyber Security\
+        \ risk appetite periodically or upon a material change in the risk appetite;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-2.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-2.b
+      description: b. reviewing the Cyber Security strategy to ensure that it supports
+        the Member Organization objectives;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-2.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-2.c
+      description: 'c. approving, communicating, supporting and monitoring:
+
+        1. the Cyber Security governance;
+
+        2. the Cyber Security strategy;
+
+        3. the Cyber Security policy;
+
+        4. Cyber Security programs (e.g., awareness program, data classification program,
+        data privacy, data leakage prevention, key Cyber Security improvements);
+
+        5. Cyber Security risk management process;
+
+        6. the key risk indicators (KRIs) and key performance indicators (KPIs) for
+        Cyber Security.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-3.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-3.a
+      description: "The senior management should be responsible for: \na. ensuring\
+        \ that standards, processes and procedures reflect security requirements (if\
+        \ applicable);"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-3.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-3.b
+      description: b. ensuring that individuals accept and comply with the Cyber Security
+        policy, supporting standards and procedures when they are issued and updated;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-3.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-3.c
+      description: c. ensuring that Cyber Security responsibilities are incorporated
+        in the job descriptions of key positions and Cyber Security staff.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-4.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-4.a
+      description: "The CISO should be responsible for: \na. developing and maintaining:\n\
+        1. Cyber Security strategy;\n2. Cyber Security policy;\n3. Cyber Security\
+        \ architecture;\n4. Cyber Security risk management process."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-4.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-4.b
+      description: b. ensuring that detailed security standards and procedures are
+        established, approved and implemented;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-4.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-4.c
+      description: c. delivering risk-based Cyber Security solutions that address
+        people, process and technology;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-4.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-4.d
+      description: d. developing the Cyber Security staff to deliver Cyber Security
+        solutions in a business context;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-4.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-4.e
+      description: 'e. Cyber Security activities across the Member Organization, including:
+
+        1. monitoring of the Cyber Security activities (SOC monitoring);
+
+        2. monitoring of compliance with Cyber Security regulations, policies, standards
+        and procedures;
+
+        3. overseeing the investigation of Cyber Security incidents;
+
+        4. gathering and analyzing threat intelligence from internal and external
+        sources;
+
+        5. performing Cyber Security reviews;'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-4.f
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-4.f
+      description: "f. conducting Cyber Security risk assessments on the Members Organization\u2019\
+        s information assets;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-4.g
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-4.g
+      description: 'g. proactively supporting other functions on Cyber Security, including:
+
+        1. performing information and system classifications;
+
+        2. determining Cyber Security requirements for important projects;
+
+        3. performing Cyber Security reviews.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-4.h
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-4.h
+      description: h. defining and conducting the Cyber Security awareness programs;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-4.i
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-4.i
+      description: 'i. measuring and reporting the KRIs and KPIs on:
+
+        1. Cyber Security strategy;
+
+        2. Cyber Security policy compliance;
+
+        3. Cyber Security standards and procedures;
+
+        4. Cyber Security programs (e.g., awareness program, data classification program,
+        key Cyber Security improvements).'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-5
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-5
+      description: "The internal audit function should be responsible for: \na. performing\
+        \ Cyber Security audits."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.4-6
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node25
+      ref_id: 3.1.4-6
+      description: "All Member Organization\u2019s staff should be responsible for:\
+        \ \na. complying with Cyber Security policy, standards and procedures."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node44
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node2
+      name: Cyber Security in Project Management
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.5-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node44
+      ref_id: 3.1.5-1
+      description: Cyber Security should be integrated into the Member Organization's
+        project management methodology to ensure that Cyber Security risks are identified
+        and addressed as part of a project.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.5-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node44
+      ref_id: 3.1.5-2
+      description: "The Member Organization\u2019s project management methodology\
+        \ should ensure that:\n a. Cyber Security objectives are included in project\
+        \ objectives. \nb. the Cyber Security function is part of all phases of the\
+        \ project. \nc. a risk assessment is performed at the start of the project\
+        \ to determine the Cyber Security risks and to ensure that Cyber Security\
+        \ requirements are addressed either by the existing Cyber Security controls\
+        \ (based on Cyber Security standards) or to be developed. \nd. Cyber Security\
+        \ risks are registered in the project-risk register and tracked. \ne. responsibilities\
+        \ for Cyber Security are defined and allocated; \nf. a Cyber Security review\
+        \ is performed by an independent internal or external party."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node47
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node2
+      name: Cyber Security Awareness
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.6-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node47
+      ref_id: 3.1.6-1
+      description: The Cyber Security awareness programs should be defined, approved
+        and conducted to promote Cyber Security awareness and to create a positive
+        Cyber Security culture.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.6-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node47
+      ref_id: 3.1.6-2
+      description: 'A Cyber Security awareness program should be defined and conducted
+        for: a. staff of the Member Organization. third parties of the Member Organization.
+        customers of the Member Organization.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.6-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node47
+      ref_id: 3.1.6-3
+      description: The Cyber Security awareness program should target Cyber Security
+        behaviors by tailoring the program to address the different target groups
+        through multiple channels.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.6-4
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node47
+      ref_id: 3.1.6-4
+      description: The activities of the Cyber Security awareness program should be
+        conducted periodically and throughout the year.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.6-5
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node47
+      ref_id: 3.1.6-5
+      description: 'The Cyber Security awareness program should at a minimum include:
+        a. an explanation of Cyber Security measures provided. the roles and responsibilities
+        regarding Cyber Security. information on relevant emerging Cyber Security
+        events and cyber threats (e.g., spear-phishing, whaling).'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.6-6
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node47
+      ref_id: 3.1.6-6
+      description: 'The Cyber Security awareness program should be evaluated to: a.
+        measure the effectiveness of the awareness activities. formulate recommendations
+        to improve the Cyber Security awareness program.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.6-7
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node47
+      ref_id: 3.1.6-7
+      description: Customer awareness should address for both retail and commercial
+        customers and, at a minimum, include a listing of suggested Cyber Security
+        mechanisms which customers may consider implementing to mitigate their own
+        risk(s).
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node55
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node2
+      name: Cyber Security Training
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.7.1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node55
+      ref_id: 3.1.7.1
+      description: "Specialist or security-related skills training should be provided\
+        \ to staff in the Member Organization\u2019s relevant functional area categories\
+        \ in line with their job descriptions, including: a. key roles within organization.\
+        \ staff of the Cyber Security function. staff involved in developing and (technically)\
+        \ maintaining information assets. staff involved in risk assessments."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.1.7.2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node55
+      ref_id: 3.1.7.2
+      description: "Education should be provided in order to equip staff with the\
+        \ skills and required knowledge to securely operate the Member Organization\u2019\
+        s information assets."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node58
+      assessable: false
+      depth: 1
+      name: Cyber Security Risk Management & Compliance
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node58
+      name: Cyber Security Risk Management
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-1
+      description: The Cyber Security risk management process should be defined, approved
+        and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-2
+      description: The Cyber Security risk management process should focus on safeguarding
+        the confidentiality, integrity and availability of information assets.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-3
+      description: The Cyber Security risk management process should be aligned with
+        the existing enterprise risk management process
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-4.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-4.a
+      description: 'The Cyber Security risk management process should be documented
+        and address:
+
+        a. risk identification;'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-4.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-4.b
+      description: b. risk analysis;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-4.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-4.c
+      description: c. risk response;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-4.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-4.d
+      description: d. risk monitoring & review
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-5
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-5
+      description: "The Cyber Security risk management process should address the\
+        \ Member Organization\u2019s information assets, including (but not limited\
+        \ to):\na. business processes;\nb. business applications;\nc. infrastructure\
+        \ components"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-6.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-6.a
+      description: 'The Cyber Security risk management process should be initiated:
+
+        a. at an early stage of the project;'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-6.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-6.b
+      description: b. prior to critical change;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-6.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-6.c
+      description: c. when outsourcing is being considered;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-6.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-6.d
+      description: d. when launching new products and technologies.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-7
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-7
+      description: Existing information assets should be periodically subject to Cyber
+        Security risk assessment based on their classification or risk profile.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-8
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-8
+      description: 'The Cyber Security risk management activities should involve:
+        a. business owners. IT specialists. Cyber Security specialists. key user representatives.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-9
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-9
+      description: The result of the risk assessment should be reported to the relevant
+        business owner (i.e., risk owner) within the Member Organization;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-10
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-10
+      description: The relevant business owner (i.e., risk owner) within the Member
+        Organization should accept and endorse the risk assessment results.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1-11
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node59
+      ref_id: 3.2.1-11
+      description: "The Member Organization\u2019s Cyber Security risk appetite and\
+        \ risk tolerance should be clearly defined and formally approved."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node77
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node58
+      name: Cyber Security Risk Identification
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.1-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node77
+      ref_id: 3.2.1.1-1
+      description: Cyber Security risk identification should be performed.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.1-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node77
+      ref_id: 3.2.1.1-2
+      description: Identified Cyber Security risks should be documented (in a central
+        register).
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.1-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node77
+      ref_id: 3.2.1.1-3
+      description: Cyber Security risk identification should address relevant information
+        assets, threats, vulnerabilities and the key existing Cyber Security controls.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node81
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node58
+      name: Cyber Security Risk Analysis
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.2-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node81
+      ref_id: 3.2.1.2-1
+      description: A Cyber Security risk analysis should be performed.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.2-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node81
+      ref_id: 3.2.1.2-2
+      description: The Cyber Security risk analysis should address the level of potential
+        business impact and likelihood of Cyber Security threat events materializing.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node84
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node58
+      name: Cyber Security Risk Response
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.3-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node84
+      ref_id: 3.2.1.3-1
+      description: "The relevant determined Cyber Security risks should be treated\
+        \ according to the Member Organization\u2019s risk appetite and Cyber Security\
+        \ requirements."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.3-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node84
+      ref_id: 3.2.1.3-2
+      description: Cyber Security risk response should ensure that the list of risk
+        treatment options are documented (i.e., accepting, avoiding, transferring
+        or mitigating risks by applying Cyber Security controls).
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.3-3.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node84
+      ref_id: 3.2.1.3-3.a
+      description: "Accepting Cyber Security risks should include: \na. the consideration\
+        \ of predefined limits for levels of Cyber Security risk;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.3-3.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node84
+      ref_id: 3.2.1.3-3.b
+      description: 'b. the approval and sign-off by the business owner, ensuring that:
+
+        1. the accepted Cyber Security risk is within the risk appetite and is reported
+        to the Cyber Security committee;
+
+        2. the accepted Cyber Security risk does not contradict SAMA regulations.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.3-4
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node84
+      ref_id: 3.2.1.3-4
+      description: Avoiding Cyber Security risks should involve a decision by a business
+        owner to cancel or postpone a particular activity or project that introduces
+        an unacceptable Cyber Security risk.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.3-5
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node84
+      ref_id: 3.2.1.3-5
+      description: 'Transferring or sharing the Cyber Security risks should:
+
+        a. involve sharing the Cyber Security risks with relevant (internal or external)
+        providers;
+
+        b. be accepted by the receiving (internal or external) provider(s);
+
+        c. eventually lead to the actual transferring or sharing of the Cyber Security
+        risk.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.3-6
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node84
+      ref_id: 3.2.1.3-6
+      description: "Applying Cyber Security controls to mitigate Cyber Security risks\
+        \ should include \na. identifying appropriate Cyber Security controls. \n\
+        b.evaluating the strengths and weaknesses of the Cyber Security controls;\n\
+        1. assessing the cost of implementing the Cyber Security controls;\n2. assessing\
+        \ the feasibility of implementing the Cyber Security controls;\n3. Review\
+        \ relevant compliance requirements for the Cyber Security controls. \nc. selecting\
+        \ Cyber Security controls. \nd. identifying, documenting, and obtaining sign-off\
+        \ for any residual risk by the business owner."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.3-7
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node84
+      ref_id: 3.2.1.3-7
+      description: Cyber Security risk treatment actions should be documented in a
+        risk treatment plan.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node93
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node58
+      name: Cyber Risk Monitoring and Review
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.4-1.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node93
+      ref_id: 3.2.1.4-1.a
+      description: 'The Cyber Security treatment should be monitored, including:
+
+        a. tracking progress in accordance to treatment plan.
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.4-1.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node93
+      ref_id: 3.2.1.4-1.b
+      description: b. the selected and agreed Cyber Security controls are being implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.1.4-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node93
+      ref_id: 3.2.1.4-2
+      description: The design and effectiveness of the revised or newly implemented
+        Cyber Security controls should be reviewed.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node97
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node58
+      name: Regulatory Compliance
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.2-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node97
+      ref_id: 3.2.2-1
+      description: 'A process should be established for ensuring compliance with relevant
+        regulatory requirements affecting Cyber Security across the Member Organization.
+        The process of ensuring compliance should:
+
+        a. be performed periodically or when new regulatory requirements become effective;
+
+        b. involve representatives from key areas of the Member Organization;
+
+        c. result in the update of Cyber Security policy, standards and procedures
+        to accommodate any necessary changes (if applicable).'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node99
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node58
+      name: Compliance with (inter)national industry standards
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.3-1.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node99
+      ref_id: 3.2.3-1.a
+      description: 'The Member Organization should comply with:
+
+        a. Payment Card Industry Data Security Standard (PCI-DSS);'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.3-1.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node99
+      ref_id: 3.2.3-1.b
+      description: b. EMV (Europay, MasterCard and Visa) technical standard;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.3-1.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node99
+      ref_id: 3.2.3-1.c
+      description: "c. SWIFT Customer Security Controls Framework \u2013 March 2017."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node103
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node58
+      name: Cyber Security Review
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.4-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node103
+      ref_id: 3.2.4-1
+      description: Cyber Security reviews should be periodically performed for critical
+        information assets.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.4-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node103
+      ref_id: 3.2.4-2
+      description: Customer and internet-facing services should be subject to annual
+        review and penetration tests.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.4-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node103
+      ref_id: 3.2.4-3
+      description: Details of Cyber Security review performed should be recorded,
+        including the results of review, issues identified and recommended actions.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.4-4
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node103
+      ref_id: 3.2.4-4
+      description: The results of Cyber Security review should be reported to business
+        owner.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.4-5
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node103
+      ref_id: 3.2.4-5
+      description: 'Cyber Security review should be subject to follow-up reviews to
+        check that:
+
+        a. all identified issues have been addressed;
+
+        b. critical risks have been treated effectively;
+
+        c. all agreed actions are being managed on an ongoing basis.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node109
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node58
+      name: Cyber Security Audits
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.5-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node109
+      ref_id: 3.2.5-1
+      description: Cyber Security audits should be performed independently and according
+        to generally accepted auditing standards and SAMA Cyber Security framework.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.2.5-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node109
+      ref_id: 3.2.5-2
+      description: "Cyber Security audits should be performed according to the Member\
+        \ Organization\u2019s audit manual and audit plan."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      assessable: false
+      depth: 1
+      name: Operation & Technology
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node113
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Human Resources
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.1-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node113
+      ref_id: 3.3.1-1
+      description: The human resources process should define, approve and implement
+        Cyber Security requirements.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.1-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node113
+      ref_id: 3.3.1-2
+      description: The effectiveness of the human resources process should be monitored,
+        measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.1-3.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node113
+      ref_id: 3.3.1-3.a
+      description: "The human resource process should include: \na. Cyber Security\
+        \ responsibilities and non-disclosure clauses within staff agreements (during\
+        \ and after the employment);"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.1-3.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node113
+      ref_id: 3.3.1-3.b
+      description: b. staff should receive Cyber Security awareness at the start and
+        during their employment;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.1-3.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node113
+      ref_id: 3.3.1-3.c
+      description: c. when disciplinary actions will be applicable;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.1-3.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node113
+      ref_id: 3.3.1-3.d
+      description: d. screening and background check;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.1-3.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node113
+      ref_id: 3.3.1-3.e
+      description: 'e. post-employment Cyber Security activities, such as:
+
+        1. revoking access rights;
+
+        2. returning information assets assigned (e.g., access badge, tokens, mobile
+        devices, all electronic and physical information).'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node121
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Physical Security
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.2-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node121
+      ref_id: 3.3.2-1
+      description: The physical security process should be defined, approved and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.2-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node121
+      ref_id: 3.3.2-2
+      description: The effectiveness of the physical security process should be monitored,
+        measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.2-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node121
+      ref_id: 3.3.2-3
+      description: "The physical security process should include (but not limited\
+        \ to): \na. physical entry controls (including visitor security); \nb. monitoring\
+        \ and surveillance (e.g., CCTV, ATMs GPS tracking, sensitivity sensors); \n\
+        c. protection of data centers and data rooms; \nd. environmental protection;\
+        \ \ne. protection of information assets during lifecycle (including transport\
+        \ and secure disposal, avoiding unauthorized access and (un)intended data\
+        \ leakage."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node125
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Asset Management
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.3-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node125
+      ref_id: 3.3.3-1
+      description: The asset management process should be defined, approved and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.3-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node125
+      ref_id: 3.3.3-2
+      description: The effectiveness of the asset management process should be monitored,
+        measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.3-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node125
+      ref_id: 3.3.3-3
+      description: "The asset management process should include: \na. a unified register;\
+        \ \nb. ownership and custodianship of information assets; \nc. the reference\
+        \ to relevant other processes, depending on asset management; \nd. information\
+        \ asset classification, labeling and handling; \ne. the discovery of new information\
+        \ assets."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node129
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Cyber Security Architecture
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.4-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node129
+      ref_id: 3.3.4-1
+      description: The Cyber Security architecture should be defined, approved and
+        implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.4-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node129
+      ref_id: 3.3.4-2
+      description: The compliance with the Cyber Security architecture should be monitored.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.4-3.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node129
+      ref_id: 3.3.4-3.a
+      description: "The Cyber Security architecture should include: \na. A strategic\
+        \ outline of Cyber Security capabilities and controls based on the business\
+        \ requirements;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.4-3.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node129
+      ref_id: 3.3.4-3.b
+      description: b. approval of the defined Cyber Security architecture;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.4-3.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node129
+      ref_id: 3.3.4-3.c
+      description: c. the requirement of having qualified Cyber Security architects;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.4-3.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node129
+      ref_id: 3.3.4-3.d
+      description: d. design principles for developing Cyber Security controls and
+        applying Cyber Security requirements (i.e., the security-by-design principle);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.4-3.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node129
+      ref_id: 3.3.4-3.e
+      description: e. periodic review of the Cyber Security architecture.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node137
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Identity and Access Management
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.5-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node137
