From 5ad3aee8f65e628242fa36bd9b08fb521a6708fb Mon Sep 17 00:00:00 2001
From: Davide Scaini <davide.scaini@alumni.cern>
Date: Mon, 13 Apr 2026 18:49:20 +0200
Subject: [PATCH] =?UTF-8?q?rename=20privacy=20"private"=20=E2=86=92=20"unl?=
 =?UTF-8?q?isted";=20enable=20GPS=20for=20unlisted?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- "unlisted" = not shown in the public feed, but GPS track, timeseries
  and detail JSON are all accessible by direct URL (security by obscurity)
- "private" accepted as legacy alias everywhere (backward compat with
  existing data on disk)
- New writes from Strava sync / ZIP upload / sidecar use "unlisted"
- Only "no_gps" now suppresses the GPS track
- isUnlisted() helper in format.ts used by all Svelte/Astro components
- SCHEMA.md and CLAUDE.md document the privacy model and the distinction
  between "unlisted" and "no_gps"
---
 .claude/settings.local.json                   |  31 +++
 CLAUDE.md                                     |   5 +
 SCHEMA.md                                     |  21 +-
 advice.md                                     |  79 +++++++
 bincio/edit/server.py                         |   2 +-
 bincio/extract/strava_api.py                  |   4 +-
 bincio/extract/timeseries.py                  |   5 +-
 bincio/extract/writer.py                      |   7 +-
 bincio/render/merge.py                        |  12 +-
 bincio/serve/server.py                        |   2 +-
 issues.md                                     |  99 ++++++++
 site/public/bincio-0.1.0-py3-none-any.whl     | Bin 0 -> 60977 bytes
 site/public/data                              |   1 +
 .../components/ActivityDetailLoader.svelte    |   3 +-
 site/src/components/ActivityFeed.svelte       |  12 +-
 site/src/components/AthleteView.svelte        |   3 +-
 site/src/components/CommunityView.svelte      |   4 +-
 site/src/components/StatsView.svelte          |   4 +-
 site/src/layouts/Base.astro                   |   4 +-
 site/src/lib/format.ts                        |   8 +-
 site/src/lib/types.ts                         |   4 +-
 site/src/pages/activity/[id].astro            |   4 +-
 todo.md                                       | 213 ++++++++++++++++++
 23 files changed, 489 insertions(+), 38 deletions(-)
 create mode 100644 .claude/settings.local.json
 create mode 100644 advice.md
 create mode 100644 issues.md
 create mode 100644 site/public/bincio-0.1.0-py3-none-any.whl
 create mode 120000 site/public/data
 create mode 100644 todo.md

diff --git a/.claude/settings.local.json b/.claude/settings.local.json
new file mode 100644
index 0000000..58f3bd8
--- /dev/null
+++ b/.claude/settings.local.json
@@ -0,0 +1,31 @@
+{
+  "permissions": {
+    "allow": [
+      "Read(//Users/brutsalvadi/src/bincio_data/_merged/**)",
+      "Read(//Users/brutsalvadi/src/bincio_data/**)",
+      "Bash(python3 -c \"import json,sys; d=json.load\\(sys.stdin\\); print\\(list\\(d.get\\(''''dependencies'''',{}\\).keys\\(\\)\\)\\)\")",
+      "Bash(uv run:*)",
+      "Bash(python3 -c \"import pyodide\")",
+      "Bash(uv build:*)",
+      "Bash(npm install:*)",
+      "Bash(npm run:*)",
+      "Bash(mkdir -p /tmp/bincio_ci/activities)",
+      "Bash(BINCIO_DATA_DIR=/tmp/bincio_ci npm run build)",
+      "Bash(ls /Users/brutsalvadi/src/bincio_activity/*.md)",
+      "Bash(python3:*)",
+      "Bash(wc -l /Users/brutsalvadi/src/bincio_activity/bincio/extract/*.py)",
+      "Bash(grep -E \"\\\\.py$\")",
+      "Bash([ -f ~/src/cycling_data_davide/activities.csv ])",
+      "Read(//Users/brutsalvadi/src/cycling_data_davide/**)",
+      "Bash(ls -la /tmp/bincio_dev_test/dave/_merged/activities/*.json)",
+      "Bash(ls -la /tmp/bincio_dev_test/dave/_merged/activities/*.geojson)",
+      "Bash(unzip -l ~/src/cycling_data_davide/export_18885842.zip)",
+      "Bash(unzip -p export_18885842.zip profile.csv)",
+      "Bash(unzip -p export_18885842.zip bikes.csv)",
+      "Bash(unzip -p export_18885842.zip routes.csv)",
+      "Bash(unzip -p export_18885842.zip privacy_zones.csv)",
+      "Bash(unzip -p export_18885842.zip activities.csv)",
+      "Bash(xargs -I{} python3 -c \"import json,sys; d=json.load\\(open\\('{}'\\)\\);print\\({k:d.get\\(k\\) for k in ['title','strava_id','started_at','privacy']}\\)\")"
+    ]
+  }
+}
diff --git a/CLAUDE.md b/CLAUDE.md
index f721bea..414a8f9 100644
--- a/CLAUDE.md
+++ b/CLAUDE.md
@@ -205,6 +205,11 @@ gear: "Trek Domane"
 Rode with friends. Legs felt great after the rest week...
 ```
 
+The sidecar `private: true` flag maps to `privacy: "unlisted"` in the merged JSON.
+**`unlisted`** means: not shown in the public feed, but the activity detail, GPS track,
+and timeseries are all accessible by direct URL (security by obscurity, same model
+as the detail JSON itself). Use `no_gps` if the GPS track must not be published.
+
 ### Editing UX: drawer in Astro + `bincio edit` write API
 
 - `bincio edit --data-dir ~/bincio_data` starts a FastAPI server on port 4041
diff --git a/SCHEMA.md b/SCHEMA.md
index 0960341..3802199 100644
--- a/SCHEMA.md
+++ b/SCHEMA.md
@@ -124,7 +124,7 @@ needed to render an activity card in a feed — no timeseries, no full track.
 | `avg_cadence_rpm` | integer\|null | no | Average cadence (rpm for cycling, spm for running). |
 | `avg_power_w` | integer\|null | no | Average power in watts. |
 | `source` | string\|null | no | Origin of data. See **Source values**. |
-| `privacy` | string | yes | One of: `public`, `blur_start`, `no_gps`, `private`. |
+| `privacy` | string | yes | One of: `public`, `blur_start`, `no_gps`, `unlisted`. (`private` is a deprecated alias for `unlisted`.) |
 | `mmp` | array\|null | no | Mean Maximal Power curve — `[[duration_s, avg_watts], ...]`. |
 | `best_efforts` | array\|null | no | Best efforts by distance — `[[distance_km, time_s], ...]`. |
 | `best_climb_m` | number\|null | no | Best single climb in metres (Kadane's algorithm). |
@@ -165,12 +165,21 @@ timestamp alone is sufficient: `2024-06-01T073012Z`.
 
 ### Privacy levels
 
-| Level | GPS track published | Timeseries lat/lon | Stats in index |
+| Level | GPS track published | Timeseries lat/lon | Shown in feed |
 |---|---|---|---|
-| `public` | Full track | Included | Yes |
-| `blur_start` | First/last 200 m removed | Trimmed | Yes |
-| `no_gps` | Not published | Not included | Yes |
-| `private` | Not published | Not included | No (not in index at all) |
+| `public` | Full track | Included | Yes — everyone |
+| `blur_start` | First/last 200 m removed | Trimmed | Yes — everyone |
+| `no_gps` | Not published | Not included | Yes — everyone |
+| `unlisted` | Full track | Included | No — owner only (via direct URL) |
+| `private` | *(deprecated alias for `unlisted`)* | Included | No — owner only |
+
+**`unlisted`** activities are not shown in the public feed but are fully accessible
+by direct URL — the GPS track, timeseries, and detail JSON are all served as normal
+static files. This is "security by obscurity": knowing the URL is sufficient to
+access the activity. If you need true data exclusion, use `no_gps` for GPS removal
+while keeping stats public, or delete the activity entirely.
+
+The legacy `private` value is accepted everywhere `unlisted` is valid.
 
 ---
 
diff --git a/advice.md b/advice.md
new file mode 100644
index 0000000..6454668
--- /dev/null
+++ b/advice.md
@@ -0,0 +1,79 @@
+# Advice on ARCHITECTURE.md
+
+Review of the mobile / offline plan in `ARCHITECTURE.md`. The two-stage extract/render pipeline, edit flow, and federation sections are accurate and clear — this document focuses on where the architectural risk lives: the mobile app and the path to fully-offline operation.
+
+## What's strong
+
+- **Workflow framing (1–4) is the right way to think about it.** Each workflow is a concrete user story, not an abstract capability list. Workflow 1 (record → convert → cloud) is achievable with what's already there; that's a good wedge to ship first.
+- **Honest status table** at the bottom of "Fully offline — missing pieces". An architecture doc that admits what isn't done is more useful than one that hand-waves.
+- **Incremental validation plan (§5).** Testing the service worker approach in the browser before touching native builds is the right call — cheap to run, and the failure mode is informative rather than expensive.
+
+## Decision: drop `capacitor-nodejs`
+
+The doc previously listed `capacitor-nodejs` as a fallback if service workers fail on iOS. We are dropping this option entirely. Reasons:
+
+- It embeds a full Node runtime, meaningfully increasing app size.
+- iOS support relies on a fork of Node-mobile and has historically been spotty.
+- It introduces a long-term maintenance burden (tracking upstream Node, plugin updates, two runtimes to debug).
+- The "Hard" effort label in the original status table understated both the integration risk and the ongoing cost.
+
+If service workers turn out to be blocked on iOS, the fallback should be one of:
+
+1. **A data access abstraction** (see next section) that lets the app read from IndexedDB directly via a JS loader, with no `fetch('/data/*')` in the hot path at all. This sidesteps the WKWebView question entirely.
+2. **A native Swift/Kotlin micro-server** if a local HTTP origin is genuinely required.
+3. **Bundling data as static assets** and re-running `cap sync` on import — crude but boring and reliable.
+
+`capacitor-nodejs` should not appear in the doc, the test plan, or the status table.
+
+## Things to fix or add
+
+### 1. Add a data access abstraction step *before* the service worker work
+
+The doc frames the offline problem as "serve local data to the WebView at `/data/*`". That skips a prior question: does the Astro site actually need to fetch `/data/*` at runtime, or can the data layer be abstracted behind a thin loader (`loadIndex()`, `loadActivity(id)`) with two implementations?
+
+- **Cloud build:** loader uses `fetch('/data/...')` as today.
+- **App build:** loader reads from IndexedDB directly.
+
+This is a much smaller change than service worker interception, avoids the iOS WKWebView question entirely, and is useful even if you stay cloud-only (testability, mocking, future federation transports). It should land *before* any service worker work — at which point the SW work may turn out to be unnecessary.
+
+### 2. Commit to JS for sidecar merge — do not use Pyodide
+
+The "missing pieces" section lists two options for re-running `merge_all` on save: reimplement in JS (~150 lines) or call into Pyodide. Pick JS. Reasons:
+
+- Pyodide is lazy-loaded by `/convert/`. It is **not** warm just because the app is open.
+- A user tapping Edit → change title → Save would trigger a multi-second Pyodide cold start (~10MB) for a one-line edit. Terrible UX, and it repeats on every cold app launch.
+- Porting `merge_all` to JS keeps the edit drawer decoupled from the convert page's machinery. The two subsystems stay independent.
+
+Pyodide should remain convert-page-only.
+
+### 3. The Workflow 4 diagram contradicts the test plan
+
+The "Fully offline on phone" workflow shows a "Local Node server" arrow as if it were the chosen path. The §5 test plan picks service workers first. The diagram should reflect that — show the SW path as primary, and drop the Node server box entirely (per the decision above).
+
+### 4. Missing: data lifecycle on device
+
+Nothing in the doc covers:
+
+- How much storage the app is allowed to use on iOS before the OS evicts it.
+- What happens on uninstall / reinstall.
+- Sync / conflict resolution if the same activity exists locally and on a cloud instance.
+
+These don't need solutions today, but they should be acknowledged as open questions. Otherwise Workflow 4 will hit all of them at once during implementation.
+
+### 5. Reconcile Pyodide payload size
+
+Line 162 says "~8MB", line 335 says "~10MB". Pick one and use it consistently.
+
+## Small stuff
+
+- The federation diagram uses a `Note1` node that won't render as a Mermaid note — it'll appear as a regular box. Use `%%` comments or restructure.
+- The "iOS: App Store / TestFlight" cell in the PWA-vs-Capacitor table sits in the Capacitor column but reads like a downside. Clarify it's the distribution path, not a limitation relative to PWA.
+
+## Bottom line
+
+The plan is sound and the incremental validation approach is right. The two highest-leverage changes:
+
+1. **Add a data access abstraction layer** before the service worker work. It's small, useful regardless, and may make the SW work moot.
+2. **Port `merge_all` to JS** so the edit drawer doesn't depend on Pyodide warm-up.
+
+With `capacitor-nodejs` removed, the offline path is: data access abstraction → IndexedDB-backed loader → JS merge → (optionally) service worker for any remaining `fetch('/data/*')` callsites that can't be migrated to the loader.
diff --git a/bincio/edit/server.py b/bincio/edit/server.py
index cc3acd6..64ea731 100644
--- a/bincio/edit/server.py
+++ b/bincio/edit/server.py
@@ -183,7 +183,7 @@ textarea { resize: vertical; min-height: 140px; }
             <input type="checkbox" id="highlight" name="highlight"> Highlight in feed
           </label>
           <label class="toggle" id="toggle-private">
-            <input type="checkbox" id="private" name="private"> Private (hide from feed)
+            <input type="checkbox" id="private" name="private"> Unlisted (hide from feed)
           </label>
         </div>
       </div>
diff --git a/bincio/extract/strava_api.py b/bincio/extract/strava_api.py
index c60ecd4..4675ae9 100644
--- a/bincio/extract/strava_api.py
+++ b/bincio/extract/strava_api.py
@@ -201,7 +201,7 @@ def strava_to_parsed(meta: dict, streams: dict) -> ParsedActivity:
     source = f"strava:{meta['id']}"
     source_hash = "sha256:" + hashlib.sha256(source.encode()).hexdigest()
 
-    # Map Strava visibility to BAS privacy: only_me → private, everything else → public
+    # Map Strava visibility to BAS privacy: only_me → unlisted, everything else → public
     visibility = meta.get("visibility") or ""
     is_private = meta.get("private", False) or visibility == "only_me"
 
@@ -214,5 +214,5 @@ def strava_to_parsed(meta: dict, streams: dict) -> ParsedActivity:
         title=meta.get("name") or None,
         description=meta.get("description") or None,
         strava_id=str(meta["id"]),
-        privacy="private" if is_private else "public",
+        privacy="unlisted" if is_private else "public",
     )
diff --git a/bincio/extract/timeseries.py b/bincio/extract/timeseries.py
index 6b6a0b7..dc164b8 100644
--- a/bincio/extract/timeseries.py
+++ b/bincio/extract/timeseries.py
@@ -14,13 +14,14 @@ def build_timeseries(
 ) -> dict:
     """Return the BAS `timeseries` object.
 
-    privacy='no_gps' or 'private' → lat/lon set to null.
+    privacy='no_gps' → lat/lon set to null. All other privacy levels
+    (including 'unlisted') retain GPS in the timeseries.
     Downsamples so at most one point per second is emitted.
     """
     if not points:
         return {"t": []}
 
-    include_gps = privacy not in ("no_gps", "private")
+    include_gps = privacy not in ("no_gps", "private")  # "private" = legacy alias for "unlisted"
 
     # Downsample: keep at most one point per second
     sampled: list[DataPoint] = []
diff --git a/bincio/extract/writer.py b/bincio/extract/writer.py
index 8648bc6..089c83b 100644
--- a/bincio/extract/writer.py
+++ b/bincio/extract/writer.py
@@ -48,7 +48,10 @@ def write_activity(
     acts_dir.mkdir(parents=True, exist_ok=True)
 
     source = _infer_source(activity)
-    has_gps = metrics.bbox is not None and privacy not in ("no_gps", "private")
+    # "unlisted" activities keep their GPS track (not in the public feed, but the
+    # URL is not secret — same model as the detail JSON). Only "no_gps" suppresses
+    # the track. "private" is the legacy alias for "unlisted".
+    has_gps = metrics.bbox is not None and privacy not in ("no_gps",)
 
     # Build timeseries once — written to a separate file to keep detail JSON small.
     # Treat an empty timeseries (no points) as None so no file is created.
@@ -220,7 +223,7 @@ def build_summary(
     privacy: str = "public",
 ) -> dict:
     """Build the Activity Summary object for index.json."""
-    has_gps = metrics.bbox is not None and privacy not in ("no_gps", "private")
+    has_gps = metrics.bbox is not None and privacy not in ("no_gps",)
     return {
         "id": activity_id,
         "title": activity.title or _auto_title(activity),
diff --git a/bincio/render/merge.py b/bincio/render/merge.py
index c90cb35..7c82308 100644
--- a/bincio/render/merge.py
+++ b/bincio/render/merge.py
@@ -49,7 +49,7 @@ def apply_sidecar(detail: dict, fm: dict, body: str) -> dict:
     if "highlight" in fm:
         d["custom"]["highlight"] = bool(fm["highlight"])
     if "private" in fm:
-        d["privacy"] = "private" if fm["private"] else detail.get("privacy", "public")
+        d["privacy"] = "unlisted" if fm["private"] else detail.get("privacy", "public")
     if "hide_stats" in fm:
         d["custom"]["hide_stats"] = [str(s) for s in (fm["hide_stats"] or [])]
 
@@ -69,7 +69,7 @@ def _apply_sidecar_summary(summary: dict, fm: dict) -> dict:
     if "highlight" in fm:
         s["custom"]["highlight"] = bool(fm["highlight"])
     if "private" in fm:
-        s["privacy"] = "private" if fm["private"] else summary.get("privacy", "public")
+        s["privacy"] = "unlisted" if fm["private"] else summary.get("privacy", "public")
 
     return s
 
@@ -260,10 +260,10 @@ def merge_all(data_dir: Path) -> int:
                 s = _apply_sidecar_summary(s, fm)
             activities.append(s)
 
-        # Drop private activities from the published feed
-        # Sort: newest first, then bring highlighted activities to the top
-        # Private activities are kept in the index so the owner can see them;
-        # the feed UI filters them out for non-owners client-side.
+        # "unlisted" (and legacy "private") activities are kept in the index so
+        # the owner can reach them by direct URL; the feed UI filters them out
+        # for non-owners client-side.
+        # Sort: newest first, then bring highlighted activities to the top.
         activities.sort(key=lambda a: a.get("started_at", ""), reverse=True)
         activities.sort(key=lambda a: 0 if a.get("custom", {}).get("highlight") else 1)
 
diff --git a/bincio/serve/server.py b/bincio/serve/server.py
index 9a94e70..c8bb828 100644
--- a/bincio/serve/server.py
+++ b/bincio/serve/server.py
@@ -879,7 +879,7 @@ async def upload_strava_zip(
     if not file.filename or not file.filename.lower().endswith(".zip"):
         raise HTTPException(400, "Please upload a .zip file")
 
-    privacy = "private" if private.lower() in ("true", "1", "yes") else "public"
+    privacy = "unlisted" if private.lower() in ("true", "1", "yes") else "public"
 
     dd = _get_data_dir() / user.handle
     import tempfile
diff --git a/issues.md b/issues.md
new file mode 100644
index 0000000..1a7bb6b
--- /dev/null
+++ b/issues.md
@@ -0,0 +1,99 @@
+# Repository Audit — 2026-03-30
+
+## CRITICAL
+
+| # | Area | File | Issue | Status |
+|---|------|------|-------|--------|
+| 1 | Security | `edit/server.py:351,386,431,588` | **Path traversal** — `activity_id` from URL is interpolated into filesystem paths without sanitization. Attacker can read/write/delete arbitrary files via `../../` | ✅ Fixed — `_check_id()` validates against `[a-zA-Z0-9\-]+` |
+| 2 | Security | `edit/server.py:588` | **Path traversal in `delete_image`** — `filename` param is not `.name`-stripped (unlike `upload_image`), enabling deletion of arbitrary files | ✅ Fixed — `Path(filename).name` strip added |
+| 3 | Security | `edit/server.py:542` | **Path traversal in `upload_activity`** — uploaded `file.filename` used directly for staged path | ✅ Fixed — `Path(file.filename).name` strip added |
+| 4 | XSS | `ActivityDetail.svelte:67,189` | `marked()` output rendered with `{@html}` without sanitization. Sidecar markdown can inject `<script>` tags | ✅ Fixed — DOMPurify.sanitize() wraps marked() output |
+
+## HIGH
+
+| # | Area | File | Issue | Status |
+|---|------|------|-------|--------|
+| 5 | Data | `metrics.py:116-148` | **MMP sliding window on non-contiguous data** — gaps in recording are collapsed, inflating power values | ✅ Fixed — dense 1Hz array with gap zero-fill (standard GoldenCheetah/WKO approach) |
+| 6 | Data | `metrics.py:170-178` | **Best-effort times on non-contiguous data** — pauses removed from speed array produce artificially fast times | ✅ Fixed — same zero-fill approach, gaps count as 0 km/h |
+| 7 | Data | `writer.py:85-86` | **Activity ID collision** — two activities with same start second + title silently overwrite each other | ✅ Fixed — collision detected by source_hash comparison; disambiguated with 6-char hash suffix |
+| 8 | Frontend | `ActivityMap.svelte:88-94` | **Misaligned lat/lon arrays** — independently filtered for nulls, so `lats[0]` may not correspond to `lons[0]`. Start/end markers placed at wrong coordinates | ✅ Fixed — lat/lon filtered as pairs |
+| 9 | Frontend | `EditDrawer.svelte:121` | **Backdrop dismiss fires `saved` event** with unsaved data, overwriting displayed title/description | ✅ Fixed — backdrop/close now dispatch `close` event |
+| 10 | Schema | `writer.py` vs `bas-v1.schema.json` | **Writer output fails own schema** — `mmp`, `best_efforts`, `best_climb_m`, `preview_coords`, `custom` written but not declared; schema has `additionalProperties: false` | ✅ Fixed — all missing fields declared in schema |
+
+## MEDIUM
+
+| # | Area | File | Issue | Status |
+|---|------|------|-------|--------|
+| 11 | Data | `metrics.py:89-90` | **Falsy check drops `0.0` speed** — `if avg_speed_kmh` treats `0.0` as falsy; should be `is not None` | ✅ Fixed — `is not None` check |
+| 12 | Data | `parsers/fit.py:89` | Same falsy `0.0` bug for FIT lap `speed_raw` | ✅ Fixed — `is not None` check |
+| 13 | Data | `metrics.py:222-239` | `_best_climb` filters out `None` elevations, joining non-contiguous segments | ✅ Fixed — `None` samples reset Kadane's window instead of being skipped |
+| 14 | Parser | `parsers/tcx.py:89-97` | **TCX timestamps with numeric timezone offsets** (`+02:00`) crash — only `Z` suffix handled | ✅ Fixed — numeric offsets parsed with `%z`, converted to UTC |
+| 15 | Security | `edit/server.py:22` | **CORS `allow_origins=["*"]`** — any website can make requests to the edit server | ✅ Fixed — restricted to `localhost` origins only |
+| 16 | Security | `edit/server.py:406` | **YAML injection** — `hide_stats` values written into YAML frontmatter without quoting | ✅ Fixed — values filtered against STAT_PANELS allowlist |
+| 17 | Data | `edit/server.py:497-499` | `save_athlete` mutates immutable `athlete.json` in-place, violating extract immutability | ✅ Fixed — `merge_all()` now applies `edits/athlete.yaml` overlay; server only writes the sidecar |
+| 18 | Schema | `sport.py` vs schema | **`skiing` sport** produced by code but missing from JSON schema and SCHEMA.md | ✅ Fixed — `skiing` added to schema sport enum |
+| 19 | Schema | `sport.py` vs schema | **Sub-sport values** `nordic`, `alpine`, `open_water`, `pool` not in schema enum | ✅ Fixed — added to schema sub_sport enum |
+| 20 | Schema | `SCHEMA.md:140` | **Activity ID format wrong** — docs say `+0200` offset, code uses `Z` UTC | ✅ Fixed — all examples updated to `Z` suffix |
+| 21 | Frontend | `EditDrawer.svelte:106` | **Regex injection** — filename with metacharacters (e.g. `photo(1).jpg`) breaks `deleteImage` regex | ✅ Fixed — filename escaped before RegExp construction |
+| 22 | Frontend | `EditDrawer.svelte:85-99` | No try/catch in `uploadImages` — network error leaves UI stuck in uploading state | ✅ Fixed — try/catch with `finally { uploading = false }` |
+| 23 | Frontend | `RecordsView.svelte:99`, `Base.astro:220` | Hardcoded `/activity/` URLs ignore `BASE_URL`, breaking subdirectory deployments | ✅ Fixed — `base` prop threaded through `AthleteView` → `RecordsView`; `Base.astro` uses `baseUrl` from `import.meta.env.BASE_URL` |
+
+## LOW
+
+| # | Area | File | Issue | Status |
+|---|------|------|-------|--------|
+| 24 | Data | `cli.py:341-350` | `_patch_duplicate_of` silently swallows all exceptions | ✅ Fixed — logs warning via `logging.warning` instead of bare `pass` |
+| 25 | Data | `timeseries.py:26-35` | Non-monotonic `t` array if input points aren't sorted | ✅ Fixed — `t <= last_t` guard rejects both duplicate and backwards timestamps |
+| 26 | Data | `simplify.py:49-50` | `preview_coords` returns `max_points + 1` elements (off-by-one) | ✅ Fixed — subsample to `max_points - 1` then append last point |
+| 27 | Config | `render/cli.py:42`, `edit/cli.py:66` | `yaml.safe_load` returns `None` for empty config → `AttributeError` | ✅ Fixed — `or {}` fallback on both load sites |
+| 28 | Frontend | `format.ts:18` | `formatDuration` doesn't floor seconds — fractional values display messily | ✅ Fixed — `Math.floor(s)` before any arithmetic |
+| 29 | Frontend | `StatsView.svelte:31` | No error handling on `index.json` fetch | ✅ Fixed — try/catch with error display |
+| 30 | Frontend | `ActivityMap.svelte` | No `map.resize()` on container size change | ✅ Fixed — `ResizeObserver` calls `map.resize()` |
+| 31 | Test | `test_writer.py:21-30` | Weak assertions — only check substrings, would pass with malformed IDs | ✅ Fixed — exact equality assertions on full ID strings |
+| 32 | Test | `test_sport.py` | Zero test coverage for `normalise_sub_sport` | ✅ Fixed — 3 new tests covering Strava CamelCase, ski variants, and unknown→None |
+| 33 | Test | `test_merge.py:70` | Test uses `sport: "gravel"` which isn't a valid BAS sport | ✅ Fixed — changed to `"running"` |
+
+---
+
+## Second-pass audit — 2026-04-01
+
+### CRITICAL / HIGH (new)
+
+| # | Area | File | Issue | Status |
+|---|------|------|-------|--------|
+| 34 | Data | `writer.py:88-93` | **Disambiguated ID not written into JSON body** — collision adds hash suffix to filename but `detail["id"]` still holds original ID | ✅ Fixed — `detail["id"] = activity_id` after disambiguation |
+| 35 | Data | `cli.py:79-85` | **`write_activity` return value ignored** — caller uses pre-collision ID for `build_summary`, so index links are broken for disambiguated activities | ✅ Fixed — `activity_id = write_activity(...)` captures the canonical ID |
+| 36 | Data | `writer.py:88-92` | **TOCTOU race in collision guard** — two workers processing same-timestamp activities can both see no existing file and overwrite each other | ✅ Fixed — hybrid pending-file approach: workers write to unique `.pending.json` files, main process arbitrates by quality score and does atomic rename via `finalize_pending()` |
+| 37 | Schema | `bas-v1.schema.json:90-128` | **`activity_summary` missing `custom` property** — `merge.py` always adds `custom` but schema has `additionalProperties: false` | ✅ Fixed — `custom` added to `activity_summary` |
+| 38 | Frontend | `EditDrawer.svelte:101` | **Undeclared `error` variable** in uploadImages catch — runtime `ReferenceError` crash on upload failure | ✅ Fixed — uses `saveStatus` with `saveOk = false` |
+
+### MEDIUM (new)
+
+| # | Area | File | Issue | Status |
+|---|------|------|-------|--------|
+| 39 | Security | `edit/server.py:409` | **Sport value not validated/quoted** before YAML write — YAML injection possible | ✅ Fixed — validated against `SPORTS` allowlist |
+| 40 | Security | `edit/server.py:446` | **No image content-type validation** — arbitrary files accepted and served as images; HTML upload executes JS in site origin | ✅ Fixed — rejects non-`image/*` content types |
+| 41 | Security | `edit/server.py:270-274` | **XSS via unescaped filename in `innerHTML`** — `renderImageList` interpolates filenames into HTML without escaping | ✅ Fixed — `escapeHtml()` applied to filenames |
+| 42 | Frontend | `MmpChart.svelte:154` | **ResizeObserver captures stale closure** — after toggling range selections, resize renders old data | ✅ Fixed — reactive variables keep closure current |
+| 43 | Schema | `SCHEMA.md:113` | **Sport enum missing "skiing"** — JSON schema has it, SCHEMA.md doesn't | ✅ Fixed — `skiing` added, sub_sport examples updated |
+| 44 | Schema | `SCHEMA.md:109-129` | **Summary fields table incomplete** — missing `sub_sport`, `mmp`, `best_efforts`, `best_climb_m`, `preview_coords` | ✅ Fixed — all fields added to summary table |
+| 45 | Config | `config.py:61` | **Empty config file still crashes** — `yaml.safe_load` returns `None`, no `or {}` fallback (round 1 fix applied to render/edit CLIs but not here) | ✅ Fixed — `or {}` fallback added |
+| 46 | Frontend | `Base.astro:101-106` | **Nav links ignore `BASE_URL`** — hardcoded `/`, `/stats/`, `/athlete/` break subpath deployments | ✅ Fixed — nav uses `baseUrl` variable |
+| 47 | Data | `render/merge.py:161` | **`athlete.yaml` merge has no field allowlist** — server restricts editable fields, but merge applies all keys | ✅ Fixed — merge uses `_ATHLETE_EDITABLE` allowlist matching server |
+| 48 | Frontend | `types.ts:102` | **`ActivityDetail extends ActivitySummary`** inherits `detail_url`, `track_url`, `preview_coords` which detail objects never have | ✅ Fixed — `Omit<>` excludes summary-only fields |
+
+### LOW (new)
+
+| # | Area | File | Issue | Status |
+|---|------|------|-------|--------|
+| 49 | Parser | `parsers/tcx.py:101` | **Timezone offsets without colon** (`+0200`) not handled — only `+02:00` form matched | ✅ Fixed — regex accepts optional colon (`[+-]\d{2}:?\d{2}`) |
+| 50 | Parser | `parsers/gpx.py:59-78` | **Power data in GPX extensions not parsed** — MMP always None for GPX files with power meters | ✅ Fixed — parses `pwr`, `power`, `watts` extension tags |
+| 51 | Data | `simplify.py:63-71` | **`speeds` array not filtered same as `coordinates`** — could misalign if `simplify_track` changes | ✅ Fixed — speeds array uses same lat/lon null filter |
+| 52 | Frontend | `ActivityCharts.svelte` | **No `onDestroy` cleanup** — chart SVG not removed on unmount, minor memory leak | ✅ Fixed — `onDestroy` removes chart SVG |
+| 53 | Frontend | `ActivityCharts.svelte:83-86` | **`resetTrim` guard always true** — trim doesn't reset on tab change if min/max happen to match | ✅ Fixed — tracks `lastResetTab` to force reset on tab switch |
+| 54 | Frontend | `AthleteView.svelte:30` | **No validation of URL `tab` parameter** — invalid value shows blank content | ✅ Fixed — validates against `TABS` array, falls back to `'power'` |
+| 55 | Test | `test_writer.py` | **No tests for `write_activity`, `build_summary`, `write_index`, `write_athlete_json`** | ✅ Partial — added `test_build_summary_required_fields` and `test_id_utc_conversion` |
+| 56 | Test | `test_sport.py` | **No test for `normalise_sport("skiing")` or swimming variants** | ✅ Fixed — added `test_skiing_variants` and `test_swimming_variants` |
+| 57 | Test | `test_merge.py:58,122` | **Non-canonical IDs in test fixtures** — use colons and underscores, don't match real ID format | ✅ Fixed — IDs use canonical `2024-01-01T080000Z-morning-ride` format |
+| 58 | Data | `edit/server.py:549-551` | **No upload size limit** — file written to disk before validation | ✅ Fixed — 50 MB limit enforced before writing to disk |
+| 59 | Data | `edit/server.py:586` | **Exception message leaks internal paths** — `str(exc)` returned to client in 422 response | ✅ Fixed — returns `type(exc).__name__` only, no internal details |
diff --git a/site/public/bincio-0.1.0-py3-none-any.whl b/site/public/bincio-0.1.0-py3-none-any.whl
new file mode 100644
index 0000000000000000000000000000000000000000..18bdd2e159cf8b914ea611b2aa98f28e166e6f05
GIT binary patch
literal 60977
zcmaI7V~j39vn~9LZQHhO?6Gazwr$(?%pTjeZEKIYN8i5pJIOuoxykLMI{l~8m9;um
zN%blPX%J9U0002_&x92iY|;#s|DDwT8S+0fva~a{v}e%Qx3sf#(buPU@Kjb(a+;i$
zo}G4=p`W0gqODZ%SY{L>qGKa#q5MtCCiaV{kC08ijkB+rl1r5csjRG>^mmDdyrg7g
zG!1_*ZA%3wivR<^-hi6Wgy5XQoM0pjK;b_^xMx;t1p)#9cz^)_xc?J^v5n=w+hY@C
zr9hbwLtkB^h?_0~b|TudLf?jHK^;%{hfB1Ab}BPwS!ZWOJcQ+q%KS^lum(0mx~t+}
zt3nXvaVNvPtnO|O@F&XKhx%vBr67U!H~X0iEpt4<DoEPiuDcy$lz&y`8J(@ufC1Kq
z44#oaaiF>U&!FI`1V(@p4Jt>~c=RP`>+cfzYJr?hU$+L%M@iSZnuqG+<!dICmLspR
zoCx*Zx?{r>=2&zWD{+z;hSZ+&jPR?R^0?ke59Dj-AG7t2P9HuG0ddDoS4nti!~Xpy
zJB7C2NA-VE@UdEsDJ<LXm|#DY)i$+E+ihFgMw-ibZ(^i#EUroN64Gapdx8EFtAFqS
z{=xLW7skK+zvwbGv2^+GoPqogh*80fM=QYq0851bVEKQ${TI&a7j|3Xh~IPNm^R-D
z6{2L7fxyD3%Z@tzf(h9Cn*>n<HRGwxkg|<k(i1_31qcfi*U2ts2vV!68v(Mjvn|d(
zEG99sCaF`{qC{|?AFl!mt6U5_)#z44s4~`Iyc|wMGtkYnqO*yV(uK;S8mO|WUyz#Y
zwzActX@NdAR;B^!s<!QkuBCkPLo?ke$^8zo^*8-B*qSrIU$0>y9#~@k;9&ka;7px9
zvy7v@QUd*kdBqkB<cBWdj4V1=r->7ekME{VIEHFrLuvBs+Yft%snkG#W;(I86xY9!
