From 5196fc91197dcaebfa3dfa00e06d56df782d854b Mon Sep 17 00:00:00 2001
From: Richard Wall <richard.wall@venafi.com>
Date: Fri, 8 Aug 2025 12:24:01 +0100
Subject: [PATCH] Add a snapshot JSON format for uploads and convert
 DataReadings to Snapshot format

Signed-off-by: Richard Wall <richard.wall@venafi.com>
---
 api/datareading.go                            |  37 ++++++-
 pkg/agent/run.go                              |   8 ++
 pkg/client/client_cyberark.go                 |   9 --
 pkg/datagatherer/k8s/discovery.go             |  12 +--
 pkg/datagatherer/k8s/dynamic.go               |   8 +-
 pkg/datagatherer/k8s/dynamic_test.go          |  16 ++-
 pkg/datagatherer/k8s/fieldfilter.go           |   3 +
 .../cyberark/dataupload/dataupload.go         |   9 +-
 .../cyberark/dataupload/dataupload_test.go    |  71 +++++++-----
 pkg/internal/cyberark/dataupload/mock.go      |  46 +++++---
 pkg/internal/cyberark/dataupload/snapshot.go  | 102 ++++++++++++++++++
 .../cyberark/dataupload/snapshot_test.go      |  29 +++++
 .../dataupload/testdata/example-1/README.md   |  27 +++++
 .../dataupload/testdata/example-1/agent.yaml  |  54 ++++++++++
 .../testdata/example-1/datareadings.json.gz   | Bin 0 -> 29312 bytes
 .../testdata/example-1/snapshot.json.gz       | Bin 0 -> 26955 bytes
 pkg/testutil/datareadings.go                  |  90 ++++++++++++++++
 17 files changed, 441 insertions(+), 80 deletions(-)
 delete mode 100644 pkg/client/client_cyberark.go
 create mode 100644 pkg/internal/cyberark/dataupload/snapshot.go
 create mode 100644 pkg/internal/cyberark/dataupload/snapshot_test.go
 create mode 100644 pkg/internal/cyberark/dataupload/testdata/example-1/README.md
 create mode 100644 pkg/internal/cyberark/dataupload/testdata/example-1/agent.yaml
 create mode 100644 pkg/internal/cyberark/dataupload/testdata/example-1/datareadings.json.gz
 create mode 100644 pkg/internal/cyberark/dataupload/testdata/example-1/snapshot.json.gz
 create mode 100644 pkg/testutil/datareadings.go

diff --git a/api/datareading.go b/api/datareading.go
index 54637f3c..75e7dee3 100644
--- a/api/datareading.go
+++ b/api/datareading.go
@@ -1,8 +1,12 @@
 package api
 
 import (
+	"bytes"
 	"encoding/json"
 	"time"
+
+	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
+	"k8s.io/apimachinery/pkg/version"
 )
 
 // DataReadingsPost is the payload in the upload request.
@@ -28,8 +32,8 @@ type DataReading struct {
 type GatheredResource struct {
 	// Resource is a reference to a k8s object that was found by the informer
 	// should be of type unstructured.Unstructured, raw Object
-	Resource  interface{}
-	DeletedAt Time
+	Resource  interface{} `json:"resource"`
+	DeletedAt Time        `json:"deleted_at,omitempty"`
 }
 
 func (v GatheredResource) MarshalJSON() ([]byte, error) {
@@ -48,3 +52,32 @@ func (v GatheredResource) MarshalJSON() ([]byte, error) {
 
 	return json.Marshal(data)
 }
+
+func (v *GatheredResource) UnmarshalJSON(data []byte) error {
+	var tmpResource struct {
+		Resource  *unstructured.Unstructured `json:"resource"`
+		DeletedAt Time                       `json:"deleted_at,omitempty"`
+	}
+
+	d := json.NewDecoder(bytes.NewReader(data))
+	d.DisallowUnknownFields()
+
+	if err := d.Decode(&tmpResource); err != nil {
+		return err
+	}
+	v.Resource = tmpResource.Resource
+	v.DeletedAt = tmpResource.DeletedAt
+	return nil
+}
+
+// DynamicData is the DataReading.Data returned by the k8s.DataGathererDynamic
+// gatherer
+type DynamicData struct {
+	Items []*GatheredResource `json:"items"`
+}
+
+// DiscoveryData is the DataReading.Data returned by the k8s.ConfigDiscovery
+// gatherer
+type DiscoveryData struct {
+	ServerVersion *version.Info `json:"server_version"`
+}
diff --git a/pkg/agent/run.go b/pkg/agent/run.go
index 6995c548..13d4401f 100644
--- a/pkg/agent/run.go
+++ b/pkg/agent/run.go
@@ -321,6 +321,14 @@ func gatherAndOutputData(ctx context.Context, eventf Eventf, config CombinedConf
 	var readings []*api.DataReading
 
 	if config.InputPath != "" {
+		// TODO(wallrj): The datareadings read from disk can not yet be pushed
+		// to the CyberArk Discovery and Context API. Why? Because they have
+		// simple data types such as map[string]interface{}. In contrast, the
+		// data from data gatherers can be cast to rich types like DynamicData
+		// or DiscoveryData The CyberArk dataupload client requires the data to
+		// have rich types to convert it to the Discovery and Context snapshots
+		// format. Consider refactoring testutil.ParseDataReadings so that it
+		// can be used here.
 		log.V(logs.Debug).Info("Reading data from local file", "inputPath", config.InputPath)
 		data, err := os.ReadFile(config.InputPath)
 		if err != nil {
diff --git a/pkg/client/client_cyberark.go b/pkg/client/client_cyberark.go
deleted file mode 100644
index af26e96c..00000000
--- a/pkg/client/client_cyberark.go
+++ /dev/null
@@ -1,9 +0,0 @@
-package client
-
-import (
-	"github.com/jetstack/preflight/pkg/internal/cyberark/dataupload"
-)
-
-type CyberArkClient = dataupload.CyberArkClient
-
-var NewCyberArkClient = dataupload.NewCyberArkClient
diff --git a/pkg/datagatherer/k8s/discovery.go b/pkg/datagatherer/k8s/discovery.go
index 586622d6..340bcbda 100644
--- a/pkg/datagatherer/k8s/discovery.go
+++ b/pkg/datagatherer/k8s/discovery.go
@@ -6,6 +6,7 @@ import (
 
 	"k8s.io/client-go/discovery"
 
+	"github.com/jetstack/preflight/api"
 	"github.com/jetstack/preflight/pkg/datagatherer"
 )
 
@@ -59,15 +60,12 @@ func (g *DataGathererDiscovery) WaitForCacheSync(ctx context.Context) error {
 
 // Fetch will fetch discovery data from the apiserver, or return an error
 func (g *DataGathererDiscovery) Fetch() (interface{}, int, error) {
-	data, err := g.cl.ServerVersion()
+	serverVersion, err := g.cl.ServerVersion()
 	if err != nil {
 		return nil, -1, fmt.Errorf("failed to get server version: %v", err)
 	}
 
-	response := map[string]interface{}{
-		// data has type Info: https://godoc.org/k8s.io/apimachinery/pkg/version#Info
-		"server_version": data,
-	}
-
-	return response, len(response), nil
+	return &api.DiscoveryData{
+		ServerVersion: serverVersion,
+	}, 1, nil
 }
diff --git a/pkg/datagatherer/k8s/dynamic.go b/pkg/datagatherer/k8s/dynamic.go
index b0e1dedf..9dbffe88 100644
--- a/pkg/datagatherer/k8s/dynamic.go
+++ b/pkg/datagatherer/k8s/dynamic.go
@@ -314,7 +314,6 @@ func (g *DataGathererDynamic) Fetch() (interface{}, int, error) {
 		return nil, -1, fmt.Errorf("resource type must be specified")
 	}
 
-	var list = map[string]interface{}{}
 	var items = []*api.GatheredResource{}
 
 	fetchNamespaces := g.namespaces
@@ -344,10 +343,9 @@ func (g *DataGathererDynamic) Fetch() (interface{}, int, error) {
 		return nil, -1, err
 	}
 
-	// add gathered resources to items
-	list["items"] = items
-
-	return list, len(items), nil
+	return &api.DynamicData{
+		Items: items,
+	}, len(items), nil
 }
 
 func redactList(list []*api.GatheredResource, excludeAnnotKeys, excludeLabelKeys []*regexp.Regexp) error {
diff --git a/pkg/datagatherer/k8s/dynamic_test.go b/pkg/datagatherer/k8s/dynamic_test.go
index 072c4c1c..525c8892 100644
--- a/pkg/datagatherer/k8s/dynamic_test.go
+++ b/pkg/datagatherer/k8s/dynamic_test.go
@@ -730,15 +730,12 @@ func TestDynamicGatherer_Fetch(t *testing.T) {
 			}
 
 			if tc.expected != nil {
-				items, ok := res.(map[string]interface{})
+				data, ok := res.(*api.DynamicData)
 				if !ok {
-					t.Errorf("expected result be an map[string]interface{} but wasn't")
+					t.Errorf("expected result be *api.DynamicData but wasn't")
 				}
 
-				list, ok := items["items"].([]*api.GatheredResource)
-				if !ok {
-					t.Errorf("expected result be an []*api.GatheredResource but wasn't")
-				}
+				list := data.Items
 				// sorting list of results by name
 				sortGatheredResources(list)
 				// sorting list of expected results by name
@@ -1045,10 +1042,9 @@ func TestDynamicGathererNativeResources_Fetch(t *testing.T) {
 			}
 
 			if tc.expected != nil {
-				res, ok := rawRes.(map[string]interface{})
-				require.Truef(t, ok, "expected result be an map[string]interface{} but wasn't")
-				actual := res["items"].([]*api.GatheredResource)
-				require.Truef(t, ok, "expected result be an []*api.GatheredResource but wasn't")
+				res, ok := rawRes.(*api.DynamicData)
+				require.Truef(t, ok, "expected result be an *api.DynamicData but wasn't")
+				actual := res.Items
 
 				// sorting list of results by name
 				sortGatheredResources(actual)
diff --git a/pkg/datagatherer/k8s/fieldfilter.go b/pkg/datagatherer/k8s/fieldfilter.go
index ed39acb3..1bddd387 100644
--- a/pkg/datagatherer/k8s/fieldfilter.go
+++ b/pkg/datagatherer/k8s/fieldfilter.go
@@ -16,6 +16,9 @@ var SecretSelectedFields = []FieldPath{
 	{"metadata", "ownerReferences"},
 	{"metadata", "selfLink"},
 	{"metadata", "uid"},
+	{"metadata", "creationTimestamp"},
+	{"metadata", "deletionTimestamp"},
+	{"metadata", "resourceVersion"},
 
 	{"type"},
 	{"data", "tls.crt"},
diff --git a/pkg/internal/cyberark/dataupload/dataupload.go b/pkg/internal/cyberark/dataupload/dataupload.go
index d8835e3b..014aa85b 100644
--- a/pkg/internal/cyberark/dataupload/dataupload.go
+++ b/pkg/internal/cyberark/dataupload/dataupload.go
@@ -58,14 +58,19 @@ func NewCyberArkClient(trustedCAs *x509.CertPool, baseURL string, authenticateRe
 // PostDataReadingsWithOptions PUTs the supplied payload to an [AWS presigned URL] which it obtains via the CyberArk inventory API.
 //
 // [AWS presigned URL]: https://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-query-string-auth.html
-func (c *CyberArkClient) PostDataReadingsWithOptions(ctx context.Context, payload api.DataReadingsPost, opts Options) error {
+func (c *CyberArkClient) PostDataReadingsWithOptions(ctx context.Context, readings []*api.DataReading, opts Options) error {
 	if opts.ClusterName == "" {
 		return fmt.Errorf("programmer mistake: the cluster name (aka `cluster_id` in the config file) cannot be left empty")
 	}
 
+	snapshot, err := convertDataReadingsToCyberarkSnapshot(readings)
+	if err != nil {
+		return fmt.Errorf("while converting datareadings to Cyberark snapshot format: %s", err)
+	}
+
 	encodedBody := &bytes.Buffer{}
 	checksum := sha3.New256()
-	if err := json.NewEncoder(io.MultiWriter(encodedBody, checksum)).Encode(payload); err != nil {
+	if err := json.NewEncoder(io.MultiWriter(encodedBody, checksum)).Encode(snapshot); err != nil {
 		return err
 	}
 
diff --git a/pkg/internal/cyberark/dataupload/dataupload_test.go b/pkg/internal/cyberark/dataupload/dataupload_test.go
index cadb296a..4639029f 100644
--- a/pkg/internal/cyberark/dataupload/dataupload_test.go
+++ b/pkg/internal/cyberark/dataupload/dataupload_test.go
@@ -3,6 +3,7 @@ package dataupload_test
 import (
 	"crypto/x509"
 	"encoding/pem"
+	"errors"
 	"fmt"
 	"net/http"
 	"os"
@@ -17,28 +18,23 @@ import (
 	"github.com/jetstack/preflight/pkg/internal/cyberark/dataupload"
 	"github.com/jetstack/preflight/pkg/internal/cyberark/identity"
 	"github.com/jetstack/preflight/pkg/internal/cyberark/servicediscovery"
+	"github.com/jetstack/preflight/pkg/testutil"
 
 	_ "k8s.io/klog/v2/ktesting/init"
 )
 
-func TestCyberArkClient_PostDataReadingsWithOptions(t *testing.T) {
+func TestCyberArkClient_PostDataReadingsWithOptions_MockAPI(t *testing.T) {
 	fakeTime := time.Unix(123, 0)
-	defaultPayload := api.DataReadingsPost{
-		AgentMetadata: &api.AgentMetadata{
-			Version:   "test-version",
-			ClusterID: "test",
-		},
-		DataGatherTime: fakeTime,
-		DataReadings: []*api.DataReading{
-			{
-				ClusterID:     "success-cluster-id",
-				DataGatherer:  "test-gatherer",
-				Timestamp:     api.Time{Time: fakeTime},
-				Data:          map[string]interface{}{"test": "data"},
-				SchemaVersion: "v1",
-			},
+	defaultDataReadings := []*api.DataReading{
+		{
+			ClusterID:     "success-cluster-id",
+			DataGatherer:  "test-gatherer",
+			Timestamp:     api.Time{Time: fakeTime},
+			Data:          map[string]interface{}{"test": "data"},
+			SchemaVersion: "v1",
 		},
 	}
+
 	defaultOpts := dataupload.Options{
 		ClusterName: "success-cluster-id",
 	}
@@ -52,14 +48,14 @@ func TestCyberArkClient_PostDataReadingsWithOptions(t *testing.T) {
 
 	tests := []struct {
 		name         string
-		payload      api.DataReadingsPost
+		readings     []*api.DataReading
 		authenticate func(req *http.Request) error
 		opts         dataupload.Options
 		requireFn    func(t *testing.T, err error)
 	}{
 		{
 			name:         "successful upload",
-			payload:      defaultPayload,
+			readings:     defaultDataReadings,
 			opts:         defaultOpts,
 			authenticate: setToken("success-token"),
 			requireFn: func(t *testing.T, err error) {
@@ -68,7 +64,7 @@ func TestCyberArkClient_PostDataReadingsWithOptions(t *testing.T) {
 		},
 		{
 			name:         "error when cluster name is empty",
-			payload:      defaultPayload,
+			readings:     defaultDataReadings,
 			opts:         dataupload.Options{ClusterName: ""},
 			authenticate: setToken("success-token"),
 			requireFn: func(t *testing.T, err error) {
@@ -77,16 +73,27 @@ func TestCyberArkClient_PostDataReadingsWithOptions(t *testing.T) {
 		},
 		{
 			name:         "error when bearer token is incorrect",
-			payload:      defaultPayload,
+			readings:     defaultDataReadings,
 			opts:         defaultOpts,
 			authenticate: setToken("fail-token"),
 			requireFn: func(t *testing.T, err error) {
 				require.ErrorContains(t, err, "while retrieving snapshot upload URL: received response with status code 500: should authenticate using the correct bearer token")
 			},
 		},
+		{
+			name:     "error contains authenticate error",
+			readings: defaultDataReadings,
+			opts:     defaultOpts,
+			authenticate: func(_ *http.Request) error {
+				return errors.New("simulated-authenticate-error")
+			},
+			requireFn: func(t *testing.T, err error) {
+				require.ErrorContains(t, err, "while retrieving snapshot upload URL: failed to authenticate request: simulated-authenticate-error")
+			},
+		},
 		{
 			name:         "invalid JSON from server (RetrievePresignedUploadURL step)",
-			payload:      defaultPayload,
+			readings:     defaultDataReadings,
 			opts:         dataupload.Options{ClusterName: "invalid-json-retrieve-presigned"},
 			authenticate: setToken("success-token"),
 			requireFn: func(t *testing.T, err error) {
@@ -95,7 +102,7 @@ func TestCyberArkClient_PostDataReadingsWithOptions(t *testing.T) {
 		},
 		{
 			name:         "500 from server (RetrievePresignedUploadURL step)",
-			payload:      defaultPayload,
+			readings:     defaultDataReadings,
 			opts:         dataupload.Options{ClusterName: "invalid-response-post-data"},
 			authenticate: setToken("success-token"),
 			requireFn: func(t *testing.T, err error) {
@@ -106,6 +113,9 @@ func TestCyberArkClient_PostDataReadingsWithOptions(t *testing.T) {
 
 	for _, tc := range tests {
 		t.Run(tc.name, func(t *testing.T) {
+			logger := ktesting.NewLogger(t, ktesting.DefaultConfig)
+			ctx := klog.NewContext(t.Context(), logger)
+
 			server := dataupload.MockDataUploadServer()
 			defer server.Close()
 
@@ -118,13 +128,13 @@ func TestCyberArkClient_PostDataReadingsWithOptions(t *testing.T) {
 			cyberArkClient, err := dataupload.NewCyberArkClient(certPool, server.Server.URL, tc.authenticate)
 			require.NoError(t, err)
 
-			err = cyberArkClient.PostDataReadingsWithOptions(t.Context(), tc.payload, tc.opts)
+			err = cyberArkClient.PostDataReadingsWithOptions(ctx, tc.readings, tc.opts)
 			tc.requireFn(t, err)
 		})
 	}
 }
 
-// TestPostDataReadingsWithOptionsWithRealAPI demonstrates that the dataupload code works with the real inventory API.
+// TestCyberArkClient_PostDataReadingsWithOptions_RealAPI demonstrates that the dataupload code works with the real inventory API.
 // An API token is obtained by authenticating with the ARK_USERNAME and ARK_SECRET from the environment.
 // ARK_SUBDOMAIN should be your tenant subdomain.
 // ARK_PLATFORM_DOMAIN should be either integration-cyberark.cloud or cyberark.cloud
@@ -132,8 +142,8 @@ func TestCyberArkClient_PostDataReadingsWithOptions(t *testing.T) {
 // To enable verbose request logging:
 //
 //	go test ./pkg/internal/cyberark/dataupload/... \
-//	  -v -count 1 -run TestPostDataReadingsWithOptionsWithRealAPI -args -testing.v 6
-func TestPostDataReadingsWithOptionsWithRealAPI(t *testing.T) {
+//	  -v -count 1 -run TestCyberArkClient_PostDataReadingsWithOptions_RealAPI -args -testing.v 6
+func TestCyberArkClient_PostDataReadingsWithOptions_RealAPI(t *testing.T) {
 	platformDomain := os.Getenv("ARK_PLATFORM_DOMAIN")
 	subdomain := os.Getenv("ARK_SUBDOMAIN")
 	username := os.Getenv("ARK_USERNAME")
@@ -172,8 +182,13 @@ func TestPostDataReadingsWithOptionsWithRealAPI(t *testing.T) {
 	cyberArkClient, err := dataupload.NewCyberArkClient(nil, serviceURL, identityClient.AuthenticateRequest)
 	require.NoError(t, err)
 
-	err = cyberArkClient.PostDataReadingsWithOptions(ctx, api.DataReadingsPost{}, dataupload.Options{
-		ClusterName: "bb068932-c80d-460d-88df-34bc7f3f3297",
-	})
+	dataReadings := testutil.ParseDataReadings(t, testutil.ReadGZIP(t, "testdata/example-1/datareadings.json.gz"))
+	err = cyberArkClient.PostDataReadingsWithOptions(
+		ctx,
+		dataReadings,
+		dataupload.Options{
+			ClusterName: "bb068932-c80d-460d-88df-34bc7f3f3297",
+		},
+	)
 	require.NoError(t, err)
 }
diff --git a/pkg/internal/cyberark/dataupload/mock.go b/pkg/internal/cyberark/dataupload/mock.go
index f8a2530b..5887253c 100644
--- a/pkg/internal/cyberark/dataupload/mock.go
+++ b/pkg/internal/cyberark/dataupload/mock.go
@@ -1,6 +1,7 @@
 package dataupload
 
 import (
+	"bytes"
 	"crypto/sha3"
 	"encoding/hex"
 	"encoding/json"
@@ -41,10 +42,7 @@ func (mds *mockDataUploadServer) ServeHTTP(w http.ResponseWriter, r *http.Reques
 		mds.handlePresignedUpload(w, r)
 		return
 	case "/presigned-upload":
-		mds.handleUpload(w, r, false)
-		return
-	case "/presigned-upload-invalid-json":
-		mds.handleUpload(w, r, false)
+		mds.handleUpload(w, r)
 		return
 	default:
 		w.WriteHeader(http.StatusNotFound)
@@ -54,7 +52,10 @@ func (mds *mockDataUploadServer) ServeHTTP(w http.ResponseWriter, r *http.Reques
 func (mds *mockDataUploadServer) handlePresignedUpload(w http.ResponseWriter, r *http.Request) {
 	if r.Method != http.MethodPost {
 		w.WriteHeader(http.StatusMethodNotAllowed)
-		_, _ = w.Write([]byte(`{"message":"method not allowed"}`))
+		_, err := w.Write([]byte(`{"message":"method not allowed"}`))
+		if err != nil {
+			panic(err)
+		}
 		return
 	}
 
@@ -94,7 +95,10 @@ func (mds *mockDataUploadServer) handlePresignedUpload(w http.ResponseWriter, r
 	if req.ClusterID == "invalid-json-retrieve-presigned" {
 		w.WriteHeader(http.StatusOK)
 		w.Header().Set("Content-Type", "application/json")
-		_, _ = w.Write([]byte(`{"url":`)) // invalid JSON
+		_, err := w.Write([]byte(`{"url":`)) // invalid JSON
+		if err != nil {
+			panic(err)
+		}
 		return
 	}
 
@@ -118,10 +122,13 @@ func (mds *mockDataUploadServer) handlePresignedUpload(w http.ResponseWriter, r
 	}{presignedURL})
 }
 
-func (mds *mockDataUploadServer) handleUpload(w http.ResponseWriter, r *http.Request, invalidJSON bool) {
+func (mds *mockDataUploadServer) handleUpload(w http.ResponseWriter, r *http.Request) {
 	if r.Method != http.MethodPut {
 		w.WriteHeader(http.StatusMethodNotAllowed)
-		_, _ = w.Write([]byte(`{"message":"method not allowed"}`))
+		_, err := w.Write([]byte(`{"message":"method not allowed"}`))
+		if err != nil {
+			panic(err)
+		}
 		return
 	}
 
@@ -130,21 +137,26 @@ func (mds *mockDataUploadServer) handleUpload(w http.ResponseWriter, r *http.Req
 		return
 	}
 
-	if invalidJSON {
-		w.WriteHeader(http.StatusOK)
-		w.Header().Set("Content-Type", "application/json")
-		_, _ = w.Write([]byte(`{"url":`)) // invalid JSON
-		return
+	body, err := io.ReadAll(r.Body)
+	if err != nil {
+		panic(err)
 	}
 
 	checksum := sha3.New256()
-	_, _ = io.Copy(checksum, r.Body)
-
+	_, err = checksum.Write(body)
+	if err != nil {
+		panic(err)
+	}
 	if r.URL.Query().Get("checksum") != hex.EncodeToString(checksum.Sum(nil)) {
 		http.Error(w, "checksum is invalid", http.StatusInternalServerError)
 	}
 