+      ref_id: 3.3.5-1
+      description: The identity and access management policy, including the responsibilities
+        and accountabilities, should be defined, approved and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.5-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node137
+      ref_id: 3.3.5-2
+      description: The compliance with the identity and access policy should be monitored.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.5-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node137
+      ref_id: 3.3.5-3
+      description: The effectiveness of the Cyber Security controls within the identity
+        and access management policy should be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.5-4.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node137
+      ref_id: 3.3.5-4.a
+      description: "The identity and access management policy should include: \na.\
+        \ business requirements for access control (i.e., ned-to-have and ned-to-know);"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.5-4.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node137
+      ref_id: 3.3.5-4.b
+      description: 'b. user access management (e.g., joiners, movers, leavers):
+
+        1. all identified user types should be covered (i.e., internal staff, third
+        parties);
+
+        2. changes of job status or job positions for internal staff (e.g. joiner,
+        mover and leaver) should be instigated by the human resources department;
+
+        3. changes for external staff or third parties should be instigated by the
+        appointed accountable party;
+
+        4. user access requests are formally approved in accordance with business
+        and compliance requirements (i.e., ned-to-have and ned-to-know to avoid unauthorized
+        access and (un)intended data leakage));
+
+        5. changes in access rights should be processed in a timely manner;
+
+        6. periodically user access rights and profiles should be reviewed;
+
+        7. an audit trail of submitted, approved and processed user access requests
+        and revocation requests should be established;'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.5-4.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node137
+      ref_id: 3.3.5-4.c
+      description: c. user access management should be supported by automation;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.5-4.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node137
+      ref_id: 3.3.5-4.d
+      description: d. centralization of the identity and access management function;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.5-4.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node137
+      ref_id: 3.3.5-4.e
+      description: e. multi-factor authentication for sensitive and critical systems
+        and profiles;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.5-4.f
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node137
+      ref_id: 3.3.5-4.f
+      description: "f. privileged and remote access management, which should address:\n\
+        1. the allocation and restricted use of privileged and remote access, specifying:\n\
+        \ a. multi-factor authentication should be used for all remote access;\n b.\
+        \ multi-factor authentication should be used for privilege access on critical\
+        \ systems based on a risk assessment;\n2. the periodic review of users with\
+        \ privileged and remote accounts;\n3. individual accountability;\n4. the use\
+        \ of non-personal privileged accounts, including:\na. limitation and monitoring;\n\
+        b. confidentiality of passwords;\nc. changing passwords frequently and at\
+        \ the end of each session."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Application Security
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.6-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      ref_id: 3.3.6-1
+      description: The application Cyber Security standards should be defined, approved
+        and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.6-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      ref_id: 3.3.6-2
+      description: The compliance with the application security standards should be
+        monitored.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.6-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      ref_id: 3.3.6-3
+      description: The effectiveness of the application Cyber Security controls should
+        be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.6-4
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      ref_id: 3.3.6-4
+      description: Application development should follow the approved secure system
+        development life cycle methodology (SDLC).
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.6-5.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      ref_id: 3.3.6-5.a
+      description: "The application security standard should include: \na. secure\
+        \ coding standards;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.6-5.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      ref_id: 3.3.6-5.b
+      description: b. the Cyber Security controls implemented (e.g., configuration
+        parameters, events to monitor and retain [including system access and data],
+        identity and access management);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.6-5.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      ref_id: 3.3.6-5.c
+      description: c. the segregation of duties within the application (supported
+        with a documented authorization matrix);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.6-5.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      ref_id: 3.3.6-5.d
+      description: d. the protection of data aligned with the (agreed) classification
+        scheme (including privacy of customer data and, avoiding unauthorized access
+        and (un)intended data leakage);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.6-5.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      ref_id: 3.3.6-5.e
+      description: e. vulnerability and patch management;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.6-5.f
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      ref_id: 3.3.6-5.f
+      description: f. back-up and recovery procedures;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.6-5.g
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node147
+      ref_id: 3.3.6-5.g
+      description: g. periodic Cyber Security compliance review.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Change Management
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-1
+      description: The change management process should be defined, approved and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-2
+      description: The compliance with the change management process should be monitored.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-3
+      description: The effectiveness of the Cyber Security controls within the change
+        management process should be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-4.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-4.a
+      description: "The change management process should include: \na. Cyber Security\
+        \ requirements for controlling changes to information assets, such as assessing\
+        \ the impact of requested changes, classification of changes and the review\
+        \ of changes;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-4.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-4.b
+      description: 'b. security testing, which should (if applicable) include:
+
+        1. penetration testing;
+
+        2. code review if applications are developed internally;
+
+        3. code review of externally developed applications and if the source code
+        is available
+
+        4. a code review report (or equivalent, such as an independent assurance statement)
+        in case the source code cannot be provided;'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-4.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-4.c
+      description: c. approval of changes by the business owner;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-4.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-4.d
+      description: d. approval from the Cyber Security function before submitting
+        to Change Advisory Board (CAB);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-4.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-4.e
+      description: e. approval by CAB;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-4.f
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-4.f
+      description: f. post-implementation review of the related Cyber Security controls;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-4.g
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-4.g
+      description: g. development, testing and implementation are segregated for both
+        the (technical) environment and involved individuals;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-4.h
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-4.h
+      description: h. the procedure for emergency changes and fixes;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.7-4.i
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node159
+      ref_id: 3.3.7-4.i
+      description: i. fall-back and roll-back procedures.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Infrastructure Security
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-1
+      description: ' The infrastructure security standards should be defined, approved
+        and implemented.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-2
+      description: The compliance with the infrastructure security standards should
+        be monitored.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-3
+      description: The effectiveness of the infrastructure Cyber Security controls
+        should be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-4
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-4
+      description: 'The infrastructure security standards should cover all instances
+        of infrastructure available in the main datacenter(s), the disaster recovery
+        data site(s) and office spaces.
+
+
+        The infrastructure security standards should cover all instances of infrastructure
+        (e.g., operating systems, servers, virtual machines, firewalls, network devices,
+        IDS, IPS, wireless network, gateway servers, proxy servers, email gateways,
+        external connections, databases, file-shares, workstations, laptops, tablets,
+        mobile devices, PBX).'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-5.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-5.a
+      description: "The infrastructure security standard should include: \na. the\
+        \ Cyber Security controls implemented (e.g., configuration parameters, events\
+        \ to monitor and retain [including system access and data], data-leakage prevention\
+        \ [DLP], identity and access management, remote maintenance);"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-5.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-5.b
+      description: b. the segregation of duties within the infrastructure component
+        (supported with a documented authorization matrix);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-5.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-5.c
+      description: c. the protection of data aligned with the (agreed) classification
+        scheme (including privacy of customer data and, avoiding unauthorized access
+        and (un)intended data leakage);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-5.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-5.d
+      description: d. the use of approved software and secure protocols;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-5.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-5.e
+      description: e. segmentation of networks;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-5.f
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-5.f
+      description: f. malicious code/software and virus protection (and applying application
+        whitelisting and APT protection);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-5.g
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-5.g
+      description: g. vulnerability and patch management;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-5.h
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-5.h
+      description: "h. DDOS protection (where applicable); this should include:\n\
+        \ 1. the use of scrubbing services;\n 2. specification of the bandwidth agreed;\n\
+        \ 3. 24x7 monitoring by Security Operating Center (SOC), Service Provider\
+        \ (SP) and scrubbing provider;\n 4. testing of DDOS scrubbing (minimum twice\
+        \ a year);\n 5. DDOS services should be implemented for the main datacenter(s)\
+        \ as well as the disaster recovery site(s);"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-5.i
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-5.i
+      description: i. back-up and recovery procedures;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.8-5.j
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node172
+      ref_id: 3.3.8-5.j
+      description: j. periodic Cyber Security compliance review.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node187
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Cryptography
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.9-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node187
+      ref_id: 3.3.9-1
+      description: A cryptographic security standard should be defined, approved and
+        implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.9-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node187
+      ref_id: 3.3.9-2
+      description: The compliance with the cryptographic security standard should
+        be monitored.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.9-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node187
+      ref_id: 3.3.9-3
+      description: The effectiveness of the cryptographic security controls should
+        be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.9-4
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node187
+      ref_id: 3.3.9-4
+      description: 'The cryptographic security standard should include:
+
+        a. an overview of the approved cryptographic solutions and relevant restrictions
+        (e.g., technically, legally);
+
+        b. the circumstances when the approved cryptographic solutions should be applied;
+
+        c. the management of encryption keys, including lifecycle management, archiving
+        and recovery.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node192
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Bring Your Own Device (BYOD)
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.10-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node192
+      ref_id: 3.3.10-1
+      description: The BYOD Cyber Security standard should be defined, approved and
+        implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.10-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node192
+      ref_id: 3.3.10-2
+      description: The compliance with the BYOD Cyber Security standard should be
+        monitored.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.10-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node192
+      ref_id: 3.3.10-3
+      description: The effectiveness of the BYOD Cyber Security controls should be
+        measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.10-4.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node192
+      ref_id: 3.3.10-4.a
+      description: 'The BYOD standard should include: a. responsibilities of the user
+        (including awareness training);'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.10-4.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node192
+      ref_id: 3.3.10-4.b
+      description: b. information regarding the restrictions and consequences for
+        staff when the Member Organization implements Cyber Security controls on their
+        personal devices; for example when using modified devices (jailbreaking),
+        terminating the employment or in case of loss or theft of the personal device;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.10-4.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node192
+      ref_id: 3.3.10-4.c
+      description: c. the isolation of business information from personal information
+        (e.g., containerization);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.10-4.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node192
+      ref_id: 3.3.10-4.d
+      description: "d. the regulation of corporate mobile applications or approved\
+        \ \u201Cpublic\u201D mobile applications;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.10-4.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node192
+      ref_id: 3.3.10-4.e
+      description: e. the use of mobile device management (MDM); applying access controls
+        to the device and business container and encryption mechanisms on the personal
+        device (to ensure secure transmission and storage).
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node201
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Secure Disposal of Information Assets
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.11-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node201
+      ref_id: 3.3.11-1
+      description: The secure disposal standard and procedure should be defined, approved
+        and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.11-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node201
+      ref_id: 3.3.11-2
+      description: The compliance with the secure disposal standard and procedure
+        should be monitored.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.11-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node201
+      ref_id: 3.3.11-3
+      description: The effectiveness of the secure disposal Cyber Security controls
+        should be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.11-4
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node201
+      ref_id: 3.3.11-4
+      description: Information assets should be disposed in accordance with legal
+        and regulatory requirements, when no longer required (i.e. meting data privacy
+        regulations to avoid unauthorized access and avoid (un)intended data leakage).
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.11-5
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node201
+      ref_id: 3.3.11-5
+      description: Sensitive information should be destroyed using techniques to make
+        the information non-retrievable (e.g., secure erase, secure wiping, incineration,
+        double crosscut, shredding).
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.11-6
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node201
+      ref_id: 3.3.11-6
+      description: The Member Organization should ensure that third party service
+        providers used for secure disposal, transport and storage comply with the
+        secure disposal standard and procedure and the effectiveness is periodically
+        measured and evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node208
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Payment Systems
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.12-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node208
+      ref_id: 3.3.12-1
+      description: For Saudi Arabian Riyal Interbank Express (SARIE) information,
+        please refer to the SARIE Information Security Policy, Version Issue 1.0 -
+        June 2016.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.12-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node208
+      ref_id: 3.3.12-2
+      description: "For mada information, please refer to the following sections in\
+        \ the mada Rules and Standards Technical Book (se appendix A):\n \u2022 Part\
+        \ IIIa - Security Framework, Version Issue 6.0.0 - May 2016\n \u2022 Part\
+        \ IIIb - HSM Requirements, Version Issue 6.0.0 - May 2016\n \u2022 SAMA CA\
+        \ IPK Certificate Procedures, Version Issue 6.0.1 \u2013 October 2016\n"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node211
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Electronic Banking Services
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.13-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node211
+      ref_id: 3.3.13-1
+      description: The Cyber Security standards for electronic banking services should
+        be defined, approved and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.13-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node211
+      ref_id: 3.3.13-2
+      description: The compliance with Cyber Security standards for electronic banking
+        services should be monitored.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.13-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node211
+      ref_id: 3.3.13-3
+      description: The effectiveness of the Cyber Security standard for electronic
+        banking services should be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.13-4.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node211
+      ref_id: 3.3.13-4.a
+      description: 'Electronic banking services security standard should cover: a.
+        use of brand protection measures to protect online services including social
+        media.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.13-4.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node211
+      ref_id: 3.3.13-4.b
+      description: "b. online, mobile and phone banking:\n 1. use of official application\
+        \ stores and websites (applicable for online and mobile banking);\n 2. use\
+        \ of detection measures and take-down of malicious apps and websites (applicable\
+        \ for online and mobile banking);\n 3. use of sandboxing (applicable for online\
+        \ and mobile banking);\n 4. use of non-caching techniques (applicable for\
+        \ online and mobile banking);\n 5. use of communication techniques to avoid\
+        \ \u2018man-in-the-middle\u2019-attacks (applicable for online and mobile\
+        \ banking);\n6. use of multi-factor authentication mechanisms:\n a. multi-factor\
+        \ authentication should be used during the registration process for the customer\
+        \ in order to use of electronic banking services;\n b. multi-factor authentication\
+        \ should be implemented for all electronic banking services available to customers;\n\
+        \ c. the use of hard and soft tokens should be password protected;\n d. revoking\
+        \ the access of customers after 3 successive incorrect passwords or invalid\
+        \ PINs;\n e. the process for changing the customer mobile number should only\
+        \ be done from either a branch or ATM;\n f. the processes for requesting and\
+        \ activating of the multi-factor authentication should be done through different\
+        \ delivery channels;\n g. multi-factor authentication should be implemented\
+        \ for the following processes:\n 1. sign-on;\n 2. adding or modifying beneficiaries;\n\
+        \ 3. adding utility and government payment services;\n 4. high-risk transactions\
+        \ (when it exceeds predefined limits);\n 5. password reset;\n7. the processes\
+        \ for adding and activating beneficiaries should be done through different\
+        \ delivery channels (applicable for mobile and online banking);\n 8. high\
+        \ availability of the electronic banking services should be ensured;\n 9.\
+        \ scheduled downtime of the electronic banking services should be timely communicated\
+        \ to SAMA and customers;\n 10. contractual agreements between the Member Organization\
+        \ and the customer addressing the roles, responsibilities and liabilities\
+        \ for both the Member Organization and the customers;\n11. obtaining approval\
+        \ of SAMA before launching a new electronic banking service."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.13-4.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node211
+      ref_id: 3.3.13-4.c
+      description: "c. ATMs and POSs:\n 1. prevention and detection of exploiting\
+        \ the ATM/POS application and infrastructure vulnerabilities (e.g., cables,\
+        \ (USB)-ports, rebooting);\n 2. Cyber Security measures, such as hardening\
+        \ of operating systems, malware protection, privacy screens, masking of passwords\
+        \ or account numbers (e.g., scren and receipt), geo-blocking (e.g., disable\
+        \ cards per default for outside GCC countries, disable magnetic strip transactions),\
+        \ video monitoring (CCTV), revoking cards after 3 successive invalid PINs,\
+        \ anti-skimming solutions (hardware/software), and PIN-pad protection;\n 3.\
+        \ remote stopping of ATMs in case of malicious activities."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.13-4.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node211
+      ref_id: 3.3.13-4.d
+      description: "d. SMS instant notification services:\n 1. SMS messages should\
+        \ not contain sensitive data (e.g., account balance - except for credit cards);\n\
+        \ 2. SMS alert should be sent to both mobile numbers (old and new) when the\
+        \ customer\u2019s mobile number has ben changed;\n 3. SMS notification should\
+        \ be sent to the customer\u2019s mobile number when requesting a new multi-factor\
+        \ authentication mechanism.\n 4. SMS notification should be sent to the customer\u2019\
+        s mobile number for all retail and personal financial transactions.\n 5. SMS\
+        \ notification should be sent to the customer\u2019s mobile number when beneficiaries\
+        \ are added, modified and activated."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Cyber Security Event Management
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-1
+      description: The security event management process should be defined, approved
+        and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-2
+      description: The effectiveness of the Cyber Security controls within the security
+        event management process should be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-3
+      description: To support this process a security event monitoring standard should
+        be defined, approved and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-3.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-3.a
+      description: a. the standard should address for all information assets the mandatory
+        events which should be monitored, based on the classification or risk profile
+        of the information asset.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.a
+      description: 'The security event management process should include requirements
+        for:
+
+        a. the establishment of a designated team responsible for security monitoring
+        (i.e., Security Operations Center (SOC));'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.b
+      description: b. skilled and (continuously) trained staff;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.c
+      description: c. a restricted area to facilitate SOC activities and workspaces;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.d
+      description: d. resources required continuous security event monitoring activities
+        (24x7);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.e
+      description: e. detection and handling of malicious code and software;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.f
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.f
+      description: f. detection and handling of security or suspicious events and
+        anomalies;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.g
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.g
+      description: g. deployment of security network packet analysis solution;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.h
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.h
+      description: h. adequately protected logs;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.i
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.i
+      description: i. periodic compliance monitoring of applications and infrastructure
+        Cyber Security standards
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.j
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.j
+      description: j. automated and centralized analysis of security loggings and
+        correlation of event or patterns (i.e., Security Information and Event Management
+        (SIEM));
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.k
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.k
+      description: k. reporting of Cyber Security incidents;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.14-4.l
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node219
+      ref_id: 3.3.14-4.l
+      description: l. independent periodic testing of the effectiveness of the security
+        operations center (e.g., red-teaming).
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Cyber Security Incident Management
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-1
+      description: The Cyber Security incident management process should be defined,
+        approved, implemented and aligned with the enterprise incident management
+        process.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-2
+      description: The effectiveness of the Cyber Security controls within the Cyber
+        Security incident management process should be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-3
+      description: The standard should address the mandatory and suspicious security
+        events which should be responded to.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-4
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-4
+      description: 'The security incident management process should include requirements
+        for:'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-4.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-4.a
+      description: a. the establishment of a designated team responsible for security
+        incident management;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-4.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-4.b
+      description: b. skilled and (continuously) trained staff;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-4.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-4.c
+      description: c. sufficient capacity available of certified forensic staff for
+        handling major incidents (e.g., internal staff or contracting an external
+        forensic team);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-4.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-4.d
+      description: d. a restricted area to facilitate the computer emergency response
+        team (CERT) workspaces;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-4.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-4.e
+      description: e. the classification of Cyber Security incidents;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-4.f
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-4.f
+      description: f. the timely handling of Cyber Security incidents, recording and
+        monitoring progress;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-4.g
