From 9899f778a9221fa82fe36a7671f453e098070ab4 Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Mon, 25 Dec 2023 12:38:51 +0000
Subject: [PATCH 01/51] package.json: use punycode.js version of psl from git

---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index e839fe3..a191465 100644
--- a/package.json
+++ b/package.json
@@ -36,7 +36,7 @@
         "hls-parser": "^0.10.7",
         "nanoid": "^4.0.2",
         "node-cache": "^5.1.2",
-        "psl": "1.9.0",
+        "psl": "https://github.com/lupomontero/psl#5eadae91361d8289d582700f90582b0d0cb73155",
         "set-cookie-parser": "2.6.0",
         "undici": "^5.19.1",
         "url-pattern": "1.0.3",

From cbfcfcfa18a1ebdc85cb283a6d670d68798e9832 Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Wed, 21 Feb 2024 11:48:00 +0000
Subject: [PATCH 02/51] tumblr: rewrite & fix audio support

closes #342
---
 src/modules/processing/matchActionDecider.js | 12 ++--
 src/modules/processing/services/tumblr.js    | 74 +++++++++++++++-----
 src/test/tests.json                          |  2 +-
 3 files changed, 62 insertions(+), 26 deletions(-)

diff --git a/src/modules/processing/matchActionDecider.js b/src/modules/processing/matchActionDecider.js
index 7aa154b..2d8840a 100644
--- a/src/modules/processing/matchActionDecider.js
+++ b/src/modules/processing/matchActionDecider.js
@@ -143,7 +143,7 @@ export default function(r, host, userFormat, isAudioOnly, lang, isAudioMuted, di
             const isBestHostAudio = services[host]["bestAudio"] && (audioFormat === services[host]["bestAudio"]);
 
             const isTikTok = host === "tiktok" || host === "douyin";
-            const isTumblr = host === "tumblr" && !r.filename;
+            const isTumblrAudio = host === "tumblr" && !r.filename;
             const isSoundCloud = host === "soundcloud";
 
             if (isTikTok && services.tiktok.audioFormats.includes(audioFormat)) {
@@ -168,11 +168,6 @@ export default function(r, host, userFormat, isAudioOnly, lang, isAudioMuted, di
                 }
             }
 
-            if (isTumblr && isBestOrMp3) {
-                audioFormat = "mp3";
-                processType = "bridge"
-            }
-
             if (isBestAudioDefined || isBestHostAudio) {
                 audioFormat = services[host]["bestAudio"];
                 processType = "bridge";
@@ -181,6 +176,11 @@ export default function(r, host, userFormat, isAudioOnly, lang, isAudioMuted, di
                 copy = true
             }
 
+            if (isTumblrAudio && isBestOrMp3) {
+                audioFormat = "mp3";
+                processType = "bridge"
+            }
+
             if (r.isM3U8 || host === "vimeo") {
                 copy = false;
                 processType = "render"
diff --git a/src/modules/processing/services/tumblr.js b/src/modules/processing/services/tumblr.js
index 75d354e..05c7fd8 100644
--- a/src/modules/processing/services/tumblr.js
+++ b/src/modules/processing/services/tumblr.js
@@ -1,8 +1,26 @@
 import psl from "psl";
 import { genericUserAgent } from "../../config.js";
 
-export default async function(obj) {
-    let { subdomain } = psl.parse(obj.url.hostname);
+const API_KEY = 'jrsCWX1XDuVxAFO4GkK147syAoN8BJZ5voz8tS80bPcj26Vc5Z';
+const API_BASE = 'https://api-http2.tumblr.com';
+
+function request(domain, id) {
+    const url = new URL(`/v2/blog/${domain}/posts/${id}/permalink`, API_BASE);
+    url.searchParams.set('api_key', API_KEY);
+    url.searchParams.set('fields[blogs]', 'uuid,name,avatar,?description,?can_message,?can_be_followed,?is_adult,?reply_conditions,'
+                                            + '?theme,?title,?url,?is_blocked_from_primary,?placement_id,?primary,?updated,?followed,'
+                                            + '?ask,?can_subscribe,?paywall_access,?subscription_plan,?is_blogless_advertiser,?tumblrmart_accessories');
+
+    return fetch(url, {
+        headers: {
+            'User-Agent': 'Tumblr/iPhone/33.3/333010/17.3.1/tumblr',
+            'X-Version': 'iPhone/33.3/333010/17.3.1/tumblr'
+        }
+    }).then(a => a.json()).catch(() => {});
+}
+
+export default async function(input) {
+    let { subdomain } = psl.parse(input.url.hostname);
 
     if (subdomain?.includes('.')) {
         return { error: ['ErrorBrokenLink', 'tumblr'] }
@@ -10,26 +28,44 @@ export default async function(obj) {
         subdomain = undefined
     }
 
-    let html = await fetch(`https://${subdomain ?? obj.user}.tumblr.com/post/${obj.id}`, {
-        headers: { "user-agent": genericUserAgent }
-    }).then((r) => { return r.text() }).catch(() => { return false });
+    const domain = `${subdomain ?? input.user}.tumblr.com`;
+    const data = await request(domain, input.id);
 
-    if (!html) return { error: 'ErrorCouldntFetch' };
+    const element = data?.response?.timeline?.elements?.[0];
+    if (!element) return { error: 'ErrorEmptyDownload' };
 
-    let r;
-    if (html.includes('property="og:video" content="https://va.media.tumblr.com/')) {
-        r = {
-            urls: `https://va.media.tumblr.com/${html.split('property="og:video" content="https://va.media.tumblr.com/')[1].split('"')[0]}`,
-            filename: `tumblr_${obj.id}.mp4`,
-            audioFilename: `tumblr_${obj.id}_audio`
-        }
-    } else if (html.includes('property="og:audio" content="https://a.tumblr.com/')) {
-        r = {
-            urls: `https://a.tumblr.com/${html.split('property="og:audio" content="https://a.tumblr.com/')[1].split('"')[0]}`,
-            audioFilename: `tumblr_${obj.id}`,
+    const contents = [
+        ...element.content,
+        ...element?.trail?.map(t => t.content).flat()
+    ]
+
+    const audio = contents.find(c => c.type === 'audio');
+    if (audio && audio.provider === 'tumblr') {
+        const fileMetadata = {
+            title: audio?.title,
+            artist: audio?.artist
+        };
+
+        return {
+            urls: audio.media.url,
+            filenameAttributes: {
+                service: 'tumblr',
+                id: input.id,
+                title: fileMetadata.title,
+                author: fileMetadata.artist
+            },
             isAudioOnly: true
         }
-    } else r = { error: 'ErrorEmptyDownload' };
+    }
 
-    return r
+    const video = contents.find(c => c.type === 'video');
+    if (video && video.provider === 'tumblr') {
+        return {
+            urls: video.media.url,
+            filename: `tumblr_${input.id}.mp4`,
+            audioFilename: `tumblr_${input.id}_audio`
+        }
+    }
+
+    return { error: 'ErrorEmptyDownload' }
 }
diff --git a/src/test/tests.json b/src/test/tests.json
index a298d15..3b9a9ed 100644
--- a/src/test/tests.json
+++ b/src/test/tests.json
@@ -773,7 +773,7 @@
         }
     }, {
         "name": "tumblr audio",
-        "url": "https://rf9weu8hjf789234hf9.tumblr.com/post/172006661342/everyone-thats-made-a-video-out-of-this-without",
+        "url": "https://www.tumblr.com/zedneon/737815079301562368/zedneon-ft-mr-sauceman-tech-n9ne-speed-of?source=share",
         "params": {},
         "expected": {
             "code": 200,

From 06b808852646503e53c696e3df80b128a3f1537c Mon Sep 17 00:00:00 2001
From: DrWarpMan <36279265+DrWarpMan@users.noreply.github.com>
Date: Fri, 16 Feb 2024 11:17:19 +0100
Subject: [PATCH 03/51] cookies: add all necessary instagram cookies to example

Signed-off-by: DrWarpMan <36279265+DrWarpMan@users.noreply.github.com>
---
 docs/examples/cookies.example.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/examples/cookies.example.json b/docs/examples/cookies.example.json
index faaeb56..9b488c2 100644
--- a/docs/examples/cookies.example.json
+++ b/docs/examples/cookies.example.json
@@ -1,5 +1,5 @@
 {
     "instagram": [
-        "mid=replace; ig_did=this; csrftoken=cookie"
+        "mid=<replace>; ig_did=<with>; csrftoken=<your>; ds_user_id=<own>; sessionid=<cookies>"
     ]
 }

From 6227b7a38a6f2036c650dffacea2cb583f131327 Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Wed, 21 Feb 2024 20:23:54 +0000
Subject: [PATCH 04/51] cookies: add example for reddit

---
 docs/examples/cookies.example.json | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/docs/examples/cookies.example.json b/docs/examples/cookies.example.json
index 9b488c2..5ebdb63 100644
--- a/docs/examples/cookies.example.json
+++ b/docs/examples/cookies.example.json
@@ -1,5 +1,8 @@
 {
     "instagram": [
         "mid=<replace>; ig_did=<with>; csrftoken=<your>; ds_user_id=<own>; sessionid=<cookies>"
+    ],
+    "reddit": [
+        "client_id=<replace_this>; client_secret=<replace_this>; refresh_token=<replace_this>"
     ]
 }

From d70754238ee6712a7ffd634b7165bc1f26ecc9b3 Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Thu, 15 Feb 2024 01:27:19 +0000
Subject: [PATCH 05/51] stream: fix bilibili downloads

fixes #302
---
 src/modules/stream/types.js | 43 ++++++++++++++++++++++++++++++-------
 1 file changed, 35 insertions(+), 8 deletions(-)

diff --git a/src/modules/stream/types.js b/src/modules/stream/types.js
index cdfb4a0..7dcfd74 100644
--- a/src/modules/stream/types.js
+++ b/src/modules/stream/types.js
@@ -80,17 +80,33 @@ export async function streamLiveRender(streamInfo, res) {
         if (streamInfo.urls.length !== 2) return shutdown();
 
         const { body: audio } = await request(streamInfo.urls[1], {
-            maxRedirections: 16, signal: abortController.signal
+            maxRedirections: 16, signal: abortController.signal,
+            headers: {
+                'user-agent': genericUserAgent,
+                referer: streamInfo.service === 'bilibili'
+                            ? 'https://www.bilibili.com/'
+                            : undefined,
+            }
         });
 
-        let format = streamInfo.filename.split('.')[streamInfo.filename.split('.').length - 1],
-        args = [
+        const format = streamInfo.filename.split('.')[streamInfo.filename.split('.').length - 1];
+        let args = [
             '-loglevel', '-8',
+            '-user_agent', genericUserAgent
+        ];
+
+        if (streamInfo.service === 'bilibili') {
+            args.push(
+                '-headers', 'Referer: https://www.bilibili.com/\r\n',
+            )
+        }
+
+        args.push(
             '-i', streamInfo.urls[0],
             '-i', 'pipe:3',
             '-map', '0:v',
             '-map', '1:a',
-        ];
+        );
 
         args = args.concat(ffmpegArgs[format]);
         if (streamInfo.metadata) {
@@ -129,11 +145,16 @@ export function streamAudioOnly(streamInfo, res) {
 
     try {
         let args = [
-            '-loglevel', '-8'
-        ]
+            '-loglevel', '-8',
+            '-user_agent', genericUserAgent
+        ];
+
         if (streamInfo.service === "twitter") {
-            args.push('-seekable', '0')
+            args.push('-seekable', '0');
+        } else if (streamInfo.service === 'bilibili') {
+            args.push('-headers', 'Referer: https://www.bilibili.com/\r\n');
         }
+
         args.push(
             '-i', streamInfo.urls,
             '-vn'
@@ -178,17 +199,23 @@ export function streamVideoOnly(streamInfo, res) {
         let args = [
             '-loglevel', '-8'
         ]
+
         if (streamInfo.service === "twitter") {
             args.push('-seekable', '0')
+        } else if (streamInfo.service === 'bilibili') {
+            args.push('-headers', 'Referer: https://www.bilibili.com/\r\n')
         }
+
         args.push(
             '-i', streamInfo.urls,
             '-c', 'copy'
         )
+
         if (streamInfo.mute) {
             args.push('-an')
         }
-        if (streamInfo.service === "vimeo" || streamInfo.service === "rutube") {
+
+        if (['vimeo', 'rutube'].includes(streamInfo.service)) {
             args.push('-bsf:a', 'aac_adtstoasc')
         }
 

From 6e1eddad82cc8fe21183e61f29fbf7f8ca3aa782 Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Thu, 15 Feb 2024 01:42:15 +0000
Subject: [PATCH 06/51] bilibili: add support for b23.tv links

resolves #320
---
 src/modules/processing/match.js               |  4 +---
 src/modules/processing/services/bilibili.js   | 23 +++++++++++++++----
 src/modules/processing/servicesConfig.json    |  2 +-
 .../processing/servicesPatternTesters.js      |  2 +-
 src/modules/processing/url.js                 |  8 +++++++
 src/test/tests.json                           |  8 +++++++
 6 files changed, 38 insertions(+), 9 deletions(-)

diff --git a/src/modules/processing/match.js b/src/modules/processing/match.js
index cc2516f..95558c8 100644
--- a/src/modules/processing/match.js
+++ b/src/modules/processing/match.js
@@ -56,9 +56,7 @@ export default async function(host, patternMatch, url, lang, obj) {
                 });
                 break;
             case "bilibili":
-                r = await bilibili({
-                    id: patternMatch.id.slice(0, 12)
-                });
+                r = await bilibili(patternMatch);
                 break;
             case "youtube":
                 let fetchInfo = {
diff --git a/src/modules/processing/services/bilibili.js b/src/modules/processing/services/bilibili.js
index 0194ee4..5664e8c 100644
--- a/src/modules/processing/services/bilibili.js
+++ b/src/modules/processing/services/bilibili.js
@@ -1,8 +1,23 @@
 import { genericUserAgent, maxVideoDuration } from "../../config.js";
 
 // TO-DO: quality picking, bilibili.tv support, and higher quality downloads (currently requires an account)
-export default async function(obj) {
-    let html = await fetch(`https://bilibili.com/video/${obj.id}`, {
+export default async function({ id, shortLink }) {
+    if (shortLink) {
+        id = await fetch(`https://b23.tv/${shortLink}`, { redirect: 'manual' })
+            .then(r => r.status > 300 && r.status < 400 && r.headers.get('location'))
+            .then(url => {
+                const path = new URL(url).pathname;
+                if (path.startsWith('/video/'))
+                    return path.split('/')[2];
+            })
+            .catch(() => {})
+    }
+
+    if (!id) {
+        return { error: 'ErrorCouldntFetch' };
+    }
+
+    let html = await fetch(`https://bilibili.com/video/${id}`, {
         headers: { "user-agent": genericUserAgent }
     }).then((r) => { return r.text() }).catch(() => { return false });
     if (!html) return { error: 'ErrorCouldntFetch' };
@@ -21,7 +36,7 @@ export default async function(obj) {
 
     return {
         urls: [video[0]["baseUrl"], audio[0]["baseUrl"]],
-        audioFilename: `bilibili_${obj.id}_audio`,
-        filename: `bilibili_${obj.id}_${video[0]["width"]}x${video[0]["height"]}.mp4`
+        audioFilename: `bilibili_${id}_audio`,
+        filename: `bilibili_${id}_${video[0]["width"]}x${video[0]["height"]}.mp4`
     };
 }
diff --git a/src/modules/processing/servicesConfig.json b/src/modules/processing/servicesConfig.json
index 804f597..bec1dab 100644
--- a/src/modules/processing/servicesConfig.json
+++ b/src/modules/processing/servicesConfig.json
@@ -3,7 +3,7 @@
     "config": {
         "bilibili": {
             "alias": "bilibili.com videos",
-            "patterns": ["video/:id"],
+            "patterns": ["video/:id", "_shortLink/:shortLink"],
             "enabled": true
         },
         "reddit": {
diff --git a/src/modules/processing/servicesPatternTesters.js b/src/modules/processing/servicesPatternTesters.js
index 970e8f4..f341844 100644
--- a/src/modules/processing/servicesPatternTesters.js
+++ b/src/modules/processing/servicesPatternTesters.js
@@ -1,6 +1,6 @@
 export const testers = {
     "bilibili": (patternMatch) =>
-        patternMatch.id?.length <= 12,
+        patternMatch.id?.length <= 12 || patternMatch.shortLink?.length <= 16,
 
     "instagram": (patternMatch) =>
         patternMatch.postId?.length <= 12
diff --git a/src/modules/processing/url.js b/src/modules/processing/url.js
index 9c87889..753e9d5 100644
--- a/src/modules/processing/url.js
+++ b/src/modules/processing/url.js
@@ -16,6 +16,7 @@ export function aliasURL(url) {
                 url.search = `?v=${encodeURIComponent(parts[2])}`
             }
             break;
+
         case "youtu":
             if (url.hostname === 'youtu.be' && parts.length >= 2) {
                 /* youtu.be urls can be weird, e.g. https://youtu.be/<id>//asdasd// still works
@@ -25,6 +26,7 @@ export function aliasURL(url) {
                 }`)
             }
             break;
+
         case "pin":
             if (url.hostname === 'pin.it' && parts.length === 2) {
                 url = new URL(`https://pinterest.com/url_shortener/${
@@ -46,6 +48,12 @@ export function aliasURL(url) {
                 url = new URL(`https://twitch.tv/_/clip/${parts[1]}`);
             }
             break;
+
+        case "b23":
+            if (url.hostname === 'b23.tv' && parts.length === 2) {
+                url = new URL(`https://bilibili.com/_shortLink/${parts[1]}`)
+            }
+            break;
     }
 
     return url
diff --git a/src/test/tests.json b/src/test/tests.json
index a298d15..3161b00 100644
--- a/src/test/tests.json
+++ b/src/test/tests.json
@@ -746,6 +746,14 @@
             "code": 200,
             "status": "stream"
         }
+    }, {
+        "name": "b23.tv shortlink",
+        "url": "https://b23.tv/lbMyOI9",
+        "params": {},
+        "expected": {
+            "code": 200,
+            "status": "stream"
+        }
     }],
     "tumblr": [{
         "name": "at.tumblr link",

From 0852ade1be4c84a188e35f8ee2b962fde35292e7 Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Thu, 15 Feb 2024 18:11:18 +0000
Subject: [PATCH 07/51] bilibili: add support for bilibili.tv links

closes #319
---
 src/modules/processing/services/bilibili.js   | 101 ++++++++++++++----
 src/modules/processing/servicesConfig.json    |   7 +-
 .../processing/servicesPatternTesters.js      |   5 +-
 src/modules/processing/url.js                 |   5 +
 src/test/tests.json                           |   9 ++
 5 files changed, 104 insertions(+), 23 deletions(-)

diff --git a/src/modules/processing/services/bilibili.js b/src/modules/processing/services/bilibili.js
index 5664e8c..6da110b 100644
--- a/src/modules/processing/services/bilibili.js
+++ b/src/modules/processing/services/bilibili.js
@@ -1,42 +1,105 @@
 import { genericUserAgent, maxVideoDuration } from "../../config.js";
 
-// TO-DO: quality picking, bilibili.tv support, and higher quality downloads (currently requires an account)
-export default async function({ id, shortLink }) {
-    if (shortLink) {
-        id = await fetch(`https://b23.tv/${shortLink}`, { redirect: 'manual' })
+// TO-DO: higher quality downloads (currently requires an account)
+
+function com_resolveShortlink(shortId) {
+    return fetch(`https://b23.tv/${shortId}`, { redirect: 'manual' })
             .then(r => r.status > 300 && r.status < 400 && r.headers.get('location'))
             .then(url => {
+                if (!url) return;
                 const path = new URL(url).pathname;
                 if (path.startsWith('/video/'))
                     return path.split('/')[2];
             })
             .catch(() => {})
-    }
+}
 
-    if (!id) {
-        return { error: 'ErrorCouldntFetch' };
-    }
+function getBest(content) {
+    return content?.filter(v => v.baseUrl || v.url)
+                .map(v => (v.baseUrl = v.baseUrl || v.url, v))
+                .reduce((a, b) => a?.bandwidth > b?.bandwidth ? a : b);
+}
 
+function extractBestQuality(dashData) {
+    const bestVideo = getBest(dashData.video),
+          bestAudio = getBest(dashData.audio);
+
+    if (!bestVideo || !bestAudio) return [];
+    return [ bestVideo, bestAudio ];
+}
+
+async function com_download(id) {
     let html = await fetch(`https://bilibili.com/video/${id}`, {
         headers: { "user-agent": genericUserAgent }
     }).then((r) => { return r.text() }).catch(() => { return false });
     if (!html) return { error: 'ErrorCouldntFetch' };
-    if (!(html.includes('<script>window.__playinfo__=') && html.includes('"video_codecid"'))) return { error: 'ErrorEmptyDownload' };
+
+    if (!(html.includes('<script>window.__playinfo__=') && html.includes('"video_codecid"'))) {
+        return { error: 'ErrorEmptyDownload' };
+    }
 
     let streamData = JSON.parse(html.split('<script>window.__playinfo__=')[1].split('</script>')[0]);
-    if (streamData.data.timelength > maxVideoDuration) return { error: ['ErrorLengthLimit', maxVideoDuration / 60000] };
+    if (streamData.data.timelength > maxVideoDuration) {
+        return { error: ['ErrorLengthLimit', maxVideoDuration / 60000] };
+    }
 