+	var snapshot snapshot
+	d := json.NewDecoder(bytes.NewBuffer(body))
+	d.DisallowUnknownFields()
+	if err := d.Decode(&snapshot); err != nil {
+		panic(err)
+	}
+
 	w.WriteHeader(http.StatusOK)
-	w.Header().Set("Content-Type", "application/json")
-	_, _ = w.Write([]byte(`{"success":true}`))
 }
diff --git a/pkg/internal/cyberark/dataupload/snapshot.go b/pkg/internal/cyberark/dataupload/snapshot.go
new file mode 100644
index 00000000..41e2c9e5
--- /dev/null
+++ b/pkg/internal/cyberark/dataupload/snapshot.go
@@ -0,0 +1,102 @@
+package dataupload
+
+import (
+	"fmt"
+
+	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
+
+	"github.com/jetstack/preflight/api"
+	"github.com/jetstack/preflight/pkg/version"
+)
+
+type resourceData map[string][]*unstructured.Unstructured
+
+// snapshot is the JSON that the CyberArk Discovery and Context API expects to
+// be uploaded to the AWS presigned URL.
+type snapshot struct {
+	AgentVersion    string                       `json:"agent_version"`
+	ClusterID       string                       `json:"cluster_id"`
+	K8SVersion      string                       `json:"k8s_version"`
+	Secrets         []*unstructured.Unstructured `json:"secrets"`
+	ServiceAccounts []*unstructured.Unstructured `json:"service_accounts"`
+	Roles           []*unstructured.Unstructured `json:"roles"`
+	RoleBindings    []*unstructured.Unstructured `json:"role_bindings"`
+}
+
+// The names of Datagatherers which have the data to populate the Cyberark
+// Snapshot mapped to the key in the Cyberark snapshot.
+var gathererNameToResourceDataKeyMap = map[string]string{
+	"ark/secrets":             "secrets",
+	"ark/serviceaccounts":     "serviceaccounts",
+	"ark/roles":               "roles",
+	"ark/clusterroles":        "roles",
+	"ark/rolebindings":        "rolebindings",
+	"ark/clusterrolebindings": "rolebindings",
+}
+
+// extractResourceListFromReading converts the opaque data from a DynamicData
+// data reading to Unstructured resources, to allow access to the metadata and
+// other kubernetes API fields.
+func extractResourceListFromReading(reading *api.DataReading) ([]*unstructured.Unstructured, error) {
+	data, ok := reading.Data.(*api.DynamicData)
+	if !ok {
+		return nil, fmt.Errorf("failed to convert data: %s", reading.DataGatherer)
+	}
+	items := data.Items
+	resources := make([]*unstructured.Unstructured, len(items))
+	for i, item := range items {
+		if resource, ok := item.Resource.(*unstructured.Unstructured); ok {
+			resources[i] = resource
+		} else {
+			return nil, fmt.Errorf("failed to convert resource: %#v", item)
+		}
+	}
+	return resources, nil
+}
+
+// extractServerVersionFromReading converts the opaque data from a DiscoveryData
+// data reding to allow access to the Kubernetes version fields within.
+func extractServerVersionFromReading(reading *api.DataReading) (string, error) {
+	data, ok := reading.Data.(*api.DiscoveryData)
+	if !ok {
+		return "", fmt.Errorf("failed to convert data: %s", reading.DataGatherer)
+	}
+	if data.ServerVersion == nil {
+		return "unknown", nil
+	}
+	return data.ServerVersion.GitVersion, nil
+}
+
+// convertDataReadingsToCyberarkSnapshot converts DataReadings to the Cyberark
+// Snapshot format.
+func convertDataReadingsToCyberarkSnapshot(
+	readings []*api.DataReading,
+) (*snapshot, error) {
+	k8sVersion := ""
+	resourceData := resourceData{}
+	for _, reading := range readings {
+		if reading.DataGatherer == "ark/discovery" {
+			var err error
+			k8sVersion, err = extractServerVersionFromReading(reading)
+			if err != nil {
+				return nil, fmt.Errorf("while extracting server version from data-reading: %s", err)
+			}
+		}
+		if key, found := gathererNameToResourceDataKeyMap[reading.DataGatherer]; found {
+			resources, err := extractResourceListFromReading(reading)
+			if err != nil {
+				return nil, fmt.Errorf("while extracting resource list from data-reading: %s", err)
+			}
+			resourceData[key] = append(resourceData[key], resources...)
+		}
+	}
+
+	return &snapshot{
+		AgentVersion:    version.PreflightVersion,
+		K8SVersion:      k8sVersion,
+		Secrets:         resourceData["secrets"],
+		ServiceAccounts: resourceData["serviceaccounts"],
+		Roles:           resourceData["roles"],
+		RoleBindings:    resourceData["rolebindings"],
+	}, nil
+}
diff --git a/pkg/internal/cyberark/dataupload/snapshot_test.go b/pkg/internal/cyberark/dataupload/snapshot_test.go
new file mode 100644
index 00000000..f9fae63e
--- /dev/null
+++ b/pkg/internal/cyberark/dataupload/snapshot_test.go
@@ -0,0 +1,29 @@
+package dataupload
+
+import (
+	"encoding/json"
+	"os"
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+	"github.com/stretchr/testify/require"
+
+	"github.com/jetstack/preflight/pkg/testutil"
+)
+
+func TestConvertDataReadingsToCyberarkSnapshot(t *testing.T) {
+	dataReadings := testutil.ParseDataReadings(t, testutil.ReadGZIP(t, "testdata/example-1/datareadings.json.gz"))
+	snapshot, err := convertDataReadingsToCyberarkSnapshot(dataReadings)
+	require.NoError(t, err)
+
+	actualSnapshotBytes, err := json.MarshalIndent(snapshot, "", "  ")
+	require.NoError(t, err)
+
+	goldenFilePath := "testdata/example-1/snapshot.json.gz"
+	if _, update := os.LookupEnv("UPDATE_GOLDEN_FILES"); update {
+		testutil.WriteGZIP(t, goldenFilePath, actualSnapshotBytes)
+	} else {
+		expectedSnapshotBytes := testutil.ReadGZIP(t, goldenFilePath)
+		assert.JSONEq(t, string(expectedSnapshotBytes), string(actualSnapshotBytes))
+	}
+}
diff --git a/pkg/internal/cyberark/dataupload/testdata/example-1/README.md b/pkg/internal/cyberark/dataupload/testdata/example-1/README.md
new file mode 100644
index 00000000..0ea38f86
--- /dev/null
+++ b/pkg/internal/cyberark/dataupload/testdata/example-1/README.md
@@ -0,0 +1,27 @@
+# README
+
+Data captured from a cert-manager E2E test cluster.
+
+```bash
+cd cert-manager
+make e2e-setup
+```
+
+```bash
+cd jetstack-secure
+go run . agent \
+    --api-token not-used \
+    --install-namespace venafi \
+    --log-level 6 \
+    --one-shot \
+    --agent-config-file pkg/internal/cyberark/dataupload/testdata/example-1/agent.yaml \
+    --output-path pkg/internal/cyberark/dataupload/testdata/example-1/datareadings.json
+gzip pkg/internal/cyberark/dataupload/testdata/example-1/datareadings.json
+```
+
+
+To recreate the golden output file:
+
+```bash
+UPDATE_GOLDEN_FILES=true go test ./pkg/internal/cyberark/dataupload/... -run TestConvertDataReadingsToCyberarkSnapshot
+```
diff --git a/pkg/internal/cyberark/dataupload/testdata/example-1/agent.yaml b/pkg/internal/cyberark/dataupload/testdata/example-1/agent.yaml
new file mode 100644
index 00000000..27f4f38b
--- /dev/null
+++ b/pkg/internal/cyberark/dataupload/testdata/example-1/agent.yaml
@@ -0,0 +1,54 @@
+cluster_id: example-cluster-id
+organization_id: example-organization-id
+data-gatherers:
+# gather k8s apiserver version information
+- kind: k8s-discovery
+  name: ark/discovery
+- kind: k8s-dynamic
+  name: ark/serviceaccounts
+  config:
+    resource-type:
+      resource: serviceaccounts
+      version: v1
+- kind: k8s-dynamic
+  name: ark/secrets
+  config:
+    resource-type:
+      version: v1
+      resource: secrets
+    field-selectors:
+    - type!=kubernetes.io/service-account-token
+    - type!=kubernetes.io/dockercfg
+    - type!=kubernetes.io/dockerconfigjson
+    - type!=kubernetes.io/basic-auth
+    - type!=kubernetes.io/ssh-auth
+    - type!=bootstrap.kubernetes.io/token
+    - type!=helm.sh/release.v1
+- kind: k8s-dynamic
+  name: ark/roles
+  config:
+    resource-type:
+      version: v1
+      group: rbac.authorization.k8s.io
+      resource: roles
+- kind: k8s-dynamic
+  name: ark/clusterroles
+  config:
+    resource-type:
+      version: v1
+      group: rbac.authorization.k8s.io
+      resource: clusterroles
+- kind: k8s-dynamic
+  name: ark/rolebindings
+  config:
+    resource-type:
+      version: v1
+      group: rbac.authorization.k8s.io
+      resource: rolebindings
+- kind: k8s-dynamic
+  name: ark/clusterrolebindings
+  config:
+    resource-type:
+      version: v1
+      group: rbac.authorization.k8s.io
+      resource: clusterrolebindings
diff --git a/pkg/internal/cyberark/dataupload/testdata/example-1/datareadings.json.gz b/pkg/internal/cyberark/dataupload/testdata/example-1/datareadings.json.gz
new file mode 100644
index 0000000000000000000000000000000000000000..27d1e4abfb6b6596bcf3c6bc5d774423d8e8ec42
GIT binary patch
literal 29312
zcmV)FK)=5qiwFqR=A38%17u-zVRB_*WNB_^b1rIgZ*BnWT}yK#IdZ=5ujuHjH#K-a
zbhCZ1&+D-d-f(Q-spdAt(vnoq^f>(A4UnS5N1<57W_J}^n1~q-$pR{o$o!C*NF@IH
zrw<?gH~stJ!$&uNUaiCOZ!`b#{=>)cyLo(?2YC4w(zk!!KIhHaz=K(T3d^v}kDBG@
zUzW{0*xAC*77wf4gX`I2Sglhx`5}S`2c!VwUy-~=;vTVoLiiq`{ch8PTVm4Z**ZL~
z(ieYy`QpRtPn(~YVbwe@UD#{#@{4(z{a0A7X3ZkMcWI5gGtcW!&2sjKS*LIBKC9K;
ztoh{&etGq4%g<>5xy@hFVE$!0nBzwt!`d8C`u5_*qFHZVv1<AGLpv?cHY^um9X2GT
z-<s#A)PEk<$My0#d_3yq|NeaZR<{hBu6}LfHqyT)Rugs4^?!dnX*xGH%nP(05@wrb
zy;?8L(^KZj3tPd5XrAZm)p;Tp=5aHm)z>6UkN2)wtdqpd!}5OJd=85wWx*_xG_^Kd
zJ(<lsZ)k#T7pG6|1Y&RQ2}P&RJ#XdP5vMTH5riZZSRe$H5&^WpiZIQnpyF^`N2B_f
zMgA`#wo1a&?BAAYCOZZ2l(c>MYiC6t9(EGFdbWQLZhfd&+ke`G;Dw<72+J=s7yj9~
z=6SI`A#IPi?&<8B&|?`o`20VAYWrnxa5shxm#MM7N3=zacf6lB&dlK{Au~KJn=i9G
z%!J$-md_~GUdz?GS(=9y@oUj9N_bJfq%fFZ7eE+clYT`HCK?1rGA}v9O!+uX{VK3A
zlQXVv6$o2xI{?$&L)T=#E8RO~Pi}noDa;@5R-b-Zh6G-#06VU`uw28VStLHS0$Q>0
zE5i?ZxXOC2?|B;#bgk!U>CPSf7VM{{`P?>;^u&=l;+n^&Bw|UXhPIq766uSU;rD92
zeb|Hjn%n<-;%&cnyD1w)>X$c}{DSYWx<g>|lp?^C!2?RjMX>bT8!cH|m%F)lpUiT7
zJYeY2XK(B2pyQW8-utiV=b78Wz=>iUD}U!?v|)TQhsriou!LEWkX_SkL&XRNDGgS7
zVUqDBoF>!6_+FeG73|w6JPYleNK--m4b;=i(wJ7Tc$h7IzYNt6ySN6dQ+!V@fb}lW
zesdCr<Mvq|T_3nFc;!<9U1;Kkt@pq`;WW9Uy#W5;MZmTVd!u+anIAiZtPfsetYsOn
zEu{)!0+=}ijCldddk0EW6SY&xGMCc?><(@F(a3yO%m%>3JHzA}0DB4E+@}S_r-eQF
zVu|MuunB~`fpytJ`?h!(5k+XA8j)y{mrjKV2^yRS?TH5Bk_Ct<%I4fOp<y6PuZSI&
z4Qp>;|G6p$$@YfUYbY&JcNMtnE1E-Md*6l7m-$b&n#=5mZri8EA>Vy0WO!iWYPR){
zkBJO_<E;ip4nA!5BbMPG&q;o+9~voJ+K76^jng0v!@xKtpji4puL5F>NTd**=5ktQ
z-(=z;H4d`(;%@@<)n=2wBfNAT(GR=0N*n~;GkzJQ@3IyKMS%N3>nn;Ky#vr4zB}D#
z-r(PIw$9rt9lgG=^a4h<P9Yo-cfb2S3u9WhW^TiLSZ-{kE4vpOorX_#cxbHE%sUI%
zSO!da4B9c5KKh_z@;#V5v%5B$d+`nY9ThP<2|o*=-O~8ZFto-kPLodDym|K9jp*w`
z2_d>1sff&a<~0~<5|kt?0TZ!I|A`^WpfuxnqEK><iQ`&W-4ptLedeC2IjAEwCo{|V
z$NN`xgw^aJCvUu@SI!o(MXFBu{q$_-GuKar_^DI&x(^^Nj*d%+QAuEycu>J0P=?~D
zBR71i$#1<Fc||q)Q6WCFXck`|o99zV{<(DN8hLQZKcGWb#WS&-%z>UEpiJMZv#_<2
zl5v$pZ(-&zTdkfii3c6WF89)@FY#eMCtYYBXMdb3QfG{4@LTsbUkjWV=*Aqkharq<
zGhk0T9AJbfR*vroC%9)sgGPt~!!m-6!a^Vpr4I;s@282N0~kF8|K)_x3$`M<Md4im
zZuM>6dMlgd$JWKwy_<4Q9X5^_V>KX412CZ&SgjQVt~t`uA*64{yE$RwsCaUAQmcn^
z1rI0xoriUX={P&LMh{jTR*o<-@1w(nLI^P@qe=os1__!nr%mL6$BFwiN35HY7qe}B
z-i=u_KAcD1F)4goG?G}|?^yq`Xh5cayXp0lYkbWE`0$noU}lS~OwC1E00SG3oCPqD
z+MCS*cpc|UTG-C7x$=S}a5+w$jkRRVaY!RcmK;x(oZ>buO(q&*sCCS`X)Z`TSvjgT
zSD>+`2E6_D4NlmxX|h?@;pNl!vhB);wT(w4Xh%S4i-Ad$lT%{=WQ6xvC;y1EX{u5u
z18>p7yV!o3k`dT$rv6;o|7{lD)3V9Zm!0`Eu*+<`qdu--<xz5v*f)p%_ieEA1N{zG
z*pQbU98n_r?pRJX%}&j%?JFReSLAMh6?MoC*!^7=L9R60eIOsR4)aNQuQ8VbXkgiV
zV)>X7(jb(wfnrO{R5K{sc{r}QRG{gcwRA>>D`Nh%K5@;B?`nCYe(`s9hRNyL^y&;F
z?HnZmxD6<|z$k)=oIs#9C?Yvi98D9=yZAR554gI$doQj#o+Tpt9GP6XPr*O8A@{d#
zdX}>(l(m)$V<0-4^U)Lm6SM@yh)@J$!|g;1iS*;-lpOsbXHE+v_^wAy%ktMHffdp!
zq+KD2V@Q52En7R31*vVaNJZ2fnBWSO#R?=L2w5H^auc<7Y7)ocFE<1dJ(D=_nQ(tT
z0r30RYcKw~OIf0!6l*{v2YMX#U`YNLY~&JYr07J8((JKoN-KO#g{X_`_wg5U2JIqG
z5v1A5W%82A`y)=4l8!>Nil}^&l!0-cCHOE2K7_E~tQ9x}nE+*?36uS~IVE)Y@il8E
z;_~!Cy+7^$`ZBhUxywiMxBZwQxkGmw3vlzycFf;afdA#OpQ;Z3zi!7=as3CD<6qCa
z3MaLKGcG4?AS|>}$^#9O0*g_AHc9|74l`r9io}cs&U?}|#2-51(5T+fnc4aYe4z>f
zZ!Gyi5U`uhe>^AN4F&^Lw$!v%1d}9!7JCd#N16{D3oyn6Or2($j+VuBAs7^SH7YFh
zp1}$b6(CAP9tr(pvzV<D6WY$*wx#y8Y<ur;AX+IALk=R-2?rd)V4Wl&to1r*nKz1W
z0SES2G9?GCZ}_J~e%1B&uIu{+YL?C7?~NU524Gd*?3J1`B^3g!DF;Tl&zAz}d`v<x
zr!+BPw4?JEngK0b8r1;kF>7_{uW(QzvMlHuUZjut0;$I5Xl1i<rZ*~dTuq=nCed3C
zL}LNWas@VO4}xn>Bq0>J(RP6@M1?Z5Mg@odb67E=Vnm6^BeD0hm219)Wy{8Kt9MY2
z5_qAcR60P6#wPQ?Td))dpgK6i1wv@N{hT2{@Wzo_bPo3Rp^mMws_gGw+4t7CoH{T|
zUoO`0rI|lJhRt=Oy@Q42tPm?y@(P3jK?nmzIRhmT18J#MLSaSRt$7JWUX5xF^q#?L
z4OD<A5!oU1UtCU+TA#m^rG0Oal(!R@V^Y`%N@$c2f?&{*CTqd)WF!zzqt>^E5JhH<
z3lY8Nuwq0#Ls-uc_G@{gX9)L`x^|Zvu0G9r9uY+42#{fxQJW8Z8)Se5Ex@QGhh8wE
z1PzLaX*+(sxHKw||MW)&uL|Cm;w5Us%hy}#8kYlaX8mbfYCn%Q$w;=jdub5uxWh5>
z<RV4s0ST8ZB84nyWfKHon+z$ZIAPQFnF`DqzZP+Uu+_E$Fx@@8s?=ULt97%?cLTi(
z#kyjB(ao`h>_?>qHO)lWT=zDMn?O|(l&$*q^DTHe`XCV%G%Z0u7@@$J<Y0Y_5Il88
z2<45vjZ~#K=B!>iKKO3-u-L3ln+x7n_p30EnZa&8%SPB0Rj!tHY8zCIN4&A*d&VQq
z9c*vSU?`)5AVz87H27Sfh?(Rz7>!sOy(I{fU~<^v2GHTBKc)UY)xL%p_8;pEF$`{A
zgA6}B$naw5-5>nk27#^dhO)QhsUe7qgx!hQWaHs{qntnxnX@)Z;Q~^VM)9ExtD%SK
zf_hI6iFA2L>8(lc`$Z9O$9a4eh2!1>W?TV_ii0Ks1H;4`gPe10wBi-L^kT<|QRTff
z8+C`I)}`G|M6FBP+c@Z1zqC+gw!G=!7)6121rjGcWR_E~8e0%ViGZX|4&G?@QuhM8
zT5R^`M#CDzX*q7O7xEpPP|}fdW@sdiQt(vhgas&o36TJIRBDTP5YbK=3wm>EbWfni
z>{UalLPLqjjtr{C!-GlPJ!IjU&)YABX-`Hir<%pU5m82f!nvNGL=hCj0k|hdc`J-m
zqunicX{uQ(qsBEGdd*$Mg^CL$BFp0b#mr}Ez^Pl~A7`sPdr!@L=DtE2%=&pX+>R&*
z786LAh$w~x76KR#7?kz77^pV^MMqp1?c%Qs(P9YuM#YeCndgcu6<JC|mQ};gR?Fw7
zOOo5ME*H)cg0Mho0u7gs!wMq73X)tCFFf~73(NS8VMsfpMn#K$b60Vp;zEhYuF_CX
z^IaLw!9}#n#dCP{`5Jf)m@xC=is+!ha4(UJj#3$K3>XTW8WkCO&R&Iv3JoP9%K{%3
z{;8QQ)~h69;c>QHZmKX1Hy>ybCA4J3MumVIV{)mz2wGzak{f}g_mtCHb3x8CZB)P*
zKBw;<JFb`&{t&hW>sS5OSEkCLJ}<4(MuD_8pDL9c43YtC`d=yx_L@%nROu;8uBaFF
zZh~p9vNh#%|FL?i^rjO&o25^K=$YTyVFPi`g-ouI)FJ|NN+hb81n;GhGzuf=v`@pG
z;m@e%PEF^mZqc>fqRpy4I8;)Op&FzK;amfE!UGG+f+9wOkSgH@mV%*an{ww_G%5z1
zo3D58;8YYS5?L1Ud3Z2+yYBF4_14-4myFZas~lUmXv=AzC?H~ulz^m+xz>aMOQHi~
zG4_tcsKc~tO<c&gQSsuUnXMpFL8L_Fkuq#AZ-v<+Ht=N@e(M`Ym1Ud|lrS0+L>TNS
zFy#nn%_u}em5#(ptZrhrrG+)O7!~TSN_yOWOiG^@@34aE_bl`AiWU9VeqMG97-k_v
zlH3A=P+I$=0_(5_N1by4VJ!G<q*e^8?Q!FEJ!(Ms;QciqTm!=ICLsKBx9M!PdhQ<>
z*2M(?TgQb<gz`v}^Ji!PMWX@E36DB56epga+mlbDI(s!h{2c*&wYeJjw_rat&F9My
z{IH8_KsZJBj9&)fySt7%Msz8ZzM|IAI{@9`yHg`^gLli>I+y0_==FuA7cjDQ3gL*j
zd*3{o*#cJ0{7X+SR(Ax#mF89$oY2`Skt|-!!1!eLMyjF~m}5z&UD06(vnuM{FzVG<
z*6zCZe0-%}9m}M>Ma}nE@{o(-6J|6pCX(h`>H!NEY0!k}IPER4Lw4Mv<N9dw0BT9f
z7t-Iog6~%@+_T+Fi$=S~cQ`kk1fv-T<)Z`UNz!;DENJ9h(1vj4Zl^Y73xB2r0Yi#Z
zo*T-$MT8ou+JCG@s%|?{^~t2ai-(?x=%VAG7YWV=k_<L%u?3d=JFtmNP>6ZYoF|@6
zdz+#MkE*YB!@yllxt2ppPoKhLSep6nF1^8Ly2=-$60JP7A(?U^nRg83`_5b-$<Q-O
zqKsnb*2+_Lv1?Rp7&4E?P*F3Kj@eU@;#Bl^S#X2%oy$kpWQ@degMmbrT))T_DCQ!F
z5CrBtVo#>Muhol7qvAr3S*vhR;h;oh%Uw13KB?bly#qfT2Uo4hXHyLrXFV`1Ef|U;
zaA!qujzvswBBl9&DYqK!$@G7HAL{-Mig%p!cM$CFd6b)$lXn$&PAVrra29htR|ht!
zI#4MM^;Sg}&7?KrhBrS7Q~EA6qAq|%B0DM-Z&{u-4$Q;DGCW*VIti<CT}G-LGMooM
z!60BF3NVq<^ic#7v{wltCXELdacxw4`GQ%k_H%`g5|M4DmhWjPU{y|#3Rvj`0uqp=
z1Q;h03{x5q!CVW(OfsHt0U2HyGOE%Sr=_ZP&HCI<L(TeZOJvNln9wkvlkHozUZe7T
z78+4&S+aMmb@?JMtw4K`BLZB>pcy6XCL#hyY#9~XIw$Zf;B`yQdw{%4F@_E`JkI1&
zY?hvl^|1}r^vlM`q`qR$b~2L;B<3v49Ja?UhNot12-w_lZ(G@0=;9CvKc_ir9%p}?
zYEx_D7W;hA%byawLK8dKFc1=t+rxRTw85e3IQJ>I<OWd%LJ<dyPzefI2Ha}lwPBjm
ziD$;0<J1(O@r1k{IgafxdD7E+vJ|g)lsf;NhxO1C)U2Fi$~{Mn7!F>0n=7kfFv6Nd
zSESw>YK@ro&AIzq4f_X+Z!5-HPe%WM8U#bO=SWA0K}&=U<pwAf5*Q8vR0uk)J`y>H
zJd%9c)d;`y_S}VGhNAWMz5@+c(1O=s^D^`eu@PS0jH8?)<Dvm)Bm>5^14|qO<xphO
zhqP!+`=Zq&evB&mrAc}Baz9aTGc#gL7ju_|U7gHBkD?D>THVYp<5*J15EDQw%2zKi
zne+A$xDZ*OTvIjmh5kIRs-yX{BIYT>>TY988Qz@`4bSf{0|$*vNtfJcr;|g?g4=}a
zC6IuGcUlvl%&SQQM?XG|iXFXXu9{I56iP&PTw~TeUvM8iD(5S4tErYo1DC`DLq>rK
z-hh@GVdaT(c;c4Cc^-`l24`oi0>L*WENse8u2!&km@R(4EMeiWi)%m##rNcb^V=QX
z)!AWQ|8VsMuiW#dE@-`XHXGkza(7yC=0nT*>w^~o+cxYCvE5|0npa)tCy{q31VsTO
ziSx~w`6zgn49-Jvo{FHST??l}7k)Hyo|T{hO8h>7vszH)D;|e?RplfoAsJOXdWc#{
zV0j0|dY@~5I_@Y95wTnIs@m8zDjM{ew`xjNL?{v2;V*2jVP1v7m_RyihBHD(EQJSx
zWx@pSF<8qqU={`WfA+4etBGY>zn@>Rhp%T$cik_(9bBM`wZuUrL3!Dut`G@Hgve6I
z*#G^^0#pcervt>0*e@s{omAKCn)QA2@)e`h6SHcK(sxhPa@kcQ+qHh7707A@vgRgX