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-4.g
+      description: g. the protection of relevant evidence and loggings;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-4.h
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-4.h
+      description: h. post-incident activities, such as forensics, root-cause analysis
+        of the incidents;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-4.i
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-4.i
+      description: i. reporting of suggested improvements to the CISO and the Committe;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-4.j
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-4.j
+      description: j. establish a Cyber Security incident repository.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-5
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-5
+      description: "The Member Organization should inform \u2018SAMA IT Risk Supervision\u2019\
+        \ immediately when a medium or high classified security incident has occurred\
+        \ and identified."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-6
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-6
+      description: "The Member Organization should obtain \u2018no objection\u2019\
+        \ from \u2018SAMA IT Risk Supervision\u2019 before any media interaction related\
+        \ to the incident."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.15-7
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node236
+      ref_id: 3.3.15-7
+      description: "The Member Organization should submit a formal incident report\
+        \ \u2018SAMA IT Risk Supervision\u2019 after resuming operations, including\
+        \ the following incident details: a. title of incident;b. classification of\
+        \ the incident (medium or high);c. date and time of incident occurred. date\
+        \ and time of incident detected. information assets involved; f. (technical)\
+        \ details of the incident;g. root-cause analysis;h. corrective activities\
+        \ performed and planned;i. description of impact (e.g., loss of data, disruption\
+        \ of services, unauthorized modification of data, (un)intended data leakage,\
+        \ number of customers impacted);j. total estimated cost of incident;k. estimated\
+        \ cost of corrective actions."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node254
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Threat Management
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.16-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node254
+      ref_id: 3.3.16-1
+      description: The threat intelligence management process should be defined, approved
+        and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.16-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node254
+      ref_id: 3.3.16-2
+      description: The effectiveness of the threat intelligence management process
+        should be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.16-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node254
+      ref_id: 3.3.16-3
+      description: 'The threat intelligence management process should include: a.
+        the use of internal sources, such as access control, application and infrastructure
+        logs, IDS, IPS, security tooling, Security Information and Event Monitoring
+        (SIEM), support functions (e.g., Legal, Audit, IT Helpdesk, Forensics, Fraud
+        Management, Risk Management, Compliance);b. the use of reliable and relevant
+        external sources, such as SAMA, government agencies, security forums, (security)
+        vendors, security organizations and specialist notification services;c. a
+        defined methodology to analyze the threat information periodically;d. the
+        relevant details on identified or collected threats, such as modus operandi,
+        actors, motivation and type of threats;e. the relevance of the derived intelligence
+        and the action-ability for follow-up (for e.g., SOC, Risk Management);f. sharing
+        the relevant intelligence with the relevant stakeholders (e.g., SAMA, BCIS
+        members).'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node258
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node112
+      name: Vulnerability Management
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.17-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node258
+      ref_id: 3.3.17-1
+      description: The vulnerability management process should be defined, approved
+        and implemented.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.17-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node258
+      ref_id: 3.3.17-2
+      description: The effectiveness of the vulnerability management process should
+        be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.3.17-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node258
+      ref_id: 3.3.17-3
+      description: 'The vulnerability management process should include: a. all information
+        assets;b. frequency of performing the vulnerability scan (risk-based);c. classification
+        of vulnerabilities;d. defined timelines to mitigate (per classification);e.
+        prioritization for classified information assets; f. patch management and
+        method of deployment.'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node262
+      assessable: false
+      depth: 1
+      name: Third Party Security
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node262
+      name: 'Contract and Vendor Management '
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.1
+      description: The Cyber Security requirements should be defined, approved, implemented
+        and communicated within the contract and vendor management processes.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.2
+      description: The compliance with contract and vendor management process should
+        be monitored.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.3
+      description: The effectiveness of the Cyber Security controls within the contract
+        and vendor management process should be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.1-4
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.1-4
+      description: "These contract and vendor management processes should cover: \n\
+        a. whether the involvement of the Cyber Security function is actively required\
+        \ (e.g., in case of due diligence);\nb. the baseline Cyber Security requirements\
+        \ which should be applied in all cases;\nc. the right to periodically perform\
+        \ Cyber Security reviews and audits."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.1-5.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.1-5.a
+      description: 'The contract management process should cover requirements for:
+        a. executing a Cyber Security risk assessment as part of the procurement process;'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.1-5.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.1-5.b
+      description: b. defining the specific Cyber Security requirements as part of
+        the tender process;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.1-5.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.1-5.c
+      description: c. evaluating the replies of potential vendors on the defined Cyber
+        Security requirements;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.1-5.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.1-5.d
+      description: d. testing of the agreed Cyber Security requirements (risk-based);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.1-5.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.1-5.e
+      description: e. defining the communication or escalation process in case of
+        Cyber Security incidents;
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.1-5.f
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.1-5.f
+      description: f. ensuring Cyber Security requirements are defined for exiting,
+        terminating or renewing the contract (including escrow agreements if applicable);
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.1-4.g
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.1-4.g
+      description: g. defining a mutual confidentiality agreement.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.1.-6
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node263
+      ref_id: 3.4.1.-6
+      description: 'The vendor management process (i.e., service level management)
+        should cover requirements for: a. periodic reporting, reviewing, and evaluating
+        the contractually agreed Cyber Security requirements (in SLAs).'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node276
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node262
+      name: 'Outsourcing '
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.2-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node276
+      ref_id: 3.4.2-1
+      description: The Cyber Security requirements within the outsourcing policy and
+        process should be defined, approved, implemented and communicated within Member
+        Organization.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.2-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node276
+      ref_id: 3.4.2-2
+      description: The Cyber Security requirements regarding the outsourcing policy
+        and process should be measured and periodically evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.2-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node276
+      ref_id: 3.4.2-3
+      description: "The outsourcing process should include: \na. the approval from\
+        \ SAMA prior to material outsourcing. \nb. the involvement of the Cyber Security\
+        \ function. \nc. compliance with the SAMA circular on outsourcing."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      assessable: false
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node262
+      name: 'Cloud Computing '
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3-1
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      ref_id: 3.4.3-1
+      description: The Cyber Security controls within the cloud computing policy for
+        hybrid and public cloud services should be defined, approved and implemented,
+        and communicated within Member Organization.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3-2
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      ref_id: 3.4.3-2
+      description: The compliance with the cloud computing policy should be monitored.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3-3
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      ref_id: 3.4.3-3
+      description: The Cyber Security controls regarding the cloud computing policy
+        and process for hybrid and public cloud services should be periodically measured
+        and evaluated.
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3-1.a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      ref_id: 3.4.3-1.a
+      description: "The cloud computing policy for hybrid and public cloud services\
+        \ should address requirements for: \na. the process for adopting cloud services,\
+        \ including that:\n1. a Cyber Security risk assessment and due diligence on\
+        \ the cloud service provider and its cloud services should be performed;\n\
+        2. the Member Organization should obtain SAMA approval prior to using cloud\
+        \ services or signing the contract with the cloud provider;\n3. a contract\
+        \ should be in place, including the Cyber Security requirements, before using\
+        \ cloud services;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3-1.b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      ref_id: 3.4.3-1.b
+      description: 'b. data location, including that:
+
+        1. in principle only cloud services should be used that are located in Saudi
+        Arabia, or when cloud services are to be used outside Saudi Arabia that the
+        Member Organization should obtain explicit approval from SAMA;'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3-1.c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      ref_id: 3.4.3-1.c
+      description: "c. data use limitations, including that:\n1. the cloud service\
+        \ provider should not use the Member Organization\u2019s data for secondary\
+        \ purposes;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3-1.d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      ref_id: 3.4.3-1.d
+      description: "d. security, including that:\n1. The cloud service provider should\
+        \ implement and monitor the Cyber Security controls as determined in the risk\
+        \ assessment for protecting the confidentiality, integrity, and availability\
+        \ of the Member Organization\u2019s data;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3-1.e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      ref_id: 3.4.3-1.e
+      description: "e. data segregation, including that:\n1. the Member Organization\u2019\
+        s data is logically segregated from other data held by the cloud service provider,\
+        \ including that the cloud service provider should be able to identify the\
+        \ Member Organization\u2019s data and at all times should be able to distinguish\
+        \ it from other data."
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3-1.f
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      ref_id: 3.4.3-1.f
+      description: "f. business continuity, including that:\n1. business continuity\
+        \ requirements are met in accordance with the Member Organization\u2019s business\
+        \ continuity policy;"
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3-1.g
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      ref_id: 3.4.3-1.g
+      description: 'g. audit, review and monitoring, including that:
+
+        1. the Member Organization has the right to perform a Cyber Security review
+        at the cloud service provider;
+
+        2. the Member Organization has the right to perform a Cyber Security audit
+        at the cloud service provider;
+
+        3. the Member Organization has the right to perform a Cyber Security examination
+        at the cloud service provider;'
+    - urn: urn:intuitem:risk:req_node:sama-csf-1.0:3.4.3-1.h
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-csf-1.0:node280
+      ref_id: 3.4.3-1.h
+      description: "h. exit, including that:\n1. the Member Organization has termination\
+        \ rights;\n2. the cloud service provider has to return the Member Organization\u2019\
+        s data on termination;\n3. the cloud service provider has to irreversibly\
+        \ delete the Member Organization\u2019s data on termination."
diff --git a/tools/sama/sama-crfr-1.0.xlsx b/tools/sama/sama-crfr-1.0.xlsx
new file mode 100644
index 0000000000000000000000000000000000000000..941e565fb3f0bea6f7390a499dff282271ee7df5
GIT binary patch
literal 16149
zcmeHO1y>!}vOc&w1a}Ya?h@SH-5o-(puyeU3GVI$cXxLUuE8J4%zZOAcit~}x7Rv-
zPM_ZOt?J!XyK0xnNrHf)0>A-~004jxutC|N?Fa+_;DQ4HC;&)cO(9zwCu18YT_smL
zV@GXT7i%km98h42ECBG^`2QaNk7r;cPTR7J9yQ<$;t_$gAvc^8!%(elp?{Zb<k`EF
zqps5<8YTVZF<lhb&?$t%iVe=%VeRfv{1U#ODz}CdRB0@sRQFm9yxu`!QGIYNU-q76
zm>!zS-}#+HJ-E^K<ZiEB^Q||gvL>}UN^ZwCP6>F}w=UO8X2ljg;k<eJZ5<^?1`ytZ
z8ylBhD^TpK1&hkbb0CYV2?lqq$$dC+Ksa^FI<-}s1X=5RF><un{nQXX?fqPK)=(`t
z_U=UpJ;s@nnW-n+!d#o2rEg4>v~bXP7b3W>`O9Y4(`u7zm2RHj)NEZbf3t;tAqdz5
zK+pgLF`RZv4I}$F!adSUBa9pFnaQvAHStU24#pEo#CN`}Ag33fg8f6y7$bNqKwlj=
z_Z@>&PGA}~5`TLizqq}#_u0}T`vIP`@0D0E^2QI^W1`%$F&-#^An10%-0zp4ITWzc
zSDekRWPG{jS~T>W_KY6Gr2;u*H+dgG0f5(65P;mj=_-m&yD{*auCBkSBFvkv>N*%(
zInvSoJpWfm{~s&n-yXd*Mp_bt0Wsjr_myy@jcfTm(UcXP$bq!cGY~`avmRS=R9^G*
zov46Qc0Hb3TE(Xf*W??M>RgvxM0aQ81Q96TG?VETl`hHW#zqLFSO?MYW3etDBCF!>
zB{xjr?{~8oZg@jVw{pJFlD>LleEgu&>&w%mWzMb^?|`9kErC!>sujPB8?cTgH_F^Q
zCI-pn2$IA5qxHU(l})<BeAvx)@GCJ@RKD<7l=_dTMZu#hmK>GruOyw7o<oO0Lyts;
zAb8{&&zT2jmXit!qNM&QAnAMe$LwIWt$8AjC|)bcq8|J7t&9i-YBqF(Id=?IJceVc
z<7~)dYt;{Lv+$oPb6$y4UGk<bx^LzU;cbMA72PLW2TKE6Tg#uOEl*k7HkBUrb7t+U
z_mfPxco(vg0;zSb$Wp$U=5qfKgG?nfYn?Q&(oM%1mLP9RV!4Q(q3-^VG<Srt-P!zs
zHne$Biev%@B!WoEd<DWpsOCqmi^l<`grT@SiAzxHCIQv%3SHWH3BJ*Iw@Uzj3aIg1
z0z+SbackC|V7!)~QMQu+4eSkas)A!mN|>YO4m+$bB)XE=3_;HW4~9h*V%R!`3Yyju
zxbRh)MwTt3e9F5ry)z%GLeFA}%%U97pr!%;)w!$zDm89xiLZy;5R2GTSFBj4ka)=a
zDD_+d2UaD5^krch3ozb&aEDCKB;UTI<>@(Q_}vkHtlFd6v}iQ_nu|~!a;r886b70p
zN~~A5M8!aI=4aN%(|`y^hfcJA7ygk)Bca1=^L;!qT|wVke%B?lz`9=H+>?=@>TV-4
zhp;$30a90YTe>M0xZI<>O;f_mr6nnin)Qe0n)>3Z3MMeJThFU~2{ZV0cs0l!eo1wy
zeG^gZJ!MW=#CE1EglX3y7TS7BU424pup#IXHd5Y80v@&}uf{0GL{Qi+Y=_auWfH&#
z+y<Fc^^?xW>pcjgM+9ww)9kLp)9JM49cMh!X$Du1CfrD_TzmEl^4PI&2;!eM?%Z>~
z;fIONZx`ZAb;-P<^&C)`gs8AC$Il9o7s9Y`!#wAuvI_b(A|LwnNmjOa%y*bCEtH@f
z!&ka@&hO~~*sfU-1oJIUNTMK>te30sok7^D%C`}S>ePKXSJ(7UxzLAU#R3KB>>}o~
zi4(I>6xiU3ptPc526w)o@){^-CVVSD<x%J2Mt79Hxs7HS`*O92TSU8QM|QYionJs{
z{}ADoe}6Tp;84r#(K161*3PZ5%Av7Zls<)Q$ZX1V(lo{Zd8GHaPX7e)PjbBm^-S^8
z6wH7C09XJ>pf|bx!y5cuy8mSvfZn{fx3T}fkJi|6i*9<@zB9izzsb+`F*e3=oNZwO
z6`FSdGWo5E9@d0ga$CMwp=SO;+H7<`lBdsn69vzk1!q0z;1=o1QKXcRwO>m#mMMO)
zxAAiO5zN(3rPmbd@%swddo_4<%Q!v>=iiXzgph&-ES}}%P3cuo+T&TL&Cp(_7-C`_
zesrCK8{(F3V0@bOHpr)pi1)QCWhIdDiyV8kY-zTU^swJGjZCOe8?Z$mGeYDDIhr7#
zO41<dA0!LzA*kryVG9^c)T_qsHj<=YX3-xw@Sf!gOcHD^wV2cKb=5!%2&4`0goX{j
ziFw{mxy6x%qB}LD?EkbBn6_$g0rO81l-ZN<9_7u=;DiGJF#cK@9nFl5ogC?YeKGu8
zBGY1*BbMmjEDF^PF41~m4^$;0k_ry%(VFrqUU@hZ;XC`ZrM(%8^)^FAJ<>ch4a#8I
zi@VotOj$gHYAENda5-xkGdeP$TCMmT?fsqpJ0hIuZ)$T1rSdd8JCFg~GJIYs$MI`P
zSl__K%%o*3EL*5UU@HU|rxkH)8x<&Nl6$jtKIBh-ljsm<l}GOH7Gs=@K_Q&JqgPUf
zf|u-VK-O^gH8V>RdCh;9&M{5W0YRR;X4Mi!wMb|{ilrZkCjmTIv;VP#S(63h&gT{r
z0Uj$8bp4uod*3!LZ$kr9c@ZxrH+FydynmA2;7PDK{FN5=<O7y-7wLJ31g}XjJZ<R?
zv?L!SwvOIuqf<SavCK<^sjPi8Ec&KdGO9kqL1fotX;NUWfCl#{exDOZW=G6n9%_<4
zx^h<b&|sJe%maVUVGsI*ERg$EKE7JLn-6#+7-}}jkK8zq&5>PNar@(=k6&l{tUda4
z4dUoM{bKc2LU5_G%pDjDFk0?Ul(q3mb3^x*U(`F!SzeSOs7&;-Q*?7`SyH~WC<*q~
zhd<}v>hhObhSq>^!>CHByK4Dvs`Z-X?;AH-L<O(&Lw~}qf?Vuuctl|gb~jJyp_GoQ
z1~!D*j3U|4G>qql;TlGV2H&P!cqx#RaCcgW42&>1p3IzVfgQ;-)pIu?QSEsYCBmQO
zdlQh?*I%c&1WOw~e%LP+zPA8lxE)IVp>3idq8n8Wu(;ZW$hJK7WiYf?$u2YA)K$!{
z$9&B;>}*1ciSy&`4rMrvd9N0<Jf2JYwD$oy=67d&`{lMR!*U$22~Evb;%@vjFH_rh
zns9hS*D8tTj~;F$1w+PKvHNt=A+6}BBB9w`6Q<A-GN5q8(%p6?z4SBHaNF1Vuf!Zh
zaGx3AXkg`L7!M?@#bh4p#`smiDJ(FZ%CdIyvhC^Z6D&bc>tLJZ<s391S23~*jVH={
zV-$CHn$Ggaoh-d`SOq(&C^!zKw~>P8TbTIehqE{{ck;3jw@I=#;FOS=O5vr?r-u7-
z6SWkvgE@VZf*DHbXFo7?0!b1^C!LgBVYR-~F|2e#3C2|Y!0JM?t8oM+%;zIR!}C(%
z+c_mgV&Z=E4ZLD~DD#k{G7dQylP=)ZH8S5q9PVQbp87~j>srDR@TBIsX=znskM@Yt
zj_i~l4_?2-_PWp8>i@5q=MEEq?&60PsX%rBPz41|91fM0Wa!N}k*TFd<wNtdDeA90
z-|@Dp80J{k_DsVP!{OO=a1mk@Xf=es93yR#on98lQSuJ3auUE2>0}=+l`Y58L1V?2
z?#BaXAoV1XMUF9oDKRt*L_~$^e#O}qX+lL>Ga9?&OEkJdavw_`XrcSX%kR6A#O3`1
z*EjcSo#g*qNErWENF*bd=u!Re;vev-&jv&L`Gql*h2%dR<s7+NrePcC_ZL~?O&7nm
z&5J{dQDebDw~LS5k5zqE=go*G`9QC7@IKcbQ63m=zNyd|^ZE88Q;MPiZixfgM=;FK
zK$7^Xw(HcgOUKqw8<5EFQzxgIIN^kbCFMrIn**Rtp{-FJf0#LEm%&xGB2i+J$uq;C
zp`ckq6=8Nwh!C=uvhYz9YQZoNBzHg6qt>-epyK-~jvOQ01X(H*8&Kuh(ZR(b_fGF?
ze}!9?(7NNupqCi~uK?}X4wb%o854)Hsh#zQiNdK*K1=L?L?_(lIrMz?qrV_wwnKdZ
zR21%fjNURImng5ipwh3w+iMukgNQc0mYw-5s%FS1Jip0!msp<A^bO^<ga|w&tUYx4
zZaOHS#CV#29W3p5l*hjL1=8OgnDU|@>h{96Y!-d&>9Dtuq}{MV<E-r(GgjElKmhoz
zO$Z}_*y$3&>Or^cMCie>Cc}NblC8b1<I4hb_{(4vP0e}UE<$t*a{45Dpf7G-OM4o`
zl|6F!w$YNT=Uf2-f%DfZeftKFmaq52Sk(Qz{gnb+Om;Mrh#zvkymlC*Ry!)nmaY57
z(5N*a;R!?WsTItUN`5e_bNLqj&axnVtp^LT)6befjcdT=o!*Pjr8s&2(%^n)<9dn@
zVyz{k-U-2=)8#9oeof*Z>&PFAiMqATGCgXGL^Me0WT0h>7)Y%oJhBncZ3%Wt&azEM
zL0(XA!H4WKUBnn@n$R3#+c7@bg1gnt=gQUA=Lg5T+gj+7maDVw@9Mlf@FguBg!mDW
zd@m<5``d>%&*pV6?^KsZtK>3a?sB5e#xGC$o!gpT7i>-=Gs6-SkfJWyjD?MkHADsb
z+KqRxw{^<DJKJA;N54~`y)rC08G>vG#XZIskHADdwQhu9`E+Q&KQ3B^G0Q!(V3axx
z@7VQquiCs^Wn@Sz+}}9;+jBJ7-EJ?r){zbU>TF1s%`x6L<EhRyzwQjXqBe+Woia$b
zU=T5tyMsz{EeqS$1x0x0IwESx*J_kwAgy<dBWpXqZZMv_5&HoVi1!`;x@NVtDTCz1
zV!;q+?pms0fJw%Riyj)wKeN5}NhLdSA&|I4(%L07I%QbEvy`^70LUT7Y#ey+3+~}n
zz)g-AmIZTC&>N75LuEiy8l6tkB25UVzY`YM^34_3`C=7sj%ldwAo*Tz88SnG!iX2s
znZ}!}h&+iWN0NFXw*XVH0t=LyX_gygHYIO@CoCxeEEtdH2GQ-AAnUMdE|1i6KEN9Z
z#nlNqBZ9)nv*IKHAgv&)<u074w!!TdLUf%X$nQv8&SD<CzRwLT!HB|REI;6c2UdH^
zVpcr{n?u4hsrb%+ghyvs&=j0m-4t9tCi#Fe^e6AelP;w!Z~usn{A<vXF;Ge=lOM&P
z)b-N|#oM#IZ2$4ca9Dw<L4_$OGn1la02z~a^@xib*{z!>|FmHlX37X)h;jQcdEq-I
zP}wsQvrufZTaS-%-!xOzJQHvVp5^F-5x86ertEl+&N!r*TPcfBEGECWNlbw$bn>1C
z|1hzIlL;bevUo<u&-pvWoH-aFkYJ4E=20A2$z5eCoJ<yo!?kQ0t80eP+%bY-=467B
zi%H%&Ocva`GP{HQNo|~baV>Rp6XrdK2cJ?kD8;ii@ROyPH<qL$>rAW|K`4GcgTl{e
zxXaLBVoe5$`^jO^pBygy$zk4~92)-OusYZD?G56x#xdB~XAV$m-o}X#PQwZFTW<Q9
zOchuK#VFPv|C-B_YQSio>>?s*fz{%_raQCR=YI#ep-+9rbf5|CGb~HKrqsN@H|D9H
zXUV7@Xsbq?fF?J~-%FR~*&1QorVL%7g89X=%^xgNJ5*4EGV{!(G!4RLQ8WEXa;;{$
z_s44(BDxzA{P`M^Q%3+2j7%;saj1-|?x3~Yz9w_YK+L5d%}x_lPha0QCx3bu)s$jV
zvNzJy65}IODg)xuR8`816HIK%3KT<9<KB)EmoQfGu<@udmy!~fj-4Z6Gd*!LL{S!5
zTeVM5$QU2i$3#20J1AP%iCOA;;Q!HF0Xe!cF~04Z*554a|KayC{mbu7{pI(baH+ME
z2Si1I`j_V5%(RubwK|U=mM$bMjTI@cw}FT+#1oa}!~?LqJzm51@2>Cj&^Ww5PAOrA
zyAhJgLB$SRq)y_m&vzyv@4Lo38owVnz{L5S!Sgu<FMPEL`5Ov}5^e6+yN^RjD5Pem
zZutSw9jJX4rx&v}$t5)Bt#DHzH{JC5DZ?Q;kVT)r=!XbGt6^2m%iY8D_-^4{efnCu
z8lK-v%szTzqYKe>fQ5uzl*iW~Cs8Y=TOVKLkz0AH$h_g3My>O?bvsq6#j_yqYh_<@
z*Im>IEysEypFT>T$cN^NS3)Ufy?5}{<{MPSuT^n5`u#^8U0VoUG4OL%iPCqB;|J>(
z7VMF#gG3l2-$@|11u()?^^v9auGpc;V=o+-A3m5)YZ(Nl76<tg<z7)}lf;eYmw9<g
zus5?gUiM==OP}W}n^8+(x!Z&-vhcNMSp^A0Knok9cG<Ik1CARyAnH<BJyXd`&ISF>
zyf$X*_I++jmwM3-0w&jUa3#^jS&k*p_bmR^A|g}3Ml!NQh`Q}UCM7d*12pAb>|q^a
z7lqMQtXXg%0-N}iA{So80LhWaAc53_7?S&bczZC5xpTCiB}v5m0J{fWRNc_u<SlJ_
z6W*5q5#n6co}0fgD_N*v0$smvkKA&zbgkVlrEApTM!L=K@dN>S+LEW<LaDAX!*;Tc
z2r76)1P(kyLNv#{OIbAouZ%SvuP>yhC2l6CrtHIkKOOj50jId4K!L`@sdl_4+ALN_
z-~LBbSSAuULLMmt4-g}BegVXVLBs0Gr3DT&pY*m21d@U7@xExi`}wdW;!P_(a$Btc
zF=rW(>MU|yS*R7h*hb=P9HXRfc+tl=Qt#))H~L6)tn%VGrjT1&bQz^Kyv3a1iK<-E
z<6Z@ZaG`L+zoaMl86M=bIKz|Ce0XhMbGqNp_{*34XFXH>L(QrrFJZpr<V!${-;<Kw
zH__{eS{O)JAO)G0=0zoB>H=>cEH54;?xP!{o95*wEc^^D{Ac9tFrT#1<jpNq#QvFB
z`W1O|GBdU|ru%jNwY5A}AGN_|Lu^Ms;6iklrCy9Nz>EfwOxR+zH&~De!70+VNJRS7
zL_o>aj5b)s?~`LbDe1H3MzI7g=B+bTV4s>J?b9k4xFeyVp=3o4{(z2aMRT|PG;SBr
z>~<nBG(m_Ib6JX}M5hWYTpjg+IaISV-Sce9%{#A4{R`%}7*!G?rq;5@Yg>tn5Ge^M
z<gKX#NQ19%k%ytNNI+%Su5m^z>>6B?Se5SwqzYkRe4y31vQm}z;qj=`)clw-KF24U
zQ30SgEQ5NE60O4<42lYLU!-u%rg|3jD<=z!ksOG)q_TuYG=R>7f5>NY%K;gvy?2>}
ze!quOYNeyyiQP+<pKwfb@;zC$s$u~#Tm?=R3Bg3Fq)p>$=r*h!h`ui9yK_sr%}3F3
zfE|W!zDfe)sD^FZQpOau&+)v-Qo2N&g5w40gCz_j+wzHXoBDu3FjmyFhUT{lRjj%)
zWe8jTce=XY=9e_nWx6}Dqk7riowreqijMYT%XOKtYVcbI-nxO^U>Xf9MxeLDpWjFT
zW#$rKnM{6Fhjq<Q=+y{0bDRY624^fa3z#7x7s3%l{ba|9h-wM$;<qt{-GVygPdW-S
zC^w;1=ZoM7i^))McXWSOk-;bO_TljSar|Rbwm%XNm+xtE%7OKCgPPXX<Nn0d%k!Dx
zVf&Dc4&Q6Df0*%Q9-sGqcYpkue;}(#n6BO9a=C__uKnTq?hMa;LlYQb=$uzNSh!&T
zX=$JGzyx+%LI!-xgX;k*e+)hiV2yBCE`hUA24%vlmD<?XLY3w6!+XB}4p$uknL%Zy
z`(8AL^PBdVdMZo>kd2uRDa>8J`mrf(pYaNBUm))qZW>4VNrYoz%5;{K)w*~P@g81x
zau>s3kl+I@KGN3YDc;uz?N8<ujXOgAr}8s>GnO&Dxa>a6>$O6P=fgb(OpQxbqo>+4
zdm{xmtQ=0!QHV*dU(QhWk}f#$sL~$9ZtaJLz&nDKw@@zih`JcdsnA?F$-;7Ng!8UX
znrQgfW2SBO3RQI)&Z@<ai2QSi@kdjWt{5FsBRQdD94khcC5ILeb|3{&b9u@=&b3cX
zf;_?bHmr(T&J?y9AFl=N0{bGwt^kv^eL00oGSAZHx6KA46iVBldR^Q&tve@oB!kmY
zNL?^bb=6!NF4&ie5x<8*jJGsDmY;&Z-Z!^UCyr}a?}NQd*>TmiYTj`&kLAt_!!3j&
zX8U>=ON#SO9^sudh;4r3;zS(zc^$<mJng%MV*%fi$U+Ht<TRm3Z5Co(YM7}iVU9%l
z<z!<fj~JBNQFig{QPx;}?Qz(8Jh4(|SEI!Fp_<LGuw+z2CNCMxGIL;4<9g@alO*Lb
zCCSmfVilI0WQF}gRz*yY#zHLWu~H~)NZ&QE(iLwc?P2&DC=-$?=LW~C8Jd(E|7I~V
zb|U}C+O<&LVk~lLLt`vaJp4nBGgSQeMi!REh7IR;<nfEM36-gCXV$IExHkJbQ?Bkr
zxaul0G6~taDifs@b0DZ&t!S|NrT!J>@H&aj7v0nWE!lEV*tZ2_HBj?SY^g7mrCrkg
zb&tMXGPnc&O3P|wtjr@NM4)OW0d~Z%7PupB^3V%nULcfnbA%W#td!p($}I=&!~~U{
zoy~h!<T3c=CGORb?4yJ~n0@Or!1sInSm?`(6mQ3+|K8WryM)==`f7+~Ok^sat`c^v
z+%SQ>k)nZ9q#)U9lPuDdF^Qb23<<&MYRD#ztK&V{E}ht0X61EUX>uP*3%yii350NE
z2Rh8Dy&jlWsVf_L7YfcDn6^pk#M{j0yP6A}0NCB&UI#(oL&qqGWOp8m)Mty#J~27=
zNF^f3MZapJoHJB|*{$Ph5_N$AVI^^`WX&pwov6z8av!+Q^$-+3a%{7C6d>TA7++TQ
ziTuE;Y#d&S(j%q!uIeG0xhiQAR=xUk@>JeGe9g@|<av~mWubzo;8+-UommR0%et_5
z9{FGmpU5lr>T?wt619j=e(kfg|0t)4^fafpOa&_cd5{%P3|&kU4`PCSQ3P8mCC*wc
z<n*>{nW8b8mU9(TcVLR`&}rQKSlw~2+R@?SW_ABQOj~WC>SNRNO%hhjtx?F)tr_P4
zMt_oS-4Gx5MdxR`YgVm`$mEz?i&r46i_SQGFB0#ahA|dRw%50`&wrYwh_Rh9|2Ow9
z4jKS>i+uh}2st{rS{Xb3^!aL4v?Ej5Q9tXNzk*zH8R`kL274DL!!Ajz&Pp&*-OK{T
zs@*^^%1AUHd97Q5_$->F$g89WLbYq*XS$z4$gI`*x_>Cf&Nm9_Y5}+^y(>0yNX+TT
zboBCR?L$;YE+>(m3}!vhzWq)oZYYz+dqT;A$3H+O;%<0^)+b$6;LH4}I3IaUNdm?|
zujo@_5euoYAsbXgE<uu^K$0+SmjtRU5R$ML?~G@*ur%y4<JiccKA|jX2?AFU^P)r6
zQUH^Ji#7Xv^!(8#qUrM~PA7C3mU1%Jx8CAnHGz(TmL5r|5G1H5TOnve9AP>G+naDP
zrqaXc#p`V9qB!Po)j~gJ$`l}Zs?MVtC0!#MU4a1i3TpFqw+~&N$V6$R{#z36;0h2!
z9HAt>&Ugr4YRXLJ%7}a~6ip*aJB?fJP+)5tM6Fz%tjPA+Uo$_A%~iW1O)nEQO0i;y
zOtx5uTyooa&2ewN$lOO`sYHb?T@RcV0C8aK@9zk+BIpeu7a9oFjp%RQjE@&!RTE@y
za<Zhaqn)Lb70`!}V^?y~OV&#yPHYINFT`>wCfI3ULW<R_uDxI>cfXb~f~OEjN{Bj3
zAloo;9w(iC=>#wlh?pSoaK|BXV9cr_)}Qk{DC_oj$~PWCGeab(es0mD?Vo}GE25;>
zmt{?oomD4arnKH2^c(QMm&=C~%`N-Bi4-%%=bYjMQ!<NM)}8Tf%+~j2=_u?Ks|fOk
zHW6AE&cP@5yz=|O2;kHln>y!RhVpgC`dD9QT6N&Ib(*%esbeauI-y+eJ5-bR9voKp
zeqb?M78PYS(I<Sc>ph(+^RvWfx=3I#uIi{_8<xO+2Iyd(XeB5=PCBJ_a6n&j#Gj=!
z6X`TH`Bc{=3z{4PfHRy1L-9CNTTJ&2LSAa|J$R!(x$CXayJqtNYOMMr9GT`9A{)N<
zUQuS*ic>jk?A<>xifmuu*BU`oal1eFMhvkBp@xs+pG3jz*S|$FBH^USe%!#Pd_BnQ
zzp))2HN?9Q)oVL9y<@&jyl~s@uL-;{iKX+SaQVU7B={5w^QGm2Kia=WxqCAu`%&)^
zF;i4Cge)|oz2s9C&u)9zUgsk_?9&r3<nv-0^;7Q?@9h<P80*#I1H;%h)ZLH1P*Lyh
z%9d)i%Znj;0ghOq@&H)rvM3U@7XnCbBjCvS!DHQjbR&zxJA=Nw?c^4y007iK_0>$@
z!PrRA$-&&l^q1O>XlUE6u)h1OtM>|`pXCqd(x)rk@DcfwVhbfO^D@EMZQX|03@o;|
zl8AX<jqEcv%<)UpOAOClOdK<E|26=uUe=x@+{Kk|jAvhguHBWwp-QE0Hs8b5iGhy~
zxmZf7czAa>*UQs|=kZ8vK{TOgM7l@^&pMvxVQ;U(%T?c+_<VWlEq})%{qeK2No@T4
zy!2Fw_{P}e<|w!qO}cR_Wvb+*cm?U`Ozn(JFIN>YZM@)~T4TSD9qru6)<s^{vt=C)
zH#d``FeSD+%xqH{#${SNN4@HfS6gA_&0IyrDYHKeC_@MR>V`b$4zKrFi$2ckoo#EX
zUcuP6Xcua%l;o9ttU=?`gRz^DPz8QLT*q!Ki!)|aKPJ4azVH39^~pFFyR5X5YI?6o
zY*u3z{OnzwdhPkC*}W$ZXr4`Mep$SkN;MMJnOVuuOt?g^C>s@FNinN(nQ^XgS*iJV
zP#6}`s8JQlHGYGkd{z$KSl3fel2|mJ#PhkbbvG-%#K61QLxuF_`SOcE+F~uVVymYk
z5uYG(qpeem9L6S@0j3=jD-wCiTj)pfRBfxxdeI{sY=piCr!qyVh*=K~bhJxTLksRs
zSFM5qqUpM&iHz>Av94B;s)4s^MH;y($gLJIA1dmWDkrVud8;d?H}lORJE5)QJ%x9n
zv=v~b%vl&^6g&;CBns;W=bhF$O4YNAv7)!pSfgi25Td)U=tMQMQrha{rR0VwBub9z
zIGZu|bHG7o#0m$<EN(1e&g5}uj!9aaXe1ggm=s}dvaE$fiGrg6bI<@_Yv4ra*kYVy
zIWkvCMB)JtQfo&zVa!=pO*#|72-^V;9Kx%)`(C5%Yr;sAIx9ta%g4zAIB#&4xdFGL
zl(qz(f{l|JLx%RMq_?=8C<6RLt|;09DLI2)v|(_o&6@>}m((MK*2z~&M>Y;Mu)<3I
z=91WT%$64%!_n&e9{MTOY+3=dxW1~8@jY5@8D+ZW;rvCOr!z$n+LV2?B@9NV<YO_|
z5yqENDstNCvMji|0piC;+t+uDKoj&+W-<u#pcGzEJ%e(~!1{S@5l#1t8Fu7U>a_9v
zg)P0y&}YJ!-PTR&DagE&Uul<eyhv1cV=56-)d)$Y+dk?*+eKjj=Rxp4UVZNCF^FJf
z)5=qd_UvG^oS-}ap3TdVj={gykS|Yd7R}@8K3-$aeI_^5jNxcfjmu9X<u`?<LpJRl
zo$7;qz0~u@_x=vrV#i;m0!<GhwC-Wo*y{JBC5XdisXa(OBRCLbsGT#^tl|U>YX+#n
z$GnKn(8}OtI(gTmxqzbMv$ErkaLL9DM!-%ln@`CfZ1FBb(uaX_y0P1z8y%lWRp?QR
zB043Hl=uP!5Q_@+QZ6r9r$O{me5=gZa}0drJMxW=LK?@n1QJv$qU9nIei|_OG>m|X
z<R`TvL+s$%cy~v-&k9#BaQox<y%A+%xuXM{6Ii{`OJ_z`^NioqRrz!c#IXJIB(a%)
znlLz$;$bO6O}y}vd8gf`p*gFW!hm)-a<I|j?vvi@+1<`CTRWVQ?gyh4KUn;gQ(z&%
ze1_y>dttGtOp*_jj=pI*B#8RxB4m7)Po~-DOz*{y<g!AV78##6PN8M<3FNOOl*?JN
z!mpM|7d=CH)MJ}i+QX#}hGhatoUR9DCTPGl(@x(fa6xbk&}yNSffMFjn+k$%*cn4b
z0&y4aI-Q<|oXAf_Cv&r5FW~tc58o?;R&V2gST7foax_`4tT6)z>uV?+*VON9WKCvc
zct7<hF;}S#DF&=fxZ5)wSM7Vl+j%^~Iw1gdT+ps`+{Awn+7S&q`No;EO2l_6K+H1O
zY&qlYf?A%-H%%D1d{Nesp;-L#nV|%7(@@L7m!POY*)XB5ROMTshdF_yivQI>W!M6j
zG8%mnPoHq40z;(@39o1HrT0qiU5-vr1x<HzkF1ozrP&4k4kA|%#=Y!U)+4s>taP0)
z>AB!EqByVDN1)>mtTprpn^m|c_4t(=H0+SZ&^#+h8aDB;BRsMZqPu$Yur1!r%3|mr
zhU7g~VAenLTUbYB7Pgedu-y7}0FwfNvj@lx=t_MiBjCgaw~Ay+i}TZgW!M}fX(n))
z5ySubUZ~NBtNQXZ6sUh4ehLuSYAr(JeG~HChhr{4ti%XJ;LM>XyX5Q`&m_27@a~Jr
z@_}HdjW>7BP??AIHGe!!mhz9!<}hNcZBiI}K*78Plwz#TBwa|8xXno6o2uJ19YFB;
zlxfnyLtkdvP3;gr$=Eqc{tz&Qrr{loXV)px=nPu-dPI=)B0W9xY<zxhc+Fs63^<i+
zHKJIBz;XSme7a=WKiN~Y-#UQ{=YoS#LhIcl<w9=(RHbc1gNl>v`kwX6lz~286j`?$
zIj{Fe({Sp-=Am8j9%VB}6*}VSu;Kgpz{~7){~^X0G6JyBCCl?HWzH?|Pl9eJ6<^8O
zN%gZ-8D&i6b6hY%vSm7EjA14P&9_|8uMp!(C?|0QQbGD40tunS7?Zw`$Y(3iG%4zt
z?8w>XzI(TJL<Sa9*7um5t8Br#%TIa11FspElg?MA<pP;KglZ64%5LHz$e-0pBEAee
z5awA#Z%okd#EG?nuJ_%Ik)?8}c34@~t0iM07yKHzbFuKprv;I7lusiQ1+v7h?@m_H
z_cNzj&EaP3XbY!`Pz5DGMY!ys$F(Um1xg7Nl83jvqROycHg{ZGbE|o_6R^lpCf2l@
zoy#>T5Y@wrM0hpDzUzgMAuA!pm_>G2Nv|oCE%qN{e6MW8MKoP;Rd-VS_&{@O$qB&q
zp}wE8B$9!lh+|D;K}M$s0D1u+&Uf$my1&4*!CB`qH%fGM$eJd^M!Gn0-hR1~a6+g>
z+)>q^@FmQkZv$@YA`nH9FUhmDN9B@5f)u&%gMXf2%G1@lilnDd#^6`kfy=RyQ9t3v
zSJ{&}nfv11Q0VZ3M5qfzkvt(s;AEBFZ@?-7kx}l-C3a=M>VA|Tt2GD7uW`Db@tx~Y
zokFdm77kATX{zr)IgH)BD2Nmm-$br9Y=Ae5G+D63!##r%mSn0FnJ~O-{hYqRs~SRh
zsR$y;OEx;*!VDG`5(@ZMNlJc^4e(L%2p<^3u?m8tyv1moLS@D-oj=6Y6Qydf`}fKP
zN3AXXX%p}uW6bvG_xy5ToXe4A?sUgN#1fq>)*lH7BhS`7?ruTbI%geFrx7g4O`X?M
z4D`>>Nw3O!^FD_RSYds5*GX9nUXJG^8pcFl?9k@<saEhPMHELq;4=f>ij0yVI~@it
zO6!F!nr*Hki0t%}m9Zq$_hZM=A@hFu;X_!`5z>`xq?srqKIuUn93?mqJdtT8BI^Sd
z@KPwGq3i08Nk*%L5GhD3+Bh&5h8Ut~M;s0odujl|!LtK+wIJ7`Ku{)xi?BitQN1~|
z-Xx29(!SICgxjVP#vFB46?j>kD)bRktYWEsKKs|B6Ds>BH&4F(B=C(NT-upluiLU$
z?vT0OE7eBot<(4BM4Jj0^w@-yf|B~o5`aqYN@OZ6CMY{fsdn%h)^Ea2Sdk2KiJ4vK
zS~>yJ$Ch>1LrEc?(jZR*T63C6sWI(ct}?~es|F-z;1!QU-z8chq{n<Rrn_58IN<U6
z>|eaCURiNWS2!o~n|ip?+Jd%iZP%Ly$utnabE5dpCcCn9yFoskUGO7}5)A9L2qPXQ
z!N(R)`_LA=!Ug7xbQJVU$?#BQzBsX>G6!ec5p)z4?c0GxTB?5lU&Rb!l_Gc<^Xm@D
ze-S>O8Nm+9#l#VpaeO&CKOb-FJgh%mh?G*>(8~D;QOJ*n2-?5qtY*#r1DbtWIxAzq
zN`Jk8#G*WbnQQl+Zjzpt5(5i$RJ&mycJavCj%S-X;*+!ww>~&puFdI*>|WNY{4&ZY
zo?;if(N_ZBsAKcc+H*%V{Pt~BCR%2Mks;oxjt%P3kQX^=#>i>+hTIEGV-J0Qp=BLi
zxqi|g``ZBFkhFJ=q!Uq6$YPY_2!54BWL*H>jq>NJL1Ls)(R;iGdOu4F*VUr9yO5f1
zMwp@Mz?!tQS_IM1So<U|I_;-gwH`4*?DMx*+7zBIINxd<ZDBaf+xcq9@TE)ldO(}q
z@_ZuG?K-s#@#Jj1Y`zbEAzZo4j0qDUULnJm;@g&U*F}G|A#SC){raI1qT%?lo|ro(
z$wKq{ZZW2&WO|-Ff|FKo710lf7dt<+{%VF8;fwcoEFg-4M}0De&DpR)2JGPu%^liL
zf;GtCrXBCs+7`bXj9-2K907{(7<8Pv0`b)*+N$@*r;&&Q7ut8NFD5JN&(BHyk1dfu
zTD>4gzMF<t4eU7jcM@L`zCdcsxEKocV6Sf*lU;K*|G-WIF&JR>?B)w|`GB9LcYwZi
z*bnz(56B~C{OiGX<jX{`Y1T_CJetcHALpTwp#?t|E_!d#4hhg&2{iu49$sfRX;VEe
z%U<bi1o{c{=Sl_~ivV*%Ebai3Bm%AKhnmU@WlqiHJbc?JbR61gj>v2jp6>o56u&c^
zR805N>C%tgj0XEpJpR}zuw#y{zB`LkS}QjYZJCBx(EK+IN$Zbn9vN)oy*1;4`$VKZ
zWt=s)Rv*8$>}_#PEfNF?HiO_Y3*Zf5JSh0>g>g%!ZP(EAR)B{#v%gxMZ&k(zcc;;(
zN*TZ4z_&bf<Mw4Hz&(9L=UsSj7nT!yIzWbFeKlBKYNmrOv%6Yg9kizT(B~%_b;^Yo
z5$FXYo&tuu`q2*?>}3j~-&jyBZ@gCA#Z&kN^+A^)(`zh_m+yHy_Td$Sn2&V721t|*
zm2k9Cf<8^a++Ks1&@GE>J{v-3+LU;{eOXsieL!8o^afV9DMCmR+1>f^<>ql<lpVyV
z>Xg}rj;z-*44yvV8wP10B#s9qx~83nwT1gUGJXRdPo>v9X8TCnJ^nxLT0!dDLR8-J
zBKB`FD5SUYOe0%EIR{%iM><1W2jicSrnh?i|5jzbO<h=wu4FeoYVSH&htQyVs`Je_
ztTn_DI0!`7d-!z&hX%A%W|GPB^|jhni$LBVN$xV99Q!dw&WK;{z?M+srQ}h+41f&2
z*BQ_b(Yf^J6UnGja?nsgR+#Y?s5!nQ(hsSW=&mV8HPiIIz!AslQVO}9d+%GN?~XVF
zI!2h@SXP@ghkFB0HN<-We@+5xTM3Zls6%bw*M$>y5_VuEm@S~?0+?b*AQF^y$|G*#
zSAfxsWTJB#@1Xiy$9;DS<1%ra3-x={3+Ysw|0vh54V%c<l{!1!Tylh7y^01BN1BF|
z@3SOfYV9?PGXxqLZ~`o8aXfV5rU~e<t-i5n(%5s1Y<HYUIR%T~7-e(y^>WAUD4FI1
zUU38x*WJ%+?L&yX2R4qibJ+cmjW6Qr@}W!90k@-0e(bct=h259{DF<3o$$g*m>Z~?
z_U@j1u>Dse{r3W`rm38OthYN-Z(&cwzYC+jo!x(B@l6Q-JknyNWwC$uPW&uTTMtH8
z$bNr`MM$wFHzNk6Rnp0oT4#4$#-mR9e3QP4rVo<lmP*%g<<d8&`dEgJn}2LTv3p+{
z1?(3d50k3ETYfgyE*T9a2*wLey$e*+%Bb6MU>rh2=8yy?`9*6epirA4-r7%dfJp{o
zY=*(wXF(bp?fa5?Yq)bmFaJ>v1ufbsl#u_dx;tuI?p99jD_U93$^GT@!vtgH<h=Fw
zbg(VW6bMtrkt(taz#Lde6B6I;yEc_+#?dsY+LoOIJ?OIhavk+^mu?y<INn?pTcFR8
z6Op!1w8pty8ct@EWYMd-cpLtx<55)*RK^g40tDd4!=k2@pHnH5xmGyNT)WVqZOlG}
z4fq>6&=;8I*FT!<2?1dj__uw7><Lz!sUx<zEzuFoksa7qy!6rE!Lx65mx+S!u!e1w
zOYy~vMtQks&ajqB;#;xCz*cPEemLxs^t774cn7Jw?}ar}0*<WGTD|QV0rYu1SGFC!
z$(+Ed(yi=1>0o_y`Ul6z{cdRz`V%4<L)lup&;37Ez~^-iq<njm>LsvWjf;O<Vm~@M
z*;@Zsu>U3206=Y=WawL!o&TNx3q)>PUkvqNf;giT9tcP}V^nRZjjv7yhQXkk#FE^@
zddW4K!a*PD@G#nkbsn6tofpZ5@d#(gvQLWMXNUu((`&V-AE9}z@btl|5x+7yoTaDx
z#=>oQ-rkPx7@xP{8dwS?kZ2|OYKMJJ-xoNuBJbALXsI=Snix##+hn<up0;SYewa{4
zcl1RZzabP}?|g~G`B9{bzpW;|eUnV<v6A-ig)8+5na@}nU6Tn+H_@s}i?N45Js7M9
zay*+t7)stBF*&w3*G26!h`N`j6#t%4qKuagU)x*y*7!~{td24)D@yV`0gIMEHWe6l
zr;-SXvS8H7ka%4K*|S&JP5Ud(7JX=Ur_ALr_n=qJGr2KCf`j$8f~dQQIAZo7TF?b}
zaI+qZai)!+biV@Ma^uzfT)9`C6FnP{v7x|v!GV@*%QwuCy}$`hY(ZzphF}nU+(6c)
z0!u?z<@cnd0bgn1@)8`?(mxD^3PP(849!YQ(e>k9WEmFMbd2eRPko_;=jZ~<BN5S3
z&i{gpp2jd1G<QH|ng@=nN&s_aa5U(OJx=OO8SZ7Um#C2O`F{l;2$<$A`u)#6yMMjs
zKYsl~2d|vuzXSYxBjMixO5be6-`Wa)C;Yvg>Mzpuw^EPanyY>%{`a1hzeoXq2B=@e
z|3?SQ?>N7AF8qab|JLd7ClmkC$M8GK?`6w>p$H=WBg(HL=HF3%uO|Bo<>K8xqWr2Y
z`yJ)?TA9C4)Uke{{9ZZpJHYQ*&A$N734Q_mmE-)K^!EhIU!+-Y1>HZ>qrazHen<Fs
zXZJ6906>Ka0Qe8r_jmGtcTfIKzRmJC@;{xG->LuI4E&wCiT!WXhW~36<Rrn~MD=I#
P7Y-o(ChgT+Kd=4=Xf#&-