zdLs6CX2CFJG0LB{4+Is=)`AjbN<3PEKI~+ZwJyjLj<`rx#B3)u^^Qrp!U3P#&Fi@e
z%v+nHO}J6<?hm)_WG@|=9x<zW!CqX9@T;DLGq$mlVZnv9sXJ?7A8N|q>oca<>g#(K
zUL(Ca+pNGwV-Ri`9;lb+{Q)Yi@w@I5Ah)JAw@B_NkEuE;fmPTExERdldUqKikd8>*
z4+T$;LQMu~wK)zXEqL@9_>e$Py_hoE;*YTUy>B&acWXEM!#PLatE21JGgZgm^i{W`
z<?G<*3noXQ;~S=-;uEw3{H;=7g==CO?BbtV;-GhlopZG1HV!0+Aa|!1tpnwJ2xrH@
zU`Kx|*BiRzJFHx8zoh*%m}X`pt1xDg5ofrzWBl|zuu-mtX(SrsT^cmgU=Y4;G?~aQ
zWl|505jpLdJ#h$1?p}&F3i_8IkeH*H8PcIG3?<9cKqm@{e1@H1C(hssz%H&fkPmHN
z+*SPa+hI(lp8)vI2RDJ9FW?0Co~}O}Sv3%D#bB{zWrZEG3hb_IfW~4UoV=D6hVens
z!<oYtth=Tf3u}9;KxFLAcCqxkg^QNv(D|3Wja|Sz5aK?n3Y-z+rl9XcD=>_xwtx^&
zk#<D+m;JKU`h+*GJqB~Vs_Dcb6$YGJJYR=Om72BNNGZA<WeLX9>mswVayPa4DO%97
zM@OHQ=%o>Zm0$I`^+2^0j-F8?*@||T1KrlG_VDi_>p;>=Xj};SGEn%u&~f2`v4g@k
z&0)QBxKD92@{kk=K<wx9SH!cH!HJY!r&EG*KUA0UhoI$V;fK@h_H236v}3}W=?siL
z`>qR1E))t&I)P}~8HT)LQru$Ywxdb&8b`^9^_86dSU<9n;dO$Vdo12eo{vr!#Q3bR
zAo?ciqBzm_u<}dhgGHcKPQAzToy@y87Q%J3yS4UdlGVkx6{Mb-c_+W}r=CqR0zYVb
zzvJV5`>u8fe81+_J95H(g}^nowZf2xQu@eHsN#t{#!;YeA@)#hX<^Xo+H36@Hzyf{
zvcMQuP?{F!zDhJ}3R74fK983}q|zb5nt3@|NO*{D<c}=7ZGJC`8+m`{Vq0-%-XP|B
zCUTLN14<_*!ZyvY-wmIAwXdYlv{>Z`5so&wS`qEli3m{(#~~CV2QErWSEvSU13np%
zJpQE8@NNchC`$o^iZ;p1%@@Ok_Gjr=Y!X+I03WV;Qw=JNV%&OCH8cd;MWgY%LYF<9
z2oE$&X0{!wpHN2+r5FMHA=H>sT&`f1!#Gu}9^tZD0)wMPOWCMm`6G6;b!r&b{#AU+
zx_c0hjlNdAgA8_|QQJri$9A(wLR!DN!iqC#>lj}eFDcHF*=1;X6DgX!5)Pg{?iLiu
zopM>DUTKzmD4a%jS`i#2iv^V&Z5D5zD2~zF=}|WetZ+>0S{w;X+zfCgewfm2im3Lt
z7Q_(MPVIn1%laHshmCHeFCSGeZ`el~M7qVXkX(3?UHNVf@Y6&JX#Jf>pNNOUHb!54
z5#6EuZ>>X6@clj++dGYhL(kXand~RngS0Ez1HH%0hU{T4X#)(`=noXxsmkG^#(cVi
zkGhXWX+yq0SaceD`u=;q2qST+`#jvVZk5S0ML+)|vCrcbhd2-e0CZje0NVek2hOHW
zZl+HEYUm%nEvN0#)Z0fiTgq&pLo8S-={V*^#%dTeXZ2PU;#5~*XG4eiA)yE$L;y*Y
znMP{4?{2utAA;jwFY=#c-t;?y9N^A{r6z4k))eIP=}YDE`QGlvxMQAJX)8+{zl6md
z$)q&9(?j3x=ll=GlvJFl1})M0;;XIg9&aQ<EJ^F4+JpWw#~riMhV(@Y)5@7#@Wd@$
z%|zJ{1sSx~q=mu)BQZSGR1_FzsT!i0TW(xcHVUL@R^`J~=1;yiMxlJEjlfJWJ~m`g
z+;@P#f$Mb?b<Q3=38xFl)}tY_Wawv%bqdS66Y2psg50l6Ok@usC})z$f!wQoJ5o(q
z5$>KyqKmJO1|2dSQc4}GYDoBJp_PXH{e0d!s=uP{k|vtMJ*BxC)z9_$x~!$fjqvC4
z`;vWpL6^`Ow=9+R>hV65O=C!INJ`}FD|`0%zLdzB(o~c9?Lz>9Ul~vsRdp?9hz1TY
zlnFudN8U53L`C_#L}NG*WSSUL=n51%+g<f=Z;@iM#F%Mr%I0@B^5t6&(Q@#?m_hzq
zrkXJB^5svJk{paC)=CfK+=1l6dhH=~BFdR&j@;38rCE`PNs+M;t2tqjjTW&Iil`$1
z76A6#6~5%3MY@q%k%+2^q(5v))yUdGE?0Z%SjmNvrxb|*gH_hgfrTh_JoQMLN9^Q>
zDJIkuW+&e-@Nx)OK|3r2f=^9(9Qw&f6`^-hFB{cybXzpnqt9bj9$Is%sUjzryN8?C
z51Y$TAAfNhJ)|B^5k8x_;XywnfxiCcnWiSVd@$ik{~K<a@9oc$`Y(o{@;Ui9KW~?Z
zuKjZ`#B@&kL=f{%v7bHpp#uc@@V-5q@5>s`Pdg8{CXV(Whuar(U%*oIu?*-^M~>d0
zRi{?g^Q4!NM}YrW2)e|r_B+IWzxZXmUI8{F4HFpZ5GNTH>Nr$@X9nOx$YQY)*%uUf
z4s^UjV`NW1WW~j<X#c+9O&)2qw3%$tx1kLpg-2>HToN~vk_-PC<Xao~0|(&UbHq`<
zmxl{dDVKY})?nooxXh4dS%rUgU+UEfjq;_THxeD{*Bi5<4E~_TY2I^`Tuw2NUA~9g
zYt+x2cq<vN_^2}(0gz4@EC6VZv{BL0C4dn;UPtv43jDmK3k>~8z!cD*toaB00QD{A
zD4=leJ?Htn96moL@AYt@K3XN>KIQEbB!*m!3@26wgY|#hK^&8zE_rICG-h$$%IU!q
zaCLIRVH61Njy*uLm5bm)3Nt&_9adz?6GL6f!(W&Z9<tUQGGe6><~TLp-V$Lh3PF@O
zH-mdI9}ey&H+GKp^<hTn$Bfk|UNGgT76{u7d%hTIj0yl4Vh%b0l6b-k#=jw9=3$I~
zzhasYMOEPE*?S)mgY@<Rt>VJZ72fUc*6;5<j@@a|M{9DXDzyGUewQ+bL5aQkL;Zxs
zSL%}q1jzMpz})NGv}gp~geU3W4E3oX%asd)QT{#rT=?2Z-;Rd~SM2U*Dq_I*>4>)_
zDd3DHGDp}au+t7v?4}(v@@M!7h&96s!U+nKId15tr|H0qFel_r*AHJZ_VS044M>hZ
z5hD+@53HVIqzf-_KiW9jwY}wyu1hpIczP%rPopyU<fqjs34X;yr=Nh<4Ppsl#&zL@
z!Ekh{wQd*}L9K+BKzQ2p58wo*cj8RHAHhZ3c_qM3>63>Obj$wR)AQ=A6OYK)7-mL1
zupcpmsFPkp$b=s}C`IOqHP`go{Fg@7K&eqsv|-1GAS=V-?<)biQ(>8FDdYPI{=FD-
z-W2HOFUL#@BAHiQneh|j>L1^n&`?^s?(z+|_R=b54V|nTTL!sDvKk4fDhp_TByC20
zB1ZyA(1nA1SYf_NfeJ%4b;;ipF=d%f1X}4>Rk|&4Dst7uCPK~&=`<PHG&XgIWn^<{
zXp3s~pzG<Vyy(Q;*zsYA-`_*XSaGKUd8SLIm6Zj1taNX=pdCOBgV1d~VQvNrnED2R
z)Zk)^Ml}%LGCuz3Q=~yJwJjSzN-G%qO_*1{io*-We;MY@5{r4l*J&}Rqz-EOe?)vU
za0thZ5F9g|P?l*EB_!W&@2dLY-}F~r74@vk4O36p>M1q$0rYA@ftEcImGBNiSrW0(
z4A+g6iB_KI%4oEzGm84ezmOzb9c3}*03~GS@r7F5y6Aoe4fM`Id|g@|U1~a0$+8HC
z#mbNb$01TeL-{}eGU0>9$pFzB?X~-OpjiraQM;oKRUn&Xj^LWcXc&c2I{rhnruPu-
zT~l3xKh1To0!F(2gTxQ4Zn}bYUy+qF-41Ib@lmt{-vNQEva<9Axe<d-^lb~#*6%Y-
zs{u3ESVUSAW^g=~i@$TSRV~W%D$WM47!hTmctbIU;Hs6EN~TZ&*B(fE<A%uTEAndQ
zA6j3`H5a@$3bEQxnzH*4TAqbsACST8dW#>>r%{e=_x$=n6B63=DAj^|#C@)G90B$W
zZ|wOKPpTtYK34Bd;-(Zy=}2Pq(o?Qlk%aE_fgK6)%Wr3BO8pNCH#jfDZcLp!P=BoW
zK-H_GY1x@%Gshnsq83bQg8<n~GSs~Cq?>N40_fkt;=P0!@adAJTL_Q978)*Hy|$6<
z9N9CQc$xdg5$QW#HgnjY3qzfAV5WlCg%;vm?F^PJAoX>LGuUt3F0B<ujnFg?&C_gu
zh3S~p|8AHLslDP0I(%Bp)ufGxw;st%pj!$c45Sl6>@X(MVf^V`b(I*Vk6D{ZBwoz!
zdcST(K}T1l$oGkPw8cRj^0~g>7JyA<`Zy`>3B#@cS?@dmmO#EB3LUA%x>*yCc!L!-
zAv|E7Gi3tP3XV%u4W-9*qJh7<<qIN&JaGt@2rJbn)JdntD1vWS-EzhC-STEu3j9n?
zoTM^fg!V6b>nW&;TtW=GC>ZZoaez1Awc?W<Y|P=Dwo!paE2JMybsp|cXo^Gu9s5NQ
zKG4-xAJotFb}#U)%q!wo#T@9lN>Qxf8pg>KM=lrVl?Hj;+=TS#i|q$`v?L;jm#~G)
z$Jn>5%oG{HdxOi1bpp||N}90qgzB&ZNz2d4YB^0jcnQ>R!>;_t!ewRW5c+JN5*SS6
z?bKD<nDI{88q*C<OiCPY*@+XjLIxM?3-pH<OEGjMg^zhSN4qK|!HcMVN9e@`lrpq3
z#~g}wd)Sjq!~te5nX#0tBZV1bz6x*zR;3HKSx{~1uYN5pC5?xBluv)n)kyTzQ7Nqd
z%#sBS1REMTwf~%*T)ei23lRuqF`TekVAE&QzdQUT9M*r(7x+_WV5g9)MOE|eNjFpK
ze-NE4tQUo`K@95t_O_BP2QxyavufnHoL4cH6O7TAgU)mkvc|YyRw*uPf3|<s&>quR
zt&&nOYJg?Z%>Bbn6hO-8O(UfthK}?N*ES;Rkq7i;VJuu;=KuMquPDQIEH8$^9_C&&
zF`({9>Nr*byplaxqLbTKDV9YWB66G|a!d3=uUa`V+CQ8@<^R2M@aXUR@^?!lIret2
z5f4S&xQjbIUDD&XC$KEx4%w(0NnXJvBSags&{`u|xfG`ctjnlivbejVk5NCO{)Kr2
z^N7skc+#!v&Tlw@JA%C<xuMzh3wY?Z&OVPJ`N5G=v~EwRH_vRuYpv=0$>Cp^At~-h
z2N;MkQTZ@2a$sOgr2+kJS;IELbA}yLs=-FUbs*Yha*tNl4v2|mdHsRQSjDrZM74$K
z&91Q6I9_fU%z9Yc)Mt+OmJ+J)rq~ZwhluA347k4oBuKz%Y9-5k_m)SUgTJhT?C@tj
z1lF6wz#-A@GLI_PQ_qy>=P(>qKd3PmvF_mzw1c?tg{ju1JiM5V0N|oUO=dXIkSf3Y
z_!}-P4Zcl6=wlCrE+Tmi(R}B#fgdcUheO;F9hv#<42v+|1n1hFK1g^s885xdKg{D*
zA$VCCk-m^V@hr*sFQeyx7LV{b<*W)#hp(fzg67*eup`qOvu2qLhBIXL^L*^dE%#XB
z`TDY^mg$C%1yT9)d>!~y!{B~nqP!`x>(Upr`4d$Si5?y`T@{c2;qWsd=nQ01{1}a(
z{+ntXNQq3F|Mf2L1;to4Zb+x#!l2%d1j(&VSWH+GvEGMX*^SH~sM%g?b)MTZXzS>y
zgSJ1@l?PDyixa-G<Uv3#UHPjfad$COr^3ygx@5N5u?q{hlf@RG(K@sr_GK@^ScNTk
zFGDA3i^!`uc^Sgmu~jeq0RnlJzS#7aQq1;Q!PLx~PmmO(ahCJ%Mdn$s2X0uuPw6RL
z%uK>S`B_9$-XTGHV>>@N0}IXeEf-B3;l!$ZPX10x+w8_GD=G;G-`H^fQ%=(!@(E0$
zr;M1S+9WdQlte5@sYJhi;KM*Lrd@thn=kZXNITg&jgr`s(qvj$NUdOF|4tD*<ZNhN
z8z4^(18`-VOuR~6jr_!`O^%eSD@dC42p%$o?zc>68MhZ;Clo-<Kn!y%mP2?6p(k4C
zw6?4VXhSRoHD&hNnR;NAq>XaB(S6D$8$&ab>Q4fUAnbuil%&g;9=w!0PuBww*icb;
z==4h46>9hT4S=<VwB=>pT4g3YFl(Z<+yP8JhfGFzHS5H5FZ(g&6IKAjCMQD%s1_oi
z^$>oeVC^XDKsMk@+oIy_Ne|mSCl<|8guiHln8RX?bsX?gG(Om*I2P`|kT!BklqZ@R
zE6+v0^5RQs*J?MBKza%~3*%ixcbCHaVo5^ryuB*ul?tlWntb85%bgg<;yGMLbrEF}
zS5rWdk3)yW893QsCoA$Sw2xN2DNCMO<5LXqi^W?&tcWlGv%uYOR%zKf^MQO1qjDr{
zf3fAI(rzkmKNf$PdJ0bnYreUVKgl?XiCorBR=~AhR1qFxho87|qqQV4eJIeVF%`fK
zXspDLHfAzfwLoVTDhb`5lC>xAAB5B~yEcs@JmOx%HDMY=_^Xh;jvU1wsA7Vk{y7WW
zyog`75{kzeC<h)O8(a!d2*R3Vg7>o4SRS0CXH&y=QyE&lIW$&{=i_ghDJ3XhGJ&Fx
zz(LBDc=V*pzC4?9vSXhI@WfE77ciEWg05K=CR4Dooda3Ngl~&#K%K`nv*8k26Q6J2
zoGbFRat{((NcDZte_f-lcm{Lbk&@|eFSzf$m;c=4`+heq0CeaPD*aD4V}DOyS<f5H
zwQQ9U_&Vrdgg4Bt<AI-)9cKpETG(J2V4przTP3zfg)dVLHx8Vg6-NvGoE;GR!(KMg
z`wEvznxf$=9E9qgD;yA{XX<X3AA0M5UOMK(ss%4kZep#bw(4-q_eMfxKD~kFfErc8
zKefD>Bc0OILXGL~X%}iY<)7nzUXK<mPj{{S&PL;Xhz9vau-uCrvI-M-`mjaxokO}*
zx!1Nj!~J~q-&iPtM(qp7nEMeyFSpZQs4AtK4zyAvtg6K@jrs}LYm(^o_Wt+oj|)ha
zsxIs!xe4C>)H~Z~tAJsmQ4V5lklt^Y5YqzvdGMH+HWKXFCF|dBUn1DAz+**9HjU;p
z5FecP10lE|?6Y@Kgug4(n{+JW%cp+6g3~~g6a2kNWW#mE=m^RBzpBZHcsBekPL;I_
zBQJN^Ipm-#BMr{ywHl}kyBfaS9uJ8)36lW=4z98dgdDxCnb&B5r-y9euxO?0;qHAL
z6O$$B+7ZYR>XzNPCD`ybSn&oN-!xzyds1N(r_&vD06k@MVh1qf6q4Dyt;v;-(}{gk
zx$zq+U~I<9c!jQ3DpdP9TlTe}wV$rIR%#{liz&iukGEwnJj^4A{S<czvX%|9?`9O8
zpxzshY!F47r`r|9hdLsozt7?ZUd5FM5a~N^pd@5ms{>2|cT^2yUmc5x=SQ|VY0xU)
ze{ty!DR>=wPphCm_+U{a?zI)TjMQ(CwRE7N8p2>4YW^vAiI*LBqKDr63!|A<(B2w1
z<j4%q8ok6Q`J~nIG)OBW1?(nmM^@pJdI_T3&(lZ3?;_`(cuDeV-$bUT`Bz_n>PHe`
z=kX6bVw|A<x8sF4gdPCf+HO(RLjas%)uz|wK7n2r7aL=ckp%dGIhr92tR`S9>}+F=
z$%W0}b<X1oyumpaso79F81qQTQ@q*t#L`CCO1;yAO+w$~!R9Sxu!pHGXq(%kFoFmC
zx*)^7UdE-tKA>ZTZp~O?0$fuLeE6N-b$z5_g6m3Pg7fv)Ux!13)$4umc05#RH1d0d
z#b>+xnDzys{GeoH_mH<$XrKoxCaAKrD~Lw+h%A{{=LR!`afwqTwZk$;ja)!|CFGbj
z$s`Wtm)SP<-l=#@Agk^}Mg+KgCyG)Z)=}md1$dF>;%wQ=C}(T^nxSm`3q9$JBIq-$
z4_Y?SCOeC!rhj&&Os`PKQtD2P@$RiLew0FJ3uziP_pOB^+GbL~jjn9Nj|69xB&{@r
zo_Sm-iCEOCZVh$-gFpa+MyED|9$$dqTBZG;%zXhGJE&9GIYuC^lsSb^N8lIkJhgJh
zcc9$?UJw^Y6M|Ts3w8-q0}+r$!(-Vo4;l;2nXq_V`GGEoMg%_;!)OeiXEEgr`HahG
zf8;xO7|AwbJYMOWhV9g%9OaZOB{c2<+^M5oavb4&IHHU)U|>yGHkL7Mi9qbA(u925
z&EnQ`(hp*zqB(RKNS6=Jo5Cw57fB_$D5!R0S+nTC8)KrAtS>7iJS*yp4B=b3qIRt@
zL=TTDQm|fTGWdh@g>Ka~mtcA_yle;O{6i~Tl3z+32EK@AL9$3PY_CVm{RZH;=sp~q
z7m+Yf=(;(1&oY&)Vq-m(l1IadEbNImtg16%DJ*KV6Tr4A0Y%Qd#R#`@@qx$NDSHrV
z?z-T7Gj%?3<rkB;ZtA*aH^^FF7oxIDxq5$gRgMq9n_`<ifla4#fNfa`o6@+m3Dv3b
z#sJ&6nih9flQzd?Q;n183Lef^wXHspdRc6`zQ+ZDHPSZiD%?Hb*M!h@TOR0Xn^SG`
zH85>QmaKeyO${o*jA}kry3V!)PTj9vO@aLx9zCI$=Wh+Q90G+G3gG=a8#W&PG$=yc
zWg=JWso#glXJVY78z;x09GqP)jv#f~NXi7faIl5gWz7kl=FPJ87ex{FQSD6TmsQSv
zEWgBVI85e>PKX&?pWLd7URZ8d@3{?|;P1|dpgNPOd98E$ZZ7A@wOnh&WJ|&Atb8~z
z99rS=)Tpfo95)M`i&B_11m?s)*M!_-Y5-;KtAHv~KfDZX0Ruqck#s|^=}~DX-IG-%
z#Rx=@d|CU+-0ElGpEack8P=TLCy1gsdhRsuHuG5h<s68N=DUmeVSF+OC-vvNRiYLa
zTzDebfPl_Oa7dE)==M(dw-{JCJ|MVj=Qv769y`LZ0B@S4)1`F&bxmbNaHA1x>zr01
zZxvJVx;5ntIq;+I`o8%Fjez~ZMInd!UZ%!rlE2+xxhX=7TidK&P=lm}tIs$Uoc6&W
z2PWwS%Zj=CxxRUYB3A2eRW}8fs#@!dZ`VO!DocfT3kcXadl&<^rUll=AHA>fWzTS;
z4x7(v)AV~jZ{*dFds$ulleTO!F#2g!6w}bUVdOazgeS|Wr;0i--tpUdBe(VUG^9^-
z2rXn~p|HibNv4=1>4X)XfGdq{S!7unetA{B5yld3(DUnuz?e)C3r67PHc3S!0*Yau
z88E+81FfA)Ubt~SVpBwyWtmR9Leihl&ZJT)-bGeM4-j>~Uy{}8j?;qo@2gi4t<_w5
zzck?LJGOhO9V+~4D>7l!kBpn1bx8+;))@sx$}`+lHPu~T0q5!|s<znY{rOmg+8Wo$
zBz@5JLgh)Q7Qlbk4v3N3h4cf|ij&1u)098T5GBO-p94SxpC~T$_h+O%Wx-MHXF;7|
zrE@e>A=IC8lZpF5uuZ=#lTTYx3?swEAdE()08%ssZ1}RJWn)yVLKL-j!eBh1q0kGz
z`6tv@+Ov20<Ogkr$<$m5DNNX_VQM2rGkP}GY1@Fs#qgVKMVRk?sRa*}6+$BrMQorZ
zyF?&C5J|=HD-PfL>v!Kk^~Nj^;Z+!d`6@@?B5)h)`6XeN8va?4$&dnT@ztFvdAg_0
zD9kOe2NmKFRdCc=k@M8u{Ub&5vJ0KNRSQrbvHtwZ8fy!x&sKtTi!vt7<R}<8{p~I;
zMKJ-s?*j98GzGiwVhyiVGpQ8~rs)|E>365wQ4yIZ4}K@vfdSP3&Mz$K2Wk0txTm0h
ztfPHOvF#IcoV+=y<+twpUwTwT(z5}(cHK}_elE4XD>Si4sZ{~Bi}KhVw-%o-bXkYp
z#8GALhhZOx^C7D#QeLha!!Khjr&-2~F{QAS+nGbK)Er8q<b+v0S#4#&FS`ly1PGxm
zg`gvL9j(%5%+ec6lcOUDWL{q0B2R9w5_nuSo~@n%B!`NX4$+pQwCztccbi+t%ZT;M
z`>~`;52_9~89!=AII@-+llCHckL;ek=FQbaBpOkQ*fDe~p1cO`yErnmxO{-*8T9de
zy(9ANyBzz|%TsFn6a5SNR#JY1JN)m1>lWh`qT}1Lmd_W#Pn_7J1?De~UH2A9L>Zye
znlg`<cDG?#;P97+QuqYX6<c}bj}gu2mXL4D&lxUGxPc3g?4YU$|9C1J<qjxjp)%<d
z0yp=^FQWR)jNBV?f9zg3{KTL@ma7Qsa-jj=mXKHAP@Gh@nh%vI^5h`I`F0H+aD)9t
zIn*Z{RfaYdrPRaEjq!Ut-CCG<w5P(vT5c7n1E)>~utXd~Bn<$aEJKqmv1#)3U{`74
zJS%pOCKKHpP$IH{li64(M~PZh$%p<HDO9&ewZ1e}kyYppc){cCQign^uVrX{;8Krb
z{@`Hy@UYsk``{m!rN5wNop&Y-C;-VJKwMedRla*(vJZB**X!~7OYHH|g@T+D?tO@1
z<bV4O@&#drV5%>`;;d@wTvP^y{;U$1#vQ5Rb!gz4LZ`g*16(fUqimWfad+L}U{Bl7
z7DTKzhoK)%a5&-=xEeiQLjlqH2y80<;Q_=@<MgQVCrp%;wIG-hdsbpOkY!D?&^cDq
zUX>^7MaYra&!Q-z{Q1==u`n%ldp-08GI}vT)Wh%3=I-3E>-u_j0-Xy5H!5gMXaAKq
z$Ztr7Y&_U)+avj(Rk6RhA$98U%6qw)m>TUexn^^E@~%bZn&yq&Xc9oW2iC>LE*3J~
zoA7XyR_#}D9Y(4!65$it3~_yp$R>tC#11oecgq^q^%dY2$t$+!)e)e(aESVUVr6l^
ztLX3@BOe4$O>;~xOy>5swzljo%GHo83~H?~9IPYRTtN6*i0bRv7M+f$8oLux#?UrY
zp=F*rew)e%k5I#jn~cc0jjx|uMgNtZVk<cVucksRJ{kp;nxT=T;t&K^hbaf!U5#ad
z&=%$ynPu*gDctVB)39L+gY0$e&csIn!S7mzO*ni*iyJ{2$c-Bag(xq&-`Zk~5u&nn
z=mNf2){u9ZUYTrbkKONV=Q+KM^GQNE|HCwd)Co?oJyUE-q<?Rf`e7z1C;jZ+=}Aoc
z+a@}--9NuZ6!XYY$Y{Zadg>H0L~3xaAT-2No=>1)+8psbmd^FF0qa-gvuPB8m@9^(
zW|37z?O<HT{L4h>EG+zzqX+)x2eb~Z;60u)XW0knAUCLUh<+RBBCoes&C5h(w!^#h
z<$gn)N^xSph-0^7q$cTIBRh|x$^aonQOibXX;d!;vvOw#nypzk)&h%h9Hs@_lYIH2
zDIrJ}XDEn<z1=fNsQcfNr?u`NNMbep^c$8O{_<c}_}1qGa@vAxa##C-^Ex-`i3F``
zp|)~EvrB6Q?Km&RFyFP$P5B1p(N+MJnsK}a16)-~bJq5l>>zUAH$mDGr<$QhQ-f6{
z4(<+|bIp4Z3s1lgW<<rPHe;nXPNKku#A-{=D6$Q!`j*T}IiqrG<X_ZNOZBCvdo#&}
z7c52g;rNSDm`}6r2WhL&q3vQ~@+uhm6IaX9F^A7Ui&>);it5P|&-rc*ik_kjwqFg5
z2wY;)-(}8%IB3zZ3`wAGBq%xx{yTi_kVmLpz<7K5pihOb`%X+8hK3{Ekh71SnSbxR
z6<Eb`cuQtbeA_3ur$dv+9_v{J?j{(XVf02LPgEIa8i}djubyX+Xfh!8I1+@|l@aG;
zhz|#KFOwb0({r}FhfA9(VzgN_#{byWw&<Tp)ReS!7DKUc_Tvjo+`jSPLTcD&kw|`!