zt16H+pN4xinM;WqlhIXBLjuA&CBfMwzzSy)b2KLZw8`A830kV_Zl$qWDEHV<F1mCw
z8p1uG95vOd7sP6AOBHHhMe`=e43>!m-r8&vqlxLKt&-PtqL%6pn%S;}a;;ye8f5k3
z{&D2zkM~qN1R9+Wl5;S^5_AaJBPLK53^mpuh6$doT9g0O3@z0Y%&=DL0$LYPHOT4*
z{4fpEX+OZB!;d^H8CiTeG;M*Uwnp+p8)_wEpc$v7Q$>N1F@OzH5#p6|Y}MdF^<*v8
zF*LVf>mynpQ8mcw$KFjQE*!;Fe$G!IssjmL1!qGxAgom&wCBhjq6Qw44?aqh^{U~8
zs;OG4e`spI);qM`p=yv*kNlN1^I14b@pE%uz^Z)#qJ)c+AcZm!L?RKak_-?w*g$FW
zF0Vvh=+?wM;>!P}GMW{4&@TPoed*sQDIHB9IJgKyUz~G)cGNUSOsjE$Gel_VGFTV+
zB{(p`GZ2)MoTzmAi6<Bu&(u<3K||}csGxNXRfC**;J-_>yUT~~drw#FpM}wRI=$U2
zem6>}KA0ylFPtO-ytW!W1Adn!(SYM2XX^=(W+h?@GbidPp@ybn7*{uSbx*C}@YT>;
z=WuH`9G@5QhzUN!{rP2v8Lh4^Q(Pv`f(9C`0pT(OTk6bBDhF_6&N3IP;2)aI)l#uT
zV+*$Ep{+6dQDZij+USk)vbnBYZf)6ILtWLfvhT8~SAGWf{B(A9n$G*_pJoMSvZfo`
z6Dxf%9&~UHMD_$MEfHcLso(~Gk59Y#viVdk)rsFV%(mpLg?Nv0#v0C8%AW`KY9FX}
z4aDN$Y;+L3mmrkSg+nQjHY=T3AkMCY{Ne1GTB>JgXuTHPwXUIRkkd+;?yMi+^IZvu
zyH8uIE-Z1BF<BP9vZb&@;4|k~NfmkScubMYCk_v8Psu8Vd&=h`I`4-fn$|A&%b~Z+
zy|QKYY;cb=SE;Q|8EfN6w7~<~%ODm=6dW}Sxq?@mXF~%~tKbKk%+*rSKw}HGc%XF<
zRfDX4=qHl_xLi&u%>7}>LB{z*!qq9GC<IS|P++DMrSr(a7<?>~%GL|c1JSE?bbI}T
zE!9=bXUo=KwEm)MkTryPDtS70c%fP;+XXL@F&dPV7DS*1yrT{xOEFugbr7otDQaeG
zxgmz;R&3own?w4kQ{ei;kCojGvs4P^ym-kf1#^yeRg+0I_j$KALAB%*I%s^-xCZ8R
zX(^DUjMy>oRC1rVuqx*#?ZB%hW~siqskPc%Q48oQ2YJU~HVx|mtLuF<HI~zuA<;ta
z41zWnr2#~1G-V%&;44AyE+*sVINJsBn=OdzG8Ab%7=1lS_mE>WH6r(%M~RywMBK7L
za1+1^7Qv;&n9G_;wGu5hGbd`Pdu21*wUnl%G_Ca7n$wz}%3|g9e!fVRHq~FNKF&}$
zonsIJ43`Lcyi(w-qo5)Sjx$CmTP2QDF-uQ|@U$#vmh*npquyqnG*$8JpxZbdou?O9
zmtDR4`yuh@FB>g8BdXPnoaQPsra|jcmFgG+Ykd(w3^9402~O9OUUrW@qwNx1nI+ot
zuAiS)Q-1Mf?1pn^pQ)|RKC5I{u+aij5uJwDh%>yR;8>uRGwrxpHHnkkleAPnFxzG=
z*J`=eqj9adFK^k_QrTAjaCmV9&Zp1#Fg4{~)gUl3AHB~CBq@Rv&T#M{M_^X!(wn4|
zd)l?f_n5Qa2<H9I^}k-->a(JRbK?GUePOWY<oU(Eees^l8~uLP@_(+R3cds7%U1zk
zz52Z3rs2>{j?yU(voMR(<9|<UBs`nk<^Cw$Bl-n;KqCH^&=)^~1ka{i|3!5L4&~>V
ze;VW2iTgOZ_}=T=&9jsK@bXoD<K@Htq<6z3aQfU%z2W8P<fMPG)J;Y_L%1bT7?Y*Q
zT2M-nHCfGxw25+_ZSZdD1NKf+dN;X3ngMr^;q^E8&;3FC<La-MGa-S>Jz`%_@<QC$
z2%a5|t_}BaM4vPM{Q7c!R@`}ia5?dZ*G~q2HXgW19-W?)zYO}r&tLxSPNMqZkN*4X
zABt&3g-3Zb`iOgOF4ud(m};<6ySQtCO0%t>h?=lLW39qUNZ4eH;G!lx$6}@`CVWJB
zIfUE@@TH`Tg>0!xTBXQ-MXqm&24Xb^nv9Oq5H1$^<C}%nbPG_bEFlh!k&5D^F<_l7
z^=BpoomFOWI#s+fW_gTwT(R3-nEJcj2BY8xFh&nmlpoIf<$lU}?KjK#W*GF^hn!7D
zr?^iyvn#8%E8)p%i!d^ffOeHOfMNI}+30oFK?grA3A8eHZAgXcmfKZWWQJX8QP!R9
z`>Glv8^yDtf`ZS?f`~=PjbyY4p`Hm6HNt@Pwg{nh7U`dzejd+MzIl)%WHm~gQDquL
z3?P#hAP5y;&@{j!3nWI7{jC=2bu!PayhF1EQxQv_!$gKxn~1y2wG$4c*XYv>@n8du
zP=K_LJZes-1rXQCL}dlZ8WUZi=fb4H9U@UZbc<b1TvXf2L>GjP5fnwtC#>**rj1~-
zV<uXfjGV5jSvOnNdAo+ENIuNl*=jVNvnNC(4VsG#LJJPA+<>$uTjvu^b~;)9JDF$J
z2`~?|OEpN4iAqwCc#g3g9%U_f$^()n+?@!ghP&yrf!ED0>cP9vyao}hx;ilUq-aQ?
zWUA00iXuM}CIkM)L<+9-RIj-~>TvXU6q}rp@~~~DCh!~>wUH#;@RExlD6SWW&>H=i
zl)*`&DPQ-fLLECTeW#1t{(1HOf_^G1QpCx!W~Bn%f#+I6<TOd^0;hDH(e$iv+_kjA
zBJES%(Mdcm8lEgLMi8D+QF?)>Mz-Tfph>$#S2pbP2=@6g?~AlfwUiGtnJS|MBx}$*
zo_p|#5pdoSuc-2w{F1(iC%WmR@liTSr^qj_j+I!Pk!ZD%5G3<}%LLIgksu_`V4RP*
z|JZ<A7J>smo%38LBXROV*2Z%hLA7!6{;s_2UG+pnR_`}4@<bwfF~rXnghOUyY{`dl
zFJnYHW9&M^G)`a8hle{avfF28Fg)xJzcjN6t-%1<SWTRgkVQryAay|Y&peP!H6esD
zE9n~Bq<Aq>hXF>XDGu+by?7Y8lr<4(s%(f(fR&;gAi@Qpn@W(Ppwv^Jq*)RuD@Bzj
z#RfMmvR9H~ctxqQTy%D5>d*gb%fD{Et!=egx#F)!&u;1JcrO)1P+}sGRN^FFBPB0M
zN1-IkN_ZCIx(BZ62*tRJ5S{pN@*T5!9M%FzMU8y8OguZLLFNlyE|E_loq#||3^HpO
z^}18?M+z-o910a08APz^?N|{aSwf^rB2qmOy$9n7Lp~9irbbDm6l-h{#H^2yq931*
zN}*-hf$(OVf!4Y*CBnJR$haZNjMUD?2!?wFR%b6Q57y=BcBXYQ%1r9rShe(lyt{hY
zFl%&Xf`Zh_mBa5eSj7X_Xr1;X=3sv3%;F6To%BynN2kc^7Mabe)*<0pGEus59kmif
z^0aukk~~q=M{TtX(``QMW~$o7G`p|rfvc$cFv-M?<Q&mJvOFS6(;mEa5hRh^Yp(;b
zORA-q!3DD$oIN!%IAarPL<grn<1q*!XLp0r8H8{a)2q0}dYU(TiWWfh=J~Q~9FIO{
z_W5lwwL5v-<yQdmH}-rEns#$Kpc1}380!d9&Dm_snR1`O=dzQAjQ{geK$Mmw?irzG
z-IG9d$<yyU=^`C;HC>aI5oG=hh%B6d1PWdtPsmhjVsZ)Ot-EpR_RjCa|MVIC_5v+b
zbLb8gQIntzm>38MiNMB5!jVv0+&y_pfvr0bt&49L@wNrRPF>C6LLh=Fgq_r>RJ6@Y
z?O_%`IWDQFr15s$)29t;4;Nf&U2~9~PMk($X^=S!AQ(f}rUc%Bjv=zFh!oSuk*=G4
z>h_(B-d40rX$cucD0uiRxCQt&R=tF9XOb*a2|P+xv|I$3U<4pW$TD!R!gNr2?MzhX
z+vd?)f1sPI7SSL~Td%wVFB9%RQBtruNBm)lwpQXV>zwnRX`_Zm?LEvss^(BWsznOY
z0?WylQ#uhJ<bYr$Wn&e!o`;nUB`#9x>H+k$$OAOYUzYLx;Ffpyt=uD-`BORI0V&Pn
z&u5d-N&nmJx|mwJd$TRN*|lTju`tRtbI_R5R_SQXo{~rJArdu8=u&d$83%g-+M{O3
zev^WvnC8(YtCm#*@g%U}VH&2>epq--H#61yT2e(LK_<w;Q4k^M%T95hqlvK;<mWYS
zU9H{ME>n=Fqc2|{9cxq<JL(d*PY5%Nb{2%qxNMk`pt8wU5XHD&_d5GJn+(#S3ty+Z
zzG0C~{phZ$Gs}V}D$&0s>C5@x+JV<f0a3nW`jv}fNtxv~xc`KM`)PPSy6sffFSLI<
zE4IMU{@s)M7=it2kVB0{k{%+m_af>Mm;hw#4g@n%XePa;>t1<V8vq-PkP^B}iPwu_
zp0lF`1i-2jFHAEd(Mdzl33pST99SL^;mBxo%ADi2y5{z&E0&8cos5RCP~y&cb%lwI
zQf1`mK!u6O5h(8Hk#g`f1jcBRk*s?y<HIZE?x|@bY8ncVsNqO0gX9XViOhlHG$7n^
z-Uh0olj|OooYm|($APgATt3z4)9I{<ps}<=aS*z6=bGd}IqwpoS(v=;T%m6F38$ms
zV)X@TPKJs!T4Rv7ahXe*HpyUPkzhtAr-KSf^L2M^bv$l-9tyRdAQ)S0cC4n7-f+Zg
zXeS_^;PT;2fl)-F(+f@p;|Q12hpn!giR!%E`23exi1TWA9W75H8U;QVDZ^3%;4RvU
zWW?Ld&_L6=mo+{dA5^~U&MNwvXd%yv8{u)eXf%e53h@B(z;pH%sSojd-9@1usjcCn
zVB;cq(a<Q>;X>jvVYnPX<2nLCGyx}_1CDr2TF$jx-4*h%XwqeN<DcY@Mx*2V1(R-m
z#MCF;HxnoBQWk5_Irv?=x8{!S8~ynaiJAHiAkXRZ+brQChI87V6sA%0saI2akBPj~
zgfMFY?n-V|zW1(VR*hOz(9v3l6Umf8-<P=us|mvX9HWg+OOe(cY1g5-hUY~-5NucD
zglt%jA|Mg62<L=N0x6Le7u^t^@sv1O_e55mUg3`eYoJK$FF>8J8Z^ihk@ctm(Q1nb
zPD;esjsZz3gzUVGbV(R{^*Z6}RU;bhXg5FNQFb)?g59GReo;;CGw0~>GbH!;%4@|S
z_qh5-mW8tCw}TM>x+BYS<BLFCUf6gmo}pOsV0Dw47=G!?4~7X)A|g#EB^XK3g-Fh9
z)=Ea})|sZ4;;q^kek0ydn&2CmLf4`o5`1)MgjCACiIQL=$CaavWx`v@Wh-lP^Wxt`
z)?_YHa>Lorb>(v9Oy(NuiYl2jWLNi4G^q}iXA&rNh5%ujf`~bR_nv~c)DcaC)o$IB
z=ymA*+ztBp@wltHc+x*BqaBY1{Za*m?&tH_B4x*`jV1#t2hSqqiVQadF9I0K5=6n6
z#K)0Rvm{Zzb}zVj`7f8aa{b}QyGvOcVE;KUUb4W|oTFXUO`+yKAG|Nr6jyOWcqAUO
z)kW5@)RJ>%Ks&~j#@9?*=f>QsSn+)h3YjksS}kUgi_nPk5|S@fZdzpY{}lZ{bIQ^v
zjo~YsZg_-V=`sjh?2o+-(;DpLJrgnD=9^3g5gY}REyJ~+RTPqF%bRuJUj1(gCr_Rw
zocSkzxM1Z|<DQ30SN!)oGWq)*ec9>8?Y;iSAD!NI_g(j3dzWl=I~RW=lb6SI`(3y5
zS7&qQkKO$!56BjO*WKPYAcJ0)9&Pnr9Sz*@&r|=gx3zanM;$WZk(qCAH+Sf}&7EE(
zoz8xD{I{p$ZTI@%<KFRBr_=rCuie4cMkJF@oqfBrO9!ua_qKYS?v~iwKR9@E+@t%0
zqmg^H{b6^w<GSBAzwHm=U!MK>_3iuZH@+*+J}}vdueRTJhP{Ix>)`L>jf36stN3k0
z?hQH{JDYUV@%YvqQ@(fHaUZ$|{LSm}PG@tI>~%ZCNaUxz_wj9KYkaiV-8oO2lg-_I
z`tpFt{oUiOo!;i**S(XYH@^3Qyc`VPzj+_~9oi!Ye{Ao&{jJw;-ya;Mz1}Ar=U;C&
zzr265f7JKggU|T;c4Tqb*&poe?rpr@r8{3bbZ7g+$DPe?xA$_lx7FM2ZjyK1KmY2y
zjvE*6?M^m48I-?mroP>Mv$@?*o0RSM{_niEx%nm1*!}SB=;ZDGWMh|&zZ`svU&FpV
zb$=YGNXFaY)kN(aZ^=NTdb>M54qbBU`Nk)F&&iut2jhe8HvUWhj<3G#?d<Qo-ap>@
z^WDDf`_~(zz<RG-Z}&^s?@b~*dfn-bzjU{@&iy9c>mGOByW!|-Z?p6D<?%tU%Z~;f
z6373~-nVtPi8Srr?_cp<@3on?IZ0yHdM_dgkdQ&4p&QX_?F*ohu{a3JvJU+Eukayp
z9LaGqipNPbHyN38b=6Z(RaaM2u|G{rQBGhil0`O6=m&|7`j!*yuovu_xTr&4q*v(z
z%YIeVo}}IQGkr_s{y36UlbD%`Y2Fb3!-PsI!L!14h%ufT?1BW!DsKAwD7UhZ;EzPg
zx51)sg`ySNvkwxO8B2)Pq2|tERlkErHF1#k(O($*si!U6#<@-}>zWX}r>1)2<m}2X
zER)L1CiFDS^nAq#EnGi~e9_Y3IxjHV@yM(MS(|jkZGS<%v~qH%8gCO%bLgn(2Y$95
zEVxC9Cc8OX$Aqo}U7I?&dO;c&zSHqSY3+E_VywIoX<#9n7?lsU;u3yMf_mT*5%iMx
zZAx<(d&9lbWJ1WqopH;R`?^c}clzfUmIFFiPIWq<x&ePT#urE&*pJtm98+Wsh^$M*
z=Z-DX)s(0Wm${OR3PdGc@!a|*n(1ni<G!C;RU{kBNGd>YlP%mECy2p&X+yZT;m)!(
zqi!>4_}Dh>y-&F6RnD5^#xiL#i3K~*;o>8gYZGKJ4Jzt8qg+b#Tm`$Y;wqEChV690
zMy$Y~f4wFt3ZIwahD&S^5RG{vtGz{`6R=}~s2`SNIckcIBki)3l8L=wHmjB*9$8f^
z8WTIuE|@spct}}cgKm={Hm0NE)|P6^E&5SHEj1~O#+NeN8B!wvoefGhijX>XN=wH%
zubj)e@`kP$mPRL96c<TFui<&>WWTmkvfC3l*PivApmfy8D0bljWC<8SsFkHby~b64
zH$m%}3wq$@I{<|ua7;rVR5eM<-N$6eOs}ZNykb)a?Axh|oR-C{Q#r1U@HQT-jbv7g
zLLyFB$(DAmg&bK$Sk+^!i+jMo<pilkL|Mls%LzB&E;D26j9BDKVdGTH#<{VjhBFLC
zg-RtZB_=hQ$ebh>D^fYT$Xo&%Xe+j0Cg^UNn7ituk0uY;4w&p-x`=vIFHDa(eX5f?
zT)%La|NYuWuZx=>a1P5fZ=C~Lec>EtW0lh79!rTtBx?l&sd$KGd<25h`O+<StM}y`
z3iy5J99CaC2c!QIpby}kDV*cz#oz#-597vSv@|vs;)e!6I*5Z^;EBA%=FXm)g&&XX
zor`MGT{sH>SS!jYAtsp+!nSn3Ub&@KyQMgwV&QSo-h{=am<B}-a_}9~vN#2Wpib!T
zwW%+SK^9q=cxwi-^kN`)At-ue;9Xo~x74kP2Vlz!3P9m(e8g^TLR2CbMml41JR9%8
zS@eUl*hZqh=M`ODi1Z>v^wuqSKtx?(L|X(!AHcG=BTZ58%H9mh_0pCN%x3wPR*uAG
zHHv3+;0I(Ai^X*?BpW8JCHR&+U4$xG;3+ryu47_{%<zB(;7kjqP{{%rIC@ORi0jHE
z89EoXvD{2&H5fP_a^JY%#BL&KJ*5rSaas4_dpjxZOKxD5k(`aEeg<v_fWpL5m}gsX
zcDY+IWvcHC&oCmktrZZCOntH;WZXI;IUPBMFZRP=&=Vs7Jbwnq0jzPUDKK^x+pm{2
z&rqy?26QIb2*!Gm$XsV)p$`h?*+#!l$mOO5SPbWa!8!o$clyh8Dq}L<aM2jv=@iQ3
zfPnfh`qwT1G)HXXQo7^8`eT|aJFn=IFh>&~SXL-oK|EtauPAoBG=N}n7NG}c&;oet
zNUk);8(Krp$fl3B5t#TU2*f2X$NNOa@H<<EMK(yb^>e$aq8aW4G}&><8qtLlQB-fj
z#TXpOZblcF(Z-O&oKtSPdjPo%H-!|=axwixj>2Y8)HAQtuIxpzXHu>{J@(W_sTiV9
z&zj-fE?6CsM1^ltomu_(tiTrA`}HOd?{VudESBcR)Ghfc39?nxUeokjJ8J+a`#y3&
z{<QCpian4B2k@#0C^rZVx3T2h#HPJ#hXS0$YO<|wfvk2?ALriea^o4xoe%azP3IyC
zcpear1G8R5`Bsh*RqT;2^M$bn*lRr90uGk|==N9cBI_qc5!r+F4cN^Nh|(Cy%q}Y2
z%|v3RJv44&g9Vu4EDY4h(bc`}_dj|?vcf}q<s&`{O48sUlfag*k|t4oPb(a_eoB{W
z5U6W5bSIAF7%r%SFS_ECX6gmXrZ``ZoJH8g!4~uucc#RZxxvQK0tks&Uwh_u3;Mir
z%%w=0{x+so1sH=_<)E~{CcCUnN8bS<b8=i1L%+y;8;pGFJ1fV)BXV`K2a-EUq;<hY
z)NrM&W>sy51zwVcwRKA?^oPYQZ!(Na1rZ<69$|S<GMSh>0upLFrdION2ZiMYNhlsC
zhQ9Y{u>n1iY+c!gh*PlNMWnY*-@-n%rc|mcrxZU1K6jH*qJ4Ci_fCt@DIOg0MVJ5m
z@3Xk^Xu#cuZzoNbKFuPvX|t$U-={mjN@zSU3j2RA9{uZ!qu+DxUpJeB?Jl0b>C^3|
zURA~R>0jUquX@0;Y*%bO-upF|T-Cx&bSLW9oqpd1;&QdTt-te{N0s=FOI|0WBzny)
zZ&z2Jzw{JI@HPW?sO0yhB>3man7^LC-#l8j&uAwgPE-T=qW1jLJfPNnVY5aVDal;X
zgszH`c7tHlF2(0<ZC8>?n%tB4^Vy$g0I}ZJpORsp6Xfl8yivmNlnEV6p>0BkQt>Hg
z4+;!Y=cPT%?66_8WKm3$5hH=VMNV0}QB?zPajJk6cbq*fms{ZFvOh~EUQinhg4Blq
zw+$+tz{vL$f+DvuT7NG_#<KlwKjS4Wr<Xl51O6{w(;5GW^)~x}S?bmwsX_Ksx<3{?
zJw`M_eQOrwM(tCl<x|xipQ472XIUN<b?7bNRT^U%mZI4vCA<f&F(@AsIL38A@xabS
z2+sK+of#v75Sl{Z4l;xQn+|}>^&_J1Jz@aA?;A|)e~d}74s*P+b64U9okXa1SP@QQ
zkk!<5SEQ(08H~7G0PnCyZUF-^(<N*;d)~%5raA)N=GwAz#TNF?mLOh`YvKgi#v3}J
z+u%_^R1_?V9DH=;2UbB4GdxKgGnwO5-_4i^QOL|1@TwTc2$*yL944S28Q~5a0*CO~
z)I}nU!#zKx#du3}1A7DQF3|*WOXW#xh-tFt{L}<~dY^z8@iC$I*ZRnUK%Sadw>sP`
zt|L>ceQ7;T;5hj04xyJ@F1Zsv1i1irju9Wa@}oShK8#u4E;;<mDZCfP!@|L)F~X&K
z8$jH_M|g$x%asEhDVE`RVzMK;woiu+@;)p@x5=yvNvye~(jccFU3s|!-Cm@mzVU|1
zJ}#Ag40-|g?#CwRpw3yW^Xo{ac{;Q9ezjCUzw@bK?7hZCj&I-rgxj9nZ(?)3#6voX
zWp_U{n9F<%;YEnzl3vjOPr?!c|L@@;rwOdjMtU~VvyuKZBYi)?Lb2Qm{A!gZYvF#{
z`hf$yj(EMYIO2PG;kSwp4i;hk*lhg^toa|#)^}g%ajqze)KSuo(Cv0pLDAH%5cMQc
zkmD#y;Ye5MJ}=WfLJ6mJbp7Q>z0Jh&_p0VAw~IW~dGTObweYFF>n9XgcaCpS-0O%u
z6-7x<dAkmJt|dY*j?}hQuoQ75rm_4=GXJ(CchV`@@xzp?|AZVEzGPfPJ|iws2TWS;
zB6D5irjTvj>XVscx&ZK;h#oj7^WNdKnMx{8sXhrMq$aeU`HQ}Vi7JJq>hThTL(U9v
z;Mgtsl;&2SQh;IeX786ZI1!DorvH)ZMuDqjn-Z0{J_e`3WjOAnAL=PJv+Uv6_5HE+
z{V`o7K?zQ*!3svWPmxvm1#73t2p$@PGyvjZ?wBna74gR^5AbN}8;dBX{@|Vr+>@BX
za=ct4fp4`$MD!8H4!I*xR&+R9Xne{R`WZO8!g6z`@{m2bpAKUbm!aem>%x(-9?*Oh
zl!cd!>I-+l*Ga&G2%H=#Xi4>*9Qk-fk*EXtnFLiX(pmo|^81l*V#C)(5oBPc0nbBU
z-(Mj326LAsrBnGsr(nfcq(hE_@}}`jtMB;5#F2^xMYU?nS>X6i#Ao`(L*wmq$Z9IF
zbts7>^6h4jt2>9RD<>#6Oj55d<czqIq1dCk?~$90Gs`MAvKF|^Dj1JzJ75=H5jJjN
zT#&_w#>>eboG@k*+hCLJVl!#zET2r|{w6g=B{g_6C2J`jW=0aIAa{E=of(s;RLyu)
zvx%sS(_lA>#ROqVTt;+^?8-5K92x1XKgOn(g@KDe*9PoEU9-UHq(NagVt)(g@0jUK
zT%-luTYFSzS%{Jq3)H<g;(K2#<hXP;{*a3PjBM>8pL(THOuh9Q^yCJ{G_rHeA1ty3
z&&7+hFqVnzD2_C4xUQ}e(^-LBB~KT@HgKN+F^rqO1;j~riS{tfsw<Dvte|s4cV=LY
zupAI~(vm6qiHK1d2wIzE@3;YeycS`?Dnf}AQYQ-wS52z0Aw_0}h$w8KZ-9i4V@Xs&
zelj);=3PFY>Dmq8y>tfj6y9TKOS`ROBG3_PMmbwX@SUWgH(s8NUD_W-!BS2t=OQWB
zQzzFDYpg6biqRmiJz5&Z1g)7X+ai{^1ticV@W_A?bsAjCv6(SG%ouJMawM`Lr3KGX
zfym-cV${=EC#pww9Zz&BUhyI@^a-6gAw{YM1bP({?PEagty``e65w&VFm8eHui8wl
z8`KUrAn>5ejhkCHOus~Sx!XrWdJ&t&Z9EHC)0rjNGYi|>df@9kr={9(lkZtkkAUn=
z{ld8bo0I*3S3Y4<T;esC$bL$kg<lj?E-5k=F^wgbT}bc^2v3=r$v$<rY*bW(${BKM
z`Memb(Wo%Ei2cYkLU-1`#la0?iw{8KwY}pr2Kcvf8hQ-@!mS_d#&NKtwj|C%#1N2g
z!pM3C-**uZdlKf`#xd9$mvt0SXXOEfr+@`v;mj`3Rs`JG**YC3Vj?n<!<*%+bU}ys
zt*2n`oq_nYKF7c%L>#&L&YZ#SWoM8V3WoRcpEv_|VNH2y-I9vsfnLb1!9)<fK=d#q
z5WNhFL-jS5&OsLKxgIh$txO2PS-R+p(-|%(DsY%P8Ey>b=!)diOo9N*c1y#aG?%+X
z+D_b@O{2;gWB5*cu$J8t;yYbb{HD0FQBP!fRzf7J;L_bB22=UW*pn(7VndfBGc#Q|
zn}E_rvBdiT!XFbc>%^Beb0xH*IVd#c77x^=zt?7|&rRGoA|~QATri9!hmoS_y8*lM
zbfXFK^(Jh1pHOQTQCG!7wqQoxcnhn83%40m_0kX4B{;K{i$KmZfWyj`Jc$k?DRWrk
zSiXeU01QJ~Sh+9r0G!r!QrcT*$lQr&G-=5`g3c&>Wc9=HMkJ;_Ne8_>M||XYH)<#@
z8yq-e0R1bnU=Yz4B&D<yFI+H9%L*12OAyceTywdf5g&<H>8L-8BxAvfTx0=XaAI9E
zce%xASAvs-v1iPmIXhfsJ22rsqXs+;KzwE_F3`>i7PR(CzVVD=Mog^<XV{>6J@NDP
zHISb+0`6k~p-`mqpyUhhNF)vC5`L(LCf6uyiW+R9;IcDLXElartGHq}#NaoySWbMo
z?z8+(AIAiu^*gd6@c|w6w_eppWN3*O5;jAT$#itN2?kmpkhc!=b(rRsd~Yk6hY8K7
zZry@T=Fw$+WiQAU^fmx;unfv4zsc^_tw6`B{!QRJUQ~_&xcXPN$W$g}+o!*MQ++~|
ztn0y-$EJ3XBQMaHy(mPcC#oGdwKL<3*e`ZL!Kb#7@24}6N0aYDDHl@!UVlcJU0v?N
z#_?jaJs*G&Y%nq{{Wz8w9|4!ZsToD+XOkdT7sPk29N8h*)b~lwbHC}EHY((>boTMW
z7}y``3E0;(9gR^mv{5*#Rj?=57xTT33WjqY#4}@T&x(uKaQfIp+oYt-*WDF3zol>P
zDj44#N2FndE%^d(cwlb^6&^bxk!i{0U`B5)(50BPr55?+KJ+<drrqG-Sf0pic_A{(
z*{`W%IEc!Qolql64I}g<=7%H;{D#VQkTrp^1R3;e-ybVBpd9w8X;;P#76B9XH-LSX
z6b!9^Qr5w!-uft1Ba?!|{;+aO(P9Rk5IKw3j27M^+XNL?!6A0S%jGsT*CG(H_L(+d
z0CP&sypXw@fOE31v<;r&DUiYu(5!KS)QadBwaAwSJ3AOrGz}<=jbu;ddWtEH{1Fug
zi(GNU>^d^~GeWFI81(iwI6roEgXl<Cr)0Z}Mz!kuuAJt8|0ee$;t;Q4fR|)Xb2g-V
z&F2l$23PmK2K<0N)*XWs*ur@+bSXCOeH5DftZd3F+ua`O_3)aNAFu7Y`>eTan}_&D
z$ooUP&%V%R8_7LQPLLufvMdQooFYM+t76+Hv<FddoTS?G_H4iN1lBqHJ%_*N@b?`4
zp2OdB_)BmR-Bloq7f+pm7pw<<&R(FbZ|n@*cKM0*jqn%3NwWq}eiHr`93U63r#^K&
zQVhJH{-UIRuz2_;LO;>)sczhz>q`9MftIfW>Y}u=CXSKiKG7EbFj2fx*$2d-5FRK@
zq&LZ^01z_#fP|AsFCr$<1{_Pp0<?$wfTJid9c4j+3YP?$!sY%dF!;(g@ir{23KSG$
z*~#%D-zUWf8Gzh(khQiK_G%&(H@;ghNI(aUL30-riV^L~4%~fG0-bCygsAI0EKw7e
zJHmAf;Q-fmh1+E;*RfAkX6~GX7*Ray*LXxhemg&%S?*xb?}rVONuJd<!fV@LSupCa
zScNO!XWI)&+1t6br(%JUQU59?*$l#aJu<<OE$G;*Aaq+m*iUwPG_rR<E^cizoP<?>
z!{nlg3QEWjXUWVG-3o7rxm^L+iUBPoLi>H1kEIA`{gmwLxGF#{Mc;2H!AAv+g7wH3
zxf6piW67ElcM12%3eZ<OH5@0QxniT9iXps@bjyHmzlclfCUPipl0(Rb^-x+bQll_P
zDUKkNcQ`8AWg&gH>><!;80$m=TR5=1g!bWFW2)mm(;q@u9~-!Y@YgSvu6POKqR5HC
zK?kj+Eoq~R#wu+OLT!X~(iRPjIKu#@wpkBA?`2$Sed@D}NX8W%7JI&Myg+9Q>}TzD
zvWv1!JS%RdBc8br6VoKOMtH_U2S6Yw647qMUr8LcA>M;-+i`BG5N2*;BX3CgWq2H!
zyQ{dUB}Q$LOU@b`aYT`_4W1GspLPaq_==oKOqs|`q&hEz()ZzUp*lf*<r%EQbl!&E
z>vYtvGGL8Q^esk?pO9oiP@D3>U`N)Fi?k26YqeG0F1cI*;gM*t?&H96-GWY>k%Lo%
z-ZH}X(I}B{d9%ZEmPh5KNZQoWV13Pfhd3YV4LHFm$V(;&?9<Pj3(-<r@C64Y6L6|*
z!S+Ee?r@bOXV@QuW7)*A<N1_rJfi0D2m-f-wU5QV??~&RD<``_UhJ{7Z7^MKrx31r
zK^CO>dg#dZ%FV@VaQL=ATCP~}L81kpMq;rB`MMy35~J~sG>HP*zJXA-bSq<P57t8_
zDHELIU69unyywR>SdUW^TanaLAQTLPMcx28xJe)o2NJZ81FC>ClWb(&QffD$*k2MO
zRKPwE)h*H1f!tEEBbV?VlA!{2E?vZPR@VKA%+*lli=fQ6et_G`W+fP`O>Wr8BVZ>p
zYXhNa5K379dUA~$3v`#)p^UFD<o=G$>R?c1I~K5tNlwF>9PBVr60%;#bSz>WucoF3
z7<+fE%Zm?UKz7@S_~CU<>(2;v?{+8oX@TzX$z4@VCAFhOg4S!hXSG|8YhpJ633Q~6
zGEcg_uXZT<tpnZj(%bXW+w;=f^U~Y%(%bXW+p}{xJBPD#I6H^4bNH>D!~3aBf3l4A
z=d31u-9pJ{i%21kdcOGeTdnkd!!@QiX)(X+kAGfj`dZcc$16<L7xux9JM$ijG@+ZQ
ziJ*u|B4{Y)0-tN0dAmP(bn3jt!~gvY9nfG9)A!Z?Y!yezU(xM4TduB}JKg;&@7=es
zJi34a!&jVprv6|$@w;1>o@~d2f1zvYcR%qL?VI{HXdO>m<-1>lcG|X(9r5_KE1g6Y
z6RF3AUXrGOo?0wuQCAf@S|=3~gg9X7%jmhfEz&Q6<o>^dI(%iep8U}1cPAvv<%(Zb
zPjTeAKmm6T4BO*ZI}fbs@ZG=YRQuTyzUv7`?|ugyH?O-HsA+ukMwbWrg5DjttpOpw
z-U;sRSRJjC?7+jnrH=o~DE)jH-huD|Kr+A0SB&O>JpRwIqo<pvc>gZ)8&gTIa+1&P
zaT2O49p04u`&Q3Bbz$HB(4XMMzUN_I?ARk|e|_Ea`k;@xe}n+ON&4$MT+o-|5ROhI
z{^NN^MLfP&jNI+YYTN^-+T~qAL5V6vvdRV2nadn}Dw6o~y<&c%2Radur5hkzCj_#C
znEx$DarOp}ulQ4icy=MbU6gg+rRX;atR9n6fAc*YzDk6fw(Ea&dFp-_9r1X-3r&_K
zl&Yf8YkixNq#YsZDVh*<P%oLwqLjwZ_Z)pU4(|2w)RXMrY0&?%+y74tsEVtbBS*G(
z;nctHT;H86&w<sm6Arz^7s%P}GWDP{Cv7d%`&&KKFy<xi_T`Ix+U&P(0r5ee!oy}U
zU+KyV1&h0NTD4;$!0@#A3TV&@1UzCpBh?;Q-KDoqoYs<F2rBOO3|2%{kUQW?6osdP
z)=^SHR+Mf>hSBbJ-!QFpLd^ZPuulXT5Z}$OF3YI?R}uJ6#hD)^yyy_&eKgc!nM8$9
zN9#<0AbxYzejljM>g!j1ZkkW7yjd?-;P79!ACYu?KO#|75t`2vL5U+#P}I31#FE+*
zv{cn%Z9eZx+Pk&TqqnJ-{QVJ@m!jYLn>^>>F%ALTpTq+Gfj|DV;}>|hh?jp?OP<~c
z55I(als&a$l#lmgR=TRJMQK;iVl{5}$d-j(Hvt!!#9D{9!AR%%7OL;Y>|S(?&m{Uz
zo!}p1F=yU<^d&!4(cD?|-w$)Y0{B=E_T?QkJei$5o`(2m7$F@`SVSGI(}}uB5Zez^
zx^27m7)1h#dy2$)gjDg@bIm6;<=2waw@(3l6C)3));pB&d2ZwLxu>7oIL;$qVtsF^
z^*>qiNmTK6uk_z_2>uin@dwRGoh$!dyz*C_pjt2Uv|6Rtx9I^q_{XzS$2aJf(@r8K
zQoG1oRRv`(rGlo2Jwc7rZdZ&YC63;0*~P18rA{_|a<^4@biY;j&42F3>^zzBQ_?8f
z;Z6(B(<q;Uu)CEQZ9V6G1^rbuU%n<(s&C`s>g%1_4u(qV@hoPNphQdNlF*ZSopyUG
zO^8GZ3EfT<iAl<3sq=0_rI)SfaX~^W&vzOh{4sWOPNp1v$!E!w&n)NfJCFugNTcc}
zWKX^>%>1+-smFOLcRE7Cdt6W?c`o$iITCtm)ImxoiMl9xuaNKt1q2UM2d4^_-ZT?)