literal 0
HcmV?d00001

diff --git a/tools/sama/sama-crfr-1.0.yaml b/tools/sama/sama-crfr-1.0.yaml
new file mode 100644
index 000000000..1405366cd
--- /dev/null
+++ b/tools/sama/sama-crfr-1.0.yaml
@@ -0,0 +1,443 @@
+urn: urn:intuitem:risk:library:sama-crfr-1.0
+locale: en
+ref_id: SAMA-CRFR-1.0
+name: 'SAMA Cyber Resilience Fundamental Requirements '
+description: 'SAMA Cyber Resilience Fundamental Requirements '
+copyright: All texts, layouts, designs and other elements of any nature in this document
+  are subject to copyright law.
+version: 1
+provider: SAMA
+packager: intuitem
+objects:
+  framework:
+    urn: urn:intuitem:risk:framework:sama-crfr-1.0
+    ref_id: SAMA-CRFR-1.0
+    name: 'SAMA Cyber Resilience Fundamental Requirements '
+    description: 'SAMA Cyber Resilience Fundamental Requirements '
+    min_score: 1
+    max_score: 5
+    scores_definition:
+    - score: 1
+      name: Initial
+      description: 'No Process documentation or not formally approved by management.
+
+        Standard process does not exist.'
+    - score: 2
+      name: Repeatable
+      description: 'Formally approved Process documentation exists but not reviewed
+        in the previous 2 years.
+
+        Ad-hoc process exists and is done informally.'
+    - score: 3
+      name: Defined
+      description: 'Formally approved Process documentation exists, and exceptions
+        are documented and approved. Documented & approved exceptions < 5% of the
+        time.
+
+        Formal process exists and is implemented. Evidence available for most activities.
+        Less than 10% process exceptions.'
+    - score: 4
+      name: Managed
+      description: 'Formally approved Process documentation exists, and exceptions
+        are documented and approved. Documented & approved exceptions < 3% of the
+        time.
+
+        Formal process exists and is implemented. Evidence available for all activities.
+        Detailed metrics of the process are captured and reported.
+
+        Minimal target for metrics has been established. Less than 5% of process exceptions.'
+    - score: 5
+      name: Optimizing
+      description: 'Formally approved Process documentation exists, and exceptions
+        are documented and approved. Documented & approved exceptions < 0,5% of the
+        time.
+
+        Formal process exists and is implemented. Evidence available for all activities.
+        Detailed metrics of the process are captured and reported.
+
+        Minimal target for metrics has been established and continually improving.
+        Less than 1% of process exceptions.'
+    requirement_nodes:
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node2
+      assessable: false
+      depth: 1
+      name: 3.1 Cyber Security Leadership and Governance
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.1
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node2
+      ref_id: 3.1.1
+      description: Entities should develop a robust Cyber Security Governance structure
+        that is supported with appropriate resources to oversee and control overall
+        approach to cyber security
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.2
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node2
+      ref_id: 3.1.2
+      description: Entities should define, approve, implement and communicate cyber
+        security policies and procedures that is supported by detailed security standards
+        (e.g. password standard, firewall standard).
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.3
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node2
+      ref_id: 3.1.3
+      description: Entities should periodically review and update cyber security policies,
+        procedures and standards taking into consideration the evolving cyber threat
+        landscape
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.4
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node2
+      ref_id: 3.1.4
+      description: 'Entities should incorporate cyber security requirements in their
+        new and/or existing business operating model, including at least:
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.4---a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.4
+      ref_id: 3.1.4 - a
+      description: a. evaluation of cyber security and fraud risks that could target
+        business operating model; and
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.4---b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.4
+      ref_id: 3.1.4 - b
+      description: b. adoption and evaluation of cyber security measures for the protection
+        against adversarial attacks (e.g. model stealing, malicious inputs, and poisoning
+        attack).
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.5
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node2
+      ref_id: 3.1.5
+      description: "Entities should establish and implement strong password policy\
+        \ for users\u2019 access to its information assets, such as:"
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.5---a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.5
+      ref_id: 3.1.5 - a
+      description: a. change of password upon first logon, minimum password length
+        and history and password complexity;
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.5---b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.5
+      ref_id: 3.1.5 - b
+      description: b. revoking the access after the three successive incorrect passwords;
+        and
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.5---c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.5
+      ref_id: 3.1.5 - c
+      description: c. use non-caching techniques
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.1.6
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node2
+      ref_id: 3.1.6
+      description: Entities should execute comprehensive IT and cyber security risk
+        assessments covering (infrastructure, network, applications, and systems)
+        and the controls implemented to address the identified risks. The identified
+        risks should be documented in a central register, and periodically monitored
+        and reviewed
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      assessable: false
+      depth: 1
+      name: 3.2 Cyber Security Operations and Technology
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.1
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.1
+      description: Entities should establish identity and access management process
+        to govern the logical accesses to the information assets according to need-to-have
+        and need-to-know principles
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.2
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.2
+      description: Entities should establish change management process to ensure that
+        changes to the entities information assets are classified, tested and approved
+        before their deployment into production environments. The change management
+        process should also include cyber security requirements for controlling changes
+        to information assets
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.3
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.3
+      description: 'Entities should establish and maintain a secure network architecture
+        that address taking into consideration the following:'
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.3---a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.3
+      ref_id: 3.2.3 - a
+      description: 'a. segmentation of networks, according to the functionality of
+        services and the adoption of network security systems (e.g. firewalls) to
+        control the network traffic between segments; and
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.3---b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.3
+      ref_id: 3.2.3 - b
+      description: b. availability.
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.4
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.4
+      description: Entities should adopt secure and robust cryptography algorithms
+        and ensure that the application and server communications are encrypted using
+        secure protocols
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.5
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.5
+      description: Entities should periodically conduct comprehensive vulnerability
+        assessment (VA) covering both the application and infrastructure layers of
+        the Entities technology landscape.
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.6
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.6
+      description: Entities should conduct penetration testing (PT) twice a year as
+        a minimum or after major/ critical change to comprehensively evaluate its
+        cyber security defense capability
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.7
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.7
+      description: Entities should ensure up-to-date and relevant patches are tested,
+        applied and installed in a timely manner to avoid security breaches due to
+        existing vulnerabilities in the applications and infrastructure.
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.8
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.8
+      description: "In addition to secure System Development Life Cycle (herein \u201C\
+        Secure SDLC\u201D) process entities should implement shielding techniques\
+        \ (such as but not limited to code obfuscation, white box cryptography and\
+        \ anti-tampering) in the application design"
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.9
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.9
+      description: Entities should implement effective brand protection controls to
+        detect and defend against targeted attacks by continuously monitoring the
+        online services such as apps, social media accounts and websites and proactively
+        takedown malicious activities
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.10
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.10
+      description: 'Entities should ensure that endpoints (both personal, if allowed,
+        and corporate) are secured through implementation of a minimum set of cyber
+        security requirements such as the following, but not limited to:'
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.10---a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.10
+      ref_id: 3.2.10 - a
+      description: 'a. the real time protection for the endpoints (e.g. antivirus
+        and antimalware);
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.10---b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.10
+      ref_id: 3.2.10 - b
+      description: 'b. implementation of behavioral-based and/or signature-based solutions;
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.10---c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.10
+      ref_id: 3.2.10 - c
+      description: 'c. ensuring anti-malware signatures are up-to-date and the systems
+        are regularly scanned for malicious files or anomalous activities; and
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.10---d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.10
+      ref_id: 3.2.10 - d
+      description: 'd. in case of mobile devices:
+
+        i. separation and encryption of entities data; and
+
+        ii. secure wiping of stored entities data in cases of device loss, theft or
+        decommissioning in alignment with the Secure Information Asset Disposal process.'
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.11
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.11
+      description: Entities should establish and implement a process to collect, process,
+        review and retain security logs to facilitate continuous security monitoring.
+        These logs should provide sufficient details and should be retained securely
+        for a period of one year as a minimum.
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.12
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.12
+      description: Entities should ensure applications and infrastructure components
+        are integrated with a security information and event management (SIEM) solution
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.13
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.13
+      description: Entities should ensure continuous security monitoring and analysis
+        of cyber security events to promptly detect and respond to cyber security
+        incidents
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.14
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.14
+      description: Entities should develop Cyber Security Incident Management process
+        to timely identify, respond and contain cyber security incidents impacting
+        the Entities information assets
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.15
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.15
+      description: Entities should implement session timeout configurations with reasonable
+        timeframe; in-active sessions should not exceed 5 minutes for applications
+        and underlying infrastructure
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.16
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node14
+      ref_id: 3.2.16
+      description: 'Entities should immediately inform SAMA (F.S.Cybersecurity@SAMA.GOV.SA)
+        in case any of the following incidents classified as medium or above has occurred
+        and identified for:
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.16---a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.16