z^W=bF?ws2M`a;GK+3+G8lqd4fU<J(DUYkL5k+>`VR0Lc4Su?u7SArYg;`7{*-Rrjf
zQFki_LUEnx=4Xt;kEE`aPyZ*~z&@#Co5XM7)%!qkN>t~x{1%ng$@mRnt5LdE2Rs;?
zMN(TU7~)?!%7Cs)RJvncPUmFQ{5Nir>1!~GaP?ikPxrx*Ls{$N<8zCN<XMQo+B?Z#
zHOzYT&m#xaN_EHZkwcb>qotl~VLrJMobcTjgJ~4qBz5rSpE~Pwe&us40b)@s*`S$e
z*<zWPLoW*7sWjJMPQ1ez<hHLPp3^YKW;rTrh}f&l3tOyWUF0B~$mNwk9%z?Ftg$J7
zObJs?Yz19%XB4b4=&Rom;grWN4e_w)+V=Mpu&)S|H#_qzzE`w*{h$?w|Fxeh5(Exa
z_ci@KX{FPqn!iw3X!=x}gQJv;9SIztid?%UAatRAA3BUTgm2qnDw9^eW|PDOKOsM&
zk!ASEPz?wt_d_^=8aUiPaTP<cNA?n3?u2f!nsQL0=p;MtID|%mqbKc#q17?ro-?Sn
zGU@Aj>Yg3)>pWU3fOOA<rvqFE!nX7ps?Z@U5}KhPfVh2egb96m7X*Ex31+G&!lHwD
zgE1my$cb=W3M3#~+a%QLGKB65>q&OLv(7k)7+)e=*%O}$bNdpX7lQptMvX2PYo~=|
z=K&W?`%6S&>?})5S}mHo+;7#^iy%d9@T8PLh6VTcq#Y3ZgJSeDJ>+lZRZ54DcW2K`
zD%_ZZYN>u4G4vmkN%X7iLej-EUrK6L3>~GM?*)LtmwSPIcnfoB<pr_Z)I3_8hNVwz
zw7pcUMRHVC?{uKhSGdz;0qJlSwZ>H$++lEm!$1^M;zBIAz_S217&<LfrzE1CvQT%_
zP+M#-^`4mV)@aWLHfry$mp!}1<q~|Gjzij^nuHUdep+-^)>SfqTv&AD?=`ryWhWI=
zAlod_zYc?51FWN@qg%4<Ym#Iq>TNslz4DAZ+}R=m>1^U17JiNnwR^w0(SqS9XjGh`
z<|~8EHK&p$j&tBVrlG!GlV?xjJ{<jzcA9rIl~VW9anWA)?F)C9Jk+e7Rn7Fek7M&-
zpN4+Uh9z{K>(Vm)#>$)Gr<3lT=6fIT<6W@MI_~90?Vp)Z7@WfTJfR-rl|>3*eGR2>
z86KTajh_M{#VWir3O+k6$?tv{E+9OfXTPLpknh9ZCqQnnXVY2gwP|n7l+*X(WIIJg
z^WVG(*XpBT3FJq7rAlpQ$1jy$w?sU4z95Gvt&1MQWYQm@-qyKzz&{664GpipU8!Kr
z=5~yd1GE9~RJ6r{%h>0J*K*Z3m)m1@E1Onot*6H9S(dw6%$rmq-nX8n&1^h#=qwf+
z4d{+nH-v1&m6kWQJA}^?h#!v2uXbxUAgi4+u{!~}6NalS`pLsKYUX4tl^KJ~Nq-UR
zE==tlnB8X_syyds)clV3xWz8|AB#Uj-tCF8Q16E>-VU%R`+oi(l11$QCQ<QlaWXXi
zf2tM{uWFnEkN^M{p8piL{FmqdFI-&Vv5ntuUD$h7Z-9=Gs+BW`_-d{QB0no}NaVEp
z^8~gPT9DlCeSJ||)O<E`5a4%-K=~KuQJQ;*h)SutrwQoQb3XVWb^O4AGY4xH1`Twe
z#R7VP`P=XO(a1pH>uB%#a!b9&;)>gTk`yv%MQT}h3*p+n(RSLIW+s_;a;47R8gmiV
zc<<3n!tIFhMTZ&gq0IhYk;rbX?e&|BcC`4&IAIQ!?2JO_CI!{y-&Q%?j0;k~#Ei?e
zcq#k(utT&>R!^%dLLQ+LdMRp`3_#pa+wRw2s0NvT{)0c>^yHiRs&31+Dm&e4?OtEc
zs#*3Y7Ce4~#~|6#m%{4XHPt;SeYv>^E21#cj1svCCGDlY@>z;)wC1?WrzWgs{#G?R
z{jVvK=ET%*miAs+a7V<UdxUO_4`wrl-;b)w53kY2UES&3=@amJo8J}<keL&|hkmVx
zr5fs5wWEtyuUxXcEd68jM`P?Gx~sMCgfCfy-vM0;zHuHk2TycXlmt9c{qPt3$JQN4
z!1HHO@J^)%mL;kDw{~sgR#}gAW46w&Lx)*I7J+9lOX(5|Vw$AJ2GLwqYY$!*8;w{X
z;VVLQ4PLk%ZlltZHQBHE7y-isP{z8e5h8{-YYkBZJ|PahU`Vj)8iuYIcO?~DkflL8
z!rrrq$Fn(o0FFVMhWON+L*+r#z#f*C@k)mvk?S;6iCQ|N6;~;xp4jyv%uA>3n^xd;
z^$T}>##nR4`*h%|rMSle%0Mzp;NWRt;7V6L=spoR<ZZ5CSx14tSD_pq$J055l^bLr
zeLC&Tdt8k~D+*zn1x<u=6wbKDAvk7@Knz@k8;RJ2=4^BK<pR`4Z)F@|8W;wIhJoB6
z5_}OCbJ8-UVnlBZwcF6+P~t>(_Zb<@Ba!(5ip{A=qG*8%ZM|1sdNcb%!$Fv}lpnq3
zjP<f$qwV~`c`S4P-4?Yjj+5t<);tMeiHsWbM!pvl-~dFJm26YYB*MgS3H}Z;Oc6^7
zi)n-U+7<rs>ZFOd+;;ZE8Ym?g8pBo<3JM*~!cJ-ggzY+ODsW(VJr#4cYLDzn=@Ce#
zx~0NmV=OQqOu#rsrD=1&iR9Mdy$8#IFRBU@1Uy_7VNvI-jd!X=cN!E^49qS&B3Q(q
zR8ui#UY9b?&5cYiG3ekHX1DNQl)wNiM|+)}=$tFZ6|M_mo;Z$KqbcCkcMF0E6I~F6
z(w02t_eC*#KMEhBZ2kbO;3Qav1EZLgz8&YaX!{kHy6}A)(hG^X1-RsT1pn_QX$cda
z7clk4NanNbg)zw1CU6ukIQ-ORF#FV)rs_6-6Qb|%Lq2#8x;yspO0KOI2f_sXc}xr0
z)cqvLKU+Nezv~$$@L}I`e6|5y?3iqd@VAu5ZvBK|QSv)CZb}5$NiT9U$QegTJ+szv
z*(jn=h$NkiMuPmCOHC-LI_QAN4}UXm2qVYEbmgC4v$a^{lPoM--y@#-Jw8UA!uZU0
z^=X>V@Z6vG^qFQA^6N>9Nj4U_wwt}+#t>CyS#vc~fo0D7^V3*#6^*}zDwzb-nu}0e
zDg547iF8QG*gd{jmV;LyG_B@T>({uZlwLEk4+yREdar)*Kg*<8lR&6=i!<mHEHwp$
zmHikyzkDFI!ih>m@!?7;Wkw_~LBca_Q*-LAFc92vf~e#87&)<%zA4$}qj7jH-9fjZ
zr{VP~tixLzu|Mv}KMe7AT{K<Q#r3q-^?>yKnYE{VND6+<dIr=o+A206SR5!oDJnOY
zVD+xQ<AS%e30*fYjS?z9b+A51B4_RV$?Tk$;mNIIitmwJP@enuzt&P4neYeR6&%;Z
zT!RV#ilH^cI22I1kSi$5gCvhG)YeIP)#>aokiE3lQZ!IuW|J@-#gUw-uDdA4x@DZR
zX-~8c!GSn{_zW@>`P1QFy<)E-nthIm8&hXzkvbVRFakCbQIY(VLbVdZq;yIJRP7Po
z7tWV9StiQ9Eu&cDdo<L)QrpR@FnedP1jLOl8|SI}TLD48>DZ}IU~v92L}4LdK$Lq0
zL~B-F@PuX<j9<Xxe$pFuLF{H=Cp`vIt1PsJ1DR#x9?XhABIFh=EWR8l7pFupsI+=~
z?HzTi><?9YICMQU)OhZ#(9ZhpuHO%Kn<_jRt#2YDrUoI^u1Ur2zRr{79mZSN+f7$=
zIzuoE>_Efhx@(lgWh*KVP@;0LNV;!3P&Kp=s(wy>5Q(R7pb=cnK~DFJr|P{G`iUW@
zN$K<D41!E%(Fq>aI}it`A9JSh;TbO!3Xfj?!JxEXzo~PBAvA_}t>*v&E>;SLZ}b^H
zZb%mru*{tefG(26ZvI5UJ^h&1RB(YzDQ2L4mE%DHH&uVjW*uB^-?nB*Hd{;M+?53Z
z=AZsL?}{PK`w5=gx1VK)!|}DmJ8dR_@DXm*@Vd?Z+vk0z+CBZY?z_e_;-Q9@{beQH
zUb0M8hF%DW%anTM!F`wbntuZn_&H2!33uG$q2;`R!ezuR-Vw%w%+_^(^DuN4e;8%R
zIJ_&d)J&`UN?j&o05&q6sZeD_20dsT2k?il-jhYJJHOGsf5gehYjTH7>U~JJf$O2l
z>b6yln<Kq5bQra#?jv#%V&*pg`<<bcD$cX1=T*{YU8m}lu#wiuEBP<_H^M@-bu&_Q
zW}}6sw={cf*aB_8wv12!mTDKFNI!aV#s+1A5>6`4$Y1MbX&*T8*%Fp#P@efO=HJrr
zX>IQyFP0XO8|QPB%P8bssMrWL{nJns4eJBAxjQ9oRedJeSFO}-uS=x;wksxS!S^dY
zMJIt0Qcp?!s)uKo%`m+}?7Trc<iaZ6MlUZcFKA&n+*9Ss2q_P6WVfNvvr>~bMMq`R
z8SG$>B@Qn16jGYnJ#dt=78Z(aED^6MyK^`w+{8l`T6aeKlFmfvc)m(*hdi-XQFUgL
zvIMj_@&sfX&x#Y)$!lk5w_E6k(TgUcu)syj3$*rz5%ZK8J77|u<#KTXIjHo{&kSC)
zbbm_c(bQUyL!|BAkua;wZJ3)PD|h4|JGC-VcO>fgOi}z=w6xw4EHq-9HFeb1Psdtx
zDG_HDKzBuWms8NdiLG4Ma}<?p1~cm><FOtlgB^Hy0|yt832>haiUO8Qy-~|#3$lah
zl#cLT+N>iGnSgs@sUV-b?inf`UlBu%V%WDypO{}U0ahF?8@b?0b1;mEQ{Rwg5>||l
zod8LsI+*L`w>tzV++w!t7s+<(fe2qzFz6JbCsp=}+VRAhG#U7?pE7&Qfq+60#A0q+
zJVsBN&N$=IlMZ%jb(04y4}13bT9BWNKOb(QcUQ&f^+IV|HZ3y-FuLvY8VXrrl4hY6
zndiGnxkUD20f3Cj-IVuCY9EKP4DQ10ovmGCrCnQ3han?vDVL$!rJ|xOZzTyAo)*2*
zzv<k>)0>!wIge1)V3mI)9vY_`=veQ88Ym=@V>s^CCCWtvY4WGiJqK3h;|fKsbLDE?
zK8R1(zm{vWa)nR6^vVkL)iYC7ePDjwmU&oNYpzF_{jfVG*}yYI+BTGF4k}?(3$Zt_
zBp$iah0RxUjM!iVqNx(Mi=?Xic;DR{<PU}d>^ymvl|`>mN?qBn0y;7fIcT|oNLB=o
zY8lC%@VP(CusWCeagqywE9G}kf2fe&%vGM!sk|M5`>UNTT)*v+$gsjmZxz^v=3~?=
zqik*Nk)mu}I<58!@7GVMy@Aa$(ZP8lDIKF`*qN7<!(FXh@GqvEO&L`sKsIvGHuz<O
zeo0Oxx711=)gXQHkf{nS)8ug&r(0ecN#8CPId8c{nR>VnHA6iSG?OjlaYodov(g7Z
z02{l~mdv)-%Ewt6^BdcD7Zu{gfPdbSBj^YwuxGMG3nXT&LadSS>6*@^V$>Rgv%JW$
z9+SvOu+O#8gy+y4!-IrZTBYJJ1ATAr%}uz2f&&<t`yB6kHSB$Xa+vsYaLD7Mp^w6t
zyR`MY`COeP{AV7&OCU3DofizA<E<t!CRMn>*!RH1Cm}eMV{kLw$JW?3j0}n{WF4+k
zc*)7_w|$zLg1{?EprJbw2z^b<u<0%iSeebhvy;Pixm#gKcn3L+-FBPd463h1HF9Td
zoGX51LVfDA%sD)P&~@eqo=gVpchPD$=xRiR39qD*KoRr7cGBC&2B8aa%3XUIr~H6R
z-;Thc3_&TerFpQgt&D|^-`Pn<-7zRD%f-xX?m!8%c-p-AM4c*rAnZak7$56FKws^|
zh&1~&gKjq<`bfnqerLY#?N5d~3`@lo_Wvp*Db~}iO~Qfek=4lwGdpiEmY1)QZxtSs
z_?)M@vZ4-}G*zY&;}e?D>oGCRB^by;ThVYTs{<W(Y(u$Cr;bwFa=oy+sw&e3vWOKa
z?3;$d@Y*c&i%l~)chEb`gHRDxpsljGrU8a0_jdQR5925GXaIATeYH}bBvbJ~|776V
z0exP#@!nkwK}V95ntLU@=|=dH_Uv7vom{3a>N~AmPXD{bAKXOF=2}zD(7rlYCN1u6
zx$83F!L9eGV-P?#TG_ZIGf<%To??1QUTisj-S0r9s`%(vA2j4G+4$Q`g+XmLT<F1o
z4{e1PtSpUpuxUZU0q4Rb1k<?)@aP`ENV<QVpiZK$i4fxQSv-&9iXB)%8>rXr*hop`
zLtgrfgat`JVB|%7a_7={P^mH$UW&!fI^w|JbGLuD@hqEf)Ha9AL6bKA*)L0aTwX}t
zNBL&m6v!FPv6U_;+SpNofzC<Deg3T6kXDi`T1mWwXD_F~r`5M<SopF#&w!_O;x5Jy
z9F@MkQ8^-)3%Y5!W>nh5aOQN_aGICCRS#w59LXT}f-@3%iP5r6BdZ*c{d_ieCU;BQ
zF}B`Atym#Vn9`ur<lX;(=z$TEL)O5sem0jsm_-^1-Mih=1cUk3Z>4&8Pfubz0@sxE
za|`w%um1LW({ahXa$R<%lJvIM5mwpYvs^3v`SEt8^XQ2IuJD|W!C@O=27%kznS3y|
zT@lr=tNvgnArQ}hC$}QWH(OP@D&>Z7SNAYpJPbXC*c&nZe5MJsn9=nkN2U>(_4<2o
zGtYE3X9-$0arxaRu&Nrq<^atssiL>TA)GV<{gT_<fg#@AEE8Qo<iy|g;KKsC1uyd0
z#UN39{vVRoM7fQ08cT$~pErHRgPn`ht6Y8QN!J$NgQs70BE#iz@)RJtm+fwThGp~{
zA{}44HM?7j8S<~>oy%}&BpFH0X{V64VkX-?W5l$BClcupRxES3?!oy~tTK9CAxL7e
zbC#pl9^<Xj>?kQc)j|O|&R3Z8znaLPRoUC!v6ne8&$Ty=pmsPYb7okFwx6IC77j!z
zxDWRIU(%z^pGTUIhe5Xne$~%>X(`LDuAuN%NT+5zyc{0uxpWlpZc5SWLA)vNayX1~
zwgH87Xo#V?*I*6}=yj$^k~}Q|jiw3`PnC=@C=KpoJbJ*4ix!BU+jA1Tu6Gd-E<ib8
zmtKHr^<G}w?H(Z>?i|;sdB2Hq+in=`W>{@;du7Jq(3z#6EC;#K2W9$qutcU+F)eiG
zzV5(u4S(1ps&Fn;=_$1}m}g=4eC&2qb}cW2f=(hD%M-c)R>CR6g4!oU;8fs!?o+g~
z<QaS~kcT!E^E242*DnnftM5Q?g)6YC>V;Eb+zUu|mIP5rPYUSLQvyv`dGxT@_Hr%a
zlcdzH*Qj`Ohf-G9xJ8xQU)c!dZo9Q{8~9>rz;RY$){=z>{0jGrYm4Ly0$x3v&J0mB
z-RMfP<@j$Om?<tF>!|Q7v&_DCDq*=kpzFK#cZL4mF*UkUYh3CHd+9as_RH?mtC7iU
zk7%sNZHo>bv};EgKNJ~_;&8p}cT5OJsOXw{O*c7R<7Zx1?c56evTgGFrTd1Cf514g
z92!6yoy61VY1q(UZIcd@qP%@!PIxz`;M<*p8?W|1n>}hRA2gbv0KojeL0-)NyV+xG
zZ)av{{=de0)n?+3*kOA=s6d~QK{VY@F9*e<#k{v#1z*uY!;Gd-3L8zwC#OxefPEwQ
z4f9Ku<H`O~h&emhBoT-y5=bga`Fn6=v4zQm^*Ah66rwP2%)}^wyr0$gMXJ=C&|NfN
zLcO-Ov{B#Gq=S{RPUW<khOs5dqU1-M|0<P5#*?IIx9K?;pH_{UvU!5>@e1vTH}c3l
z5r}7pByXaHy!O&e^Tp^fyOHD<QRwq^VM@gc+yezrb$UZ}EtU|gw2`=CdsM!2LRE$(
zxioNqT$UeRTwH8i#Gbzox9ltXekma{X?#8I7WF+CDtQe~>2WQUg>By_>7*n9zH02Z
zFR;fC=dUSYZ-2pOWbZ1*UB+IOdQhaqzfchlVE-C|a7*ltJtxS_;Uv;WT5&ygqM*B7
zm(8+|z@C9%y1qe*`$#n`k45!iY_Tx5qDqtRUf3qwiCeloxa&Arx1QU*s(!in4*o0w
zhqw4RYtF^GYWp==UDwzDp@K|B?(Brnz?+}mI&Ampl5{Cicj!YZrkJA~_LCmn(-U$y
z;Egoo!Qx8ubUnAYRbOgHel8{N)#h%O;i}ECWR1mjtLRaD(0-{Ht-eZX72g((8Y>Vw
z;oPW`gi@n(k7tH~7gF=oqor|@7u%X5rK5<jFiwtun_;P8NBKTKwaJJe35x&RPf6Y;
zR=5k!*+_$<HDQeHC70NUwnVwngRhY<!w-gX3Z+4x**;V|vCyZJG7yH+K(t08qRhK~
zdK%9`LD0Kn9ARb;aG!BD!mFp-9Dtq~h!3Rq9(OKcegB%XIYlJ|sCPR!7sMGoL0aY0
zNwd%M%;Ii#@86P;o`L&bCnUpvHt!E`-#b{tpD%H}HiI6nxOqAt*)q~t=FL2Tp|nZB
zjwo-AA@>YX(DnBA6G5wLGqCD|r<N8EemDg+Fif9qn$vEAF-;041S|wCL6qyXo<egy
z-z35FYNefwMZnm4!$3#T0Y5*|K~uF!tVOkAQs`-gKeZd_Qj9?<T5Y${<ZIMX(LEN_
z6jdi25VlcRno~p}%g(bwR|3w<sb^vHYOSw@q0Y}v)Nncsg{(L%+9V;%u6CUuNq$4`
zcIOj<QrHQf8j2OXdyUL<&N~SKi%07vAzxEyqveEdIx*)ca~!0J%Z1pU3bnCjm%7Xp
z^BI?9{Bb7kY*)2ofb6X;eZfddklNKBwXjeqyzKcyE9#(~RN-4TJ)A8H78c&T8YvFP
z*L9a<$N#38|B*n&SGV&wdYoiU?_=*Kc*ZIc%_x^yaQmsj=C9?{g_Xj_FKBLESZWVh
zr|nRhHIFmB9;*jLmFq*Ml4EmM_liS3b!hFI1OC7_RPM#?Oa-AW<d@JG1Oxg`>K=SW
z_(PNWdBNyGTkYYaUMGUUzj8(*VH<tF$2b5ngHF+3&HZ6sb%O$vfjkeBKO?ipVLv%T
zj6X+2AJYAf&R5<Zbn8d(MblKh`SCQPA#1!J82>pgPv?zEi2x1&EFuB`|9xEkzdFb!
zrY5cq|FTi3x^CPSJEGqj6*zR1RH*ufO*VhK>wG~MSgQnwEjy4FEo@NQIh(cQ|Hs!m
zMTrt@!Gdkuwr$(CZQHhWPTMw5+qP}nwtM=nnV<XKUGrb7>LW92?~K?Hp&~KP4-52I
z4o=|}ua_@ACdozeB&_+&Ch$cdJ&?XP$<B`xX6T`*&M9ARCZIgUu5&|ZoUzwIkx1at
zg<5-TS|UJ0XzjVg0+B=F&?KCm1BLJR1C2t9L7_O26pyM}31YX>38ZF4r`atZ6b)jB
zk!&tLNHTNVr$oq{(q{yZ<vz0-Rw~nHY|tSk5lbyi3DtlGAdsxwg;K8osiW1AZBoR-
z+8JW?dSdSZ1xj!1;pYsgIP6$0lV0qPL@qXQfg0@4*J#FMQx#52zoee$D7q`$&%03J
zo<e{ZWeJSvl-D%{)DIScz5%E%u=lZ%%3gcO85|`U%3bK$>7r$=y99y1pI}A!(rTZl
zZb474JO(8ab4+l7#EyDYiWSIdjGeK<rq*V{vXLuUBGN6Gje4X+Du@v#*b5zu{8=G_
zsZqvMVVR*^j4*6gM=U$bm12%dynsVI=e%|UnPxuhB#Ub-`b2dSopK}o=>qMge|O(q
z+*1XE#{v)J<m>GD#Qb*sK7=|+AcJ;Ff=*I=7DYO&)cAq8$#uB1%)%Z?VcEvEUVz%e
zj+iD$x|Sdr31_cf^=L?ca}coE?elQHL4CiFc|u>K|HC9|qwHJSm_<<H6?cClQ%k6$
zOew+<T8jMAb(oPxKzJ4%<|0p80wXD^Y2?ufsv^#w)M_H~eo`&aWbLZMLXz!PL=I~y
zt?qWBW<?7{*hsECi_|6F|3>1057Ni3TLknGaw41FUGK`|s$}>IOz&xkG@Kx4DE3rt
z=ICUZzKX&q#FI&s*?6PZ=QUUpQld+?8rmEr!FVO)(=rLV<Sd`r5{9)ErOyX`fsu`^
zSZ_?HkM-~`_GwyIofCxG{9I`UA@V`zO%dP7w7GT+&(ucp0>@a+_Gl_b#HNYoK0g57
z|1*-oFcKni3p~B6CK<Y}hPvg+Xh&eheyjCy)(;M`8AOOGpQR7NN{DFa-W0}sh6ZQa
z5Sl6hIf%eKp56+QT!f0HH|i<C5c^50?%+_GA~cN3kUOS2YF{t%O|ryV(~SffU&VHu
zjq#(hOiG5IDC5cnWdygdFV<QujfX`D@_ClR1`calg(I-ztxr$yAjj1*HSM@RnISvp
zeDt&v+I!jo5B^GY&hWCZuU+~lU3s9vfe(|`+j92SGpP_Lo3-KFb#i$nPW1xeEYi?t
z9OcgzVqD$()6vDtXt<H^p-u{Gu?sn}U8NY_o~09>CyxOQGt?7g#c9~r&!-L3^;Rz&
ze|(7pJJ7*agi$fWwzBmh24BbZ$Qpy!PASQ|NF&ge`F!bRyn&`B{i9g(kIyXEOs%rl
z*I(@^JVTlXKM}?zYS}$FB_c*-hygIh-CS^EUe)^Kw7?qjRkipf(PARx@kriiDc+8V
zF1=yYI@uJLlJ&v#7&-Dxso;Ua8A_gQy)`?~=H&Fdd~BP4^s<Ew*;_E?c41aCqu(wz
zs%<swGVa>)IlMV<(u)F8IJUeW;9DKyU#ny5|M(m_xk~;#;CBsSCJS+9H6sGj2!+RC
zy?)>$;x}8WFi%nfmvah-k#2uG#Pw?|PUh4e3(d;af+kzzsJvGW?a{g97mU(VaXj2c
zBhxy_kwL`{X+z=h-NKZ9&FoG*EQsOQ%>mnGF~9``5@9azE0N2UuU12~M|XPRQN)NF
z6pXIil6dyo1aAS|5YZL%Fj5lqXCVvmxhWf8)+m8(Unc}VxVH0!m7i>`&9YqfO=mnD
zex9vnmC)E^^5?YyP9w+&O1Rn6@zj?arOGb^2frN_Eo2Km_wYtsjsTjwBXLd-9F!&B
zz*c&+4_As)O3Ac!GXAqgFG`Olhj>WA!8NU(dUdKgm!Wn{ZqaoF@eh7UaU;`@<Qmza
z1S{V1R`Ayy$iNlYO=rV*Ol%qTcX+7NtuVC!V5G#|?{(cS&2hX<a=H0L>=XA0-D$Qn
zv?M^|m^=1%P`BV_ci*P@Tiu&k+7;1g%9qAdjXA^fCr&mO0m+DCtW41R7UT!$ziUW(
zY<>{oFAGV-2>^ikf48)@rY=sF#?HT0WJ&wW?qIm-M_-=t7Kk>zxUqSmDAwL&)7C8!