z@D1)uJx?2>zDfD$x95J&0Q>afqjBcTyX?Fw(ERcir+{Wz{9F2gNb_ffkl&Qi>0`(r
zcw`NspRk<&;MHFg?~Br3U(?1zVdj@RJ1O@UzS{47V~3}Iyc?AE!ou5bXC5bQNuw;r
zf+BW+`=WR*NV2MFi5z$1&Np_0dWVkglfd4Nq`v(m!D}e`VVBX?Hyk|jNDvOY$cop?
ztJ8S2_s$Vc#kcM<4u62a06n+MRXg)}S_<_5c4raZKldMr@IT<k*SDvT<eSdk{bac$
zMf7Lr*Uw#*{U!goFNSz;ldR|2=+Eb#CZqk1eC-<s+ixQmesz;9;Z64^PD(toxZ*_2
z<cF$R&xzmX7yl{q-_iXZ-OC@E{r=92|K-{5?|j=|b?*D~cmC`KILBx3I+7%#PG>Hl
zsM{7qD_tR;cae~$sv5~!M~<a8%woJ{1DsF7e;{4LQR#or#X_=N9U=hln!o+)F8g<)
zcE5@5ePywN_>E$PcB$2Ff9m<i-tiS4a*EP!s`P|j5_biqllBBn5>p`oJQLLve#_c>
zP0N0}dih?Or!kFlLBhYoOJDB)`6^=i<t<LZOxwPy>OY<@JHY&2O^sgcs`~fi-``?o
zwT6x_4(UjmiV`IiM70+Q3h#A=UKB|HFIvpwo|;5m>6e6;^UCTkfB&Xf^`qb*e{Y@B
zHzLyZ(_b0L-Vv`yOu0u1q1Dz^6&1pL>+0{1YM;~ggR8(_fpPim&3aj0HLtw*5$s<7
zxF>V+N51_#5%&4@UqvvlSP*~YPTzsCJ>@vY&f}h@aJ4HS-fbzIs0o@j7ll+26Qzrk
zG?LJJ#n^Wadxt~Y7ZSJMjt~zXdi4tVKO}lQ57^Tae#e=M-;*vJ7?pFa^;fml&sSrd
zI^7{2Pj@5|nv1<S5n=_2f`aB<LF;uDA>o{NG&Jw1-FMqv?+wbW&+)<koF>ornng+N
zzu-lFQdgH32xFwhsm8e^Ac-q&$A(mhWgZC{M{%dyi<MM<w?^>IoZl0PzEdXp$Jol*
zIUaq<*K~Dh_Xy&*hwA75>2jpw^P5~nD(Zl1?4Sf<Nm+}8NCMF*YKN!kJkdJcKRlLv
zzvaQ-o(}n}QSVT&=c>8S=l*I9M1BFupL@8RIm6d-c)01W$Qhml)Jd_t<@a4$e?sGA
z2_2;i9XakHlprBaPzNH3o+M}yii9{)B{lBMRZ;Hz*>vH=NO4AkFHbn5!D-TK-_zhk
zI=(;Pe6A#2G}i<rO6P(S%ZU)7c_K)ftR+dOmnyRSXXC*;U%c}N^@MrbojDGU?711l
zp`-6&@8pNmevd7b2lpTIo@!yfQDpI0Iexgf;$VTq3%k~KyS<*+=?I;U1g@zYYrs-F
zsStOh9#_?lGDpfU=at^oZ0<Xn<^Clm!%mVfd9uRdbnc_Q>(#t1VN4&|OrAw~I#Hf(
zY5Y-%p29VsLZ%PEevjvWJ$T>0lI2$=&Oa*MhYpT+_dn7}<niEdufT6B>_;trN#?(Z
zroV=S{tJ1M(-5`;1AR`He3dSF9LMWhke%>C*Rq2xuR6z*qp^~Tk%VGF7L|76Dn%8d
zP7kD#B)vqPs}h>OVYk=+dm<=!<$eCqQvP3xaDJgbziRWFbAICN8qTiatERx~LWt&V
zwrGA;UEO3U|9=1Q!qQt+<~^Qh!n`X>f+F^~&`Z!<K(g3TRTRhY<L&%Id<1!a#KsrP
z_}u*Wz+caJdg$mGPyZA=y^{s}Y<GuU@^-!K@+OI1jiu`GlIC{*5w$0Gg|ubZO1GB?
zvD)bfDD7!d)K$5hzTrldj~~{`?=)8aS#lt_&vN?%QX6k4%U_hbpDeKZ&z&58n@Y|T
ziRDC_G~XH1+k7~<t<_a>Vw&;mi6OaLYW~+xk;W;KATQ(Y+sNo~+Vw1@GnxONGns#v
zWWM*F$b7pWz3};-uVwBplnh3RssKxG3x}1Spr}em(BSn1r1VsAp7au=zG0U9$(-$p
zP5bGcuP&>*KGr9jU;nMDj4welmv@$dVPp^4Yx3F5y}Ldv%hh4ge60d460~1;aomFL
z-|r~;JicElte3*(D%~El_^(BD=r8~OMcqC_;+sR_A>)3XGNk-!{rYcxMAkbMdJT$p
z#N%^~U71H}s&$39*X4o|C37K)(vBc?|ChZhTXGb~+V}kw75`;NC=EygR8KG$9dl6=
zb2%4UGwHI88#}X>r~d`UJ7RGP3`P?Z6<wvp=;-L^Z2FE;j7rX+KOoLp@A))_+=Hs*
zrFkcYP`;8cJ#EJuT`uMN)wCIDCT2lm`?>Aa=EkuqQngZ_%Ly&$*Sn8&`M#2TNt0El
zzO`9B=2A|X+$>AP!;`1CQ{U3>R5{|RmU3;UhSmWxlAekonN}e51!-c(y`^d(!z$7D
zt64Oh%BD3k-C~*ELZh5o>xP@St#-(HE=QX_j;k(u4PP;D#3Y+aWtEYWQ7h^#SJ~#0
zE#*KaKay=>-BhkmP`T2L#u|mE_F8!&v<OOnt<0kGtV7*3c+ss{<e9(wtV7-JU39DY
zy}V7T_oev<&wJEf^cVeRB2x#96IZUa|48V_H^64n6VK9hk@!??nwG7#$H_eWeCX5f
z$`M=Lme`-DG(Qz3t#7WKq%3Q>Nwq*vOj8YgZ`2xsPtV`QUf3#2q9wQ1Gqd+iPE7VL
zUX6QL)pIs7rT@ag7SHIYcjFIJ>vM*F=TtMXbLqm%s)^>*_{zZ#uA12S7bjac@whLb
z#%Es@al&zAe%%&J%mj>pNAuSUL{LD9P#_dh7&D(Lk3|D!+&(VOacZ}oKw5o`KVA4}
z)YqL2GWJ8k+NbYV&*Pt-#11{=Vk(D1^X2hb<F(<)N3xi~LuKB9LCf9rZ>mj@^p$Oc
zzNg5uoPN+>FMVy#+ithfA7BTdd4~H_(C#JO$o2LuQ9FAZv)`1({yhbFODps4@09mX
zq{c2(vZl-Aw;gqBich5`p*;OzYJE=k)zhZwHh$#Q%Y|byM!OdaHMzD@z|ac_1x%tK
zuOS9O9EJqMSfDWAUJw&|o{x39{#Jh8f4}`@JTME*fz{_CZ(00lZZoK<MU!#do21L#
z+iyebGWn3Ew)}oFe{0!l{N22M^)J)Z2mf4c>%x+Ba)RcngTp(x#XC5K+dAXMAZ(OB
z0hJO$h5!ou5FpG1po&v~2@iZlXe`i>SO*(p#<KM={#pEe)H;S0opm_6o=5+mp00Lj
zcAfVA^yKS5cj4(tXfdDlBLDK~3D-OCO%wsfqR-kM1;&CyJx+L>ff%D&e{jGR6|K%H
zdusPj4qVaB@(Qju>125^s;CDQ2eAsY`Ng;o;($>A84J0fh(Le9>bUu~>Qh&0p?1&n
zF8wao`5PJe!{VtPNWZE$dX~ttO!XbGeP@45zN1`s+#YCD9qX;?IWcNliw!(J>^&)h
z<pOKM&@f}8<nt-EBjd9tBg<qI+7Z#r5=P`aq>?3KjV5c$IUxojj#eXiuG!91k!-@r
znM4xGi0Jtl;2>L6o)p1OKul9wyaTrUGVuB2X_|>--G>(<e?~Zv^3aX)W4Uj)yELP(
z(k|KeGLP<dl)u?bLYS2Fy8>ie6pq4~sv`9`dOa#2PkqezHW69!F^g=9z6dyk^KjA^
zL{1>PRL`_HObQwB=qE<a6#T=~>Vlw89R#f~0>0)y2=ZiaeX-{V0n0?+XCVJqeY|zU
zCd;$t+l5YHXbhc(5srk2BH%+F14N+$F+?69kSVALQ=!7cg-$<h4gEXE@G#AOxrem`
zwxyM6!^_TvS#G!!BG-g*LZlQT1wWr*ikL7|s*@|sfFdzgibfm(f(QZ#1`JTl8Ne7p
zOtF9%(%~e8OP!jzQ)D9aXuOE3j_SxL{#5k>5Ag>>aN-iqeq!8enM9vo{S+gdO#!Sk
zg!I|~*FX$5K@a7i^chq}xs=brQ$C*|htt{{2n!1zhvW5Gq9K2nTAdL-mq+GjzO2r#
z%tN!oj)jcKIF0}hA_<UC48#O6AQX<IM}ttI0r5R2n!a#XjAR@V@(~nY?7fe4X@KD}
z51i)1P3MOGyc_x{_Mw{JyKG>~3G$dup|q?GRn;zsEafZZzrg$Y`#Sy6Qn4A3OY)hV
zg)s&T!@0|yYW}40u_`A0d~xtb4gYqgRvNue%(!(prjp|rFov1d=tBvZgq~LL<1mJ?
zz`hs|H)<ensw<o8%H|eRxw5%ut*&hD#JI|p&As^9yA(%PHuuZ@m#izB>&oVihO=GS
z+}jpcHrLQHn_Y2bbNBsR+1&mAo{hg<+1!1LE1P@yajtBxa|e(2xkS~QD{~<G>sBsR
z{y5PP7p#7EWk#$FAocV$9RkTb1&|amAbx~_@|oh;^8$s$b7yfZt|<C>A>op<+>yVW
zt;LbQjHGvcR|(CpraZ}*KIDMJ`jjI@Vi0?Z0PKY!kEn!_1`|5q9TF)<o}1tvQaUkl
zHQSY#IK>meKA;G4jw#%$t)EkxqrEZbDvAXKp(Gd}N;rtQM*tL_@Sw+O5DzFAdO}<o
zCC0@#EVrI0UIxe?VrrE_;o+q11+}G|bQ1U>BjQhM>0pDdy^{JaTdu0rDM3%I1nsk$
z%Urj#t=d!fYz4+JlpgRg6aa-%075;X?I90hCUAfWnVj0wki<5P+6wN3&;F@eX|k96
z3d;0EP`sK1d?{&b!zT)i5<n3@kl4dOAn0quhe1HSKmrs5LPb8O`u}5<0L^F~rw1Ul
z#MIlzzuU`?ILorNBV#6|V_L_nsL`TkE=TVYdC>a`yNWz5-LB*@Pgk3Coreg%mS?Sy
zdz&o%d0R8SdWJ$r7J&UK#Gn4wr386aMz*F)kZiZ_72>UOrev*`x-K^A|B4R)*)3fS
zWA`9Ghp+gqcO_jVzgrGI$Zo#h&Gx^#q1g_ks%GKs?~TgwpoR`rS450zzzAuq7*P~R
z>0^K-@d1Na|KUSlga}D0&~R6T1NE5QlRGEF+sg0;p^yih4zOnDNM~jA<!d>t>@9!p
z|EfiOOBrGgym6?6BrFDq<$sXC1B3_$lwd?EPGU^LVFPamI@k@m?Mb(NxuE1rNy!&Y
z$;F?B)XhCJwHa^eP`lXOGaI#|a$Dsz0J%2b#cPF)!h{kDW2roCq-xC#DHZ{Sp*HHU
zCs~YHK-qx7I;W60h2*xy$+1h4J)3hb&ynj4Acf5`O$Au+5F?-@ms+Oz1dvEc5Ct(0
zBcH1<;A8c}ne(A771pqvSTGiNXPZ=ZRUpkz7aVcwi1X0%IS{p62Eoi#n0)Zdn_RA5
zwr`6}7GUh)=)OI32UPiQje`q}ftwkus6ON?hTWa?ZC2CZ%dgRCDhHoC-@E_xrThI~
zn#LVH@11|~<HVpJ{)->Kc!1^m>j57k@ajn=0zVR1P!gf4DG!Xm-)OeG{sz!u&emF|
z$z7LbqUyDEmCA{Uxr9h0f{>&9jSE5nKpqbB`a&^~EK*1?Mlc+($Pnc#`SK~poN;Oc
zz0TUKBVv9kW@*LxehfMFq0lT^fbx8vmLt!}?1#FSj$p%s&$999N!%kBTjkUiS@Dx6
zSScx0vZl-Aw;lGIqRnJ4zh&fyZ+a$?GkdN&IM3~^=k@~Gtg{Ojne}O@wR@Zw;)Air
z0a7pqEI<;3(9`O_um98YChEeiK66I6&S|7rk4Q!y;X|i;yG{j%aKHzQ!)iCq$2s%M
z-uXDsyVd$QI}dkW&cVH$HKm5yc|JX(riOjwhmlsz{8)cElGFzT!T<=tLyEj8@SvIy
z49FcgKabSR9)DLp23hIZT+IE#*Bmloubf#e^Ji~ISyI$pHJ-~=xJ<nBk<OoUMvH;`
zIdrGl?@h@3&+hIVvyy<YKtvD<VhlZi!bk!tc?2*N0V4#4BpC3?Lcaht)ptn`@Ig=I
zwXv1nI1e9}OH&*m6K^CO<9tzlkhK>it-WmDU!to4h&f@9xL)Ybw~5G-k6EO1^hLl4
zT*UntDkTz>)@HwHU9-xh;3rGuKl<cxy#v+DzunK=SjkuSms!c*e_y-$j#4B$lTmU@
zqN;znB<i)c?X0#575k)Om8{z@_F(-LJk-Xp3j?!Z$7Fy+7;zvYA^?(+05s+dcqmW^
zLLAG8P2??lE8m>KVRq_a^s5&g?Ij!Ds}}6rcy8A7oTJ9ArS-p|)?LZN5N4QU&PoO-
zQ<fbI7jun(g-0WkMy@eG!<iX5iEX|!-J8+obh(B6DS1uvCe3y#&3@2K)b%oetbI8p
zCmR~eEVKOtZfA>LZIknk<-tEsw`7(3*3<Pgy_9Cg9FqOrU0%#JsCbk5926_IM*K<9
z;0)Kb#=+e#m{u2ft1evGrEhH!<Q7-NQP$PoBLm$s?wp=_b-k<>1%lMn&a1^@?2T1<
zyOi6_PZy*7dvnir<!c)|v@K@d+{0Sg+j*SE0gI-)Eh*+2Q5p53#cfM5*9hyV4=%AA
z$}c~n_<3JN&F8_h{nti!J5kIv){5!&YoX6$yLg&rB3bv4NM1ZR8~;Z1f;Raqj?zZ|
zNPS_h&*UcW`yK+LM&IFM{4MreD%JwO^YGlWWUZyu>mBa8WwJ_k88t`8j!$EonQpO6
zUu#<HhMTypcF3M6|GcL=+NzJ^s*7IDiR{O%e}0lp1=V5XWVGneJjsFlx!vCIu2yK8
z?C4{Atvu;uZr5Cc7u}jgo-ISUaea5WQCswziA){PQChiHQ}5Yqz;JHSLu>7Es`skS
zW><#yijGs7H~3+W&9##}!ok`|$(|jtBj@k_J*Xyw>89swWXgklrT3lDQSZhdrq)TK
zMzn+4@`9Rrk@**_E9hPIv<CV$z)C9eq>uq1e&hi}i3egBV}LP^!jN+oM_0nJ&!;u_
z2&wv-;w71^iM_4l?^&|@W%1a&Zzq<qbQi*?RUgcAi+B5y*$LpwRnPYUXyZp-!S<Aa
z3{VC`4wZ(FUdC1zkPpom%p8URgAoP+AwEDz#ej%d02VMz2&SR1cmb``^|$i#{`>7O
z<8fKM{E*8f_`XhmtQYA<t`h<Fp|baknnR6^!xn~d`@WjZ7k~fwZjhf>ofek#HFxr_
zIyk_tTfnZ(2iRokZXagvjMx>%#>4MHDSR1tK!v^n$k*RX5yQZbMW`T)5e)}?*lkNo
z>;Z-Aek|*UYe{vX+?hfPIgvU~WvVDatR*R1%9WmFSAe^;6QV(26rvKv9`+g6CcF;;
z@`N_wl~&m>gFGNUkwi_kip5Ym&e)7=+n{?+(mP52<;f-eSe54z&rAPJThS-@ukOIN
z*SmS9MvG7=6haXB5z{w7hyn2;{a1)&EM*jXj0|@J7#Y%5%=<)88zMmF0YIY=7+?CZ
z6DiN3JXW!OuTX5IXsVd1mHhF|K0IH9EDk~i0>SejQVap1G6XPEAy+)|C>+p??@{zD
zQ!OhVji7HsRqI<u=fb%@m)n;3p4;mYC;n%zQJx%(VDDiB`B7`DN8->Z#|087kTM1V
zRWMHmz##TR4yaEdihURef+pul=))a5d`ZH`yK#Hkjfp~I_C${I1>NU~;W(}S!Qo8V
z%}&h<S1sT;rWxL8KdI)vt)1u6BPXKm_hw^c*C`%-ixs{<L(hrPY!AF==g>}S>BAK0
zm=sB@1)W^>g^S6ZMn1C#WgOWTWx%M5v)dy^Cy7#_&m$fIN)ZJJ#sQ#^N)Y%GiwL36
zM+3f?uvI3v<vg_qw`z_%WLnE4-J!nNiHn(ui_+m*x>mRRO^Wx{QF>_3(-NUC6^gXD
zz!U)##vzCmp&%5Pag4%{QkU%d<vt5{0+3zKyD(m^eWcsf#S3j-U-{sdH@RHBY~L1{
zEI<muL9%bMG>_cpp)|d)stgR{@Z#xW#T+)SJ{WxUP{*rJ-*Q*?a<bObuPZ;YVxhO=
z_vMNNV88Mi{-tTqZroAJ?($<FXIJJ+KwfTh+w`!*KJYi1?aqDz`0-2dg4*Bcm*fDZ
zFEymyVY4X!V-Yex1`Mh^?~WkAVy-~Iwbl`bp7hA{ZuB!u$j{5eI$Pd_sBAj9=W%h*
z3CVAiPV70*%UYmh<OJ&(o@O>iN&hfEj)b2jp}oA1yHuJ-LG=FwB{{1<SAWwF`s<}H
z>X-8$1VP<5m|C+9*K0M_pMBfyHg)YgUf;aj)-}J2+R>R*GLzcmYQniIyS--Ah~k%*
zJkjc){-9|9ay>Dh)}p2z*tNdXk!x$aotU?_+mVOsdmUK0w%3uPCz=O$X~|oBQ?{S*
z0<C2RCvZ@5&gly7i?An@+SynsgOSql=jHF-L)83A%d5y5l_7miahdHBl_T-WJX`S9
z3ER`}ev;;MVqsV4Vs5cL_ZIN>E#NgiV`p%-ntT=MQ%XDz0>W_~-GYGOKmg&z+{YZM
zaL8BPcD=jD+FsTq<uF3erSm!==!Bq22zC~J&@B8SpZS6+fT*MZi6{arMgc%9_IQX;
zg#BQu!f)hS%?M+Gw(-~=uRV|Knb1hM#@((nzg=t72Xn^-*r&<enLKzggOyvEe8sSP
z>R|CLG+F;$jX?UPDrJwSt4+GrY<th(^W?-PGWL*~*zs%6vJ*f27e9XS0L%B*13pCH
z)sspDek8D<Btq>n7thuVTFlv68M>IbW}Q{~4<=?P7!`OSieUhJ5ozNOBLoQ4e<f1D
zAVd-Kf&n1~&sS+NN^x>TI+dvG<<iLx9maOk8_89t0@NkU4hapMKfT=Mawn6oNp1w%
zhn)MM%S10$+m=5hdrQ;rSHav$8m!)THA5cA<Ky1VP14^!>dD7or;dFCPT@<-=(<|5
zPFII+LaJn)Jnw06=FPL3H>E_s!?x)(^09_Zr%#=#RZ}kVYbEY(J3Gf5<nlSifsYmN
z8Dant-v?9$5fCV30pmzvH6WTpkBGdFMlGJ1q;+AM+c3=`wW53JgBm}DA~FgB1xO%c
zfC7#HMS_7SA}}HW7MMnpi_@5^sE$E19!A9-;S<Z@QGcgNYONe<0g~{Y6fVEQMS$GJ
zJxTndRjLhtO$0qxt4rE9*C#@dVZlQILLT@4`2hu#2OfwNmzXicQDiTZtZj|oH%XVf
zx8K#L<IuYJ)6l+5KBQ@E(PkW}xl_wVQ<dMcb+OfVgQ1J&CGpGj+xy0a4RAD99(dj!
zl<w|~%Mfwr;SUZHcmBnxI#f>P7ohpefe-ohqP^l7X0=<zT-cdVKPHlSz!MPyh)XT;
zDGPv#BS=}qu;c@#&wVO<{O|mHnr2S6+jmWom#bee3I7s_)I7?LZn;ff*Lr>ncR<M>
z?jE=%j8hX2{++WVigG)?=06C^I9@JqmPuZ#sN|)#K$>RQE$JZ``8)t3lpa9J4*>}o
z1EEyDM*~SCt&0vST&@UUQNUd8T_s_i(6|yBry{H0^gdS|Z+?;r|B=fgW2$;Jw+xXB
zj@+vL%Y5MW-)Etg<1LM<{^ftQtnNhUctvP?K=RNxyTEzCB5h#DAQmbBD2f$`Js1Om
zJYO$dLgEh?!Wtk|uUfS_^~mHu?|SnM9ZTiwf&Sojr6<SoQlS40ohTLw<turu!rP+G
z8`aFQel;<BnhD3k$GJwp!lRK%BaiAm!<iX5i7m#U7j(CyrW0IrkUu4_Y2KvSPNmro
znu)qzS^D#rDc-%$Hm?namlL?1EqXoR34F530rk`M<U-cwM2o@M-`(ZKT!V@?sn0>N
zVr#^o6b;Uh-fPkx4D3){L8G#7CO6Am3DT54g&sQfU2HkM@jjFz+FTJwSyy|H40Ox5
zb9(C4^|D&*((iI|=ap{S7E@@XhoEwmL)MviS?KeV{#uz2?pcRLe!6nt+2)=#=dV1m
z=1)57P<xJddPCIv(mc_5k8&n=8jHEwB$lT+#d3e89Y!p?wpv2drM^lJ(>tfcajwQK
zVFt_LuA4kd*MFzXaBhkgw=Kn7joWg1SNF6M`&3t;vbjXrZUQy8BlT<bJ;$@fT+PU$
z`Bt@5P1{&TBH3o|n|$5uUA)?P?LUv5=)V+5t0U{StC*`fFp#F1NY*_(w<~fx$G;Kd
zt5-Q9+q2O>a(r9#X%|U#-`Y|RX5VGs{uX;K6>EXtd3f$wvewe-^$vI4GFc_NjGCik
zr^0%TOt)C3w@*S&t#!jq+*UhePn3V&(;aQq$8ps~FIQ9Xtb+rMADct-BnNU(f~^^<
zsnL!;w%5v&PUd#aHF(jjS>)L=lpEJ~mm9T3znRF?0Uf24Yc=(r%?1qT7Cp4q9;bS*
z>TGspc(3R<rFnxN=BC`}XdJAKl<e6NJ97T+--Bv0m~MK`My5Q-S9;$Wefr(#5qfNy
zY9aDy{4pCeGQOU&L?|tEWxbCl@8P`4r#4q9ZFEoT#)>|7rr>l2pu^<0U-|lu`GJUW
z6oVM!5Fp}3fQEqpAyhE09mIW%CkH@hh#)-V5`40tQoRfO^Aw(9lBa<tDp}KI^4kvQ
zO_44|i0^Ti{av@UtJmbv`c5P5DmwQfV0l#tSO-m^uug!c{Ts+(D~b?=%s_VgsnyB>
z3~sTV4$46ks)!(l03~q&eCGicAg#}!m=T6p0E2LH%E7+oTQvuFNO@?=u4s6hl?S08
zqK`~a=eXXM@zrwpoLH>8*(SA7170)3&}F+zGx{nmL)q^q)xu?KC&$i}Xg}*RS;xaT
zFnvnL!<*C>+pevDA@GbU1cZV~=phg(L9`0tOTf4yfRTV<==oTN0~X@5E9a^`@27O6
z>h>D-!;ZZ)a;3n2EcPsjI%?`UVLE#+?ul2sR}nGWY5(8ewd^*IW6^zmMPrr&+$xgd
zv%X<4iw0&n81R|6+pz=Nsj41e{(U6dNo+@wWrvbQi@j=;Xhynx-1j*Ob7qyJfLyRZ
zb$Q(yVFHxbE7LScUT8GjCA+Pzs}F75-O(RQboVwgPc-a%BVnZ*4<1lphjl}rm(qZg
zH`D1Wx}BLi8bRj3{lsnCRvwLgi54s#W{Y1na_vB*aXdu~tGK}5$rVf*EgTnTKQlhb
z#T9?@S+6#*3|Id8fFlEc#pG*I_p=W?7)O5y=<bJ|y@vMJtS2v0&CUV0jxj<JFvJ5;
z6g(JjJXp$zWQCx_$73%_q__245T^D?D^gd~F0^q3Y7*!!ABUi#CMM$;R!M#MbXY<A
zuNl945vFHY-^tcWG}zO#T$0G*#*kwwt>;(OZ)C2>OMTqT6?w=N*__Hb>qTd#$SzEg
zbyv$Z3{}_9v*+A`ilMfY+vg|rZnlXqP1T9kJ$+hBsJWe@OPqnVg&CY?h<FN=G6Pf~
z1kwi&fsw*0EGb2LxG+PeOc{&akSSA+{`ACcid+*?)7e+f3|7PTkUYPba#KBaEea9M
zm3PJ$1rsa)C(Z(8IDiZifi~7^Pcac<K$_9`ao^7$>o(VY*nX>=Pt5mXz86pK#pfTk
zYH8Z+TJ<lkm*b+jUXD0iIv5I=Knf^F9JG}f9F|%e&Anv<*30$OC9`i{x{38OnnI08
zqMbxxcGf~!3+48gtrn^#pZiV4RS(@+t}*#o9`dSkq@jq3f&gLO0aaLmQrd$KT4Ba5
zFL+2!<;2WbkNIL8m$aIQ+{XUt&A{8c$K}<vn%TCBoi?h~-GC}b8AHZ@&&uIcBsm>)
zI4q}wZkZ11tj~`oeqWc@Y|d*GzFYF+^vJzycjgV{wp8a<Q32GF0+c5PnDoI|CJc82
z)>!rwZEqJ@&6wyFBQ19RFzRp+$!2?MJE}w3;I1C`hVrUE1n0xbwa+r*$0twt#0;{#
z_0}WRRCG2H_D=uDnL0WBST>pkq>zRXWuV|l12xisal8PAkkHat6l8i%{}#SVZ#KH=
z{@ZcW|MIrw@$+)E3Cq<_y>e}%n%%uFwCV9U&!?hLkEzi<FSprKm6cd7(uA&T-k3vf
z|9*Ar{g7eCyxx3y4z^z$P54R4;B0qY3;xk17>a!}J)Tz)QD`9ZIX#%`M#}2jX8EU2
z?z~1Mq8lGidn^i|t0>{}Y23~=Cc?P9B-^=0L?O3*l9y#W*9bY}2EVb-P*2^0_^mHO
zw`uIz{(0f@N^Ix4bsKWmBb%3NJJ&s6pJWcS4^MJ-=U8OdW_QNg5%6w0Tuy=3oTcGd
zC>az5Ny_)6mJ*O$31A`+>^MUL4cI7^EY@biZ34HEd7^+SHxgF5=(*!+Ldk4uM{jb?
zO62yHo0v=;$<j~@Sz2YNX!rEJ)KyTA0a<4}5Zc^I=(rKwA_ZJ~4V2LU%BTV`4$>>C
zlvggf5|3e#2=8l`X2ZVmC7TWVKbGcli@v$pN>g4~Vgv}w3!u(>P{;;Af)rE`Qy5bW
zcPL}V^CLy<$LHOTEpbu_I#B~Xx)`$QolWm-dT$?1)b##bbKttPN9O*gH;>C@U4pVh
zci{09G0dR?eW&cY_CWt@`!>+>Mc20Jy>-N${0%@~@z;-7Prp^YbgS8>oVjh*y-2SR
zWbG2d$;*9r%O^csz<N3V(b0O7N;O(<At=mD=~7u4Bv4whPCG&Yb1pn1g$`5>7>}*+
z>&i9URH?gu`oHR$jjz1V^2KyAAa^Yv4$EE3(+07<u0QJNJ3BW<G1=A_rI=U2gT#&i
zCES2kti0@P;KCpmu=m4V@e=}zok;aY?+cn}Xy6{ec*nnmCuU;hfcD3L_CZI&<-nC~
zAnTYQjwxuw0#H|htUJrWNa+k`v~XcSko9pz*T&I`8?mG3sPE<T@)>y#b5DXxRZ;gO
zjU39qZ79F-5RS!kj=1sO_1?<=m|aj8mMOhor%E0>x^1;au8?w4Ymz&*?G8y&P!*oV
zZPfmkrl<Gm2j^77;jo-)NE#sZm4tr%IQuBB`fxvQ3|q)TdoQJgV02ZFM=%(s$`25T
z2ri{1m`yX>->=Re4cg?GMBbWVsh?$H_^g?w{OG??iZJ0wPL+)QssH-gmyGuFHyq~2
z&E~m$z0DMM;ZTx3+>B?0p76d+&)d%~+R1>sg-q^j?;j8xfm?Lzf5W7?lE+&kl=cF!
z4F;&O3N*$X978Br5vb$?w%Wuxq6_!DoSlb-{QMct1j5H(olkJ%OP-uyqt`PFFYB&V
z1(-Cq%V8P<rsc_X1_NbCfK;4-$3;L$GwINPbeMG;EmkVj&%^q~{Ne3J+j88xN=*5m
zjmP|L^!EE+2S?M~!<a3VJWGpXkEPa|KyM(O`?~rfw70+2A+3B@-A-6b*bY-`2@{}%
z2|xq)poJ))@Q5)YICf@0R-=J+d%aoR2n+ufsvn0{5aZ%-v$b88@A+5cZ0G9&%(D$O
zJsWDQ1)Jr`h6i0v_uye)BfRViM9_>55`?y_sJhsMthyUy0g}-I97UWtQZOMBBpQ!X
zLUmoobArV+!?5HgC6aAXLbS@v9PG;1{LySJ2$EG0`tpkWX68@IO2^rk=5fHX>SS{g
zl=KX6=`$OQ3u%l>?uL(bW8L31KK!K>MFO>JFzHgptP3Wu3x4SNto-0|+N!;JT`k)V
zFCTV?{9-jBn$?6<jAHFDFs!OHi4>qk5a0`@3}eg+GGOD@+xM>g!>kf+{K#OFaN~f`
zk38>wTlvP*QKRox$%-v2wyfAr72BTl>0<pwn^T0;6oMP+!Ko@m=$Hqof&``mDHo4n
zrUuksy)b0mL@SM@k8Fe(rMc1Xa6lhhKGELjUPLkZvc#dH`q?ndhT(77Fg%vUK!)Li
zU-;F`UY+P{j&FD)U0}8VU7CfZeP|tMq09f{j1(jYLHvNFA{_xW2La}so~e@W-hB7w
zBHi8Hd(fe{Uyh@Hn>{SH9bLQD#P3y#$<Ak0mvpBKx%h|({T6VRh%(CpSb;52B1wfA
z=AmGrK(?yR_hHzU+Y>qT&;xob&2I<NjCMohqkb|VANBoFe||CZ(zKc_!V;=V=+1Td
z%``Tcdm4zu<x43JRPX>Yn9^($M7h%3VqC;K!;9tO_x<br>-T>&o`Y|XUe7m=|E*Vu
z-{!L)zUf)HsP3<(hp&(ctxvy23ex3Md@>+ImmChu&?QMjm$bq{)Iyi2<~vvhOba43
zD9I2|Ty8;$je|gq5J442B0DMQlDDYwxq<C~8#M!?hof8ExnVrv5iHl4RX9dAsU0&J
z*pmTJ<ImwF)SZfSGZQ_c&EFhNe&l;OT7PFLpWC8O*PoNmfnMEQF{Bs&%r4W(fb23I
z4$Cf6n#59j0}!g%O!>W?BXspX*nYAq{MFI%VvUX$w@6aydG)~-s8*y3eknlK(n2Vt
zyuisjUI_sUPV9Qm<pUqf2i_Fa<y`G8lr}<1qG<qz?Ka5mKvsNkh7n~fHzc3|&v~p~
zv6yHO*$sIY=bJZN|7`~Y)2wYwrE;Yknc8PN*0au;yv{j7i+P%@R;6qf50|$#v>+H_
zYq7u>w5OyhSd*ZHW<Y3=)CKM;uIkhj&~ONb)6hV#0!ug=8+&IZEQ(Z+tp*HE=eEsU
zA$su3dp31ORW?=?DZ=w=`D@nIlqs4`8SZ6pNK4>V0Y0t5W!hT-!AoY!e?!&|SoE2k
zDRWmA%P^>8x0hB{B~!MLa$NiPt4FPPM;l{!e)La%rRT8YlDs^;-Q0&!pb9}<E1*RM
zoDhNpBLoJ-dAW#+x(PG3k6pFI6IQ~$ax5uihT#tbvh9+!an{BkwDGTJy>ORD_*J70
z)))m@C<iEDQ7U3)L7||4E00wnj0;7AI{4&5y^%srp&z|Z4Hg>^_V%vd*cJZBmHK+K
zT<HfNnP+D=X(_{L(5EIBI_%a}IwH};t?bYCa<-R$i*7GpW!e_#dvU30d!~SWOP0B{
zZ>vPjUmZ)}w=4fzhrTY~b?(9cDy6c}bJ&&qUS1DhN^do@>(_eiPQO2{i2t)(ndMV`
z1zlTN{BA{8A6K;DhtGPofn{j<`0hSJ?eF1?Eb6=jNt+AK2_eR@U;uMNfif3BlHeg&
z=b07`lZc2ZUC|cy-<WX^?$7@oRT_GG#jWk5cQ2hi?xNY_4oY}|JO^nJ1B$o@C3peB
zF(#bFn3@5*=Cj?<PrvkXxpK2b58(FOez@d_RzEF|e^%A&O|zez(2)r`Vd(3gx3Sd=
zS1~o*v>-4>x&Fk%e^aTai6gB6(4?m!NK;zCrG?kRNBnI+BsFyzGrgXJ@b%NI{PTQI
z{QjO#n|x15=`=OSpb9Z8)?0ru>H@5945BiiT;s^CI?z76%%>r^9qnAa3(?KitC#2M
z)SDOgFbNU%o3*T0zT?Qi4|>91Hjm}^?o~=$Z)vmq(=S%O0uM>f^{)$O#<~e#%paxG
zrfoT9ov3(v$%)(bEc;{!qlN{g7`e#$+Hr0*`!RZ`o-qsXwUR}b8*#Q7Jsa$orl<Fr
z56hr-hr=?cUD7z<O{m7TNOZC}nduc1hIkG^a0E1v0;CKAw3ifX<uxr%45>bonf)Nq
zbwPm6_}tqcb(ZC*72AmH(mMqiPHGJ@l5j3Udj09B*wU&$SRN<XW+xU8Q2wn|)tKI~
zM5!5fQib4=VH5;&1yF|-7~~Z=D>)*VaZcH=TK!W5X=iIk-dF8Jq_J-C*~21^*4r;}
zz9>!wle+~!b_+V~pO%YqFK;gI7;I+!;hK7akSzsJflpJzK~qCPV#hdDtSG!3?s6C~
zU%3<KG_r0t5o@Bjw6~Gf<WUo1B{;@$;Ko&3c5N-?RmG5riaFKVvWS%^?^Z>Xe7)eJ
z8w;{$3MIPrnq|rj8rij(ylb=B%rEw7cyoUv4OR<pJOoEQP^$^Z!ZNUkNzOPnGC^?A
z{tcvjeSVnpPOi@{hfntl@wckO>Pi3SF#SosqOYj>oB#Xr?=SxcRI#{$J~ajaWJqOQ