-    let video = streamData["data"]["dash"]["video"].filter(v => 
-        !v["baseUrl"].includes("https://upos-sz-mirrorcosov.bilivideo.com/")
-    ).sort((a, b) => Number(b.bandwidth) - Number(a.bandwidth));
-
-    let audio = streamData["data"]["dash"]["audio"].filter(a => 
-        !a["baseUrl"].includes("https://upos-sz-mirrorcosov.bilivideo.com/")
-    ).sort((a, b) => Number(b.bandwidth) - Number(a.bandwidth));
+    const [ video, audio ] = extractBestQuality(streamData.data.dash);
+    if (!video || !audio) {
+        return { error: 'ErrorEmptyDownload' };
+    }
 
     return {
-        urls: [video[0]["baseUrl"], audio[0]["baseUrl"]],
+        urls: [video.baseUrl, audio.baseUrl],
         audioFilename: `bilibili_${id}_audio`,
-        filename: `bilibili_${id}_${video[0]["width"]}x${video[0]["height"]}.mp4`
+        filename: `bilibili_${id}_${video.width}x${video.height}.mp4`
     };
 }
+
+async function tv_download(id) {
+    const url = new URL(
+        'https://api.bilibili.tv/intl/gateway/web/playurl'
+        + '?s_locale=en_US&platform=web&qn=64&type=0&device=wap'
+        + '&tf=0&spm_id=bstar-web.ugc-video-detail.0.0&from_spm_id='
+    );
+
+    url.searchParams.set('aid', id);
+
+    const { data } = await fetch(url).then(a => a.json());
+    if (!data?.playurl?.video) {
+        return { error: 'ErrorEmptyDownload' };
+    }
+
+    const [ video, audio ] = extractBestQuality({
+        video: data.playurl.video.map(s => s.video_resource)
+                                 .filter(s => s.codecs.includes('avc1')),
+        audio: data.playurl.audio_resource
+    });
+
+    if (!video || !audio) {
+        return { error: 'ErrorEmptyDownload' };
+    }
+
+    if (video.duration > maxVideoDuration) {
+        return { error: ['ErrorLengthLimit', maxVideoDuration / 60000] };
+    }
+
+    return {
+        urls: [video.url, audio.url],
+        audioFilename: `bilibili_tv_${id}_audio`,
+        filename: `bilibili_tv_${id}.mp4`
+    };
+}
+
+export default async function({ comId, tvId, comShortLink }) {
+    if (comShortLink) {
+        comId = await com_resolveShortlink(comShortLink);
+    }
+
+    if (comId) {
+        return com_download(comId);
+    } else if (tvId) {
+        return tv_download(tvId);
+    }
+
+    return { error: 'ErrorCouldntFetch' };
+}
diff --git a/src/modules/processing/servicesConfig.json b/src/modules/processing/servicesConfig.json
index bec1dab..d6e137e 100644
--- a/src/modules/processing/servicesConfig.json
+++ b/src/modules/processing/servicesConfig.json
@@ -2,8 +2,11 @@
     "audioIgnore": ["vk", "ok"],
     "config": {
         "bilibili": {
-            "alias": "bilibili.com videos",
-            "patterns": ["video/:id", "_shortLink/:shortLink"],
+            "alias": "bilibili.com and bilibili.tv videos",
+            "patterns": [
+                "video/:comId", "_shortLink/:comShortLink",
+                "_tv/:lang/video/:tvId", "_tv/video/:tvId"
+            ],
             "enabled": true
         },
         "reddit": {
diff --git a/src/modules/processing/servicesPatternTesters.js b/src/modules/processing/servicesPatternTesters.js
index f341844..30892f6 100644
--- a/src/modules/processing/servicesPatternTesters.js
+++ b/src/modules/processing/servicesPatternTesters.js
@@ -1,6 +1,7 @@
 export const testers = {
-    "bilibili": (patternMatch) =>
-        patternMatch.id?.length <= 12 || patternMatch.shortLink?.length <= 16,
+    "bilibili": (patternMatch) => 
+        patternMatch.comId?.length <= 12 || patternMatch.comShortLink?.length <= 16
+        || patternMatch.tvId?.length <= 24,
 
     "instagram": (patternMatch) =>
         patternMatch.postId?.length <= 12
diff --git a/src/modules/processing/url.js b/src/modules/processing/url.js
index 753e9d5..5e6bd15 100644
--- a/src/modules/processing/url.js
+++ b/src/modules/processing/url.js
@@ -49,6 +49,11 @@ export function aliasURL(url) {
             }
             break;
 
+        case "bilibili":
+            if (host.tld === 'tv') {
+                url = new URL(`https://bilibili.com/_tv${url.pathname}`);
+            }
+            break;
         case "b23":
             if (url.hostname === 'b23.tv' && parts.length === 2) {
                 url = new URL(`https://bilibili.com/_shortLink/${parts[1]}`)
diff --git a/src/test/tests.json b/src/test/tests.json
index 3161b00..42f75f4 100644
--- a/src/test/tests.json
+++ b/src/test/tests.json
@@ -754,6 +754,15 @@
             "code": 200,
             "status": "stream"
         }
+    },
+    {
+        "name": "bilibili.tv link",
+        "url": "https://www.bilibili.tv/en/video/4789599404426256",
+        "params": {},
+        "expected": {
+            "code": 200,
+            "status": "stream"
+        }
     }],
     "tumblr": [{
         "name": "at.tumblr link",

From decedd77369a573016d662b3ea8228f9b3898606 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 12:39:49 +0600
Subject: [PATCH 08/51] package: use latest version of undici

---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index a191465..dfbe009 100644
--- a/package.json
+++ b/package.json
@@ -38,7 +38,7 @@
         "node-cache": "^5.1.2",
         "psl": "https://github.com/lupomontero/psl#5eadae91361d8289d582700f90582b0d0cb73155",
         "set-cookie-parser": "2.6.0",
-        "undici": "^5.19.1",
+        "undici": "^6.7.0",
         "url-pattern": "1.0.3",
         "youtubei.js": "^6.4.1"
     }

From b1bc7126a49ab7e5d06684cf9627d62c266772ac Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 13:38:46 +0600
Subject: [PATCH 09/51] servicesConfig: update bilibili alias

Signed-off-by: wukko <me@wukko.me>
---
 src/modules/processing/servicesConfig.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/modules/processing/servicesConfig.json b/src/modules/processing/servicesConfig.json
index d6e137e..5277053 100644
--- a/src/modules/processing/servicesConfig.json
+++ b/src/modules/processing/servicesConfig.json
@@ -2,7 +2,7 @@
     "audioIgnore": ["vk", "ok"],
     "config": {
         "bilibili": {
-            "alias": "bilibili.com and bilibili.tv videos",
+            "alias": "bilibili videos",
             "patterns": [
                 "video/:comId", "_shortLink/:comShortLink",
                 "_tv/:lang/video/:tvId", "_tv/video/:tvId"

From e282a9183fcecfcf2a969cc9fe47927b3ccc7a32 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 18:14:26 +0600
Subject: [PATCH 10/51] stream: encrypt cached stream data & clean up related
 modules

also limited CORS methods to GET and POST
---
 src/core/api.js              | 26 ++++++++++----
 src/modules/stream/manage.js | 69 +++++++++++++++++++++++-------------
 src/modules/sub/crypto.js    | 25 +++++++++++--
 src/modules/sub/utils.js     |  1 -
 4 files changed, 88 insertions(+), 33 deletions(-)

diff --git a/src/core/api.js b/src/core/api.js
index 5f91031..8b3dec0 100644
--- a/src/core/api.js
+++ b/src/core/api.js
@@ -51,7 +51,11 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
 
     app.set('trust proxy', ['loopback', 'uniquelocal']);
 
-    app.use('/api/:type', cors(corsConfig));
+    app.use('/api/:type', cors({
+        methods: ['GET', 'POST'],
+        ...corsConfig
+    }));
+
     app.use('/api/json', apiLimiter);
     app.use('/api/stream', apiLimiterStream);
     app.use('/api/onDemand', apiLimiter);
@@ -60,6 +64,7 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
         try { decodeURIComponent(req.path) } catch (e) { return res.redirect('/') }
         next();
     });
+
     app.use('/api/json', express.json({
         verify: (req, res, buf) => {
             let acceptCon = String(req.header('Accept')) === "application/json";
@@ -71,6 +76,7 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
             }
         }
     }));
+
     // handle express.json errors properly (https://github.com/expressjs/express/issues/4065)
     app.use('/api/json', (err, req, res, next) => {
         let errorText = "invalid json body";
@@ -86,6 +92,7 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
             next();
         }
     });
+
     app.post('/api/json', async (req, res) => {
         try {
             let lang = languageCode(req);
@@ -118,13 +125,17 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
         try {
             switch (req.params.type) {
                 case 'stream':
-                    if (req.query.t && req.query.h && req.query.e && req.query.t.toString().length === 21
-                    && req.query.h.toString().length === 64 && req.query.e.toString().length === 13) {
-                        let streamInfo = verifyStream(req.query.t, req.query.h, req.query.e);
+                    const q = req.query;
+                    const checkQueries = q.t && q.e && q.h && q.s && q.i;
+                    const checkBaseLength = q.t.length === 21 && q.e.length === 13;
+                    const checkSafeLength = q.h.length === 44 && q.s.length === 344 && q.i.length === 24;
+
+                    if (checkQueries && checkBaseLength && checkSafeLength) {
+                        let streamInfo = verifyStream(q.t, q.h, q.e, q.s, q.i);
                         if (streamInfo.error) {
                             return res.status(streamInfo.status).json(apiJSON(0, { t: streamInfo.error }).body);
                         }
-                        if (req.query.p) {
+                        if (q.p) {
                             return res.status(200).json({
                                 status: "continue"
                             });
@@ -132,7 +143,7 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
                         return stream(res, streamInfo);
                     } else {
                         let j = apiJSON(0, {
-                            t: "stream token, hmac, or expiry timestamp is missing"
+                            t: "bad request. stream link may be incomplete or corrupted."
                         })
                         return res.status(j.status).json(j.body);
                     }
@@ -159,12 +170,15 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
             });
         }
     });
+
     app.get('/api/status', (req, res) => {
         res.status(200).end()
     });
+
     app.get('/favicon.ico', (req, res) => {
         res.sendFile(`${__dirname}/src/front/icons/favicon.ico`)
     });
+
     app.get('/*', (req, res) => {
         res.redirect('/api/json')
     });
diff --git a/src/modules/stream/manage.js b/src/modules/stream/manage.js
index 459e5a6..b034268 100644
--- a/src/modules/stream/manage.js
+++ b/src/modules/stream/manage.js
@@ -2,7 +2,7 @@ import NodeCache from "node-cache";
 import { randomBytes } from "crypto";
 import { nanoid } from 'nanoid';
 
-import { sha256 } from "../sub/crypto.js";
+import { decryptStream, encryptStream, sha256 } from "../sub/crypto.js";
 import { streamLifespan } from "../config.js";
 
 const streamCache = new NodeCache({
@@ -15,48 +15,69 @@ streamCache.on("expired", (key) => {
     streamCache.del(key);
 })
 
-const streamSalt = randomBytes(64).toString('hex');
+const hmacSalt = randomBytes(64).toString('hex');
 
 export function createStream(obj) {
-    let streamID = nanoid(),
+    const streamID = nanoid(),
+        iv = randomBytes(16).toString('base64'),
+        secret = randomBytes(256).toString('base64'),
         exp = Math.floor(new Date().getTime()) + streamLifespan,
-        ghmac = sha256(`${streamID},${obj.service},${exp}`, streamSalt);
-
-    if (!streamCache.has(streamID)) {
-        streamCache.set(streamID, {
-            id: streamID,
+        hmac = sha256(`${streamID},${exp},${iv},${secret}`, hmacSalt),
+        streamData = {
             service: obj.service,
             type: obj.type,
             urls: obj.u,
             filename: obj.filename,
-            hmac: ghmac,
             exp: exp,
-            isAudioOnly: !!obj.isAudioOnly,
             audioFormat: obj.audioFormat,
-            time: obj.time ? obj.time : false,
+            isAudioOnly: !!obj.isAudioOnly,
+            time: obj.time || false,
             copy: !!obj.copy,
             mute: !!obj.mute,
-            metadata: obj.fileMetadata ? obj.fileMetadata : false
-        });
-    } else {
-        let streamInfo = streamCache.get(streamID);
-        exp = streamInfo.exp;
-        ghmac = streamInfo.hmac;
+            metadata: obj.fileMetadata || false
+        };
+
+    streamCache.set(
+        streamID,
+        encryptStream(streamData, iv, secret)
+    )
+
+    let streamLink = new URL('/api/stream', process.env.apiURL);
+
+    const params = {
+        't': streamID,
+        'e': exp,
+        'h': hmac,
+        's': secret,
+        'i': iv
     }
-    return `${process.env.apiURL}api/stream?t=${streamID}&e=${exp}&h=${ghmac}`;
+
+    for (const [key, value] of Object.entries(params)) {
+        streamLink.searchParams.append(key, value);
+    }
+
+    return streamLink.toString();
 }
 
-export function verifyStream(id, hmac, exp) {
+export function verifyStream(id, hmac, exp, secret, iv) {
     try {
-        let streamInfo = streamCache.get(id.toString());
+        const ghmac = sha256(`${id},${exp},${iv},${secret}`, hmacSalt);
+
+        if (ghmac !== String(hmac)) {
+            return {
+                error: "i couldn't verify if you have access to this stream. go back and try again!",
+                status: 401
+            }
+        }
+
+        const streamInfo = JSON.parse(decryptStream(streamCache.get(id.toString()), iv, secret));
+    
         if (!streamInfo) return {
             error: "this download link has expired or doesn't exist. go back and try again!",
             status: 400
         }
 
-        let ghmac = sha256(`${id},${streamInfo.service},${exp}`, streamSalt);
-        if (String(hmac) === ghmac && String(exp) === String(streamInfo.exp) && ghmac === String(streamInfo.hmac)
-            && Number(exp) > Math.floor(new Date().getTime())) {
+        if (String(exp) === String(streamInfo.exp) && Number(exp) > Math.floor(new Date().getTime())) {
             return streamInfo;
         }
         return {
@@ -64,6 +85,6 @@ export function verifyStream(id, hmac, exp) {
             status: 401
         }
     } catch (e) {
-        return { status: 500, body: { status: "error", text: "Internal Server Error" } };
+        return { status: 500, body: { status: "error", text: "couldn't verify this stream. request a new one!" } };
     }
 }
diff --git a/src/modules/sub/crypto.js b/src/modules/sub/crypto.js
index e8bf2f9..70484f4 100644
--- a/src/modules/sub/crypto.js
+++ b/src/modules/sub/crypto.js
@@ -1,5 +1,26 @@
-import { createHmac } from "crypto";
+import { createHmac, createCipheriv, createDecipheriv, scryptSync } from "crypto";
+
+const algorithm = "aes256"
+const keyLength = 32;
 
 export function sha256(str, salt) {
-    return createHmac("sha256", salt).update(str).digest("hex");
+    return createHmac("sha256", salt).update(str).digest("base64");
+}
+
+export function encryptStream(str, iv, secret) {
+    const buff = Buffer.from(JSON.stringify(str), "utf-8");
+
+    const key = scryptSync(Buffer.from(secret, "base64"), "salt", keyLength);
+    const cipher = createCipheriv(algorithm, key, Buffer.from(iv, "base64"));
+
+    return Buffer.from(cipher.update(buff, "utf8", "binary") + cipher.final("binary"), "binary");
+}
+
+export function decryptStream(buf, iv, secret) {
+    const buff = Buffer.from(buf, "binary");
+
+    const key = scryptSync(Buffer.from(secret, "base64"), "salt", keyLength);
+    const decipher = createDecipheriv(algorithm, key, Buffer.from(iv, "base64"));
+
+    return decipher.update(buff, "binary", "utf8") + decipher.final("utf8");
 }
diff --git a/src/modules/sub/utils.js b/src/modules/sub/utils.js
index 8f8678d..bb21bbb 100644
--- a/src/modules/sub/utils.js
+++ b/src/modules/sub/utils.js
@@ -11,7 +11,6 @@ const apiVar = {
     },
     booleanOnly: ["isAudioOnly", "isNoTTWatermark", "isTTFullAudio", "isAudioMuted", "dubLang", "vimeoDash", "disableMetadata", "twitterGif"]
 }
-const forbiddenChars = ['}', '{', '(', ')', '\\', '>', '<', '^', '*', '!', '~', ';', ':', ',', '`', '[', ']', '#', '$', '"', "'", "@", '=='];
 const forbiddenCharsString = ['}', '{', '%', '>', '<', '^', ';', '`', '$', '"', "@", '='];
 
 export function apiJSON(type, obj) {

From 5222d93c69b17319549f1ecc5af2e85ec79f73b9 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 18:16:05 +0600
Subject: [PATCH 11/51] servicesConfig: add support for embed links from ok.ru

---
 src/modules/processing/servicesConfig.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/modules/processing/servicesConfig.json b/src/modules/processing/servicesConfig.json
index 5277053..384ca1b 100644
--- a/src/modules/processing/servicesConfig.json
+++ b/src/modules/processing/servicesConfig.json
@@ -35,7 +35,7 @@
         "ok": {
             "alias": "ok video",
             "tld": "ru",
-            "patterns": ["video/:id"],
+            "patterns": ["video/:id", "videoembed/:id"],
             "enabled": true
         },
         "youtube": {

From 77df90412b0e413e3ca96730523f1374b840e85f Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 18:16:27 +0600
Subject: [PATCH 12/51] package: bump version to 7.11

---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index 6aedc42..4378bcf 100644
--- a/package.json
+++ b/package.json
@@ -1,7 +1,7 @@
 {
     "name": "cobalt",
     "description": "save what you love",
-    "version": "7.10.4",
+    "version": "7.11",
     "author": "wukko",
     "exports": "./src/cobalt.js",
     "type": "module",

From e16ee6c1d32e3c29df77728917403320e599712c Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 19:08:59 +0600
Subject: [PATCH 13/51] env: readable environment variables in all files

apiPort -> API_PORT
apiURL -> API_URL
apiName -> API_NAME
cors -> ENABLE_CORS
cookiePath -> COOKIE_PATH

webPort -> WEB_PORT
webURL -> WEB_URL
showSponsors -> SHOW_SPONSORS
isBeta -> IS_BETA
---
 src/cobalt.js                            |  4 +--
 src/core/api.js                          | 14 +++++------
 src/core/web.js                          |  6 ++---
 src/modules/pageRender/elements.js       |  2 +-
 src/modules/pageRender/page.js           |  8 +++---
 src/modules/processing/cookie/manager.js |  2 +-
 src/modules/setup.js                     | 32 ++++++++++++------------
 src/modules/stream/manage.js             |  2 +-
 8 files changed, 35 insertions(+), 35 deletions(-)

diff --git a/src/cobalt.js b/src/cobalt.js
index 2d90e07..40bca04 100644
--- a/src/cobalt.js
+++ b/src/cobalt.js
@@ -21,8 +21,8 @@ app.disable('x-powered-by');
 
 await loadLoc();
 
-const apiMode = process.env.apiURL && !process.env.webURL;
-const webMode = process.env.webURL && process.env.apiURL;
+const apiMode = process.env.API_URL && !process.env.WEB_URL;
+const webMode = process.env.WEB_URL && process.env.API_URL;
 
 if (apiMode) {
     const { runAPI } = await import('./core/api.js');
diff --git a/src/core/api.js b/src/core/api.js
index 5f91031..8e26dbd 100644
--- a/src/core/api.js
+++ b/src/core/api.js
@@ -14,7 +14,7 @@ import { sha256 } from "../modules/sub/crypto.js";
 import { verifyStream } from "../modules/stream/manage.js";
 
 export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
-    const corsConfig = process.env.cors === '0' ? {
+    const corsConfig = process.env.ENABLE_CORS === '0' ? {
         origin: process.env.CORS_URL,
         optionsSuccessStatus: 200
     } : {};
@@ -141,9 +141,9 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
                         version: version,
                         commit: gitCommit,
                         branch: gitBranch,
-                        name: process.env.apiName || "unknown",
-                        url: process.env.apiURL,
-                        cors: process.env?.cors === "0" ? 0 : 1,
+                        name: process.env.API_NAME || "unknown",
+                        url: process.env.API_URL,
+                        cors: process.env?.ENABLE_CORS === "0" ? 0 : 1,
                         startTime: `${startTimestamp}`
                     });
                 default:
@@ -169,12 +169,12 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
         res.redirect('/api/json')
     });
 
-    app.listen(process.env.apiPort || 9000, () => {
+    app.listen(process.env.API_PORT || 9000, () => {
         console.log(`\n` +
             `${Cyan("cobalt")} API ${Bright(`v.${version}-${gitCommit} (${gitBranch})`)}\n` +
             `Start time: ${Bright(`${startTime.toUTCString()} (${startTimestamp})`)}\n\n` +
-            `URL: ${Cyan(`${process.env.apiURL}`)}\n` +
-            `Port: ${process.env.apiPort || 9000}\n`
+            `URL: ${Cyan(`${process.env.API_URL}`)}\n` +
+            `Port: ${process.env.API_PORT || 9000}\n`
         )
     });
 }
diff --git a/src/core/web.js b/src/core/web.js
index 08a6ffe..7c0cbf3 100644
--- a/src/core/web.js
+++ b/src/core/web.js
@@ -76,12 +76,12 @@ export async function runWeb(express, app, gitCommit, gitBranch, __dirname) {
         return res.redirect('/')
     });
 
-    app.listen(process.env.webPort || 9001, () => {
+    app.listen(process.env.WEB_PORT || 9001, () => {
         console.log(`\n` +
             `${Cyan("cobalt")} WEB ${Bright(`v.${version}-${gitCommit} (${gitBranch})`)}\n` +
             `Start time: ${Bright(`${startTime.toUTCString()} (${startTimestamp})`)}\n\n` +
-            `URL: ${Cyan(`${process.env.webURL}`)}\n` +
-            `Port: ${process.env.webPort || 9001}\n`
+            `URL: ${Cyan(`${process.env.WEB_URL}`)}\n` +
+            `Port: ${process.env.WEB_PORT || 9001}\n`
         )
     })
 }
diff --git a/src/modules/pageRender/elements.js b/src/modules/pageRender/elements.js
index a677d2b..53ad3c4 100644
--- a/src/modules/pageRender/elements.js
+++ b/src/modules/pageRender/elements.js
@@ -264,5 +264,5 @@ export function sponsoredList() {
 }
 
 export function betaTag() {
-    return process.env.isBeta ? '<span class="logo-sub">β</span>' : ''
+    return process.env.IS_BETA ? '<span class="logo-sub">β</span>' : ''
 }
diff --git a/src/modules/pageRender/page.js b/src/modules/pageRender/page.js
index 81e6d51..77b87f2 100644
--- a/src/modules/pageRender/page.js
+++ b/src/modules/pageRender/page.js
@@ -48,10 +48,10 @@ export default function(obj) {
 
         <title>${t("AppTitleCobalt")}</title>
 
-        <meta property="og:url" content="${process.env.webURL}">
+        <meta property="og:url" content="${process.env.WEB_URL}">
         <meta property="og:title" content="${t("AppTitleCobalt")}">
         <meta property="og:description" content="${t('EmbedBriefDescription')}">
-        <meta property="og:image" content="${process.env.webURL}icons/generic.png">
+        <meta property="og:image" content="${process.env.WEB_URL}icons/generic.png">
         <meta name="title" content="${t("AppTitleCobalt")}">
         <meta name="description" content="${t('AboutSummary')}">
         <meta name="theme-color" content="#000000">
@@ -165,7 +165,7 @@ export default function(obj) {
                             body: t("FairUse")
                         }])
                     },
-                    ...(process.env.showSponsors ?
+                    ...(process.env.SHOW_SPONSORS ?
                     [{
                         text: t("SponsoredBy"),
                         classes: ["sponsored-by-text"],
@@ -627,7 +627,7 @@ export default function(obj) {
             </footer>
         </div>
         <script>
-            let defaultApiUrl = '${process.env.apiURL ? process.env.apiURL : ''}';
+            let defaultApiUrl = '${process.env.API_URL || ''}';
             const loc = ${webLoc(t,
             [
                 'ErrorNoInternet',
diff --git a/src/modules/processing/cookie/manager.js b/src/modules/processing/cookie/manager.js
index 7189eb1..a0b66f4 100644
--- a/src/modules/processing/cookie/manager.js
+++ b/src/modules/processing/cookie/manager.js
@@ -3,7 +3,7 @@ import { readFile, writeFile } from 'fs/promises';
 import { parse as parseSetCookie, splitCookiesString } from 'set-cookie-parser';
 
 const WRITE_INTERVAL = 60000,
-      cookiePath = process.env.cookiePath,
+      cookiePath = process.env.COOKIE_PATH,
       COUNTER = Symbol('counter');
 
 let cookies = {}, dirty = false, intervalId;
diff --git a/src/modules/setup.js b/src/modules/setup.js
index f81a005..932cba5 100644
--- a/src/modules/setup.js
+++ b/src/modules/setup.js
@@ -39,27 +39,27 @@ function setup() {
                 console.log(Bright("\nCool! What's the domain this API instance will be running on? (localhost)\nExample: co.wuk.sh"));
 
                 rl.question(q, apiURL => {
-                    ob['apiURL'] = `http://localhost:9000/`;
-                    ob['apiPort'] = 9000;
-                    if (apiURL && apiURL !== "localhost") ob['apiURL'] = `https://${apiURL.toLowerCase()}/`;
+                    ob['API_URL'] = `http://localhost:9000/`;
+                    ob['API_PORT'] = 9000;
+                    if (apiURL && apiURL !== "localhost") ob['API_URL'] = `https://${apiURL.toLowerCase()}/`;
 
                     console.log(Bright("\nGreat! Now, what port will it be running on? (9000)"));
 
                     rl.question(q, apiPort => {
-                        if (apiPort) ob['apiPort'] = apiPort;
-                        if (apiPort && (apiURL === "localhost" || !apiURL)) ob['apiURL'] = `http://localhost:${apiPort}/`;
+                        if (apiPort) ob['API_PORT'] = apiPort;
+                        if (apiPort && (apiURL === "localhost" || !apiURL)) ob['API_URL'] = `http://localhost:${apiPort}/`;
 