zc7BR(nGQ-v5Mg*<!bmorCcOR<rR!Aq5%PoN#b=USbWJV*x+q#VGmF#N?AYgf+Tr=|
z@G#SB<C2T?&}*xr=~9KRxxzZS7_G8-8;X)|T&?o+sh;{e>e`SAtBX#$F6qcgeY~cO
zn%1N;MD57x*GfYU4fXc*h5v`NLaXdUt|^%&^g5uaENNVo5A#ctn)a9UQL2k~uUL9r
z9JedfnzJ<_U9PahBfDi*Z`X*bL2Hp>odpLzmtzs2Qd4qIoEsY(vrw_gY`+>r%Mfq8
z)Nymtl#)euEVXt*si1DAIxTU(zQW5W(AwyRhqY5lA-?XUtT0uSH*l`jaZ9A7sdriE
z47B817F{ys9g7vCA5<l;)M;+>`1vjzb+1M=C_s&%TR9W?EZ6(vN}Ng{th?Zs+VLzG
zSzlw{q_N^kcMjF41hm!l_a!tZCSYxUDwn^j`&S+NM?IRF5w)Q~Cd+(3S|%&Ipa0bt
zu7^L|Uw@ywJL@Y@t1NP(6;V6i6p!{r?98r8jT%V>aJ(voVD-=~GYU+l#PK9?4u3~a
zmwwyt<0@Q!C7OLlU$^J`F0(})oxxyj%4Nl@ASAy*Rdd3QFI@H8mt=QFvZIm;;dd@7
zEnChHJUVSxicCMp50pFaMETPb?n?iQ54ndsH_P{Fi07bhBHYvxEWGjYAzIlkP(MZI
zCi-ew7EFmNJL}*N{bb`wj*IdpQ-0bMvxP?>SoH)^`0`zM*}WIN)~t5s#n1iqfL@{d
zMzsy}Uq#(y_(^+u=>dmhHD~Qt%GPo*{9ZJxcW}#mz!pH%B!)ddWg2!Pcr`#b<-<d|
z-OjBN6^54U^AbQUg~>`;E-f8h|JT>MtIVON4te{3+rF<0nM3e5JAu1~m4!naE4ej0
zw0wORsnIk3{>>bsoO^6@KgoEpVr^QHp${`dY=GhX9SB7N3TC>X^!42E-j~u;!>OMx
zeIMMMZ#Am**!0nEnpEa82(Xi#$ag*Fr7wq@1APWTcz-%GWF5gO#Y=M=ndnW5Eknz%
zc=1npPquN|^HU>+2O~43+jucRIsmaY>HZ|A02L)56wb^BDc!A^@9T6PcAHisn?P49
z4zyY4&2i{6WW2UiY&4-}5V>%&rYj<a-@W!U=>j!pNz`w#$O@YNTovMcp^$Z-+;EmP
zpj9oRZ$P7O#OOQqM9M(pJ_<|xipqV#)jE0&IA!vrTt^O8{=&w|?w5~iT^Os}+jY&J
z0z_|InWdRf-{cYr(q+0iF4%yxgTTbS?5`G2qK;Sc%FQo&FVQ`Zyz<ZcIxFvhUv1S;
zE={)1_tHaT9~Of`)r`LadOKp-^?|P;IxDzr>}hLO<7b=LH7XtP2YYqc0x?0|JOaOj
zUHA~1G26>vLR!&x$O(&N%aA$uL-H^G{ftHpQ%^uLwK9?)sIK0&WA0-!2e%&O!obA$
z!GL^IR0HzKk8dah@T^iT)x7_^jFz?hxXU-GcanouKlN<ZtD#ALkH;W)BCDMTY+y4$
zO2|dE+~HLkDv2LCrk6yjgzT7lSr^IDx>pcROi={a?z&(JA?vnTB#6?FO?u`g(VHZg
zrdejY!22s4y?pDnG~7YLNP8v{M;i&Gd0wP>mNIF!djvAfd)`#wN~2?$IxaefT(xID
z$d>@|TQ@fPMCQJ$tEjY6PZ_I92hpPz7%32x?QQkM^1A93IH(d1j-fvw@bTFucyz!C
z?D^`CwNAn0)|F%`b5hGB2gVP^Ge(8>7^s=7OkWL1BV5D7a7Dwk?Ik1O8mG4r(Pv^a
zf+;l*ie#p-Ctm2)@o8bMvqZqsaW_$2SRKYu<R6gP@KQg5+(16msdazmk#&<t1Y~G0
zC?#ae3WCA*4A#`YSiC2K_6<@u`A$*1L^>IyvGR$sJ`@eJUNmbPzJ88ra_Y~-f{!L+
z(f!2u1EphSwQUS^0IK|e!`z&GyyjkDEOQrb4~4w4*cPRpJ)x}poMTX8%N*(t_|m&t
z8t*+wGAvuN2c2kO<45@Y_0PXwzqdR<(hzzG4N7}jWAowS2ip__Tbizw&N-C2NF5)T
zPRCHj^TeXY{dOCVqEno*i(TnmLTO)0%}u4@G!F%?as?7Ro&P$DX(ga(X0RhSCaI|)
zfocwE+-)=$m4_vXpK#;=DcxY6C*Y(XCwW!y%bwvQyh!Tf2s_CVr6xI~U>vM45+RqO
zfA6wYSn*%P2qFnFmS$ru)!$$(;c^gXU}>i=-kLxt7G!Z)tUa5nTDZwqKmY*;f;@Hz
zTbZ|DnD%yHMlLpweI=C%C-D(Vv3oG4_(OxU-Ll=+z*m!vaqs}VEwCWt!Xf#J>XFI<
z8rnbT`~Eh_xPGS^iuIQ3Sfrs(BTm2>uQharDfVnqu1>^ykv*Tcgk20(MU-*z$THw!
zEy0ap8C<CTeGRb7foRg2hE?;T<rQ#6dDyGY#M$Qos>uU(>ZB<v9u7|A6S!sRi59`T
zqc}{n<<RTIcyyn^@A(ktXt<q!+WMgz8b*X901gt0(*NSR8fYjyfR?)oVQHiVXOPHl
zX+U&mzhb$8W(CeH%ABPi;P?A2$+d~K)X<q6DvBWV8OwF<VP4I}|DhQN#w3%8@6VWq
zpT)a3-nRn`1y-vM#WvhH;#F;ZQRJR+X?`0EfhIo2To7>GCMEb>NFv$H5BWXnszMJY
zVOP=;WzISHC&Noz-Q|GjUh3^>hrlp$regab76@OXj)+oB=&1!!r0xq;p3=`ITV*F^
z1kM*hDiXVnQ4*c%^PJ>MIAD-<o_dZ7b$Q)-kgo8`dBV_93Q&8rJPlU{03!dgIM8?;
z0_QBE7{?||+~Q}tiVgLEpyaRB1DPm0XJ?rH-e4Sy1db>{ka=@HX=S4dWDcY?aN<RP
zOs%3g0-S-#&{=BU;mFf0pLzfRf;zb~O)&S3h7ETjd2;>9FTo68-VhJB>YtQ3khMea
z*;5}s=otpVJ=ur&yJ2<B!2HplpPDTT-~R|57+y_0zM|8{ue4_NCA4hrG#y05si%Np
zE<O_f{SmO#{jUnYdVg*KqEt=yLttb~r=Wvtzqb*DOzn1vqT!mbA&Ip$zv6t$D>xTs
z@&v-g-Wn}2P%0-6N8?`LNN>k*y9y7ld`lTx!)mnhZzG2}kx>5Pg#i@aDYIXEmO8Hi
z;zx4;0}8p5vm78Di$|3lVCrJFpaILZQKJ9f_i{1@@ctx;FF52`d_$lsfxr=v+6F;|
z-cJaAlG30xw(54}w9SDT5Vo!dPmV(uo&$CqUZ!0hd1zpV_?wiF<MkR1)Cr*!1mQb^
zG*eVEpBmTxM*BEJoqcwf+O5A8_Lo2L0)!}mpg@9GEm8U(#k*&RjWduTCU36^9v1?j
zeGLki!evC>DB8EZ#t_7pN6Fq<dyibumblw#JkX8=#;cmWZoLR*dRUX+YZ}LEClL(L
zl4BXccaALnJvV+iCa1>OkY532j;dxpHiEdhTXWzjEVwYu3>Jn1miuPo5sFx`!>Y88
zj<1+i6DRg@=g?aNRB9x(StHD?*ba{_tSQ*JmqFlfGycKJJlSn+FM}EaF|={!>>r?)
zm<cg9tju13<stfg1;PHQCOhb;<hfhVU{0_B;?T&Hfm>}Z5mY;tP=5+GR*bpG1`9ZZ
za>+2ehL~a(;6#&}TLJ&(hr&buJEf)vafmlC*_CW#OT}F%#&Pi9OfL2djTBsX@gW#^
zG@U0fi}PB6OkbcX2!53c3ZaZRsj!U3s@KW?0IjSB&Z1chlWOYE8_6FJkT8j}B@2kJ
zdB@MIDsIKtM!S&R?N<c|7j6y+-GVY>F|#uPX$Up&UqD-;HD^Tuu6FJT+(+#hKd<SX
zK&)zx{aW26H)%ImpRml+g8?4AxuB%?#%P0Hh{h+4#{yE^3Dsmd9YT2#gt5C_QL_t<
z$ZpkM&tJ1#I#AGP4HHn?!_eDCS$5xby#Bb)_s5HztwVM!bT8Bo+w=R|R<&q<$IQEG
zu_kG|hch;%X0P$;`nrad2cO4IMS^(c;$2L2oBfos3%|}|mEE>331thdt%1$)MCpZ@
z%|W<3&kC|`g;O;}k3SPefkeI8uW#L{IWTPuUv^nqlf2%+<Tis-2wV0c<j&g@jPfU!
zPG-z=7~JrbLJW3PJv5Tw$)gv>_cH`g-cu5I+cdSK8B`IJHUjrgnD@!xUV8zPz9#mc
zskhKqIFsmigSw4}ZmevUf0a9Kd4ojy%v#`?Y_-t;&O&_PR;+(^+Xt!+#UAgl`x%RP
zGZepYAR<o3qinq>kwTX^V&viH8%f(;g7{p{1VF<!<I`ZvT4&wxG5X~x<0eQkZVdKf
zJ<C-N!0d5+Uhbl5ywCKF=eGX!>9@w1_LwVG3!Ze~956vmK)kj-_Gtic!uE@5Z}xRe
zfM`4b@>3X$kP+<`SCcWTnM3)KY^~Gxll&_H@*s4U`Kt5+S0xw`{b_rQUkJ#@+6nqg
zL5rutH&gcEzt^&zM0c7dbz@wq<}qG<9aW6wyag_#eckNheM{F0nB?>E)fB*ld|=x)
zQi1XhZ|*GU?O8^K2C57o`qe&8;m_OA`#LPN@~4}ezH%EA)M)=|il;i;>#U6?H;NI~
zUqC@=Y^2s*ZVR&fvZl9BTWxkFdWstPp%x^aF{pD`+v!yde1~WdtAi}I;Ny`%kzifX
z{a(wk>#j!vW|H1R4NZ)cc0isea)vv~L&P}mqDvWHoYa6?$6oo+w<uVCGjsF@2Q?Kt
zC*<Un`5xTGmAQO+!O{g{R96W~as$73gxQJwrW!acdoWA;_r@+`uUVcY{Jk&E4Auin
zrsGV;!bby!XdXkpe+Jebj+YN(sfdOKvMaWKT~s8!aa2b3xI8NYd>qIlNqs{ndY2Bj
zn9&PAC~pKv<KYR>MkIwp*T(3Dd!pKg;mmWyf@K8ggWZX}VQfJ>#=`kLQ{kRo)N%1L
zHPUf<i+=xceQ%N;QTIT^B9wNA_h^oVJrq~;vNbUHdqfxI0aEm%?3^xR2?<UvIp<+c
zJXhN8tL~UyDhPa~giEIi3y74&(F#*&x*`?s5QQ^bQUVy!Rdxuut0x$_yS1<Npcsx-
z4eEAPcfZ)l6H*4`3Y!q{LrQn*c2ZOyM})6UAP_JxRfDVYCe;-^N+|WEsO~@Vm3jWz
z2Tg`Y0B`caH(7uBJH}CZnP)->n<X>>BB8QaD#Ml^NPyehU>TRQD*z{4?lHz(JxDX0
z>Zl-hKH;!KcD_vUa<~n-lRt;t-m(ncbnKn8rGE`WK5_WD9Ae~xz?pnku{92PlEO|r
zbSMC?nL?x5;4A=@@!32|G;0s}A}G|TcO8RQ34tJ1{no@GSQta>FMUa@=lX@18esjS
z=eE+}=_vW6nRz4R^gBK8Wvv(cQtQE347tLR1Tf2ZJ0I4NeGC#kPymRPB4Ww}ePqUt
z&gQP^JL$$WlHENgxoc;$wiecJ9IwE3`k`*%SGKgLvUQ=8dO7y#Dg-P!_e3Xu{vG8(
zT*uM&ZeREi>G1eAWUi=>PgCFqp5zaEJ0z`Wa*c@Ua4}GbRmR8ehRBD}y!U`{NK3g-
z-|;J37-Ki1;@2&WP`GD5nWNPSvrjjS&=+Cv32wz0NnnYsG~PX065f-KiWh@q<(^3j
zKnn5{?jY=Dv%Ho(&3$a}9~jZjVCxhgg}vTi)=ktLPt(A2wgP{wHmNa7yHGxzE-A_5
zu!$t?xhj#t-~9CgQ;a?kXc0@NXs5MeJGPH_zFxG$7Dm#Afz7xSRp6(?{lfomT;--;
zeIw!5%l7LRpZ_0Jp{>1%sm*_2l~~ms>rDn2zZrePYdtLrbqpJLcBl(33~X&}w?D-o
zx>Y14jy5JIH6yD(e4Jxn5RG;Z4h9#AG-n@0nNw!$DUc{&AjYVycv2GxRzO~GF`@wY
zwFROnTg2W<E26X5xNdpAf97oo?CJo?Mh?qiF&b_A>Qr?Fp_aKF<`Tb%J`nQ?2;@h*
zIJ6j0G|=&&taaGEj4Izp_5Z2gI=i|<YcJmq6a9WjQ>~uWw_P-NI}zMA>&T(AJwQph
z5KaJUeHOBUAAY&kxxM<inHxQKglwXoKHNg{2YTnw$DZ`a6zpD-%$-*9`IMWCSTtDt
z04s=(uK(p@sra#9nmQe7LTX#{@lE_CEzo7D^@uUwW5+-PZ{C9fJ9-bXW_P){aI0C8
zo3-)GJ1vu>=Gf;-j!<b8L?N%BIWH@*jI#;{GEunHvJg6`f!tX$mwuQ1+CVnoqAX&j
zwm9C%kO&5Do@kcTqvJIA4TH*`$(703yk+o>EnbD-Ac7Hs-ZMUiH9T|LW!||f9&lDD
zB8i8VY&`MvO;pBZH-7Q&HD2!NBQ(={C>@n0LcAR+FZ}@y3@pT`pcVovgJS5p2f-5g
zxSu$ma;Qq#P6DJ|#iwth$YEwdR33{zy^Bq|3*5pBcuT;C>>@q=V`6gf!F(G6YKr3k
zZ051c9L~wy&{)bf+x%eoKpB5rd(u`diW`RB$MLKd8^!j0Gfh)#s~3A-Gqa^r*Oi6_
zwX5(yUZ!x?ag=-;M(rR|-LqEv!U@X=EZ;A$i1dGV10(ViJ*>Px*b~oNT=)~*vxMKu
zx=)FJ0YGpwl62$gHC~oMDu@n4G^bnpbSgnger0A3I1LupKhV=C$*Zh{^rFlu?&^rH
zIbY!ay^m=apM5TVy_NBPIi~-iZ*aD>b+EBC^Zeb(P3lws@mTJ@paeS)l_3#j`Wvly
zGz$i)fD&oYLLNx4yf3w#v1ytzp<$C*@c%h1yS-5lOp%5WDsun$@6en)ynSrZa!|v;
zE0h;ZE-B)MD2oZ}Qu+e9)9;C)%+u{;yeCClwIx37{Vu`Vn8wj{^pX!>?o`||%5FwN
zh(dfF9A8S2#9^RE>7!tJGEX9B3zZDnL&cFVb=E3o@s<tS#37<mX0jz=Mfj;f%v6Q-
zsOr)4r{iR-gJeB`rWzIdJJu^n*b(-OtGP^$&J4iMY>Te#k<&`6H_Z9*72NmN2Y&7R
zlA1a}fJgD{ErDqpNw7g2j%%o*Fx}JGR&ZHwM_*ln9;`MI*o_gNvN+E-UQMUz`-7Rm
zPjs~@5WT=m+Mro;tv~raRaVQ$hiedupO)QeyhxYIQJEA4S~a?b1!N|NVgEtbcrp1)
z$z7>y8c}vW#DZEeWnrtafPG}^W0rBx*^NP?GFEI0_{kJd2CUTs<BcZW*_gUS_xV^^
zC%M@Ps0l36jJicU>zr`I*;jHY3UY>8?q6zdW2M^zQpi1J=8IP-M>%F1CMR0<%BNGE
z{86^S2PCg8abv;2d4o{Cu`=V`$H9ZznY2x_t?>K=M9c=ZM;GXeIu7vYc|{jJ=OV^V
z4?uMbTB~K8I{w|6r}HNXj1xh<3TI?jK1N{Iv|J25*iSDdP%;Xwe+=zHXBNWnbaC_?
z(ljb#q3d~wBg?Iqd*Tl|jYpnHwrf1dv?WZz?7D*V!1zgA-U+7{)n)@Z*CE?B+&*cs
zppMN!F6;)vVEi-%G<BQ>6qAYwX(l$4SROv=L)(=B046L1+5u~1ri-y@l_ZDOj5Wdi
zCVhj9<M|^RLr-1}X-@$w(Jp1~2e8p_%cfwezUq?V04K0uG2#k3Q(+|nsw}kWJeri$
z5#Q@JPy!40%CtDsNK=XKM0$0b)0N(Xt_D`%jmjQANoa7W5Y&VXU<*mrT0gHJDr%OI
zK_FJ7Y}-`maXm3{Yf_SaAm(+glLFh82fM*@NFYKO5AgDdXmODF!LhHFCUjltphd6p
z!$98q$oql;pBsg-pm}d0q)L9n@bx@@t+-)COQ@?h)HiN%XXtn%gQ)L<*pbe@b(3uo
zpqFu#EktC6q?6VB)b1Id+`0>j%apajK1Iy`Ef4r%)o8vZI=_n;qY}-e=W<!?ln@6h
zQD{4|fEzOFl(;&UhK@6;WJ^ZVqOV`AL}dUc(%6KuLupMHmoZ3f_GEOZ8r%^5VP5nL
z6;$rJ=uWolCp)oI=xndsXvJ)WXNLJIIP)3sEwuA)Ux-)`|HAzo1$6FIq`QPPwkNlT
z7JrNA=|aDIkmWe*{ddWiu_?RZt?BzWWY;@sME6A9bmzAUdAtk|#+AgL5VzS{4@S>X
z+CZ4Yyyszen@4^svVf3<cTV4Ok=6#`XoaKR`}}1h#yF?uma%YPgv%syx!TPLj<Xxd
z`bTiC`If^%A%^bYu}Q34<j@pf!jZm>N*0w+UV`>X>FZ&LUHI*1FB>aTvtW&LcAFUW
z%GF(EIJ*}2q+5MY!z=lqZThG#!@6CuWPXIDBea4M_m%r3DAL)Ni%{eo5~tO1aXl`l
znSUgqiyc6y489WB3x9|eckONI*Z%bixGfooC><9;Kl3%e$GWnW2_ACgg8IIj6ENln
z)i2a{?;5)LAOM#VK6zyB7b+P&_~&ldgk{=g2W#Tx>FPG`#lvH&RUi-zdpM$xXshuu
zM07NXQ-$=Ir$&?-i_N8;NExYg-@r*2U~FK(o<KaA+iRmD4Dz;|g!Dk?^_xmvMhZXb
z19Yovb?f?+2{^lOhwPdG#^1&2_%(y#WQ74<ms$Uj<nmdFYlEN-9Ru>Ks<G2GsVES~
z83rjNCRm?$CpEAf$)04MYiJYMm};P*k4Ki~ZIL+IKTS!Te*Tcz=x$Ln=wx<x6fuX4
zhX=urWx-7;-jk<MfFS4=oo$$z>OHC;;reK)l%jidE_KcSze_~Wo-TDNFaUrX-2WUy
zaCWeFa`{iEqb_Z?!GN&!fdcGl2<fWgf}IDN1pr$wVKr!}$RY`<Rbae~WT~JOlXuk&
zev0Uw07ojd81AwkDm&$!1wZ0N?3vTD4y_45jtNR<BBqp*7zByumBXH1TNOl_EmKfA
z<mBn;>j(uI9o^CS*SYr}xCcBxc|b1Z;Edz=D=`n^7zDl3Ex+D2(2;4%%%0I3YSanu
z&{4(T!^mDE&$nlvr{ZR?WO(_GTe&GGJ!0!-XP`x+6q>pWP)VZFe^9O`e<KsnLmXRz
z>4L@LaPaDUGVme`A>*#jl?Ig#+dxft5QXsWsv+Ta<YmxE9m7hl$IB~TSJ_S+XN`AL
zZbj0o#^zN_jHYaMQB1}-^)7~&(W6#qPH2tl_W6_cC^_7lT2Tv0#x%TqdX6<}o59s?
z3TV#3wB|}WY6|wVaWngyt*ZDQo5#FZ?XO&HY?<l{lsWz`di=g+ndStnE)Dy{%>(K!
zu4($B$>>bgd7#XjG-|1uGM5+~`UpPx3iTF4dN9ylbwD>$vfVtZ8wk(%Ee_>6+xqfU
zIuw?J7zl4a&@`P>%vTjL^J&w7tz%U=j+d$|CeBuVY&-O47_s5q2dz3K*UnC#-^R;m
z=SRiLZpD{;;It%^G3BS`=@kN_UW_@<xam(ISs`C3I}A?NoXn}lm2v*v!U;@Ra4hrR
zt^Amvy7i<*6o$MQP}ekVb%j`L@7OMl8mx{YMVi9GuB3x()l{7K1&b)@0IeB1tsi{;
zJXn_j(FUl|XqJU9K3kfQ3^nR3X}CSo^}KmJTMB(Q%5y+CPA0%-p`s?TY+AJ@lIo=A
zwD6c|09NFG%sK7rW{+rz6wMg;xbjHtfn}b@C3A6n9|<^ef>r*rtq{A1!3muURLUTX
zJbF}82>U@-UjnKAaqu^1oMV)q9}nnGatdxnu8`gC#il1PO{Zd8&8Q<Kih|^SiwyN@
ze9zw8qZ94n0m<mPPQP)#i3lN-9rNZ#cDNAf&##7W6y|-UjLyCDqQo{e<Qj|D2`v?+
z?121w<hLnw#OFs$<S5l|h_9WEumxZ=;8ubb)|Vj*<$JK((pmP1X+IsggPKiKbjF*w
z@n4rD0e6b&-om6TT6)EzU?h@lZ58YVtqQ#Y?=4?3`fWCgHJ7^4(m?l$pd6G@mDORx
zX^+y($T4!jyT^)S$kth#gB;UT=}um?)oNTS{&7m0Ug92DxOBj=q<#J$?cOROPoWPa
z06+ph007SaO$R&ws#@I)^$i{V6JBzqY5Qk`4e9$@U$CrK^}OPq?CdC5k#to@$z@K*
zE#9U(%Md~*QtzRlC1TNwoe%g6@hkL;l%1L6$>^f_Y;PM#C%#73iG#!(kB?c{JLg4?
z{WGN@x<So;74o1wrA29{p<%+g<a&Z7W2&YCzQ9C@vA9yqL?-3(BgQ(%q~4QFy@+6r
z0_96p^~h*=HLkQ=Vf-<y3h_d$EY>=zLraKzkIRHpovSZ2@5zThvrGL`EH6qN(R*&3
z$GFo3hyCUI%K9}YkV!+mDB~>Fpc)Bw0X2~;i1QEe^Eutt?Y-En1+mLUQteUWIEc17
z>_N<PuaDso5)PEZePV=el1$Tzl#h*Q`PnO#3FVA4nbZ;+QNHmjAQk<Z)~QRPMzmyp
z-p`<0kRk|u9yqE$dL6&&QMCmNGS60TjY_8V<`b!X(&%*7R0~qv+8T4YC5o#@4tr*G
zW`%)dy&dZ{iD7*iwZhm${k+aZg-S#E)rLdU*in;pf%>L9E%aV@i!7W{yhTO@=V@UR
z{5w`-^t>4{06<{-CYug-5h|Z*F@qE9N-HY48>B3A-i@{9cI$UEmVB?X_oTIENqy8H
zE(Y<EA|T&*a-uKfYDbj`<f-SBwM{5^N|s82Mg5YZnrxqQxroqKgQk<~-9jb%82rgU
z{kk+y@v>*Lv9*s%d}I;A82iSWB_qBayO#L)*!hYy^@v5z?{chPq($!PWU`>iA${WE
zaA>VV9bRU)DQkxhP-ar8l|L$7`V;EwbO02=WD>w05g42TVEB^y`GTH*fZuz8o#>xv
zq0LF^t3BJqU`84tpwGJ{-QF}AllCqw6n9F1prkI~$1|oMR%LIjm-L|k4<nJ_32(dd
zC>Nq0zwtO29qX&9ha{0j1d`_9PCQEaP4fY*#tZM|NcaYDyrDA*=qU|gk%J~kglB6E
zJA#6xDHx7DeSmvC2!=Jq&_#Q>oo7z3xT1A}y{oC{GoUX<jfu7W3ZU<gk9l0Dcv*g%
zc$KG#^M)D`sA&y6i1&v%(^57tS4A_-4t7_mH59QxC0h{2vs$(|1I(B7C*!&oz45v*
zr%P`T8^>vvB?kmIdF*roj7~E=Q3td6{hzO6+72=MsnQ*0afy)_W}<eXfP0!}I{Iy0
zPqA3LYxFHWiZGnA5VGE)$9!Cd8U}!+ub9Ax_|t;U{q%c9G9iYyKuuAEe=$a4j|WRj
zq;+sss9ob>zzuO4mRIRC{eThGZIhq?=Hx_;qj)`OM+Gt%*tF<><mJ`9If?=GjRbEs
zTd|9AlmR~f2%9$&w?7ONo#F>t@?89I)N?rb+;ST(iV7BjB5O&o_q<X>l(0eE=^AzC
zsYEl}I8~Ac`I|NX0mLAiI<t-XS!mP{3eQ)C9ZFKcdS3RD4-eTh3~&og)&0aiAj4{|
z0s^&*m}<3frth~H-J1|Luw%oEjtpvwCG-2%6Rfi-K{ueU8!e+X-P@`XO~72+esVbY
zFps~%tN+--alv`~>my3CUlp>_!Ofp5XX<a%P(_U~hyr_VF@;|PgTh7slp#fy_vClb
zTdZ-rsAl%9>tx@(X{3@K6|%5)Tf9&e)WhGy|0S+4hvs5uyH`@3^+x6PRxi)aW=mbT
zW-;X%UIX{4)KkG5TcEgH&9<6{y#{VvUJj50>ZHUi;htb10WWl`9=i{dUehp;%21G8
zkY=kv&uf|R50buO1w~Ev-VI~|uMwmmasc@bvfbHaJP0hRyU>H!71I9X06uSjOGhy`
zlL_dw?$*D?kQ|*V?v8Hn1~s7xkl@k_Q+5CuAE1(&=b?w0z@mSHt4!RI7I^0?+A7|H
zr2ymv5P+$d*F!ycH-H>m`cmGU9#c(4w->@afaIeE7aIUiB-1(*kPKfUvNmHw)LvFt
zf*&)92IlJ_Y<l)8Lrw$j1hWbquYvhpc3Acj9v>2`W0^|-3FFxW^Sv<P<5O@*Z~Hpx
zIkqTn4d+#5ZqC`BxuX=aV7%#i@OeRu%DgLv2*Vzxph%|a^D(9J(IOzJ1cfmO8CYcJ
zTVM@190&j$TYW_!9G^VJpamMK>$>!2*%cli<s_fxe#Tox6+>{5S5SU!Kqxo`-Q|u`
z0kez9v`-d@VXU0yD+m;|13;5g46lUW$J;uZlUA5^)!Po?Sy5_Hpa(Q$aVT$uP&R;L
zFmFB5s=QS@RE^qD6jeQ&LdX}^cO&C)usWH1vva8Z+Pr?{yr$gV+xf!ZwRiHBA9Jk&
zTnMJ}d^D2m>Z^;K(+1{9o1Q%;AOc5Py9!r4nt62yHGD!N=2U6^d1}3#8AANP0TT`O
zPG3wo;cEuRTzy5X0Z#NCHVvgQ?Rywdm-ni?(12BC>Z!un1$w@i>G_=+YGT*;3Z{*2
zUpn@D`7{ORagYG^ggzu7t1E69g;14Nt-h<1U$9HXlO&_quMU{J$O<Oz>H&cCAa{6@
zlkYM(e7&>tMp=FZD&Ie<2uI*09R`<=Zmg0_Dzl~HHu~dNbo0<@kXOsCy6KM#qi&lh
z6a)o>`|m38$VhzTQ_D<WScNNLD0OcY`*C0^WbI2%N^dpWfWryhFeK>Pvi-&X^f&**
z!NGoSleYs`q|w`Lz7AG2tuXxFzjP%wPYms%Nn95sG-~6JVK#o19Hc|@LJ|X@n!9YS
zJeFxzZyjaXVgFEu`LS1rV16tz&Hz8{*WJV1E#|XVW%qonEoA^dP1C+qopjmX0B<mO
z%ro54NGsTLvu_h!+-cODQb*X=+-OU&36e;<jmRwgHoA^OJ#I>tbY0&)lfkt|0H&S{
zCI(3=wn*z=^6V>hI>m-ip63@FUGNcMYV;MEw?Z%5$09)~{wP(|-6xNJPEB4iJ$^Ni
z6qZwiXzq2nBwk0l0afXyrgPC+7TLaQET*J;R?ZgAFy!OisnwHveg`%AR$U)JuF(s$
z!s5A0ui3MNBi|vzdDS?^H@<t6&SnPsB2h^&$LoRMa6!QJ#k!Pc5k9nLCs}NwOD`W<
zbtNrHqc-uef)7oJ72xG<{_3EG$uq1s5-;hB0ko8z4BQ+oZ_@i)An3XJC8<dfY?xTF
zsg-4hUvKar62~9a!dwcj8XkYk)A7*}n~WcDCXuhlh2=2*?}LR<aJ_~eWU-P7_Moi|
zBLv$)T{8RH{f3RN&NK_YZ}$CyH$Gf&@Ew1Bfx#c9{CP2@A=bZmk8-m0h$?2aH^X6M
z>7JFnpzA%r|9t~9BfyD)`n`c2fdBt>ZN|=Szg=6g%2m{_O6M!Lv~?0mh9LHXR4PxX
zE(*1sZlk_738`eP2$ww@k~wji>iY@MM<jP}jKp$&v7#zah`jA()A^d$8BwUvbvQJL
zRgq&DN|@*si%e=4){hKOJj$-DK;%7svzJI7KhTGc$!CJ9u!32HXKF>JKSdw}6tHu*
z4T>f}FtRRqZq^!3xJu%}BY5TNz$F#&Up6-h6B3JZ5;OevToOaJ0bvMDbP5zp&-*`u
zl=yhVCaE)^ij|gk4L^mBn0nK%@4~>La#PJc6EF5w{E&gZN849Bo@@bpoGD;{HRxJn
z_)G9FY|v+pT5<#PQD6?>M?!Oly}qNjqb6|r;L3;HeIzhrm14ffOV^pWK0kdjq8TUG
zCW;{?wJAJxV2E*)kYSF*UQk^nS=a<Arq9ps!tvFaNp@R`d7}gY3?(sD46cNtNcBci
zns)?@H@Zi?0a)`Q8f6~QG<-TYLtUbPG%+i(<lD)fw(GtX`|Q`GgVpl7Ej8DNe44M3
zdhH4|vi=iHLpb7%B&K=s_WTf0p5=$LLLJgBbzaHTQBWE}%lT+=1RUgF3K#ENfw_yB
zK5LK{Lb?^8uSGyJ*)hUM==}OQTEbs4DcCB}QV620+YWpR=Y=AfthaTY7{?f0elWd&
zhFlzf=3G;12sFNg5b1aH27uN5=56R`=?R)Ye_Y>BP@Djo#`;;bAv+`bB2#)EmLKc2
z3M?)4J=3xzi~m@YRc_1~5it?fqPriashgYmAW5vN`4CsJ%^**$2<^?x$(~G624o<?