literal 0
HcmV?d00001

diff --git a/pkg/internal/cyberark/dataupload/testdata/example-1/snapshot.json.gz b/pkg/internal/cyberark/dataupload/testdata/example-1/snapshot.json.gz
new file mode 100644
index 0000000000000000000000000000000000000000..68ca44bb9dd708616ae4e91f6e926a8322135cad
GIT binary patch
literal 26955
zcmaI7bBr%M)Ga(ZW81cE+xDEXt>4(TZQEyT+qP|6_j%v%OYVQS+1Y8+rb(0Cowe6$
z38El@{<r;Jb!#~vNM|y7@Ae*u>dOPvk4tNaPYw)77}+0$EP#EOm=dyJB_*ljZ4C~-
zZ}t7JsTm$Z8{p_a3O_U_P$wj2dwzC%e?BgEuVhV+fAz}80qN$yKliJ>B^`>EdeLg?
zKc51VXvBPZsa6lYBJEv1E_6&~t*?Lc?ZJE+Yj5OI(#xGbZVCLp{eC|#>;BuRce!^m
zk2<vfny>1(iYGDUYFEIw=I;;XCpr1C)3y{wDupg!@8jPwoOPJp+(W1D(uLrro5rhw
zM|{5es$1N4hw~a#3A#`g;9H$8&~mRR0FM=%YBHAG8+A=D&<P_|)X3RU+fA|c1`N5w
z?hJzh7maQuT3pYlv)0dJOX@l^_*j9XDH~oo3vU+w?{29crr0&9pdt5|R?+gU3H&3*
zvsn6sacta4S+{!D=SEW;n+Cf!9|ue!Q0F2)y_Hg##h94fqjKxXl2Q(m#{{xy*N~}?
z0P(fie%mwmlQ&0_;^+DEQH3=I=&T#PYIn7pFaS}A?uxVpWoh<g$9?WZhycIXvTi#`
z1mh1Qw@nCbQ&w5GMSj<wc{+UT=Cf8E9(?Fl+{_?gE>Y9WE}a{%Zsm&5{Din{nSje>
z7Xh9-01xoRef1$RYNxWIZvFjl#IU1FLqnu$v9>j|GS&g}%Li%ck|m;eS08qy%uwrc
z&j_9F=x^{!FdjSrDk{|?xg%*UQ&3sp8a3i>KR9Va0ZIGNm4uqOm(7l2F2ZJtmjaM!
zXhh&5Vm+4C{C6+EKX67iScvLA{~UaHs`VO1Pa-$3jW6~1G5=-;A(8TKoY19!7DSZ?
z4Ng?FZW+C(zXI}SM5%GbX&_@0&KxEe-3Q^12%A$xT8S8jj!K<I?~~MZxM9sc2Y4n9
zDa`KYCud*g?aM;T;ig2HE8rjuFo4m_C8HhGbNh36c*KmmtnIU8biK2i9up<`mWt16
zCZD_vXw`ayZ~D0xfB9;%j^TzmE#szv-gP?_63OD0VtrarCn0<<+-=?}&y^(>kmT9%
z_b69;6?f%mO4~J_L#}rz$ozL56IeTuJv1ImFShCwXr>L*E#$$NSku=kNf9A^17WJ!
zDxV|DbB}>{U@G4lCsT&gRA|8~CbSl4yF0_%t9JSJP)2|bfk&{M-BH~fMCh2ca05$s
z@cH9dMxleJT;&$H0sY(II(bg|^45fp3+B?f19eq|5)Qw?;f1pRXK>j^;d14*U|D3~
zbYTr6MT$0!3f?B)nPW8J=^{sJH!Y)$MdCW+u)%vBF)44<2_oJcYmes&vU&3aZi)&(
zABFK)vTHicWoWiLN%l25HDc;h;>>EN{FX>8bYx5{GemcnXX!7@weUtY;l<g5m)^8O
zWh+{e3$~{h&GdANrYDVs7v7ERprr07YPu<VSPKhSB_Kd*k#vEW1*g7?+bk-_Gv#v1
zs);7~Y|DX_Ck6oKLjVUG{Uw}$>qRrqoe{CBq?L3??M%t*kT3|_Q^tCc%^t{6r6i&2
zF|5`LJ7Sj8>amV6yd{E7Zk!SdVi;d;_fovs$(9FmX96pUYrScx(b$nIzzTts`8df}
zKAWPUQiqnUE9|5m1y9EnDa$6*!kp#Wb5Ql&vinOMXEgS96KA3p;37J^BdJ7+QGPaO
z>b$AIYaBsZ=V`%gS7LOYb7C`MIjuhBrSV{_rl>vG)EBln`A@>m%cHR+4@sH1KKFFE
zi-X_3iPEOr)nuP5{GeIoA5EiqNNl7?+=Tq8*=#K9BN(n$@_9<D@>1NW5!%nupwZQ?
z?U%$EEeP=K{9N{q9u=62pUApAz{Bqk8QK4&MN@8F5!xeat;j!|?Ih@)655DI&KNLP
zhbzS}RM!I*gjw?26_Z^oxpFNsw8dq#S`i`Rx(x=axkkqj5!c{7y3QBpLVsukj-u32
zqpzb-o?Zu}uHwTQ>!Xg=Y^OHLVwMi4U#dZ2maw=;@?f=Tp}c$d2|j%RSW}Zy<~C?K
zOx%!)8!6>J^9r-^(2K=6V7ZGH%_fMfg?;B<&X-Gr5>bqJ(PFL9T|+kyvSvPh?B*>z
zhv$2|XQ;ldX)UJMit_+^Ud)_UAN@xut13NF_gf3}_Zn?Zc?PV?SyOabc}0hXuznAU
zl!CYm)`uFU^c8K8OcuX{Qf6y?+~~<JIU9}(vNWNSy>bn~9T@nox!yg>Z!G)|3?zC-
za~m?NrPZ$lFY0UUQOma2U1x+sM(lFdLSVZX?}MdwKQPlA{3wyrV%t-UvhD$RTMtUU
zPtlL-KZD1X^$wReZRH{7f*L|_ZUZan3H|dG9GLB-eD)lFw-mtB42>vqXba1pGq#&;
z(RI;TACQsVe?o2v=)@3}<VIf<YY6bu!|A}+F3Cvml&0}?STQ$iEc8x<nEktcvQi}4
z;K))*giQE^Ex!q4I&3@DAHN%;$gEv1UC|BB0iI4Fy-Iw9wSEAi1fRA6Do(<J+t8o#
zm&T+fW~ibldBiCb&7UG<?#oiP-n>5JS&1Ni%aAS%Jl914`6zpWrZ}u#Q~=qfUSxd1
zF#tg)OxMf7Qv}CwFej8~;`q&iK74Xugz&a32-Hz)t1K(}`7a;rknDjv3nmw>|FD=J
zpg6*01xDNsmDXlK!GsVe$AeKG;)ZzmTQ6{lp}D-5Q!+}=%?56>2!OvY+Uax49s^#E
z;P<UQE4N{(`s7nE-cZBUeQ?q`z^=_d%iH4{=WM?escMwxI^sk;&>u|qN^2#<t<x5v
z`<Sot_?>^kw#cQwlwC_uVn}E!aHj8cCF@bdr{fC^-aLM9>UcAttdW}q@G{5H<;nAi
zQKzxsq@YcfI+NkBK}AXZiwqCCVYd>2yKah+8fDkLe1B<#9AlL<W1)!RI<Wz9%!*sq
z7(~kL<n1-GFf+^)i+wHPHE~S|0Ck%~U^`iA_SmfYUX&Xi;<HiUrOeu2({I}cnk2-G
z44LbyP2sjYJzyPcW?Y&$t9QOK7`@3C+7-bAV8b?{aB{jN{X38TfWg-zZgF^4=@lu)
z!)s6qbB{SNZ*}w-M-Pfv982ge*L}!Oc{kY;&j3}sU@vSe++Q+>>)j`{%f$CQ@3a0a
z_r2gk8FkJ2ap2a_bD(v|5TEY5*%LxC6)Vc?Xcw^3bseecaZAsg9PV=&Mg7Q)`U4p6
z=Op$OVV1YDEi;TUeYD3Wt6%_mm0Wvn$0)|wZV1_Q@mvpMRur-wx{z_)b?VM{!QLZw
z9y!aKOTwE+T@lFnlK%VNU*UBZPRspy`}_0SO#1293!7(>UQ=CpGhy~&ix{Iej*l%y
zJNb~9GRT{?)85dOwp0veoZ7&`_Rc=l+t>t#g;RAr;HR+OCb?X45X7tCpIP$*w(9qL
zI^MZ^v*k0rVZR9DDC4Tpb@*^=$ctL7TIJ^RqV^vO%aG6W0Py3VuGf|Ece`u)Q|Sae
zwTCR8w`ck{O8M$_xj#=+_|6}s1qjub5xDYW{qWD%h5X*85|fczg-Gl;RF{(B)Wrr7
ztpKqCH}RJL65c^97j156OteW880qDvB=O2EA8mfWhHLeB+i`JeEZ5zq*7a=g(xtn<
z1#ec7TV>`c1a};J)WcrBL_X4th7!g{rfc`j<pV7RBQg?^GP;nXwuDENcuV#jcWHk6
zI?XJTs+45XBlLJL`fY2!8Pdn2!(Gf6Qb5kx>T<|#Q{hZHc5+y}Vkjv@FR08%f7Sa!
z<v7k8YAGenjSCCto_APf>v#0Xb>(v2gofY=0UT_R>8BYfnvy)?OQg&V8IDPfTzkGc
zeH3yTTnra%Va4?VeZl$O<8<^lF71lBhXn$zXF<JP7`l9BTfh3OpEZpz^!8|<<84a9
zz+AVl;gD0&zi-M{;L%-o2#Q7)qHpyk&w}n_CI^48z;A?jgdp(r@ym0!pNN9XdUD!(
zc<-bf=A^E$A1@zk?FrhZGw}*G1hy0=eGlX}q#$H?IL+!E3Y+|<vJ(6@&SbxuGzapj
zq&&wRtJbB0Qg^G2S6xq>ED2bfN^#b5*d0UX%lWJi|BXoP^X%^xdYwJ-z_en0V8cpS
zBIlrGV6-R`h`VAG6@^P`ESq;jwvU}R!<(eyJD#y_-CY&pfd7j2018D4JoEq?0b@5$
zwND*{d>v1hEt`Dx>a`g`Lo*$10PdZ=9=+8&@6QPn`w0?(wvEgF6`?Z-xYnHoQ<Cp-
zZ1w&92T3r??wlro0B2`%n=>uKw$!Es8~m|h*j8Vo+M{>t3jSo~>0~}=!X<ub>}Gw|
zjV2F*mjuf?fWq$E<{%jR@aSwo#OP$TrkxvL@Oq2uf*!O2B_1-QjY!@vfR{Mi;mfM*
z%XEz&$wjcp^}1aSsuaUvQlp!OR5zIy4Hj|He4>}S$mo)!vYG3Kfp_NK;>GCXsjIAW
zC!Wz6*3U$d^In1HLR|M}TZ!Pokr7t-wM{@?<dp5<v!?Vcm-qFkonqFFWHwH<Zt)9w
zY+p128MZM2`M6ou@9(-tz)VOD!G;WgULAG!#tK*CmK->*4v?W!=T*edR}-Li-BxA3
zv)pP|=O@0+OjxVfN?D>=CJhm4NGV7+4Ky_bi8zx!z|B@(AW&<UgMM`im#trG+zpSX
zS4dJsFcx_OYT0g=o+Gyefd1EL$POwS8@9NN!v{XgbD0NBDcqq1tfV5LOcWeIP6W)_
z0>;R-2((INhD<y>jskt<iMXw}cXP(=aJr2g)e?4%aw6tCx(ZMHcSf^_c1uip<5_+B
zmMbRqcBMG311TYfM%}v8j*qZR=({bhfIP79G{%Z<b=ASI+U0od+RY0zi>zf6YjTm$
zayhV%4;Fi|or9j-cK4x3>^d*suFQ^{KBev*Z`Nfilys-fVQF{Rat;%=_V&B0Lql)7
z%G#H+C1+-!gdSiGY-6g2jR){P>I{1cfQ~yUWQy7toAJJtOe)yqeZE4H0lD3ihSiI>
zZ8`>^Od@ozD1(t8bkrW!sfM9fz0j`r^2+SwpS)XEC2?wDw8Yf~k}K`SezqO9%Htla
z3=(DpA2!is4ojJn${<a|8>+rpGQwZ54Dh-k3#z^%18~itpgo(Z9<8RV+gdavB)@f=
zR4J2sH1hHUTRk??;fB`6yF@5r7D!NWr8#gFFt)|3PTbEMf)<s4U~1&R3l6ztUoJ3o
z-2on+m}tPU6a3=*j~h`zqFG$N8C-^*NQSoV!r;CTn@!uaR=R$k`%mCnOExiE_k_+k
z59U14@*S3b^HSF+eowE3S#Qoe@pi#QFs(?_?jp2-dQRT5Rv485<^PTkmKc}>aMy^J
z#Az*O<-J~*aIE2WXbX*1CCc`z#}oYN#kpW&4S1ZdZVHU6^sdKjHG_QD0+13Q=6A)A
zLSkzNmRuFD7ltj+*|HDen}pZtI)(VKp9<1N3)pYjkGDjq_Ki;mcwpmK9~m~o9-4Ss
z78mWb!0Xwrqsgo(Qr#G_qfG+kRjp0~IhXn+V6;}r3-@IMMIt&~L_2zP9(_Lj8La3c
zt~^IuYl9qJJW--A-_Gh68+D;{kw0<{OR$l?l!ZVR&T9faJt+Y8FT$&F%mR0g0uJEc
zO+^vay?2X3MF>9FF&7xf+!DAXF$D18)|*PNSH7wyu6v)Zd;<$Nq%Vdzv-COO*?E2W
z{fU(3^=!`={Y_c0vD`v6;{(~@Q(Q=g4@*+Cm~`5pc4gB+#b@BgoBW}sOGLIu$m`JG
z`G=cI9I)Qkth^*$OyNiSgiaVpfO^0EIGsn7a$Nv|uI}0}Ro$odYTmi-kqL8>rNwGo
zQ0^i^{)!bv4%BOn-$1_4I#wEt03dE@j34370C|u2GB||fx^OV?t1zjlROuVGWweot
z2UgylgzvQb=cs9Q;976eRv#TgPnW!3Q)etRTf%alxA|Iy!9{+{G0(kVidSI3`zjUr
z^HF6N%fr%>nu(0w2{g8-A1XE<bbGO!iBNB@Jv!6UHJ&Ss*}{XFZ$Xo#naqiArT#NV
z?|KWaj1l`=F1vuut&1{|Ka(?RkK%RFnIRkR-T}Rd>EhWC?7QPy!gpPT<dgJibM*Vj
zX@5=WJQfBWe5QEQVbCDk^|NA;Cm^jniL=p_j}uuke@wvvEGYu}PuR`qpNrZdppKkg
z!%pL}ee#Xeh=BD)BSNW)%TBi2RLrwz?J}n=?$<_2s7orXMCiwPWn=!Qh;3fUss{#b
z7pUvy4f-aARK|NBw|sFnz=rc8P^q1OBlyigY&Q3>9%ElFUK5XTr%xAW7L@mYJWHWU
zDwl-aLS-|8^a9o=V<pK2-GU)bCZ#mEu|RzV&&^**o&}TH+|TvBx#r7YHt-mDEZoj9
zQ{2f+9{ewoIl)tNv88?oWYXle0Gn~e$?o=Lm0X)P7>IU$?&~<>)nWOgGRqni@j<(7
zy<jPidHu0Wf+jQCGm9HT*2pWPdAw!-$2BedKjPN`r>pn#V$i6?e2Va-W=9N&Fj$0a
zi~T0vtJDGlTyRU8`*2v$aNkJB&jqe%?$I&5a>u7Q9@lc47OU@j)c2T=25!bv<O#D@
zp5+fp{k8&U0QOAi4<&UM;j<dznfH>A-JDfOkveHUu6x9C!cN~SA$Fx%&1gMe<N}yj
z0j^Z<Gt0$M8hv(5h6c$FXJl6{i*sZD6jyRHWqpASKAp)deokKoN^D>uPwIaF`}!Tu
zdj7WERgodKyZCDz>UiOzs=aOOgOU)!nCpVyh|g8{e6kWZY6!YeOuOl_Miu!~@)=s=
z#b$cCu)==QGX7)~pUO(<-@qsd0kKy}seuO~t99CTHTd@+I(NTaQ5-Qc>n!~MXw?c_
zP+?xOPfF7mS`BPREdgwx=Oym|v!VHLJ>LVvCkcgW!PMY=P4D-*2Zc=7bu~L2U)kh{
zg!5<>+$QA$F>hPfckAk$U4>*#9)#O%PRk;gs|bx%oHFWi$O?SU!1*}R>w;GL#9~X%
zl!BMg0ezwt0fl7D_QK^KB_5uvXAJo?j?~NlLRjfCnN9n7)Fa|s0fK%wBj=^N-!a{S
zWY;+q-qE{NDKAQte5Y{5Vleq>bS69QD(Gc*m}xRwWtlhdsvhpMTlf*Q^RU3=rk~Xb
z1?wT#XX&PdV$0Ra4pcAF5z*s$hE%)Bsg7x~17by1*bnJliC*F+1a=bxBE##5Fb~XF
zYCw;XFTh-qRXL8r{IQ23sC-_pEllDlUGyC)QhTNg7I!lM*l~lnKI7lDFNTEPE<x}P
zG2yjCJ>>OQn?NO6uAAtlZ<9lJ{`|~UMU*$@bXii%?!dkw4Q!yKo1x=*f6oXuFw**N
z(hO!Z@h0EPxW8C8;dLxHh9P;gYhB6f?1RiQC6fKvv3<*S2nv^Rm7}nUL~vu#%Up+p
z*G)yxVyXX4g1`33s&3nnH+6RNpc#<DAmKqvIz%z2OOU_EG!R}i@<o2Xg4wEP&o1_}
zi1W@%AtkoF;as(K+0St_8_e`0w<y^^BsP<@_t;%sQCEzQN5TmBp!VbOKTYtV8vjO~
zn?IDc8@`up+oe3$p#FYJi}xS4dLrr>F&_{h_Dl`wudjQkpPVL{N558y$z**gfi|We
zk&sPfo$?tQB8$}3GZHb;5flDNMuer*K-6pq^=C|$VmcJo8d(XGd>J{}S=++N@-lX|
zxA|EgF`H1=DmXi8!8{8+4oDMKpbRIV1?LVqT+x}u%wl)J5u1Lr$I7aJH9bo$)7t}l
zKjq_~yCGL2h_9MI1nEoPT5jvrTpM^e)qtfL&IM3g<MF%@-g{dg;X!ZUEqa{s2zezh
zK>ksgm!(j$@G969FndlG<J1h+qlpscycO(RmQv=hfENZ{j3v-kP23=DIxgOJVE8;#
zA8|bD7?RpjV#YY%CG`(E?NeXJZ>AXK%<;@IItuF#Fouw#a3D{xhubtXryn^tG~aLG
z{Y(DM^!M(5D(x8^Aku1Ke$%!c?(4)bS2!|-)HCf~r`|T*=ZM3i@T{E^q*Sw_FFK?E
zE{4-#x)}>@*vKBi%<<TD_5il%!DBfMnk+nD4c9Jk=8{-GgI#_n(XYf2CCSL01?8u1
zKK(LP!*hBq{@a$fOi!FhuZjKkQ^14RjecQr6SCWu&G`lyA{6<ZuMU$)G9?}qrQ)Z4
zM_ZCu%vPr-p~nKJsmabqig&|9g3&7fEg#FhPIw($USl(gBqY2!x3m>f-QYQSa<~pf
z0D&j;A^8!p0>AA^kVax!)*>K2ZL!aZT>30;u*z+W(h;?E{sBTjsy6;3BsZ|cU(?xK
z?rY2FS$iE@g5z$vBV?XrEE`c@Qgl(%6;pFEUdU$WRwG8x;nGVH+bM_D?z&{l5g9b2
ziR@;x48nl@wuTQLcK$au+fFl1yp}`rh6InZZLb^Pxse<+<8rpBpe@%*@hQ(|8(blH
zUD6OSzrT>*F>=kWpsnq<)N$nc?{3sBMrkD-&O>{T(t;!+=b_2G5olrZu0{Ij&qx1)
zX7CIX0x>FE{t2&Pn;uqC#YymRy|sj=YMP8ltLikR6~+9(<7FB>fOkL2n4ol!9iY2v
zk0*_~#GSi&LHq9S#}4Jmh8t`;4X2YMkB!SCH>&39fdB3^lL^v!cs@lI6dW@f-^-a5
z5%f^@guDCR+2-)QZV3S&j&RNV1U>_0Whv8g8K*O(z@yC?d14r7W|t~>TJO4qKTFT)
z*rA803-F=apDrhosNs@eo9+LvSPEYkN}SR4Zg&X!dT6>?+jc;#EanABdM!xJ%`SS*
zy=1<VO8<@sQ7d3c%dDikbhxs*?$1x@L;e>JVu+%L@@D!i2or;li^d#|=7!2m!uEG@
z(32#~4mz+|OL7aooYLqyb2*V>N3AU8GlTw~1w*!L+z5d$g>hEx_OIs^0zpFEAsf#{
z?T}v?eyIw?HrBSg6FiFK^KIpLC>75UxFLr}3oyDv==5+16QNC;^_N+ho7TEu&NNqt
zLT7PNc{hc}<sGyiL*E|4R*mHv!4T^P=pjnzhUQ3g$VY5{(0nr<_aNI{+?+P*t#W%e
zHWSWwDWA;KM$c~3BC57oY1Ld4W;v|X)&J15$r;L(!D^P0`bTntqcel~r^dQq!weSR
zzhtF+9t`^2@Atep=zF&@@NZ!d+zb!s(O&)k4g(D)Pj#&I+_U2pdi*A39_r=VcYK$`
zqfftJ!me@wQ#Q<eoj}dzRdnXH%Id1A66jz5^IGr}Na!3`emJy&5Pd*29baq-)jD_T
z&;O`ieziOZa`d6X-wY_k0<(InfoB}Rb-DMi%Ovc3Y5gk*k~GdkT3XCZ@mB8)Z{MZ_
zA-@k_2HgK?VPCLMP$6nmubLy0Y0!i*jDmDYAa<GHeZ(#CwXnKUUoaomWh=d)Zw_Q{
z6TC`Th!sZbX8xg-7pSno02pELwu&jTIavcH8DMf*qG-*yh9d%)Ca;0RXEO45)d802
zKQco76Tp<@@52u7BUT`_5zzHs_HG1ott|?Z-UBmB&UYhfccG$Mp<<MXis}AVsX*i{
zV2Y_n;x>>X4z@T6s#W636-KVP{P4{hOY;^TT3XLSMtDkK?$LCDWKjWsjDb-_aaAbc
zLdMt!U<$3=;mVR8joN)0agnmr#>k&Bp{W1NB?|$EgoCIEfrSr&NJ|;pW#~Zgg80Q>
z6c(MvUrYOgve7J)8dJ5Yhv|U{CaD6)*QaAfGv_-Ff-ME(YJx~18rwKZ6$`~Ty8!()
z%2S8xyHpQL;#Kp{`L7tp+T^81*8U@<!Yl+w6%bntvQ&th4klwT0-LoUJh3#SF8nVu
zmZDNJEKp9Z-H^Mbk~NF-1X0-(C}<8-F$lRYm7!A0%!a8p{@(!}$PVRcR;YH$*&OP^
zo^n-0393KzBnU1Na6CE*FcdQsOAE5qhxXR(@m^uuKOsmBZe(eoYKHz25){p)=m7dZ
zrP7SGN!Q6u%b8LMG7cl;**R2%so~@k-XvFW>id~}V~L7XeW*$P#FHS=(%`Hzi(rfS
z0b{Nk_{$wmTBSJX(8ZB;8NtKcO#ne-P*5u?SO+5uLF8iAD5$`>mvf3ZoUT?pRh&>g
zH9g=XMXEwte<oFb;z(eLF(6T9%6R5<VFH_uZYa-QgGS3WH4m$LERyXdD#g?apyOcB
zT1K#FmNA#&N6gBaU|qIGm0`h{<=~P%Vujh!EO4Sq5F(9m$Pmta@Fk#SNm$ttGJ_>#
zuuN4b`d0X0u%9{nhN)bnx{w22pP3U0#i|2mW#m6(!-7Q9Ajwpq>F7&9#D9~NiA=RO
zDYT(J0#;Z)^jEJ6l$nQ0O$AG>2}>K`%grDSM$$nsNkE0e>q`o1g4PoG4Vz8ID5TBe
zTHU-tDy!5yrQ+?N#wqJrrGc6u|B$OeQ%WHngwss_)rtT2$V|XM1i;YK%Pl|NaB`|;
zzr6o+IrJQC4Uit)Ee*OwNug%{#{2T%<$OGAu^L^ftFeA+B&r*e@_zCmVDCbDZyRGt
zN%{S8<e`1oYB6M|(|Resz5es<l1Ysx(0ceDcjqv>od7-d1rDt5O9hEoum@YIX=EZP
z$2^(uM&SC$H0-Z?T)uUF_83^E=6h%k-_XObSpE<|2u&4O3Z_U$M{7sf$7*e9ZOOSp
zHL7e^CZt_ck2cAXkxETt-vrM;brhQ1LJgB*9XSMxBN(N@9s~|-91j|hkE(5Bv9KoZ
zyblNN<2bWe;J%VyhYZafjIBNaq<Dd<IL^h$HRO+tj5D^x7GsmQ8lLYW0#_%yTnkGi
zEF7Kg1d@#IEJ#NcAk_v>OLCGa7Cda!;zH;(Ks#oVfY9ia3D04tUO=5Zm})tcPMnX$
z4T_2cs>zMimx#{7ncTqWHa_VE;d{7mlBf{6zFz8+R!n_|Xq}!&79^4iUVdO9)yXth
z65GZ~D}v%c1N;t2JOiCNE@zyt4$LVg8-r*AWQqh;Zs*WPM;-vqHUMV_X;FjM;319@
ztHu3ItM;aJ@=9#_wsYgMY#4Z31<hc4`zE;Q;}Bk^wp|w6t7Q6WD&Qb9E4Ewz{69s5
z9v?d4BhJrDbfxEOdA{&gw-EKhgkEZDw6Ul=tb5nd1#v9!DfS=b#(ZL25fi(zqK1uj
zpTT90>DWqD_342*W=e2H9V<OW!oCW5p=emp%=-n4UHLh+$NMbjU*1`n7Q?rG>Ng^4
zI7(QQbY($7HcZe`ArP>CU`^r5AogX#O4kq*PVI(#usCX-)rj%Lx<Nopy1>$;5abb5
zf?y&t7n$QV*8qC~EL*>@Cafyxb6Bx>)KVa(eh|fIq&@CsAlBk|&Xof3b9Ldm%w4#L
zafbwRG8v%+nffK8(m>mAD@U{sBoj+cacn~6L4RbS04iB%QQXl?!oL_Jt|0Z9R<|XP
zcA5T`DMXQQQI~%q{;D7<RuCBsH-M?z2o3&YrHO52FuDT+lTojH<K6b|iPjVAL&Q>r
zng-!i$5o^^?lbE5S8T96A3G5BuE+XqDP9Sqa<ryeL75q9^gTV^{91^qV!6;e4*q#=
zUUe3uI9+5WK)|>tq5fcN;FmqE*;1>Qf_iw1XymVm7D#k_J1XEvZ<JI@d0Jo{;3V(U
zu8>{m^B<LlkRAn3Nd5QpY%G*V_&KXuN-lCw-_E;Meb6n<VH{%xJ(Nr&7{XY40qIUF