                         console.log(Bright("\nWhat will your instance's name be? Usually it's something like eu-nl aka region-country. (local)"));
 
                         rl.question(q, apiName => {
-                            ob['apiName'] = apiName.toLowerCase();
-                            if (!apiName || apiName === "local") ob['apiName'] = "local";
+                            ob['API_URL'] = apiName.toLowerCase();
+                            if (!apiName || apiName === "local") ob['API_URL'] = "local";
 
                             console.log(Bright("\nOne last thing: would you like to enable CORS? It allows other websites and extensions to use your instance's API.\ny/n (n)"));
 
                             rl.question(q, apiCors => {
                                 let answCors = apiCors.toLowerCase().trim();
-                                if (answCors !== "y" && answCors !== "yes") ob['cors'] = '0'
+                                if (answCors !== "y" && answCors !== "yes") ob['ENABLE_CORS'] = '0'
                                 final()
                             })
                         })
@@ -71,25 +71,25 @@ function setup() {
                 console.log(Bright("\nAwesome! What's the domain this web app instance will be running on? (localhost)\nExample: cobalt.tools"));
     
                 rl.question(q, webURL => {
-                    ob['webURL'] = `http://localhost:9001/`;
-                    ob['webPort'] = 9001;
-                    if (webURL && webURL !== "localhost") ob['webURL'] = `https://${webURL.toLowerCase()}/`;
+                    ob['WEB_URL'] = `http://localhost:9001/`;
+                    ob['WEB_PORT'] = 9001;
+                    if (webURL && webURL !== "localhost") ob['WEB_URL'] = `https://${webURL.toLowerCase()}/`;
     
                     console.log(
                         Bright("\nGreat! Now, what port will it be running on? (9001)")
                     )
                     rl.question(q, webPort => {
-                        if (webPort) ob['webPort'] = webPort;
-                        if (webPort && (webURL === "localhost" || !webURL)) ob['webURL'] = `http://localhost:${webPort}/`;
+                        if (webPort) ob['WEB_PORT'] = webPort;
+                        if (webPort && (webURL === "localhost" || !webURL)) ob['WEB_URL'] = `http://localhost:${webPort}/`;
 
                         console.log(
                             Bright("\nOne last thing: what default API domain should be used? (co.wuk.sh)\nIf it's hosted locally, make sure to include the port:") + Cyan(" localhost:9000")
                         );
 
                         rl.question(q, apiURL => {
-                            ob['apiURL'] = `https://${apiURL.toLowerCase()}/`;
-                            if (apiURL.includes(':')) ob['apiURL'] = `http://${apiURL.toLowerCase()}/`;
-                            if (!apiURL) ob['apiURL'] = "https://co.wuk.sh/";
+                            ob['API_URL'] = `https://${apiURL.toLowerCase()}/`;
+                            if (apiURL.includes(':')) ob['API_URL'] = `http://${apiURL.toLowerCase()}/`;
+                            if (!apiURL) ob['API_URL'] = "https://co.wuk.sh/";
                             final()
                         })
                     });
diff --git a/src/modules/stream/manage.js b/src/modules/stream/manage.js
index 459e5a6..92a98da 100644
--- a/src/modules/stream/manage.js
+++ b/src/modules/stream/manage.js
@@ -43,7 +43,7 @@ export function createStream(obj) {
         exp = streamInfo.exp;
         ghmac = streamInfo.hmac;
     }
-    return `${process.env.apiURL}api/stream?t=${streamID}&e=${exp}&h=${ghmac}`;
+    return `${process.env.API_URL}api/stream?t=${streamID}&e=${exp}&h=${ghmac}`;
 }
 
 export function verifyStream(id, hmac, exp) {

From a480221fdf89d3e5ecc7e9bda256801255c560cf Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 19:10:04 +0600
Subject: [PATCH 14/51] docker-compose example: update env variables & clearer
 messaging

---
 docs/examples/docker-compose.example.yml | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/docs/examples/docker-compose.example.yml b/docs/examples/docker-compose.example.yml
index b5ce8a3..294bcb5 100644
--- a/docs/examples/docker-compose.example.yml
+++ b/docs/examples/docker-compose.example.yml
@@ -13,17 +13,17 @@ services:
 
         ports:
             - 9000:9000/tcp
-            # if you're using a reverse proxy, uncomment the next line:
+            # if you're using a reverse proxy, uncomment the next line and remove the one above (9000:9000/tcp):
             #- 127.0.0.1:9000:9000
 
         environment:
             # replace apiURL with your instance's target url in same format
-            - apiURL=https://co.wuk.sh/
+            - API_URL=https://co.wuk.sh/
             # replace apiName with your instance's distinctive name
-            - apiName=eu-nl
+            - API_NAME=eu-nl
             # if you want to use cookies when fetching data from services, uncomment the next line
-            #- cookiePath=/cookies.json
-            # see cookies_example.json for example file.
+            #- COOKIE_PATH=/cookies.json
+            # see cookies.example.json for example file.
         labels:
             - com.centurylinklabs.watchtower.scope=cobalt
 
@@ -43,14 +43,14 @@ services:
 
         ports:
             - 9001:9001/tcp
-            # if you're using a reverse proxy, uncomment the next line:
+            # if you're using a reverse proxy, uncomment the next line and remove the one above (9001:9001/tcp):
             #- 127.0.0.1:9001:9001
 
         environment:
-            # replace webURL with your instance's target url in same format
-            - webURL=https://cobalt.tools/
-            # replace apiURL with preferred api instance url
-            - apiURL=https://co.wuk.sh/
+            # replace https://cobalt.tools/ with your instance's target url in same format
+            - WEB_URL=https://cobalt.tools/
+            # replace https://co.wuk.sh/ with preferred api instance url
+            - API_URL=https://co.wuk.sh/
 
         labels:
             - com.centurylinklabs.watchtower.scope=cobalt

From 765615390a2f1cae4e1fc9c3fe634bdc5e79dfca Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 19:10:35 +0600
Subject: [PATCH 15/51] docs: added a list of all variables to
 `run-an-instance.md`

---
 docs/run-an-instance.md | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)