z4x&=w<?EsGC{{V9JW~?8jQH40iB^x67>UfHkxOu^5`BXXp!-#X=m|R<&7DErOV+Zc
zMMDDVrX`-y{saw8PQqh)U-($du7^aAy+O9+h{#xRZErTBWxX!+zzVdxfNBXxbJOF+
zpqhxCBBsPW2TeXz2HQ3)8Hsm`%=c*jO|S{BigB<CnB$-QfWCvgQe393Uyz6O4u8CV
zhnTu3_E*o4#6j@iVe+DwFnN_(0QWcRQUBsE=>I-L*VJ1xufK#1|8H{S|G4?MSlXKY
zMow9p{)e=wR_(J}WI*UTp%&Yl)wRr2qLZMG0y)P-z^SBqB5SBFH`abGDz5N40)7?g
z4vD-X(Q6j17Aab?yJTm!-^TWysOMpAS&yEk0s)lr0%{0V7Tk}H&*1sxYiBXHIl>@#
z?pHCkf_7(0QY&arq4o~K?FH(E|Hu`9H@wBc_Vq)NCkcV}b2^@+s%oZ)*147ht0BN4
z5^!7N$lf@nURN!q9&DRS&s*dxor;}{WkC7=MTS+)wp4sW<gTNSDj2do)R@^s1HCmC
z_P>~YSVM8@hRVzdA-1s=yoglWtdrZ0IJTQY04G;i_bW6}u8AVW=?+(8YlP#ld!Saj
zVTsw-nS`NB;8Be~;o+Pu>2CZ6hzSm^mGA)Q@&5)QJ(a+O#j|t}d67~jbZMRm&aGy`
zG7dJF6TFx9>Xk!!QH@0zXxR*6V}U|S2^$f8e<4k_=HT{^(9!f*YT>v&d`5mipl78S
zUlnZorEq?nFc0)hRaP8gEq)}~+7V{2a>R9BFL?-(ZdDq@4?MDpujI3s0h(!wam&88
za2cc2(V(?K^&_nN49!04iG+og;{WK=q$<-ui`~NM&8&rm8<M#G;iS38PQpjQ(g;-^
zm?I~C5qF01db76dd&wLy(cjR{VM$pG$5}ren0C-AG)-L3bRs>XGNe6sGc>=BoP$(&
z4E6CPe!c7^IEMyJUy^+iQ>HjNOqzZK4va!qzjfn`K+<z#*&B$yThSXPB*<-p#FEDR
zlAtVXQ1Y?*mZnr`)sI5=9QAxWw*wt1H)(#|oOj%`?a=SjHhKEjQHk0q`BqwtZrbCN
zKG(dz5_^@?%SL2uMC~WKWpI@PQ`<rZUwe$E>-zzc#?`SyZa7k^f14ca%52@%@OkMM
z?cx8X2m8XlGp2Lq#|5+}G?D89rp6ou?gGvn=K{y*g`ObB7;F-ZkaqxK`gd$1$vP_#
z1}Qtknv|GX<XAo+_Sy9B;b@X63r+B)#8mHG352IaM%YgXh3(z{ffY13S7Iprj*fTo
z|4)k3-O1AB{|#u<{<YU-OZf5U162=nRGMGFGmp2~9K~?Bl-=K0y<0QBESw{+C3RzW
zCsC{%;bCI${cgfHsLN%@J*<c-5;-@VIdp14HvoT*$*7{@tI&9=EZ~9&+EK4ZjA^J>
ziY&8^XUbu@7h+qfQoO7zwO{M$`T9oP7?W9?Ab^OAGtsN4F!ZlcHO!?p%v~2Eqe7*$
zf1RsQ;-vO;9z9G+|6aMhlX$T)jhARbQI`c3rgNTCVJfHHV@^)BC7w@h_ssZJ?Q_N5
zc)a0+>GoovRvnaU4wIO}@}zI-YH!<8H?V9&hgNF!nngfU(jADDQ)T0I#J81+l8RnU
zoNoMyi&LsI=Hy4O+gi{l$@kTRCBv#aAg{8kSV9cOUp==MA*7O97vy#E^1REMi#ZQd
zuN7vrUnQ4Gj#UAj(IC#0spYbMnIKMhWa&6uVYRkSJMU;Pzf@uae<oLJ>B#OhY69|P
zJxDgV+4gbQdB`>}%oi|n3OEy$=Ei=PJ_vFGrCXrG$@NzVC5S39E8S8_{X$9YY<9`_
z)o7MQ!mMcpkutEgGN^EqKmvpR_V^^=_xqc}`}*8B0dD_;BH|_Kv;r@9vE&`b-|B#X
ze4wx3aJnFht4o^EOtnha%4ocUw?i;v8!#^kwVG1P%<bf1lem0CikBzXM~FCG?jhJU
zJg+W{z0y@-o5v_;+ElPmpgkd_cMAg2f82W?RKI1$1nFYF9>hqVm#lHcGUQ*UUfUxO
z;m@L&oKi<&onCG<<d(kQx<NjXn3yPT2BBC~zxr=gtsLgP`?&UdXl|6IX{0s&><UR9
z`apDCXtlv!FF01uA^nclrjd+++-hulc6q6a6QY*gIK78Iq94xNORdQ$-@QR>WneD#
zvlw;l$+6G*Ryypj4q{z6%ivVtO8C=x^wib7!fYcES#&!hkExY-;WbGPoQt@$o7-Q5
zdvvM(y^^lINP|cqJ020%j={(y+vQQD>G|S{X;D>ebjzk_@!V-7segu1jSML6V6dF2
zq9cHXss(g{jUioz+^UA^HCQ@-I_R`K`IUJ)pvPP@KLrQFxNvY}M*0HI&3xrdBCS~%
z@-C}mc})a+>U)WGj!$m6K`PNjm9bSLsWsW_xJv&V8!T5;BQ<ttpm8e>y+0UuC}?!j
z&&j7H)^6G@q1q|sW7)P^C=VZ&BR(_1K!w`$0af95U>R=piC>QRf1-ZZsjwLMa~YkL
z=#TUJ##z2or;LNZpU9q61<~59fvys0nAaNh6&^)$zAsWMTevJ<xx}wHdo^L37z8ld
zW1}vN=<&muQ=Jzjps4Ejm97!iFe0>?EbbyTZg|L;VC(kN8F?i6;>0%vJtRJmJ(@u`
zk4B3Oa@J}#oMY>bqZv_6^3~{$*UaTlE`esTM4jT*tz6GW%jj58dUJek%Y^AB>ZDg(
zVA5?JIow6_+GGdNa?ZfRMXy}fgzC%AdtU*+g;Q;(ya}}0;Yi>qKF0#5L&}3%6=6ZT
zd4cg1w}YrVaptjC2dBqaW~+s}(R&<WVfa1A{0Nctw|Lt)O3a!A3WBkrwfoTseeQCy
z^&|QcTu<>#dnBTM<fF9ABp$oTNQJI45I5Z1kvvZ&-rsk+xHHjjJwe}o8-bhGIl_l;
z@D#~0rQ7pDyJzB_$D~p?;}R!?wW>p>nPT?;L<EuZ7)YEZ1wUfXTxcS|DTTFmhKCd<
zAWWkv+nE^-{JAi3VF8YRH(W$EhIrXj+u<P-+hh`qnaasm0jMyV8KUnHoB8)dfMBup
z2QFC?6(Nnhl-}|}EZ@z}&h^4JyqT8mGJ@X-3ye!(3Yh6~q~{x$h&`YJW)Yk&CV96X
z;md^xtNTSM)bH)$fL;w7{*XI+T_L!cgMQHz(PbauaR?%#adzDR3*c4G1f&&W;9Wv7
zTA;l01L|V!H`<T<8LJLu#En^DbbKw$ccL;WhGS1NthSyL07YK)&K~yIB93J+Sq;WW
z0pKc?24&(a0aBm>W)hPD5LlEtXP9r8$?Iadj-*j7T(L(?i?zAnQ<+G&por_TjS67a
z5t!2+qFWPD4u0Lt{ZkY{G=~6VVjM_+JtQYy{8D`(>X|&4pDzyg^5t%-vB{@<eG`mW
zkzX?WSzNe|Rj4x7xVSfeMx;lS>!*;nfL3Osvr2fX2Y?<_v6}M>W!Fiu1vT%UEB-#o
zsnP;MzXvfYk6I05+Mf|%`5glI!aF<T5Waba`rqV-zKg}=VOgnM_j&r`C@QD$*2gDy
zx86@Tc5CiwJVUDMuv~k>f-cO^B0i6C5thixeJWaksWYxnGvr$3Gzmpuc<eQjhq4>M
zi0!Cmc9~RZaVPprBZBV39vL)S`bUeCKfnqw<%SvyEK7sC2G^!u;=;X?e#CF`j`J`a
z%**5<BZ)cNoSe1<@e_zuhDNFhw`pzU`eL3`DpW*pvmEMg1>4Fr?}`06*jl*J%leu#
zscL*wb~B3G*Us)^TPZ$mCjWdN!u0O%_WS~W^?kmCj~{p&J5!*0<L7l<K@CC=F$MYC
zog;E-{Crx3jffJrx7!;nWP(7oUT_C~8-nO+Q+A=375|JilZ4jaj{|Bzi#9_*X~poQ
zgSM@5CNexIn}B}VfczS{IuO1U6N{PvW9(meK3EoUghiWNhBg@syvjty(p7>4iCU^_
z0tiMrN6}6Ni7LS%fS%raSgT=D^$403BgAS^p1pJnW4z9)EIFT|(LaYuiB{s&f~>LQ
zKyEghiydhRXYl%0=iY~!FbCLZF_d5$BJXs(B0X69bza#`SSRhlnj=$kxupL#7Mk0=
za>;^&HMC$GIOliB)F$gm9zb4A=;rR`Ch!S!7<ayI=gG-;rO0E#G`NiuY6cGI6OIdh
z*8Wd#Oof;4M!XHdg?NU5>_WttVH>i^JA=-z3DY!M?Cu=6!rWKOt#0IypSPHa;)IGn
zQ5H}o07g`e1-+90i-BLyy-S(2S6s2|Wi{oFC-+6&rlmdj?9_DW#S6(d&goV8g_l}(
z;p?5f|4J}?LRs4qyjoO0PDj)xFq8YV7p<4ZAm#?z;mE+B<gGo$h>_y5vfV9;Bdoia
zdT|IVtx~t&r<ei^aUUBX*&eiV9Hbu*E`u|25>Ly=Sl$h)Gt=UdB*{GHQhpu;B9k-d
zl)4ey+7W^?L4urVlv&wa@90IIj3RL-&c_4+a|}AeOi&WkASo>yKYJp1OePtGona+G
z{rKx?G#H|gt{vNiliKFyaoIKKHi#03Jkuty*oWJC2)<5bitQe<)cFTYw<XfKbf$HW
z<INBo+%vwQPK3qh;U>1v#~7Qw8YHmRMH;uM*PG<L`A<lrji;xx2Y<$^2YTp`{O(2j
zdul+)YCygvL4ReGJkIc5BT-eugpS&#vt7<OHv^GaDc;|;0gr}k7pmFkQ;VzsMP-~b
zOv))tH^XU2W}(yNQ!SvA4b7rET1i=YI%|<+oV7qUl10~1TP@ZWdv*i0d?;P!UM=6!
z7*mAEx2Y8}>)`_hPqL#}TjyqseqBMDH6p0oZSGcNdJ(?uJL*P%qJeH5H$xXv>Gd0m
zs_6)}tpc={9?|4Tk#wM!b(3)W+-DR2&9BZxe-~pBg{48}Y(CTN9qf`~74&CEAUo7{
z=)!E%%Dk~w;g#%`E;ke&I8)V!xtk1MgmZj5?#L&|->IXt`KibcOzy7a`iId2aXbX3
zj23(N^n;=Nkq={4+%&Lz#%pNt_iB5PBc0R3Z7X|5U`McUGl%ELti1FO%wWrewX~XD
zwTA7AWmC8mTwEu3?P|Mvf+|J&HE1^W;^0RFsc`9|i-++VG4<eZEFS_<X#@_Feh$f5
zIWwCyFbB_O$e+jutX|>R9L8={!-y0<)apN*BE*hl^E&C>n5`0AY}ZRfU+H9JTu+om
zP(GQF0NNali5Y&q9*{XfKgHdwHI$dbwRRh{p7_EX;^$j~f%$owP5%7h1T`x#GqM)a
z%X9@#n09880=E7<@Ae*$qPSg#xBxy|HzW{b>y%?ee%V;r>EZN_hJvhUrT|bT^pmX#
zRODYyWty3K5X{LemCjikdDqDxr$PtA4)(MRJRVe}6O(^@&hp!yg|Y5rzKRu?5&u`E
zpNbvsP=l@IUMTf^DuT~Mv=Et@{;8Nt?zw!_c_WeYvACWQHoV34K8ebviXIC?nCG77
z1TlHcRp2H4M9G?VbIP*1LIP*zVK=$w@$1_FfNo)sd{T{I7Q|(&Wnf|AwHgC;axt}g
z?zBO60;F!&C=$a331Ir_3S4SYx)y;Up3^lnC=*#v(&-&A=DYS(1q^&hzL}TOEq8^P
z_LwM`3c*5m`67|UoVS2Z-*+$3B{JfZM%d(u`Gvc%=|%f}cilX_bf=!ZR6qM0t0d}%
zi-<IsKy6mGJ0;kcJXz;rf0=!QrC29ZUXNUQ<YIONX!p;l0&*<Z>VW?W{-aln3sYLp
zh?emG;p-iPWQ*D@-Lh@lwr$(B%eKACwr$&X)h^q%ZTr@_r~5{KC*pQSWd2(#|IA!-
z=6J_=296cUsUR<Jbn8*fcv~USc4?6I4T!gNP6V&<uwpd~(2Pp`NOUV)Y73FNdyloN
zxh_KM^}j9NZnLC|Se?Dys6B{ov8=_kn8R@2Vg1V-*Q9@P_6TbEJeK{_Lr(!Z0!@M8
z)dPJrh_7h6QayQ;q6^2o-~OwWv+>S}gdT<MwC4A7mmb&IQJgTu9Twn)=;+a9g3xU$
zo(`VlJNhSy{h)wN%>mbk1(=V;I<a_8+i$zEh%Nv8k6Z8Y_`*hSu0z8<fqNi)ZN;l^
zo+RCqEp^c^gxQT<(1Bodd+*>(#n|T&CJfA6%7&2KVpl%cr_G~QA)uZF<Xl%%&mISz
zJzzjWPY^F@!uh~6$snq2{^k7%)RIwi&qeosImRY5O(dkwEH^xpf*>t<<x6di1uU?F
z5u80ZAqR6&{<kG~8y)~4ImVGiBQRu+U4sJM`{WgZ7TNn7@kw;%Ko4vnUX~Ob<t02?
z)@+_zG9M}$Tk5j)u8a_qt8hxkT7@MXh_Y+TuEJY-eAiEXI~DsC%Q0tKDb3WWU7N29
z=1l?b=ZJ!8lxx*v<+9Xq`M+1`^;R1ozTv=4yh@=EMXpUG$fw#-85i-}FbStessAa^
zzF#k)yFilhsyol!U_39`^o2ILR3W5d0J=2<n9nAwIGb&r=$E=ydL>zXywf_j;F)qu
z%%M#~-Za-ST#y0xt!<qkEJWmIe^29IW5}^DiFDn+`db0(b=G!rp)*y^k#&s_y+?o5
z@giL5ROd?@!V?W7tkM@+I)ygC1&7Ho>Z)GVJn`5_qtG5-c=#yF!gD(~-GA32Onalo
za=}+rKdxNeo{hFO%&exCc3en5pDyrqDGnF7I*ixe{W~wNpqMD}i3dC=l-HTwnRMh6
z-P9}luGT*MiXQklE7aWH(S>kRc@gafJfd#rXBj3>`&{i+&?4(fg6(cZ@qE#K_3qPM
zrUh{(>4mLABAa+~vSiR3&|cfZ?d|0SLU{JJa}W*hqWj*rvO7RGze{mTH^^g`ehvGI
zQI|@$^X&1u`)sqVAygLsUZ2hvb^!!qL5k*JK^B#;lUp(&1GJ?Jr1*EgSUbYZGa}f5
z4jl%`REecm3D}cu&9a<(s&VaW&kRG2;Q5&O;KcNDwA3VXnidbqdy~3G!pxL!Bu4hg
z!6bV@T`^~MP`AS=O3rmBh0PX-mt89{&>zYyr-sq>{_ZvdxI?UXm~fCw+Kmn<a%jUC
z8t<i#y4#|>_Z-Ek1I&1p+y}i-2ete&7VFEw>C^QFB8ul#xN*}_03$MC0s-R3$2TH$
zGzUPHNpDtl=~f30;IV&=Q3&ZH9-JzTtC@vya*QZ(yT`5lLWagkW@pfysZ)^Av6S8B
zCA#jl*-7-anO*4?`pc`Z6aB!JlRn<E-NyT3|4-%e*QNpRD_s7+FQVU1Lkn9Y3p;v~
z|Am3EH*owFE}iK0^ek*Gob~j6^-ExY|GWcg!I0Y~;O||2*;aV}|93Dna5DM5+FQ9l
zCi7SQd_X0Z%WJ@)Y7UhsXWPIpd)88ouLrL)wmxL+9P{xWafPs^N(SD&d+1`f<1x|9
z;eyf~1;{1<u>e7QoDO6F<EYwkZu>{WlV93GGf^<RaQWA7Pk83yhr*ntgWB_k3?Vy6
z`}6U>anHpxjUh_TWRgaRr*7Zpu3?lryG5xJjs8rAn=?3s4d+6kG_$IJqG207C8y=@
zP}EaCfKLv-yOE4Ru2ngN><$TL=-{>=`pwBTRvcU$A1lw7JHcf5!GKs%^;7{#j*~zw
z>@kdu!$@y|$X5tR;|O`I(C_g%kb&qiYxs>?!a%UYLKmpS{Sh@QdD3W!cWo5<SOFs+
zFTAO-uUKn;eHP3q7_L1OW)26+anaTMWxcV^42sD7ZFeSJ?CxpfMJk-&S*<Qz`wMSi
zpEe28i(+rW6MTK^t^@b3;L#7I;=MO(F2TvUW?d^mV}J?!Gh2m4b23+6$9+nu!s{g?
zo4(AkYTIQW4n%g$=;SG{nxWlceytBpsQLDc1)`qrxpo`oGnL@j6JJyV9Ms%7Qt{4}
zhDV|m@O?8Nn}DMvbCnETNvOqYYsGuJsQBgyG)A0aW3O=Y&+1d46RQQohOALjiI4Rk
zp!>?#|DlPOOk7eI{4Oon-w*@g|Npu${UzPoIsTUiJX)pym%H&_OGEht2yqXgoR`3+
zSVh*$O1;y9UNNXkA5C4Kc%!H@oal-8J@_jj#s<bZNo^0v{dlU&gV{)EG=pjiWwD7x
z33qR%b|+7BLaMNz1qNk@9nABlsW3y80Ccg-qz^6xa;kU~f>2R~dM&@uLaPUO`$-8?