zNA*X;vnz#aBkpd8hU0-WZ<>R+hWb)Z7T&mokP*%d*lHNlq1sw7ZhEayadc>H=Bmsp
zyyPM};{AI9sQx?<)<)Ii2Oy2Q00t&~$eq7s;E&S*pFb0Vj>DY<u&w*v33w)guU6B^
zU^wbo*qQZlAyBn<)>DfRG11N>6b2zqfhzAqb<kxLY@n(LV6)4=o+9-aLY;X;u2x-_
z@<7AQhG#c{)@c8!50H~91A`RN@<$%_7b^yCBbO5y4nDhgrAApMvL0XJob4N#Mij0r
zG)!H3;$)}uFQ)=dkpw130>*_3U{cNu-o(1qXVCk;facQ9_!u@0A!=b%w4nkbGxJ9x
z1wx6|0Xa{!+&t%X=S|5RF3I$FPp6A;Su|u+E)ioSVJ8$rPLD<rgew7JL4)8vlodi%
zVcC(7sm{ENkjk~~u^Orl%obf>meU0ljrx<1JJOe!STnYY*r5o%E?-!)Vj2b0p!zde
z1!b4zs;j2%i4;&FiYy2Zl@E5=w^RU*iXw|b9wfThitNAqr1Q56=L@nzS+iISHKi2Z
zT^2KcfDyQr5SWo%*$@S)xP|4ZH+QMLO+RB_)v_W<lY;yhh<=*1QVNd|n2XSHijJD`
z$b@H-Wj7wN1)8WvHs4%Go$Jtl7;!KiC<qaZl9kW^+t{BmkTnWX<kR9xd)3IhT6Z)G
zcBC_FwFP4zp|YFz_f?M}v30|v_p0ubPkxW%32vu#oqW)#B0-J+99xtDY$^)7hWGH!
zTPqE%@n5Y9=EA@9M4(G@P*!qWP4HyFA!Y4EENr#SicM7+i;76rytw5NP#LonK!hBw
z3^geu9Vu`#>K}5JGwRuB<3iMc&GW75T8mQ;J^4u}8ugrLcGX@zGAmZH5|a*~1!h{o
zkWye3b4<Y!7$lZjsiqe7#%?t9IJJka@X?*^F7`Mvfjby$T6TTm`=NJ^^E9vJ*)3?T
zZmV6qI{bm%F&4e<P7>eq<y4A414S<S_T}(ZPtsCmSOY_-XR648L}va(p#kFcXgD3@
zbS*yQ-~j?-BzhI*Py9XJC1t>-yu?%mdx=PbDYZZ$9pJQ5q<f*3h7)u#7N7s>6&PT=
z3b@_Fa=IO6N7I73?}l9qk*~CLU)0bH)n-aDp@Y+*fQP_AR7ap4W{~#KjphUgnAcpv
zDJq*AU{c}9Xu{Ul>mu&Na^Z(@Wo6WJ6*#sn%At!h`;sB40;rgPlU0CagVEwqjp2|Y
z<J(=eK5|cOt5H+o8t1=RV=*io8FpTvLh2cOTel5-Q%*fVf2&|;kWrAKxWef~AXEpz
zG{Lg^4ARd+P0va<dY<0G^zv5O%DpOXiz>UQ$QwejR{akGfvx5+(~*$`nHK3t*%nDR
z&v9#ODKvjfO4;WZBlD%-C%8(LAq}Wmz*QN+rq%|45;W6PgF?k_PWyi^T6o4)o^7JG
zq0A3(co;OeR%kfAWu|C|>-?*;b}tAY%4Ga~Sc385K?IbCi?xZTsehV*g_o65yyP&j
zk=K&@P^Ez*Y2j(jECgEtAz;A^fnSEFSL5%t$lY?KtBeHf<nJDiZsTbDr|+Whjhm>S
zw>mUGr@3BV7pOBXc^{v%9VBdi#;1+5RqiX1oMmzL-HIrB4cD^U(*Qk?miTJb*E;lS
z)F7U?I^htvkb@I>pOmVfG0Pv9&xu802e0(ESaYEpMft;<<Rf)<ZNg9?Ry*N7I7=Yt
z5OB<SQh!g`ViWYCg)P$Fzfsl8ArlkL;~xSHrjGhiS>5+*JmW8}a&FsRHm$0<{|$fQ
zAERT!4k|-Qcs7F}MC!8h43Pp077!WJc+;UvK+Tk481XWR$swzB9&!1Dk$OdCy4m2&
z@!&ah<pMUsGc)1K5NdU6lb2piUkE&Ja#U5Te6Qdo3{FjbztwVar=F01tbgY8l=nPe
z|M-&mp~@ilh9b1N4#?$Uee=?&wFJ``3_FaIErHP@RQ-D>UF<V4{jeiODN_#7IgU{*
z1};Q_rc8m><W}=nv^ooxGQ-4S^H@E>oei?0GeY)2N0=R{b~oq$_pSQ6LlR5=zCAK*
zU$sHlHnA8P4{q2sk!}vDNLT7_JPnq*Kx;SL5Kx0KauO*gMlYalp?3K+jPh{3qgJ8Z
zoRerwSL@qJo-uwON1J8^UHc27foq5Y+xpLkl8x1f$rLEc8dotKiV;o-7;S6eSXpgx
zUY&8v>+TKgq$A|*Wz>pV1M~NA0|jB>FX`ZwjTmd4CF?!(MFsBPQGm>91~9O84>wyd
z7<m}1pq(-;SrGPzH~24jlb^JfJHq1u)JEM$bzYs}cfn2zwU$0z6-Sg1PDq?V1}^=s
z$0cxc4fBc2JHu<kYmS3iE%uD;(yTMv_E@l5_djE1rH($3(LUi!aEoZPdP?SikrYG1
zSSoV@Txrh$2xqz1?duhT#ao&;Un29JtW8lmxqqK%YI~j*XN*ygWhs*wG1Pt9DX)T%
zl(b0321Y6nOTp*{kRk?W(L@EL{U5Gx1GNFb>T_>kIW{m2Hwqk6zLP@)IJbzQG&o-w
z%G8CIf|4pAky5a-$RY+-vSF$iQ~n2wbPX;dWUKIX&r8#An+~tJz9}<z=(^rTP)G_M
zNN!PbS2BvPWaTN9&#B4z>MdQYPw6lPz|x2isORVg@uNT})BnKs!B>yVSoZb9c8dSq
z<ImKWp_P0_Go&HZZii=m(teux&zc8g3P38Zs!zw_GN~M!@=N^(Gj+hu*?@lw!hU?!
z<lZkD?bm`j=T#z-uV-GjOrHC6vE0y()?*g}6hc-Y)S$c(<9s28{Zvj91}nxGmP~%g
z2Txw|yH@iahu={<PeI<b9fN$9Us^_Cee+KFq+h9VR*YryYe#{YgFvAxfZc5b^OH-N
zjLw4(W3+{DH9B5l0INors(m+XoBm@IRy-!}ossdj=y!S47&}Xk?v2hoQ<c%2h55{=
zYynhlz~!~F28PA{bF87PB{Yxfze}^Qom+v!+~Lm>e{_2k7ne>;zLEm($H7Yk>}q>8
zR(jRAWYk7e!T+cMS(1aQW`Z+f4GLPIr)@2Pb+S>PvPjwGJ@@Kr{qpdF-t=e#>hSmf
zH2qvqIWW9Oyk>mAOc`=;eb+?x4sA7+FTnzpG@zc3fuy35<WnLq`KvO)3h>e2E6MKl
zZ0McKdq|7)xZRIiMdvJL^&(TYZql^M8J)u0{M3JCyPcuO(v0@Nz#5x40ds~xDq`aF
zF~dOzCo8uaR9lZgXoT1^ikYuI*T)n~(f<l`W0SNLWHw7X&d}D<QZe~!Dht9D08u0Y
z%Lv!vke5Z;NO%SO&o!zsfML2;Fz-%bvsPhJeDD@wp{KS^C;?|H7XbrM!U{$V0}X0|
zsxFo&H`D`+%Ut$ssntHe*#rWPs+MQvfX#TeHh#5a-fn1?e%hd$1%wN?luyJm^CqkK
zF>tIF1FJ?7E`qZVp&{G+x${FK0)`1evn@3bJ*$ZdZ~rlRpgdoln|z)hxrpCRMz&Fx
zF^w>xf&WKCWJCfVivocg1J{eu5&=|{gk3X~TUg25VQ7}wx2vx4gI_~9;~GYSs^WgI
z=F80oh&k4oUk8a&0%9iM_d^XcC07G#jbRjnboz`sK>m)FF0tl}#QSo)tsn5t>N+FU
z8pdr+OlYSu(dIElhXtlwblm;S@_%)dfTJ<G^JRJSq1I;1qRqa$=G@=Q9UVUJIqJUm
zcy0u36lP8G1mNF7rQ_gMgwB>3&7nhY@DTnC$|m3>e|Y4kT_qSgsF9_6rWnpt2*ZlN
zLl%N4%Cq$WR6rFWRV*4p4ZG%Zk$#)eD|j0&mxmGaDxtUDT{o2jTUudXU@vuXJd>#m
z?iZqC!`2<R6(89CRxuxIlPn|;fHVj(=3B5mK#l+*7h7W={q1v4`Wq#%hs#hBtTgj_
z%|o4Ae+uWdQ-1_k<$R(wuB>>3Osl|wcJ;?ws7m@NKRY8+3N}BL8<tHLxUKXOh<b5g
zYK~M1$5!6^u|r0(S_Gz7LI3FCb=_?U*RyWXK0>>xwDQBpC6X?BsLmz3IkUS?(O#vF
zPyN`0a);E3{}<6H#q-w|)ZC++>Iu_+ZE4*udrAKh;PvOsnnv)%oKjGW9_{Tr`?NV{
zLXimtJH#qQT1ZZitrAqG5>wF1iW0rlf5U9F`{%``Hv-5`z}!8x#<R5=i|nnqE2^<E
zf?LNh%`3OkD`LKPJioJ2e}dvw|LgZgs_ob-Th(w!KTc@~4Q;0@48#<kKJ?;&NNkIL
zYWw#m4<fyR;)es}*DsexZa7TENt53v6X&MkV@San8c)r`1CBVOlor%sG2WjU33MbG
zz8+~bo2nmb!=n2t^w0vKkXQ|PL>HcxiAjBz9i$0ZMkOVO4@`?cfd@3U)of!+W8L?e
zp{tIU?%Yhfvbt+*@v#A!3MW>-?IOWlS50R)f_mZ7>UK9b4x_fCh5WXrdo}1gVKYu|
z*MQYgCLsWUg==aCzi=Ss=6etE(2&be&E&E3{S<}Z%PTWaO|Nd}VJ*$q<o-H*e$lP>
z$IZu>VFf|pi2W(#6E{MgH|73~6{oi}Jfb7B`wi%vOy!U_OC3=8?Q@D`l~^hH_}&%?
zwbh|E4Y;LskF2lSxmu~YDBIOie1AGtL(3~ui|h5dMM`iqABMk=aC>a{JvF^_h1R@;
zpdKcjRqvnptbBQXmWcmnHF<r^1Kg~y>$zgAr861l%i->OH9~?@mxYYs!Hqf?wz-=&
z%U1z;3&vlw*P@ryOq}M#nUjq%dHCq;p$>dl$;KmQpJk{2BYyP*mi~SDl5*`l;8)|@
z`N`$OGw=NR+O{Iipq|pI!V*)Nt*&DE7a3GgoH0Mu#9xaUyn_{xM1n42XTu6}^xf^&
zd)vjtb<jh(?#Xc?57{J_{hk04;dP9{0~}kYPu5Hq@T<V5@C;cHmtOSPCtedc7n*f=
zy)>1x3Unrr5@@7iz++s}Ve)971-zS28ztr2BOjE67qWZNwEG}zy4cT1zxrnjZLUZE
zxFA5tmqFwL&D$a>CFJ&=(fHh<AvS+2)MT=5O~xS)^WmVnUcbNa^j|-<GjB2}_YgYh
zUnN+|XedUPZIDv(ir7CxrO%#K6q78kAAh`Gi$R`y8jaiuW>Z&tel?btAua|kjD|M?
zj4Zh{dE0W~8I}gCWNtK{@mE)Aas`xRX9)PuMwESzK3<zCofRB-6vG}i3qB$@SS!`$
zh|Hvs2B`8e&;70bf}q3vM=~0q>P#gA8rdkt#6~7@K(Sj3k@E<nR_4gq5rQ_EVsrfa
zb>uw+*eogFyUr;m<#9c)yCQkkL3tdP;QV&!DyVff7ysRS`iYLF$1$XAuAR0qu)Q4f
z=}XsrH9h2>0wkg<i8W}=;)g)enM(bg0{kPmK!criCB^9i**Ba&ZzwBU4SX^vsI$tW
z3Oc@?_6O7`yH^Sp{?-FLXC$PPWg*#ecCzn!Ry(bxDMSqA5SHj;`t=z?IMWEW@x659
zyQis#Abcll_+}`o;0em7d<}p8t=#jI2ELQY#XTdG(1#wJLuKpGmJ`&uetvkMUZz~z
zI^i!!j0fq5MCH9-_$jadV$ZFQyt6ad5xx>#2mdeUt>f=3)?ZDVfmuzE`lhPgqw(+4
z$CUB5_{^gN-xJixTq0gsHq42+Yc0cl+$^?B>d~WWZRx?lK4AKYmnMwH%Ki7L=Yr+;
zzi92gd{z0|i#D-fHE~|^{!5HkSq;X~$gia&`w(@S1Q)Ki&$t3N9lyW`L_7eNoPe1g
zENp;;pR{(+fNu}@cdp&BhmwTgH~1q(SVQ5c5tON?5V1;NqF|yUV?y({U5(+X9=?+M
zNLh{6#L96BRwzJ>4w|wbmr>3k-!j=kHc6DkCJFWF7$mmSirMGFG8Y?MCt!^LGKcQJ
zr?ZF4o_kjvn~>*8j{9;FUe}%WL2hr397i?sd~uwV9A8weeFJ`J&bH|vFGRm(0te{g
z55IRATm*YupR3n2UL`+`N%!_z8Fd+`DyD?aIXV-paD?>*Kq*WRrD9z14Q7;M_4tc1
zFCc3J2IJ^*NgjS@-o5{Jv_A5KAMfcl6EM5nYHawXZVs2M`@XJLR8tJdF8)Dui{8@9
zFJqxNJLHmS`Mw7edWYS%Zndti>p8VCoSv*#Np7xk^>iHnqHwPaZqJ^nmRo(~F36S!
zn}N)*!Iv+g?L`U_)>mW=C1WSz)HrO_n;Y%If9*WyT;R2#Ghb~6Xb9V!_Fnejy~W~s
z|2H$Q^Xa-*^?SV;&<k4sa^3fO-RD=g)(ZNI90N<OI_bl6_n&n;n?7b_#X-RN%Bo?T
zx2q!X4la*psV)DcGg4+O1ROAet4g70j?D>1yVJ5lI?5i~4VU)p22EH?SrQa)3lX>D
z#JPL$vs6rs1V=g#5Z23<fMV;AGaA|e!(DVRrV~fndMh4(g2nSQNjEAO?6@+2T#JBf
z$eYxE8PU9sz$~O!c|VjQHW*5S157RbnPq@f1Yr=N$Ve3#ZS0aA*p<0n_FY7EE=Igb
z@9yLyEuKlkYpU2feTOJkRD9-E^;zmW_c?wQmSwIFm%W%?SGaSs(w%?0465Y!NXX~W
zz$8hK6?LTym?#6liRRmu>dmzB=-2S!sQk<XYWV)xs3~7I3pvF6M__6qsIN~67Dsjq
zKC?Ld2^m5kkPgC*PbL(^qVN~01{&5J0Y`?7m{zanlOa-2<M@`3_d+H-4vsL{#+<F$
zigP);QE3j~PzP0;n9kWps3W!hPvc38e`az1QFm`Iyf#XlJ#kZMpnj=kP0lLtQDLW7
z{<BoAniO5KXQjC6Jln>{=<r-*khlvI%gaO0s5R|`MW4I<V!gGq?B+4ffM%l{$m@IH
zui)G}!I%F~tQI{}oHBef72S@;l8?Foq=pWXZ2{>Z8oxxPCc7ZV+~HHPL{YZwD+d1z
z8^Ozt{J2r}dg!_NY{l03p>lL+PE|RvO)W{AGAt+f{y+dDVxW~6r0FCxJiyE*v)k19
ztag}-KTld)M&#QG8e_jY_eTD3KbXMac1p?L?o4O2_G#5yj?~FZplPMS&}djCKENo0
zq%w@CSWTMG!~wJ#4k8;AnT0(XZNJ3TiSgH~zgZ6OxnAm)I=PCPXr;!AYb*z?TSTZX
z42(?zqbXkPA0StNBRRy4o_7<bUB|VVH9(=WdH8DW%KQ88I(-+*n!~lnC;Lc5Y}x7m
zsvgZ&R$#tdtaceFZhY8rb~<WNylb5;4voGRN2c)QWxKCf2x=u)o+}McnR%U;+E$f-
zFQd8z8sFms4rbka`~R2RAvf{a3!`_}MBx%TI(6ese7gd!N(Gy#wyZf5uZf|W*;iQQ
zQJo1-J0O?ehNLpyUXl>gVz#x$dkkUT<MJHSjjXqyqc_O!t`GEu&(e+44vB+R<1=dc
zK-lo{@gVPih&K{r&+cV;3GXR)|Cw>Yk=CRBGp7Q5Bwrcnm#J|mk9TKXs;*&46R8y{
z&ImCS3^JFV?r&V_FP}dIX;`@@PJz(V-|a|XOruTv1#Eof%VxiZ|I-Dxe0>{F*kwu8
z@=AEc2T5=%<UTyojbK>BA55Xm#eb^dkCvz{f_e_F29yyDQi%zIPJ}5*1rRR?Ac_#^
z7QIkY3%aE#*-gvx6O}uD>G;d8#qXAs;W!KMVNW{T|7c#S@R1nu3I5zq+eFj3vtrFv
zo%GW;hE|8dtdz2niUL+4K~&sU^rtceijkb6i#kK!u~1$kmpQp{?&QG0wX1k;)ywyD
ztKO``>Dm>C{jx$ozZ9xRW07v{Y4Z?Zb)F{i!|wFemg}sY!ad3O57Tx|q`cLHxu{i&
zW+>eB9{g_m#N9ve$yci8_2R3HQ+s05aM2P}nzSM~zxMu~29Q6TTIT7@M`w=TGkSe+
za(rA~;0V-YUbIQG9Yd>B;DAsLCi+v0fS5tU6Am+xiL#{h3pDHPW8u69P<?*tg(#fW
z_3j{=_{A``cTlI22Wk55&c^p;fj_6pKD);?1$hx1aO;}J5i$TBoX#DjNx84Xo?ORb
zbxgGMD4$mi%<L}9Moi#{@lzdoJB^e7`}heGJ~W4b+_CxSnDf0X9@=kHOtQ?i4a?Dg
zUf)GX>EV9W&+}d$zPqSd1)DF+-HV_iPbs3&J3;q}gCb?f^!b1^-((#9BysozEj6kw
zaIWS#*^kIQXRwaw8Iqq7eOSso#f}$nynH8uR@l~Q)OxSozweAOd%N)8{7Mg9ZmxrG
zdCgk9o8dj3SAV`0urOpXMs<Z#Vdo3juNu6}p<wQEIrxt{Q91e_3Xr4hxjIo%0OK#t
z8Fal*Y}j}8*k|i&Bk_OMyXLk%8@ZJbbZaig?`bVS<MiCC;3oO?|Dobft%S|vptadZ
zZ@#?E|CasNf%@+Y5b<v6=i9#l^>7*<0tP<@m02<%WL2#%OdLh2kbn?aNXkY+#)t}F
zxkXrAjKHkW4HJ+(neqFE2#8e)-K6X?>1>72V{cmkPoA9!%19a~_l`l%HT0qf&Fz|)
z_<c%JF^&F-Uc}D#KKZK8rr-L@ETfQUrDro_p|LzHoWZ29|H2wrDl6Gux^-#^lWuK4
zSR=1<oqnI20`=VOXRAy~sR7%}gO^^p4P}4I;gk13<=^31ySE>M(dEipjI+-(W{*CS
zo9&;T)Tiym3Hanjbd3D;qhmG51GMMr4lN=2c*+RWP{Nh}fUOY-;{=<(Y{h7BR`NLx
z9k!;zMsK^aOH`?VdgqK=TfW0AKEHl)ZDt$Bf5)<dEvD8Wvz%oD`^&~Cr-Wh^4r4$h
z3KW72!h#NMkqv1>B%^iT^2EKF9sDU7@@pHi=|$gkD%_c0yoFr`ZkMvqQ~C{FsjN{<
zZ(NCDK=>cY;{vBSN7zTGnjwuveuRVP{y|w;jRErpm%NG+nF*b$9zQWko^v&BQx+9v
zKf=zp^#jXRNUeh-m6N3z2b>B5G9e2>TM7`2*2HLFBqYIM!)F%{x1`tn`0>ftV@Tzg
zv`>vbX^75wPM^Cmo4m$aRX>O5mGg8kT?`^C>@oOKUA|J0A{&;@0BTGJnxKVCm&EWV
z5-*Q{OkEK-&+|=0IsD#u?Wr3yCYjqvO#OqyHRZy8WgYjh+;hGiyqoh?fB8iFiNdX=
zD<E8K(;=_?b3;1wGZXM@z`6$hr0<p3XFdBfUiQ~da-yu~%?zi?hd!g`^zW90-3$Ms
zZOqnR9#H)g-vITHb(B$V<WNQ+<78lISy)U%XoF%_OT|i(j(P98=gcsHhD)TUpSo40
ztHyDxEUzHGesACM#|>RZG*GfxeMAXDH6{595;PT1&{8Joa=VMZXgY8}g=2w|uK5*$
zwAWix;8J%<Lydf}z~JS_(OZ#GVq7w%SZ>PudldxX_GUMI7TFs_F#}G((@=h4S?s@g
zB{7E203DUcISv~i5jPIrY*E0orvH@v+a^m;=nXy^uXm9|;Iwv1pqOlhvk8d25j<rR
z<z8txFuL+^DLh&ezrOTV<*XkaLwO5{>-Kb8kBpgHaDVNxwO`wzsfK);Oc5uCwqA=0
z^kyl{<<F2v9nPsoL%e4%y8?>?oc||7zqHHv$u2u+#bwzxqWH5tUl%{s5UD`j**YKP
zWZ{QA6@F)ee3gCnq=c)iYBf1E%Ef)=$>kq&6m_MT=?qC#@=3r)hG`K`7+##}-VWio
zajW0{1PP39(bRv=aK`x69`P*Uv-i$Irm)AYCZze1yRK!oVs`_H*H;4Q3VU!DmeTjN
zYmI9ACI|l4{Gcx}20h7Jod|vs;Ax#2s(S8X^hFRt-n!Rl4f!C39rwSr@8jf;<$C=q
z&Az_Uk`C6kaySzVv_D+|Ff<)VTPRul9I7M==?X_y+AsR<=mx0Ve|hWx|M@D3=Y{kK
zpY#WMfn2TFmN1qy3fMFfm>Le$A<0Ov9V$e=qJXH2uDF|odpaxj?RbQ-E{(M<Z}4mR
z?J=p~elzJ&4+pci(akp2?t5-*a^Rq9*JRKJ&`Tj~YN35}NIa{m-eb3UZSZ;6w{B7X
zJ$&m*v*8=iL-dFP=KY>RC>R{bQf?HHK*Tmq8^n(h(d)u~7g)weMS9Cy{lKf{q|{g`
z-Dd>rVucJF&&n#uCLJIK37(n=cDb~NXy3%>eF)0Y`+ow)C^^@%sQl_-+%+Xh#R02@
zOLeNnW*dSqIUY`zG&WIZ!=>8$*5cy}mJTH=huPVs;)6U-?zzYBoo0MqKC$>+apyCj
zT?{t`XI2b9M&JG%F#UEZzp3-a`LxW(Hw&bShuLr!Fl(<Qew>nc&3Rs>A--_W$E$}g
ze6iio4X+RLqq1YibJ}8+gA@s-VWh<XamoR;5CSa529Q+em<t+f@kT3WHrCPO{d<;d
zImh|a+=e%yqSrLes<e+{OBoo)z{1J|6blL%l^hs`MGOmTQe(!a`wgplU;hEV#80as
ze<H1WI{@;1qNe3!C`u*w@u9ot`s)72Kcbd#oM*!_pDg!3!_-k#H$+OfCWS76E-(TV
zVFsAM5E!vg8s}6{<Mnag=X;$G6ids&;y$+BT>t)G5ALMH3-xgQ>T1R6v0Bpn!w%=y
z*S}BG;lrB~#pL|qZ(Lpe{`wN&oo$EyrEId-7)y6u_pjLa3C{ah{K{^aXus7{z=~p$
zU#K5<?%zp|t~S)F+S6MMnU>-ZKxt4wg<^m)jzMf1gmHswN^CUT{c5-VBeQL;Mp;b1
z-Fx0cW_R5M;_>zCXcp7qS*9khS1qo;+-~x{KSE)+9WuHG>5t`)fNL-Ck`mLQ%E}um
ze7-$GRpG0Glo&{0Aaw-+jgby4opYe87(s>=GZ5M|+1)$V+N5_E=9R$N8KU~#INLo>
z)x9xezp19H(pBX2{;&Vv-8UI8ZG@95ME&bA0(yD3;oGOV```cb08#eL;(eLLOIix)
zsLD+wFgFO-Okm0w18SHtFd;F4MInM%Q^Z0Wb&PI2jDBCd{=PR+KhM?lVFlW?=zUk;
z%X6)eKO!4!)1cmx3N9wb>b}~v-q{8$O;y#b`g|hy2=YQ8ehw{u&H(ML#k}2deHXc$
zerILL9%A?EmYOM1d85cDWt>kg*+f>~pX9Uo!&t&qCekAzhU-mV7us(vxfqTMHJRqw
zrw0hC0!8nPN?)D(uTQ?}VtDn|Yl7%gPjIVyQe}YW!KbM1!gg;}^{Dlit*RdH{xs|Q
zMbVFNwheQ<KLWS!f%bcuC+gF2oE1;C`Fi3slBsc?O)F4Hsv^zj<0@pob?f^QJ2?}{
zQ)?<Q_ZrKqe)`s}N3gzRrHaqfs?E3WUGM(tc+Aere0kDgcD5E0th^n0R<g9n<;}zX
z1k;8;(7j$PA0~M=%J~EATV4C=VEdhWyJI}(cc-m;H|~#_-ypAgQks8tOj!Z+2}R;*
z9a0Xblk;Nv?)+Syty3$qYw+51L%C<r{Hudg<oQGnv$xL$RBWC0e7idp@AIv!U%8KK
z8Cp+|l&Y}iKf+Rbn@P5&TYY!DP>)TdtTwpQ;doe1Se1A5cN5$vKKS=EKdZc6z2&hl
z{mA00L;gI^OZLp&um4?lttaspY31~RPK4hSF;N%8X;m5L6FUE|JC9J)3yp$Grh8|>
zQ-u8%)&7Zhf2E`1$rU@qC*I8=@t^;ny>DqwT}#%SpI=c?!y7kutw*kxXWiqD9#qF2
zcjS86)WN_7?6Y@8^ndRFV{gC<Bw@*tY)$Ia#z-hrE8m%4*8AS5nALs~;`Q?jhw@V1
zVpLq~E(g)CKDrpYy#vht^c2Pwp0t|e=m){F<xItU*Ye$WMkQ|@XC|7S?osfpwejBh
zGSIyH8Q<m<UhL7liOltKo-Rd!yT5&>49p+LpG;l#ea~AT8Mp=`*Q&Ih({mB6G8U{-
z8qhHVq(uZRvqVZ1xKh23Twln4b)<F&o1na&_G!wEA+#@CpeWB4G@t$ZmUlb^sybh|