diff --git a/docs/run-an-instance.md b/docs/run-an-instance.md
index 801895d..99a54f2 100644
--- a/docs/run-an-instance.md
+++ b/docs/run-an-instance.md
@@ -47,3 +47,25 @@ setup script installs all needed `npm` dependencies, but you have to install `no
 sudo apt install nscd
 sudo service nscd start
 ```
+
+## list of all environment variables
+### variables for api
+| variable name         | default   | example                 | description                                                                  |
+|:----------------------|:----------|:------------------------|:-----------------------------------------------------------------------------|
+| `API_PORT`            | `9000`    |  `9000`                 | changes port from which api server is accessible.                            |
+| `API_URL`             | ➖        | `https://co.wuk.sh/`    | changes url from which api server is accessible. <br> ***REQUIRED TO RUN API***.  |
+| `API_NAME`            | `unknown` | `ams-1`                 | api server name that is shown in `/api/serverInfo`.                          |
+| `ENABLE_CORS`         | `1`       | `0`                     | toggles cross-origin resource sharing. <br> `0`: disabled. `1`: enabled.          |
+| `CORS_URL`            | not used  | `https://cobalt.tools/` | cross-origin resource sharing url. api will be available only from this url. |
+| `COOKIE_PATH`         | not used  | `/cookies.json`         | path for cookie file relative to main folder.                                |
+| `PROCESSING_PRIORITY` | not used  | `10`                    | changes `nice` value* for ffmpeg subprocess. available only on unix systems. |
+
+\* the higher the nice value, the lower the priority. [read more here](https://en.wikipedia.org/wiki/Nice_(Unix)).
+
+### variables for web
+| variable name   | default | example                 | description                                                                      |
+|:--------------- |:--------|:------------------------|:---------------------------------------------------------------------------------|
+| `WEB_PORT`      | `9001`  |  `9001`                 | changes port from which frontend server is accessible.                           |
+| `WEB_URL`       | ➖      | `https://cobalt.tools/` | changes url from which frontend server is accessible. <br> ***REQUIRED TO RUN WEB***. |
+| `SHOW_SPONSORS` | `0`     | `1`                     | toggles sponsor list in about popup. <br> `0`: disabled. `1`: enabled.                |
+| `IS_BETA`       | `0`     | `1`                     | toggles beta tag next to cobalt logo. <br> `0`: disabled. `1`: enabled.               |

From 011a0127b4390995b522216306721740630a6877 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 19:20:56 +0600
Subject: [PATCH 16/51] env: rename ENABLE_CORS to CORS_WILDCARD for better
 clarity

---
 docs/run-an-instance.md | 2 +-
 src/core/api.js         | 4 ++--
 src/modules/setup.js    | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/docs/run-an-instance.md b/docs/run-an-instance.md
index 99a54f2..2f3d8f5 100644
--- a/docs/run-an-instance.md
+++ b/docs/run-an-instance.md
@@ -55,7 +55,7 @@ sudo service nscd start
 | `API_PORT`            | `9000`    |  `9000`                 | changes port from which api server is accessible.                            |
 | `API_URL`             | ➖        | `https://co.wuk.sh/`    | changes url from which api server is accessible. <br> ***REQUIRED TO RUN API***.  |
 | `API_NAME`            | `unknown` | `ams-1`                 | api server name that is shown in `/api/serverInfo`.                          |
-| `ENABLE_CORS`         | `1`       | `0`                     | toggles cross-origin resource sharing. <br> `0`: disabled. `1`: enabled.          |
+| `CORS_WILDCARD`       | `1`       | `0`                     | toggles cross-origin resource sharing. <br> `0`: disabled. `1`: enabled.          |
 | `CORS_URL`            | not used  | `https://cobalt.tools/` | cross-origin resource sharing url. api will be available only from this url. |
 | `COOKIE_PATH`         | not used  | `/cookies.json`         | path for cookie file relative to main folder.                                |
 | `PROCESSING_PRIORITY` | not used  | `10`                    | changes `nice` value* for ffmpeg subprocess. available only on unix systems. |
diff --git a/src/core/api.js b/src/core/api.js
index 8e26dbd..de6affe 100644
--- a/src/core/api.js
+++ b/src/core/api.js
@@ -14,7 +14,7 @@ import { sha256 } from "../modules/sub/crypto.js";
 import { verifyStream } from "../modules/stream/manage.js";
 
 export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
-    const corsConfig = process.env.ENABLE_CORS === '0' ? {
+    const corsConfig = process.env.CORS_WILDCARD === '0' ? {
         origin: process.env.CORS_URL,
         optionsSuccessStatus: 200
     } : {};
@@ -143,7 +143,7 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
                         branch: gitBranch,
                         name: process.env.API_NAME || "unknown",
                         url: process.env.API_URL,
-                        cors: process.env?.ENABLE_CORS === "0" ? 0 : 1,
+                        cors_wildcard: process.env?.CORS_WILDCARD === "0" ? 0 : 1,
                         startTime: `${startTimestamp}`
                     });
                 default:
diff --git a/src/modules/setup.js b/src/modules/setup.js
index 932cba5..c9eafc4 100644
--- a/src/modules/setup.js
+++ b/src/modules/setup.js
@@ -59,7 +59,7 @@ function setup() {
 
                             rl.question(q, apiCors => {
                                 let answCors = apiCors.toLowerCase().trim();
-                                if (answCors !== "y" && answCors !== "yes") ob['ENABLE_CORS'] = '0'
+                                if (answCors !== "y" && answCors !== "yes") ob['CORS_WILDCARD'] = '0'
                                 final()
                             })
                         })

From a97733d257d5ee2dd54533eb21422b3f8fa0d215 Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Wed, 21 Feb 2024 00:50:48 +0000
Subject: [PATCH 17/51] feat: add dailymotion support

closes #343
---
 README.md                                     |   1 +
 src/modules/processing/match.js               |   4 +
 .../processing/services/dailymotion.js        | 107 ++++++++++++++++++
 src/modules/processing/servicesConfig.json    |   5 +
 .../processing/servicesPatternTesters.js      |   2 +
 src/modules/processing/url.js                 |   5 +
 src/modules/stream/types.js                   |   2 +-
 src/test/tests.json                           |  25 ++++
 8 files changed, 150 insertions(+), 1 deletion(-)
 create mode 100644 src/modules/processing/services/dailymotion.js

diff --git a/README.md b/README.md
index 328651f..87e6746 100644
--- a/README.md
+++ b/README.md
@@ -14,6 +14,7 @@ this list is not final and keeps expanding over time. if support for a service y
 | service                        | video + audio | only audio | only video | metadata | rich file names |
 | :--------                      | :-----------: | :--------: | :--------: | :------: | :-------------: |
 | bilibili.com                   | ✅            | ✅         | ✅         | ➖         | ➖              |
+| dailymotion                    | ✅            | ✅         | ✅         | ✅         | ✅              |
 | instagram posts & stories      | ✅            | ✅         | ✅         | ➖         | ➖              |
 | instagram reels                | ✅            | ✅         | ✅         | ➖         | ➖              |
 | ok video                       | ✅            | ❌         | ❌         | ✅         | ✅              |
diff --git a/src/modules/processing/match.js b/src/modules/processing/match.js
index 95558c8..f1641ba 100644
--- a/src/modules/processing/match.js
+++ b/src/modules/processing/match.js
@@ -24,6 +24,7 @@ import pinterest from "./services/pinterest.js";
 import streamable from "./services/streamable.js";
 import twitch from "./services/twitch.js";
 import rutube from "./services/rutube.js";
+import dailymotion from "./services/dailymotion.js";
 
 export default async function(host, patternMatch, url, lang, obj) {
     assert(url instanceof URL);
@@ -156,6 +157,9 @@ export default async function(host, patternMatch, url, lang, obj) {
                     isAudioOnly: isAudioOnly
                 });
                 break;
+            case "dailymotion":
+                r = await dailymotion(patternMatch);
+                break;
             default:
                 return apiJSON(0, { t: errorUnsupported(lang) });
         }
diff --git a/src/modules/processing/services/dailymotion.js b/src/modules/processing/services/dailymotion.js
new file mode 100644
index 0000000..1993eca
--- /dev/null
+++ b/src/modules/processing/services/dailymotion.js
@@ -0,0 +1,107 @@
+import HLSParser from 'hls-parser';
+import { maxVideoDuration } from '../../config.js';
+
+let _token;
+
+function getExp(token) {
+    return JSON.parse(
+        Buffer.from(token.split('.')[1], 'base64')
+    ).exp * 1000;
+}
+
+const getToken = async () => {
+    if (_token && getExp(_token) > new Date().getTime()) {
+        return _token;
+    }
+
+    const req = await fetch('https://graphql.api.dailymotion.com/oauth/token', {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/x-www-form-urlencoded; charset=utf-8',
+            'User-Agent': 'dailymotion/240213162706 CFNetwork/1492.0.1 Darwin/23.3.0',
+            'Authorization': 'Basic MGQyZDgyNjQwOWFmOWU3MmRiNWQ6ODcxNmJmYTVjYmEwMmUwMGJkYTVmYTg1NTliNDIwMzQ3NzIyYWMzYQ=='
+        },
+        body: 'traffic_segment=&grant_type=client_credentials'
+    }).then(r => r.json()).catch(() => {});
+
+    if (req.access_token) {
+        return _token = req.access_token;
+    }
+}
+
+export default async function({ id }) {
+    const token = await getToken();
+    if (!token) return { error: 'ErrorSomethingWentWrong' };
+
+    const req = await fetch('https://graphql.api.dailymotion.com/',
+        {
+            method: 'POST',
+            headers: {
+                'User-Agent': 'dailymotion/240213162706 CFNetwork/1492.0.1 Darwin/23.3.0',
+                Authorization: `Bearer ${token}`,
+                'Content-Type': 'application/json',
+                'X-DM-AppInfo-Version': '7.16.0_240213162706',
+                'X-DM-AppInfo-Type': 'iosapp',
+                'X-DM-AppInfo-Id': 'com.dailymotion.dailymotion'
+            },
+            body: JSON.stringify({
+                operationName: "Media",
+                query: `
+                    query Media($xid: String!, $password: String) {
+                        media(xid: $xid, password: $password) {
+                        __typename
+                            ... on Video {
+                                xid
+                                hlsURL
+                                duration
+                                title
+                                channel {
+                                    displayName
+                                }
+                            }
+                        }
+                    }
+                `,
+                variables: { xid: id }
+            })
+        }
+    ).then(r => r.status === 200 && r.json()).catch(() => {});
+
+    const media = req?.data?.media;
+
+    if (media?.__typename !== 'Video' || !media.hlsURL) {
+        return { error: 'ErrorEmptyDownload' }
+    }
+
+    if (media.duration * 1000 > maxVideoDuration) {
+        return { error: ['ErrorLengthLimit', maxVideoDuration / 60000] };
+    }
+
+    const manifest = await fetch(media.hlsURL).then(r => r.text()).catch(() => {});
+    if (!manifest) return { error: 'ErrorSomethingWentWrong' };
+
+    const bestQuality = HLSParser.parse(manifest).variants
+                        .filter(v => v.codecs.includes('avc1'))
+                        .reduce((a, b) => a.bandwidth > b.bandwidth ? a : b);
+    if (!bestQuality) return { error: 'ErrorEmptyDownload' }
+
+    const fileMetadata = {
+        title: media.title,
+        artist: media.channel.displayName
+    }
+
+    return {
+        urls: bestQuality.uri,
+        isM3U8: true,
+        filenameAttributes: {
+            service: 'dailymotion',
+            id: media.xid,
+            title: fileMetadata.title,
+            author: fileMetadata.artist,
+            resolution: `${bestQuality.resolution.width}x${bestQuality.resolution.height}`,
+            qualityLabel: `${bestQuality.resolution.height}p`,
+            extension: 'mp4'
+        },
+        fileMetadata
+    }
+}
\ No newline at end of file
diff --git a/src/modules/processing/servicesConfig.json b/src/modules/processing/servicesConfig.json
index 384ca1b..52b8d58 100644
--- a/src/modules/processing/servicesConfig.json
+++ b/src/modules/processing/servicesConfig.json
@@ -109,6 +109,11 @@
             "tld": "ru",
             "patterns": ["video/:id", "play/embed/:id"],
             "enabled": true
+        },
+        "dailymotion": {
+            "alias": "dailymotion videos",
+            "patterns": ["video/:id"],
+            "enabled": true
         }
     }
 }
diff --git a/src/modules/processing/servicesPatternTesters.js b/src/modules/processing/servicesPatternTesters.js
index 30892f6..393a9c9 100644
--- a/src/modules/processing/servicesPatternTesters.js
+++ b/src/modules/processing/servicesPatternTesters.js
@@ -3,6 +3,8 @@ export const testers = {
         patternMatch.comId?.length <= 12 || patternMatch.comShortLink?.length <= 16
         || patternMatch.tvId?.length <= 24,
 
+    "dailymotion": (patternMatch) => patternMatch.id?.length <= 32,
+
     "instagram": (patternMatch) =>
         patternMatch.postId?.length <= 12
         || (patternMatch.username?.length <= 30 && patternMatch.storyId?.length <= 24),
diff --git a/src/modules/processing/url.js b/src/modules/processing/url.js
index 5e6bd15..b272ff8 100644
--- a/src/modules/processing/url.js
+++ b/src/modules/processing/url.js
@@ -59,6 +59,11 @@ export function aliasURL(url) {
                 url = new URL(`https://bilibili.com/_shortLink/${parts[1]}`)
             }
             break;
+
+        case "dai":
+            if (url.hostname === 'dai.ly' && parts.length === 2) {
+                url = new URL(`https://dailymotion.com/video/${parts[1]}`)
+            }
     }
 
     return url
diff --git a/src/modules/stream/types.js b/src/modules/stream/types.js
index 7dcfd74..6a58058 100644
--- a/src/modules/stream/types.js
+++ b/src/modules/stream/types.js
@@ -215,7 +215,7 @@ export function streamVideoOnly(streamInfo, res) {
             args.push('-an')
         }
 
-        if (['vimeo', 'rutube'].includes(streamInfo.service)) {
+        if (["vimeo", "rutube", "dailymotion"].includes(streamInfo.service)) {
             args.push('-bsf:a', 'aac_adtstoasc')
         }
 
diff --git a/src/test/tests.json b/src/test/tests.json
index 42f75f4..f31156f 100644
--- a/src/test/tests.json
+++ b/src/test/tests.json
@@ -1197,5 +1197,30 @@
             "code": 200,
             "status": "stream"
         }
+    }],
+    "dailymotion": [{
+        "name": "regular video",
+        "url": "https://www.dailymotion.com/video/x8t1eho",
+        "params": {},
+        "expected": {
+            "code": 200,
+            "status": "stream"
+        }
+    }, {
+        "name": "private video",
+        "url": "https://www.dailymotion.com/video/k41fZWpx2TaAORA2nok",
+        "params": {},
+        "expected": {
+            "code": 200,
+            "status": "stream"
+        }
+    }, {
+        "name": "dai.ly shortened link",
+        "url": "https://dai.ly/k41fZWpx2TaAORA2nok",
+        "params": {},
+        "expected": {
+            "code": 200,
+            "status": "stream"
+        }
     }]
 }

From 0f515498dc40b5d84d43976be5bff24b7d9631f7 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 19:32:10 +0600
Subject: [PATCH 18/51] docker-compose example: update api comments

---
 docs/examples/docker-compose.example.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/examples/docker-compose.example.yml b/docs/examples/docker-compose.example.yml
index 294bcb5..b6f4a90 100644
--- a/docs/examples/docker-compose.example.yml
+++ b/docs/examples/docker-compose.example.yml
@@ -17,9 +17,9 @@ services:
             #- 127.0.0.1:9000:9000
 
         environment:
-            # replace apiURL with your instance's target url in same format
+            # replace https://co.wuk.sh/ with your instance's target url in same format
             - API_URL=https://co.wuk.sh/
-            # replace apiName with your instance's distinctive name
+            # replace eu-nl with your instance's distinctive name
             - API_NAME=eu-nl
             # if you want to use cookies when fetching data from services, uncomment the next line
             #- COOKIE_PATH=/cookies.json

From 12833e18270f169600bdaefb1546677382a491cd Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Tue, 5 Mar 2024 13:41:22 +0000
Subject: [PATCH 19/51] api: alias deprecated envs to maintain backwards
 compatibility

---
 src/cobalt.js                 |  1 +
 src/modules/sub/alias-envs.js | 22 ++++++++++++++++++++++
 2 files changed, 23 insertions(+)
 create mode 100644 src/modules/sub/alias-envs.js

diff --git a/src/cobalt.js b/src/cobalt.js
index 40bca04..050aec4 100644
--- a/src/cobalt.js
+++ b/src/cobalt.js
@@ -1,4 +1,5 @@
 import "dotenv/config";
+import "./modules/sub/alias-envs.js";
 
 import express from "express";
 
diff --git a/src/modules/sub/alias-envs.js b/src/modules/sub/alias-envs.js
new file mode 100644
index 0000000..6cf775e
--- /dev/null
+++ b/src/modules/sub/alias-envs.js
@@ -0,0 +1,22 @@
+import { Red } from "./consoleText.js";
+
+const mapping = {
+    apiPort: 'API_PORT',
+    apiURL: 'API_URL',
+    apiName: 'API_NAME',
+    cors: 'CORS_WILDCARD',
+    cookiePath: 'COOKIE_PATH',
+    webPort: 'WEB_PORT',
+    webUrl: 'WEB_URL',
+    showSponsors: 'SHOW_SPONSORS',
+    isBeta: 'IS_BETA'