z<KV`8%|X#IolwG{qAC&9>gh7{uCj9e*2^}A9*74tTN4iO8L*f4=SRrW7HA)ty%yl|
zLm1%iHGC~Vnj_F=5+Fi$zw7B0VFX)vG2t-Am4ZWksPzxPi;4qPlw848>(l$i@$oxx
z)o#4TIti%ZS{pl=gB_3fABJH0ruCUp3aVxG%&RBUOyMDEr^;xlejG1X?g<w+Gi4FK
z*qOwc@uGuz+02=zP@@T=+)5eZNetDhkbkZveOyM|Anh04K<GDskcW6Oqao>nknEbc
zg+Q!jp{{7;&C^{sfoxqNx{Omn4$P*3tHe=RXZba6fNIpzPyVkk&x(A(viM%|105u<
z1DJKzxzQ$pR#b{zhJwrHh(__|Gzk|%p*eiDPUI#R79h474$s1li1a{=-d+yrJET8U
zAojGYlE<L=bE(j2rY0oEWc77kZ&}M{wzApwBLbkabNeY=!66Y9u<r*+(9!wzfL9Kd
zfGyBg+*fY<G(PwdNbK0S!<>`PlY^(JlV6!#Z6WkZb)qj6;#xZv+;vvPMG;o_vN8!D
zkt1+UaItd4g51wyyzwOWTywcY*XC(*`AI;f<F9%}%<{f!zgZv6DpEJ+th1qQCQ1}*
zpBvm~O+0vxKx!lNwY;<rK+R4M{#5r=N5KuJ+oXLZSJ#fK?1+lIZOBC>!J&$Le#tBg
z&awnlx=jnxUj&2Q&XDrfSfl{?1{B#)3Nz~8!ruRU@J-8UfZ6;mZdWt_0Nnq}0=M`t
z18cL!e{-~6C?Spr9nU!|fKh@0K_z|_@_8~r<VR8n5Um1hLsBIIO1rEnAYKvrdFn?B
zUP&{F^Ob@XKqbJ=ma%j@pSO4w6ww*IE@Du6%<}SinfO=q3M#tM6zGbWqPU6z)ApDG
z^LmP;DhWAQ<}Sk^^=6fj-4}T!26k=bM*6pw?7zVLTS1)5e=gVW%=X(fUT;9zIVX&#
zy8!F59NJCsqYKhC)ftq})$YhGPqD{>HRJUxqI=c!L3n0zO+xV7IHv>5D=!&AhE*J=
zl(@SzXc`hMWpkX2@)u17cgHmM5|FIa(5SK3hsBzRB6LeP3JpAkFGmu1{&L+7`0pM}
zIkumMSi%4%^+P}OM4kalj()&rD@b0b4UTXj)?M3$u|W+JTRh8%ei=8)f&=A_QBxp|
z?unBpH3HA9W{HqHPEGaH&S51yau;$cGZwvwM|}-lv`LRRN|uS8@p=Bui<HQxV2kF+
zZsw%QqlqJ)3T9I=rfIpatT&nLx0A8zFq%+?`O8EJgFe;w;|~hmj&>>z1lhP2e(dmP
zfMh{8d;yoa+6qs<JxkpD0iNOvpaeHZpm_koEns9E^M(-qPlVsk%cyik5sAv-A#IgE
zuy>nL0HsD3r^QNFNQd;$-?~{|8oyvs{{m#qI1DLB(ISs&*fer6p|Nn&IwgS2%~p*U
z$)k!UIDj6sqj(l9nNEr>=oV-$m=(sAS%nNn!I;U(0sj<v=T@lW!~pn~Usy!CAsA}E
zRP98wjrt!-1LfDC_p(4J?56V{C*=00Tt~%Gf$0h%S!PwmIh4MN=m43S4?XI1`6c_R
zF`0<rLQ;P|EZLjOo<z@b06GyrI0N-UeU2A82K)RlTY-a=&Ad+=mP&nQCqg_1lc)l8
zG7Uhta-KNt!cxwEQz);s6$5vHNX|QN(-#^He)XjpSP+BeO>bi<z7~y^kLzDO8(~j)
zhp3g(P(fFZ3C}!rwlZvqB!8tWKQtR7%>I}Nh?K`$OuHVq))cqkBnJEqGm+knp$|wf
zL^r<7sOJez_K<>Q0E7hEufRKdOS{Kv>d5ASGpnw)2O5Ky5*&p5%tnkO^6#w!pkDJ|
zkE=9BfuV(EmxYsNsOnNbYsopi!c-*_P2ew0@1Fy3y-|@}`WocaN&Ts`%zaFD7s#pV
zb%WV~gKa}E2;v3l4OX=Bm{Re~mU-X9YNxI;(NO*EtHVh(HQMT5<P6H{44h>7xpJ3a
z7btt~Yb$Y?62Uup3Vs9@AB}7W-wXgU^4%8YbF=f-i!|brzu8ZZV;T@<;a-c3Vri23
zI&4q7gS-dgy;PckHB)okO1`pA`wsKfg}|qCd}gFf4@3Nr0eAg2G9U!nO>)Xw;PWWN
zaX1A@pCq>kXSHec=x?}~1)Atn-K`m7`0FXQq39!I1s8iB1?dE-rQTU9#~}>uBw{&2
zPqaWdPZRBe?3N$&;Uqxv4R?G~LJTXqw<`IaXENZUCRNcErYpG*$9|=Wf9>7ie+1ha
zh}}i4jn)wj28IGWkCNzh-?o>1H|QN@)Ih#5_?;`$G_qav!G?H>?g#Ai^E%M65jN6r
zotN4cdxyg28}LJR+MqbQ<DM_o(Pk#<hx8(e^5hhk3EE?N8rcD<>wZTyIlj5Qr2gs{
zz(%@xl^b5z+pyt=aJ!&7UDl5ck?Y>d=~w;emmEc#X9fGrXw*zdzc#o0BC@n$^_9(O
zrzvp}>rzBPnsv_y|BAalF`m`X(>m9kj`0S!>K-M|VP*tr#q#|eI&v{`i1>EhA4tCQ
zyyYF+RSc97VeFNnW0Qw27<^LnvhtR<M`g7umoB+VVPbS!J;d(|e9AtsB+$wQ_8@(q
z)VF9XD)Sfb$dY~1;`3UgQ?(JRD(~p;D_^gZdbec2hdP^HhVE4@BVFbN5+sSP>xY#H
zQC`a8jRoqZ&g(uMAv><Vu^#Cy%{mN{p=3QZaF5|FukiQR1N}V2?n0FC$Pw?PKlK8E
zl^2yj7eos?<&u89h}8UF;|gpX2-QAbu;<`>eSQvvO-fIFlMLKOq<zPIAA5?B2PS2u
z3p@w0Ne^y8ZrFYR|CB_G&s`0w&W!kg{(Q4jl?(&(^R#p7YZ&oaX3j-pf-^DC`2Jl5
z8NGf!mXr+SjR1V*N~3!1kDb;`JDj3Sj2OT5?N=N4@BcAsrHh$lMEgCQ`$GR;_bD@b
z_uqXgTWv04g9F9;MIGYFAS*$!MTbJVFPM&dl5PS{xHT!*fFXjG+|XE3V%&Ise#NKH
zXWvJ%mP9)S*-T0uzTP<3>pJ<mTf84bZ|6G@iw<LcQNt8sm}3H~P)kL51ji0@zglgW
zkpHKMBvOyn1-oDUYeZYaRI^p%g1j4_7UI*jiJFeO2ExlRL@lPN!t~!WORu819crpA
zToi)*SB>LmeCJn@4a`~sYBS}yo&lcBR8cr=9vpSDMfq+@^4`<u?T{;~p6MF&W2p*v
z_@^WwY+?#^IEhXAQj;MYwcR&e?N0a4MJ%=oL6?IZJ$mGpt@!d{)1L&X=EzdDRm%Y_
zOLTmKxX`+>${d@!S1A11Bz(Oe-;$NM-YTR;E$8aoeZ|9p^2rp;0L4Z!Q=V2CmWQ}$
zlhJ(~%noXGuaQfn;1L*|9$qPNk~?4|==xz2@qfm0mTH2oPF*fjNA&J7X^i8mK-eXq
zSvWaU4TFVWY<<L8J)P1f_VAl-FOZ8Afq(Jv5mL9wA)&cN76NIsTV=T5p%Lc0IRc*T
zapQ19ob$5?zIN@cV+LF5PQlg<uujB_iw+zo$N;DREpt^k<z$gwBd12c_tXl2zh0X^
zn5#eXO1IQ-aa;~4TGh#b=j6Tss4UN^p-)fG6o9yZUP9q*+E_iqD2xH9IDX-hAYUS$
zCediy#iuNwHIB8CE@@p(EcURi%w9L=h>ZXd=noiYd#MBnsuek!SBSuX?g`+RuQpKY
zoq7b?snGO7geq-}udA<{?br@VkD~t-xaKB@Qt`jf@4E5nAh)eecjM~{b^>(kp)!S#
z!chN^vTq*_r)7Fm#G%&7;eiE@L$QOo*^$fOu*9j9KDXJ&6Rz?u#<`4YuZ|ZdVybC2
z*Bcz+XzjN_WcB>akFAktBo>IM!zd9)Xl6yF{=(HLYLXFRTeO9O;R@09Q{zAoU+l{+
znB>bROixc;F89=iQz!KAG)Az~3!BIX4cvs=f<wPo?dqDnxj88-U`<5LBp%V4f(dpq
zq1bd@*^3cCP8Dif>^y(MO)B78N=_@Qd;ABXpjS&=2uRa?nzW2rBfUx_5LS4xR;CF6
zq`oGi@T$^W35%Z3?{}th?&o<(mp20UaVG&Pzzq<W4M4yY>!GGLGv2ChiXYiq0Gq>B
z!@8E{Sgaj3FkwlI;==iwl`S?g2uOVR!ef&9IseH)|McXT^Olz}4%G&}ePU5<dYSGw
zaB`o&6-6;8{mATbuu-O?@wl_%J15+^n&k$98gJCiJnN}Zi3^>G>oUE+rnv&BaZNT|
zZZ-Ey(J_RSG7viGXMWlmI(ekOiBv#E_3=Oi>cLnp@8pUH=2~str5nk+c1x|j_8#iv
z`Na0W0@(|Ze1`qcgYQLBq{Po}tXKEfzwv)L_&OW?*8`<l-Nx=0Ap0Bia4<3z&_x-N
ztv6)Yg|*S50bQpl+p4x&#%vN<6CqI~I9rue(9eAa4*B}`oq#LZtu6Usz>2Vuf0N_o
z{(|E{6f`Nn<IkR&WX7Z2PdUMoczgX+i8#n(5T{(81_MDDC`cm;g}5a1kOV02MCkI=
z3xE8jW<0req*9CALo-Epy8}eHRxH^**<@U$p?6PnNTknAYf%=cB0{5ByysML7QCDO
zj0i<3Dla@$+un2bq`F*cKNTcn@efsd)ugw*PP1dEU*CaGJ8S9$9YDDa8=xl)&dnIe
zxY~t}lW*I$wLfA!$xM)9-e@xjYK5lwylpZ^I>(@+C<0e67hwmGu$mr->gCa}RI{XQ
z6lZuOVzVkW>wRaHH_Dm5yPrU&Oo;*Bt%bwUFrFBV`^!CowBC-Cv0my{aQ@2BqcA<g
z?+c@UE;f6d3*mvwFI`}$KARFX5z2AQF-5da$LVp(VpM<3kP!2fmHB*VRYFoJng%${
zV$5lms|=wS0n5qa2pt2Il4VRySCm>}QtCQdED$U@*G5->5WCP76g$|?<k-(liW$p4
zEWeDEPE!g~7COgnr>n|BUngEvM+a}<K1T=vSalBA8di;S8KryzS3I(O%NXH-ra*E(
ze)koFm6@_p`tJc>1rMWh2xmFq`Qt{A;wAcPG8y)>kQ8BeS{5`#e;k~&q8^lCeSZhR
z61VbI-{l9f#nElGqiRIEifUKpF<hLd?1AHF{`*wRd4MHtwq%{*Ix%x&#0KHaE9!Dw
z)cW)DMw1tmJFD724-ee>^O5C5spI%mc@UGBwznp(GCsn7gK5k<NOooy#`;!<eq@L`
zT4|XS_lp*-Mu0n4YYtvLUs<m$Y$O+#SIsVtyiwn1Nu4X>?CPbB{R5O}iARe;c9~d4
zi!ZvCN3*Zd&2h2<j}mfxeslQA#!HGQ-LC~ESYh+=n3tOYZ*=FD&HN*Zv1|fTi%nn8
zVBkV_FsBift>s*}b(`qo32p5>a<d#!A`7B|SA6hjh=D$gbrg6g#5}Eic}rTUzY?qk
z2fHuk0ngrM8Nim%$nN>{#A09RDI*=Z*{;%R&4GH+bGU5L?snZbrPQ@Q2g)0QFxrzS
zcRtL-pjJ4Dck$p3CzZ0Jsl9~<KCdGgMZb^<?X7M|P4x=mIrYmsy(KL@_g&-2aKh8k
z;I9ueq9>#%XNLNSf2+Ecm#=xov2yh%U%0HS(UYWcgzpExesb-VORGewoM6p$a{v^s
zGwLEkC2CV_tfj{B+2Z9;zqSX5GxW{jyl8DT9uRys30ebc|5zzv!K^a7*uZr@fnt6E
zm0<AtIZX2X1(-P&A4-4t1(gmupj167Vo%^mKQeMDk^#HI#9qFHT*8J}gH$}*yy{sC
zc8Q6XUYad@nl@ctdwORVg<V;98cu}QEp!Q(j*eSyE;`8qcDf6haBb-NqW5dI?Fh8j
z`SABM{82Vvb&m@S3!b9}^rbL(l#_(Qll6$2HOcrm54~)q&SOSZxt2U+x$i(W++^CH
zokkAH-9w9!z5BWGqelSUX&-<5oGASMl#Ax}m8sHI^ROvl_!d4{0miOL;v??Nm*?l5
zBAI)H(s>O=*zLVnV<x=Ld$d>y4i05d=&=Y1Tm50KyFnh*o=|z;pFlLI_}!~dXN4pk
zPzo>;B9B8}3mMwu9`)43Lh&m|3b|&=X7P|-eAtCT0~Y)o*^pZD0ZoReDUjAyxsJlP
zt~GoxsOY3KC<fp5w|xUFhC_<J(qIrXJNcb^8nlIbLDtpNx@yN3Xw4ezfUn6aXMmHd
zL$c2Zf9X1S@q-)k*gIsm80iDXzwZ}%F9L@Z%w4R3_ND~2m}-KNRPE*I-6YUT6$8!W
zW4XHa9QSnav3#G1TiJiJK8^Xsb`0kupy4Lsm#tHYI__X82PFfOQ8G8ZSnext$X%31
z2aS6eS$&73L{072YZDEiLqlq4F?>h|v>W){lY^H5RZS4P)mVFV%e`V6lrz=>XVjXw
zu*vL8d*Y7~KH&dz=Q!9>j}ZTrO2mHO{|6A_mjm$|^VR!5Rc2)+CCBke>FG%~8M-l=
z37T@1(Mj50Zm%RQm74n^gJ^yp3%NKUX+4P|VKoK6I$<*qMPh1Np+a1uMnZ~Sl6F;T
zQPCji|B$M~l0mr2er@i=sQ=NL`M<yZzgshtH7;y7hLOH!N>>Mn0K%nI_Q`xv%F3*$
zs~wcM!?u8eu@R^pNv{~kOx#i<k_r0XmcS|AVNUwrNz6>?Nko<Xr7@08%ue`rCaGWs
zP-~g!An2_KS>HZ-ed8Nf&`FR@BrCJ5i_9$>&=Tsrri?|QmC%3tUFK~Jlt>LQ!1}c!
z5{k|`=Aw-)&N=5RkTNXksE*7nD_TMIJObEnEzuu)j+cggdn+7}X#@JaN1<}IG^NHG
zZ4v;b6&d7xP4xo%eDz-C6>&iN-Aug<VIqV&$)f_Zs&NAs>4uEoY1>gyGr>XV7_R<d
zCRp?wWH5_H!NKDcNH|xMZp}fy`Hv^4Bio<+7+z%WcJ?F<zOh3kuK`AId<E5WL6s`I
zn<eMm^JL`_fv^<I=A)Nw1l3u#7CIv8?sV~f9kB$b(bC(^M?TmaE?(ErQd<%*8;+i3
zLL0s%L_P#{6^Q1KMwq&Ze4t2FiG`C&d&s#5w@B6TgRa!Pk*zH>Nc7}28m1d#J^DmV
zuS_(yPGpK-*m&?uxk<mvKcYw1V5{&n$y-bx%|<Em_VRa=aV{lM(2@|>MVs6<k;iXv
zw@MnJ5-7;$nzh_3ZKB0`Eg%%KJyQ;idn9pbD4(Vvc6wovHpV|WsG^*X<AF38XJmwZ
zL#;fP=9Zj{+}~7CJ<}372aBvI2#eUY3*FS`*b>M$AQeD>n)0YCfcEdGueAjv%nfsd
zRyym<PVI}aRV|=5h~nNYQ4=zYkz^796TX21s|8(Yh`wfAngg=t4dGUzye3lfQt_K{
z!=P*`iB5F5pVA1hx9lcgw_n|dwN9_aBoUc8-7xuIFKCO=?Qy>XHb7hDKO6?F1`XxS
zIBT|!4Y@WB_Gi(?uuwmYO4v~Ujj_YCwe!E+Dw5ZqFy|ASQyu$+h@^8kDFh*_Ki>XC
z1j5#kuSY7V+u@eS4+8@q7#0s~8%iZ%Fg8m#(q{<$L#SdXC-Ab$80beP9z2<z)fvYt
zEdgIN76r2#tB*w`{x>0xP-!5Bkw7HrP)Q~2Bkpg)f@(icrd>iI1ut=|Ag|SF^pt6n
zq9O}I!|?-6y)&JQsoXzb6cpeXpoHpvLhZZ|zc8c<5@3jJ?wzj|rdIqRFXI+KP#Dt}
z9xMw_aND21LV2ugSWYcSLCei33PweS0vRK`H{S$t$?Pgg%tK8ffPz!zQ{25miwIoi
z!CiS&Hg966v}>2V+LUmSm{m1#rtl6`Z1kNK+`JU;%ypwpNlpxL>P|`!435yG=x&G{
z$j!9F%sZ0NzMC7(Za*BK)9{-nbl7tq_>fg|55o4ROBaoab~(KmI!{9#=+VyfXDO1d
z1g;)-P~skdq0D)xaxuDk@nVdu89I9UC!P?T9-jAx?~j<D&6hA8u++$BJ(Dv;17V(4
zfv05JW2j&lQi@$K68hI#*W5Q;!wFy848^DoWrH`)a=N^}?~@AkA5lvP7Q$^wN~5-|
zMSmE%v&hU|eJ#T3>2X9TtlxkWc9|z3+A*scQ#bPt%+3#6sdzTM6)8`HK|N*=VKcLT
zkENi<U?)ko($)tyJQiE2ZEp*Nq3rA9&F$QT?CL+dy1J#cbh`B9Y5=M|cDt2F@2DQM
z=GSJJ>epXNKkIJ9<}j<mdmsXAIM`Ins~6B4Sj*TLa|=Kk?KlyhTSU(V+gb?M54oAd
zQ2(gk(DslF5=5H(f<|A;QY@wHuPp5fk${sITz>0;^@VJc&v%ijF<2d6j5Yjmj|y71
z2lT>-*|HF?;o|Tq`xRp)9i(;V+X(C41)kj-zN=0{(v9&*Dkg?50k*qPOX$}Rz0-<H
zJ!01W;AQe=LjATeLucj<v#M6?$eIP}X7G$!*L7wB)D_I0)*KvwazfY+Dsn)9Gb>`a
z*|wSu7Nr2J&2e>YH3H4<>u?8dO>d%?vg0Z8yEgDY#b4a;f0MMX<*4281w6{PGCy1v
zF=7aYt{2-5OW5>_YzeUTgM<Y#qSmhOXT(ZB;5kBs?_H?68kT6F4rMcaEtOEYyP)Gf
zD7>a51DS#GbEYW*`LYB2ZP>;nvfEd6#BAme$S#}O`fYxe>pE;}<rIuW0MDDr4CJLt
zpH4U)ZPyEQZLz*$&<`7dnVNW32mXP3;QajAbvtmGB?dG6WRuy)!Y68kAonBhmCH?9
zAosu^Pgnw-(kSA;wWLMU6_`J*dZ@9Y?VT+!2%Ki3S-r9N4v|W;$`cg8qPel+FcyO8
zSXc?N&V%8@()lLk@5d|}hNXnz^_;^y=vv|W<HpEP8YXFFhV2JQ=|1*UFyZ+r3Oa)_
zvg>896}G{-=^Vpo?&t2$*45|mLTX%NYiv?*Mrcb5z>Bog_mMqS@AOa^Yc0>5$*%y0
zb5KIy(|Yqa;W7DIsi#<0zsy(_4-@0;rIh0p$biGp;Iu`5q}GAw=J{DHp0!;3e8D)t
zMRI4)1?N%CTDi^uvk$6sWGs!JV-Pc{zi~cu`R{CAF&tP!w2cod7_SurV2B{5K?8O;
z9Q$m2x9$ozIh+R`U1wo7Cp-78Tno@RbqKKB>c<cXj;I*?c4`5?KSddG&oPZJWFj?C
z60j_}8Nh-ZeJjT2|3Icyv@*LZq5uGli2g^O;D2xJ|IHrw{X4qFvyrkP=6LfN0e9T*
zHwb7p9KSpfHjX*Au2HWxA1}7X0Rz7%%n~}fD+EkHNtf#N*@Pc=X_WI|@SdQes^_pL
zL4M&x6S|Cvw57AOq`KsC5yCs;rJeeBVD0GQgl0@lR5LPxHX?yn^4>$~&-8_H;$o*g
zgS*xtw&F6XGQuBM(gMR5P1V!@GgRsO4t;sLod#c@k8@IObxEIr^J0C}84zTA07qST
zwK1t8NxHP3jMU_?Cz8tpz3;@SNbBaBVEoyI78y&#@^V)n1P0yurnHA7+5{C9ftAV$
zmu_Ph2kQHXJEY@^NTopmsE-GVEc7>`c1)cGOEJ`Vyl-*U!>AKR>Y)OZC8a^&o|?$0
z6-a$KH$pGXI;o^O-4tj<;FehauVgeLvq%p<^g135ZZlCjxk?j7=?<{4y^I+<R-oMF
zo_$t(Hu3wN9U4q=8ViTS!<#_+U5{=3I*Q0B(K$n%T4_X4DJ%g~-9-V7c=bSk%Sex@
z6UthBpRK0DB_`RLC*m4~pPIoglx9p#^7Pr>*8TSmnihfbEIb70OEXs@Pdp?Qn)!^0
zT;Cv3={OUeTA^kY(5E2v{m#nD6}!P$E5)T9z*1#JILwyr;&>z!_W%~Fx|LfB?(;1u
zRPkoLWA3#sI%N#J8U+hya$XUBHQ`Itx2`bIuOio>MW%FmMZ^jsR(tuQLS}tcH1<50
zWF67BCW#eIKI2|`H2T~C-I4;dj;m%YK4bN~m5wJU_XnCI>RHRRB8j+n^a@-AQvp*;
z(|5GNw+_E*U=3{S0`wLl4A2a8li>vr4S^})Rs(NZZ1BKVbvwGBBc_hOZcjRo*Hh4J
z26z$GSg~RoS8OVsK(5<m0z)`^xdk%c6g;q=Pv;+I^!(5%Yz6+njY$5S?!(u92bIQ6
zZ&<DXviEH7TMy_Ac!UbX|4icZSuq&pZA{^PrAubz&6Eea_`CjEGR#)RU&dDG@TCUk
zeFYVdiRE=04t0P9A`eM&x_iFu4<$~N?uggwb+-%c+WCBBhPEY{rS``5_&yJ42Pd?M
zj9;+yV%|5&owJ&6DcvHORt(us8_kL^ZvM-u4Z#L<1q{Me)l^)R);QS>^8UP#zm2WB
z=8+ZAtxVCo>FxKUNw|lTw@^F)WTHWXuCtQNSyVh!C(?mg$|xkkD?DMCnO8bvYZo5z
ztOUD!WL!P^BT@A#Xq?|)3}Tz(6*@+F$?&#`gJq$e&q$>`heN_Uoi;Rvb9V(_{rv#0
znIOJPY$)Wod>-SGaJ^}J&YmF%w~vl~K2wCL1#Pd`=WO4wyBiP7%LJ<TTCmF~0)wp|
z?Re4SxOj+)Hck!>^DoIUyY<U4>{_KTa4tp@kT^rd<p|uBF9BkTm9Q4Ggu&~mQvhLo
zP!aZdg&Z7MM5fE7o8xO3IsgnWElMGnz2KR*Fif|PEHR~l4bt2S^%wUS0~3IVL5v{%
zxjRZw+`PNe*Z8`P(v>`FhX3=?TSEMnsKd1%wnnxGTN0{^&TO6RlHSUae(57p1#Wnm
zVyECCvfjtYQbPC*Nc_{*4>~4xXOIjK5w@}&mkkK_d|O4z7obQrPaxQeo2kP!r!-8N
zY(ek;)4})$RrRWMYd6lYZmdTzl=!Zmbdm+m3tSo)1VD#+38;;d(^=4(gv3+6TF!C8
zD%#dH20JRd#nTM!nc#riJ|eMprV1#@V2rWMZxY~>vUVl8&<!@dS{;MsowQwx{}i9q
zMT6Dos(TJduvo<&cCW+JZ8NP)D?F>5AQcI_0R>%VgabtjUU1V15D{=;&TAnIXAb!=
z=pLyFBBD{4h&2GCX&-tom%oXo@03Lg&4NbijJ@RWY<EV+6M;M7uSJoNSucNqttO+f
z)E|+b$IEjJ?#B~x76vZIXO|`!1wybRL5PK<&g<{ctM|h7lqT2Jc;zfZG?^Jw<HNdU
zZUd`30v~sRF)QcA**>rWN0C{DaH&JaOPerTCxVat%gZp>K?8)8{-`BJ=Jp{LrXrSw
z8`6(;ucoTT$GgG{qV4{7*YdQ#%@p_V&i%~xdj}CGOOzDq4X>f7v2)x}^iuKOPi@j&
z!)|x4O5&?`JN5VxtYtcIO!Ne`<*AZGmOi+ASp99{#93%PVIg$G`m>6Fqf~`3NXS0K
zDorl*SVl-Lp+Z#x8(`Bdh1RzFB-TAQ*?OO3Jb^#cf-=zpoETW5E~9|S{{s33k4?UJ
zem$Fo;Pec&2706%K7wl?B*;n5^!;M7FR&GG#NElADT-7vY{gP98G#iZ`Bzoev#eo^
zqQHI~z=GKSgk~F!G^&As#Qo@@?RLf|;C|Xt|8Tq0BCkFkK{HumK)1Wfrkecee7-CF
zxm!nTi@x9-RE|p};L>n}gS;XuM+*B_`hYuQ=9Tx%fIDXgo?49)1Q9GoVs53-Mp7M?
zv<31L19;6UaoJ*M1;L|Km2KWwA#1-mOw>!Xj@QEs84+FJWTcLxY)C0<?#)tF{(3mK
zicJEN@Z3NnwbSX`K7xi&Sh+5*JNm{FAEo3p<`k9GbGz#AZs?M@d|!TBkT0pYL-yvu
zb`&2cJO=xC@to+W?XG_6oc_uHp52M4<@k-a82S&j;0GZJvq_)A_w*7P+2dmN=p^P(
zhIcM{4mJK>yF+Z`Q&^!}BRT`6z@N0OfU3W53bHlh%@|DMAqD#>c!9d+ntsKHp$&!Z
z+0}<l8N|XVhl~W-fBc9~NhGS9(0IpxI-A&p8i{pi#pEk|9By)0j+bBlz07R_Ll4|`
z7L$l0@uDv1Pp&p;)Ip+eBLfQ2t@Y%$=-s{H1OUCgE?w?&_8+@KW(McOHL+!|m>8?#
z+7(NAhVs%q@4_Zm=8o3pm)I8cWOjBk_Cv}<Bs*4R)U%8sk+%%bU<G2V$3vyE-2QmJ
zg8}I7zAm_NfSBKQ$x+G8de_6@8Oj*DX;jaHD8P9o=m-GDN6H^i2KJu9TXP@fK;i{T
za6lM$hSA1pgE;0-o6*Vv(!xrI9DaTc*~O|Nt`D1#&o`}3Z)5NU{(1XLxlg!pUnI8k
za~q|KKqn(^X$>z-p<Js(sP;XO6NgO(Dq}TQ)Wz;(9YqjOVDe|1*5ZAG-Xbu6B331G
zBkBz%zBD(<!}D7JlBWB&ssYLJV#Ej%g5tWq@ir4&@CWDh4EbcP|5X#i;Kx4|gE%Hy
zq*=5s2}jH;Z(lzeAzmDF^es>sW2i-cBhqFycYL>$R9cgufv(Bot9%m{P~geR1#tN|
z&{OOgL`BoLr;M=?oUoohUK|X!pPnHep|55ZN0Gd2X$`YI2nFXBg&MF?Y;NDJAcua<
zFuO#*#x@}f%9#t8FfXpVbZxs4WQJhpXbgNkw{ECGwb0$59EW=W5OyIwu_`{B_oqmD
zmTn4-zOP*I?%#qm2!4_8Khq`JTNiUXZ7qQLScmQUL6nnBPnIMgy7wgvw<&+k>Sjq<
za%`r5%3_L<@g_lL-A*GZ1hhy-p=nkO8LiQ3kw~#8B6uGl>#Pd;D#q|$#x8rzWCZ=2
zZlr~-Y1!@NiRT2m)I~~|To!;+#MzAv!YQn%H_?MVspb^eej@e*%60Gt7}IcsUMbZA
z;Ae}0a&vAd*1~D?vmG6q%@xXV4`~BP)H!hQXgS1XbK9Ez21RHqQo^@R)UHc|oMjid
zh&ngsqR6#iL$(Hx@0Y9Ju9Ixa@D|`l12i9K^F}<ZgCz(;M*1#(NFhm_q1~a)qf>Dy
zn6t3JkdX-3l|OMMVX9L(bLc@f2ixuN*OGf#wt6aQ$=~~Gw{~m=OwsWp4K9d^PmIrk
zzXqw0cdoIv>dK<tDQ3qpZiR003ldP`weu7YE;}79#doh<!NGEJ=5uI6n*MDu99GpG
zKL|v5B~)l0z1sNYa&cf{oV}@kN>xg5^Dp19MoAxLW(SSTJorROq&wq{?kxHbTB-{5
zf@GV{NhVy@i6vnIcgz;KuODE|D*8_6J2(~ETYD@yf5DX7SjkCHX9H2!H1$;<Kq5Cq
z@qibQx&Vc72zc&Uy3YHFy|mKgR-K`636_a+VKFn%gbL*sD&eqx+hv{qF#!e|FYCkY
zR<c!{Irz)3K2Z@1xajJ+Sg7;L?#pYG1DyHwrg|(c9Bt!6$ZSDKbOg2BKv96yO~yAo
zP<N3R@V2*e?6*0wC_x_nF?ST{nFguZAZO%uFpWT!AZ@f@B8CR52@lX)!(xb63)pOc
zMK-^Wt5rKapS+YMwk<%ILTk*t-q055nJ<J4SP`6U8WITbPOB5u>PwMUhG`hfEJ<lW
zBS;(J>wAy~j8L&Q&Zchk6T|cu26XZ;_5^Z;IcSIy=!KzdldH@_%8#6T1|4CbGKm^j
zEn&2rQhmk3aMA0FnQx<NL5Q^0!IE@<?I067hh`b@WK^RDZ0MOvsR5|!LEiVeytvJe
zTzP(}(ZN<cVo1<9Q>CnCK-*8cqFyGw1+V?LN1JUqMvupX<CW)j?)rx!^E0@EnPnS0
z3!Gl16h#n#^E8yBJwKtjVP~F{T_<v99X%uZer(>Znte|8rOCRqer2&dHw)19hs8CK
zS%?lBzTs3uuzE~K+pKOs{=qoZ&$9GcWx>5T%WRyQb!Y)G@^1pLpYLz0D#Ls9Y<K|k
zIFs)6UzV-0Kg%N&D!7$xW3<TzOi6t`#nw_nb)rP`ZAz`u8!<WtW>luh_g?Cd5+$Q-
zTq|m=lHD}R&Fx+1W;}XMb%>lY#Ks1VecWV{Rbt2uI5#0eLb?GRwy6au)7h%!6sVCP
zVq-oC=b{n^(J~0#XNfRy2FesQK@LO%V-o8KqX}W47|K}jr;Is9YfCuFGemx~OItBb
zRxoAj+|!eq^?<`-=9Pu#qm$EV+hf=q_C6Lm=9cI!++JOD#e_96wc4ZDDI=w=5|isw
zkFdMfpUcRbw;)@B^q?+^4=k23SH(rqF^(GIaNS`YDtA+|hwe$b85|@KadcvA>u1EH
zhUX0>k@@1>uc7ivLPpm`{|wKR=7O$If)CoS4}+ryV(tVD;z=HF1%+OecRdfdC1)8A
z8HsR2ig0kLSOR>waALj4F<GuD5WylhD`NuK_L@Ijy9=DKw~PfNgfz|aJ$?f>y~U~O
zMw>M3z*lDOiZAN9hZ#KR>cqsL9#R~(n{mmy^SXj~3)yCCQk2W9+hae82kslGMkdrt
zZ6D{cfy<crl#IuQ8xMToR0z1AYwDbj8)y(;JYY9!i%l3g``%$&<(_UN%d0uQ(BCNZ
zRXgMAj9jgC#Y_tySgnvGC=R3B3lTewKq_+Yf4bJf?M$<V3(%ZI;Ln+Riy<n{w7l%r
zq(K+NZN{bXapkDl=o$YQaSD!53C~Vyf8arduve=qKQiY8`(QK`y>o`vPDy!4sp~rs
zk8+##wlVpp{7YO0n!~s<aJS&>6Pw(eY#sPD;On3`+wNeIxNUbA51=wD>0Koci-N02
z(Fz)(>L%uuNuz~X?aUL%7ISNqY}?f5VWnX9bQD$Iux)%Xt;!pVY7m}k0ABGH>C~S9
zLkYFxox@HwJi^MwTbgpi02k^l#JGNqLvr&6*LD1QRO-<xp(S+YRt1h{+?GXldBME4
zBimwDHZCWX&D2gNtDB*6XS2CL!AZ(9vV>h%G&dm2CpB_fXG<Q?CBxYhmOZqA(Tv%!