+      ref_id: 3.2.16 - a
+      description: 'a. Cyber security;
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.16---b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.16
+      ref_id: 3.2.16 - b
+      description: b. Fraud;
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.16---c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.2.16
+      ref_id: 3.2.16 - c
+      description: c. All disruptive incidents
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node40
+      assessable: false
+      depth: 1
+      name: 3.3 Resilience
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.1
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node40
+      ref_id: 3.3.1
+      description: The Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP)
+        should be defined, approved, communicated, implemented and periodically reviewed
+        to enable the entities to continue delivering its critical services, at an
+        acceptable pre-defined level
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2
+      assessable: true
+      depth: 2
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:node40
+      ref_id: 3.3.2
+      description: 'Entities should define and implement its backup and restoration
+        requirements considering the following, but not limited to:'
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2---a
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2
+      ref_id: 3.3.2 - a
+      description: 'a. legal and regulatory requirements;
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2---b
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2
+      ref_id: 3.3.2 - b
+      description: 'b. Critical and customer data;
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2---c
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2
+      ref_id: 3.3.2 - c
+      description: 'c. business requirements;
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2---d
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2
+      ref_id: 3.3.2 - d
+      description: 'd. schedule of the backup (daily, weekly, monthly, etc.);
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2---e
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2
+      ref_id: 3.3.2 - e
+      description: 'e. protection of confidential data stored in back up media through
+        applying encryption techniques;
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2---f
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2
+      ref_id: 3.3.2 - f
+      description: 'f. storage of backup media offline or at an offsite location;
+        and
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2---g
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2
+      ref_id: 3.3.2 - g
+      description: 'g. secure destruction of backup data.
+
+        '
+    - urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2---h
+      assessable: true
+      depth: 3
+      parent_urn: urn:intuitem:risk:req_node:sama-crfr-1.0:3.3.2
+      ref_id: 3.3.2 - h
+      description: h. restoration tests.
diff --git a/tools/sama/sama-csf-1.0.xlsx b/tools/sama/sama-csf-1.0.xlsx
new file mode 100644
index 0000000000000000000000000000000000000000..35c8a32ef6be0ebe06703d47c71bf6fb750a477f
GIT binary patch
literal 32982
zcmeFXb97{Hw=Np1<D|omZQHhO+qP}1lXQ%ZZKq?~wr$<&-}mi%_C0%_anJwf)EHGY
z)~vPWns}Z$-&*gKmjVSt1%d#A0s;ae0NSQ#)^P#`0>Xg+0zv_T0?`t(vvoGHb=Fh%
zus3nip>?;h#?J=>A<qQ@0i6GTU;hV3U_4pJs*fHu^a}C~fuy-0h7-d`y>of!fOP!B
zzk;K&*E<0v`|~YZ6vxOplH8gN&c<=`=|tideu%1|o&-#JGPOeQULB&zQE^3MWV2ZA
zg=UN%hAPArO|l8XcyH!lz`pI#A5%q(S_7q^d+$d%M08J|M-8)5yS{MY68)a8vJ(R+
z@9~4J`++qW_T92&&CE5hW$iSBm-fsNoCHt|b^8{zb*Ch0$5I(`g80kqC?4(0VqWfO
z0|fTLO(Z?Wm9x2-FWd5Br@U2QV!VuS_*5Svgr3FcPT%`Rt4FO~VbJVCV;O&&r9mku
z_$!d0At+)D?W{UR-g&H7oS$YiH{1tPP{UVRaNIt|J4);s-)^|`XF$o(iB_U9yfx5Z
zBLw#ogLHma7B&)p*C4-ygRB45>Kpqpu1w&acm(qHGwnHHLFFV5v_Lpamteu!tq+GH
zR`$B9`JHSa_hP%IzVo5+Ta0uVhujYDD;N;a*B2;|{QrlmD7sxHAONmz0jT&5z*Rj*
z6Kf|r+P|Owm!tm&6Z1d0UXdsx1<HUJdKLIZFy6_vMoBnpO($|JWBdWkkny3<mJwgr
z_VFYt;GEZl>zP&U_RAyV!L+Wxy#Ue66**M|Ixx$0u3fcH>Z7Fv5-G`1H0E5qFM!ax
z?5zBODTeYOZ~1{YvSK$sn3m+rAHzjVbs&(ZRojAHJ;f12^Ij66j6^%-04H<{OMZfR
zU{V~4%Lz1}_qpSxgOyFD+G5PpZls8aD!y2FGG603ens%~jwN3;uZXy}#&`52eDsab
z2o#r0^CRc@%4$YYQIsU)CusKJ%Q-uELr0;A6N=w@hN$-ueFq~#iMlP_Nd6N;EsxQp
z+7uh|<YwI~APWDLGH&iDL8Ab=Bm>$T0^kgHYdSYOM=L`+JFCB~tx#pnc9$N}N6+Gm
z;MVIjT`Dp^w2Z%8WK}0`Ll>8755th9Noj2-zwE1PFIb+OZi5ws>k)Ry%ycq6YAl92
z@H?BTc?zK;TAn{uF;iYDMO%9(G$eUVY*{p#<_)S%t4Lb^)fVmID)&UAFANa>3hKdR
z3iM#=fwrPou~b!0-L$A8q*VQ%Cgv<t)}!?i5Vw5t!9<u4tl&T1U_x|gfj1GRDf^==
z_@U_Yz&@E#vrXoSK47wncgiUQb9G?ht>nRLi@D_S)ETrXtj@ap%h<CBtPs2m-V$I!
zB|Om5WMUG%(M_H^lR#K(g>t)ONTmDZ;F)tjykUQb!RbNk_481n_$8`z3`K7Bh~Jwq
zgUpsSCi36%Ml5bQo#pNf2%^4sCD`(h-Lj>0DT2emSZ=tG{+Lp9hL`F*6vHm26iXrR
zk=%|z#JxP=W~%XD)%zZcErNq*b--`Qb*h)562mje63+hIpF?H9eh)7W)fbRZ7d&|p
z-Ns!ioj~YqM!+k5gvq9E%hc5;*a}0Kgwf^*trMA1!&$fpvsFB4rJ*`{wrruJZvDIP
znZNwLf#FlAGWo^WKwKV0`0kTe12IZMQ)Ds=dfSKd1zP1rN==?fUa-k(=Qo|;lLA9h
z{1CdM>|m0+J&tb7U;+K*{p-%Lw_snU?v*z^u8iR<Ubi4Uscd?2%9z{1(=^4YK&6~?
z_i=G!Jo#_oN6|f!Ri3<@Ex5{y1;}%{Hm}~LM;UToOl#cW(R(cTa8AVeCY{i10k*&x
z7aL#1j4`G8IEbK+O$6Fh4*N|G#lt_5TeBR-{g5*^(n`*M>}Tma0?6+Bk%YYYYr6~s
zEO{WyY@-Cn;aJwh7KbruUHlN<&ih47k^Ry$O#eW7Ju~&^AZWiqR%Jg`rCK1~1-L!+
zv}=tOlMI^onvz~8naQ)^+kVN1e*L$w--P}k|Jy0%L4km<fS`Z@u>V)H_|M?~kH!HE
zSlj{5{XhHFku+u5PY*kI71S9t<KvKMYm&^_87)w)^#nw!usi*SHT99qjxR~5jemqT
z4?T$Z-G^_w<YTAg>JK`EWwuH@2?bO`QMu+C`7?VbFLx0BV$*DPeW^Zwppb)KvtPfg
z)4Oo-195&N33%wrRbk<*el>*yu1(fF?fp+9Oso?Zk43mqZkcAr_XU5$Vv5+5K>G?-
zeA%G5$uFz+Hd`rghXb>?)N1u%JM>9oM2^VQX?&`5P2!;u(uhC!)&2Wyp(APfb=dvJ
zQuJ#q2E)hx3tVC8f^8L+i@Jdxn%_giXhVHrU}GK<KlXk;{*Z&FyELL0a$60{+AzHN
z_TLpwgJ;JyB)}?!5)KFm0|1SG7fvU06BB1Ax_`bH{#MYeq&3?DdO*WbTXn1P#_Qp?
z2ofwK2DiCV_3ChqhE}y6U!Am2^LfHaBK?i}JCZVB2;=z^bLwhjPgkPhU=U{Gdpa1B
zXopc7+D2IqpPzC8WOPM=j!e;|djP`v?$F7RTv9fx)tciaA|j{O_F^k9g3y>|RVkeF
z6qoy)c|mEASUrr59eZV1PBQEs`KX|XNLXC(`g-5A3=xLktaX9=Q7mFViA#L9jfkBb
z^MGwHh2>(V@1KTK;96A0mVTfC@!EHf1q-1x<kQWhWX1+I`vH40vJ8U{NeO7vhJ~1K
z{y%V?x@i4=#0rg07M{J@^~EzYdsBIX(v?0NQ6#i8QFZksBJ|ZUjoYP-u;tTUcfU1I
z&sl!b|1`OKDUF`9X3mK*ARj9uG(ja<*aep(YxIYID~sQe2{0qpi}(5=OBNL13*A+3
zcX(XAc*<4KrRE?=fBUIz+4+da8)OS6K1O1;Nf9o%d<&jd*W(0ovceY>nG+=JzUa=y
zccKzh(v8(nm`d01PGh;$w-ZpWbQfw{_*U$u*P`ACuX>g1YWJ&ym)l{ir!ig{(F?Pf
zgx)|{@_7!jxZsW8GIp39CXqN685z`Mq_R9%%<vEEqJ;~xuL%ytbV~rpO^P5Cw0Np$
zMv1x`#^bRLg!OQbzq{cd^gnMA!9prufTHpBulkdms$&~Oj~HAX=<Oc}4U7V;=t~<&
zu9!1RnOoTD<4R!Ci5=fzCxJ0BwED}TY^VHcNQ$dT#^uddxOr6_1&;5+#a}KgJHppy
z(KT$UTZ+&5!=*yzHsNRSsk|o`%{ybylULG#$@i^H%1d22xnt$b`K9D`5fo6nfIxDL
zQP?P9{u$`JXGvEa2qo}-ekl|*WA+I@K{5t|geoB>aMT9e<W%d>{3Pu~Yn(PUet|QA
z5qrR4@Zs6CHZXW4<VIAda0$P8o`2wC&@Ad*;juDy*VVvlq3quuT?`eS6CopZ|KuxD
z=H`-=CMgJz0lQ!))J6nG8X`yqq@%mvCay_pO@%g=u^PJU8{3jr_iU@n5acaqs)?H2
z!f+3&&dHEJwlMM}sgbKG$)!FdB?0#hNrBI0?7fv)kdBp&C}8Lvopfi`+%``p6em+#
zk&x9##%(zgU3M`&kvFFbC~2iWEWTMy3=C9jIT&QOic!qr&TR#d0f_nU3~)ya!1VFM
zic}*z0#SvBPoIodmjBY9cP3TOj4y`a=~OaU|9Il<P&LZ8YWOn;O9Y2&-_1pUQKH=(
z^?8o8Lwb2zmQ2Ar%*u%mOQ@T7vRb*8L<fVFQgM_5@(bxtI%(V_Be*g{^Kfi@lwQ$~
zJ&{&aq)p?=C%!b}J0!2kjNx{=e{A`m|FR%&U}B<R0RgSF|1Zl3<G;&D<l5gd^34Y_
z@9o(dC5%|giC*Ve<mA!5a(GYuPo1^|hxJ&O*U%^u2nqFaD)o)uU7RViFXwRRIX`yZ
zDl}ZDKeBl%rAYg)X}qnd-gsmq4XrxSM*6&J{o}d&y|5eIlbGMY)B=K5qzz3?*e_i>
zEaIlz3j$GGDYJ<h?+aF2&RFUv!gV(V_`}{K!cuX;3BJL3Ws>&l<XtJ#t3<*={nW2)
zjmP5|q%TD5Blo6ja4m^AgsS;Sj|&163EuY|wkf9N5O=)6(0lv2Hxbt{QwHm=I>Zz$
zs-h~3LUn%k-Z{RPN4$IJvp$~)27P~)YEXQDt4oi4Qv2@vBCBeivun;l&f=uvn)0)z
zyZg;EzSny&lILr14(}4<?Vsdh6bhtM9}QFthmBxo$4Ui!zpN+3Duez&jZIa+RrKR@
z#kp7N*<2rwFeyhj_t)wnCm>OE(aWuKGRIODvk)A?E872N=EGCKUQ&3qlcJdU>mj-f
zs2^+SxS!E>06zBBBb*|AYf^$w4E=Lp@Z#P2x4qAoO44^GdbJ5Ug;gw{oe#=9!?i(O
z^sr6(*g*E^*|9^m#xGby9j)Z;va>pcmo}jO+KZXr=nuFpmh||(5vU&z163xFY?pC2
z^dsLfw8C+Pp|`Ng_gBUu?B@+Tv(bi<SUYPU@WBv91njv55_^Qc5Jqc-Wn=eNy3<S~
z;vdNF{6eo{ck%uQ%9C|2VsTnyd{P4N^p7OV+VFb+@VlKuGLS;tQniOeCT%n$Xy{yy
z3EkRfenlS+6{#T0N$eVYJnrFbb${I)tl@3(emz!yeLm5By`GiaoTTA>-CgAH?d$oi
z@O|8N8@)Zg>3x3s>2-ZQf4uR1J)f0~`Ax{>_`T_<=qW$d#CLzicYnUT+^$vo`F>t3
zZOO$fl`_ch*(n(152lsY%I{gtFK@E=rhF~E`Puru^F5V)P4Mx(*$?!;`MGxU6<srx
z-!Pp$V?OzPX1cq7N`LyTU?E64Z*Ayo5Us`nt;hS;qP-pLK>R4&dzm&sHGcGVCyk(m
zvzG&HKx0Gym9lX+)6N=*qJy>00ynAoTwBk`>f9{qoG(?-UNoZ-wL|)>hR9n&!oA`}
z#645AvoUvFF>oz~6KtHqhqVJxbd?ZlMl*P6iVKxP1t)5!%}Jq}Y~jBv;gqb`{t9}<
z+D`|coOr;XNsm9uJ(w_LZWF3U^m=!NOEyARkT9XAoH6vAde+abnR$W^<DO+)6b*se
zQOX#114k|xy=V%d4@RLuTM$58onN6extH?l&RcU-))TQM5Ud~&2sIaBXY&}p+H=6W
zOmxQIUs@v&Y>~WZ%E|r-gL~w3vn%cjWT*^9(8nxl#grql>wfk2kK8aCCmG|rbU1y?
z%qsQM;mdb!+S`0qEcqMC(UbXR4!;Bm7A_9G6boEL16B<EddOvG!$;5ck=OdsS3>E6
z2G%h%s_Pc@=<Eu<@(Q}Y%Imp%f`&v8eO>FiDDO(L&3tM!aCa0W0fI+_vT>tvH$?q<
z?!F*rA}Bs=f52T<Zk6$_^6ZEa#$_kfOn5OoCLuF<I#@XwGFAVr)cI5^bHd<V?Ye~r
zo$j)ROT$l9Loe6@5E3ua2sUGoIBXAujBL2TzqhkP>M^~8ic<`{E(gUZlQu#%V2#zU
z_XrlF5O`h)_@;8maA*(A+AijvTvw0|uU!E{E1Vunlm+#|0*dQaXQ~QGtDF&M1dpy?
z|Hcxe_;0~bdO!H`x$i`7a%INkr=iN*H>BbztVeW%34eeDezpR}LO6X8iuK>elNB&#
z|J%nE8I?gyWztKHQ1uuygVmVHi7fRl_M#~s(HxWh6BGa20{8-94zB|>Kq$9{$L<$_
z0j>rm1Od$6!B~tKp|v^d38B0rcWMF3%-oX5PaatIk6OBbLwbM7dtc#ZOoim+@GE!h
zf|}Ddv3azogrjwHrS5e3n?kWvKnh#KtW9|8zKwP!J*Z?1lJ{8?_a0u>f0vYKTIJHv
z0~qVE2$|VFrAkh+VtHlk^Eb>Ic-EKyO8oyMP<`B7(E-4kVN1t<q95QOa_|;cm_mLQ
zLDH)`!iT_Q<kNpbg0?jWLsVV8#B#X|0OP2JHn^V^7~H(W8aJCj(P|2d^xnN;ukLu;
z8-<J&F2~x$=Px3G?<>;qi4IlS<CUY%j^Xs!t~D$DG5IJ-0o|^S&44J}t;4Y*<e)1^
z-tIOgwX0+dr61YWcszH6D<+~>XRlWR*vah{G|}?>=lBmXlP=eaR*FZm$0J0h!%a1c
ztn?;XRW`b>%Avv`-Mc;$?Po||#LDX>@t0M~yGVMKT?HSE6y$*Qg>&LpqvYp5B-uko
zLx@~CJvm3OTJZfBFVhXHn#Z8*Iixv2_=g(n_2f->>Fz#2mSL41?M0zkqz(@;@;hAY
z#ZoMi3C9PKtp~5mhayH!TmOnYk~uE@Cop^;*cmi<n&EE&!DJM}t-<WC#w8;yKU(a?
z{cGGZC~LoU$<|>J3d(t_OU*x*J^D}3yXcxFFCNfWOSO1%E<2Uihy|aV*0LIfE(94i
z{fERN8HhIT9$Fh-_09S02U~<=6M_=n6^cRnE2+07&U=f>GeMs-x4s>NPbGBA`h>kf
z^1p@5l0Z;Omo8O6h?$(!)R>psL!EsHNTv#b6ZGJEb_$#fRMxiJLuVgwgzpN)?<?ap
zO8dckGrj&^A;5&vL!ehhA0xCa>nkuVZuI;q7Ovk7u!<Tnix1DdEy+ne&Nf?_5D%z{
zO5@B#^+R-?WN`rn1J?r=P%tW3Q0E#KNA{j5<D%$&EaQiSJ}_H;L}_EMb9q6j92#X@
z5%ib_!!V=PBR6<Kf+}Z-Ni4(Hgwcar9>MT4jA`M(wy0s?_uWSbC9)0ZnI)5(c0|KN
za8tq}8laH?lJfb0R)mri)hlL(kT-fC5k((^3}kqhfvF9zlmY&HbG#k)mtF5bnYAyk
zGN_rW)X{YTc-3)PFl2tL86ISB{$gf$xuf3Pw?04sN`CZ3jBxrmUkm+BrLX_Q@`pqQ
zN>Wmt7$hISvWz{*<!Jf%!#`jTc-cPw<YuMSyuV8A$|mj6+~~Iz4E&+yqJiH0<<Svn
z-BdBYj<p5C9XWC1huj8vTb+?xvnbJ-go{?<a~E(=uRF6GFF04cwac8VX1SHckG=HA
z{FiE(y2gu=W)Dz1eyH@BgO)qM6=IT^HDpMURU^zyl4gExRCH188R>BT)|uQGa~MhD
z(!AJ-SscT(x}6=l5^A(KRkq+=+onFkBKO;N(Z)Qvnw7W}YK)SHo`I_vT*$G@U2-V0
zYN=PkNV6=@o%L1*hOSCrj&kG#=9DLR!a68LUd2|AvD%)@Ur%P@M013s8w`ox+P^Y|
z+fwg4cK8*LfByD;m`Caps@D?Xji=Eow5=X4XMN83c%?@<HjnX^3177IklWC`D{Xz)
z>*x9bGnPzgldO;4w!OQ@SM7(aUq#AY$XM2)_cl9%5>aGQeZPcn!dkv1PImG^PZmTu
z&w0npneDMW?Y!z_wZ%mA60GVT8uIU?df~G5-8eS4->nnT>#(Xs%E_bIn8dKFez_@k
zR*_75>_H1H1EgT_cQQpqnLw3UdQ91v3z!w56ldJfE3%WiMV#Jd8mbEd36e_0;N=Fh
zBUAFg4AL7Uv6fK`G|gcu5cpXZ4OmY#6+LJ42WhnPla;;fzh^#I`M+%A?<XI1CHX&}
zv1p;E9Wyid1Z!6NEpk>hh)t@~X|NjBvs2^Z8@hqYk;>#|&RXg_)uP~Np2|&1jpKk-
ziBR+Mmu~c{6=@Xj@hi+f+B0k_P+c0rXTn&wNW!a`4e(z$vR3n#Hl{5$D6I)ZCE`-s
z&5$Ya1<55<xVXxk4H^&&j3venSfIbt!s9YD=Vf&=I=9SL3pLC&^X78LL5|tb%-)e}
zOi{|1VXI&4+~ag!o<Hl*rgK@e5c8E+b1U-)%L{n^xn3vXR<~7xza2s<*yl$O3|#Ey
zBm0DPDb$^G)QW=Uk)&*pyi;goXA)wd@XSVU!m&ikKQL_<giSci(=5lNl$<&1h!48W
zQ$895BbO_JVtRd!d1_^+>!P0=vw$$akeBqm#|N|cXwNR+X;~aOsXJZgi%x>Z*?jfq
z<<a2dZxy!V>ATgAK>QWA<^Bsa7@LpGOwHGEW)r4y-3W2>?go2m1r6H=IKy*RR*&ZP
zj(i2+(GtD-#B@4zr>xRbq#YX#{5`qEH06X)qdSvO64pJZ%uV^X#t=3VbkA^Rgzwj+
zkL+O8bILt!@>~xx1%<-p{|K8n!K#y3xy}&_^dRJO`)l_{GU3S#^;wLDgviWFU}-EH
zlP#2|$pKWTT!@ZA=sjZwueAkfxGpAEM*#Q^vKdS%*U04lXOufkv5+rvcea?J`<l0d
zn~Cg#u2lIbuA4Dg+ls<~U=O5uv$$rDn_RH1@wbV6Tn)gm9nDc~@lv!R)AKMWU9yYt
z<$RsEM7PRW=ca&#Xd9&Ltj>t$<)wl`y?;y{Y>?$919H!<NK`G;=5%T_Hu#&qo=o`?
zK>D;*i#36dETf`$BpI6|@8p5)q)E=E6ht_@Q0x@yib6{ycL^tiLOx<BP(LsMOSeq-
zu#68z{~(;)8)92XbFgv?S_HpP823M~u(4>(Z_|fI7Q0k<Dm_Wlg9x3ni^F#0{jYn7
z@{An|YPe-QbeVaXTS)y*8nwQ@1^sua(DIkDvRLj}K#P{4#lFWbKb=U@fHj*hgDGfP
zgdbA^a1|SecNO83D-8tE#mYAtTDZ_5kOyTd@nWT-7<eT|TO{XJAXJ%b?G<F%T4;8k
z$usr<c?9o>xDwrVnRP2b^Ycyyb4&q*`xh|^(80NMhX`R>U9n>oatCmEYZ#LQnVH!x
z4QXpKPfA|m2b{W$QpAgs2JmM3Pod@t&9}@%IobyeV-TRt^xMIlyukJOA8qnl?n;TH
zkOnDdTNA2hr;-MRPn@GG5NZ({cwvKy8oW@A+F!Opa3;R8vS}(-ZpyP`Mf1_pK>P*j
zhmg8tG<Q}C<6<KWY8F2$dMpPS0cc&Ip!xMe9&rdTJY++G`VO=@DfPu=_z*xvmUMe*
zxa1p&v3Jd^8->I{m7j4@14%rj4%cn<KYb~9&MI~iIjXvD<qf`&$KHF+3Qc?^p}ySP
zC{FeixkLrQxuH9;7bXjdlmbE}v?<nO<j2Yk1qt!^QF4mA_afM2Cs|u?a9^TO>r}{n
zXUF@Cfh!Jav{^Vf*0w2;IvC0hK11baAmb;@%&CqK&ez4E4*?q1@cP8kBzd^dh1>+_
z%-C8ap}*WqNyvN<727^Hs57UHr^i;{svJkL^HQl(lbUc3DX$mJj#<b>!mjlU#v~&S
zV&tXJzU4I`;8#zn-yiH-YcwujD2}L`0QK34m19PA0o)ML!-;$w17h@I-{r)-b^rm=
z%t)+Zst#PTh|EC*(fr{-(MBznlKWj<X72OKtkhq%_<1B`Rj@pff^H#?qb6_xw(@j-
z(iln;Yr$Zw8-7MsZ_odZS4JcOI}L3!xx$TNgm^EonJ>T|RM)MoSB24wXd~HOsO3tL
z1tyMsJ|f6FW0&lQN>Pp<_k7|P?LxszY2ZRzFkDqqJ)CV6C|yz60v0K?dxK{2<f(T5
zwhQ2FwlW&{=;_6|5Mbv=5vt$GQJe0;B!*eePw}AvS6xGUsL6AC$!G+=$<gj9#c$X(
znzhGcBP&!wQQ!F_H9G*jqam!AmPhQQz3bItThk0zaNG+M|Cdxn{^D17t-6-L?>d`_
z1xG)p*`qz}Mpdc?G(bD-?$)Si-j)yaGSWzS!xpUN^X(7b<tp?5(D$n5Trbq}?psGv
zFrL_gX63XoK)upCn3GDGJ$8Yo`JBAU&k2<V&AhqXv?R8h->@$TOHHM&secgYro_f6
ze;4jIv(PTUi})Pufxu?iPkaBlu4pu#cl*t28=|=r^ExU7Fap&Fhap{oq#9N+dmW~+
zty@9Qqjb?SB)^&n0)>(TB~9=|we%kye+%Bfq^*{Tf~Nqf$4`I?aBc<?13NlHF<4S%
zM^fGtx33*yUvu=6Q12YXmJg~1F`??H2eHi2c)P;PW}Ij~6uu7bp%5QKS4yES2HNk2
zrPc39n&mwA!R&_gC!sXaXi|Qu)IKT2d4UTsB6`OzwfWU61}EKRu8|l$n|k+2^_6rn
zQmr1quapx*;7I*jG6hT7I{6X-9%fA`dOy?v*85}JptNqg%*5?Cv41LJ>cvtDz}9Hq
zNVUpNI%eLU@pXkt#dgmxBq@OZ3C9};ua5F%Y#z8tBm8t!hBowHfXPOgJ~PZlDZahJ
zF3`M?pI75mGYCU29T$V0BDSTRzShxvd5DoO$BC>#5(k6|9JgXM!v}A#cXE+!LWOH8
zx(3qVz*<o4I9lq%!0FM%>D|?%rJm1_etU4S25|dNsI%(K`l-xzy7ad<-aO?VBIC6@
zv?0GwK0FRG_aHn*1iU4Y>ZnE?)I$*~<uRPdXUQdc-zjcp764kR3?5T-2m%@eX>LTl
z5AyopNt{`^4e9d|l|ol`p1XgnzU#c618vJ;PFsf1U3zkGbYynQl`L(^lHq{FZqXN@
zrF}owR}bp^ef};AL4FhJBY?vRR57i86~6PL#{dZ$&NljD7p%Dp_ZH82|6TnMc6a@W
zgQHaxy-A8{9)R3Ogm9<t)5G@-Z+}}!o#g{M;-&P1t?=u&+y%y~6SLB77fj}U=;>2B
z`ms+CN|~hZ>XlaNs<M;QWea-xsUP6VKf^5D#HhUU(K~5Xb4Y*WPioV=eJcgDvt^vW
zpbIsF&==9GU(nm0K1AgIs}_I)-G3EgUw5CxPmou)yIbtYu8yp{6vsC{-&-eFL?|-8
zX#)L>I@;z?KyCLG_erGteYPb-RV+_(x?dsb-1PeG$LfGJ(Hr(N%p1(bA|SsPi>Bq>
zJ$X98l9O|}em(yZ;)S68R43a={s5m>`)S)_8RBXMNV;?XYUPBgUw}|%9OVg}KY+Jd
zcaE;4o3Hb))Bw|&0lgA?F8V?kP}9{5tO=GHN%>p32tU99@kU_JWxq#PuK@iSf2En1