+}
+
+for (const [ oldEnv, newEnv ] of Object.entries(mapping)) {
+    if (process.env[oldEnv] && !process.env[newEnv]) {
+        process.env[newEnv] = process.env[oldEnv];
+        console.error(`${Red('[!]')} ${oldEnv} is deprecated and will be removed in a future version.`);
+        console.error(`    You should use ${newEnv} instead.`);
+        console.error();
+    }
+}

From bcda104ddbe9aabc8a9ba7681630841aef4410a7 Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Tue, 5 Mar 2024 13:49:20 +0000
Subject: [PATCH 20/51] test: alias deprecated envs here too

---
 src/test/test.js | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/test/test.js b/src/test/test.js
index 15b28cc..d8373ff 100644
--- a/src/test/test.js
+++ b/src/test/test.js
@@ -1,4 +1,5 @@
 import "dotenv/config";
+import "../modules/sub/alias-envs.js";
 
 import { getJSON } from "../modules/api.js";
 import { services } from "../modules/config.js";

From f3f0d0eb21152d1b405c42343203454133b39c3d Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 19:55:58 +0600
Subject: [PATCH 21/51] alias-envs: delete old env

---
 src/modules/sub/alias-envs.js | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/modules/sub/alias-envs.js b/src/modules/sub/alias-envs.js
index 6cf775e..f8823b6 100644
--- a/src/modules/sub/alias-envs.js
+++ b/src/modules/sub/alias-envs.js
@@ -18,5 +18,6 @@ for (const [ oldEnv, newEnv ] of Object.entries(mapping)) {
         console.error(`${Red('[!]')} ${oldEnv} is deprecated and will be removed in a future version.`);
         console.error(`    You should use ${newEnv} instead.`);
         console.error();
+        delete process.env[oldEnv];
     }
 }

From 18056dc7af1bfcbfc4018e91058b822690a045fb Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 20:13:01 +0600
Subject: [PATCH 22/51] cors: revert cors name change in serverInfo

---
 src/core/api.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/core/api.js b/src/core/api.js
index de6affe..8b35963 100644
--- a/src/core/api.js
+++ b/src/core/api.js
@@ -143,7 +143,7 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
                         branch: gitBranch,
                         name: process.env.API_NAME || "unknown",
                         url: process.env.API_URL,
-                        cors_wildcard: process.env?.CORS_WILDCARD === "0" ? 0 : 1,
+                        cors: process.env?.CORS_WILDCARD === "0" ? 0 : 1,
                         startTime: `${startTimestamp}`
                     });
                 default:

From a487384858e33cde6da7654363fe9c8ccc76b5d1 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 20:14:32 +0600
Subject: [PATCH 23/51] instance docs: update CORS_WILDCARD description

---
 docs/run-an-instance.md | 22 +++++++++++-----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/docs/run-an-instance.md b/docs/run-an-instance.md
index 2f3d8f5..5a181cc 100644
--- a/docs/run-an-instance.md
+++ b/docs/run-an-instance.md
@@ -50,22 +50,22 @@ sudo service nscd start
 
 ## list of all environment variables
 ### variables for api
-| variable name         | default   | example                 | description                                                                  |
-|:----------------------|:----------|:------------------------|:-----------------------------------------------------------------------------|
-| `API_PORT`            | `9000`    |  `9000`                 | changes port from which api server is accessible.                            |
-| `API_URL`             | ➖        | `https://co.wuk.sh/`    | changes url from which api server is accessible. <br> ***REQUIRED TO RUN API***.  |
-| `API_NAME`            | `unknown` | `ams-1`                 | api server name that is shown in `/api/serverInfo`.                          |
-| `CORS_WILDCARD`       | `1`       | `0`                     | toggles cross-origin resource sharing. <br> `0`: disabled. `1`: enabled.          |
-| `CORS_URL`            | not used  | `https://cobalt.tools/` | cross-origin resource sharing url. api will be available only from this url. |
-| `COOKIE_PATH`         | not used  | `/cookies.json`         | path for cookie file relative to main folder.                                |
+| variable name         | default   | example                 | description |
+|:----------------------|:----------|:------------------------|:------------|
+| `API_PORT`            | `9000`    |  `9000`                 | changes port from which api server is accessible. |
+| `API_URL`             | ➖        | `https://co.wuk.sh/`    | changes url from which api server is accessible. <br> ***REQUIRED TO RUN API***. |
+| `API_NAME`            | `unknown` | `ams-1`                 | api server name that is shown in `/api/serverInfo`. |
+| `CORS_WILDCARD`       | `1`       | `0`                     | toggles cross-origin resource sharing. <br> `0`: disabled. `1`: enabled. |
+| `CORS_URL`            | not used  | `https://cobalt.tools/` | cross-origin resource sharing url. api will be available only from this url if `CORS_WILDCARD` is set to `0`. |
+| `COOKIE_PATH`         | not used  | `/cookies.json`         | path for cookie file relative to main folder. |
 | `PROCESSING_PRIORITY` | not used  | `10`                    | changes `nice` value* for ffmpeg subprocess. available only on unix systems. |
 
 \* the higher the nice value, the lower the priority. [read more here](https://en.wikipedia.org/wiki/Nice_(Unix)).
 
 ### variables for web
-| variable name   | default | example                 | description                                                                      |
-|:--------------- |:--------|:------------------------|:---------------------------------------------------------------------------------|
-| `WEB_PORT`      | `9001`  |  `9001`                 | changes port from which frontend server is accessible.                           |
+| variable name   | default | example                 | description                                                                           |
+|:--------------- |:--------|:------------------------|:--------------------------------------------------------------------------------------|
+| `WEB_PORT`      | `9001`  |  `9001`                 | changes port from which frontend server is accessible.                                |
 | `WEB_URL`       | ➖      | `https://cobalt.tools/` | changes url from which frontend server is accessible. <br> ***REQUIRED TO RUN WEB***. |
 | `SHOW_SPONSORS` | `0`     | `1`                     | toggles sponsor list in about popup. <br> `0`: disabled. `1`: enabled.                |
 | `IS_BETA`       | `0`     | `1`                     | toggles beta tag next to cobalt logo. <br> `0`: disabled. `1`: enabled.               |

From 1cd2b170a8cc8da980543945e687c991032cc5ce Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 20:21:57 +0600
Subject: [PATCH 24/51] readme: update bilibili name

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 87e6746..f542a69 100644
--- a/README.md
+++ b/README.md
@@ -13,7 +13,7 @@ this list is not final and keeps expanding over time. if support for a service y
 
 | service                        | video + audio | only audio | only video | metadata | rich file names |
 | :--------                      | :-----------: | :--------: | :--------: | :------: | :-------------: |
-| bilibili.com                   | ✅            | ✅         | ✅         | ➖         | ➖              |
+| bilibili.com & bilibili.tv     | ✅            | ✅         | ✅         | ➖         | ➖              |
 | dailymotion                    | ✅            | ✅         | ✅         | ✅         | ✅              |
 | instagram posts & stories      | ✅            | ✅         | ✅         | ➖         | ➖              |
 | instagram reels                | ✅            | ✅         | ✅         | ➖         | ➖              |

From 04ce4c0645ebc384fc17c7798c1571a1953fa2ff Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 20:22:29 +0600
Subject: [PATCH 25/51] servicesConfig: update bilibili alias

---
 src/modules/processing/servicesConfig.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/modules/processing/servicesConfig.json b/src/modules/processing/servicesConfig.json
index 52b8d58..40bc153 100644
--- a/src/modules/processing/servicesConfig.json
+++ b/src/modules/processing/servicesConfig.json
@@ -2,7 +2,7 @@
     "audioIgnore": ["vk", "ok"],
     "config": {
         "bilibili": {
-            "alias": "bilibili videos",
+            "alias": "bilibili.com & bilibili.tv",
             "patterns": [
                 "video/:comId", "_shortLink/:comShortLink",
                 "_tv/:lang/video/:tvId", "_tv/video/:tvId"

From dbe2a02152c8d298f7fd8e3ca9857a4b17812570 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 20:41:08 +0600
Subject: [PATCH 26/51] stream/manage: remove unnecessary Math.floor for
 timestamp from prehistoric times

---
 src/modules/stream/manage.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/modules/stream/manage.js b/src/modules/stream/manage.js
index b034268..842499f 100644
--- a/src/modules/stream/manage.js
+++ b/src/modules/stream/manage.js
@@ -21,7 +21,7 @@ export function createStream(obj) {
     const streamID = nanoid(),
         iv = randomBytes(16).toString('base64'),
         secret = randomBytes(256).toString('base64'),
-        exp = Math.floor(new Date().getTime()) + streamLifespan,
+        exp = new Date().getTime() + streamLifespan,
         hmac = sha256(`${streamID},${exp},${iv},${secret}`, hmacSalt),
         streamData = {
             service: obj.service,
@@ -77,7 +77,7 @@ export function verifyStream(id, hmac, exp, secret, iv) {
             status: 400
         }
 
-        if (String(exp) === String(streamInfo.exp) && Number(exp) > Math.floor(new Date().getTime())) {
+        if (String(exp) === String(streamInfo.exp) && Number(exp) > new Date().getTime()) {
             return streamInfo;
         }
         return {

From c22d76444b0067fbcd790d22b1a6b453214c0f85 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 20:41:33 +0600
Subject: [PATCH 27/51] core/api: remove unnecessary Math.floor for timestamp

---
 src/core/api.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/core/api.js b/src/core/api.js
index 8b3dec0..05d2051 100644
--- a/src/core/api.js
+++ b/src/core/api.js
@@ -47,7 +47,7 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
     });
     
     const startTime = new Date();
-    const startTimestamp = Math.floor(startTime.getTime());
+    const startTimestamp = startTime.getTime();
 
     app.set('trust proxy', ['loopback', 'uniquelocal']);
 

From 9211b395887473ce530a66064273cacc3b043ebe Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 20:45:54 +0600
Subject: [PATCH 28/51] createStream: removed an outdated variable

---
 src/modules/stream/manage.js | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/src/modules/stream/manage.js b/src/modules/stream/manage.js
index 842499f..b731c0b 100644
--- a/src/modules/stream/manage.js
+++ b/src/modules/stream/manage.js
@@ -24,14 +24,13 @@ export function createStream(obj) {
         exp = new Date().getTime() + streamLifespan,
         hmac = sha256(`${streamID},${exp},${iv},${secret}`, hmacSalt),
         streamData = {
-            service: obj.service,
+            exp: exp,
             type: obj.type,
             urls: obj.u,
+            service: obj.service,
             filename: obj.filename,
-            exp: exp,
             audioFormat: obj.audioFormat,
             isAudioOnly: !!obj.isAudioOnly,
-            time: obj.time || false,
             copy: !!obj.copy,
             mute: !!obj.mute,
             metadata: obj.fileMetadata || false

From 6ed03b003588182f6e5b40287c31cabae1e1d43e Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 20:55:17 +0600
Subject: [PATCH 29/51] crypto: rename sha256 func to generateHmac

it has always been actually hmac
---
 src/core/api.js              | 6 +++---
 src/modules/stream/manage.js | 6 +++---
 src/modules/sub/crypto.js    | 2 +-
 3 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/src/core/api.js b/src/core/api.js
index 05d2051..d78fd1d 100644
--- a/src/core/api.js
+++ b/src/core/api.js
@@ -10,7 +10,7 @@ import { apiJSON, checkJSONPost, getIP, languageCode } from "../modules/sub/util
 import { Bright, Cyan } from "../modules/sub/consoleText.js";
 import stream from "../modules/stream/stream.js";
 import loc from "../localization/manager.js";
-import { sha256 } from "../modules/sub/crypto.js";
+import { generateHmac } from "../modules/sub/crypto.js";
 import { verifyStream } from "../modules/stream/manage.js";
 
 export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
@@ -24,7 +24,7 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
         max: 20,
         standardHeaders: true,
         legacyHeaders: false,
-        keyGenerator: req => sha256(getIP(req), ipSalt),
+        keyGenerator: req => generateHmac(getIP(req), ipSalt),
         handler: (req, res, next, opt) => {
             return res.status(429).json({
                 "status": "rate-limit",
@@ -37,7 +37,7 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
         max: 25,
         standardHeaders: true,
         legacyHeaders: false,
-        keyGenerator: req => sha256(getIP(req), ipSalt),
+        keyGenerator: req => generateHmac(getIP(req), ipSalt),
         handler: (req, res, next, opt) => {
             return res.status(429).json({
                 "status": "rate-limit",
diff --git a/src/modules/stream/manage.js b/src/modules/stream/manage.js
index b731c0b..32fa5fb 100644
--- a/src/modules/stream/manage.js
+++ b/src/modules/stream/manage.js
@@ -2,7 +2,7 @@ import NodeCache from "node-cache";
 import { randomBytes } from "crypto";
 import { nanoid } from 'nanoid';
 
-import { decryptStream, encryptStream, sha256 } from "../sub/crypto.js";
+import { decryptStream, encryptStream, generateHmac } from "../sub/crypto.js";
 import { streamLifespan } from "../config.js";
 
 const streamCache = new NodeCache({
@@ -22,7 +22,7 @@ export function createStream(obj) {
         iv = randomBytes(16).toString('base64'),
         secret = randomBytes(256).toString('base64'),
         exp = new Date().getTime() + streamLifespan,
-        hmac = sha256(`${streamID},${exp},${iv},${secret}`, hmacSalt),
+        hmac = generateHmac(`${streamID},${exp},${iv},${secret}`, hmacSalt),
         streamData = {
             exp: exp,
             type: obj.type,
@@ -60,7 +60,7 @@ export function createStream(obj) {
 
 export function verifyStream(id, hmac, exp, secret, iv) {
     try {
-        const ghmac = sha256(`${id},${exp},${iv},${secret}`, hmacSalt);
+        const ghmac = generateHmac(`${id},${exp},${iv},${secret}`, hmacSalt);
 
         if (ghmac !== String(hmac)) {
             return {
diff --git a/src/modules/sub/crypto.js b/src/modules/sub/crypto.js
index 70484f4..7e31278 100644
--- a/src/modules/sub/crypto.js
+++ b/src/modules/sub/crypto.js
@@ -3,7 +3,7 @@ import { createHmac, createCipheriv, createDecipheriv, scryptSync } from "crypto
 const algorithm = "aes256"
 const keyLength = 32;
 
-export function sha256(str, salt) {
+export function generateHmac(str, salt) {
     return createHmac("sha256", salt).update(str).digest("base64");
 }
 

From 48ac75b135d5485bf8607841d16ce9382c004517 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 21:02:29 +0600
Subject: [PATCH 30/51] crypto: concat buffers in encryptStream and
 decryptStream

---
 src/modules/sub/crypto.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/modules/sub/crypto.js b/src/modules/sub/crypto.js
index 7e31278..3f02edc 100644
--- a/src/modules/sub/crypto.js
+++ b/src/modules/sub/crypto.js
@@ -13,7 +13,7 @@ export function encryptStream(str, iv, secret) {
     const key = scryptSync(Buffer.from(secret, "base64"), "salt", keyLength);
     const cipher = createCipheriv(algorithm, key, Buffer.from(iv, "base64"));
 
-    return Buffer.from(cipher.update(buff, "utf8", "binary") + cipher.final("binary"), "binary");
+    return Buffer.concat([ cipher.update(buff), cipher.final() ])
 }
 
 export function decryptStream(buf, iv, secret) {
@@ -22,5 +22,5 @@ export function decryptStream(buf, iv, secret) {
     const key = scryptSync(Buffer.from(secret, "base64"), "salt", keyLength);
     const decipher = createDecipheriv(algorithm, key, Buffer.from(iv, "base64"));
 
-    return decipher.update(buff, "binary", "utf8") + decipher.final("utf8");
+    return Buffer.concat([ decipher.update(buff), decipher.final() ])
 }

From 7420337ea2f51d7d143b4fc9a2604c4e6ec77998 Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Mon, 4 Mar 2024 23:25:46 +0000
Subject: [PATCH 31/51] vimeo: fall back to `width` for quality label if unable
 to map

---
 src/modules/processing/services/vimeo.js | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/modules/processing/services/vimeo.js b/src/modules/processing/services/vimeo.js
index db623bd..7c6aab9 100644
--- a/src/modules/processing/services/vimeo.js
+++ b/src/modules/processing/services/vimeo.js
@@ -71,6 +71,7 @@ export default async function(obj) {
     }
 
     let masterM3U8 = `${masterJSONURL.split("/sep/")[0]}/sep/video/${bestVideo.id}/master.m3u8`;
+    const fallbackResolution = bestVideo.height > bestVideo.width ? bestVideo.width : bestVideo.height;
 
     return {
         urls: masterM3U8,
@@ -81,8 +82,8 @@ export default async function(obj) {
             id: obj.id,
             title: fileMetadata.title,
             author: fileMetadata.artist,
-            resolution: `${bestVideo["width"]}x${bestVideo["height"]}`,
-            qualityLabel: `${resolutionMatch[bestVideo["width"]]}p`,
+            resolution: `${bestVideo.width}x${bestVideo.height}`,
+            qualityLabel: `${resolutionMatch[bestVideo.width] || fallbackResolution}p`,
             extension: "mp4"
         }
     }

From 52e6a406417518f4ba2991fd02a9e83e456a5b3f Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Mon, 4 Mar 2024 23:26:14 +0000