z#Tk3M4sW*OC}t^+R)n^>l#4sNQCM`AVc~KVVcNa_#=hOEM8MFX$pg=1tq{aoKtwUX
zKrd=qe%NAiruWdmzO}efaIa=s^2p9rs2$@**SReJau8V<ksv<PK>i6~q=w^l;0D5^
zhN1$i(&riBow~JtTF*9u73$Ze8N&KFc<L10S;x9S^IF)a#grv)mLG`og0H&)u&TPJ
zcjL!9R)+Kl;Pz)ADCF#Oo0%OpVUMmFp(0>V!K9KMpE%1HT`KBp2fcH=Y1bRPu4g#q
z@Qer%^w9M^2OaL_gnERi6e-BF^D)Kt{5V5GHIpU!M_`_JDoiVOdxGYV=p+E=v5U-t
z`|fonm|s36;<=Qstf4?(o#wD>7?X?b$&#M~c;CaKG5yZQUv%rIM9-r4QoClu-Aq+E
zT5Ix77+6+}?(AJ)a+E#wfJh>%?j(B&5#jnJFNC3^8WK!RMDUNUsoTx^y%%~)QlHl`
zu+2Jm+u&(I6$N#)Q1tu?zxgSn`XXaGZhwjP<#qJ%97n#$p_%IAb+#tkYR%7+J<U*=
z^1UBeLbJT|$XrQTS5~@P9kk#x<qMfBM&70M9|ct#8y=j?S1Ql?Om4_no?F_;W>3hF
z145N086$aHv&UXD7H@ewr}80D71W6#s?Ky(WsU^r$}4<(BkB6W;+-6l4|%I<{9e-Y
zA^Xn`Z2`p{MhgpP$e+Y%VRRM3%pjM%Vyxh0Ittmyb3+!I%}MrdaNUJ}rIR=47+B5|
z?73aIxC|~#d^xR0Cq<TJ-~?I5LT22M?V5Y!5<O;g=!{fK63{kDqKj&{{c*xt)nW);
z4nS47cSe6+SC7A7KbvNL6eselD+wJJE`Zs&F(FsM<MI*<M!R%6`abkbp*ZXQk#Tu9
zS@guKQ%JucWV4IP=?dq9a=r-=+Z1lb;CZ+5o(gbkf)KN^ri<%Zdw>0KK&(9RK-l2z
z?-Gu99(p#VpFGfs>m`p(!McyjB(V#L?boM0B!pwoQ;bSKi?$~c$`uy^^<uKm>eHWw
zBWzlVLuQbSE69>=5%KPF(}MkL;&1}V4U7HZRTtcB9p!L}-hvIty`aqxFrX#Ee!=4B
zvj!NC-UZuf7!sMhdevy3Fxn%V)rxR`mWj!Tx$R%OMlsuEo2bC%k|=dpxEorlYM0!Y
zV_HauBVoS-6e1I_H}8qsM}S9sA6hF#2p}(9-PU0}ghe+44;#5#R%LkA`_BRA?_Bf$
zi_`ocjhK!mzmlut|2g0MpDCK&eodwR-_fMNZx{2gjQPKFIRERy|DH@vX>9$rXrlJ4
zC}%m^mGu>P(h7*;a!a7CUW2s+>Xw1IiNF<yQ^IjGH>oqg99F<1JYv4<e~|E+eM?9t
z9h9&m>Zf5%zkM8Y^B0mxE*DS+fed9PP`|!U^crl1cYu@&I6aN_TXX)gEF>`>h@udH
z9%v+yBtx#ZDrO>Zai8DnP;J=l&|ABZEIx$OGHq$r2-N#Q?Cn4|-H9+oUgmEW8x2`f
z^iYi4@4r$hSTzl{ZmRNF^*!p5BQx;EOqoA3W}@@}^&rh)BCmZ=DogUUP%LJMG`9+#
z+mbhUM!#4x1bXd%<r@u1H~7R@pXp-o)4I)7@rnexLPHg4cJ=3@eHVf%9I^<JucG7z
zVaqm+D9nsKG>a2pjb@2!VF)cU83Nw8y)>iE3=#=u<H~-1KPya|-84x0DsuR6lafqU
z8xwbS%LAZVV<im(Gi4Ss3}NhZ`bc;jMrF^o%*$R)cC(*Ir)rsPmX}G^htG4TLXVr0
z><2Zz2Aqc~zi&E%?FP&5XQZM}H*hM=aYeysqkvR!HWY0$ZsX5ZDk~yy_w!-2!bF-M
zbbE;;6tk$knBr*PEy#nuhw)ToYEQr|0m_DSFi(R*@t6UY@J!FFaWJ2|7QiG`1TUCn
zss<O2<7^i$L9(x9d;*HQNM1cmQtBPs#~xw2m}*UJ6<FUH*N<J_kic1l$pYRyDFTl)
z5<mR?6}!6FW$_vS%_)^=4n1f!F!8FEa8Nr9^rks;kp|`J6@aZ_F8X;kz_MEe=xt0B
z%;e~m*n%2Jz%{_PM%@o*45ikB|G?346PuB;LtFzztrM4s)&D!3K8h+J{3af&1{wJJ
z&ZbB6R*DK6F2oxB;x~s|`pmcQI!3*)6dp2Fkj)c(=^KU6J8Q`nV2=xrd+R2)_t^Oi
z+0nxkYq)5m`}@4LoO@-4qPG4Ah6<PxqY|cTE_>f&;aZ6b4;s6E>N&Py&$}fNaWjZy
zz*c7^S4W=GqbJcs-ANYIlf0=UMVc0m{muZf?rTJieb9k|LrcqhVM>b>>kv@OPU5a&
zwei?zci7Taz32Nr7f}A)fKXW{u?7i6K#f$FEMMqFg-)lHvZc#iW4k;?T*CE_jr+8;
zKOdrXt%1-<q39TNN#D4^VOMwF`yW@(H|ve$1<h$<qL#Q$;fc+#Bu<B1qiOKR<!jrx
zaEGCHmgu$|;A*LFQyb6OoJ@3hwZ~K<nJ1Kbk#lf(-k7fC&r65DNrIuzU%A7bd4LuI
zS<C)Wr$8QAq=>s(EbwgMU`d^RD|tOzHxi>QBOV*ojK0Tgq&?pkE5bp9%~y(+%uaqC
z6-?2io!$^-$>L0&k}t~)f7t-96A)bG<BQO+sI5V>m}{bF2oW}`$sSkHBm33(LybGZ
z&quB!TWGoftSD0blfJV;{|TL}13D^X!?O>qgHII0SL$KY7HHsW${u;fg4dKSJ`$e@
zIIM6?<dBP-`ckLD!>Es0&Rl5mZT)0Zj^7ShUZdNGT{ib{C^TJtXqcC!G2CKk+>?TP
zA`iJCnIZd!4`#q6n#$i^nt;p0jPUEx#y`JiC@!a0t=RK)<lyA6XJMyv>1Pi*e0%rt
z=6puR1>5?{h!)iPGQ+I&wqQP}uh2lX3+vUx2ZLISG_s^m{V6PlV#m<Gt+eBj9xsXn
z{tM93Wt$2~ik;8ECR;QJa<xESSiikYgSD7|NG{~-k+`)w$Ku-9-vwRH4Bikh5W{B6
z64hzP<at~JYOw|nT4cYO)RYK0Me&wd==`FCK9|O;Jtal*oPK(m5tYKQRheP)#{;9;
zIkHIz`EyRE`fi=%R=+ik^cQVtx<QIpI+Wb?PX(J_bbHy+7Y8>*U;r;&i_9&ReaF`=
zHOkAuCfHvUjJM8|sqGwPiEWa9t9fzl5s2;dPb=BSBJ7_RX<@MJc3+OjJuv2Xrayz?
zdhbry=p>V9btw(crq%@HUh*3W+<PpaMT{;78Kl=H27`qRAA7Obbb%N+^E+RMh(vv4
zj*p!}?rCBW`#J7~(D2~u9Q;pssm0nGPQq)1SAm|)WcD`D8VDS83M39ZqFlV>fk}FN
z);~3OUZPzdgS$DsZ(`>#xxoprWLvE_{JPygNqTzQI>#$Fc1V*r2ZlL4gBSVSLr%nz
zQ*k~)#w}?2|32k`Nqq8sDO@>(3reLwxzDh_=M6OX<F@8@9jazZq#W^qAXTE*xAzo^
zY)E^CsXi&veyVrR2fXtB&5qzK`4V=sjcx<*tundVOrR5D*vh8peAzQ};}cKMAzULg
zWymv#$X-7?gOI$tp|L4?)KB`W@1g>JHwE$M^3EskA9YXkMTBFCH!WqQgn+lNu*9W3
ziZq{Kqwd^Vty3ZdF4!yUVcba2U`{3bvQ$RzciqJptk_z0wG>*}V)CuIBAfuuJ7>v0
zD_KZW%GrijrbxmIU+W%Ui;fbW6B+dIZ6TOhZ@StJf7dT)cN)kM1FAMmxi0TJ7a3G*
zC|e&ucsnE1TqCn8{3hMI8Tg&8Sc2xsAKk&(KXY-Pg>eqo>AO*B3Qw8hhY8d;9L}yP
zog>0ThQU=+E{e_CgO7XcG~@lgi9S15-8gJRD4*q;0wI@o*gpVl)bX|p3|hkN_~F54
z|7Ux4LdMk=_Af5|zdW?R5wicW<=dDzn*CQ`wpw$;_OJ!BC%05T87P^}s9n+y2pCzv
z)nS&FZ6oi32t6@eK)Tmd;{qh1fp-h*R24t(6!}^5{f9>)N$kL79!ujA<}FwLb2Pl*
z)MZ6gyhH?$GnJ+q8Z3A=;w+`x<IDf+ZXkENQAs6le(Bt64b2-a0`<>B6~aAJrQmgb
zoAJ-vNH3;Yb6i7m6)iZ_vpoQ$dL{HTEu;aw5dONZS8#*_qzvwb6pNceoSHYlvQ#}f
zY%NOU1Mscw6c;4aA+MC5IITxbe3~-}@|bcxyplOA>_LPkv*xxd5K2Q>iQmX$ZG}ym
zf=mE8s}L9Ebvu}&b|A`Bj`uX2p>NqOzSg!>x7HR;+znhFbb!BF_%GUc;E0+Uo0O6k
zOTRt{dW{_x(h05(>{_s)%hJwHutGKVdu_EA(+-NI!uBRS2YzjD379{jeKd@c>H|tS
z)RMv&Hev|(QJU<GDxzSiBFSc|q3Y6wo^T?qjJpXpn7#T~t0`KmdJ{|Yf?xVJcQJpZ
zpuv%=h7q7ucl71eWtZ>1L#tX1G)aOC)p&Y0Ev*K|<{w>;X~zxKDjLy>RY}vPPBq4N
zezh+cOT7W3rKR%}BPvs)F>9)u=*O&atBr$98e_2hcya_Ysjp;8359i3eL0A(aT9`Y
zVk>BfBl1&6*DIA2Of?0pM+M7>xzh2$>Ha>ERF&rA${gHyVq8TH5?9KcyhMWu|M^y>
zp12jUU({cgjZFHLs;XCAo4CEs-mXrMkL#<C3uA;(ENXK@Vpan^yVV;p)kpQ^vdDmR
zDqSJ9=B~QI4SH8dHqeh(mi$yUYm@Gl6x-g-e0C-0`lYjH{{N@3vjB=C+Zr$qAvnPa
z!2$%A;O;g^Ai*U#6Wl$x`w-kcxFxu|ySqbzyTd=(ec8MvyRZIR)x}H|_v>@JXS(O!
zIrAO9qJ~`ip`0MaEz~?}0h>3POa$lU=c!ct%Ae?>1l0)2*`7bA!_ICWGPJcc+?cr%
z)Ob}Psq~tHks!PD&XLesIqgK`8=#E-SsqmA<Z<Ju)u#)oD%Q@swWztp>#qyVy!0<a
z+&Y6QuR;y&O7gPr-m6|A27DRD65&AW-Xf``YB!HivE`%R(J}a(BJt*o;b=BAVyY;l
z-euW3aH7yZ$)1EH=ZMBz3KGr;6&I`GwFKLfr!RG-toylH>(K!)hA*g@$>+67jRyAy
z5(>l3k!`FcV}|<Jh%2zaMx*1?hLbLEXki#v9%rIs49`eh9q_5-<eRqhEaBH&&q=Mn
z*%tJKMk)|>>-F^v8@G7HI6d*QGLKYjOJ2Z-drq@l-M2xt+OVHuAug}6v&SK1;o+q6
z)~R87dM%7o2MM39t5UJiYQ8em$GP!f9JmB4-IF^jeTTZ2tu?N-wIhGm1m5boY<2jw
z19Y6Il!@S)^y~9=!`Zy_-o4g)UjI$>9qlp;v}uHUy2$5aOWa(gveZ#H#Zy)xOfMVg
zV(K}fvL`E1o&&&2GT+1C7PmxnD6R7DLUjxuKIvy<j^+B3hp<9hqdr0Uq^iv<QN{uM
zdQBDuh{q6a=gFRgl{pI;W=!9=&YtL|!_*1mR&YBewvs{dV!;o4ZVG7X`-psgkH9K~
z9!}`e?q+q0hz|Hfu86ygJj3;orz(9BPX*J9rYf;N8IyGhx}cl*X`esGG_^o1n#%Gw
z69lX_A^l1+g(|Phax0-H<j<G8QErKL(x3NsK@^cqcjHy|8zXs(Kb><L5Ag$3(ye?c
z(_qxLr%^*G+)KVNgXX(TC(rL%zKORDaJH}w{f6KK<0U&Ex;4X?kEBN(B6Aed9Kfy|
z5gO}KF6XW}dx#(M^7#y-#90tdjl7$9kR-I9Cy(gmzK=|)34XE^hh}=ZNN375W8eDZ
zoOlqGx8DGEqPZCksEec1wS{8$VAF-z;Pc=M5%_(rC^BYo+D#)xOS9t|<XLBu*mE^d
zubQ+6N1Dtg3rW!dRrxf#<7VDK=&laqHn)p1@|Q$&D~C6e>_pkc1ELr?4iZsf?7~l{
z=!~mhm>W^c_wamf^t_B8&D0>9Qi05M>a+3)%<=DmL$T+T6=8Y75K7#;=`#wu9QOoj
zSwv{f(A;13pihCP967~m)0tq#hIm<g$rYG1`^_ANz-9&jgv*O-=d+Phr(KF~)iGtj
ze!UQia0oK_SO^DY9}Mu$mR8O>BR+XK>6>|kr}=a$4x+f0*8x@|1=EI8onKB;cY1Qj
zS<WCT!MX~MDUbTPR?+*y=Ouy7gs<308<cVlTA~Ff%C>5&u_40*<abN6m~WF49v=!^
zXb+rR5~7wzYrT-KhurBxk(-KkcOo;)2hh(GaLCm1-DlEQYP*tyPRx%XwJ01iyATFu
zx!GO(%9Du1gSUnmIQ*!-e0Jxb{chT%zw%l;UmgE-iW|u@X|+~z=cC*}+i<^+uA?j%
z#-#^(uPrS&iFP+NyZA#!REjvx!#!y#p?DIVK9IJUlVnD634=WSjD@(L2O0I`1w)6S
zdk<Too4+U3Kxmbhk+|+OAA(gJNfnzpP`lMDUBd`N8OZSnd5LR`Ymg*KsRbo>LQuaw
zQU_#f=f16AXeX#6sDDTI`J;I?L%nf}9!j#|)F%H3TP~dQ0_57aI91|at)<(Qg|h)W
z`@4a;#3_qK%`yA8CtbV5->%<%r*}z1g^#~O*2!UZC_jhvDnaDH4!km6)JSQqCP-Ff
z@snysk{xO&MbdJ;_gx)rY<nQScXa632hRxA*Wi<0cA_MZvPRS5+lv=a?(-){y4^z{
zOf+5MatsWJC^8D>ki^SHz7Rsdu3zjL>v9${8OwF1(l|gLQjiX9_1k{|#8K;N%m$R>
z4L4E6w}hIuRo3<7y<ZF~l-b-xH7_%9=1YJb^J0^xM$GS@q4S_<&Go>5OfdC|h$;2_
zcF8jI7AD9LmUTLr6!o>}?g12A`cii#!AIZ|C|y}7u8skh0Iv77(jKdT-ReL*$_p>#
zW2fszP^mU7154d-1gZ+Ta-k<Y7oijhme$!D_crqZIeuYQLG*k}{<q&M)k|r!TZ0dl
ztMeS))Ga$p>IFAj#c+k@G>Z00I1vpYR-AO2kTsB&Hg|h3oi~aHv|%FIv%ezu1wpJ{
z+7XB3cIgjONOBNUNTTNWra!dD;W|bg@m_O&%^kQTJhMFYL;Y}i(`Tuvd581&r59eB
zb1?u0*g--E0Rb*R^Pi7Xbd2;&^o;cSKpR^+pt+$1gN*1~K@q{Xg4t?2)^if}_u;wQ
z)VY%&fJcV8o{h9r4~RkPDkI?7&`6UW113SgL;yk%`qMWmMfI!5CCT2e(f-|JyJP)P
z>)g2n%A<O@t;fdQV%kF++)JFHRm>N{{1*%S-GBmeq9EvlZl^7V4SB#j!q4q_DZ4Jv
z7E5?oec7o+{;SzY2Af;VyMg4<Wd%{BPxa-D@doBaGmb<q1&fuawVx*6)L;YGw<^fh
zxwb?bCCbyQPnD@ZtvV_7-$`&<yd~BP&0f-4;9@^ceHtyfr&Th7x09Mo<m~NTd#CWt
zmC8#3*1;%Ou0imk2e6Tj1d>ll*4-fp-}<&?>t@e&C|fIcUl^qV|Fq_GNH)CQyKVnu
z`-GW`o7az#3sr$1#m&v$dD+aAMYF^W->#gKTCoM{hNC@dhnB?C_@ZNr=j5AZ<K%}N
z{mJK9&~~}j?4Xa>V<chj4CJBcxw)%Wyt_x8pVBq#w$zG4iQ&9A$+s^ZPoC9`*AS4?
z@I8dv@pHSK-xaGeB}S&CxRvNN${sZ+jf9`EuP$xRVTB>RYt#|r3t@lP8KAb6wm3J4
zWMUU9`l(=i$Qpl&b8^zELkd<B+r3?vF@yG21RAw6WM^M>?Vxulg7Tx#xoL<${D3Op
zp=&UETrg*puyId|+=_l}zQMPYnAvu}t>>V1ozFf=e3g@|rN+*%ixbnug}-e9R?wgF
zvLI$g%J5uVNkqZL#bx`7-V=*bbbEwd6Hp+^S|uWBxs^X{lXOlh1YBV+%c3-Vx$OE>
z$<Zp3f_l)m*Eif<H%0{aB`Ds}?yl>;uVC(euj2(I^0an1SGFn!w&!{WV?1JeL(+$6
zX}NiN{VQnrpplnaOAPuH9VPBpLHF#9vboHCldEcH?KII%^f{}usbl?(myFI~c%Cw@
z0F3eRsZj|}QBi3<9Wpq61Q68RU<kHwx1L2fTLk^vPut|00;FXUx`88E1p+7+=j{nT
znv&kwBsFgeI5o4BY+qxe`<;|A1>)gQyZI+~rg!7uMpH_XACtBT>a?iME}~IXQs#^@
zShLcQwj4LZka~>h<9gq{?;F8)vDd^oKbEMM-3MOXkk^fcvBU!iCA3dr*Tb8l;e75w
zrpY_5&Y~6B?yk?4+S&OW-#XmvEH%#TmADJDW44D}!8={`SLPce=+~SP;~yV9kQ4_~
zVN}qn&T5j>8e~Xhwxf1P38JZ5qrzq!xZkI;-<<7~Xg?f7KiqG@U*A?$xbgDYot#K7
zCD{WuM;Pi>vWAAlJN0c-^h^6qDkI%-8{8>V0+gB4Ewmi4T8S5yPGWTQWB}(WZnKmp
z0>fu4V{dlXsg0DMntW*~v5j00TwI8AQ#4%SOnRqJp?7@T`EjuqDNJQwEOW1^-BB`B
zX9<&ieQ;~og*3-EsP*ANtefWg@N@mru3xBzp`;p#KRjm-E+1C!&?2d}SW2~zoXalh
z;L|jy4F905^_{57Rf_eQ&d?{Rq43vCVf)YolC!)_XWrb?)QP5Q0J3ZxuZD}&<Kz|=
zdo4a@8F+`V$+#Aev;?tHm5*%?1hRMGu)`tp%zZPto<>h${5>h@Nuel&FtFA*35~m;
z;<5c2JnNt6TFmFE>~YyN3pcl6JEeTrX$p@KWjgcHpGh?oExt3}@bB$yrV|_#W~W3D
z&7FCrBvi8YzMzsQdX7{-DtjOc4Z9h?QkDS4K#I+WQbDnsyEzZ!n6oKLkxWbnsZVH`
zNy&fH_Zmc07PQau!RCG+to`4+Ni-YUP5C17DQJuo9t~52Qq<i26p63v{mOJtC0-hL
zx8Q&thk5sk#0^VNEs8LDTBN{CmuJuSZ65!CF$P+M@-TGAm7+pD3?e8Ecp9hiXV{6+
z95VtPQj5hValQs5;q6XF&`#xNFtFT(@zZ12!1QFtZCB_dg6~<b!pag!^6&d>WsTBg
zUO26Csyk}oyPAa_fPGAKM7swdtfR4|JK6Sc<;<G5?U+MkMHR{}%v#ZiCF;g61c4;0
zR}*!?1s7|5Cvzu98xu0(8D@^mMk@Fo%#2s<7$NwPmMC7dTtH~`56g@JM;KwUOerc2
zAt2i)dBH9mAc$sN)gZODUgawDUc2}(Q}cZP_%-eUk_@By#(9zrG(-3G`a?}NidA4+
zW}7$UtMm}~<?%APW})8Cafo!pd>SkB`W|fc=F`tEW;eT5U!Fr&dK|^D1wR)EOf1Nr
z-&3<O!m#JH!TqS;gBxOeLVF_)O=tik-f(|-J224^m*jlAvN`Z=ve9QY+D!$rA&oUh
zG(``xm2VjCsHHTpoK+^WePp^<OV8clR9)zxL&$5JK8w7h{QxIBI3|BV)~3>(C{QR0
zRF$S=gg?a!aVE{583NrzC-GHiY?Dff8u=(f-@zdK5IcSuiYUTU>q8q@)ysui*1YM8
ziz#ur+fr7?-`s?a-HxE+C)0UMl+ce85Hub8nv@Xh)e6FUkOGW^l|;Ni_-Etrc&aF;
z>1TB^3Zrp>><`SI-VBP(a1;DIUFG9I^aUM@*WZRI2%@s-!254VkY8mg%Ly}HwIYy>
z#i$@>wa6CHC$zzZf-0V%pMA1@ac+4H0Ga4%D-OGIo<wST-5&t(!y~E;e3OO|#j@*`
zIY)hI+S{pAWZ5<t%SmI<1XOH5$X(7>i4mWOO;T$h8C$=qrR|AfRMrSegF=K=U1(SY
znvxtl)x`D3eDI=c)VA#q9D0<GN)@)1By{MQM)Bmy+zs}njEDj3@FNo;ers`f$PGG9
z35M4F_-_lC<j<r8=_$A{sn}GWAHb9Pkb3*Vpp#nc4VnUqN!8j1kUSEmIajXY;$hv$
z_~b$+rJ>X?PXeP@p67mJQPp#J_EdRjHjJ`%EPg|BJ;v?~7VG_&F=WUb#uIh4mhW4#
zwZt-C;g1X5uDMh4=B1}v@9GDdtUi4S8)DHG70I22*sFbtm#xljb+jop+_t3eP=s#a
zu}zkP2KU8DlR(kz@LbYO>_Ze?T=%sP0kzptd^pZ)_(Wp3t`#Ds(@#$FGwGU>he-wV
z9Cias%iS_?M&nBxmLlRLhI(R6f?_>emH@Gnb-tJxv_M2xvXJ!%nGn_NwDlJ~?aqWY
zd9lH4Z_n%q#coM1x=$l22yqM@v{qDK#5ES-`FU(oV4#e&3|E!4^nE12LjD*VAkAEg
zW`b6}1S8SKl-{*(I{id247P)bw6_;^QaI`Xrt@K73ZBXLDwOkbO*|=NE3XrW2ny3d
z;<LjS0qh*T_zzg|<rnvj$eiJ5Tw-2zf=v-M33<(N&4Ucyo+=op-XE^zSLioM_@Ibe
zth$03gqc3?jaM@iAgd;mBlt24XSzyda!`QSxGon%vK*+tMjoVKR>JZm-M5FIU`z)F
zO-w|`yo;=#NeT(#ID(4UVzgYiP!!cj={x-%%()6n7|hb&r!NWIF87d=dztB;f+XrY
z9hSaNF3D2Glu4|h;!-FivATS?T|E=9X2i^n&1L>Iv=1rA@YBb}WqFv>BA$b%*`OzJ
zgdqvi8YLFjKp|HM5X6klF7a&d=mU>dvk#mc>Y+(Y?%GW{hhwc=3Mdpv5#d8$?s|*+
zlDAAg)wvtFUM?%+)he9i(e%ay1L$f#yvW3L{$S<7yX7di9CFD;*YZ+v!SWIlKa7Ak
zEU&AlqIP9nRgTA{6WKM6E^)55!i9e*)X)9;d{H)q4cmDZ6CPgt9du*n%6gVL2j{oI
zwmWA8@Utu;uLE8y+fr@TW$pu_Iiuw}%stIZh^iaF2IrKZhXZERxV&g;o}%PUw^JOJ
z>gSBw67&3NC%3kt64im`ZJv0edxhAywZ*|uQEz>G+);3OQ#VGBi84fKhl$Xi_YzU6
zv*;LF#3%K|?F<z?R}Zo=doM2X$se+isGZ;%&NdHy4KhVy<2$_7;HOmfUd2H8El8cb
zvllsWxXTIe+och^P*;ue`kGGbJ6ZOH1uI{WutL3CgvW*CBrdkJNdl{lPEdduMbFH3
zjMJ^uha3X$);Km+(5LkKZ<%(fF{~~6m4Fm6pIqJu5{w!X2=!x8k9qc}OjC)Xw|$6Z
zKtHRMGWm3l&ZO^QZW7czpvF;yFw?uJwRNr29xJU2U$9FmaDp$a*lUjYUd5&1z%0ur
z$YWL`Vf1^u?03chq?pXtn{hAW@;{Cmu?r2_tna_5^In^~%WZ4BTe-ha?Tt3p%>ia}
z_;2#T1lFalT0D1a<eku<Fl1ZIMh41jn|<YGkDaRP^i)SAHJCb+0<8dai8=AUPzaOF
zO@D_*wUKxm3^hWzy81GfEh7J2G%wQ?4%U4^atb|88ijBz5?)alnSDf1AqSPGZVrgv
zUu)@9WEpcL^9u+al7a)Rq-odMmGMpUqJ1|8M$E_Wfm=^7_`R}4%TD!TCAgJoKQlxl
zT*4dqf2?QgQ2roG^^QQYxn+CxEVycGkvZutd4xkq5iFLlu}Vn;r_ro{GPw^l<0Pj+
zLS2|J)@vzTG?=!o+7(;6EB9(A;nH?h=q)U|QLaK&;tD1k&LP*q4VpIu#WTzb?Va@L
z`8Vi6>mcqJo>6$}_!v@Q9(tPUd5y9+^y|kVcg{<l5rZ~~0Zg4y^#CSBDVjZ)P->cZ
zf;!H;Hrp}VDt*L&sK&@BwqQj*19LKxh?Ha>@hGNpl+dnqr<@$v9p7esO-;iEhWBio
zUsY-z8ttY!!t+|-vMDHf-V37O&NJPTy*Ch$_z)UJ6<?A_9FAhZbe;~t{miq-Qo?fj
z-2umWlh>E1$+kJo^ji{LINw|L2Ho6@(b0J%xk?-$WgX8@u-Ms-j)~}=%UC4NbPq>I
zD#^7J+cvyQjWxObZc)C@LC%Rk4SgZ;aVH^)c)%yzkEY>OVF+)Cxg5870pc1VV!C$S
zatt8^`~eq=vs`tXc0R)*s7u%VTSrao9}wL?o{1HPS&`P-IK@i_!k1Qe!?DxYyC4fd
zTk$zJv#yG<M8gw(;MF$jNks=hl$%g1m5HizFE!tv;~(M@BwfF}$R4jbn+ed3K!<{#
ziZ84%<ft((nxHqHA(~gWacgKms5;t%TIN)5wffTI`Hkeb3IJQns=rdQ{hYYg#Sp4O
z5A>e>>`BRI@z8-YfmSU+3pC3FZ*)Upiq68sr^KzMGWm`IRBfbtNgf!_V~fXxjoIO%
ztw$&`-h}Kje-@iN#q2TU^|ecrrI#vYU?CDYeQUVK8ff;VM9hpmQxdwN2z}0+_p>dm
z!<=VWrWbX7(Ni=~HW2rMpw2?h#Ni>ux&nF^&W$`$D<2r0cw21ubziBL%~0U{hT_Au
z46fSMsz>qYcY+W;y<k>qo;@|4wUlc8Gu_-((+y3!9-rD<k1jO)crFrcGuHeYvA9jx
z=*dHjGnMEhl7lb%RNHhx*)`;*8gF;GHYdntF$;$^k$J}CtpqAjrAY!YB6I;)GkM)Y
zH_uk>5?w7xN_$=q(w_$ogbRXQ`WV^ss>4+hObkH%o;RV+Tx)&MnC=w~(j=$+`G<-o
z<K5#;Ts6_pI}eAKD#wQ`M~&&W@%1FB?qKF$UXYnJ<RZasnD_BEw8!w6wR+!aT&hxS
z#v{65cc<Z2>x73Dtm3nOm!x+JE&@_v@RS*!XRZ6m^_x7=MF~RDor{MR=Hdpz;wR;^
zH2dUF#+eV7XFs7)ogH}bss4Z-dX7<d=S?<M+BLGKNNZ<$aOJbzx6fu7SYD7j>J`6%
zX|j1Y-xw_2-z^~{jeKZgqgC9|=}#NAh)G~&Hfa0BJ0#G8;0%;1Zx;Bp_F0Nr$F#dz
z;VWe-?Wk*)u9`2}tlB^_u$TZZOlA|KXXuN=u|2gU)~5s7iTTrX*TqHWw>U%%hI@Sl
zp^dIaLFOx~!yD=tZLjZ!eQSy*i*WP+lg5svPG*P%i7iK@@~?YI(0G-D7!ZxM5#&Wb
zIBt<kTovns(ESrmFE>J8twtvd06HvWODu<H0qLL_r0eL=DYnZ{jvGGptMe|L=mZ`E
zNeZn%Yb68R2>mOfF&ch#-S}YgFoXB8Le1~c<*QwN2gi**A3q_{9EeMds(*Dd5)74)
z9iX*Dh>iuX8jA~DQu|!Z^)M<40c_U3vnAOKMEC7&kX0oF$~G93!9cD#5Jo&?pRy4y
zIFHD37}Uoq7Gok(vnISVmNwLM-aw6iGn6A&>$+yyn|+ov&CQ>K+`8Bu&%8Ut?kjsT
zn;xVr*?#8t0Q>iaDD8U-B_;3zlrnhxRSfL6g(zhSQBlCtAqkm*5oBpP>cRe@3I)b-
zmSt<X0ckoZ+8%~-g>DI2$-(ZPerb3qTvezIuj3PGTi#$hXsKWY8|J9OXHr2@iZwzQ
zV@1ypsYC5fj!zWqFi)s!9$63K*)>F|z_HMPH%jpKr{edwcnr*Kt(~+jEr8~>HuScR
zw!yN4Lo|a!lA#Q;^u4rHufjH@{tz-Km%j60JO$Y>7g=MnoK!#BS#Oj#xy=tZ5aNHk
zfqvVWf~c^Zf=JP14=7U%4Q{zE6}EG?uLT}0SU`waDg9}SLK=oHdZI^e6=8~bfqKeZ
z5(2$8dGwVssF}-mAoUH535Uo?xV_-DG+?-2J640G{zR!`v{VAFsyZ2R5O>RPtIEx-
zTV3v%{XC<?X@dZGEqPs=s-XoZvth01>zr6bNeCwfQfo9Nf55!>N~DhiDf5_oW!+??