z+D<g9xBVPrR+@(~IVKTvV*P;5-VoI)DZBUAgaLa1+6~!vpqoS+xnqd_QBZJd*VLJn
z=U&p?6NUJrJZ-Q3jo&>Eviy7G4#0^4`}&3K?P*$4AOWgl-WtI>n)^2OI~oJbrhiP>
zfR5dA|3a|Mdr3{JH(5B9r60Qlqm;R$RJX}{LG#>DzpGq1m9;m&gXV8T$z4GEY3ISA
zrCNCj*0*1g`u#-KUsbEL|JL!*asA(yPLTNzw9w2O<SoT47);2z1*$E`BDCgN^$z~D
zgH~v$4+Z4>lnM{My?bQ>;?a8tsJeYcWjD3pZ|d>l)GTnzM1IpSZwXdoTXm6SEiRU(
zx(fkP(|t1@{f~`aH;ZojM=JvO=U91HJ*KNxtzyf9u*YEAQXfYveE8e+>K6b+9$5!@
zf-DyK{F7B~xTH@I^TrTEb~>}x%KyL^Eo{xIAwyPD{au5sU%--wE8?}z$HUd3zW?PL
zCl1K|&~4S{>(f!3O~Y-~z)cRxkY3S?Pz_fSPs6BKbvuW6pUU#?^HkzqHQ@hO=3TS8
z2c$0B-H8FZrB$4Q<9kS!j9^F>9@SOP+2Cp=^iEsS9iXDTj*2Z14xs&8I)OIyHBIY?
zy<!9u<`<RXCOc`{q@@@CuUnOB3NITT;J9y?ALvBw(G@<P+N9gR&scubJH2yMonGC2
z{zlRTn}QFaZnM*GckEK|U{Q%MI&~X$ODRJJq;B(1>)FvM7xI_i9aA9j`s?jXTGHPf
zBhrt-15-|jE#xnt{q4k}QC*riAf_t>{6&Dus9Jmct;4qAxO|RaTV?s<WfG446Z_17
zRqMx>P$ro}-;G!~kN5T9*on2(#&eopW|}DIKGG^@08N9I64xEp5P%5(_$8XM4QKz}
zJZ%ftY1_bC*?;4gQU&>94T|;!2*?DQ)YtUko}l`xdE<~2v;N7|J#yv1Y|g>ck;+d}
zfUSb<Ecb1-u2%H}vwRIv3MApc)bD^h2mxTx%&JBGA=C~9@V(~xU-~PyHmz&#5iSUo
z12KALw**UY0T;{i%tq$dTaatKo>JwM*K|W)EXHE|f|Q7k;nmt|_($s-_V%@10A92%
z+aN+}6=tOZ4b?c*(ARU!QK<;p5Bqnv(LgJQce57{uarX+phva@0Z?7GM->%|>lw@i
zK<c|@<$Eo^{na~OTF-WaHl)Xyq-?hvycegcMZE!0o%x&Ji)-ikVTiBG?`v<YnXe15
ziSa+4%hyqeOUpgTP)kmYQ>hM1$WYa)FitbEsVI_<N>BMaN#1_5PJvB9O}v$oymjgw
zkDmXNJWm*JnY-KY{*H_xwlyi*&D~Aj&Q8SA_y_*K-AD@a^`?{oOf!T7##a9q`_WAQ
z+DKX{`+ql*yu>!^5swfPLw~i;K4>Nk)rK3lCe}6HZ*aLb3FZcaHj#||y2_b(|Jn7U
zk<hC~_GfYK41OUPmVxAoHO%Y986}3oF1MXzl{6?gPe1`({nJ%3q)~Gf#5EXn43+tX
z50}As1QxR!=$v4X9;Fe>)3YVpcq5wo3Z%urF8z4MVO^eC-yhz7dKD6I>X>B<^LI=`
z0f)GkcFm?s$+=z3tV7p!D^LUHsPIPR*&I)D5>07cwwPM)%9=}~WJiHmv}%m2eag9N
zK5`3+3WwrbP~v*0$+&~Km2?LOBA&%BR8q-|kj`@~cd-FGDT-0sif4GKO{g)u8r$}B
zW3sWpPu!`nJCD@D-mn96RAGsqkOkH$5K$t`<A*owa*5{%*)mcQIG1IFXk~$u1tW&y
zE7q%TNA1BuZ)UQ-m<8QXn~g9rA`)g(jSOp-Lu$!z3CH{a$I*i9@LuZvir^xY4t!oQ
z^+4?u<Hb)eDmDw)uSq0Um-+_t2pX?ga`2X^@;BMHITJfX!!j2REd704N7AEn$XWbj
zhLk}q<w6)C(%#54H^)0@7QW|0{oom5LF97%+@g`o9Cr6A=g5As(sT*zx`avBegPF~
zpZ`oL`~!{Tc^mjZdRU0<@^~EnE>?M_)Z-2)0c5}54qy+DO_>Re$kAWPooBdhWv(S%
zc<>j~SU&CRNm@jX2`yG$uGbb?k^2c_O>4M0VVf==9_GSLl)*DNqHggaWbj>aqP8&E
zv7#j#UM_gmbu3b@zK=!v&-^ej9K8}G+*)7+Hq4koJyqcvb1G3s%=v^F58TkNNKX(F
zFq_5+%ASgo;_?)PHW<)T7QxYslu38QP!6+Gv=VZ=OCc%dc*=vE7DA#(=|95+j_uNK
zYZ4z|s2niPO5iYI$`1|f=luH1=yzd5Q`n;sJcs3%nFEZs&+OFU*U(GKA8Srv-me_v
z0Kd5`gu;g0)XJ4~hoS%fQBdt)46K#9{nnFTED0m=LPGM=O0O$wX((xl6mC{g7@wM>
z2eNm(wsM?ygl>XvR#=?6{C67Yzs}N~6qB@=0_NzHu>X#V|1%QeY;Iy>Lif+-Khq%R
z8WXnIY=~Xx$6SbBa?~q{hL{PUQmMPF4u;E;kw1RxSf(Mlwc=B7wS6C{<qycWn2`$D
z^dw(}5ck)eEpf=qmkH<)4BMB~)Ks=6gLp;9v8H+2d!MooZS%Yk7@a0SO1!Q3u1u!}
zB3u_Q#vG;9o9%lw>*-(ErxA=fB~F!&h^f8i{nc6SE<{310`+L-2-+Md{M*~eL?pB(
z`oQE@66_{it9Wgo7*e$`2p;f8a%F`oWlRd{95p|tY{2=&PJAfX1IviMlVr!(HiMEP
zU9j{I^VvTu1~oIKWk`;MT++Eh<C?(N5zh)a-15MN>Xhy?FqDTV71p{sz1Rb!#i{2s
z7iSrAwbjdrF{*HKNC>9V<(-;$qmR*D!1RsbXRhtpwl1PmK=v4c#j2@{6Pk9NtG{Nc
z1J0L3R<k8L6`gKKUah_{vaMaXc4`b8MqtH%XlnITt6?=(szBQDqv`4OEUju~%l7wT
z#}BZfU3XGVh)xV(%lDbHYVuo!J$iyaU>Xmv#G-e>Uq46!=M>;$na&hxz<Ly?4roSR
zIn99jLoimDht3m|3H=a6b+hM0M74r&589r^ZbuyrA({9#B0sI&7>M8mi^)*(bo%mC
z{fkco@aFJ+K7Zbk8;Zll;d`H%b!5HVrlz&?ez`F7^Zj6W-8*5U!}Hr28e{xi!sC58
zIGXz4AI@zRrt9*)U8^Uf>w3L^y2AC^)&fBoz2=pP5N;kuT0NpTHig}jl!e&!=6Z!L
zo`lZ=vOzehlKin<32n-&o!K(jPL=Ea?7uYhgrk9g%%D2o|00^m*`qV5k@>9}*w$Q^
z<lEDb#<>~opvgM#U>NTvP8LViMXXcl&$(P@>n(|JqC?#Nj6Q~uaKTp`Jfz*3OWdMZ
z9XAW|mVKd+ONIHtd8<TT9QFX_tp*{b>#;v2Of9Rm6PG&khvOv=tQ^h>@rdaj!B;4U
z={KCXR9Ua$j}D`w5Zw_fyC}E%gnf)vRNvh>NuvvFg$wU5T50&V66fsnOVxCnuj(XD
z2}AOU@Fp_T?-(63<2a#ZovO!~rAC(#_Mrq(3wWx$uXQd>!+jz6wyl4+Un%akyxj}h
zhYiMx-vQ0o4d$1w%6`aLJhmB*lPmAJ4Y+%9+VsxsOGRX(kho)B>Z!Xo->|O{A)ZA+
zPPMnaRb4`Sy|lGcr%h?v9D$?#-1pG4ZrgXZNa8Mx#wmp+Vk<gHBKd))fPf|gYFFH{
zGM!9z-AH~3Pm8vEE)ZBAS1JjQoFx>e!$PD-{cW~Zm?MpTEyIM#I}xQ}f?XnSf;GuN
zX9~6nSG>a2!#Hhew0<W#Is?^+$xjxu(gMWHq{;Q*B3-3YS!&|2OqC@+L-DATRSDC(
zr4);LvI1HMDsU6LV%;A}XAHg`+LU<Kwb|)zp62I6NSin*J7Gv%!)6q385Wt0kqMS4
zF5U^p6)Ijz3k%Ci^R_D*S<1>nYE7o+l}!gTj_r}|tcMpNj)tnNY-(PC>U2f*A}H!^
z$9GtRijZmxc-^$Nn||uh_B?rL?8g$)dg!HAw#?6(iawc;#<##eS)Abz<u!FuR_5_?
zLNImHP<x^;OPp~}1(;=VKTwLrMFNaZR*Ih3DytEDaX}SVSBrsl1q^-#$rp7bhj?Kz
z^PWLNyr4Ii(m-CM6nicM%0OTLa%LNwyHT1+k=Ycw8raDyqg1jM@@7tvk__t|(l|55
zbTX<+Bn0QXQQKs$Zc5SvI&r|P^w*T~%n`IUdWFa;D8c$ZOtf=X69}zxUmnZ>G@KU*
zZL9Q!zj?r!x;vZz_|wQ?H-6Y__XLMje<6#sk7drFxIBBDG9lDTP@Qr96{_LF?s*-t
zhQP3}vV?YqRxRXyd`(wX0Gv+~Bzb^5+d?5ZD1;m1=lT(05Jau5<LB?}IGMw{Cdf9f
z8k*D%zd_wXRm#_*g4`3HH)%N*D#&V%<tdN()yT%&8_SPzF&p?aUh%JhyST{s6+E*0
zfYqZnc`c;(Mg27@Fa@6xR$Os(aV=cPY4#NnZ0VoLHtLa=k9}+8EeW)o8<={-vur2M
zQx@kMPKR|)jyDe*M=#Mj>dUn*t#c3QSc#9uk*AO5oWmGH>3WT$eB3v^KKA#l+Bb0-
ziI0|Fz}h#x$p(JJ{`<|7ELv<|fI;s6+Lnp~sR||mE5lP*ARxf7;@?R{Cua|96Q{q+
z!3H(0xJ-6b-|B`h;Fs*3#CTF9d6pyrt>5jM7N$i$E<K3lgQ9~H66K#yxY$tANg2jW
zr`)iQH#bLD+84oiKNB^)2(2jHgFCp;HG)eB3p&E5yX7Ky#8fNkr|40#gpc_x?+HHl
zbkxg1iQ=>blfe-?Vy9JqTb{7Hw2_chT?vb@SL_R>s`o0R$?8Z1)@#~PX6&_Jj#Drk
zl!~aQp0MDPr0Th*WJlKZMcR@Voa)!as}zsPfukeaVaVHbP{>veW=d>X8vBJO{K`_A
zRgTo$KZUo)NjPFADRD-h?CU-82ODlC@Cev@owByuj}ccAOXOMD5pqcXR%J=`ovVrv
z6-ePC@Bp2*>sFXfAegI?y`o#gYn*?VfDB%#H@E>c7@pgV_(xjdLd#IJE%AaS2Q39x
zgQ4Cx=?1RO#K5b@=^1WK)&i&K&nqsof)(!i6V7jwNj^zRlR|AlIVQCc@`){na#4_F
ze#lK^k;Tsy?OeupzkB<WYmGX{I2-W8g~(w=h~@MRUG_?Zzyl8C`)&NAH^DCicY}@~
zm+VTx3o=X<*5l?zFuFL1oJ56P7BLhLL7QxX$8+f(Rw^p3L>z|2t9mRF(X>8P@&muH
z^HAq)f0&}82O1Tl)NU~VCY@n5)q>~IH05$$+)ISho?}C=rs+<x;6wXFRB~79J4)BE
zoC;{jR$ONC=Wx)^IXCP_+U9VoSC+xyXYom*c~1R5((s%F*lJ0epR1%LA1I;_*EQP?
z?uCX6Y?lW+vyZ(o3L2M*mY>*qHD!GN_(dcmyiX?F=8Cwr(`c)l=e9S<_PaJQlF*Oy
zF=}2XHc&c1*|cVBY7v~UEtkD{z?^|qakb35U;{%356;^sZS6McVdxGBs7((LmC&(+
z2YPH$AoisFfW_rH+eWX|gw(SeAI|O!>Xy{zNf`Vib+mZpa`nYw!{`pmXjclH-jQni
z+U0I^o6+-?=()&oT8y0cC<^{r(GeG7c~Z_G=yzsDjD53pPOg-kLt)c1{xeS_eNF6y
zEYE^yNC}^XF>wz^Np5HW3U04kT-5DgxAXyF<C_USA#*g}8P{;;iE)_nvv&Ugu$~o}
zMQ|5i#U|Y%LWJGa#=`n9S#f>3z=c)#;-~TlPK}l>uP>u}dY}IK`Hq4--j0(x(`)yX
z?Aq*zxFBl50tu<DWXfq=C%tE;C!_6FS4IaOFV21^FWyWrS7i53PgWfsFbVoy-1TQ~
z7n~_8yuP2_HOdXd(YL&+KEZ>EP{`7H41Fg=JFt9;yE*^udejY{JC~Ll2uNrh2nhAx
z#5Xr^G%;3kcC@fH`-lJYK5Mbq5{U<1zz+z(Jmbb785(UVr}?K?rHW;j>$Z)-k}?<Y
z5K*G>(c{s`BimpS5-V~a2ycwv&b!V_9@5S^Ob>B!kq(KO%CVNgA$U><F?Z0N+JA7F
zer|MoYmP@DsI*sQ9$evab9z1JmZr{`s?t^aJ#Fi4eYn3q1Q~Wxq}4laQkQS>v{Wu4
zd>*__@x9r0ZlXS4IDWK4vSm)3uF-X=%h{EQwDMZ1E+FS<vs~n_Z%;kGMm>~Oj;_2G
zm$62@pvU3ydOr^2SEM0CTGZ><`aW%+mB`_uu9<w`t(|Ir9gJ0XdtZOJoxQ$Yv2LZE
zxispgC3!q-pl4onzXg7k<&2jt9GX7IjX5&B8fxi$6#a_v>-yF7U>Vekz`Hx&rBgjh
zQ5;=cUH&Nau>E$oCb58)w&1+Bn7Ow51czp;L0h82;C)-N!^h3x<@|Vje{-F)wV^z)
z{d>-|wv;Wij1urH*p-)xRK+1^q5N8}S)`Tvl%!Z^$1gS0P>1HMm<H{ju48bzYSmOB
zS$*N4*yeCx!Ik4+fAW2X`$p7hVf<)9%-XNka*@TaQx;-YwGL|xPE?65Y9e;WPb=9h
z=%&)f|ITAZ_3l(C0#l#Xq+LUw@ocx0vz?cVVsfja_e*=*uLiB$gNABdTW4Xej3=Q{
z9eqOODSX6LhmL^Yq&_xBZZh&Nv#qU<T?Lild-TxbB(B<zY(4ER4qsj#Dq4Dq^TQ7E
z=6cT{k^w^_?9}>vZKsv5&*rZMX<@`w$P92FPVH&*mx=66{nh0<+a$AvFw59}CN7H6
zg|ZO)o9=60sH={jwp}#5U$9cEBVtT1;9uH)rHjvCa|5Y+d=Kbn-&w1E%{y7=dGqpU
z&5wE3>Y$EY1R6$v*WTtHl{F%NXwWs_TQqZDJg4?{Tu^0C8auIZK=qAPp^o}m9z8y4
z9w^jaI@=o$^lo(%2n;7ZlNZ>MK4fVapuSr+gUnVvvgWXpl1uu5H|k8um}%)*Z+$rN
zVB_{H(oIIe*W7Y=@HTbm!ctd`O?&pIVlZZwyBSf}FRz9p90LK{QG{tQZsLRDK=KN#
z^Y5}pS%iLy(oOYeFk)eHf7*0(zO$>|*-$_}o!?F6{)XgKVwq8cG|%6$JQ<79*bqFg
zdB_wcdpU(`;6OzTE5Z{bF`#KltfoS0V!Lo@t@xtsr@TIKX{^x9YRql9z6e@aTr$dQ
zTb(>A$@J_^Ii(Wr7*kL*FeT&GQdtwsG+<;unuj2Zpx(u2U01Ze=U-7Y`aW&2z)e)R
z<xX`@6K3IWci^lx_Rv)6JdPpdAatOltw{D=N}~%|>@~FnmCX0~0;|naN<_oRd70qH
zoQIE!TKyDXP^c9tHpYhG%67M~(>8h3uwIw@hakGXj$Wqf&=?bn*Zp+nN+HGCN|jEt
zMJhd=QlulBJc?m#?kgC03_`1!G7n<oihNk=yhr|`DCm#$*)ceTiHAxzFkC$2=%vSC
zW#U71qUckj&Q^w$ETsGHuM59E`ChS}to}qH4Zfw$y|}{#7P#2s=d+8Bb!M6c31-hG
zFiV^}vdCHgj{_7x^0X@t_?^OS1IEDK{9uaK_P6Kz5e*Mc4t@?;wc@Oa+^5Bn$oX%l
zlnk3$J78j;Wuaw#+z>*6K9dwt#<lv{f5dN?b#2(VNvGWrQ@MEJ6<L4R45n0a;V2BR
zVihNfVd3GaM3oh>a^b=|JAv}K*85(5n@_4gxduHS9m@3dB)WQaSE31%3zpfOXJ2C8
z)h1c?!JU{ts$<Hdw1i26fC$ja){5I1#N8k3veECg74xNz8Au9}9hJnJZe_B0$gAQt
ztX5UgBFatQMeQm2DVv!(6LO3#-TYI4(*4(bVB;EvTdFLA-{eEOV1>4U4`Cmtrqj?R
z0wlT)#j`lmvenJa>49ZC1$h))YV!bxH9-$5{R_uNDURrb_Y&WG;Z_$91w9RtuNTLW
z+sz~|k1y@3S7(S%05*BmM@69Luf6Vqq_O}tuBcx(FnQBr6*(csG(Y}Ol@7-#)9;K8
z3B(pJz*4oMEdbHMA%u42^sx2jD~1{B9F&Xg*8hM!L&n>W;z0NLA^uw{5-PS#hnR))
z8Dr_~v^c{k+i8vcHuK5WpfhW-xqkGqHuxxRA=TWZ0uK56Zu-`*MBL+|KfP!tS$$kX
z(o^~gB6r~k`iumRa=3#B+I_$c6W=xPh9oxXIl3@&R&s>x6ZR*{En&ELi+-JQJ)$ms
zmRi8lOE%`(+irIX=`o+!i=qYG@C=MI$4kINx`vRK;XOQB&mKbfCU_ED>)~cUbZEL0
z&2bQ`awCRDncN^Lq`X7eHV==s<w}T4hj64!%I*wv<8}hQ0>gVkiIuzVtfV;)ll_3o
zHe=XslYV&R5uybX%7n4=08u+3dRMA|w3a>sajf*1Rh-IR27~Q8%HhGGOXgOs`Np#C
zjb#{usr*9*<JTeYiIlJ-0jDfNT(l`Lel9uRt%6bg&_#dO63sigc=T}!3@{i$U_meI
zC=;>eAhK@rK_KNxM%Esp<6M8Qe7;fN(6<Jl3*aGSS~zWj7-nPZq{zCiQdaj_wSt56
z9%m4OI(d`!CSdr`hg!-lC*^nC!%_k<mVT6OTppxblf2q|BqYdf{Ii2pj2H+E?Ju9n
zT{#BNPYe5DZmX~R`x^}pIc754T@MiodXgsd+@7CkQp2UegK_1*t-91pE#caTONK(l
zSiYZk;e-lX=SkQT1JCyI8*v4QQ&(fYafT5#gAvIk&<p?QK=BZ1PMGu!cgYp<Z%Oac
zKH3`$cWZ&iX#V5WgDRciLgI?7R#%eOI=KN~O6wHrheN=(Aj)N08u{lX@D;Rbw59;#
z;^R2}7izs@kod|xWd)4_&0B^~i{%-@0V;gBw@WN2xOM!mMaV1=?~g)vy^YxS=@5L`
z{L)hB++c2l(^#eJab+v}pWc>I5lkDK`~kQhHziSxp2Y7MRk`{O%o3e;od?Z7v<}B`
z3{kI+9}N9!Cw{Y8hSs|s3WGezGjyS6VY^-vOIJCKP7p(c%)OZNIJql>4yg<H$wsK+
znf<vR$#AoNHQG7#E;W;{mk*w!u)oZOQN7L=VKNgbCtJ=&SYf*imqLu$#=IWMGe3Lq
zw32;x1@8?Qov7?|8+;AI^MC~{5z!5&4tiNalKd>n=z)$*??`t<$_y8Ff;YN4I30~a
z`1Ol-;@F&!>dm-+dpS24lN6b^cdHDC(V+1(q&MtlxW5r&bq9?AM+f8i)Pv2?`?8K{
zlTNE0Bqku<z66=ONvK!^Yo}=fi3$a8Ongj9jcBTj14Q>HrvgR^RyHhpLxvs82R?kk
z&Nq1iI9)8c(&&O9^ZNd4!Bpcg9UfWc@1~=oT#4=Myf@ZflVT4RNjM|qY~W@-<S0lx
zeJgg@#;okTL&tL&Citi!bxZ~XsuO&#$F~z6hIge8J9<w!@%jq+PNHO5Swf@{HAKQd
zh$KQEU?QBb<nzs@ZMDdH33Fv>J-n=k;+(QHrr{Vk8PGg9_UuSmVM@@;9=>mC3){h_
zV17CMG%2NGJu(rtB-NlB0WmYgQ*A3vQ2q<E85+Arq9}z#hhlwzXPH7I5$+?}-d7g=
z;XqC8Yb!1Z`TJ;+uD_|Gn7u3C@6SD-dmk_>)BTISON%1MP<9~E+ncWtP_iJG8wYq2
zd`p6FK9gz0a3|JQ8%9QjBV?S(;3^P@4uPd1=FCG(=alz)A}xm!i`c=A4QCg)FDF48
z13M<#qM`$Tu)na%DkuX>#M50kuxZ(Hj@&nYNAg8T{px}s35ay5g@-%uw0~H7{q>eL
zI?fxT82rb#jftvNoy_KFNZ!LBp|C2BkB0~65T)BMfSeEA$RgDy=LtXZE_LndMCJkV
zHqueA0w(HCRZikYQ}K(r@0aQG?2xUKQ++|2@C59U-Or3eKATyIb%+s@pMLmm6t<#U
zioKi;cYWAx)#{XEwLK1NNXJRU{CoWGCLx9Dkb|ozG?0pxQ2EJ75x~zza9qq$L+Azw
z4-W4{uoBXpl+;o^aQ<}Wc05f%%Pz)D#C8h?yoYVu58n~L<Bx4STn{XiV1?RQJ4bf~
z98>f)wFdc&8<!a~=dMQc=3;u&d4EeEW!a=EZ60`S0x3c61ins)Tc`(7e8=^0A3#Om
z$0JD>C-{iJ%EbJs{z{4lEM6yLlrJ?8m2StpiyFD+V|D=E%P1(h`QpyXi$^p$IE;AD
zj;(W>4|zfHCW3t1e(Rc<iDk}vRLj)~RBhP4iEj~-?m2Y#PSM7llc$HFO5qP}kjPGf
zj{(bOV_37RX^d&{4Y*3UY$8_NSIjB!cB=kWvd7$b`95OFre0^Je&DOSivn%!r8v}#
zj()!G=UdzB%I{37W5qs>W;QmS`0_TNGqW-<>6BiU;cquRo2n*fKWoiOsxY~nV|JQB
z!k9c|rEU1D16{$0-Qd5|u}@*#sL+9q#vjA28)qrQJ42#C4PncFsh`~^xU>W#1;MXO
z=fOh#Dui*M{5e}!5HJWH+-xnU#-@J@_564PVGKsB!bHW+*yjueuOnbxaHC87MqDzr
zD5^peELW-+=)MMh3hydNfe!<&p<D-dBS_x^yBGRP<d2kLD!0?tGUMG32D`}%W2y=|
zP*`nfF24IXvg_4aGHE1H`4-C(kaf`o|6?2iPePgAB(X^#34})0^bb!jpP1ZlRxIg%
zK#a){T^7X)%s1PVxQPGkl#2HypXDZWvroYVs}ZtmU=-rT^CEG1@6-1~*m*BemhS$p
zs-6@L9#I?qb!>3VU4#D?T$S)6B%mlD6iFA8gtE`%?CBxP|0g1Cw9c*Xins9McSMRL
z<9$d*ZNXwW#qNwAE|lzx2?lzg^@Ca--gsilR8LqK@FJfD{Vj~8$}y^ayYn6=+Wj&K
zcDP;v-{4!|(CBH6R>}j&VKs^dfeL{fuHV3=L<>Le30O_1avee$iiayt+Qq>#H1XH0
z$k}Lj-7k%RcUv5xwwD{7a5JzxD@qA<2zdf72(xIwJ0le6#i(Xaa``y1*bE43fD&Nk
zDeAlL_0^n~!E`I@y6<b~bpE6}Qhxr{uK1;OI;b}yM7{nC2OeW{170Oiw1+5^LYGy4
zb3vXX{|vCJgnq+j4$3GBwkE(z`Psg63qnDtDT;<CFRDdIP?U@UUEJ#cIlE8SQy+xv
z`xdfJ&bJ^9DeD5qq}K#y!79Cw?!j2iU0*r1P7ER&4gt2^7_@^_@3|8898F>jv3&<6
zDhiIUrTzc3_s-vyz1!ArY}>Yzif!ArZ5tI<Y$p}lTCq`aDz<I&);Z_B_q%u9{r(4M
z{xoNst@qX1TBAMBXlu^#=`H}FFMuZ__<P0#e1hsgCm3!{u3){YKH}Xrh5~pLefD;Y
zKepDS2C*m3(M*!b+THP@juesdG@?igKa+%V<D3~$Ig>?*E3UexJ2tK>c)z^)AZcdB
z-ZWeo`HjhBCosO<A)%ma5C@i+)(UifRS#{tcqxrRQafJ^%KS9cw5^bVg>()$yrenQ
z8QnMUw63VFJ{iPY>JSBx3$#Da7m^aV3TapJgq&3K)VALyLQLgHf>SkBPn87UlTN-V
z2Q;=qcuC(nI>IDuvgV!&db*}K2frUDq;+&^2pg<pb^C&z3e)N~+9Q@ozAG0O)wczX
z_4hZv28X<-MCY2hc=X<B_fHSYQ#|pIb53!u!7$)NZpX_v41l8Tgu%_Q=dSJG+dg;%
zTg3vbrrgky>Pd(r4WRNUhr%ziV;(dWjZ|@^ysrkF5VQ|4&A&b#_+qN7DCY=RvnhYn
zT>tj+*D#dp)9b?-A%#vOIF;zk^7<ga?#L=Z7Jf36a+5-`ml~5dj9ZZH$75A8S&Er6
zRG4ZjMp#)`Qx+*S{-G*Oo)9Ta?3~*`f_quu{7|$gV^o*B5J@n1M_*ro<}n%|gp_8p
z2sPtezaUMD|5@xTTLnWM(B};)0xzg9?;qC7y?%|Ec;R8#w^@IJN;KJ+woE4su6Va|
z9o-swN*iM!+DksRqxxzO!ah_=cilW*!;HZ*0V%JfjgB<c-7TOr9CxTQE+^428}@__
zo`X2-KtL~*G-Dd{a4~6#TUA)IcYf}>R|T9eOsO(vPefx6L!H3HfH$Ahy)r2M!=_i0
zvMGRP=oc)st9B!nO4J7gMPBYivNypxAoaluSFsIi6*iC)+!{Ez@Gus+YX>)#lxdjU
z8f3=>x)gjUwF7Lw+;daW-G7hC&{1%a%66XKoe&SLhr8!+Q&8jLCBX@~+ES5vLiUux
z@!AQfPrHQh<kiG#pNYChJFwnbJ4hpB0C0pX$iOOz#0QCkAWKbGp_nCho&v(PfM7&$
z*w0fz3#i*8TOg<wwu)$rzALdbmea6&$;TE^(r|W1W<fe1FJqXT3e9AhdnES*5&iIX
z`MK#MymDWPzd(e6250nu6%r~-JP5*i4^+&2o5l+odGPtICf@qDvcwP_LIBz^r+`(C
z&^?IrZ;k?Svk`9MBHfU-XwdZO6HRA|74Yl(UtdZSplIT-&CkhYieWx6+9DVg@#rO~
zlPFStY*{IF%(ut+L^<_E6ek*A6cj4&O+jwtiaAce{wUj(A-Ko<C*yCQQ}go@_P(@p
zls2}e&9@!Z!{15GXGRU?X4rOU%rKzdm8RJsiGPSW;W-@?j1~c;o0eJX!ZIZ{lX=wm
zZZlHHVjvz=Bs%%y(2WLw-SaGSy)-9)afo}3&{D*tV_P>BSSmkGAEt+9EA7^*q=~|6
zgHlv4xF+7)umqOQZrhMfQ-I)i;A;^3I6M^x4g$KKZ}gCnuQjy;YS7Qmb|skRX_GrU
zB|aX$dXailX$b^;?|<uSsKhpNXjx?OfDzoy$(l5Cb<vbMgDJf+HnZs2rT{@7I8&D@
zHAmDP#oL<xCbD~mAOc*`@Zyt}FoLf?onba%(3I5AD`q{YR-whoGED+WmD#)9zO!`;
zMp0VR(`7e;hHC4}IbS>Q-CVu^t&Q>EW1Mq$($j9=Dg}YEF3vm2+ga|r&Tjb4vO|=v
zr5I&Ovi5s)l$S)LDm5C<;6`(G9Mpj)Mx9B4!_iS({?3a?&-C8icoMZ>=_0%zcvsJX
zY(SS40k>PVA`7c4rhx@AZ0r;-zG+^Zze>8qEE;NKDi(RhIxOFB^^1w=4LlD}&TfS*
zf~Q9jeI$1v;>BMAdN+!W6kfsIv-c%aGC8)<*Vxz`-6L|B-iDREFy$XM+|Q^(%crR#
zz`$w@i>-4J#E$a%x)?}%3Ta4aLeQE~WS=ni;;vkp_aZgh0>TNJ9SW2v7bg*1BmzbE
zLqpNJrEQ7ZW>9nV%+&E8Fv&i%?d%kZ8w2A5n)Z|!M(1pP^)H%o1Y*YslLRnxz8Zwb
zhh??{Nq+p)MfpyXofJ2^5D7_ma=!xU^8z0~>J&VnE!S&IycGy8y8yf*;kB<jtW~=4
zeru|Cd#QB_SRBQGsY}qdg&^L(Zh3h4QKz}nOOgPvGxJ37olNAC3el1)|L|8Pk%E@2
z@Iq_?ZP);csgQgta1&m|JR{Flg5|KO__c;>nw$<Msn0S@viaQs{Ok;W77pluU{=l3
zkj}I@`<H`{q*CRjR#BG&;!b>)%p4Ile~4gFQP+wBWN6jYX#a^xyE+{hR}0I0sKBI1
zu*pY3FcmB}?(151&)Z9p=gs9q$MeV91jtl>vNOm{-!O>2unQ=s?X!d6uUkzp3{4>n
z=$UfC_+l}^MAY9{vY!QZnPIM&K(IyH{$<2asxZr6mrHo$P)8plTr8I1xErJuC-imu
zuBRyXC{D=4^T}K|0fJrC6I@`-Km@&5EkuYd4+g(mu8|z&Vp}Fms1wZ;el|&36-67=
zbvRq}zf0BdZluUc8C}WWe?lyRI%ZI&zv=T=S&0|m=y-^tt%J!X32+c`IMRpZF^fc#
z#oMa;59jtYULwt1kfDK%#B024Gdn~Ds=mrVZ$nc`KITuf>a^cVnnP$cB!TdP<d2$H
z_tIqCASMZDqg42%&P&ZqWp8W3J-rG^-NckOvk-68RRsOS_Ldq;;%h$WfOkAa97p~Z
z1<fX~v-7bL5ELlqohFz>ic0%1Zt}R)r2Fs<h51qrH61@9eX*jQA|CacHw@|)rx(@n
z06#j_ulopsiWSqUG1(-QUc}uPGV2_|D<+cCB0JLHj&zn+kTE$WaG)sPQyDtB&tu_W