zUt7~p=$2!fE^j`m%1$R$U#-U8OM?|{A7Hg!z9hoZ8rI8`h^k~Lq`-oqFghED9)X<Q
zk8v~b0s};}-g)#w3f;S*c)^7|KNq!%G?%MC7yCHp%PR?`A-VpyX|c~*>{~=3YcAqt
z&DkppJ5X<J(eovi8V^u^pYZNW&+i?=l7~dA9j~gQ55WpXMat-tWC$il2grE>AF>1Q
zgjbSrm2|6sxF3<?^BmCcLgM*fibm)bpKz49?4yMAq!Rj834LcOexHUW*l;EP({ZhW
ziwG>{07wkM8=rx3r3katl31InVqbqg4|oPI8lRE7=$11BNoRCS<Zv<^9T0k4-D^r+
z2VjBY>O$<&QTP<1rzFvEkkk%^Ojz8{7C%p@t^uWXdhxAZh~#&oCYIV2#Iq}ev<Z3E
z=x0{6-oi3BzU~MsjsM`{hdjOD9Uj`r%>iF7x$1{qdYm$7qbs>vIz*)eGEhusK$a8u
z<P!u`!YXM{r2e<_-O#apIXFA}?7}ST2l_|558Zm6Fc@ee^R{JSm!UO3>9NO!DcyEQ
z&M1f;iaRsVmpG76u2rgf%yu`Yd<eq>wJSaomhrf;j7#ag3CXw-lJTiX-hy;_%N-6F
zov=<6)A~cVN^!RR&<&nv>96aF?;^1C{<7<Fjw**akrWdN0a1BC!x-3<6J#Z1aNHs?
zYBS84;Om<4>r2De4cxAMw_4SDx!gh^*dMpmlb_Ev57osgQ>ttGB&9McgBCFWDxSe+
z%Yb|cl#mN!T7{<mX!fL?V5IHd%PEsQ$$N+LzIqO@S}(UR0~QVH)7q5k(;{+~vIAw9
z1Jq0d1<N6FOXNwXpjxd@x6;#hXoc*^_I=A5+f+@Pbl|{S_I5X%r!CNG26a&QxsU~g
zXFW1yqyV8(1a#bibCiHGIj(fjQs>?k-tD>naU_#(qwhVSYCjKNg1ve9!-ef?FMlk;
zX21Mtv!xr9+kcExSxt$@De<_!SwAb(PPc+prr%1tAyx9I10@I!4PX!wToN9XP1y%!
zypFAQ8MKl~x<q#2uOF;{6}_#t)OH8F__}uXwHu^U3eS(ywIs{gr{8MYY2apg^fAPT
zD?eAw$sq`Ne|1F=!b__+g|uD>=Rs;lfZlrWQA<#a8L~dGZ2J#Fru{L0oA$>vCuG_m
zGaNXFX@AVLKjv>=@N7@}W2XHv?>?RO$BdG3)Bc!&VYg2EV-8n+k&`m*k7>rQX@AVL
zKW0KNJ^ajY@`Zi(UHvvPO~6Y_*+0#Vv)Lh7K>;wJ0IQt=WwPK=D`r@$ZI%PWN*GWZ
zR=1oP$RJtAL=FcN<nx;9Ce+i9@@kwdcr~F-SrOWFXPhWL-rc7yoX_)@jEBHd!*0~x
z=)fFkN(87dgY!-T=h-HQ&LtOnFCDc#yFP?>Ke<A0uF$`hzKIW1YQrSdG6-+L1T6t$
zO5j+?z>JV+gqPmSHjnY`S*Dw^NkhkY`WQO~;@EtUh{<tz{d96%zPjUbYdh|S9#`}9
zSMm?b<!P$7MnCT9#kU$f$?j0qZ^%tQ_rD6oXKvmk`_`L!c3)sW_z!ma-G{WEZRtLh
z?{r{MO~w>o0GvI<U0goWYyq3){JGK&TUT17lC$H=GY7$D3y6Y&j{<>fZITj_GTK&i
z5#cfY*rv^PwzzL)Li#`2E&GmHSf}3ksds+hpdI!5El=pF(P*h`xzW<8<Z=SbqW~1z
z136^@L)ON#n0ZQr>(uWDC}VVWrIuMekf3I`&>{UEkbxWK@0J2O>hNj;K~M%W;(}?8
zKul%8$QaldG<a*H*9v9Kt%4bSUbH>nb@M0Pdrj#Y*Jk}THo$jLlKU_%Qv&Pt)7n7$
zpVA3>>&yMEN7w0P^WC(FpiF%CSTSWjPGBl+Bt*w`63VhO2m+U}J0tMN@h8Lcx2Htd
zlnC43tRE1G*HsmphuLFgVoDc+9xEv&Yb|6?5-<u5UO5KdFk!T{LGV@=nD>#GYRA5O
z3Ua`J@^<G}ju5NjTW(codkevEqPu(AroZUdk9H_L-0j^#f7otU>*dpSEbqG;t{lJi
ziwqjj*%(UvF-j+P^pGo8eWxSXMu>~5ZdWc!^}7_jag+@3kUgLe4v2FNQ8AW-$!K+}
zZGyKQ=Sy3=Zr+77L9&nUoO{~L0z7T1s~}vI8e%!-%+Ucw&jA%PV4W6_xXg@^vXQmB
zD7bJ0Zc9n0dEPwvf2FXc5YlF|PS3OSS3wxwzPEqs*RS1Z1==!TJ3gev_AnjX5+gdH
zZ3sgCp#g}uD&jg-+XJDBVKc`Ngfifa&wyDcAY&xR#FP?7^XU8E?^taQ&Rv)SWYVBF
zHV%73*KoyWKsK`P27=Wx!ac1$-6uHoi7cx}NlFt@*-%h2TR>wiV6YObLJ1L>R#8Z0
z%m7vx+*0hU-<Lmt!dttT<-L-!FRa|yDKLejqftToWJ;6nr4kl2DvmDs44GR2D53>t
zlL8(Y^PEfTz3W~3+$NhtRy19R=MB$)#+}iZ<|hp`C=K;Y^I4?rY;jNVakkm9{sqkm
zUXFhQ<z-6B%Q}UeA_v8t2lUnenQS0Q<-AfV7}09$<r@|2bU)j%>7z0CB?jFBtkh3e
z<0o?DR-M^XAKj!}C*|6uay`IDHqfD1O5CECMthqeI?n;4N?={KpePH9q_}de>d+SO
zGCR_Y!v`+-*6p+(KR5&Fo^OGWkr&Y0&L&MJdotN$FxmHMk=C<tL*lp;{UmQ=RzU(;
zmjPplK!!4)Rziwwj7Y5(ldeD&v<h%APV+SBj<2mddTGiy?#Vr{^yIVI{bJv7`O=bm
zw^+s$=Cib@T<auD`}3`3sDjE63=e?93LvHuNR=fEQ8AWUUF%e!?!%qSryTjm5l3#6
zqe(c1DjcgPKc5AdE%FkcXX&pRol7MsKduvIVL8O)G@#KLZ1xF)5iZ88ls3&z{bITJ
z=iveV>!1ItaJv5SkZ8Vr`1iR={>OawoZf%BP85H=|M+$A<ih9wxG7W~<%ypLs-}Ue
z{mpvX%3B_uDevSh?sd-`r7#4}Dh9}z1<QSejNX{+q_-@LbfD@j?{fJomxhW8U-|OO
zeLpsab$w6rsK&5bM@YInn^HPw!^yF=hN<)k$Vp?`SUQU3(w!=-q2whdmveGCFJAZc
zUCvX<s|Q7SF!ZpC4Ac606kqmU4>#C_&Xq2!D!8mVFpD<n9Z3O@oY)1<4p;~%jbkpE
zR`&q4;t%vbjy`au_T5S{Z;H3cMu;K|pmA0ZW>7rr(?}7l&>p-J&Ij#9Zg(rzZM~<r
zPvwl=-TO`Yn`eLilt*6~MyEi(6}Ma02~K)%1bXjedhKzxUN6_P#eI`zvf{iu4}lxb
zff5Qptt>c03It}0G3#hu|I-BR&%2LD3%+gVA5M1TWAAW4gbZP-w1ZU5)D}JUNi;BQ
zy_A9%%a~xbUjCd_8!lPgX`5`0j4bFFBH%8Jr4$V0WR=%3un<~peHe)08mN_OcNVu>
z`o5Yv8>iiyvM}S0Mph5$F|BD1FIdM-k};)DHpv(xMGjDU4w$nAZwv>fHAQk5N4t|@
zJfTLX@Xnt_!-U3O$)m~ro;3N9CjYsjMQoBsDy?-S&a#y*0?XV0N)^Dd>_EH3oisjX
zIRO2ArX0TBn&lRC=EndpI!;OSXc~Gk0-Nn}P50?TXn`-c2y+?_#PvXe?#n&apOyr^
zz4K}EL&oEWG;|*%yOVX?hl+-vJz(<QhghwbKYvv=6Ycr`+THWAFB;O%ZCWpA4lj)w
zO*)Gn({?=zo7cXWiYrfhi~fAtY?qJcmEmg*MlbJXef(}NT(Y9|7MA%6k=H$~;x%xQ
z+TsdrEVc0nA$(NX1J@n_Rm@;TPLM-PicI9<hN-XW`Ip0!f1e4JZ;^=K3;!lOr1(_B
z_m{<$?#?8`k_H=?0%SUYGg?B9N|_iqN8jos#Fw)~&5dzbF4u9k_%L|WzL&LkNbH-a
z`QP+dqUh{Ae<D)`1X|PT@d&htvq-n>NojL~^Op?0$5c1Fg}xSXW5z?YpDp5SabHAT
z|Ht8veXHEt3j|*+EwoOn`C%Eu?;PmJJI(eRfzQ39pWC#k*zsG<rf;^sdmN;`K(yW}
z(s8y~KdpA>-#^9s(GcBc4)|PAe^#BK<rCl9W|{5s&$JlOzMOXU29<UO^-Np~dHt}N
zeRVJL14A%lt=5FiEUstIqZ$2ghve596|E@Dwmo5L|8e}u@UoKA5c4#|yuVpbi^$*M
zl$3XnmlDOvDdR=bkd0=5SxB%p8=z#7lS_m$wV5bxWB&L$F3VTPwiy-t%%_*uYg722
zMJKXWlCtH!^Ft|*jMDUei-KSY!F2Z{^R$J17Hn}3v|6o~&o#=0rMY{Tb7Ed07!@U8
z<PJPb4q~vH39ht8)wUIA3|e}ny7ZgdXKcAm|IF?ew`kbIE0_dn3_Z4y(&KUgo3w4x
zXInxY)PzYe7JxYnfao<4dIZa((&&_w$+jsx9b}SUm@%I0YNsq12yR8UG>&|x<V!6x
zys0AFq>f*^C_fNp45cD_bG_=fMOmlkS%tuUgSA6nu03pW<_6`=ZMX9#JA6wWyqE)-
z<P+qG2{4cVD}#c-l+{XeZwCNg(4N_wR6#eY;E%(v|9!ojr~mubcJ%t|t>}oIa`>MI
z3pweC+B#zSXIem*Ct94Uh?9!TORwtw;tDk)itAs32$nOKK^q|flMrC7PT(}R0v$>%
zbwQ0R=jop*pS`<-5M4bW$B%G)KF$fO!;^Q9btunYQE;z6`F~z|vHnL0%csSuvU&UY
zOE2KsEBFM9d%H9>ufws^I@~K~=F32HSkd+YR_o=9!<g2v(;gQO>d`fa5^cqKm7-+!
zj3zF4NT5l3z?36UCI)0M8igEfESbGeIj<MkvL6)c_^e*|=|jsQ(4}jyy`Djz<zqs=
zR5|;v<R6yHKO0rDYhLsDW$c;{HjWDRftb7aYeA2*@RqW_r137WxTNbeFX5Ag<OO;i
zft=jg=A40;b>L0ZBqY<piN17QEzWeT^h(cgMa5l^<}oX`{noq91{U|T#m}bN?eyYX
z)tlsZqNaLlzZvHW{cWnTMn7{j^V{gUBPGaxaPdP{D7urI1HN2xRhwOUoWEZ=78R)p
z?o3H>c_}U90yqW&#Hhi>7{EG7*##SoGJPqo;;HXSLtQxlwM22?y6Ibl<ahJ^m_5vw
z;m_IP9`@nhQ8!z`!rvO93tbQ<>6plrBS=jN5JLnPg#!^Zw_LKFBhYh%UYA8TNL$lK
zK6>c?+LXff^SSlQk9j#=*hB?XAD4Rhgccs<@RrhHI<}mF9&L8x%SMD#gYziD!;^m;
zrl0m(1=|S_OMVuU(JBfK3?T<pQh-I|5N%?J!Z6F^AOge_c6?$~_`RaR7r3BeAY854
zPA|SW8f15<>Z`W&^9A9kW}c`@-MmTp*?oci;6K>8W?0X*bf3z1I<TlFV~Q^T&K~0K
z_4Csi%L0nijqamkrEWj+-eC+LIC%uLk%J2ufKyB^J0{SS1|~koef$8wI@TgrAMJ`-
zxpZ0vu2;TABzIIu4D;nvd?}T*BYZ-Xrj=wyA2B*0NeGBG0%dN1a!%PK>rj>U!}U~M
zJ!4AOcKXsQ7*7OJvxv%yMbsTx6d&*24mP~>@xSiqoGtS5`oUa1`S~nV9n9k5!eBhl
zK^e%|8bB{1*hCC0NuFI+r1~rS*J8{KhqKF60xgz{UysY<F6=>^&_RHM?x?E_Tw6v2
zJ<oOQj;=rB*@fGD5FWI_FLeVCT95RS+w$&KwM?JIQf#V&RuP2*$Cw1<CWFt~LlS{;
zlNpOK_Um`nV%+EWneQH@QNr;0%Nw*p`p!P+xqWNJ3oZ2#a0-IRJ78WWKy4Aca~6_v
zia8S)a|7~1-?61*3B2+ezL_WbI*S^Xi#)q*D;gZf;`|}Tm;)CQQpyrA83AOH0Vgpy
z$||YcyYG3%iqG{nU#`36Zl3kkSGBcw@(jO~VOnqQUKw{#hOl4GxKH~IOj5p0)re+`
z-4R_jtQpn5tcRLW?PnWF#psQmLjgU#$1T29^=e+qN9~L~1))GiN`T5DSmh-kWfCNP
zD8sCOe!=K6YdZD@E<D9J3rROQ!sn)NZ)@Q2uQq*y(l`o5CXx#Rtn(buum~>Z1dMcy
z+&O0z_U#)K88S2v;Rfs6hZAw`$P7VhZuJmW>*el^??Rd7Q)3_D?CM*+1S#$q-juRC
zw&&MKY1N|F`+<|zSmA!~DwF+kTj2JG_)%ezPf3N>|E>#4;L^LguIM-xO|gy9ab+~f
zggaA=0jy&Vw6#7-?gjPNyHVyz*QWQvuU@vi7e!{wT4Z!_#?+lQf>@)207LLnfWce{
zQY275F+gG&C@TR;`ecPsXcZemfYD=AG0srpyXWnTE$+pgXE&$rOI0-My_cE@a_|Pw
zTLF}u0gFOg!8s}4+X!Gi&U|iQRIlg1u-mJ(R{zqO7*8GHyNmhF<+*yjII?6jB_`v1
zilDPofLd9wo?9?NFy>V<Ec9kGr}Erqmgo4zMBKZzx;L8{S3ZK7q~s2m*n>&&2qbp@
zOg<~a9J8{wfz2cGKi8Ig#}e4LQ1W+gu%tk%*(R-@)4H>+d{Kn4vBJ850f9n9z(5g5
zYY)MD%~LWMcyBEk^|>=d-|m)q&R!hO&NRUhB;%wIIz?s_yi~(tTsv!R1euHk%vpmY
zt3goUNM6}2sB76S!E!dCyJM&BBA0u1=_b+nfatsm$bUaAx70w0Sjj*-X9X8Nf#;C}
zx-7wx)Idau%iz$-&I`efh3Fy&Iu@rIoSy`1WP<g$T+Fu1^;y$?slI4R13uXs!;l5Y
z=r~|t9DFbWwD-{^XF`yjCl2e$&k><Ri|^h)+9V@Gl9A)t#r1OWucdE*s%=a8cH<OU
zV;OKK6`)WN$e;riNn@~1Q0jbYrLoy5(B84ZxytRy)Qne*_H-^6Tbjda8Fyj-aucYA
zG!=2+Y~&(GuRu7i0ll)|vx}gWQ^E)#S?D~i*jSn_v!G+4s>Az9wnipfakdG|=d}J+
z>BW_zps1}e)+NZ9JfMgkyyOX_OM#STjCG$TtS3Of=^UC9ca*yPZM!ES8Iq73Y2Ve3
z>zi#_Y~gu1e|k)NRQVc7gi=|{YfA<-fffP*r9!ZVAs8>c)s|ZkhUd*)<Uq&frv~RI
z>oa1(dJeE!FSpmQAImvzQA*EYK%;#Is~rQBf`iM_gD1rp6H#X8h9_AUS<tm;)!_YC
zlC7!1`R`MM^WQ#snDTes_Z3Zh^DwLIVrHedmC&Q~MuQ|qfXQhf%Pd5V!fKhU(0#kz
zwP^2HtqruR`NOKLxjy;Wo}}XPqY@N&R@Sg=A}}2opk*GM^$a}sf{S34z`p(2X$MmG
z$F&u(k9~LA&c{7$frq0V_pm;QLzQo+N>P_#QcFw@1PTd=MuCqxLy9tx);5wKO6m6f
zTK|*JX7`J|KHcLMZ|*i}o_A~u^V!bC-*BA2#w_g=hc%7EE>DXTD^n$@(t@nh!9i3;
z15%1Wjv+AT1>+*oE>IhURE=~1WE|o$g;q^3oPw)XgR6tPaCh?eQ*}{{vr7JKlq8ta
z5r~@zh};25%^+j&J{uhpvjdH@F0o+>xmxvMMcId)E#e|=t70f#9Cfi-2Nff5R2DE>
z1x{!V$b~0jAq4Dv+N$Ery^`1QS$faKZ<B+Zpjy5TR7;gNjm6bD0VPW!S}@!vK(8ct
z$319abz;UTqdQ-VQK1GV6qYIe?4VKdD9zKL2v{tylguJW2~lbX=ve|vS%3=CIL}qm
z*$*Qmt)~AI{I;uH|4OF!yNT3l8R4GRp6+)qcRoKyj4U^-l*;NkDJCpwu-qv?!!lUp
z2~-qhqt|3?=g`Q_%j!k)yEao5JfGxgyz=x+^I4?rY;jNVakkmLfz@(83%_8qrR~$E
ziQOut9V~a0ndHEo(ts*)us%l6IZ|Rdh>$u*!EG#MO_<WL?A`W$CW#!cM8?@>{j_S<
zIL2LRI9h9gNy-R1a1E%10k4IG7<E)JIPFmlPWH;=cPwR9JfGxgyz;b8tNAOIMuS1=
z(x9ixkvS6_aDjAi8C`NfDjH^TkkaJA3DgDpJC>+Qu1_L0UXe<RxLVE@+s%9y(&KEs
z-p}neF;}HsHO`>$*)mW>1n6=G=ePl*NOKdTRC0K(Vl^u|7PKbsVstXsO83=$dcg<V
zROx&yE%eIKc<ac5@ty%nqkx!6;87Z>iAN{<?!JFd=nZG?+km%CEh1C*{e^2r*C4W7
z$F#1}Yr43r-l?dxNe+zD88BE4KB0ja4H=m=Y1wywa|P8M8`dw={xLbOZ{FJ8(liJH
zi))jZ6GABmD(DE9tOqN|fHqb$$&E(Vw?j}(c*nAHna`thK_}^XJ4EwzPvO`3kjIPX
z24S9PQKLvuY7k+G2~WlVGbRHjN8m*cK%Vm$M9wbtJp*<lH#(NHhHqpNzL5#v3(`Hz
z7I_KJv-DSWX2lfu!%KlOnGD2(1hhebb0{H`v@Q#8xE)B|vOw_AV%bX=C;!>Qvpg+E
zfVk4l2;G}>RaqQWa^jF<N?ABi#28@87JT3if(#)f#<^BQDUCIon;Y=V+>`{Gl0Z`u
zsQn~Rcsa|n&E~02GN`m5ll!1_kO(Tv3`jD8m6<>(p|Z=!a_?O_HL35|;r<Rup{wd_
zLyxO@`YZW|<?_#_`t0=LTNRpQcc|(swDfcTt5AIA=1S&Gw$JVh><9nB&h^21wx#=2
zzSDt4H5pTU0dV#ZcX9bhvjuFH^XJM~!4=b6)+w)vGvMB8z{C+KW(!%`>@-*0$i8Q`
zny_Hf2UDbd-KxH@3Mf9#sxUaXDOFM;H!5Z6K_EFm)ClBd1g=At$q971?}YFvkwXg%
z9%=V*6P(7d1fycnQ<bC?-ApACIaFX{4uDZ05NQvNg^(Nxg<(jz8kg5w4GLi6>K3kX
zNYWHRPZ9LrdW@hSXg*Ji`^pwEU2F>$DflEb0{7elI>x}ONMISph#`t7`%Wg-pnUR_
zCx@VpLvY;ux_U^DX-)H26zc{Zz$FNN;cS#Xd2k68AQK#1NCIpmYuHZ8+3<#(uQ8!x
znX1SCsp>mk345*VH|SX^H8Go<g;&HuWDI~=S+E!~=#(^9D)T7%&hOTuy<>U0%I!&v
zMkYr4isEX${5h);t`=MWJw+!S0R<lcx$!`fXHdcG6ar>02hx^wLh2A>)RUd^!xEF5
zj_`SV!byUya?nH;7kH@<j13yJ!VKtH08c)FG=^mKHiz8zD&v8s5ih)iL7uknu9T0_
zfnJ!mJHbHr_v>`ua7dTi65@okfss-PSRw|fvj)mi0!uoH<f292djabfUUcmHG<qA8
zFElc-+rOY#X_>e!m4p+wF6m@|c_{#uFhFP>Fu|463@LLt42gOpvtwZ?u=6X4#MA*Y
z-VTu6iGi5rJN;dWjOL1~{2Y_sqe|d?uz=ZFa8d8#9%W5(C<P8A?l~j2W2wK&_$#X5
z(z_k5GH5Q3vW{7+sDJHM=H9lwgo{<Rv)zNe$>|G|A^qH@^@8T`(h%6BkhcHP{q`Jx
z#<U9;pDKz!pEld&<Luw5c1i8G$5rzOSG3;3GG8ILhT=HC2CmUvQX00{QLmLz#H0mn
zMF14ifMp&*d8eZzbV~MK+pnVka}>zC2e{f@QC24J?lELfqm==W-GAq4TYv5YOC2aG
zDu#j-L>E0^upCHx0_L)ek)$Wx_ZEcXl-}{k#BlO0Ut*r4y{V*nDP~a&t(;+;q#}?~
z8$g~C*pwV7Z&(N{GNbxNVQ4AE+&H`{_yFSyus(Fc-cm&CR2{YpRZ1vJB^iZG5Xc~)
zasj*u2sW^cCMM~rZ`l1aDmy+_@0mHeGc^c5eMjVHJLj*xOW)5uzfO74K`*;LMh0Z4
zL3l=h4h?t}8HAKEN#&&N-_%rdU~<u?{CLM0L9ef}NjF<b;ABQ?f+q;ha=;Y!X*2^O
zF&%?*A}Z6jz}2I^W0|Yq_}Go~cNV7g@~P48o8sz1<(+hf94I3qAR`NuB7rlGaT|pV
zym!l0O?k&cbcNGjNr0}Frd}8FFYafHpG`|srx)KUbdukRnzJHTyxl8=v^mt#=x2_+
z+eX)&Y^meohdi&4olSh4+#K-blB;Ux(&H3Ob-DAL#lTXs5;!v)&@cu*?cS?WDTOF?
za(&Nm7SCr_+T_X`t|c_%P$u8a8oy$NH}PzX`_T<bt8#?wtO1mYz{iN7a!^6alo<}s
zvn>(du@qhB_g6B@-%XMZ>n%2^fh>t44l`+&xzP~>HwG|94&I{!j#&%Axo38GqZwuL
zyY_G^c>a~-X&Q+B`!o<;bdNt}Ai6G=Sjm-6Nm`qI0&ZCVlv)9~gy4{D62xQjeY?_C
zWOuB{rcvmx=MY3nkIMx#atOFBO`S1kq;t_j5EuZ1%HRYh@XlqI1W&^BjV4f+{Ep?Q
zisxU+A^2|c^sl9F5~Y>|iAVB5NeLDm0}R=NL+!wF>nu4FJRja5&>7twOVC9wPogtk
z(Ya5Hw4Q~=Ytp$Zj?)>-oe~0!ko;v&kX12&3raKQHIW#eIl9b(js>a??<d(BuWZqF
zOW`4=-TyXm^h$w}*MVHf7SK5jXuJgPq5&C_4?ZfJ&G78gB?fdXSJix<q-tbRb$~3|
zgohNL>d25N$&e9pk5rD@M!>`(IIRQ(t6ktcdCCLHp1vdZ28rn$rsLhyO(HWSkvVBE
zS#BW^?2|<MtvQ>A8r!!@c8DxPqbP%;C|`_`MK1ukWI1s~ruT$hZTdSlLzP^gtkB3r
z>U?$Dp;tG~Hevak*1syPQV9?=36G>0f;Y|px{$!JXn|zN*?Gp49Z1YnN&e?rsp_G#
z!vi0lcLMntq);8{>D4o=*2`@Q&7ge*FV)JmRLP5AfJbKmDGP8(D6ok~5wa9n;xOc@
z4hK56RW&&Om8{j5s+iYADmf{Z*SzNQE9EsGY#c@MSD2N9tWpSRvstI-S^BH0T&{{!
zBAz+rgY{qn5n%QV9CsSfM~>2F&tl)r?e!VZu}UjF$W%c88jiwdOWTy6<_%lwN+QKv
zOxZ<(;JpIWKJWZn4a#M0vIvaaKtLX<>F-#gD!KlZT!e2SQl2)m08g75n8&4ZA8{en
zPFS>)91wj15=ubul4ML#s@~1fdqRg6q>f-I^LH1M!eGE=-Uw-*yHY{ISYpuy4;0A)
z>coM#72vqnQfA8o)5DOTIvnWO`qbe3WPiphSljI!C~wmm@@z5NJfzqp0aQw?Mnstc
z;~=bKfHF$3)+b0hJC9NZW`?&Q<~kcX7O}eTV3M=(%Gr4mzd`s^!i}QfF<EOsE9C$K
zx8R8rM3G{4WK6)}nXoH7=sJX|!~L%$USBHH8fdooSD{0%YBH(zWj#zL)qb{dq+E;i
zl;@F3!^$S0U_u%Y-e^FhA~;O~JXg{uiB9J{qy*~`xgBe+YA#P1)zT>)vRklN##Gs}
zP^zsOZk^;YL*hHv+A0SWm4y^DPuWL?av-ktp2R<nkKT0T2I7gvw3;t}J*Gww6SfGR
zCS_DiNQhBzKxqRw6cH#TAt)Q6^gtRrE6MLzi&yb{ay^IYdQM~Uqi{cuwq>XFc9!>P
z{p#8H65KbE$uS^;m5Kp+t$`eI&`|`ELNG3d<%?dR{SzJ2ujGw>7_PYrrS`(Rqt$A?
zd`@?V%MRauU0@TIj}?d6VrjmXjMP~O1I7>mk`UmW4}dbn<Yi_Q`(9YtI-jP4Kl#KB
zed6?UMT-WN5AI5p51p(CE;<l85}-E>yw@B^1n#6TB<=8q1>ck2vHV=)_2dVCIX}3;
zg_9@TnI}BEU+iH(|NALzw$*-d$(4x0NAI%+#k>F{E5U~xK{#bNN~<;X-F0*WCr0Ef
c{IUCg|L^|;009600RRC1{|vIb?^Ejp0Ql3EQvd(}