Subject: [PATCH 32/51] vimeo: add support for private videos

---
 src/modules/processing/match.js                  | 1 +
 src/modules/processing/services/vimeo.js         | 9 ++++++++-
 src/modules/processing/servicesConfig.json       | 2 +-
 src/modules/processing/servicesPatternTesters.js | 3 ++-
 src/test/tests.json                              | 8 ++++++++
 5 files changed, 20 insertions(+), 3 deletions(-)

diff --git a/src/modules/processing/match.js b/src/modules/processing/match.js
index f1641ba..16f48af 100644
--- a/src/modules/processing/match.js
+++ b/src/modules/processing/match.js
@@ -104,6 +104,7 @@ export default async function(host, patternMatch, url, lang, obj) {
             case "vimeo":
                 r = await vimeo({
                     id: patternMatch.id.slice(0, 11),
+                    password: patternMatch.password,
                     quality: obj.vQuality,
                     isAudioOnly: isAudioOnly,
                     forceDash: isAudioOnly ? true : obj.vimeoDash
diff --git a/src/modules/processing/services/vimeo.js b/src/modules/processing/services/vimeo.js
index 7c6aab9..f51f722 100644
--- a/src/modules/processing/services/vimeo.js
+++ b/src/modules/processing/services/vimeo.js
@@ -28,7 +28,14 @@ export default async function(obj) {
     let quality = obj.quality === "max" ? "9000" : obj.quality;
     if (!quality || obj.isAudioOnly) quality = "9000";
 
-    let api = await fetch(`https://player.vimeo.com/video/${obj.id}/config`).then((r) => { return r.json() }).catch(() => { return false });
+    const url = new URL(`https://player.vimeo.com/video/${obj.id}/config`);
+    if (obj.password) {
+        url.searchParams.set('h', obj.password);
+    }
+
+    let api = await fetch(url)
+                    .then(r => r.json())
+                    .catch(() => {});
     if (!api) return { error: 'ErrorCouldntFetch' };
 
     let downloadType = "dash";
diff --git a/src/modules/processing/servicesConfig.json b/src/modules/processing/servicesConfig.json
index 40bc153..b92f575 100644
--- a/src/modules/processing/servicesConfig.json
+++ b/src/modules/processing/servicesConfig.json
@@ -64,7 +64,7 @@
             "enabled": false
         },
         "vimeo": {
-            "patterns": [":id", "video/:id"],
+            "patterns": [":id", "video/:id", ":id/:password"],
             "enabled": true,
             "bestAudio": "mp3"
         },
diff --git a/src/modules/processing/servicesPatternTesters.js b/src/modules/processing/servicesPatternTesters.js
index 393a9c9..f4dee15 100644
--- a/src/modules/processing/servicesPatternTesters.js
+++ b/src/modules/processing/servicesPatternTesters.js
@@ -42,7 +42,8 @@ export const testers = {
         patternMatch.id?.length < 20,
 
     "vimeo": (patternMatch) =>
-        patternMatch.id?.length <= 11,
+        patternMatch.id?.length <= 11
+        && (!patternMatch.password || patternMatch.password.length < 16),
 
     "vine": (patternMatch) =>
         patternMatch.id?.length <= 12,
diff --git a/src/test/tests.json b/src/test/tests.json
index 94fc43a..e404859 100644
--- a/src/test/tests.json
+++ b/src/test/tests.json
@@ -847,6 +847,14 @@
             "code": 200,
             "status": "stream"
         }
+    }, {
+        "name": "private video",
+        "url": "https://vimeo.com/903115595/f14d06da38",
+        "params": {},
+        "expected": {
+            "code": 200,
+            "status": "stream"
+        }
     }],
     "reddit": [{
         "name": "video with audio",

From 73b63e5487caa555a4799f4c63afbd3216fa862f Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 21:14:54 +0600
Subject: [PATCH 33/51] crypto: replace base64 with base64url

---
 src/modules/sub/crypto.js | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/src/modules/sub/crypto.js b/src/modules/sub/crypto.js
index 3f02edc..6a221e1 100644
--- a/src/modules/sub/crypto.js
+++ b/src/modules/sub/crypto.js
@@ -4,14 +4,14 @@ const algorithm = "aes256"
 const keyLength = 32;
 
 export function generateHmac(str, salt) {
-    return createHmac("sha256", salt).update(str).digest("base64");
+    return createHmac("sha256", salt).update(str).digest("base64url");
 }
 
 export function encryptStream(str, iv, secret) {
     const buff = Buffer.from(JSON.stringify(str), "utf-8");
 
-    const key = scryptSync(Buffer.from(secret, "base64"), "salt", keyLength);
-    const cipher = createCipheriv(algorithm, key, Buffer.from(iv, "base64"));
+    const key = scryptSync(Buffer.from(secret, "base64url"), "salt", keyLength);
+    const cipher = createCipheriv(algorithm, key, Buffer.from(iv, "base64url"));
 
     return Buffer.concat([ cipher.update(buff), cipher.final() ])
 }
@@ -19,8 +19,8 @@ export function encryptStream(str, iv, secret) {
 export function decryptStream(buf, iv, secret) {
     const buff = Buffer.from(buf, "binary");
 
-    const key = scryptSync(Buffer.from(secret, "base64"), "salt", keyLength);
-    const decipher = createDecipheriv(algorithm, key, Buffer.from(iv, "base64"));
+    const key = scryptSync(Buffer.from(secret, "base64url"), "salt", keyLength);
+    const decipher = createDecipheriv(algorithm, key, Buffer.from(iv, "base64url"));
 
     return Buffer.concat([ decipher.update(buff), decipher.final() ])
 }

From f4acd2f14121d68be89b61aae06f54b8f3a0ae8c Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 21:15:13 +0600
Subject: [PATCH 34/51] stream/manage: replace base64 with base64url

---
 src/modules/stream/manage.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/modules/stream/manage.js b/src/modules/stream/manage.js
index 32fa5fb..c8bcd97 100644
--- a/src/modules/stream/manage.js
+++ b/src/modules/stream/manage.js
@@ -19,8 +19,8 @@ const hmacSalt = randomBytes(64).toString('hex');
 
 export function createStream(obj) {
     const streamID = nanoid(),
-        iv = randomBytes(16).toString('base64'),
-        secret = randomBytes(256).toString('base64'),
+        iv = randomBytes(16).toString('base64url'),
+        secret = randomBytes(256).toString('base64url'),
         exp = new Date().getTime() + streamLifespan,
         hmac = generateHmac(`${streamID},${exp},${iv},${secret}`, hmacSalt),
         streamData = {

From 97f4528e92dc1245360266d13f5bc19029661a2d Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 21:15:32 +0600
Subject: [PATCH 35/51] core/api: update checkSafeLength

---
 src/core/api.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/core/api.js b/src/core/api.js
index d78fd1d..8f6060f 100644
--- a/src/core/api.js
+++ b/src/core/api.js
@@ -128,7 +128,7 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
                     const q = req.query;
                     const checkQueries = q.t && q.e && q.h && q.s && q.i;
                     const checkBaseLength = q.t.length === 21 && q.e.length === 13;
-                    const checkSafeLength = q.h.length === 44 && q.s.length === 344 && q.i.length === 24;
+                    const checkSafeLength = q.h.length === 43 && q.s.length === 342 && q.i.length === 22;
 
                     if (checkQueries && checkBaseLength && checkSafeLength) {
                         let streamInfo = verifyStream(q.t, q.h, q.e, q.s, q.i);

From 201a124cc441b95987660396ae5d3d54a4c976a2 Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Tue, 5 Mar 2024 15:18:00 +0000
Subject: [PATCH 36/51] alias-envs: typo

---
 src/modules/sub/alias-envs.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/modules/sub/alias-envs.js b/src/modules/sub/alias-envs.js
index f8823b6..24f6a85 100644
--- a/src/modules/sub/alias-envs.js
+++ b/src/modules/sub/alias-envs.js
@@ -7,7 +7,7 @@ const mapping = {
     cors: 'CORS_WILDCARD',
     cookiePath: 'COOKIE_PATH',
     webPort: 'WEB_PORT',
-    webUrl: 'WEB_URL',
+    webURL: 'WEB_URL',
     showSponsors: 'SHOW_SPONSORS',
     isBeta: 'IS_BETA'
 }

From fc39ac76b6471da4815efcb316bb59c5e28d18a8 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 21:18:20 +0600
Subject: [PATCH 37/51] crypto: change input var name in stream functions

---
 src/modules/sub/crypto.js | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/modules/sub/crypto.js b/src/modules/sub/crypto.js
index 6a221e1..2fba1ef 100644
--- a/src/modules/sub/crypto.js
+++ b/src/modules/sub/crypto.js
@@ -7,8 +7,8 @@ export function generateHmac(str, salt) {
     return createHmac("sha256", salt).update(str).digest("base64url");
 }
 
-export function encryptStream(str, iv, secret) {
-    const buff = Buffer.from(JSON.stringify(str), "utf-8");
+export function encryptStream(plaintext, iv, secret) {
+    const buff = Buffer.from(JSON.stringify(plaintext), "utf-8");
 
     const key = scryptSync(Buffer.from(secret, "base64url"), "salt", keyLength);
     const cipher = createCipheriv(algorithm, key, Buffer.from(iv, "base64url"));
@@ -16,8 +16,8 @@ export function encryptStream(str, iv, secret) {
     return Buffer.concat([ cipher.update(buff), cipher.final() ])
 }
 
-export function decryptStream(buf, iv, secret) {
-    const buff = Buffer.from(buf, "binary");
+export function decryptStream(ciphertext, iv, secret) {
+    const buff = Buffer.from(ciphertext, "binary");
 
     const key = scryptSync(Buffer.from(secret, "base64url"), "salt", keyLength);
     const decipher = createDecipheriv(algorithm, key, Buffer.from(iv, "base64url"));

From 7fab5a37fffce5dd4d076bc3d6ffe8904033b96b Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Tue, 5 Mar 2024 16:49:00 +0000
Subject: [PATCH 38/51] crypto: use secret directly instead of deriving key

---
 src/core/api.js              |  2 +-
 src/modules/stream/manage.js |  2 +-
 src/modules/sub/crypto.js    | 11 ++++-------
 3 files changed, 6 insertions(+), 9 deletions(-)

diff --git a/src/core/api.js b/src/core/api.js
index 8f6060f..a439cdd 100644
--- a/src/core/api.js
+++ b/src/core/api.js
@@ -128,7 +128,7 @@ export function runAPI(express, app, gitCommit, gitBranch, __dirname) {
                     const q = req.query;
                     const checkQueries = q.t && q.e && q.h && q.s && q.i;
                     const checkBaseLength = q.t.length === 21 && q.e.length === 13;
-                    const checkSafeLength = q.h.length === 43 && q.s.length === 342 && q.i.length === 22;
+                    const checkSafeLength = q.h.length === 43 && q.s.length === 43 && q.i.length === 22;
 
                     if (checkQueries && checkBaseLength && checkSafeLength) {
                         let streamInfo = verifyStream(q.t, q.h, q.e, q.s, q.i);
diff --git a/src/modules/stream/manage.js b/src/modules/stream/manage.js
index c8bcd97..120b6f0 100644
--- a/src/modules/stream/manage.js
+++ b/src/modules/stream/manage.js
@@ -20,7 +20,7 @@ const hmacSalt = randomBytes(64).toString('hex');
 export function createStream(obj) {
     const streamID = nanoid(),
         iv = randomBytes(16).toString('base64url'),
-        secret = randomBytes(256).toString('base64url'),
+        secret = randomBytes(32).toString('base64url'),
         exp = new Date().getTime() + streamLifespan,
         hmac = generateHmac(`${streamID},${exp},${iv},${secret}`, hmacSalt),
         streamData = {
diff --git a/src/modules/sub/crypto.js b/src/modules/sub/crypto.js
index 2fba1ef..b3a0539 100644
--- a/src/modules/sub/crypto.js
+++ b/src/modules/sub/crypto.js
@@ -1,25 +1,22 @@
 import { createHmac, createCipheriv, createDecipheriv, scryptSync } from "crypto";
 
 const algorithm = "aes256"
-const keyLength = 32;
 
 export function generateHmac(str, salt) {
     return createHmac("sha256", salt).update(str).digest("base64url");
 }
 
 export function encryptStream(plaintext, iv, secret) {
-    const buff = Buffer.from(JSON.stringify(plaintext), "utf-8");
-
-    const key = scryptSync(Buffer.from(secret, "base64url"), "salt", keyLength);
+    const buff = Buffer.from(JSON.stringify(plaintext));
+    const key = Buffer.from(secret, "base64url");
     const cipher = createCipheriv(algorithm, key, Buffer.from(iv, "base64url"));
 
     return Buffer.concat([ cipher.update(buff), cipher.final() ])
 }
 
 export function decryptStream(ciphertext, iv, secret) {
-    const buff = Buffer.from(ciphertext, "binary");
-
-    const key = scryptSync(Buffer.from(secret, "base64url"), "salt", keyLength);
+    const buff = Buffer.from(ciphertext);
+    const key = Buffer.from(secret, "base64url");
     const decipher = createDecipheriv(algorithm, key, Buffer.from(iv, "base64url"));
 
     return Buffer.concat([ decipher.update(buff), decipher.final() ])

From efe2e6a4374a44e1748e983189fe60ffa11a905c Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 23:48:31 +0600
Subject: [PATCH 39/51] setup: fix env variable mixup

---
 src/modules/setup.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/modules/setup.js b/src/modules/setup.js
index c9eafc4..905de1c 100644
--- a/src/modules/setup.js
+++ b/src/modules/setup.js
@@ -52,8 +52,8 @@ function setup() {
                         console.log(Bright("\nWhat will your instance's name be? Usually it's something like eu-nl aka region-country. (local)"));
 
                         rl.question(q, apiName => {
-                            ob['API_URL'] = apiName.toLowerCase();
-                            if (!apiName || apiName === "local") ob['API_URL'] = "local";
+                            ob['API_NAME'] = apiName.toLowerCase();
+                            if (!apiName || apiName === "local") ob['API_NAME'] = "local";
 
                             console.log(Bright("\nOne last thing: would you like to enable CORS? It allows other websites and extensions to use your instance's API.\ny/n (n)"));
 

From b890d89c7dca580b764cab6bedd14b79df3f960f Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 23:51:25 +0600
Subject: [PATCH 40/51] setup: clean up

---
 src/modules/setup.js | 32 ++++++++++++++++----------------
 1 file changed, 16 insertions(+), 16 deletions(-)

diff --git a/src/modules/setup.js b/src/modules/setup.js
index 905de1c..80032fc 100644
--- a/src/modules/setup.js
+++ b/src/modules/setup.js
@@ -39,27 +39,27 @@ function setup() {
                 console.log(Bright("\nCool! What's the domain this API instance will be running on? (localhost)\nExample: co.wuk.sh"));
 
                 rl.question(q, apiURL => {
-                    ob['API_URL'] = `http://localhost:9000/`;
-                    ob['API_PORT'] = 9000;
-                    if (apiURL && apiURL !== "localhost") ob['API_URL'] = `https://${apiURL.toLowerCase()}/`;
+                    ob.API_URL = `http://localhost:9000/`;
+                    ob.API_PORT = 9000;
+                    if (apiURL && apiURL !== "localhost") ob.API_URL = `https://${apiURL.toLowerCase()}/`;
 
                     console.log(Bright("\nGreat! Now, what port will it be running on? (9000)"));
 
                     rl.question(q, apiPort => {
-                        if (apiPort) ob['API_PORT'] = apiPort;
-                        if (apiPort && (apiURL === "localhost" || !apiURL)) ob['API_URL'] = `http://localhost:${apiPort}/`;
+                        if (apiPort) ob.API_PORT = apiPort;
+                        if (apiPort && (apiURL === "localhost" || !apiURL)) ob.API_URL = `http://localhost:${apiPort}/`;
 
                         console.log(Bright("\nWhat will your instance's name be? Usually it's something like eu-nl aka region-country. (local)"));
 
                         rl.question(q, apiName => {
-                            ob['API_NAME'] = apiName.toLowerCase();
-                            if (!apiName || apiName === "local") ob['API_NAME'] = "local";
+                            ob.API_NAME = apiName.toLowerCase();
+                            if (!apiName || apiName === "local") ob.API_NAME = "local";
 
                             console.log(Bright("\nOne last thing: would you like to enable CORS? It allows other websites and extensions to use your instance's API.\ny/n (n)"));
 
                             rl.question(q, apiCors => {
                                 let answCors = apiCors.toLowerCase().trim();
-                                if (answCors !== "y" && answCors !== "yes") ob['CORS_WILDCARD'] = '0'
+                                if (answCors !== "y" && answCors !== "yes") ob.CORS_WILDCARD = '0'
                                 final()
                             })
                         })
@@ -71,25 +71,25 @@ function setup() {
                 console.log(Bright("\nAwesome! What's the domain this web app instance will be running on? (localhost)\nExample: cobalt.tools"));
     
                 rl.question(q, webURL => {
-                    ob['WEB_URL'] = `http://localhost:9001/`;
-                    ob['WEB_PORT'] = 9001;
-                    if (webURL && webURL !== "localhost") ob['WEB_URL'] = `https://${webURL.toLowerCase()}/`;
+                    ob.WEB_URL = `http://localhost:9001/`;
+                    ob.WEB_PORT = 9001;
+                    if (webURL && webURL !== "localhost") ob.WEB_URL = `https://${webURL.toLowerCase()}/`;
     
                     console.log(
                         Bright("\nGreat! Now, what port will it be running on? (9001)")
                     )
                     rl.question(q, webPort => {
-                        if (webPort) ob['WEB_PORT'] = webPort;
-                        if (webPort && (webURL === "localhost" || !webURL)) ob['WEB_URL'] = `http://localhost:${webPort}/`;
+                        if (webPort) ob.WEB_PORT = webPort;
+                        if (webPort && (webURL === "localhost" || !webURL)) ob.WEB_URL = `http://localhost:${webPort}/`;
 
                         console.log(
                             Bright("\nOne last thing: what default API domain should be used? (co.wuk.sh)\nIf it's hosted locally, make sure to include the port:") + Cyan(" localhost:9000")
                         );
 
                         rl.question(q, apiURL => {
-                            ob['API_URL'] = `https://${apiURL.toLowerCase()}/`;
-                            if (apiURL.includes(':')) ob['API_URL'] = `http://${apiURL.toLowerCase()}/`;