zoX9x@M^K7_O1WTTSe~-A6oPaR^Q{Ia{Nj~pQDmSn18;&kp)w)RnjaxG%sNC0!g5bf
zwTRLJ`?k%)n>DH-JgbN06bePH(#Ny=zPY4w#3d`445kygxTwGgkofi;#^8`j+yh7O
z>we_8jZzZ?__TY43lZA2Nr7vFwG<`Z+2g{2WzCm)FTcx$0StJp+qC|d!wWbt4b-SB
zpH@FOyg>mMwlCU)M=_f)rrbm$dn+woJsIt!L4S$Xp+G|iIhs)iTY-p<P-bc|Y+~Q5
zBKsy$Yc>6|#?ntk>j+_3fgiS}%g;Cxb|H)RC2((?*y>#iFii|fOmN=->|xqgsNzFQ
z?qX)+Pv)wra~*(_xUD2sED?)r`c5_q)6nIb2m6y$$#48b(!vdd<abg53y<8pw$j5z
zCIYh>qpYb7lgq?n!iTB;9v+V;vDKNpbm<5U(c#KO{pmW&RLU6VM-ZIo&JiC2#`#=g
zjG<T6F@x$j_f)i{Tg}SM>bzin)Pdqu{=l%XEY&kclylDCPCBs&$W<FMSS*C`Mp7dh
zV1-FPdfm<MC-yE~-*S?tIv(SXW*WmYT+&JOr1pqBSKx22u|yup?MDdAv<7Q@SL+<&
zR$<t<Rye#CW!gRlRj`?uDTtnW)qg-z4f3rf()QbGYnL&HI92<aOq<=)FdNwl5Q%rk
zDjtCdCGUe7y>WlI8|xnNpK(hm*i3L=)+^fARnj~6d(u2gEu-;lhLp)?J~8c>|5gU1
z{#-NW)yW!EtZh+aagA^ax<AAxM8zbf11kBZeR|9hds^19?!_4z$tdilwg8i0W<FWI
zo}Ml?Rc&KW1S8W#z>|W)CPs+gA>Yz4IC9<XHlXY9YN?i5Cu9Z8%IVziI&(MLbz0~Y
z;`nxNvBG;+K2%REi^3;1{q26$cwXBoc>H@5NGCPY@KoIlzO6MV@E=a%{fb|~c1l^e
z-f@)5_j~!#)p}IJqB=@e^;#uON&!GuwS~uZ%bdm`Z|#1U^0T$XB|>_o%4!lrUi-0?
z4&u<Wn6B`EF6ni6#s0lSC=1LG%UtI0&xy1E?k6a2g(=0~d*LoTPrZo8aOAU7t2{bY
zCq8^vzo1o2debQIC-qP(z8)5pm28Qky`s0w*XeH|S;=j@<yJ#JeZrlz>{?g&`g~{o
z4tw@yBD0n}o_PFD-?DWlb<bPHp+Qa)Njk%Z5%FOdT%-4i@ZI$8_Eqzpw1uZQ2Bq@A
zE0-7ZZuf3}kr*81+x?siC6znJLtN>bgXjuRQ*ubLtbwva9=Ae!?2r1yX`>ThoQ5ie
z6IU~>bOzl>A>ttj?YFzLr6qPNSy~{$i6_NMbj5f50Og;!P(dnOV|JpwCz-e1#X_9R
zRRioT*S_B;VvcAdR{5I2bBY1b&op}MuzY3$FUy^J#=~lS3_2)hQx*i~yS|Z=YZ^j<
zYRaVDn=P#trVC;t`Nm{Q^OwGE)-gO1-A7zK_3sj+7SzpwsEb(Vw!ICa%h!C*B8R2l
z%lL(vu1~x7YZqRdKg`(Ufnc_zX9S!Gh$e^G5OTMzBUfp>)#y7XhRcXLRHE|ttK`qb
z%WyVU<dRnOz;F!JM^0y)h1R9)a(<8|Y1+q3ja|3;FLw^Avj@MyYmBwX+}-Pyq>mE=
zk-&?P93zd|Wz4(uontgNv`n^S+v;v$IPpYUr$pf$eRqM|i*?D5Gxya4A+x+wtB(lB
zVS;N=J+v%jS(;JSH4T|xk_rhAWEJ81zv3~B5swIqa35!1q6vM;<&5r<UGX5yLkTTP
zx5asWsfY^@4Hos|F)w38^fXyaayqTFdU5kORR^ve&mx&HVF4F&rF+0y7A2>cKT<V>
z$IgeQ@QcG5M1T*<Tdn|mSL^?Zwb^4Y;Flq8)HRQ{j;MS^wI1S~ACbG&2Ivx#h)mNc
zN)0~m^uv8rHu{@fHyc>D&|*BlI@+*N8M?ee5aJ;C`axE*d7cR{kUX!J;^Fh!I7wHT
z(5_e&@$Zqr`4cu1p<{%J;{<=BA7e?b07unibP?>9#&WEqJiL^=M8RHz*+SNu(Gf$s
z*=x0F_X{#wci=U2xoQ^H!m^$Vj`VBwl!Fh_+V?LOIRoh{-$X@T72Oj_CnH`EJM0~r
zm`K{)rT;u4&6Fag1bGDb9~A|v#6Hf+O04}P-p@-EaN0v;VtvCPAgEWw`Y5KTx~bKr
z5{7+NQ2&*aNHHnEiJ%Q<N5sykk!2nhfPv&nD(I58cl{Xtbr^1Ka3tL9XLBWC^K~Vv
zt=m5DggCvsW$<}&u_+ky!xWq&@h~i<iS+3Ld5ICz`4WE0*{x~F0j=E0v3>OB>qzp)
z-MCo(_W-vxahK+VnrUI01O{-FVs@2lW!<x(QXdA078Olm;^mf~xd9PJHgre`3TF_J
zSlmAhs^({fUbeTAesG~I(Cy2sT!ZD_L*M~l$PjytwI0V4mNR&1J@6*_K(y&nP6v3t
z+)kP~V3ZkuXEYf|d#w3&2UkfKaZ@->+{Yv&wkA(Oostg3AZZ8#2T8Q<+XS7uW5OrW
zh&Y7#tk?Dtm*@XVb1@0^#gtgQC0Ps8y{${9-ZvG?q@6adYhKCp_+1F`dZN|3w1YSU
zcIsVP==e7t7o7OvmLK!xSJMkrH@0=`GF*6j4oG$I1Hh!vHA*@RB&y!)V2Fp1R@tn1
z_F#D?^T*_P`%&=*WPU!~JBurLz{#z=34egI8Z6%hv*7Gze_25fH<ej#+{+|>UF4;b
zVOUIdSBMtP)_UJk*6USF-Ck|DU(ZcW=dWmyguWSD8A61HvYoFYWQB#ikfWi^Y8V48
zEo@(uv2)3l=yok;(Tty9!k1?mTdNoNynFK<VkYt1df#)$Z$LOqHFrN<=68JnVW?pw
z_?JJ5QUVp=uG4OzDDo8h^C)=Z&!F}@S<}e(Np_}+X4WN{0+2{<dWabqH}iF-WeO57
zBm~~qveHHvB;Iy*634@1GLbbEmP3Z_X9svj%b$j~6eXEcWl6EUoaAX%nv52{P2YDG
zd7|=LEyYAxSt*BnGqpz;a`~;yS#5J${HsE=iW<#!ui)tw`%CHtMajEMXS|SRgxu<*
zp}uWubrR!)#dvs1IOYh)KR`GRJ05qRt+N5yLu^~0XoqtZGy10ilKgcE6pAsnht!uQ
z7?iqK`b=GrEO;oi3=BwDyfD*N<#K^B6GGm@<ijtoG$5D2bgYw>%4CH=nV{%hpE<tc
z1}51`pq<6FEBABjDa`ZnSn#{3B@}E>UZ*ls=)$RiA1Rgem&fU!9}ZtUGeh%?M@s{D
zxTtX@5_}3LO%k;R-4G@jjI$u~1bR}|j?Y*dc9H2mc8z8^`+2C<X-#B}?qeZ#;4x@d
ziFK@5Ov#vKN6=h8_wu&0+7@`cQK)L@j6b@5fp<%`Xh4n17r@itu!zy>s~ZU>#GdrT
zn)YXp?PM~~+fNja!*6}Wh1k@Q{6wjDrAOaWFfUJb3JgYY8tcNY4Ty_7M%Fcth>rAn
zvg>3}JeEDzktrrdl9TKue|UStmh<khNUglwL(&XU3VJWDe|=kuaz_A4FDPSZL+6e>
z=5iO=RU38I$7th|DU4KYjmHQ=NyPBzgEsi(`s0G_HMvTO$~eHUN+YqEXeWhU_8ul)
z3v?3bDQx4wX^-Tp6O1v=52gXt1()@*ZKh!>i4<uUjmH=YSvZbuj6m8A`!@=lH2ggp
zZ32Be_+Iaw*u2EUya45@XA7X9MgnXyEwYQgc(<ZW^?K4RV_59lr=G7sL#-qi?R+xU
z>j~(i5rAh?QQGNX2C$aFY%zHyx`5L2Wrb@G)Ez_rycNk=4|5z|;)N(HZme0SajGx`
ztIVOK^%fA-T6Nmd)<zXQ&rlaL)Ji!t?Jef%)JHP6yRtIS82)@{Lljar?8ojo3P$*`
zbITU>*&(|f6c^8rd&CGN@rgW3x4J96mK()frPsI1cbuRK*#q1Y!-0Di@tx;3D&<8R
z_qSeRd2!d}p;-;zx(lgrRik=ZsSo9@H#G!lJU12PW{#qNGBqVvC>B1xN<ldRd%6!r
z60_`xm^_AGClGNxw`(4_URtch_h7kro#aYp5olFgpJ)>!M`RewVrh~Z2VoPdA~_lw
z-LpByr~PHVJncMen+sDk4%>F)B<8x2@6^WvJ~R){LNi)(&fpxw>Zl;tRDTFYWL*x*
z;WeRbLY)^c!L>lt4Vc&b;MKs<utePO6uYj&xs})Y+@=VO(D2-s5BmA?kDF|pELQxp
zoEvt>g2^Z(TdEDnqiOCCm-ca>bEa`J47Z6aZwtm1JD+b`pQuVVR$aVdo4k4pjVqnP
zON%P&C$Yaa@SlJdOnhz_=FE=DH*=0x(C4+gH1h4JDYXYhufNaGabCFDn8;KJgoj_q
zC(jaFbCl8H<L@(s4CB1b#H81<iVh5i7sct_!L%)(YO1`pA~O#}V#pQ=(woo~9e`kA
z)9)w?jTWQ5LQgo1Etz9~lMe{->6&dX-*b{4grWegu?z6IvAE@f1yIdfZ<(f$0ynj;
zW8BiUI_I==IVd8w?lb=?Lm@+Hg7`8MN&$C9*N@~@=!V7|7>sGsb&yQ4b;Tf{>l<AG
zNQLN$KqKrukH3kKKGe*1=;?;Os@0(`E9dO>HZz6uEezQ6JdvuyX2L9pv&o3G%yI^~
z6zU8>85j$7ePL%}=~u>py$*Flb`Y-gG(dO{<j(NUx{03TnzO+F>;_&ksHH)=VnT}{
zl;REa0jpF{X$m!hFrN9M%m00Yq4(I=G(j`sV`74PF5`e<MJIyHX$UJ0!wPm|idu;+
z=_bI?weKq7mofB%Z#1_Oa|)I<+9BRq@Z}9op5)Zth*8rBS$fQ!D$X=hJ!!VwfEPMk
zzmr`kb#DIaxIp*&;H&wVIOPvGic!YK0f?iWFr+@UIA1B7A!J7)E63^kl6e&)eGjn&
zUeg47=h0}YjJWuo6Ky6jX@uCKU-M9cdID?8+^dI}Ojj<RZAlAZE}srtx(!J{jZ#Qv
zfKH_;$s<T8P`C|3MK*gVZ2wPi|CKwT=O&><_vLApd^I>qU>3rUvjfDD(yE(bLOV7q
zoNl5vQcyTzPEvfnm`r^DqhTO|60m#}**AbHA)~8GYL&aa;cbs7z}*_TsS*y)uL5n6
zv%oZ8Q4jBGeE&)~2tr${iaijqw(`)G#i6K^UstC0JTbJ}d5^h{tVNQ3Whu44zhz`J
z1-(Z=Kq5VINl_=L*HAz^+45K5DthWs;U>45peKH#ZGsB@<{X#w$Bj^vp-PweN~1=O
z5eOxg#2s3r#Fj8SaI{tkDFdAbgSqaFV?s)_KwiyEPK}P@1TGFR(DPCh6A-2f7+sJ&
zY8>+>Pa38cVo|5BAM{HhF5_go38t&j52j^i=EElprWwIq<JDwUL6Xtl&qQvbAiIu7
z%s;E8GJq;O>ibAodOv+wV)#^=8~pCrQebUFAUk!suz7N(bh6NNx=5fSS9=vn)XZ$q
z^5sxWZp{7b)mnhAAQ%AA|L4r7XnTL=O;@@+%SV=Zw8VgjVb1~50A$V~uf}E$H+Z2I
z!Yx-HyD`YqQk>AZZ1FzTCL1!aM%P>}u{_O-FPrY&mgTD-tjsHsYY*!k^jPp9*<OE=
z(KWxKd~F%$6B@U`_&s!+!-dnY$*9H6d57KZo0fT@bG^<3y$tBS>LIrW;>8wZx18ti
zeH<HF`iUdxaT#FDL>p##-R_P6LLyLcTmfI1HfSQKwRBi}RbKsWVd3hOs{67fYRs>q
zrA9x6k;m=3n9a;AO^O$fYyR-mZv)=;b|Ms0c<NB)nGZi6sfWcZI-xP`0z>Nn<>O*U
z=f~*78@Uwp7FEd}lJG{jBgwdlQo=XlGHD>wHY!zxXA$E#X_X;wA)=fQKxSf$+Bc}u
zz7;b2hcUwB<WpQU{#n6tPe`zJq|~*PayYvx5Mhi|`{VDG>uU_gfVy<@<C6M4N3vQ0
z5>Shg4lnA)DTTdl5!hsYY0@Gee>_grmkck_s(0E#$A(^afIhYXZF_UMZlSH`l;tmQ
z!FC7!JDw)oq}7vrEs$!owL1bipM7)nbqkcPw09ZaM>Q@`cQ|UnKs$c;P}@!2E38Th
zkf`PgXxp`(ot88{H@t%&uE=M5_c7kjcs0v4<c7z`RSarZn{X2h54gL|?~NtLIonuz
z7~1HZk7&PjIww-)%8Pa+dGETialvdXfrUT;o)0)~FDulYg#Nd=L~uWWU5Fv0`xg@R
zXS4kFeV@m4#{-LJk>Fj|%R+<Lr+#D6%tf}aY?b|CI^bvfdWMy%X4>=HFulU!e(+Ng
z&m$ak%L|*se+g|0mjI-v7+g+(^D=MH9~R2vyH{X2!rZ!B#1CvQo2`7Kqk=yQcsqZl
zA-PH+mElJxu$9+9b?9mT;)s;Pxis?533?qFzi10SG_#0v<|A5MquuYeCO~-f%7hUt
zS#s$ECi*NtVV28b8TnO~?2$TO9yM&P^hwfInls}l_?n}Er4IWe973UYG<I~_n$nAN
zT1DK-5y4*VHvuXm5^YDK?aFuq?Q~=-PsEms>*r~yN5q6CZQa153mn(xc$@gOJr3QH
zVelS@Bwh1mdpIf-6u!Dw35pCDX*kNU+i>U2M=mw{0?P^9^2VwpQ!u)huM!iL*UG(Z
z9cy<C%I1qO{uHWd2oW+-;XL(PntRFC!UMrw@0eE$z{05m7xn^1+%Ce}>gFzbf`dhg
z0m|E0h9m9Wln)iZ8Ho2P+xjq~=xpzKPK#&!lH7`i69p%T$mb&ugnn0;@+8^6J<P}?
ze9Rm=83=!f+=F^EUJ$H}9<6S~z0ZaA*%8UndzX}4x~VXu5FML`F)|tzz<RK7r`JvZ
zljcl7w7<MD#qBN?eV&m=TtWW2HX+)4tQO>lhfS~DRE^M|jQdhH#s@zUi$B9HZ_90p
zy~%_su{)7I(CA>p`Y_0_4DuU$5jxy-IUXRBGsw~F0lDTxpK&SIrBqG8?-z@}Xwoe9
z65Ati3fp(%QnY4R|1b(^E8x!~*;{jE$=au5niIHwdD<&BHEQ+;@5CO*P_c;a8>^c1
z6Fql}iI%9Hi{dm936^DA4ysxt@R7K|SKp);y;qN@LwvBw*)aq%<)xfY3B1g%^(HF_
z&awYZzC*uAnx`2;R8d(JH^}Q~HL=iCe%`;U=x1zUCcc0~P;ZG*mKuh_wJ;fr?S(dM
zQpwSE{zx7|Y9B!TFh^Igd75qVKF&!`1<(_T(2KWZ7xiO#<7&GbO08t%*9L^4e=Y%v
zWY0k&&zIO+AZ76h-&A>^W`3_beGo(>(r|K_e++rNlAk?J6O^gOreBa+c(Ik?P=TaJ
z4aq{x2;NZM%sv>tbFm+f{%g&%2%CXW$5tNNc3@;ySYM!fa}K$Vf1!ARjkA+5u0;-W
zY&lgKhOJRPL&8@uLqXwHC$J4_pr!AcG{DkEjh>pGOj?tZcq3TJ9V{WfNJ1ATTY7<W
zJ2W(aiy^S$7J}CVdyd0y)n*;9ip=7NE&u=xS?4)=By50uI7hoMU&1@{5KQ>4RvxEh
zEGiL=BZ&*khuEr53jP$t6;T#HQ=D%jNyX3LNO!W1&gc$%29(p=5)4Nr^dn@sP7AwH
z5$HZ6srAsn*0L;0p5eQXJs60NWt-07UH&@Es+>bo#7K-zf3@<2JI>`wanI(4hU1_>
zWuuL53>27c)6>XwfuEKDu1bN?Vizj@o0u4~pzU>chfqaGb%(6S+zBVOf8ZO~fQ)&F
zi^1LW*rZ468=6wd@2JX%*9Y$}EcE1)VdvvYl>^cXdI@?N&(|t}boXawQVjRfuM#$I
z1GGQS<3R911-;Re_*!m5_UR6IvQZ-0HRm<}A14u3zdl`JsWV5*3qKwynx2zFGn!?P
zSI(!B5*vq_5Z6E=DQ4%TPQ)o?0d|JR!7uyj?c?AmjBzho3*sbVL!7z++}#gZ{Oj?a
z*t=?8H5ETWd3<<k_U6B}nmzf|=K$g^^w}S&8Qa_g(FP5}f8@&y;2bHR9wQkG%A9PV
z9NvRlitbkWzbM$o^vANu5}`I;j6PS4CA!|hz3*T%`QPv+N^=uH895>p*6L50rhnD%
za+MPaP9=VrSH%%Z&~PwZ=NByo2Pj@jv~EhJ5jE@15iS7Q!fA7@U@$d!YsZ?1hp3<j
zS?W(w``L%|ANAy8EMq^6LW+$N5r318rz^MQqrRN>cJ0SnrsmfOOWk@pCFaV90B=($
zVPNVsFu&O|g0r@1Al$IcBlkZ?U?yjl_N|?_mu4*PofMjfZ)0e>p-&rUZoCb8>nzT1
z<-Qh1Jf9GGavK%D!Kr8ZVnK$yh-|WRv3c}Xx>k0XCOGzS2I@)3t|^o&P}Gc45@SBt
z+=K$4Iz%~eH<w|_^Hf<`EN%F$u>pl_dZo0~c~46WX|4^;p!fCY>={iQXjceabcvAd
zF1~S<n}j(z9qHnmj+)v-!jb@P4l8G@QF0yxH(6^@Dw#6DGSsx*;LGi8Ffj5$O!?Qe
zwTCcd7U!2zOp~5Tj$wyHoejN-Gt8IE#5DhED{s3_w!kCS5YewyZ>MJne>KOeuHlT9
zG%-r~m@K?obelM&I#^Ef(JW8tT@_;gkss-njEnRs`oUIen$AjRz>o0)#sVufC+_!S
z2S1d#rf_w<ie+wV`dUo0E4)IG5|r|B;2jtd=?szK^a(}^PWLVsItaUydMMkK2f7Eh
zFKK1X?k`oX$qJl!tc2E615yjsp8@X$Dhl(BkC3S@JHt@2dkI@tY~Ka}aI{GJ!@~m7
zX41lp7Vv^}mZzU&Z~4Y;!d_sSXMEeH8MR`H?UsD4v{>_-^Cm*M#)FpMdTheb%jfOC
zqZQyIRR#@6qaa8y5^z?75q3spgU1_)ACeOgfAGgK^JE!fnI?JYJCs`F6FSjvpgqJ_
zK=zY*l(9NSHjU(Qur9Ta>gAWG;cA6=2HbIWJ7Pm)ZyTN+?Q4&d9WYp|TFz*LTNeT6
z_h@%+Kiu~+*SjZ@Vey9d5Cbd6lf+N{IL`dUz?ri5TI<RBP5EpsDeaCKC}EbVM=}kb
zOitqd+wGFT@aRNt2Ro?wLO)n$T*7Q$2`cTDKUddK3m#>CJGHun{+62oUOXk(r!Tu$
z>s>D;kZoh+(h<B8?bsDZUx(0~vODSmecK&1&mqC`&!1H#T)d~*T13FOq`uo!PQAGI
zI^U;@){SVlW>MfmYO_D$D$_RfmyW=j2;KxhMDNmUuD%nufGJJ@&K(8k+!O6W$kIhC
z8|pdGUs_rlSi7s>AnW!jq5U+G)E=wUIF$_QY!Xa0oYEt3kQ=3He?lRGmS=PO!!8;G
zg^>N30EmuL?iFp{NH4EgZkx8WYiKX;hYc@VasX!K_nzX*5@iFf8>t-IYL?k_`5iqP
z6`eMd+RMW^b~1((zLKRl^~iL>H3&p@PN*XT0BEeez9~1ZP2qnsba@UY+dit*nf3T<
zqpwzPOUsGXcuY-t5D>QO&C-a5cyJFG78;TY<6`P3CF+K(yyO!9g2B)WSQKRUQabei
z!Jw9}`okMB>KXJcPoETiEH>jo^p$eDK>zBsVwO2)sqDkX;ValEj?>{Wp|fGkUv`3@
zkaqt3X_k1K@nKXv%!zLHQGg?!tUmK?yh&?gJQcp@Iye*lg5Rk6=zx9$S|3lcR*sqV
zx2dGO<vHR&|2zL<c(r_y6>zfm@j4?14*8PxNbBy(UWv7lwUFj_k)Nd*S%@d)l1|M7
z(?)0oaFs*XTebb*`<vh03159?{4OtqpH5=^j=RBjK4I-;Z6yF1zQynR0pR<$JA?TT
zIRUGMpjEcZ*WbME%1~o@2qZsSjktP>LvE|>mRrx9m2%~mH0q2IyX1KIdfsQ>Y~Ket
zkMySRO)Tt~XCdnY27mW*Qg+h0@kvX)V{fSc8Abr&<`__F^cc>|q8cgmQ$!pH_>L$k
zCGkzq^qW=_IRwrpb|heXM#M}?7=o1_LqN_<l=;ZoeoL~eGd*XMl~m%D63J@C1k-D4
zEOl6ig@<(R;-F-s5F?2<KS1~!!^wmg3@3vnzPxPX<c<%H*xd^$8<WVAe&FY3zhw+t
zHcCzYQ6^9?MI?5%vC}EsQgidfN8+ZG1gg;%5qsf?c97MS82wCTn~wjd7}H9x8y%;b
zym!0RoUU)v-2D!~Ak*ah3MFq%FK3YW<Tc6T7CD#wI|N|PR%r|uyOnmgm?{>xE3Ki?
z=F?}wWzfSU%y`*m_=}rpC;Ms1a;7#14^snWN5{Cnm=~&3tSi@5*Uv0i;JCig<>sCn
zKwvpwOZGXvYz=$r^<Ds<=cvF%1GQ$Kl?1`R)9;aMdS3`J7>)ySayUvZ2u((H-lnc$
zpSH6i(-vwR)DdlZ*-0CDql_nPW9nTCgjDak{wg6!!-tbYTe?&>gEP->H1^@VOV>yu
zt+}RI?MMmYK;mfd>iMo5^$vtp?_-JVHe@`U0Mww431dJT1ok`CHdQ4XviqA+%Z_Qz
zQ!J6B!TG$jt4FHBN9zeVeEdWjlc(^5VqB7FW_v^1>+gfs!m79Eq)mPbsZR2mKE*(2
z27lr0Tw5nM07ex8Dp$OJmws#&4}IH&plUXa8gwGy56P+c^N8*0g#tdjhf|qmw`iBJ
z-g&yn5Nv4m=lQ8Tq`RUxQr4kIy@EI^nx9K<fzPr1MB1JmHb38Z)-F1PJ2w16WY?Eg
zru<ibE};~RyCAJ}Rw6vHpeId5G|C)O@k*Ue#ZQI@Z4~pJiS-jc9?4;zTEXM30}?T4
z=iBaVp=uMl)mO<?03yX4pE{Jp@tAN8iVyplTe+bg!T~S~Vr_5ExQ4~gJ?}AG_#O86
zJt{$*B7c|YSl96dv7J{ud(~r;%ob0jPIZXdW|+k;I>=(tM`c57B4*O!;6eV{K0DyL
zU<oJ(BEtbo!SPBX)I4r*v@ppC`HuXO293-Otn9=k!P+?=-G{mCKIO2WPzP{zy6^;D
z(#e!7&W5UFIGV%}mtQpx1RTAOy!`zp)2^JWssznR#%_6q2Avx|JuWpQh|>}2In0rp
z*`&U{-6qBQ&v227QXbEZ-%_by^gvoWItqQ}#pSWkz`RwO=H4i3OTi?6cj;Bn$o506
z4RDZk-Lc4k&a;neyb#BcBC{CV)uN)?*@|*>s3(p2Sq&3MMG2DnIb>Anz74K8Lnns`
za~$1Ge;5B8TQLdX7#Z7Hs6|E)W~v&nwO*&OxfoNv;m`I8BUnk4!ljY2^2-qMnZoKC
zs$vs?vH<J&&>n!Fu8fxP?zWX238W7y&~qptmH3%Wgc+pHn_v$S4WnOBj-gIcr-F<}
z2cg{=hnCNwhQ(G;XU1YlOb`Oc8jU)$G01x1PEHPzK4&PjpcyiQ%Of$2R<(XiiLX+>
z2g_vEJPKqf?>M}dV-xZxonvhBP|L$K$8@jxpp?P$xW{X%#2Aw)%2CxJI!%^CwBOw_
zSPQR<uZPpm%j+bimXF^>cW~CoROMxX+b4zv%MAK>tj)AXPGZ8x!nlXF$hB!9c32u3
ztghfYyRJf31yTIDpr!d-sNcN$J?_2{tMJE<N5urF2F^7oh0Q0Y?;NFw@~x{G%R0g?
zlgyaz9OO_xcH@B4==1SVbdc)9>tovu(xPL=kY3O2Ur#<Z)1VE$k5>)xDO7=+w<dIN
z(c*g*v8=l=dnyus&;i!+CvZ5281!uU@o)~-9Y(P|crFIGqV%vRTP;zaY_>j97=y!g
z*S&hi{Q0~K9PWog;VblZy^aySYID9g2;7~vAMl?X*zcH77YW_(20t(eCcE_Zg)vf!
z%vpcxsGNjWGI&GWYrw9OO00Z9U6GhM(kaonMic8^A9Ay!(CPaX-UUX*O<)S>b?#PY
z2ZLE-I@S&~`PMFh39QbymPKR+v&}d_z|#?a<bF+Hz$2}At+b+t2l3~qMlE?Lh79;z
znu*sx`ry8kvU0<GBKGwdZyatEvU^_Y<x!9m2U;uiOBTtG;VW(91yMEbk$<wAqg~|K
zz+AOkVe9#XOBcR%VuhZ90!`>I*Q3(mUn<sSl>nn80>n$niPco%Oe4qJES=BQ5-EL-
zgeYtI(}&Lt`@&_XZ|*m=@JiT8#Ax(*^VGd1XioH<lweX?L&9a9wv*q>h1Y(%`-My;
zuHSCSC{gU4?LZ*<Q}Tg!+$v67xUm%u<gJA{jfPucDAqt(3fAH1DLr0(e`3FO4!rDc
zzqB%_TFScm`p?-V!DO|XYJX5T_8>q&$bUk#OdU)VogExq7)>0U&Hf86@F#Tff3vgx
z3|@yODk%*7nWfp1dq;%7qOY4AN~n=pI3E*3ZMF0zbp#;m5CyuwJ<Zuy>apG=_#hA-
zt;aJyx~2FA-Hjh}6=DlPTN)M3t#PeZrJc}A`)+IBj$5Yx1odp9s;PB0%3wms&8goG
z2FVjme3V`0S`9PA9@an4Kje=_z#p1x%MAB))v;}V-qz_Q6)tJ}-b;>%*V?=ADC#OK
zJxh8~TFD)VhDB2*1Q}-~eiO$LSox8M$!)g%r#)R>KKb)rbLuYD<7JmdSN$KxEw%@<
zv47N-dK{zPZ`Bib4G_fynZ8g^f*9J>&&Rr2XI`up*s3<f%C<A*piUk%TJr3h61XuH
zEgIml;gE?N2a`|_y;#OTSz~VZb7yt^ktf76avE_{Rw-&JYCV<y(HJ@NE4$d}H@nrn
zeE#B>G)`$LGI{KFBUBcmTwt-Zx7%>Et^YXdez_Cqob{&`MgM><kp8t6jT{~Sw-o<;
zW&h{MPLgw2V}kpB1^P$`w}IO}sR$QTWo*fDUuO)Q=spsZa-vyA;zfo__V$ou$LhA2
z>%KP<y%Z<8s(aB|uuNR9P_KN{sEm%KSK+s=dg}jiao$LyNwkQhJSdGH|2yU5xsQ(8
zO>#FO+7`K8xmvPyCQ~n3XIsmDWZeqIPRLmrHz#wLr&H?ED_ZGZOiSN-9d;P!tnt#a
zOnhWW{&T5GzUF8z{Gni?chUExV;f)6zqsoz7Nt}?ipP;(dbj1d!viZOcU<;Rx4?&j
z5mE<-Pi}HtsQ2t0dQH%f^|jg19{Kf#z7JKWF=+@Phm2<VYYengafp=Z(J*Bd*efCt
z*k>gj&gocl^i%eJkiM{PR*MNE+_55O_%kU7F&Hl!#wP@sj6)uINgw1k&K#QT3Te7@
z5OiRaXBX^CQZU?rVW?9wBbXooI-p0#A`NP*+YU>k<URZh5U1d~RXq<6)&1+E$x@vj
zY0*n<qze!BkUcJ2*ui;2c-`=$&};4Z>cHro`uydfDm(23h=T2>!SvQA_<y3dtN~8p
z`~MX5>YuxRa;N`gadmTXb+G&2n*M()8VIN<Stfdo2`%g?>=W{5*Ki`;L~8vvSprbd
z9G3W|X!~H(G1L%xY#AwB=`Wv@Zef^>Hczki-D5zwkAl}%@l|0Gfu4;V_%%LA0(-Ms
zwO4g-_y*}Oq5V!KY1hSLnCxcIr|4FP@w8b4@B3<ZrFf<q5Xh@=l2|>znJ!0<0z2W-
zdJ{%ps*$B-b~&B1=IXdEc76(|`Zj)U2OrM&1W<v8sH8laa$COw7ebFC;%$a;gWaRD
z6TeEDYqy-5#WS?xc-v<f<IuEtO5PAEi3qx}(*yzA?jXxHUJ4?XLd2f}4te^ISD_0V
z1bf=#Q7WTg2k|r%#I-KaxVhumP&8bWZ$FS5=4svoZpAo!-Tif+Z^|Z~wbO1KTE2>8
zOO)-K4Pa{>sGvz$+d!B%jZ_V_6(6lIthrNOwcbLyn%&<_WF**NExFO}{WNoM9W*$D
zXK#<Sf96ET+UL3%CM^{_yq+v-rdlY&1R1GYz$i~*{bD3HlOplVBpTnRE3r@s_bl^^
zXzUr@Mky`dC&S|si-!p#!psO24JR$BD&Vwej6p_m)efwxx*?`atL_P1W@DY{VcN5y
zV(k92TK^BQ2pEL^52NHihpzwgOaIT=e~4gLl=*jqe@}w`SA(iQANeo2(0>d6&cppj
zy7h<b_g6aZ-{OBy75zsF1hfeK-{SvE#^~QZe`ibn<An8x;q-q?n*7`4?`XMyTnv!@
zqsxB>&He52H&^r@mol3F=<?r`(Z5~(MkD^?Ld)>qE`Ng(|2Fs=V)c(fKkI)R{DZXm
zTlzN!=N~D6^M9m&Lvj9g`1eNlA3YEdt{V{0|F7-+TmJ98$-l}=J^n@he>#=F)&IT`
k{Hxm2`(M;1|KGNtC<FedRR4?h1rPLJL|7NU|GN5r0Blo^y#N3J