z2z0vYEi@z^;e82tQ1rT<%SL4eW@co;J4mS=0!AWFO{LQo<Fn;L5RTDX9+(?1H#(DQ
z`y|=CF*pLv?3(iECb5`m#Yrfla~&;U4!@oLCsQ><5~rYhp|i9^fr|`DqEyd0YqhFt
zAhp_cLicBTZ7<!eLUn`j?`y`j8ra<Vei0lkA5*a6{OM)g*JAHa8$a&a13K-Jr3Ck4
zN~?w$j~mhoJPMW)wZtwgZJI%w8KpG7%dcg}EHo6iN*&S1YM#SNtU#>wD`8yUu^|Cc
z_mZqj(h>sXR9{C{h~ZCRkN`nfD2BuYb2xIr$!S7vhWbLmK%Zr{FsS8J-j!=+<IlI-
zD6!+TViS_+LG6q6;KHGRn<+%Iv<iAB_u<7hv2dKU$c#4`5yxWtTBfxIzNR7ju4Kz-
zNxF;Dg$YK|+M+B6M5VdrA4F>s{HJKTNq3p17Dodc%(g^^L*ix)Rop}@W7e9yc?)L=
z`eUbvEa)}ebD3(xbnO-3I)Qg>A65_dF<PbQ`BLWLsA)Cw1*no73(71K%^i;t7-1t>
z@Q-oJc67XZZocA{-{N1)3MxNw58k;*H%l1qLIZUKupeB-tx}mciF8nu(XOi=^v|@9
zG_B;aX^Xm*NV$nrDz!Vne?Z+!rhbj!Z`C9;_R(3;LbB<iBR#N3;r-T0>;9Dgs8qs>
zFzPbsB97-c@7^a^8lyqAEuq+WU^#Z8c}<}_hkK(tNT$-^BXk6@al~t4Qvov%rFb=$
z6upWxd&8!x@6&8`%YD7QeE4#Tk)DE(1~9SS>$K;J1C`?-n=F551UXQh!J`gbAUd2E
zw)AUX!XNKksOY_~+PZ0zStY8EBZybvQe7y-CcG)4;I``Et3^-TRsY5ga%GiH<d%v-
zB!KB!-1_D{kjfx)!Ifv|s=G-ppV;O~{Pl`<(J>u%PK>#1XVPpm*d}OC_dCY{9%X{_
z&Qvav_SU<Sg@z=`QK_CJrB{fq0e~W8V>=WX&GZ_N4N8WfSdPh*KF|9Nre}M%8APuv
z6oeJHxrYW%>TOVZWM1sUO(JiVGVITI)*MUai-lv5I0oHDb7hs}SA6AoOCfjZcKGT2
zN@`UfR>~Tnr#MLl1$tt_1ksCT28bZ~Ce`Q$aL1B0@(|h#O2kK~?JhKqjGEP3VDH<g
z-PyxzJDzM#?EK1heDl`nRjck&ONm3hH3KwpD^NQaWNbIhdTb$1MYZjyF&6cP;*~1=
z&1ga#RC?Zn;e+rEdv-~1T?qpyYavJ6rWtR~82wPb*3z39GC84Nv`0+(sdXC{?|sdF
z+>qX`K(gn4Rp_nU{+!qxZDrU(bAtHbcs2C%*G~<r{Kw*leELni*R+hRc*8l6(w!16
z{obX~XxU`$Om@z>NbZB?yoCwL$5hv3AP!*9AT&FsufJlkbuIAYz)Pc#%b|39T;?x*
zfwv3)Y|`l@m!!^%yt>uD&H)2Zm0u8QEw&h0_k{xaQvv1K3d1#?j9tHE?kGLrxQ02!
z1?L8f(A2=`fpZC%Kfu&N-hmt&KcZqx5B&k+4K19SYNuV9%od2s`}SzbVus+!_jL7)
zO3$<52i(mS;e+JGimzxaFX&yWj@Dl4O?<ch${y&uMHU!4+P{$AC=&>O9G}d-5W}8B
zN7DVm9bEer66zWBj|@|AsY(bTc?Q!M9Yye?A2%!TmnVO<EYBYg|6_yyFZ=uB{zuG8
zm5^ZjJNFOM_g}psAhJBYfA#+}ef4qIAO8*R^+y9|z5dm*JWIg9pCWpFpzVL>%|3=a
zgVXEG1K)3esE^~{d<6ODAcmi3`dE@eK+rk=sRa5NMV4n1I2-rBg8+N*?f)oA_&9_g
zU4D+^ht%k2%ktEv{)PCDQ2&1%O0=CqYY(tekA?ejC`rF_{&_S?UvFqs!K%+;@TtK4
z83*`pmZu!gZ=vW}m>U9(z$r$L2Sn$BON9y+TaThaK>Yp0EDHQa(Kpbyv-}50d}z8C
z33xQLoDdK{GNFIAEKgGL-ymiNw$?zsAJtJG$8ylBJO=_F-8*nRe;<*v%I_EpeFM{f
zqR=v(yY7HrB}Cv6{rwaPssBc?0ZSuHfrdYn^pB(QTG6D51=mWpM|pf?40L|y{E%Ax
z17w<nC({+2_XPrfOZnsT;m?-k$z<?5#MWBJUPoKU68I0K$EBNpk+#hLjr3<B=f?wk
zT)_4hiN^Xj(%;J2J|;ab?D>nNY4;oHuQH#HDL;Dsd{2Sjoqx3~&keudDF0BT;xX@W
zk&2(dEKf@Rf93tBWW{6F<H82NSp0$i%KBC2;4$v8M*bI$ION}Pe@NvYqaK@nf1$cT
z|BCw4`}-L6*zx%bg%|s;s6UOLk5P}MZ@*BA$$z1Kidz21_3^R2?H6bCcg{awA0Jy{
zej$poe+%U=XUyXP{pj`c#rgM3+w0oDD8K*Y<1yy(Pd<JHWA+>7pNI1}gY*~See2^u
ze&&-tj^c6J#9s`^lD?me-==RrlPDg;9#4IL!8jKG752wO_%Z46r1cjGoM!z0ox(nb
lKAxQZg0e3CEA-E)s=PET_zv`=k_ia}2l(Q>w*KSU{{a$+_t5|V

literal 0
HcmV?d00001

diff --git a/site/public/data b/site/public/data
new file mode 120000
index 0000000..0c9e531
--- /dev/null
+++ b/site/public/data
@@ -0,0 +1 @@
+/private/tmp/bincio_dev_test
\ No newline at end of file
diff --git a/site/src/components/ActivityDetailLoader.svelte b/site/src/components/ActivityDetailLoader.svelte
index 600113b..1831c1f 100644
--- a/site/src/components/ActivityDetailLoader.svelte
+++ b/site/src/components/ActivityDetailLoader.svelte
@@ -2,6 +2,7 @@
   import { onMount } from 'svelte';
   import { loadIndex } from '../lib/dataloader';
   import ActivityDetail from './ActivityDetail.svelte';
+  import { isUnlisted } from '../lib/format';
   import type { ActivitySummary, BASIndex } from '../lib/types';
 
   export let base: string = '/';
@@ -48,7 +49,7 @@
             source: d.source ?? null,
             privacy: d.privacy ?? 'public',
             detail_url: `${shard.handle}/_merged/activities/${id}.json`,
-            track_url: d.bbox && d.privacy !== 'private' && d.privacy !== 'no_gps'
+            track_url: d.bbox && d.privacy !== 'no_gps'
               ? `${shard.handle}/_merged/activities/${id}.geojson`
               : null,
             preview_coords: null,
diff --git a/site/src/components/ActivityFeed.svelte b/site/src/components/ActivityFeed.svelte
index 4d6291d..e486e33 100644
--- a/site/src/components/ActivityFeed.svelte
+++ b/site/src/components/ActivityFeed.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
   import { onMount } from 'svelte';
   import type { ActivitySummary, BASIndex, Sport } from '../lib/types';
-  import { formatDistance, formatDuration, formatElevation, formatDate, sportIcon, sportColor, sportLabel } from '../lib/format';
+  import { formatDistance, formatDuration, formatElevation, formatDate, isUnlisted, sportIcon, sportColor, sportLabel } from '../lib/format';
   import { loadIndex } from '../lib/dataloader';
 
   /** Render preview_coords as an SVG polyline path string. */
@@ -47,11 +47,11 @@
   let me: string = '';
 
   // Show private activities only to their owner.
-  // On a profile page (filterHandle set): show private if me === filterHandle.
-  // On the global feed: show private only for the logged-in user's own activities.
+  // On a profile page (filterHandle set): show unlisted if me === filterHandle.
+  // On the global feed: show unlisted only for the logged-in user's own activities.
   $: isOwner = filterHandle !== '' && me === filterHandle;
   $: withPrivacy = all.filter(a => {
-    if (a.privacy === 'private') {
+    if (isUnlisted(a.privacy)) {
       return filterHandle ? isOwner : (me !== '' && (a as any).handle === me);
     }
     return true;
@@ -161,8 +161,8 @@
             </p>
             <!-- stretched link covers the whole card; sits below the handle link -->
             <h3 class="font-semibold text-white truncate group-hover:text-[--accent] transition-colors flex items-center gap-1.5">
-              {#if a.privacy === 'private'}
-                <span class="text-zinc-500 shrink-0" title="Private">🔒</span>
+              {#if isUnlisted(a.privacy)}
+                <span class="text-zinc-500 shrink-0" title="Unlisted">🔒</span>
               {/if}
               <a
                 href={a.detail_url ? `${import.meta.env.BASE_URL}activity/${a.id}/` : `${import.meta.env.BASE_URL}activity/local/?id=${a.id}`}
diff --git a/site/src/components/AthleteView.svelte b/site/src/components/AthleteView.svelte
index ed990f1..8fd42c8 100644
--- a/site/src/components/AthleteView.svelte
+++ b/site/src/components/AthleteView.svelte
@@ -4,6 +4,7 @@
   import MmpChart from './MmpChart.svelte';
   import RecordsView from './RecordsView.svelte';
   import AthleteDrawer from './AthleteDrawer.svelte';
+  import { isUnlisted } from '../lib/format';
   import { loadIndex, loadAthlete } from '../lib/dataloader';
 
   export let base: string = '/';
@@ -51,7 +52,7 @@
         } catch { /* ignore */ }
       }
       athlete = resolvedAthlete;
-      activities = index.activities.filter(a => a.mmp && a.privacy !== 'private');
+      activities = index.activities.filter(a => a.mmp && !isUnlisted(a.privacy));
     } catch (e: any) {
       error = e.message;
     } finally {
diff --git a/site/src/components/CommunityView.svelte b/site/src/components/CommunityView.svelte
index 4351c81..b36af74 100644
--- a/site/src/components/CommunityView.svelte
+++ b/site/src/components/CommunityView.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
   import { onMount } from 'svelte';
   import type { BASIndex, ActivitySummary } from '../lib/types';
-  import { formatDistance, formatDuration, sportIcon } from '../lib/format';
+  import { formatDistance, formatDuration, isUnlisted, sportIcon } from '../lib/format';
 
   export let base: string = '/';
 
@@ -74,7 +74,7 @@
     const tot: Totals = { count: 0, distance_m: 0, elevation_m: 0, duration_s: 0, users: 0 };
 
     for (const u of rawUsers) {
-      const pub = u.activities.filter(a => a.privacy !== 'private');
+      const pub = u.activities.filter(a => !isUnlisted(a.privacy));
       const filtered = pub.filter(a => new Date(a.started_at) >= start);
 
       const stat: UserStat = {
diff --git a/site/src/components/StatsView.svelte b/site/src/components/StatsView.svelte
index 72a9de0..78b052d 100644
--- a/site/src/components/StatsView.svelte
+++ b/site/src/components/StatsView.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
   import { onMount } from 'svelte';
   import type { ActivitySummary, BASIndex, Sport } from '../lib/types';
-  import { formatDistance, formatDuration, sportIcon, sportColor, sportLabel } from '../lib/format';
+  import { formatDistance, formatDuration, isUnlisted, sportIcon, sportColor, sportLabel } from '../lib/format';
   import { loadIndex } from '../lib/dataloader';
 
   /** Explicit index URL — use for per-user stats pages in multi-user mode. */
@@ -35,7 +35,7 @@
     mounted = true;
     try {
       const index = await loadIndex(import.meta.env.BASE_URL, indexUrl || undefined);
-      all = index.activities.filter(a => a.privacy !== 'private' && a.distance_m);
+      all = index.activities.filter(a => !isUnlisted(a.privacy) && a.distance_m);
     } catch (e: any) {
       error = e.message;
     }
diff --git a/site/src/layouts/Base.astro b/site/src/layouts/Base.astro
index 4989589..531a22e 100644
--- a/site/src/layouts/Base.astro
+++ b/site/src/layouts/Base.astro
@@ -368,8 +368,8 @@ try {
           </div>
           <label class="flex items-center gap-2 mt-3 text-xs text-zinc-400 cursor-pointer select-none">
             <input id="zip-private" type="checkbox" class="accent-blue-500" />
-            Mark all imported activities as private
-            <span class="text-zinc-600">(Strava export doesn't include privacy settings)</span>
+            Mark all imported activities as unlisted
+            <span class="text-zinc-600">(not shown in feed; GPS track still accessible by URL)</span>
           </label>
           <p id="zip-status" class="mt-3 text-xs text-center leading-relaxed" style="min-height: 1.25rem"></p>
         </div>
diff --git a/site/src/lib/format.ts b/site/src/lib/format.ts
index f2c4258..61531d7 100644
--- a/site/src/lib/format.ts
+++ b/site/src/lib/format.ts
@@ -1,4 +1,10 @@
-import type { Sport } from './types';
+import type { Privacy, Sport } from './types';
+
+/** True for "unlisted" activities (and the legacy "private" alias).
+ *  Use this everywhere instead of comparing against 'private' directly. */
+export function isUnlisted(privacy: Privacy | string | null | undefined): boolean {
+  return privacy === 'unlisted' || privacy === 'private';
+}
 
 export function formatDistance(m: number | null, unit: 'metric' | 'imperial' = 'metric'): string {
   if (m == null) return '—';
diff --git a/site/src/lib/types.ts b/site/src/lib/types.ts
index 774377f..8e05a5a 100644
--- a/site/src/lib/types.ts
+++ b/site/src/lib/types.ts
@@ -2,7 +2,9 @@
 
 export type Sport = "cycling" | "running" | "hiking" | "walking" | "swimming" | "skiing" | "other";
 export type SubSport = "road" | "mountain" | "gravel" | "indoor" | "trail" | "track" | "nordic" | "alpine" | "open_water" | "pool" | null;
-export type Privacy = "public" | "blur_start" | "no_gps" | "private";
+/** "unlisted" = not shown in the public feed; GPS track still published (security by obscurity).
+ *  "private" is the legacy alias for "unlisted" — accepted when reading old data. */
+export type Privacy = "public" | "blur_start" | "no_gps" | "unlisted" | "private";
 
 /** [duration_s, avg_watts] pairs, sorted by duration ascending. */
 export type MmpCurve = [number, number][];
diff --git a/site/src/pages/activity/[id].astro b/site/src/pages/activity/[id].astro
index 273c53d..4539f18 100644
--- a/site/src/pages/activity/[id].astro
+++ b/site/src/pages/activity/[id].astro
@@ -52,7 +52,7 @@ export async function getStaticPaths() {
     // Build the map from the index first
     const byId = new Map(
       activities
-        .filter(a => a.privacy !== 'private' && a.id)
+        .filter(a => a.privacy !== 'private' && a.privacy !== 'unlisted' && a.id)
         .map(a => [a.id, { activity: a, athlete }])
     );
 
@@ -80,7 +80,7 @@ export async function getStaticPaths() {
           if (byId.has(id)) continue;   // already covered by the index
           try {
             const detail = JSON.parse(readFileSync(join(actsDir, file), 'utf-8'));
-            if (detail.privacy === 'private') continue;
+            if (detail.privacy === 'private' || detail.privacy === 'unlisted') continue;
             // Build a minimal ActivitySummary from the detail file
             const a: ActivitySummary = {
               id,
diff --git a/todo.md b/todo.md
new file mode 100644
index 0000000..ee1a1a8
--- /dev/null
+++ b/todo.md
@@ -0,0 +1,213 @@
+# BincioActivity — Ideas & Roadmap
+
+## 1. Strava import from UI ✅
+
+**Goal:** Let users trigger a Strava sync directly from the web UI instead of running CLI commands.
+
+**Current state:** `bincio extract` CLI handles Strava OAuth + sync. The edit server (FastAPI) runs locally.
+
+**Ideas:**
+- Repurpose the upload button popup to offer two paths: "Upload file" (existing) or "Connect Strava"
+- OAuth flow: open a popup window → Strava auth → redirect back → edit server exchanges code for token → triggers extract
+- Edit server would need new endpoints: `GET /strava/auth-url`, `GET /strava/callback`, `POST /strava/sync`
+- Progress feedback: SSE (Server-Sent Events) or polling endpoint to stream sync progress back to the UI
+
+**Open questions:**
+- Where to store the Strava token? Currently it's a CLI argument / env var. For server mode, probably a local file in the data dir.
+- Should sync be incremental (only new activities) or full re-extract?
+- How does this interact with multi-user mode (see #2)?
+
+**Effort:** Medium. OAuth popup + SSE progress are the tricky parts.
+
+---
+
+## 2. Multi-user VPS deployment with invite system
+
+**Goal:** Deploy bincio on a VPS so multiple users can have accounts. Invite-only registration.
+
+**Current state:** Entirely single-user, local files, no auth layer at all.
+
+### Clarified model
+
+- A **bincio instance** is a deployment (personal or group)
+- **Personal instance:** 1 user, fully self-contained — current state
+- **Group instance:** N users, invite-only. All users see each other's public activities by default.
+  The `private` flag (already in the schema) means "only me".
+- **Federation** is between instances via BAS data URLs — no accounts needed to follow someone
+- Data isolation = run your own instance. No per-user isolation within an instance.
+
+### Data layout (multi-user)
+
+```
+/data/
+  {handle}/          ← one dir per user (extract output)
+    activities/
+    index.json
+    athlete.json
+    edits/
+    _merged/
+instance.json        ← user registry + invite codes
+```
+
+The instance's combined feed merges all users' `_merged/index.json` files at render time.
+
+### Auth layer
+
+- Session-based auth added to the edit server (FastAPI handles login/logout)
+- Unauthenticated reads stay fully public (static files, same as today)
+- Write endpoints check: logged in + owns the activity
+- Astro site detects logged-in user to show/hide the Edit button per activity
+
+### Invite system
+
+- Invites: short random codes (8 chars), stored in `instance.json`
+- Invite record: `{code, created_by, used_by, created_at, used_at}`
+- On registration: validate code → create user dir → mark invite used
+- Limits: admin (unlimited), regular users (3 invites, configurable)
+- UI: "Your invites" page — generate codes, see who used them
+
+### Render pipeline (multi-user)
+
+- `bincio render` runs `merge_all()` for each user, then builds one Astro site
+- Combined `index.json` = all users' public summaries merged, sorted by date
+- Per-user profile pages at `/{handle}/` showing only their activities
+- Activity detail pages stay at `/activity/{id}/` (IDs are globally unique already)
+- Activity cards in combined feed show "by {handle}" label
+
+**Decided:**
+- SQLite for user/invite storage (safe under concurrent writes, still no external DB dependency)
+- Mastodon-style follow UX: paste a BAS URL into a "Follow" input → instance fetches and caches that feed → activities appear in combined feed with "from {url}" attribution
+- Feed refresh: pull-on-demand with cache TTL (no background job — fetch on first stale pageload). [open: exact TTL, stale-while-revalidate vs blocking]
+
+**Effort:** Large. Auth + multi-user render pipeline are the main work. Needs a design pass before coding.
+
+---
+
+## 3. Federation explainer for non-technical users
+
+**Goal:** Write a clear, friendly explanation of how bincio federation works for people who don't know what JSON or APIs are.
+
+**Three ways to share your data:**
+
+### a) Upload raw files
+> "Export your GPX/FIT files from Garmin, Wahoo, or wherever, and upload them directly. Bincio converts them automatically."
+
+### b) Upload BAS files
+> "Already running bincio locally? Export your BAS data and host it anywhere — GitHub Pages, Netlify, a USB stick. Anyone with the link can include your activities in their feed."
+
+### c) Link to another bincio instance
+> "Self-hosting bincio? Just share your URL. Friends can follow you by adding your address to their feeds — no accounts needed, no central server."
+
+**Promo angle ideas:**
+- "Your data, your rules. No algorithms, no engagement metrics."
+- "Like RSS for your training log."
+- "Works offline. Export once, keep forever."
+- "Follow friends without either of you needing an account on the same platform."
+
+**Format:** Could be a `FEDERATION.md`, a landing page section, or a one-pager PDF.
+
+**Effort:** Small (writing). Medium if we want a designed landing page.
+
+---
+
+## 4. Mobile data capture & processing
+
+**Goal:** Record activities on a phone, convert to BAS, possibly run the full bincio stack on-device.
+
+**Four sub-questions:**
+
+### 4a. Record on phone
+- Standard GPS recording → GPX export is already solved by apps like OsmAnd, Organic Maps, Strava, Komoot
+- Could build a minimal PWA (Progressive Web App) that records GPS and exports GPX
+- Web Geolocation API + background service worker has limitations (iOS kills background JS)
+- React Native / Capacitor would give better background GPS access
+- **Simplest path:** just recommend OsmAnd/Organic Maps, skip building a recorder
+
+### 4b. Convert GPX/FIT → BAS on phone
+- The extract pipeline is pure Python with no native deps (haversine math, standard library)
+- Could run via **Pyodide** (Python in WebAssembly) in a browser/PWA
+- Or package as a mobile app with BeeWare/Kivy (Python → iOS/Android)
+- Performance: A typical 1-hour FIT file is ~1MB, should parse in <1s even in Pyodide
+- **Interesting path:** PWA with Pyodide — no install needed, works in Safari/Chrome
+
+### 4c. Serve the full bincio app on a phone
+- The site is a static Astro build — it's already a collection of HTML/JS/CSS files
+- A phone could serve these files locally via a small HTTP server
+- iOS: no background servers, but a Capacitor wrapper could embed a local server
+- Android: more permissive, could run a Python/Node micro-server as a service
+- **Alternative:** just open the pre-built site via file:// protocol (may work for static assets)
+
+### 4d. Fully offline mobile app
+- Capacitor + the existing Svelte components + Pyodide for extract = plausible stack
+- Would need to bundle MapLibre tile data locally (big) or use an offline tile server
+- This is a significant project but technically feasible with existing code
+
+**Decided path:**
+1. Recommend OsmAnd / Organic Maps for GPS recording — also built a `/record/` page in the app for in-app GPS recording
+2. Capacitor wraps the existing Astro/Svelte site as a native iOS/Android app
+3. `/convert/` page — Pyodide runs the full extract pipeline in-browser (GPX/FIT/TCX → BAS JSON)
+4. Fully offline on-device: needs more work (see below)
+
+**Done:**
+- Capacitor setup in `site/` (`capacitor.config.ts`, scripts, packages)
+- `/convert/` page with Pyodide (loads bincio wheel, converts files, download or save to cloud)
+- `/record/` page with live GPS recording, exports GPX → hands off to `/convert/`
+- `POST /api/import-bas` edit server endpoint (accepts pre-converted BAS JSON)
+- `site/public/bincio.whl` — bincio Python wheel for Pyodide
+
+**Fully offline — ordered plan:**
+
+| # | Step | Effort | Status |
+|---|---|---|---|
+| 1 | SW + IndexedDB write (`sw.js`, `localstore.ts`, "Save to device") | Medium | ✅ Done |
+| 2 | `dataloader.ts` — runtime-merge server + IDB; update all Svelte components | Medium | 🔄 In progress |
+| 3 | Test convert→save→feed loop in browser (`npm run dev`) | Low | Not started |
+| 4 | Sidecar merge in JS (port `merge_all`, no Pyodide) | Medium | Not started |
+| 5 | Pyodide SW cache (cache CDN assets on first visit) | Medium | Not started |
+| 6 | `npx cap add android` + test in Capacitor WebView | Low | Not started |
+| 7 | Test on iOS device/simulator | Low | Not started |
+| 8 | Native micro-server (only if step 7 reveals SW blocked) | Hard | Contingency |
+
+**`capacitor-nodejs` is not on the roadmap.** If iOS blocks service workers, fallback is a native micro-server or eliminating all remaining `fetch('/data/*')` callsites via step 2.
+
+See `ARCHITECTURE.md` — "Fully offline — missing pieces" for design details and open questions (storage limits, uninstall, sync conflicts).
+
+---
+
+## 5. Gear from Strava export
+
+Import `bikes.csv` and `shoes.csv` from the Strava ZIP export to pre-populate a gear selector
+in the edit drawer. The CSV has: Bike Name, Bike Brand, Bike Model, Bike Default Sport Types.
+Could store as a `gear.json` in the user's data dir and surface it in the EditDrawer sport/gear fields.
+
+---
+
+---
+
+## 6. User feedback backlog (April 2026)
+
+Items reported via the in-app feedback form.
+
+| # | Who | Area | Description | Notes |
+|---|-----|------|-------------|-------|
+| F1 | brut | Mobile / Nav | ~~Shorten "BincioActivity" logo to "BA" on narrow screens~~ | ✅ Done |
+| F2 | brut | Mobile / Stats | Day-click tooltip in `StatsView` falls off-screen on mobile | Needs viewport-clamping on the tooltip position |
+| F3 | brut | Data / Display | Cadence unit "rpm" is wrong for walking and hiking — should be "spm" or hidden | `ActivityCharts.svelte` — sport-aware label or hide tab |
+| F4 | brut | Feature | No way to mark an activity as "virtual"; virtual activities should be excluded from records | `virtual: true` sidecar flag + `EditDrawer` checkbox; filter in `RecordsView` and `write_athlete_json` |
+| F5 | brut | Charts / MMP | ~~Power curve Y axis should start at 0 W; X axis should extend to at least 2 hours~~ | ✅ Done |
+| F6 | brut | Feature | Import gear (bikes, shoes) from Strava export; edit gear; maintenance log with cumulative km | See item 5 above for gear import. Maintenance log is new: date + km + notes per bike |
+| F7 | brut | About page | Make user handles in the community tree clickable; show online user count | Handles link to `/u/{handle}/`; online count needs server-side tracking (non-trivial) |
+| F8 | brut | Strava sync | ~~Syncing from Strava does not trigger a site rebuild~~ | ✅ Done — trigger was firing after `yield "done"`, client had already closed the SSE connection |
+| F9 | diego_p | Data | Check elevation gain on activity `2026-04-11T051441Z` | Likely a GPS artefact or smoothing issue; needs manual inspection |
+
+---
+
+## Prioritization (rough)
+
+| # | Feature | Impact | Effort | Priority |
+|---|---------|--------|--------|----------|
+| 1 | Strava sync from UI | High | Medium | Soon |
+| 3 | Federation explainer | Medium | Small | Soon |
+| 4a/4b | Mobile record + convert | Medium | Medium | Later |
+| 2 | Multi-user + invites | High | Large | Later (needs design) |
+| 4c/4d | Full mobile app | Low | Large | Future |