-                            if (!apiURL) ob['API_URL'] = "https://co.wuk.sh/";
+                            ob.API_URL = `https://${apiURL.toLowerCase()}/`;
+                            if (apiURL.includes(':')) ob.API_URL = `http://${apiURL.toLowerCase()}/`;
+                            if (!apiURL) ob.API_URL = "https://co.wuk.sh/";
                             final()
                         })
                     });

From c3f4dbc4a4f43ba9da659665b144be9c551e24f0 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Tue, 5 Mar 2024 23:51:59 +0600
Subject: [PATCH 41/51] servicesConfig: update tumblr alias

---
 src/modules/processing/servicesConfig.json | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/modules/processing/servicesConfig.json b/src/modules/processing/servicesConfig.json
index b92f575..bdadb66 100644
--- a/src/modules/processing/servicesConfig.json
+++ b/src/modules/processing/servicesConfig.json
@@ -46,6 +46,7 @@
             "enabled": true
         },
         "tumblr": {
+            "alias": "tumblr video & audio",
             "patterns": ["post/:id", "blog/view/:user/:id", ":user/:id", ":user/:id/:trackingId"],
             "subdomains": "*",
             "enabled": true

From 3315be435085a923bf1ff2f3f1f16a9af3c64d47 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Wed, 6 Mar 2024 19:11:11 +0600
Subject: [PATCH 42/51] readme: added more info about usage of branding and
 license

---
 README.md | 23 ++++++++++++++++-------
 1 file changed, 16 insertions(+), 7 deletions(-)

diff --git a/README.md b/README.md
index f542a69..f721071 100644
--- a/README.md
+++ b/README.md
@@ -69,14 +69,23 @@ cobalt is ***NOT*** a piracy tool and cannot be used as such. it can only downlo
 
 cobalt is my passion project, update schedule depends solely on my free time, motivation, and mood. don't expect any consistency in update releases.
 
-## cobalt licenses
+## cobalt license
 cobalt code is licensed under [AGPL-3.0](https://github.com/wukko/cobalt/blob/current/LICENSE).
 
-update banners and various assets of cobalt branding included within the repo are *not* covered by the AGPL-3.0 license and cannot be used using same terms. 
+cobalt branding, mascots, and other related assets included in the repo are ***copyrighted*** and not covered by the AGPL-3.0 license. you ***cannot*** use them under same terms.  
+
+you are allowed to host an ***unmodified*** instance of cobalt with branding, but this ***does not*** give you permission to use it anywhere else, or make derivatives of it in any way.
+
+### notes:
+- mascots and other assets are a part of the branding.
+
+- when making an alternative version of the project, please replace or remove all branding (including the name).
+
+- you **must** link the original repo when using any parts of code (such as using separate processing modules in your project) or forking the project.
+
+- if you make a modified version of cobalt, the codebase **must** be published under the same license (according to AGPL-3.0).
 
 ## 3rd party licenses
-[Fluent Emoji by Microsoft](https://github.com/microsoft/fluentui-emoji) (used in cobalt) is under [MIT](https://github.com/microsoft/fluentui-emoji/blob/main/LICENSE) license.  
-
-[Noto Sans Mono](https://fonts.google.com/noto/specimen/Noto+Sans+Mono/) fonts (used in cobalt) are licensed under the [OFL](https://fonts.google.com/noto/specimen/Noto+Sans+Mono/about) license.
-
-many update banners were taken from [tenor.com](https://tenor.com/).
\ No newline at end of file
+- [Fluent Emoji by Microsoft](https://github.com/microsoft/fluentui-emoji) (used in cobalt) is under [MIT](https://github.com/microsoft/fluentui-emoji/blob/main/LICENSE) license.  
+- [Noto Sans Mono](https://fonts.google.com/noto/specimen/Noto+Sans+Mono/) fonts (used in cobalt) are licensed under the [OFL](https://fonts.google.com/noto/specimen/Noto+Sans+Mono/about) license.  
+- many update banners were taken from [tenor.com](https://tenor.com/).  

From ea7ac37a0f6c482b79b6755dbeff625dd077fa00 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Wed, 6 Mar 2024 19:12:04 +0600
Subject: [PATCH 43/51] web: new popup with meowbalt, fixes, removed migration
 popup

- new popup style featuring meowbalt
- removed migration popup
- rounder corners
- bottom glass-bkg in popups is no longer rounded on top right (accidentally matched as :last-child)
- small popup is now of fixed width on desktop
- small popup animation should be smoother on mobile
- better ui scaling across resolutions
---
 src/front/assets/meowbalt/error.png    | Bin 0 -> 15420 bytes
 src/front/assets/meowbalt/question.png | Bin 0 -> 21198 bytes
 src/front/cobalt.css                   |  99 +++++++++++++++----------
 src/front/cobalt.js                    |   4 -
 src/localization/languages/en.json     |   1 -
 src/localization/languages/ru.json     |   1 -
 src/modules/pageRender/elements.js     |  20 ++---
 src/modules/pageRender/page.js         |  28 +++----
 8 files changed, 79 insertions(+), 74 deletions(-)
 create mode 100644 src/front/assets/meowbalt/error.png
 create mode 100644 src/front/assets/meowbalt/question.png

diff --git a/src/front/assets/meowbalt/error.png b/src/front/assets/meowbalt/error.png
new file mode 100644
index 0000000000000000000000000000000000000000..533858a70ebc3a95ef3f226c7c4abd73237c0723
GIT binary patch
literal 15420
zcmbVTRaBK-wB6r1bax9#H%K>!5D@7`5fG#l<j|qOM}tx#EhQl>AR$T}N;(t-q=lbQ
zT9Afwy>IvVu9vmPepzdbJ;q*h&pCITp}rO=5fc#rfb@>GhA{w$e@g@)K>kbJ@3{K^
zC0|2b)7$^@|2wc)?9$Q_J3D(vM+XXpva_>;VHgh&Z*Ompf`TGHKVM8ttfr>M(9m#f
zY%DoBxuBo`jYfNTcnDSnz4=#_+Q(Sm1fbZL?BI?)ihQw}F~b6MQZgn~!RHD91&2Et
zs-^+6+uu70BgH5HMlTWlB0LE<^myrA8F?pB&#>ez=>PV<kJl&^$X|k&>*_u_HyNIo
z>Ny<4z1eM8x};(-7c`*GyyDQ>RPRxG_eGZ>4Q$o5VqWe0l&XM$J^t`INmeyBzM(1J
ze2!%QYWKaD9Qr9$YwuzacOkV@;qxFu0{3Sv!_xUPtoQC1f4iNft|0bA-n`76hxT_y
z^>cdXSE)WFG~?mFxa^X?co8?F6{jUt49b%#d7z0?OqUrzf!gZcAK7nd9ewUH61wcp
zX2VL7Mr!qRv$NJ$M#f*2qQckpm$T(iLqjB(&U=>TE>EvhCg`~yzsGh=V_5Hv^51g;
z^}8Mw9m_{jd3-L{{aPF2gls1&rILtnZlFN!+!v46KiP~QCN=TAIX=q2Bh<y{4h=GM
z^uxN95XLI!8@m~ad#Z5lvEo?F&)@}Y15QEHafIJO{x_5>iMzsQoJ=JW&Y7jX&|X(U
zm~PhnOy&IicFuJ!TsH!}t@nQ5lWGW>ekODr&0bFvNgXDjV$RCq!dZVwX((3673^NV
zRGi{EV8ML(w1mBfXXiL#(cJZezbFRel)X-LCL3=f=QK#sFy;*VvU}X|B?)e+ciM7z
zS^okLrn_SL$+FxcCO%N!owSa-xE-p8*suOXbW#?_NoxP$n@1R%yWs{>*mo;9GvRvi
z8J)&mFg&ZG<C;m}oW?T3vMd&DzHp`~S{Sxa)7o16o=a?cW8M#ve3dGhtfAijY8YC?
zt9DTP=xJ@c!rEY+a%(A~z;CBUhe@}P`-Kg{Z42MWp`*0}))NHK)(Msh^yQpQpsDCn
zL_&C=#DwU8h7dileR1WXArVZ6c^LL7C7&2h@wurx(yrG(GbMET>(z=l{_gCxEu!|=
zsFEm18W=8ModWi3bS$m}1b@{vFVr1{`(d34F?5a8Uk@Re@BQN`$EjzTKW|s+Fcs1O
zmY2BiunK7iGVeKjGMTct7kOl;P%`aBX}rk9Cly#3Qd$V@f0gC@9$$5osFCw)B}DOv
zhREYnids`=R_tA-#FM>ycuDUL+~!n%WO`#WkOczb#X)@zW^NIS=96N-ejWZNKOIp(
z&UR14BuEJucDy%7FmEaNF0c*p+6Jh4lcQQr@+Z8x&bb;-WomF(6q?(1nU(Qgq@3%c
z#42rDj*qWx$uayTnoQ9C^i(gy=Z@F&^M}h43Iz5e%GzIk{RIpM-#aUv8J8xnaFt4F
zLT3~{?!0@*{vu^vN4o&6InBMa5{boXup4J=PZFjJGaJr`?xS3p-JcX^y~;^D+D0_r
zIntmp0{R}C1B2m$Y!~>PcZ2*ObC@*J2p84af0MVY@-#=qf`-s3?*oNTLw;dFKLRCF
z|G0L<?0}grtw1)jm1>L+^Z3`X>Q`JoOK+3LON!Su`Okmeq#~ky)@4J%jD7Ng4|QUW
zZb{5)fY-bVEv>=T^QeNhu?RhOIN!o+F7if98}s#w+E+26ey<N@9p&Z0#>e;=?8*V|
zK505G>^mHdOEcJWBebkk5J#A7S1wlv*iw(zeeOA7#z=W+Xh?0Sc7}O`wig8l*|?oL
zOJ;%O|HN+R)SkP>35FYK2!Q1=bNrbLo9h7__-R!gEQ?FrpKWiKqaiixxIg4QALP1<
zjVdhgjHyVwFZbnB8N9;2-6R?l^(yMYN!5VEYR5a-Wsz_eDR}KP68F(lJ~D*y6<0T{
zd%v+#6p+5QCFzCy2QDL|et#*U_g4^>pdtS1{@cWwjN#VxGl*vxx0R(z?~ld-#r~;r
zKOyF)`ifAxXJ0;=KEFz7;O*Sj!uc}u3CCBu<$({d@^v4A-0;6~^)aH)tsRL9*9(YL
z1GIw6{3-T6^dVbw4beW+YuiiGd%MA3aPga{Yd-!=%O3;XeF8_901>-`-^|w>oXh0{
z8<8Jf4S@2s77jV1k&|tw(lrgEDCV^z6nvS~@2}W(l05}%B5ZUWJoxKJUSM%!&9289
z-j<<{vJloO!VNzaR^xe8eJ)|fTHQe0<yCAI0{x*DVY!Puxt6oyp(zl1G(bIu5J?ZY
z&esA1F{8B?dYDCzVi3*}*Ky?*>cZ2uK~W%k=b5pPC0xUd(=Trf^Sa_a5W0U5N(Kp}
zR6j~Chj;2uRDF9%^rGpPzf~cBu5o|8jS{>b;{?1ZA<WYqbB`&}hDzaJR@8_p7+Oiw
zTlLSq1N6dMI-&@c$pjv&zy2EdG53q8u^w(s)5u0B9rTzZp$U{CWVbI`YxTslX++`T
zbP#8bOqw&l{#RC9bsaGj#gg>W{kqG~)y23K<WQc?>3$F&iCXp?6qXtqk9sQH@QkPy
zyHasD!72X%9(SFJNSfm}5g>YiR@DrI&fRe=?w^!Q93FT7`a*^qrCrav?~THS3PD_y
z#KHvCm)wo7yXCW0C7iJH?|jAgnaq)iMw*mx{V{Ige*o^Irlps}-*zHoUz&>WeT@5d
zA!r=WFrFH<AVfCsM;kUnEm=rH8s6MbLOriDT6ehUwp1TB3TYA+kQn9R5-igTNWAr+
z<NaYaOEZQi5)=8|`%5`5M~exRPC$X_#ip!>D;Ndi81meP{Mcex06inuUoL!kQNqgm
z_L3?m3kw?^#XpvJqHq6tAckA3w-#_Z#0zA}GueLFLDuZkE@~t1lG7YtoQ4h#0q8m1
zzWcR7wbXnEfoLStDo*n5=Y_<kyLe+kZHv7LSk1fW-|ATl1ek9$m<LnTnh5~XXZiT3
z^nzYnqG86({9pxZMTatgOa)ijo2e!1CRAHW8Wjn=Rb#=*D2|=kvPZuRBpd2HOi8(-
zLS2hPusnguR{SLyJ<}v0?Gnm0A_j?<q}CzkNq-MQT9Kz?e-LEf?}MeX!XYkP%NBJ}
z)yZbBcZN{$_3ed8?QiN0Q;ZZvC-r{ff9Y&!swMXmBr_zX!!Ni2t>SeUg2r!&7pI7)
z)%IAGAnNM@RwxVw`E2D^e3|C*F%#;d2k$h?z(VJngX<-0Cx?{|N)Szm4l!L;zC28L
z*avX~Qmvb1yo#k{kNST{kg|oQ-zA}d%@z>FK58!7<TL)3h@P+9xC9i;CXhM~#U>3V
zXM)nMj+8B&=_jIJp#<m2QqLrAG|~7cMFCTB#CAK5N3|Yl(mSKgskjz8ngpr`v5U49
zO9SyfIF>OU)lzr_?86J#N?FRGP@@9X^!qMC9DQg=UV^+7@kb->2nWC{;@4p^bwrx(
z?bF9aM|y8_U6}3++%g6~(wN4NJkla<Rg}u0Tt3+Ez}#5Y`HWbb-kw<V9g6-I(<HZ+
z8{~EQ1R;cW^ex51@CjWfQDG$Uiks5Rw;-(kiz3y?){ciP44fb|^iRAe3BBEkxPLR6
z+jQuH2iDtESeDczD!`-}f4KD}JGMnbvc=n*fm#yh9ejX5KfZa(5?=kyS$l6}9qv%>
z{krfVkX8BmXO>l`QG1K;ZD-h}X?e*hOF+3FCL%AJ0nlYip<Ni_G;C)0v-`}Cy?Yrz
z+4nmrCQQPz5^-sTNPKJk;gsP&COY-akcRc`#k#_20)~u|2eaiw`0_^Vrx}l(^g%z%
zgn7sseuaqDm8FzriI+tGviWeak<3igO%V4LQ8xFS5*bZU8ydy^`WutjeTEr;N_$Of
zXH8o0#Rd9vxv)B5iMx2ip+e?Kw3MJeJL*~=RzxcAvXWyT6TcjcOYL!RULh_Z^(Cq$
z9O`-;PhY@Q_?n6oYM>nX`5iT_&eQ$IjDx`N4>RNwy=+p|lBCkCK)*Ys#{gvZntm-T
zXa=zEOYCB?arX%{aJF&cSA!;g{MdcE)e}9Yt*v%0em*>&^dla)k(;+ggG=RNH;CVa
zFZEW)XR6#>5><gA!6;))&)1i+`m?y~N>)aC0Q`qQEpsr!DjnN~KTWK6B7Ru_A`rg_
z(eNc3JyaanPI>fkB28{p@4b`Up?3(MDXI1y^BfYm{+X^UDcHQ<znqn4EiMWod7@1I
zK$v-JJV0Tbwf*ERehmFjA>EJH5wVljfZvb<2ufi8b^uW_cq~{=T<i8bXt^bN=*1I0
zRX(Q<)gx9ZJ#u<t8cq%=dbmguD62>leBK!&2h9-8E@YSX0hh*w3do;`KVOIx5C1De
zqIV}(5u2M$1qd{gCBbn-!j`<0bII9|`y(X!HxGb0DDFS0{*R!W?Db+uqqiS;@y=M9
z5>#6-iQs_jz9@X*n4szL-2-WK7B~tt^X?)58p08rr+RP6%YO({8|ax2;<FFqVtm!y
zpSf7`h7b2tO0_Xg0dHvk8sF4Ok1rLO@;sg93}9rvGI;MT9$%3n)w$C@xI%Wd&u=65
zw^q@)AswE%Vyd;D?&)FPEOroU2Yq@$0=lGnOzL{R@@aG?d^MFQGO2;U>j0p;Bp+Vl
zacAqzo0hrxb1%_V2>e`y2z>b@JOm@yKB+BlJ7!5@3H0z$$UOZjLoTo<-zQyW%jZg1
zYRzebWdxRNs+}Vc&{6_rg`q#5df@pb*h*rxHMk>CWR^7G$y{^%A~TQQ*~RRLmAMcO
zyCJC@;2I(04hAl8wwK*gqLl2aeGY*00%y6VDB(=@8~Q1IvU|@^hba(9ORKdyYF$PA
zym>Jg;*gtKC8h)>aX1UXX=9k;m%QR02W$BmYfv2hhbR>ZZnQTrozIBKSv?d0s6B^0
zycibMCckQr2E&%8Pme3V&mWQt)0(D{!d2b?UasN0x=X0`kTvsWlXez14qE<l$EchE
zDEr53jkGjw2|hCky>ZfloZVaB6-Q2m0F213HP#{_VE421_qFlcU9yNtnLgWGjWSdX
zSgwkop#+&<ZkH9j-<8Q={rKc?wR@QGKY$wFblX!_i!9`}3c<|kiWU?L@G9!^(Vg$@
z-?4WSxidhRq1J`~W}O#U3b-3Du<;4EQ%}{^mcJ7A9@*i02*9B)+^^PB@9|Qe(Uoag
zW|N~DpT3QikY%`o3<SH}8#GAA$3U#*QYXTY1l+S^{(aqjJ#pM9$f%mEB%KinP-goQ
zGbdGy5?w+g2)>}gs-yH&!{ou1Vz(92R96Vz=ZeEG@b>Ab{T%v)%yzR?h-n)A+z$lw
zMCUm|s5pgXnxmM=C>zs7T7f!(zegZd@2x##7ZrKd@$1@um065)*hz#Bxe@-D5MZX3
zn?RZ0Bwb75k~(_{KEYkFnP1;QZIH?DP>Wu7;xEQa*k2F@5x=ovVIG8fOgNZdwzbj`
z;(tDS=c-<A736i2gHunK!@df4aG0Q-BbqkCfHPIRW8-eG>T0VK5^&fT<~uq+Na+U6
zs-btXzFrB+h!)^ka%9I36NC5p$njchK=iC?F}F^PzfQ8!SSP3AVGV#6xm!(tL!g-G
z<+%Gz(Vm?rG4uqOwL25K7#~nzT1AYqWPQ)M-a**c#jPre1SAULB&Z3T0lrYHyL+3o
z%W3w}A`+CKio7<ihJwT4gByp)Ryn?fj^V8IkGq3&PI*i(ITvwZ#vn$Z)2|BDm}%bx
zVAq>NI-X(cWKu%8$Ci(PEYEX|LEJo!o0INj!+TTM<Mj*C60;7)YZF^MxTTKMK(ud=
z59`k>I?nD<lGU=McogmwzyRNCr-F&P7YP7*-8QqX$Incd>N%X+N&v_X*^of`R^o_g
zjSznK;>ai=CSR*>M*)B&baR><KnG2WL|@R(C@7>$t$Y*s%d=P&KncXKw}6jRY*W5I
z%`Wj#2l1A*bC>y>5y)Ng6$JDjFi;&dy(IyU^!A2bLL}xlN8*+q>>$3+_Ga|Fp%q1<
z%<6#laE$^ssgXHqLA_Eg0GBLCZ9Vxr^oJY?b`uv5GgyfQ4gF6j=M#Bfqh~7wU!1=?
zA!YVtQ@)qys%)&381-uK<bu`zA+i2$S*X+#N%Y^S_-!FTD&cJW00{hL0qK(P+YEgI
z)z%MQJsNCiOY(|X6=EB{RL-OFReJ_t78tTrv+zt7YCOuJt?xys$b9@D7L$A3@#pi^
z;%w7awG^bINCb4&nkB>QnM13(A8<#UvE6Z!2fx1Ve|f3?yqb+}IpfjdnXUW#7Rxp%
zx%MZy9sm@Lw-yM=eNUuF)M|`_00XQ1(*=Q}+;pUv3eZ`;Ku!Lf{#=9W@NBPYX4{DX
zH{#l&3vb208_*EMX;>)y<agv|b4*#4pX4(X;YqJPgUX1<C~5N!&mDOHk=n4C5yLjQ
z=bN^xb4uX)-jB>^&Khu$m#S;#;6@L5b5-BgDZvv#PRR2O^X1_A);op+ko)@OVH5x+
zOz&O;RBOoyEB|$(73IGFXi39u|Gb0G&eG_k%kH&bDZ7LJMa%#Y;xTuzap~~>EQav-
zrRM@T?H=jt^z?*(I_*%cKIYS8&w3+2&gVaKw#Hf4raF-zdXqGgGD<wE{}FhqwDX@B
z*b5DkOFBHqj*uJ<w)lHh_^8%v05KZbEy@a+{k;A0=ViIQ#ZuY5PfG}`3x|3%?)G|H
zKvP@@!@JLldc{D?vgz5u*hi~1a_!D2MlPPPKpIfxZ{w2^%GZToKr{25=ZoJ589qBJ
z$2jNC5(=&)kORP_Joh6@+{>vB!sx-_D;x}Q!KhPmG{k2_U;oO2<|Hk_L0zzN<I?<e
zF~@F$TJ-IpSo;Xpik~EZRKrvfe!=L6V3F%)XZ)m8#1%%4A`e;pjUCy>sgl9pIEXY0
zU;^5BaRQxlr5D^G|3%`DsSztKA8*foYqN^IjV`Zas_y^k=T(D?no6{_RZ(F4&3qby
z^WRM?Pl+euvN<NEPuZjKfhi>@<CtvY7;XNdIo2iPX{%>CY4&TeBy7Ks!EiS9&;r38
ze}R-A^Fx9vm8bU~{L0q4u(F3ACV};L_6)(epf+~$V#<P0ExCV3s{QO*a0P%>ExkC|
zL+6cePtm@Vg$%z%hHMC6fnAB@82Om@LWg!x<=GBEYf9-)=Ddj*76F&3d=D5^-j!6p
z(xm;2giXBfpW{{E^A){Ku2Ba~kWNfPhJi`sV*zZ-ALT$n&#b0bEZs04bLg%2C9Knb
z^&$rToueMJNjyzs1_TU|^Gkx2(l-aacRv!e6J`nVg5v5+q6U%jcE}}^_L7-pB!r6q
zz?5{XfJIeey18k~6=>V22GW88=>yNgP?FD7E^dYGaWqlezLc-aA%eTTQ&*sh?AUqb
z`qgP`S|<RpEk_89{@1P|DWTV@-|~n-hErm~6+ioJ*|TD;h2v+XpDh6UZ)e;>^N$Ss
zA3exM7)cTS8e43>Rl0WUjIadrFMDU41;{YlMa^{wyu+KvXa98!7ytba<b1CecxxEC
zprKS2+3Vm3uF-OifByW5o7;WS*`%O}Rv4{K;c;aH?8m3p?mQJqZ|F+yOh2JciM0%S
zTtsW<>z`}EikH1#;ZcdD^%m`0c-{!90fAno+-r9TwuTwX4YQk{etQOps1KbLT{dmx
zha5jNv|WdV7xhtjAWdk6SO9G6cX!_Zd&X@ezM~>R&=T+QlA>A(6z1i=t^>=TWhjf^
z-*PK|h*!VT%Dq=esf}O2(Y_AL`>{PChds1|BV)fOAz{OE>>WI~M8D$=5$8Er=00Zn
z?4512O*kCpy)>HkA4HL-%<z=yti46C#oR7>BVDfBKXZT*2&>+isIR{E68x+A-R}-P
zpG+qLa5?)2<%wloB(N8Ynl&;c(lmIUtNiz_<H_b!p|<EI?QYrLMkN_79rQ$JnwJzP
z^6vwMqlXVK>pU0E0ZsU4r>GUP@e*!>&lP<NJ<&ejn<wy}v$LTaZyAJU@OYk{W;Ti$
z62Rl%b;#y+oLU|%g`n~;R0De|7ymwfRJ*wcor;uCy&QaGVgB%LxwTQwak6#U0Z3l9
zu6;vHk@w~2`|m#Uqi7mF1iUb}F}KF1O(1*$X@C2IXqu1MwL8(!e#vB59&CljpvTU=
zb&J4Nff3k<Ymaji{a3?S5%C2<F^NBk9mx!djhj+>Jf|Xyyc1x_=zHUxA6haiHqV*b
zP1o4PQlLG=aCdbguYY!U{H8n=u--Bmx(TWV6#Ohy#OAg0S#KVhkKY`>s?|2&x*gUn
z2J!v^IF|PGaP95Wz7nO=J`&<kE>LR-fwB6qNFC3!=(Wj7IiKzH$vpAp+cWx4gC4dT
zP(MPl7q8ZCzS-FEyE<O|LjyAb2CKlf8}jcYXy$sqRAMf*pWYpR5_!acY(`3@k)Rj|
z?p2TgK=^N<GE4`)RPjtl2O0oZ-3NB-pB@t(>68cQj(pbD!Sn1reE+;n*bIPypO!%^
zz>JwT;iP8e_g8(`a6vj9{ree{jj(T~bb+9Js-8S}$YNKH0B|`KA?kMFVpXXhCvtA<
zv)yE;W7b6eD{0jI%mFT7xk@t8he*BJKeOXu1LNgy5#*)`LnXw7%|jLDk*66(h2y$v
z+64r)x=G0J^?F|63;`Z7DH4nwcay+|Y3_al_cnj{roua-5drSrQc5*8*)X!9?_d>T
zH;VY7LF@kCNuwgs7{A2FNq1$ivPj%)2?2I{T3l3)LUf<mPPCfN<lIGQQ5H9eQi4Jh
znQPNa8z2OZ(`>puDP1CawES%x#6LVrLJuo3?p|!r-?roc<ZbX!8U<V%h{HA)*b;AW
z!{wR6hjpTd@lr)YJ>CKaU%!#ahtX9-_JIBSOxK0vTNiKH!oZT;%u|c(nYocM+~f0H
z`HdX<ZQOVyoFLrN=czWGDALlbQcP-7>=~HbNypx;U$8J2jtek2Z}k9*8NnXKWMW6{
zR!D&OuYdME&1$lIg_m2HtkU@3IpykmO@#k0!ftUF4lC)RiudKx)h?k4y!|JgKO9#y
zrQ6rr#O}5q;j-g_9xdNR0s9R$Jo%0Wj}ru-pcZF>#|e)bH*wjS;G^8Ye@Kk396Qk=
zWf3qN2p@*_5YiBW*PIn16#~ZCm<p3A96dsyd8VeJ#@-)I?MA(Ld&r~y>1Tk-a!EkT
zy!*W#XgZOXt+Sx-?g`i@zirwVe_X1f+r<&Tp{h;M7~OG_(J^x-`sS718(A$Y@gu+W
zmlYhVfTZPq_maoUbONv$duGvGlRL~pb)!*--YfA*8fQ-R&kwmM5%6@}zRku%2vj8h
zYo{LP3Y!lts}5|cvVrrzO>VaUCJX-lxY1Wy;yohyfsclg<5eg>FboLD&IP>&(5ChG
z`m^Wvo92<VOIK?<PHEHIlKPt@his(a4f<Na^d)b39nSFw@?fx)o5sixhs3-#XB%az
zPw^AKi}hclf(p#br<2ljX@4S5=l4!*`v<3$->Mx60SYy-FJ5lbxM_jOCgt<=zCo+%
zgn<`)B5ab}=85D5HOCi0Z3}MF{jVAC^=KdpWcR8I!UDTk9#vzxJi2D?N{3az$X`D_
zxt0IJnLjORTL^i}n)UXsHVe>ga2N}XC~J+lEYuuAq5@dg>|M~7$j6=J$gA1l<^p2D
zd#fY)(yRzW#r|l$z^KDxER8S)*j9?6vaxC|m{;8x`yCPr+ZLrtj~bQdBbS45LqO(L
z6`H8i>YVMBE0oDmYHc=3L7_$z@2Fz`cfkSc^|yWQ4tY#S&($1xe^5(OWeCP(ak=Vh
zDeG+<g!-XY@rKo;wUjn*vnI&tP0f4NJ?gzb`J>ENu|lC=Q~9gSyok<H!-dFz*#Z?!
zKxpR=aWuljrylreJu061yG4%!XJOxGeK`Ew{|D=xNQVz@F}FRm6*~!r|NNN`#a2#P
zTwFcCU%-X-+b8bDO<ErR^=H11HEEQ)aiJY@kYubsDXlDI-nHgHS}u_BdF0|^b~ZRk
zVRMj8PN|hyzWFN+Zijza!g2TbCwh3CIIKSGaTU>a-VqP)_Xj8AtH&-X;VL5U$3pCx
zPoEVq+X!Z=yy%_D41BGKy>X8Pte97=TMg;@?LEKl4uK2QT_3G*Sga>W$cNiq^RsU5
zeR2H8C`KXP<pbWjcmiwbV_cE}PDFOQ*FmfQaTeWa<JoMlTBFzgy%^j%GX?1)ukCTc
z!e=eI<QN<q+=R7{7mqR@{78P<&lqFm-KDl#vBxOW_c72B-)s>1L{1AT2#UY{nDCq6
z`|4*tP;0cwl2_?+A+Av|mtVrLnV0lZt-w(FFeB#5J$~*cFqQIy3ON6ERQT9_=!GzA
zjefZjEo=2A1kD{Zo|Io?6I)&mKTyDtPd`R1V+oRmvQk`;OPe;e7Eg*Ekb#U1%JmLa
z!Pd9>1HMVS8TWohR5c7=ti;^7`|v|1F(y{n&PBfX^SwtgnKo`T)rRkKN)fOXTWkQD
z>w12J+U{x%@9V?*voj&jiJJa}=tZPq(hk(!_aItlLF~ZP+JnRqnS6sNJl6K7+x}dp
z?$_uadD2sr-{c2F2upEPPQE-OmtRD}iMplXPET(SK6Acrdgq;o+dUAlzCi)*D@s1^
zJTe;X^chffcBA*wKs!o*ET{vpE*qwQI`JnlsFsVG5yk^<;par%>+J@LcPqT)H#?6+
zH=Y9&v9vNs-a~4WcRaV%#k>70?Pe1NFm;qU`tOcTtIrl=Q`>?!p_&VS8plF;mlOi<
z974tTa{_af4R?Lm6u%EDa^j<i7$^rER+1W+H}hHw)Ql89vQpoE4S{zN+My4#aDkJM
z7Mcu*am}2`ve04+zE!%0&amobui7UP>?}Y6N+A5|XY9#tm2v5o7vaRS62DuZ4A1_@
zsg?D865p|_E7u?#(LOxOP`Tdw%rpqYBvK?D=d&}Tw$>)zcf?=lTo{2}zoX!qM7PF2
zAaHf=PWHpwy0AC(CAM2CMVlPRijsrUm^t5@@;ma%`RNGox?o__q{A=4KvgSMbZ2?#
zw}m=;L#Ee(2#Cri1GlxLz1!sPSG*pV;rYP<%IYLGjy_p=AD>*s>}-tu($_}_zq3}H
zjGm65MvNzJ4_C|trXuVt?=uC(XXTWo;}89tl8=6E^679uE_W+0-VPEy7RkW2CClHs
zUz6nsz=*8r9hY;oceTXO>;KNjT$l!M3MOVL0bic-X|C~tN9Xcq>&3TgG%vg$ijx`=
zkw#5@(#;LFPn=HiW_1)G_P|lCV5NKr{G$wlf+sV!%-lOjNX2mAiec<aUEX`=mPqhl
z0|glMms-+^FS@@H+3WXe-07<^0iecs&&0AJ;K%iKuPt4{Z*DLiq{-%(6nZ279I|Bd
zX`C0FB>sV0#X@}N4+StAww}Oe7G-ZAoi(-n5f6drLOs1O%m;kfmST?YtJ;gGPr&d$
z<Z?@xt!Sg7)Y|QsrU?Y*3lddP%u7Gb0_KtMG4y-qQMuC7RdV!G>_=dDSj|Ibn4FIf
zb8}NRo-61~A~CxK7P8fr67n&-%Etu3&#Rmuxc>)KmWo^Od3b6J3Fn`RKi+<^AiTPq
zbF%kOHKrHtHDV`u((-u8NmQLr1eyIZ>m;<tePT9>LNYFl;@P#g-?nel2vfV^Z6nhg
zeJUR9wr`_%ajVTMg<TthZ`24?v4JX&s9U+P+FplS2rD_Pbb|<(b<zJ?;do*(@acm=
zpmN7^>F!EG$_V+Gb`dQ1yY$sH#5^ASf>kwGB&Mj#^k9weR($)Ss2l~XcIz9@&BN`_
zXvf9}HTlYi?`H-+IimXKOll%pwrIZzy)pD60c2Ouc*~!}_wDgiNcct;6CCaowQ*(R
z?jSAdq4hX>XlOB4JyfzIIA#8po3iph5f}ky73M;A0W2XfgBI{Xfc`080>d<4n)-Y1
z5anj+Tgt%A+)`)Lv{IA=jG{QexUVh!;KjE+#vH}9B0ff=n44fSYyWxQ?yP4bzgKHq
zmCqt^z=P`uYL&j=Phx-oAN&KYzn>Zm2Ll3kU}!*w8aj?i7uw?IKASEV&ka@9nPY3)
zZck5fva$o2q#)$`s8OKYmqMdu_k23IV*Z(OX{nCvSUFnfmF2=>iE4}O_V{WJ4qPY-
zPI~v32@DXxC0ij$#h1+A1d5(5jnR2+Fh{=K&~e~XWWE&GRs&^jdD=1DBm>U@NM-=W
zfAN+LZT3*+AF^cyly)4L=0bhgo^BvTGTw-`Bw6%SesGGmj>d<-;v?YkcCdZ7Iep7Y
z$7PS(?DJ~qpn!++vbpkdl2l0QgPPkqf$hKNOwhoP0JRbOrgejaCp(EBqA(BpU|%Xe
z>7lRag@`;#wYwP*I9l-|fcS4))o4bC<mD#{djmtx9enqM2;Jf7)zWX{awO=}$J}qS
zH^16%6tsAkwYhtI|Lc{(UjE>)x?HHV*1CWF*QcvwP0lN`%A^n%e70{r<B$LTVR4h_
zA1O`?*56#)R+qYCAV>Wl8Lj#K<=s1~E6-C4WUs_|wW{-j)8r+cogJ3!NtR^ZjCgYL
znE_VQsNYskS*FKV{xiDc8`yPRQsOv#T>sonM5Q>cdgNR^VF!yuJtF+>HCpN5<U%-7
zbJyu)wpK8#EnhKoRLb+{#OqT}T@o35J_XR;+<9B=Yqyp+uj+N=s`rJ}pMIOr{$_AT
zjX;|61up98XuygB5)3MCepjKUJQ68VRL}L=6;@ep47^l{vS^SG(8K}P0G0Fm6Uq6;
z&9(E@#@R-?d6_FXO>XBJVrSebr=8d%hGpBm42GgYtLv8W$7~RI<eUgt)4*csADf__
z7wS`#I*Bst%vSrG?9AtQ0c|X+V4!D5R&`iA&>Ya++nzV`dXL}XvV2$0KSyUEjOv;1
z3xf5MCGvoeQ?J;JZ|R|Uf`JBg#s~I0<%a4>n)cj`cCDSU(xzf_L_(q~AfuurRltE_