literal 0
HcmV?d00001


From 5b6788ae376cba25667d4732e147bda03b34db64 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Mon, 2 Dec 2024 13:37:40 +0100
Subject: [PATCH 104/107] fix: non assessable in flash mode

---
 backend/core/views.py                                |  3 ++-
 .../[id=uuid]/flash-mode/+page.server.ts             | 12 +-----------
 2 files changed, 3 insertions(+), 12 deletions(-)

diff --git a/backend/core/views.py b/backend/core/views.py
index e84d2254a..52ce3193e 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -2267,8 +2267,9 @@ def tree(self, request, pk):
     @action(detail=True, methods=["get"])
     def requirements_list(self, request, pk):
         """Returns the list of requirement assessments for the different audit modes"""
+        assessable = self.request.query_params.get("assessable", False)
         requirement_assessments_objects = self.get_object().get_requirement_assessments(
-            include_non_assessable=True
+            include_non_assessable = not assessable
         )
         requirements_objects = RequirementNode.objects.filter(
             framework=self.get_object().framework
diff --git a/frontend/src/routes/(app)/(internal)/compliance-assessments/[id=uuid]/flash-mode/+page.server.ts b/frontend/src/routes/(app)/(internal)/compliance-assessments/[id=uuid]/flash-mode/+page.server.ts
index 9aa5a35ed..a6f663d9d 100644
--- a/frontend/src/routes/(app)/(internal)/compliance-assessments/[id=uuid]/flash-mode/+page.server.ts
+++ b/frontend/src/routes/(app)/(internal)/compliance-assessments/[id=uuid]/flash-mode/+page.server.ts
@@ -7,7 +7,7 @@ export const load = (async ({ fetch, params }) => {
 	const endpoint = `${BASE_API_URL}/${URLModel}/${params.id}/`;
 
 	const [compliance_assessment, flashMode] = await Promise.all(
-		[endpoint, `${endpoint}requirements_list/`].map((endpoint) =>
+		[endpoint, `${endpoint}requirements_list/?assessable=True`].map((endpoint) =>
 			fetch(endpoint).then((res) => res.json())
 		)
 	);
@@ -15,16 +15,6 @@ export const load = (async ({ fetch, params }) => {
 	const requirement_assessments = flashMode.requirement_assessments;
 	const requirements = flashMode.requirements;
 
-	requirements.forEach((requirement) => {
-		if (
-			requirement.name &&
-			requirement.name.indexOf("Compréhension de l'organisation et de son contexte") >= 0 &&
-			requirement.description
-		) {
-			console.log(requirement);
-		}
-	});
-
 	return {
 		URLModel,
 		compliance_assessment,

From f184d38c27cc61697f366bd8e64ac145dc37f735 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Mon, 2 Dec 2024 13:38:51 +0100
Subject: [PATCH 105/107] chore: remove spaces

---
 backend/core/views.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/backend/core/views.py b/backend/core/views.py
index 52ce3193e..ba3aadc7f 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -2269,7 +2269,7 @@ def requirements_list(self, request, pk):
         """Returns the list of requirement assessments for the different audit modes"""
         assessable = self.request.query_params.get("assessable", False)
         requirement_assessments_objects = self.get_object().get_requirement_assessments(
-            include_non_assessable = not assessable
+            include_non_assessable=not assessable
         )
         requirements_objects = RequirementNode.objects.filter(
             framework=self.get_object().framework

From 4a4b161d23f6aa8220c8ed505ef50260658ceb5a Mon Sep 17 00:00:00 2001
From: Nassim <71079376+nas-tabchiche@users.noreply.github.com>
Date: Mon, 2 Dec 2024 18:02:51 +0100
Subject: [PATCH 106/107] Disable huey for now (#1117)

---
 docker-compose-build.yml                 | 32 ++++++++++++------------
 docker-compose-pg.yml                    | 28 ++++++++++-----------
 docker-compose-prod.yml                  | 28 ++++++++++-----------
 docker-compose-remote-api.yml            | 28 ++++++++++-----------
 docker-compose-remote.yml                | 28 ++++++++++-----------
 docker-compose-traefik.yml               | 28 ++++++++++-----------
 docker-compose.yml                       | 15 -----------
 enterprise/docker-compose-build.yml      | 32 ++++++++++++------------
 enterprise/docker-compose-pg.yml         | 28 ++++++++++-----------
 enterprise/docker-compose-remote-api.yml | 28 ++++++++++-----------
 enterprise/docker-compose-remote.yml     | 28 ++++++++++-----------
 enterprise/docker-compose.yml            | 28 ++++++++++-----------
 12 files changed, 158 insertions(+), 173 deletions(-)

diff --git a/docker-compose-build.yml b/docker-compose-build.yml
index 5fb7e4209..f55da3050 100644
--- a/docker-compose-build.yml
+++ b/docker-compose-build.yml
@@ -12,22 +12,22 @@ services:
     volumes:
       - ./db:/code/db
 
-  huey:
-    container_name: huey
-    build:
-      context: ./backend
-      dockerfile: Dockerfile
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
+  # huey:
+  #   container_name: huey
+  #   build:
+  #     context: ./backend
+  #     dockerfile: Dockerfile
+  #   restart: always
+  #   environment:
+  #     - ALLOWED_HOSTS=backend,localhost
+  #     - DJANGO_DEBUG=False
+  #   volumes:
+  #     - ./db:/code/db
+  #   entrypoint:
+  #     - /bin/sh
+  #     - -c
+  #     - |
+  #       poetry run python manage.py run_huey
 
   frontend:
     container_name: frontend
diff --git a/docker-compose-pg.yml b/docker-compose-pg.yml
index dba7835fb..2336c9412 100644
--- a/docker-compose-pg.yml
+++ b/docker-compose-pg.yml
@@ -16,20 +16,20 @@ services:
     volumes:
       - ./db:/code/db
 
-  huey:
-    container_name: huey
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
+  # huey:
+  #   container_name: huey
+  #   image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+  #   restart: always
+  #   environment:
+  #     - ALLOWED_HOSTS=backend,localhost
+  #     - DJANGO_DEBUG=False
+  #   volumes:
+  #     - ./db:/code/db
+  #   entrypoint:
+  #     - /bin/sh
+  #     - -c
+  #     - |
+  #       poetry run python manage.py run_huey
 
   frontend:
     container_name: frontend
diff --git a/docker-compose-prod.yml b/docker-compose-prod.yml
index 5bf39fe4d..8576f8bcd 100644
--- a/docker-compose-prod.yml
+++ b/docker-compose-prod.yml
@@ -11,20 +11,20 @@ services:
     volumes:
       - ./db:/code/db
 
-  huey:
-    container_name: huey
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
+  # huey:
+  #   container_name: huey
+  #   image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+  #   restart: always
+  #   environment:
+  #     - ALLOWED_HOSTS=backend,localhost
+  #     - DJANGO_DEBUG=False
+  #   volumes:
+  #     - ./db:/code/db
+  #   entrypoint:
+  #     - /bin/sh
+  #     - -c
+  #     - |
+  #       poetry run python manage.py run_huey
 
   frontend:
     container_name: frontend
diff --git a/docker-compose-remote-api.yml b/docker-compose-remote-api.yml
index 19c40840f..64fa67f8e 100644
--- a/docker-compose-remote-api.yml
+++ b/docker-compose-remote-api.yml
@@ -11,20 +11,20 @@ services:
     volumes:
       - ./db:/code/db
 
-  huey:
-    container_name: huey
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
+  # huey:
+  # container_name: huey
+  # image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+  # restart: always
+  # environment:
+  #   - ALLOWED_HOSTS=backend,localhost
+  #   - DJANGO_DEBUG=False
+  # volumes:
+  #   - ./db:/code/db
+  # entrypoint:
+  #   - /bin/sh
+  #   - -c
+  # - |
+  #   poetry run python manage.py run_huey
 
   frontend:
     container_name: frontend
diff --git a/docker-compose-remote.yml b/docker-compose-remote.yml
index 4366180d2..9a12300db 100644
--- a/docker-compose-remote.yml
+++ b/docker-compose-remote.yml
@@ -11,20 +11,20 @@ services:
     volumes:
       - ./db:/code/db
 
-  huey:
-    container_name: huey
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
+  # huey:
+  #   container_name: huey
+  #   image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+  #   restart: always
+  #   environment:
+  #     - ALLOWED_HOSTS=backend,localhost
+  #     - DJANGO_DEBUG=False
+  #   volumes:
+  #     - ./db:/code/db
+  #   entrypoint:
+  #     - /bin/sh
+  #     - -c
+  #     - |
+  #       poetry run python manage.py run_huey
 
   frontend:
     container_name: frontend
diff --git a/docker-compose-traefik.yml b/docker-compose-traefik.yml
index e13f36a8d..23c952bde 100644
--- a/docker-compose-traefik.yml
+++ b/docker-compose-traefik.yml
@@ -22,20 +22,20 @@ services:
     networks:
       - front
 
-  huey:
-    container_name: huey
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
+  # huey:
+  #   container_name: huey
+  #   image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+  #   restart: always
+  #   environment:
+  #     - ALLOWED_HOSTS=backend,localhost
+  #     - DJANGO_DEBUG=False
+  #   volumes:
+  #     - ./db:/code/db
+  #   entrypoint:
+  #     - /bin/sh
+  #     - -c
+  #     - |
+  #       poetry run python manage.py run_huey
 
   frontend:
     container_name: frontend
diff --git a/docker-compose.yml b/docker-compose.yml
index 277606864..d723deee3 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -11,21 +11,6 @@ services:
     volumes:
       - ./db:/code/db
 
-  huey:
-    container_name: huey
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
-
   frontend:
     container_name: frontend
     environment:
diff --git a/enterprise/docker-compose-build.yml b/enterprise/docker-compose-build.yml
index 4ad962972..cbab56653 100644
--- a/enterprise/docker-compose-build.yml
+++ b/enterprise/docker-compose-build.yml
@@ -13,22 +13,22 @@ services:
     volumes:
       - ./db:/code/db
 
-  huey:
-    container_name: huey
-    build:
-      context: ../
-      dockerfile: ./enterprise/backend/Dockerfile
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
+  # huey:
+  #   container_name: huey
+  #   build:
+  #     context: ../
+  #     dockerfile: ./enterprise/backend/Dockerfile
+  #   restart: always
+  #   environment:
+  #     - ALLOWED_HOSTS=backend,localhost
+  #     - DJANGO_DEBUG=False
+  #   volumes:
+  #     - ./db:/code/db
+  #   entrypoint:
+  #     - /bin/sh
+  #     - -c
+  #     - |
+  #       poetry run python manage.py run_huey
 
   frontend:
     container_name: frontend
diff --git a/enterprise/docker-compose-pg.yml b/enterprise/docker-compose-pg.yml
index da9cd8f66..7f9c44985 100644
--- a/enterprise/docker-compose-pg.yml
+++ b/enterprise/docker-compose-pg.yml
@@ -16,20 +16,20 @@ services:
     volumes:
       - ./db:/code/db
 
-  huey:
-    container_name: huey
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
+  # huey:
+  #   container_name: huey
+  #   image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+  #   restart: always
+  #   environment:
+  #     - ALLOWED_HOSTS=backend,localhost
+  #     - DJANGO_DEBUG=False
+  #   volumes:
+  #     - ./db:/code/db
+  #   entrypoint:
+  #     - /bin/sh
+  #     - -c
+  #     - |
+  #       poetry run python manage.py run_huey
 
   frontend:
     container_name: frontend
diff --git a/enterprise/docker-compose-remote-api.yml b/enterprise/docker-compose-remote-api.yml
index 17aeb8a12..7647a5310 100644
--- a/enterprise/docker-compose-remote-api.yml
+++ b/enterprise/docker-compose-remote-api.yml
@@ -11,20 +11,20 @@ services:
     volumes:
       - ./db:/code/db
 
-  huey:
-    container_name: huey
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
+  # huey:
+  #   container_name: huey
+  #   image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+  #   restart: always
+  #   environment:
+  #     - ALLOWED_HOSTS=backend,localhost
+  #     - DJANGO_DEBUG=False
+  #   volumes:
+  #     - ./db:/code/db
+  #   entrypoint:
+  #     - /bin/sh
+  #     - -c
+  #     - |
+  #       poetry run python manage.py run_huey
 
   frontend:
     container_name: frontend
diff --git a/enterprise/docker-compose-remote.yml b/enterprise/docker-compose-remote.yml
index ed410bf33..ba99da11c 100644
--- a/enterprise/docker-compose-remote.yml
+++ b/enterprise/docker-compose-remote.yml
@@ -11,20 +11,20 @@ services:
     volumes:
       - ./db:/code/db
 
-  huey:
-    container_name: huey
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
+  # huey:
+  #   container_name: huey
+  #   image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+  #   restart: always
+  #   environment:
+  #     - ALLOWED_HOSTS=backend,localhost
+  #     - DJANGO_DEBUG=False
+  #   volumes:
+  #     - ./db:/code/db
+  #   entrypoint:
+  #     - /bin/sh
+  #     - -c
+  #     - |
+  #       poetry run python manage.py run_huey
 
   frontend:
     container_name: frontend
diff --git a/enterprise/docker-compose.yml b/enterprise/docker-compose.yml
index ab78faf90..19d35c08d 100644
--- a/enterprise/docker-compose.yml
+++ b/enterprise/docker-compose.yml
@@ -13,20 +13,20 @@ services:
     volumes:
       - ./db:/code/db
 
-  huey:
-    container_name: huey
-    image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
-    restart: always
-    environment:
-      - ALLOWED_HOSTS=backend,localhost
-      - DJANGO_DEBUG=False
-    volumes:
-      - ./db:/code/db
-    entrypoint:
-      - /bin/sh
-      - -c
-      - |
-        poetry run python manage.py run_huey
+  # huey:
+  #   container_name: huey
+  #   image: ghcr.io/intuitem/ciso-assistant-community/backend:latest
+  #   restart: always
+  #   environment:
+  #     - ALLOWED_HOSTS=backend,localhost
+  #     - DJANGO_DEBUG=False
+  #   volumes:
+  #     - ./db:/code/db
+  #   entrypoint:
+  #     - /bin/sh
+  #     - -c
+  #     - |
+  #       poetry run python manage.py run_huey
 
   frontend:
     container_name: frontend

From 4b803b3b9758f3404f65966d4fac6a82c318d036 Mon Sep 17 00:00:00 2001
From: Abder <smimite@gmail.com>
Date: Mon, 2 Dec 2024 21:02:31 +0100
Subject: [PATCH 107/107] Ebios RM tiles (#1099)

---
 frontend/messages/en.json                     | 25 +++++++-
 frontend/messages/fr.json                     | 25 +++++++-
 .../ebios-rm/[id=uuid]/+page.svelte           | 47 ++++++++++++++
 .../(internal)/ebios-rm/[id=uuid]/Tile.svelte | 63 +++++++++++++++++++
 .../(internal)/experimental/+page.svelte      |  6 ++
 5 files changed, 164 insertions(+), 2 deletions(-)
 create mode 100644 frontend/src/routes/(app)/(internal)/ebios-rm/[id=uuid]/+page.svelte
 create mode 100644 frontend/src/routes/(app)/(internal)/ebios-rm/[id=uuid]/Tile.svelte

diff --git a/frontend/messages/en.json b/frontend/messages/en.json
index d7580d035..8be7b78d0 100644
--- a/frontend/messages/en.json
+++ b/frontend/messages/en.json
@@ -896,5 +896,28 @@
 	"p1": "P1",
 	"p2": "P2",
 	"p3": "P3",
-	"p4": "P4"
+	"p4": "P4",
+	"ebiosWs1": "Workshop 1: Framing and Security Foundation",
+	"ebiosWs2": "Workshop 2: Risk Sources",
+	"ebiosWs3": "Workshop 3: Strategic Scenarios",
+	"ebiosWs4": "Workshop 4: Operational Scenarios",
+	"ebiosWs5": "Workshop 5: Risk Treatment",
+	"ebiosWs1_1": "Define the study framework",
+	"ebiosWs1_2": "Define business and technical perimeter",
+	"ebiosWs1_3": "Identify feared events",
+	"ebiosWs1_4": "Determine the security foundation",
+	"ebiosWs2_1": "Identify risk sources and targeted objectives",
+	"ebiosWs2_2": "Evaluate RS/TO pairs",
+	"ebiosWs2_3": "Select RS/TO pairs",
+	"ebiosWs3_1": "Map the ecosystem",
+	"ebiosWs3_2": "Develop strategic scenarios",
+	"ebiosWs3_3": "Define security measures for the ecosystem",
+	"ebiosWs4_1": "Develop operational scenarios",
+	"ebiosWs4_2": "Evaluate the likelihood of operational scenarios",
+	"ebiosWs5_1": "Conduct a risk assessment",
+	"ebiosWs5_2": "Decide on risk treatment strategy",
+	"ebiosWs5_3": "Define security measures",
+	"ebiosWs5_4": "Assess and document residual risks",
+	"ebiosWs5_5": "Establish risk monitoring framework",
+	"activity": "Activity"
 }
diff --git a/frontend/messages/fr.json b/frontend/messages/fr.json
index e6c7f83fa..29ce9296c 100644
--- a/frontend/messages/fr.json
+++ b/frontend/messages/fr.json
@@ -872,5 +872,28 @@
 	"forgotPassword": "Mot de passe oublié",
 	"ssoSettingsUpdated": "Paramètres SSO mis à jour",
 	"scoreSemiColon": "Score:",
-	"mappingInferenceHelpText": "Ces variables sont fixes et ne changeront pas en fonction de la source."
+	"mappingInferenceHelpText": "Ces variables sont fixes et ne changeront pas en fonction de la source.",
+	"ebiosWs1": "Atelier 1 : Cadrage et Socle de sécurité",
+	"ebiosWs2": "Atelier 2 : Sources de risque",
+	"ebiosWs3": "Atelier 3 : Scénarios stratégiques",
+	"ebiosWs4": "Atelier 4 : Scenarios opértionnels",
+	"ebiosWs5": "Atelier 5 : Traitement du risque",
+	"ebiosWs1_1": "Définir le cadre de l’étude",
+	"ebiosWs1_2": "Définir le périmètre métier et technique",
+	"ebiosWs1_3": "Identifier les événements redoutés",
+	"ebiosWs1_4": "Déterminer le socle de sécurité",
+	"ebiosWs2_1": "Identifier les sources de risque et objectifs visés",
+	"ebiosWs2_2": "Évaluer les couples SR/OV",
+	"ebiosWs2_3": "Sélectionner les couples SR/OV",
+	"ebiosWs3_1": "Cartographier l’écosystème",
+	"ebiosWs3_2": "Élaborer les scénarios stratégiques",
+	"ebiosWs3_3": "Définir les mesures de sécurité sur l’écosystème",
+	"ebiosWs4_1": "Elaborer les scénarios opérationnels",
+	"ebiosWs4_2": "Evaluer la vraisemblance des scénarios opérationnel",
+	"ebiosWs5_1": "Réaliser une évaluation des risques",
+	"ebiosWs5_2": "Décider de la stratégie de traitement du risque",
+	"ebiosWs5_3": "Définir les mesures de sécurité",
+	"ebiosWs5_4": "Évaluer et documenter les risques résiduels",
+	"ebiosWs5_5": "Mettre en place le cadre de suivi des risques",
+	"activity": "Activité"
 }
diff --git a/frontend/src/routes/(app)/(internal)/ebios-rm/[id=uuid]/+page.svelte b/frontend/src/routes/(app)/(internal)/ebios-rm/[id=uuid]/+page.svelte
new file mode 100644
index 000000000..33000896f
--- /dev/null
+++ b/frontend/src/routes/(app)/(internal)/ebios-rm/[id=uuid]/+page.svelte
@@ -0,0 +1,47 @@
+<script lang="ts">
+	import * as m from '$paraglide/messages';
+	import { safeTranslate } from '$lib/utils/i18n';
+	import Tile from './Tile.svelte';
+	const data = {
+		ws1: [
+			{ title: safeTranslate(m.ebiosWs1_1()), status: 'done', href: '#' },
+			{ title: safeTranslate(m.ebiosWs1_2()), status: 'done', href: '#' },
+			{ title: safeTranslate(m.ebiosWs1_3()), status: 'to_do', href: '#' },
+			{ title: safeTranslate(m.ebiosWs1_4()), status: 'to_do', href: '#' }
+		],
+		ws2: [
+			{ title: safeTranslate(m.ebiosWs2_1()), status: 'to_do', href: '#' },
+			{ title: safeTranslate(m.ebiosWs2_2()), status: 'to_do', href: '#' },
+			{ title: safeTranslate(m.ebiosWs2_3()), status: 'to_do', href: '#' }
+		],
+		ws3: [
+			{ title: safeTranslate(m.ebiosWs3_1()), status: 'to_do', href: '#' },
+			{ title: safeTranslate(m.ebiosWs3_2()), status: 'to_do', href: '#' },
+			{ title: safeTranslate(m.ebiosWs3_3()), status: 'done', href: '#' }
+		],
+		ws4: [
+			{ title: safeTranslate(m.ebiosWs4_1()), status: 'to_do', href: '#' },
+			{ title: safeTranslate(m.ebiosWs4_2()), status: 'to_do', href: '#' }
+		],
+		ws5: [
+			{ title: safeTranslate(m.ebiosWs5_1()), status: 'done', href: '#' },
+			{ title: safeTranslate(m.ebiosWs5_2()), status: 'done', href: '#' },
+			{ title: safeTranslate(m.ebiosWs5_3()), status: 'to_do', href: '#' },
+			{ title: safeTranslate(m.ebiosWs5_4()), status: 'to_do', href: '#' },
+			{ title: safeTranslate(m.ebiosWs5_5()), status: 'done', href: '#' }
+		]
+	};
+</script>
+
+<div class="h-screen w-full p-8">
+	<div
+		class="card bg-white shadow-lg w-full h-full grid xl:grid-cols-3 lg:grid-cols-2 md:grid-cols-1 gap-8 p-8"
+	>
+		<Tile title={m.ebiosWs1()} accent_color="bg-pink-600" status="to_do" meta={data.ws1} />
+		<Tile title={m.ebiosWs2()} accent_color="bg-fuchsia-900" status="to_do" meta={data.ws2} />
+		<Tile title={m.ebiosWs3()} accent_color="bg-teal-500" status="to_do" meta={data.ws3} />
+		<Tile title={m.ebiosWs4()} accent_color="bg-yellow-600" status="to_do" meta={data.ws4} />
+		<Tile title={m.ebiosWs5()} accent_color="bg-red-500" status="to_do" meta={data.ws5} />
+		<Tile title={m.summary()} accent_color="bg-purple-800" status="to_do" />
+	</div>
+</div>
diff --git a/frontend/src/routes/(app)/(internal)/ebios-rm/[id=uuid]/Tile.svelte b/frontend/src/routes/(app)/(internal)/ebios-rm/[id=uuid]/Tile.svelte
new file mode 100644
index 000000000..00fe2faee
--- /dev/null
+++ b/frontend/src/routes/(app)/(internal)/ebios-rm/[id=uuid]/Tile.svelte
@@ -0,0 +1,63 @@
+<script lang="ts">
+	import * as m from '$paraglide/messages';
+	import { safeTranslate } from '$lib/utils/i18n';
+
+	export let title = 'activity';
+	export let status = '';
+	export let meta = null;
+	export let href = '#';
+	export let accent_color = '';
+</script>
+
+<div class="p-5 {accent_color}">
+	<div class="rounded-lg bg-white p-4 flex flex-col justify-between h-full">
+		<div class="flex justify-between mb-2">
+			<div class="font-semibold">{title}</div>
+			<div class="text-xl" title={safeTranslate(status)}>
+				{#if status == 'to_do'}
+					<i class="fa-solid fa-exclamation"></i>
+				{:else if status == 'in_progress'}
+					<i class="fa-solid fa-spinner"></i>
+				{:else if status == 'done'}
+					<i class="fa-solid fa-check"></i>
+				{/if}
+			</div>
+		</div>
+		{#if meta}
+			<div class="flex mx-auto">
+				<div>
+					<ol class="relative text-gray-500 border-s border-gray-200">
+						{#each meta as step, i}
+							{#if step.status == 'done'}
+								<li class="mb-10 ms-6">
+									<a href={step.href} class="hover:text-purple-800">
+										<span
+											class="absolute flex items-center justify-center w-8 h-8 bg-green-200 rounded-full -start-4 ring-4 ring-white"
+										>
+											<i class="fa-solid fa-check"></i>
+										</span>
+										<h3 class="font-medium leading-tight">{m.activity()} {i + 1}</h3>
+										<p class="text-sm">{step.title}</p>
+									</a>
+								</li>
+							{:else}
+								<li class="mb-10 ms-6">
+									<a href={step.href} class="hover:text-purple-800">
+										<span
+											class="absolute flex items-center justify-center w-8 h-8 bg-gray-100 rounded-full -start-4 ring-4 ring-white"
+										>
+											<i class="fa-solid fa-clipboard-check"></i>
+										</span>
+										<h3 class="font-medium leading-tight">{m.activity()} {i + 1}</h3>
+										<p class="text-sm">{step.title}</p>
+									</a>
+								</li>
+							{/if}
+						{/each}
+					</ol>
+				</div>
+			</div>
+		{/if}
+		<div class="justify-end flex"></div>
+	</div>
+</div>
diff --git a/frontend/src/routes/(app)/(internal)/experimental/+page.svelte b/frontend/src/routes/(app)/(internal)/experimental/+page.svelte
index 7964bcdf6..d9a1f5d98 100644
--- a/frontend/src/routes/(app)/(internal)/experimental/+page.svelte
+++ b/frontend/src/routes/(app)/(internal)/experimental/+page.svelte
@@ -27,4 +27,10 @@
 		link="assets/graph"
 		tags={['analysis', 'assets']}
 	/>
+	<Article
+		title="Ebios RM (dev)"
+		desc="Tiles to manage the workshop"
+		link="/ebios-rm/5de0c0c3-678c-43f0-bdb6-b2ed434e1843"
+		tags={['analysis', 'risk']}
+	/>
 </div>