literal 0
HcmV?d00001

diff --git a/pkg/testutil/datareadings.go b/pkg/testutil/datareadings.go
new file mode 100644
index 00000000..9b281325
--- /dev/null
+++ b/pkg/testutil/datareadings.go
@@ -0,0 +1,90 @@
+package testutil
+
+import (
+	"bytes"
+	"compress/gzip"
+	"encoding/json"
+	"errors"
+	"io"
+	"os"
+	"path/filepath"
+	"testing"
+
+	"github.com/stretchr/testify/require"
+
+	"github.com/jetstack/preflight/api"
+)
+
+// ParseDataReadings decodes JSON encoded datareadings.
+// It attempts to decode the data of each reading into a concrete type.
+// It tries to decode the data as DynamicData and DiscoveryData and then gives
+// up with a test failure.
+// This function is useful for reading sample datareadings from disk for use in
+// CyberArk dataupload client tests, which require the datareadings data to have
+// rich types
+// TODO(wallrj): Refactor this so that it can be used with the `agent
+// --input-path` feature, to enable datareadings to be read from disk and pushed
+// to CyberArk.
+func ParseDataReadings(t *testing.T, data []byte) []*api.DataReading {
+	var dataReadings []*api.DataReading
+
+	decoder := json.NewDecoder(bytes.NewReader(data))
+	decoder.DisallowUnknownFields()
+	err := decoder.Decode(&dataReadings)
+	require.NoError(t, err)
+
+	for _, reading := range dataReadings {
+		dataBytes, err := json.Marshal(reading.Data)
+		require.NoError(t, err)
+		in := bytes.NewReader(dataBytes)
+		d := json.NewDecoder(in)
+		d.DisallowUnknownFields()
+
+		var dynamicGatherData api.DynamicData
+		if err := d.Decode(&dynamicGatherData); err == nil {
+			reading.Data = &dynamicGatherData
+			continue
+		}
+
+		_, err = in.Seek(0, 0)
+		require.NoError(t, err)
+
+		var discoveryData api.DiscoveryData
+		if err = d.Decode(&discoveryData); err == nil {
+			reading.Data = &discoveryData
+			continue
+		}
+
+		require.Failf(t, "failed to parse reading", "reading: %#v", reading)
+	}
+	return dataReadings
+}
+
+// ReadGZIP Reads the gzip file at path, and returns the decompressed bytes
+func ReadGZIP(t *testing.T, path string) []byte {
+	f, err := os.Open(path)
+	require.NoError(t, err)
+	defer func() { require.NoError(t, f.Close()) }()
+	gzr, err := gzip.NewReader(f)
+	require.NoError(t, err)
+	defer func() { require.NoError(t, gzr.Close()) }()
+	bytes, err := io.ReadAll(gzr)
+	require.NoError(t, err)
+	return bytes
+}
+
+// WriteGZIP writes gzips the data and writes it to path.
+func WriteGZIP(t *testing.T, path string, data []byte) {
+	tmp, err := os.CreateTemp(filepath.Dir(path), filepath.Base(path)+".*")
+	require.NoError(t, err)
+	gzw := gzip.NewWriter(tmp)
+	_, err = gzw.Write(data)
+	require.NoError(t, errors.Join(
+		err,
+		gzw.Flush(),
+		gzw.Close(),
+		tmp.Close(),
+	))
+	err = os.Rename(tmp.Name(), path)
+	require.NoError(t, err)
+}