zo9o9R6LX#w*p!zCt>ry=DUnPzTkXmQi$S6Zg<lQt;k4Si;au-5(k7DP8+DS!6b85f
zlw%xZr;HWjLaK)Sh~l2s|H`daHAOLIz;=F-icOkbQT>1h|B2lIGYLvJor{`_y4)nD
zGg$VDRYARuNNYpl@KDSsjhpA8C_Bj7#KqLujxsyweoQGY>^x>Wtk?;nyc~{R&>t@f
zozm*Ct0z0SbQnSOYvC+Uld^<7V8k|n<?d~jX!8B(;=ii@TC_ggS9}Jb7aIRmpPN@v
zHGT9f|FuAvzG{xJVs51uzZO>w9%h~anY4I?A9NjrpBxhC%XBh{0h!04`k{e3>Ton>
zR3qn?OJsv&=rdgKFuPYQrTKD~BhWVLY>4WNq+T6eN)VT10C(sYuz}~l--LFvB@;R0
zVLm3Qd2RnvEn5bYSD$01o38dkrCcsT6og`2)&o4~On&`stFu@D7z=7xQv~2iZLsY-
z69XsQc4RCQWwY|CZ5O7}teTie0G;Nd3(fuIXrI5=c_|HKceT}u*0t#2F_o`RWL1~b
z%~YfC*jIyRN!E}CH?_yoy&NxP0%BU61MzU#TXv8Ey5JWC>U80BD|>+1Z9iC&D7`E1
zUz2Bxlf}{W!kZKN>kh_!Rt5EcZCG4(KS5BCPcIOCq9|4h5BhSt6?XluHp_l=ktow5
zt2PwpY+Mf*CKmbIkV|@S(n$+{QK18q14ZOF7jK9)XyYqMMlBD%T}jU(*EUrdCkM<@
zG~4H7vKh?_w8QSx6vhvDeMk2FNQ}Qe{z4|Q9K-d`3w6|m1mkjn(gAV;d@aGUwa*e>
z@%o^0!(YY__u0{^Fu-!qR|vE5ua4eHyY=QA84KR8X#Sy}zrWdUAPR8e?xALFg(by7
zARR84zqhv{IM0~6_;dKDL0zW{Mf=C>cQ41c(vy{@h!ct6rW=?6nMlk8$6n$G#4Zi{
zeS}@Ou8|Vm$H-L#JmLON4&r?@twP`<(P`a8!!pxrO>_?N1(E<Xo-Qd+y+!TM2STP*
z<y(l&FSpz&?>{xx*7%1MDHmS%d!4`ob^w!qxH)gsQaI1igw_&M1{cGE`tOWr#p#S1
z=Eud=Z<L2V(8%cUwp`Y~W$kEV_K52H%{LA-gK`gIWf+O?YGriz+u6N*-v2&Um&3co
z&W-lyQnmyivsEF?i((5$u$y`T)1SsvqbC+&OQgnB6QM-|N|{8P_0j+Ago!HVk^fOE
zK!(wEC>QKPq{ag)sCFjqrU>9513#>0Y-p=)boL{h)<FDItgEN{&B>w{&kX?|f<jD-
zxU=uL;#`a$a10+s9NQk;e~VV-86*kn+89Fs5AE868fc@N5W*B!-=m(4-O8OhFhIgQ
zycp81T0=nKFiX9Y_%l%>oxpFci+=vwa3cIzQH0gtx|o8lpSLSj!6{hs4H<YsZnwRW
zPiM0}ul)MpFPr`l4^X9Zls!m8<h+rh1>aUeA6;NuT!s{N@ZsZP3cYTCZu;j?c!v7U
zRl$&`3U72Yr@tEnE;?ZO!<Z#w{H{B{r-QJ_9UNT$0H~vK?@fAS@&FVNBr(<b?UV4T
z|6X}dH4TKv^^dlcizi9X_#0v6o5!>`75b9@D1-J?HRM6$UJbH4a`%tWm)8Uhgj}h6
z5^_?9qAp7|Vy~cnzoJ=<@gC6!U+@7<-Z+EF-vjThCl)v<>;UhBz0b=khP{Aj-e~$*
zTZta2Cwu>W!VZ!f;KI}XoQ`@p4gG~J>Y9c8hL>MG6o2q<N!|cCRqXzOEP52oATAJg
zsQ7bEgWLFC^MFh3a?*|-;J&{-3TwPJG^#1HN+vA$ql{I1porxcLejr<c%@T5-}!zL
zCoWrUfi-E;0brizQOn+sD0qjD(IHa(${$`Y!~p_i!;%!Q8?KOo8<PVM{}|S?fum%8
z-mg9X2FDyM_D6>Al3HIi1rKiAeO(!=32P0J;uU2~1R%2ccTZ$r98(2Ksj`WEUW|8_
zf80{_)neW7i@5x43TmxjV$kM&$^SqvpTeFuDnMZURRC2TD7eW3tDPm9#Cl)S_fq#0
zd?v!=>7#9sf3$7zN$Y=_?FQpv>PXLy?z|;HZTXaS(|H{98Q~JXSJcQUGG{!U##=s9
zF{I7n6J}9JPu=lUk?u9F?V_86{@Wc);%z$&W>LS`b3%zxVeMj71YQ0d-y(&SnUnn}
zVx1WSK6aIy#I~}xB}Vt+pzaDiWi`n5*6Vs<QiU&*H(2$jR1IFW{duaTa%0<oxKgQi
zKJ<0Ww>=8RSfR>>y~o=t9zOb_E&bJWo@*)`0w(<vgarieNK>g6E5k&EEv2GX^5{(-
z2eWK?;KC#j=BC49<xYbM2f6!J>McMIIzC>a3cnmF*pJRF`Zq@KSX4wL=YQn|Dj@A+
z4l<Bs4f^n))ji!e<dtXH&5!G$Zfr7XQx>J?hqhc(vxj6mL%^^*(KQJ&?3$%&o_7wu
zuUpN%j%x$KDOyGp<gjxWJu-Flz@-68sEEy^n<7IUxPWa}g1)9lpViT2gU0pPj}Vxr
z3?ezG5iRbsMw;hc0y73rDaRS?qr6a@g1_%wIMpvHX?Q;0$r_VNtv=4*rK-c`d3olo
znk2Ckye8mK+%tJPf(;Ng3A`Sw!+0Q2tn7HG$3Jr!s}A~NpK%;7y<vDEuV^eu;Sx(N
znij+JMGQM6jjhyJ$IbzQzo@6|FN2n&!W^*&!++O(UnS}SF3%oTUZ#FmQ_!B+efQaQ
zsDbOHC@3H&g?o%*%Lf^;rMHbg{KlQ_nmHRT5sdHBN?y7arJC>s`}3Ij1r%!|)mO#s
zPzAvMA0D3JrVYV$f5fMfV~M)64pNxL3)z<;QVQfgZeyj}4zLJ7dZoUO_ow-Si9x52
zqz7jQTb@wmga^o(ND2@9rEeN6UOzMG*7H0kAPzePn~K2~ON5|{)y|^%cgn)i)piFd
ziqJyvaoRI+i`<(cQgOv?pL4KF^l^^^pC#msh442g-FxxPohtX<<@DqsbGD#IT+t`3
zh{8Ni%t2rO>e!>cB{^oaFkNz*gdS;10IS#wA6I$!*DN*>B!`bGs9W!G#Do!7^8Oj(
zcz6b(2&J~{P}{-a{qW`9qd!=AVAxgth)Ak$Ta4A8(PaEC{=Tpya#`-iqr1)$HiW2o
zLplo=AbE!u>)rnY(8w_7j_AG`lbN)NHj2@Z0p|d2OkDpgh-1`^LG-Bv<JS@c5lAX4
zgRBmqLKz>7`u@hlK$uYGjcis;PK4p=sf-pL_HO89TWQ4QuY?w>-U!sf^;5_T<E6GP
zh7H~9OHVEw(i3l=&tXwT?k;!TpG=MZacw!QI`xyH=BN|%Oj*9?e!FSbkK~X)L?{O&
zN<+F2jiJTz^q;O8Z3QY~l>oc($QXI-M`{A0mRQ*;dWlzra4YS9nYnE24zzN>?-Q^V
zrkD6y(PvzqolBcsCmsIBN*>Onne?o-9*YO>IUr0G6GeUCHT_Fo1?zL|5Da!ZH_mHT
zi~>c?{?7fIw?)P)a<@%vsQnG<&s268Jh_zNH$LbESA}X@A=k#)G){L1F9m$`t|!sB
zBV?bA-|yL#@j*O46h)1qT0ZxnA#tVo_t0y>hsWd!N;8EMWGqAUx+32B!y84wxhV2I
zLm{Jw?xjBTD-$;b1g}HQe}fp%ZM3>=KZ7@M<g!8SZ4TTd#@ldXUJh_lL|x>tiRp-7
z@HnYpo@0x6#Pu{8!_6CFCh|OxSkyJ%^6a!j#PF5*KHV)J$SIC;K>t~fW!&Hx68U7u
z1~l;1gFo;E3)wH8`blS-b|edLgdtfh?+C0#2`@8qH7s8X6UdAvHGG$S2mu|*fi?+D
zptv?qAvJ2>hWj+i5q1_-v-(7Xd5<*h;{bz;ZJC6^t?~++ip<*I4#(8#3aY7Y?YD4K
z&l=n9eBDLqFb3%_$6x>0UX>^_rPy+V8Q4J^4ncLR6-DzX9u*DI>+@9)A~(TPRs^go
zl}%vVgwH~Z+Q8ttp}P<b+_w}>3+$fa7MP(aUxRG*(15{l4GHpfM2h||Id+MycW!^N
z33Y2@rTdmbP?Jow9^<Twlyw-zhp^&663LPd{y-wiEp)&8Mq!+IR0s|?>ggo3Z2t%G
zTrsp}9g$`N4fklrnb0qb`uz#KkE8!uHPTAt;f*x#JN+}C<;qPp{^k@kPI6in>Y=r$
zx;4%WqV_%y9A3)J`s)2#mCEl22{y9UIL532?qv8BYDRqch{-R9_{$%<)H9d;sqB1J
z@mJq>TZ7x2)+`9i(un92P3qbRiD<3K9NVB3!Sm->m-c9aW#t?3tE`R|H;H_S&@X{i
z&<AvXQ;);vkA#~CP4qiSQ}D5V_hM|@4dF+3FDi=&Ya5Bn>fuAkgC4%`YZR+Xs8~4o
zWD|4!-WGb0OgqJlX<tCCOUlw>l$lG9igEcU6)NiJsgk~`RVm;U7~F@`9Uzh?$MimW
zh)J~n<Cc(Xp8w+QsO;=sYgdX4-jeF3HqALCgEl|CCKTQ&;fGy`N0_ePyuQU$vUiuq
zWmp1teEx6>IG?KRtez7Znr1W%;O40brsZZMeMlg536ON2DG-EQ=qVO|a%?`wyzT4W
zJhNqb{K+_g>ea@RAsBCK;(5t^MAaxMBs_{+KoCKsaPvqS`p=g(((y&<L$zY(bgwU;
z_pgX`g~{A+g*4NmzDc8t5!P%9t4gB;#GSQBo|4G7Rc=<8zZ57FR3mvrWG=}EhhscU
zWjmtGW<%Xfq?Y<S@b7sA`t&BbG;d-Gx^L>3cr@HKbSrq%`Zjv*RUp#asJrKB5kobo
z+LU9qM+--#GAqW=3FDGH6ug%?bWR(ibR@94;SnZ+II()DbD~3{=V_;9E)w}=%W?>L
z%$hYB0INep-b)T|kaqi@02`O4X{lexzSElxS~65+I+3s@4T>RjpUK-&OB^wSuuEdV
zEI({Ayzc|whc<;!7fWdoXWjusS)$%V`GpLnY@8d`EBvjr>{8ifQ}P1PIZxF7#a{{m
z@^zeRqU1G61M}D*=5EdL@^#gFHaC#t{PTzr!aun<HpF%sR{^WxvG%;R4qE6-Cu?J=
z<r@?_-}PsEzbO|yUWL@ei)6n{FF!{97#_B!Z@Xaz!at_U#tM53Sl=M}X-ZttgU8yZ
zjLCC;lHPK4bbgn#To&iPz{8tb^0dWe#vxIp*b^v|r2Mw_NeIyM7Bw>$=-Eh(AN!NO
z;++`v6F<m;sWhIO#4S34So0RWXwWUvA|FAFeyEiu4<<uKu<ve-D6!!)3r08m&(v_T
z)0-KteSW*4y*1Sx87s`4;=RVM++oAshbamr>UizscDNDZ6R?2ZSZ;z-ULsf}u+tdj
zv_v)t6{z0W{dQNj=R$u)1jkaMfr2tB414%GC5K>yiO9u{P1hKvQAnmRebYQ72$kX5
z;35t9ztF&r6wetl1M-j~NPQ}`76$2e|Li<MluPayDyC-p07kOB6*VCLm-TkoruQCf
z9v1J~3Lo15!jmK<H4X9AjWJ@oe72cdI>gwDnWM`_wY?i8P~>V(V}yFy>oN1{-FJ2P
zHR2x^`{E(nX0oVCyxuwKy~uIt$xlG8NU7ek5N?9%r_ZST9$n_9NbTdTT`^(Wz?$ZS
zq(q@q!N>`h+}x{$B}&XEP%cKV=3(&lpBDlz=D&6=Xn`12vOicBjw(GpzPzNGQHD98
zvOBX=@2QS2_`TYP7Xx!;G9UVdmcoWhD#o{ee$8=?w*e2EVi^Zz0N?W^d~{|lACni{
z^#XbxoK3d#;}sz>y29}2xtb`r3qtQlzXnpxc9rF3x~aEd;y(P~B?2##8<CbzIPqxC
zsFo*x-rDm=FiVrY`Qb!^BLbHHx~gR&QuE#+74nh$mWSXyE#{wNp$}oIDH32E2&R2A
zg(Ij?UAb?I10Qrx+5lo;c<q5Z_q}pg_hI9UEQ8;;c7*J$t`v$DAPS=dChj42arZ+7
zo8O{otBw6!=RFKwbFe^|SAgndvuqU6!;8`z`;}K<#v`3IL(I+v&2L)?)|(CYq{HM8
zNNxJ_6RZ1}aAu#St8QN@rDA6BWryq<EvgJ*_nV!w3MY1t52XSL)N})V96L#9S*&-X
zgPI+Fj!Ab@uNK->OIT;c9Hql=2~k>s*u~z`Sw$+9YDEkRx4?__(nb!XIyU6Y6NxE8
zyPvsR<@n;ndiStsT)sVtYm;a5F2A8(VX%WwbMg%9@%Eu|BL%tuF&RLQ{4mLcbx<T`
zEeCc-715o=+*ISWIlm9d4d9&}JQ_7leR=$XBvASN6Z5Kxn8QU=2f|p#T}B9*`3P)k
zLgw^7Xr8zSv-PH1tQ|)Dk6oRVupfW51AT(pS^pF1*^>({;5LrhI9rS0*t)#2U`Fw4
zEHb}C7(NRaiQb)@4EE?*Or-lza%DD+pdoSBc=`F=R@I26TDO<Z21bO)E_AvE7U?J2
zBDGt3%I?jC!ENnge*4RIvcwLLxc1*iKo>bW(4T#U`+yk{;Eb|DVjB9e5{PkcUg~?Z
zcTK<qox{|!U!x&kf(&YHKmBE#3iiDms*eI#5TU&BEVNq*2P8n|(fM8jko1`-J=6J!
zW0}i{m>0#HtQ~F8jb-u^;>|#Wgj*pnhc{gNj7Kf$+e5?3quhxXxRvIOPTY0xuLZV8
z-!NIgs@Ow3L%kefH^=A0o=U+E#m3w=5kaM3#rM|86_yw={N`|FjDm*Iqij_7_#S3G
zP`dFF`_v{yW~NT}*!@q4%n65M9#=;mtL3nbpV0QRyRiwyXIjeZR~CoCb(!iyLQFgz
z>ukmb$Gib!CqLY#l<eC^7qfhtvF0f~8}ywHD7LVTj0}tYlp2+M*7z>BI)DubZk^S7
zBz<w~<gu7G>&vsRS=@2FmEDe1w>_}HD&Q8|=@r3$Cmc;@nCU)$Y^myD8259cp|dTA
z{S(A*lng7ia?ct!cJ@;dZKNt62}X9J>E7+r>%HtMk<TyfnZ1LTN(y8+Vh-8Fs+Gi>
zi4Q;WL_V<^V3@zA`}@E@Zb%cSarf?#%=@92jyQ79&fJ?zXogztbwW=A?|19pjI0}8
zwHy=g_Ap#BlQUnFsbiYFJpQYmHY79Z8^efwpY!d}>EyD?!0B-XxoCN-g6<Qhf1LdP
biP>Y&(w`UbVOFK&e|PWP*4KEiW*7cH=%fnS

literal 0
HcmV?d00001

diff --git a/src/front/assets/meowbalt/question.png b/src/front/assets/meowbalt/question.png
new file mode 100644
index 0000000000000000000000000000000000000000..330cd69b7de23dd0a316558af38b23eab3addfe5
GIT binary patch
literal 21198
zcmbT7^<Pxa`}gPU(h^HIEGQ)nN=PkTBCUwTf|N9fH0%LEkq}ToLTOQyZj@L`;Ef6@
z0xI1S(ha*`K7Yb}U%$-E5A&GEoSAFpd0ww`o|xRwrJ>@W0szqH>uH$*fH<!r00r{A
z=qkC?2LKY7T({6ZZ~ngqkw`?Nd8ekPuvlz+dpib$fnk`8jBImrGcPX>g+isIB%2tU
zNJ>fh`uYwI4(8|QS5{W$rPl<gD&=Ok1sZ6D8ff3wP!85qdZ4LL=o1mHsp6+9=b|j@
zrE%?vnPtRnhlc9G=Eh&)7S>_f8nqPz9?G%}wZm2A-)>0=)l?0?fAc9oRlUeR#z|iK
z)$@u%?}r&q9$C)*HnL&~H?2cd6)WF=77*ai^^S_x)$~-qQuDs2<-^2tYp38F7VT{_
zxtSlzO8bkl>e6i7N(w&aW;B?H@^`e1zw`)uWOX}GOY^3jz}w=koO=&kRn-HuRUaA}
zD2obYCBKQWyy2yy_@Vx1dSbD=io#`K5q)WqH!mBXJNYGIy&f5vdFp5f=xN$vF28x4
ze&>ozaZtPs=9+_?Sa{I0_U4f%cCK;Oj?UM_t(Anbo|PKQ@Dw~Nb=H)yQj+iLm`#Yu
zzHg|1Q<}XpzcKegOyR?XboZbXD_aw3iNf5@cZF@4kF!*yB#LrAW{1Z-a&gs>yE-<q
zkP=_?C^EgkE!gXZ(wofp&hqjri%aibRY%)6#hPG4O!ZtOrNbOt0&imjedB@+3>+my
z%oJqfJ%Up2V1xA3<Yko#5(@&oBC~zN;$3|G3{4`iM)!0Tk^>^r?fe3)^d!Zu7Kf%7
zY8qN=>DtT5-jkD&6XLFV)0!TU9Bygks%zk7s-5)cRhWZyth1Hd4f7}0t{op8zfUX3
zc@P<CeBD3=bKgjL=<8xj^*~<ob3e1&stP(d94;I7EltgEwXinQwQ^G6c;FJ49sA@_
zU~Igv^$Q7k2|m`;r`Zop^waN$_&IpmnBMZ1R}9gRij7E0@o`Ucv@Ce~*xlMGO<Ai%
zO8NKTe>o<1oir2+?Yui{%d9Qj2K)M4>>mt#sDGtl@pa(O_}I^sK$ik%gH$Wb<Lk2i
zD!dhu;WcG%D*_#A3vw8gyvWZJ02N?%!yI7H?NeAd4>f2awNdGt60UzU3IJm-eJyp1
z;NNQ<=M4bh{IgQl(*I@C|7TzWzj_%Pu~E!LPdn8An?JqyvTTFM)q0S0S^C;DGJ&_O
z-aGA=U)$bn^KtPNyu|QCi$7KGl1!G->|GcA=RAMKwl%E;GOh;qF${2piaq-&wte(6
zZKC5!;5Uf(>#f|SO_Hhe+Vy8kncH`14+qD@Sdc64RTqXrD7m-vHyQO=6YQta>9M<|
z7P=F{2Q6-n^oM#G1J3qmW<hKHDw${^zF=-tY+FBEawel_<QP-JcPZdAe_q!Cm$zH2
za3ABE5q;($KX0dZTdZifUc|j4BOV5GyioOkNo0TK`$%nZtjHJoi$TJUREKC5->910
zvc$l&p*PNt=ta;u+Nxl9%5o_7+1Ai9oQ#GB1m3VFR&&@G+`mRbSxpfR-d85zJLkhc
zUB;LYkm?#-RZl1Kg@pd){JQfis-v%+l|wnrj7o--!yJ=xdS|oxhIeLb_USvKUEFs`
zoVK7@&J<2IArXDMi^AV&@57<bq53jec$!V>Uret*OUQK@y4=Pkp*A~uqQyP&jtf5h
zv1*sNyxlP}3CfPLkM%uwPP6`a>{WIcf1#Ycin$I+CJ{$ueQ<gWnYm>D{tl*JmiS$C
z7**%%$Zd}AJ9KRe`S?0YeI#L?9eKE0neJ$;)BbO*EB~%^LSh`TNTN?lW6I<sOJ*hs
zK4CaJ^^NpSabZon-TX|^nDlhXMm=e}XxnFy#4;~XCrz4o_j%T_{dFo?Q<dk)@Z*jC
zg#5K^L`^2*(XX<CIb}!5;<WN3a{+;i7lpM*8BfFq6r0i<jqOOU@?tQ$stMF7E<>iw
zW6ECZx7^|_=4oBYNm!yb#2)gHkEq*`lkWVup7r|^ldnB-Uk5im0$7yA|7MNoBP{cw
zz}p#K6A(__j+)fKk&5kB?9YXaW-|O;<%m+YI9dZpaW`e&$OL>ZD1sj88_jsFujJh6
zxKovORa%NtFGLDQDx-`n3-pcp-uO0|4C^*HM!lVC-C>GVZsW2(OUNap+g8RNYcj|Y
z$!&%Y1mD^^1PB*FWMkv+eqlMilgU!XlW=0}OcX4?JQ?di+<*W0qgzO?z|HVeAFAVD
zo<3B7JjR~JH`RW3SF-*uSvrj%EJn!=%ta`EU4UlASun^UE9Acvc4_7|gE@};wq<){
z^wmO%&b%7)9QBwHnh$g#k0C8an&~-@1gbTGQxEt<)$#ph^?H$V8d;&_24*fStaC4{
zHKT<tG{VYq%hEKD;9=w1T1iaWjL+M1{r$e(Em1AL$gANoTYkls#>PWCwY+$rgs|O4
zZcHMsn10@%qeK0-E1AO@<dEQPhIx62%Y$MP$qpY21PF5yX;&_{yF;g>aL#SR<@ki3
z-`6GiH>5D7cWE}C<&fl8TQ16DXe7RLEE_9!?F@))MB%rRj_=Nyed6$a15!@N+!Wz<
zApGaTCj`n9zIbuQ*Um^9uQ~!Y{sf2if#JS^8GC~tmyV78Af{R=KUDWK9_1MVc28i#
z!^J(#0?S^Hx{xk}-CV!klN7Fexc>1dT*Z=j(*Tx2V)GJuIi>@^HMSc&I+}wM5B^-B
zefoa&u#qA?F9VoU0~ro179Ga3+>b_@xa{^KP$f7y@l#Rvg*;EV@F|(^9&0gDNua2T
za!wA4Ssm0zxefj$L!at$V$)0hN^U-X{V4r}?WWzaf`1*fc6bx?9${HN9KJ0Ur-Zpd
z2`4!Fgj>l_zt>C4Q)BppiF~`M5ScHc!wwF76f9wp6UpNH%WogfvjTG(Jb@hP$v`nJ
zs(&4U7qESC=bZ@k!<`d5gj=UI=I=Fyvkg*w0CIP<@$L2-cC^tAPrj4^!m354Qh4j@
zmDE$jEjWYuk%imo4(iA-_!Sg)dYf!){{F_FI$D9ljyDP(WDjmdMtT!}Z?(UyVqOxo
zz>P~z-$Uv-(Bg)^4_z6Y&~1AZ#ME7|;L3s1Y;SoK_d%$=Azn(B@S2JdB!(-6?}+9T
zirVe&f@wAPxxVy|IdYalB+UsXLT_dN{S^4Eenkosl3{-pf5C<#k*Ip-r5;ZY4nK+u
zs~?obk9PL1y<THU@CkYtZlqI~-kB1#f#OZEw~Sd!f7ak<QpdFPzAxO5KLSMzFD8WD
zufN5K`EkGoUfVsSyT7t(dF(SG&ZNhd?p{fXIgp8-0`K@^Yd95rA5r3S3SPW1{_wF#
z?c!bRzW+l?5j^n0QJvaJI8gucZ@!-EHT5d;Qxd_(<IAZ4?^d@>K|RYEr<2%>G~U#s
z^T?8Rr`_GgY03HIMYF7tKO<S8@6WNXcKSv2DPx^ylFvDN{MdLXoJw!MY{8Yr>t-I5
z*4GWUsV#^n61j*2*U}TFk?3P{(A1H_W&5vk@yFLw+m>jJWPRfAntVw_tRd0m^n7iD
zzG+IObl0iE$+HCKyF_vyas(#u^dPxwygk1~5g9$;e1|moo=4J%zp4wzT@vk>HE&jy
zq0o1q*v1lGT~s>}4NbAt@WstnCM&MGCK9QC>?4PcuYwBl^x<Y35q=fZ+W+u$fgYnm
ztjkH#G(F6f_^GRDq5!Mq)O&L^TO*=vd@t)8F}+|8NCnUWpV5zQf)|CdlU%ne-{l9L
zPG8ka$(6^(<a7P3nLm)D*h9Mg)C>P*b)tCI&Z0$B15roUq*Msr*3oUYl~b~GL!aGN
z--y@q|A=604z-s%1(;HiQ(NyGV)@{<y*F7t(+NZ|E{P^k1PxTF`GT6X(jjREP7ToT
z)Q>&j_DzZ7@XMm7i~-ABsN{A=*w|;YtJkBXjFx<;?$6|8?p1lC&69ig+01e&4l3zm
zslWF2F_gk-zEM^bhibeIBUItSd?f!}P`3QV&`JR}a<htHbvbo{-A3-cwrS%KQTD&@
zGq^_XwcZ`^YBg)<hi;h=eL>l#&NBpVyTkm~k9U{RYIChO{zyJ2>>NM?SHXS^*v0)I
zyHH^9*mKv`zrmC7B4V{YllJ$JO$ypr`~-_Dt<P@7=oULk0O3*ZYz7GZfovr{?Qnwk
zvj6L43NYR0_Qcd&?TY%#2br>t*M}rIy8>}TFW+1r7;kyTd!=nF?-!_>`>+N1F$4*c
zIBTCjQ2DhoQg)B0)=PLyWp~x3OvcT>`wsQi4S|0bQ`$)H?Tp?@e%SQvHlt5+=z59H
z!j~B8{ZjMGIC{;MDX_V}HIeLZCi)X)pT0WtrRsjztCC?Kg-Ll2iH}z+#nAVkE<Wpu
zC5)r;tx;ocH*uD<EtM3ozlA3`cKYnY1kTe{--E_0t&w(WQu4pD8*7a+sk}+W8!2ad
zOmAON&(>c@4E;u!Y09M(IWbjfErB6<2;_`LH4WJe1f4Lir&cxa*4EaV4K&i-J(Le*
z(@lLE>(8}Xo`03-H)SsbOd4Lcn%Y)DZskTV*djWZ;OmXtuyNPD5(g7eOQVkhpLSp7
zd;(%uHXr^?Tr~M-D=NUx&A`HOd)Ii4x83JzIe7<R+s^XI7qv&11;NnZI%p~I=QtfJ
zce#|$L3!wFJ8bB~>`d`gWmu$^R!?#M4?V)o5^r1jdvFCp+1s5ZcH@k%_p>5lfc?;c
zx@M5{z1DeiDVdjeydiB|_n*17uNZw{C!6<wSJmj@GP5Sy>rGN$Gptlnu%xfZFp{)L
zY~U;PZ&B{o8*5NHovkvt{;>g~&${%19!uy0K1tqk&h|2Lj7Z2?h2o>m7z&HrCV%Y;
zu^w>v>GLQ1M>7m(M9kGLDGwpR2b^p2){9QV5O9H3Nl*5sRpo)ggi%m`_sgJ*2S>*K
z^5B%0AtE^)XAySIN`piilYCIXzCR!%SyaJ#LL7*xNeeoOrTbpl>LXjD8{w9cmat~w
zyPy2JEm#G-xJNt)XdzjIHrpQ~6RAU99j8e=yK_{Ng0RTvAz}G$YN;2h?w?gW&7%wN
zu0l;@te=fjf^m-FnqSVs|LwdE@{j-dps^@mUrOf33*+sO#VbH;ogBQWraoR~XIMb(
zo~-ZBZG8v$o|e^VVG4TU+e(&SEABRF$A{3>t{vh6uqmm{|1pdX=p@=CSW!Oc9~;==
zZ=&O>zrdW=^#di1FyYs0p$2JnGlZ8J8m+_6hXZVgTZ%UWRt7u)wta-TVnlhB*mtu?
zWo>}m>=`FgEAlD3Hw33P4wQiD<?BD^f>z}YD@8}H8OW6(Nxj!dY#EQ*lL?X!7+*Ci
zS^u{}&i(yLqIqeSe;p?{&5uk7{kx>!`o@PnK`qwn(xlx77cOC6=6A>(y+Fo=#TWk7
zA19kc#f%p1dJQ2wAO6;%amn3Jn!`JbOFtg$M@3H>g-C79*nc?w`+MS>3u1a&0;G*o
zz&)Z$=47n<x6cY{x=lG;ecn$iM+FU*tXa;gR_ZDq3q!UMY+$SXfDu$h8W$+A1BL&_
zc)iLd8}hOjo2kAsf;c-Zf*qIe=G{CV`8Ddh*=ZR?697vBOqZzccxBD-_IDzC;r~d5
zSW>eB_@fP1*4aQ+nns>83CxNxX}tvSKXd)k@Km!G-WLmz8`Qbuk+9X<%d%g4gNKE!
zO>=ZH;`UU4YQ@myw<GZiY__fP;gUU7Qa4>%=8TE!Z4lS@&VS?MR!9--d^nY*2@X+f
zxp`t~-q-tr*a(fn2tcKfo}AwNUBK>b+*elW^>lf!Yh=PVz)%1es0bzn?O95=7jL4Z
zo*G9-ceVyKch5g-%svM}A}P5%G4>xn?e~uUc;-?CW~NvSxu3u9J*}Z?{w9)Z0V%Vy
zv&kL$TDGkv_4Z-wS&RQXPi*Zb4;I#Q=1=;c52y^P1ev|;?!IBLtI>+TXOEICpWp?N
zh9{<2n77QFD|DZ5QEA?i1Qv(j!0UT8LNr}YsZHD4U-N$Ewou8>C&W%HJPlZF6w!`?
zBCG6_`MihU8qf(ja1%=*Fk%c}LJ2OmAAdSNtNOesR;Wa*B;1v>?6d#xtLdZQRr5k-
zgA7lBcNCkS5wHq)uN`1<N7G(@rPqK!MXdae^R~yKgr%W<pWhnub-G-Xe7P&9Q>s9B
zU@yyN>!IvA-w1#Of0GEFyl9UuifR*wpr|w9Z-o}OjoYqX?Tr7mnAD?33VNS<w{TdH
z!u|$g0ArNK0-l~8#cNUFy&$|2N$gab%tPiAZ_4~^(*#ZMG*5~Q=CwlR=hEang#fHd
zVv?t{$s4kV{p+hicLMco1V8k&?MPJZ0zkWapB?~OV=rpV@=v?*5#sUQ>LB@Z*T%LE
z)H8R6jVl_haC!Lki`-wieN1qrz=@TriZ0y}_>zK8PJO>tbf&Jv>v4nQsn?MUA#&j|
zA%Q{nIGj{^uGI4o-uI|Z&hEu)N4>Z_P#?ti)ZOp(Wd0+^CD46HG2M*#TLLb<Cfdi(
zhMPK#K9W>T@=gaNhRjUkx1fhaT1|}1U~d>b73lMhalpLIJy92@4+BF}8FP%b5Z;B5
zCmt`GY)}38Azjg(TM#TrV)B`wl$yLpKv4lPF=~V(pQMfWE!5Txpr8SO%=eoBY*)Uh
zslDx|!?1by<?LJSg#pn0`_;A?D*^eIiBJUaR*`6dLGNRM>I7(<ACM3s5FV`poc;aA
z`xC@O<7cuuD)l$EyLzJL5^on4<B~RrD_P9*VMY(wwEY#Oy9@hLqMQWoyc$8mp3FeO
zf(EcGA1J*tye**%-<CTJs0=dXyLE->S*#|pT3#V0yt4ExUSIC&74j9${9Izv1el)7
zeBawV<4TE{Yz`0^Oz5bTY|U{;Je06UN*fa?HO3j?^G-1(0$j3&%tvT^F{k7NJK!`T
z>Dd7(ORq{VfjQF+_S_>6P5d}cGvVFNd%oXaa`dXFs<>6s(C865z~hI&e>=Y_n1N&+
z1T<f&--~>Im2~<`uuK9-ZHRk%vFFGhRQc!Szeo~AXl(~k#8D$)X)s2I6(LMNV@JX#
z_A9pUe|j4|h~R)iS0Q{1#U$~SL3jFJyOW=xd{+%Er+0ttL-3iEu@4=%+!h~H9#}i!
zE$2+#M<#=ap#o!TY>&}#_n*|&<i$jEk?ADan<_t~$C&w@c#**FW6*s7qP=gD!4+Eh
z;!v=3u5vVSMeEBf?X(l`1M3LF>@r_M$h&NU=>D)R$D>DJIoa+4Y-RCi{5vs-n-XLG
zj%508aU&Vr<@=Ya*ojWSETU_JM8J7CJiAc6ne%)>k>DD!nipdPXrpQ3bB|?!9w<Jk
zrH~3fUbqUZLdZ<o8V}k@IH+!yJze-hfw$+3vqZpT^v99FZ76xLo&>yDbsb5+59H@H
z^GVQyWP`dv^?-y>`fFp~g#X?0!N2PG-Lj9)XbLa_-YUH$is?HA0z5HtBtmEjuCPy&
z&L^4fnI=#)^M27#sCmrb7fVFL>}{_{Sd{9J;0&<r6A$~QJ^=XZjio>Ne_Ht<g`kfj
zkgz>sGCA!1ktC+65yHP;IiN#yc30iiu?^|w0A*z9RJhupf6`tz9oTLqz6fqKL46B>
zE_g-B<fm2O^Qp5D(Kht~=$M3083{BDQHmuFHiBYRZlJeYO-h5}{s0TZl1|+7YG;`u
z!^B_whL;>I9!Y;a*$Zjkcv$o^!>8_{#FogA%*3Z-!q@wg_rnG!PlXcdgqm>C!hq+Q
zf|@t6E9%vs?C+Kl?>1c<DMhBE?&pR77aDRBlqmo+Oev`ts`9U#)tU}x2O!MsQ^9y>
z*MEBewfllszWe5<mB}TFO?n8{B$>(3IH^<%zIHf_HJs}4(l|}ND}omRonxJ>hN3(I
zkrB_1a{oa1jldizu97)?t_FG;Z0|9&67c9{A>#nFecuYNK2|k1R|c#7#{KB%Kqe(^
z<hnN>%H@H4a$gcWnaH1fby#IOntVK>@u9s{y;T(A3XUF>sSBYerf+~#`{7RuZuQm=
z`If>Q(pFo{3MI+m=Q|@)JX0m5uiQMVtaqNe{<I0-zy0-G(JZRPtW}uzy~wyVL5-gf
zot`FPc(i;5RY23BM(9PY3MA&B_5yH&;2W&(e=M+N3_Lxm)(`OmhhkGXyIs0VE0!Ix
zy?fkuOXeRfv;6Eyh=_QcoOf<CkaXBWFiigIwR$0cq<mP3P<RtN=zB47bK^3o2tv?#
zp`M#7kOMM2fF17^1$>}hKj>U(pleSym}LVjx`E?2tB8Wk**MGIu`&JE{l7CU?>s!i
zKOTH_vZYH4N+0^6?%de9?T{Q>nHLd!#M&uDF^yxk=6B4ZWhjcZlL9s=tH3iDpF}p@
zD{op2y7>vF)#)EH*}SMJ&>?w8BU^Pg@aB^2$?>19mHWM#PPb!eMrNgpOtY{C75}+s
zmHjP}#wYVClESy)n57N}-KCwzs7oGuok44)MV*t-n51SRmm3Z6eFaLjm;l2TSPn2X
zt*-u1q;0FMo5zR<>Fj7pjNt15ED_7&em_kDG}G(vmaRK!XhchwTJfHZIF$oDyDreP
zx@R7VK13(OPCXCxgKAxsfWjFk+-`oc1zR~v54IB2GsXNkff)qMY+PNJx=5p*u!~Cg
zRGYo~j+@L2^DdNo@5_2jh`FY$z+N89+aj;n4-Itz-)xeq9#$WpR8Z9<%b+LLw-1JH
zWnA4vHRXq$*^;60cbv#j)2g859*XVtmnQ>%*FH<Y2)<x^P2jcLYg=!oWh4B83!SQb
zt$eNu3@45L+ya-f%1&ymtp$bXexR`%wzKERhUPvBqMDWjc(GRyRyR5r1UuTufhVGO
zSX*u7z*ghq+ISRUcw5o*Q2&W+(3z3_M!0VG-+Hy2EA`^Bv0=MCC6|B{Er|l7)XIT&
z<Mefu3nWaMFUU^@_A_K0$EF4W)>b~uCF84FZIjX}!e)T<tXqPtIZ~Ipm3tOy(jfs%
zCu@(t9nU~Er#ZTLY5e3U5n^i?aojqu;+=|RX5pyN0mt)|Pwc?J<L)kYVCG4X190s@
z;8ECH|0y8g{>Znw!b9YCGGc4@W>ndwB*a;p+cL!$*CX|uPFuB+DMr9a?WHYDz5$Ag
z)_Ehy+wDxl3N`}0C%zX`@gz!k_WckN%6XQ-4OB4EW_b)}BVn0j3=qD3F~chK$r*zu
zuK+atZ0$bzqJTut)LzeZp96M~{o_C2xhVvwP&g_0kbL{H=%2GcylQ8sUq<aul%AZ8
z4m}mW)96|56MFelQ%jYff-xNkr35$hnTU1~cXx;89oPVJT88Se!E0*BX1yn{IOG`$
zSN+W|;*xJACj@+>k@;sqtV{vqWDLkBPn1FX>G5h1#df>Vvd8x&j<-*WDN|ovHfFE*
z?=uN_Oo9kTnjqk`Wflb3BEAxrS1R-NlI)){b{t<?P1qwdM#8fj75-!lrtJB_z}to$
zW|U+_6G*^oFah!v{f5av<k8;U@3K=;5xsv0rG&L;Nkz=emzXYgET4Tlm6eq(r8D7B
z$7nD_m|jj7jF{0fyx@-kRWH`x_}0MZBdG<>%|!<dBH(uelKQhxTOZ$85Z}L22H;xc
zj2Jlyn3$k*)r?~Chw&~D{Aw5NHF49Pc-{Q)>28%&ti}zQ_dg4Eq4b-#-cZvmEi6E=
zvH~pgL~A{de42?17<Rb6If#FIZ^wT7tk>asG6LV*JJ=5<&RBda-}1(nv&M0g0Fa0j
zOCw#h7Ar^oFr=+AkHax)+rKvJXZF{2cM~R6O)|eHGRxZm;T7@xH9!M41Vc!sTU#JJ
zz@-jX52{udZikFN_(|3-aMtw-IbM4<l+|t8><MO}J~HI5W;#}7F1P*-cdrEqyH3pV
zHHv-Ltt`V3|A`JXEkA^`+Uu_I^E;3F3X+4i6-pq$x5-J4(NrvnnmpTjF8iff0$}Pz
z&RSHkb5<~~)6x&`a#ub-9e64ofzAOK7OY60cYQ!T?MrRixWoIu+a7Ro;PmvLTrbav
zee|DsKV-F|dm@CytjUHTSe_>sVKF9tizGha3@HKd8BU{&VEDPKYu5xDZp*Sz%SRjq
znkE$i@3AB_q>swK(Dy~cZGFXkeTf>TBL==)=@d)8F6VE}UB*L6LkctwV-I&|G1dSi
zfc(bM?hpV;y?pRtV>8+QI-OP9K@dG)U~9VdK|%%pxGeWHJyESeGp>SsI{Y;mgE_}O
zNjY*z7%)P+RRMR%z7qC-4BiJ=rF$M{9og2mtEgw_Xf2T-7sRXb&~pKik1_=_vC1Id
zSi-IWJg-skDJ<Ct9^A#;Ql-W}0Qun5$D{IuTWc!TeeuPe%VWCp8?JvuwSjM;nIXXZ
zirR$n(c{th$UnO0gxcG*>C@9}$9@F?H26SDi6CebOUfrFAs?$x_^qafia}-y6Izh-
zG$UN9K`!~00Q>MhP`*h!w?UX&V`v{xrCD39DxW)1_qHViWN2!n*hHs=Z>`Z2ChXFF
zZ-Wmhq(uA9>5cOn-C;CLjZPbc4EVZv$N)V+y^cPfwFCJvQq%x3@+2F{YeYA{bdePP
z*K!T=Wy1v?9Wgh;Ct8ar!T_)lExbhW0%1azVkFyf>S)3aFjSazUUrOv0O;t@JO0@M
zZHk~{i31dR0L!;?wGKBAD+8U^(j9vC<==eP|3V<+JqJ(|DkmCP%2vIo)B|G^M7u(e
zpUZourb3VW66FlAgcr%F1V)6y521_T?V02rWJn?=N=l0l0*_ga_I<7h(jzJVn_cb-
zQ_bRG>l1H^hkTs?Lmc768s(d(Ff^87n+ix+HhJ(Y5C78%OWQf8-<e+2CYENF4(KsO
z*1)(=YO%az^Bv$BYgj`1ONKNq@PM0BXn*%*);}NGmUswDRwcLe;><=CKtNLZwZmEM
zg^W4LdEjhCtwY<#iN7!tan%K2NQzBQ`#~Qf1<AkNM>Jnv_0=rlNr+;DD2~*A;WRYv
z*iMXnB;S9@)tHoF>%xjcrv_8gsaAL&_(nW$YVSL&jaTA_#&X0jLBn(;+lJ~zD!9)B
zrXvm~KiH5qYqA4`4CH5rBXVOjmc>u^bcqru0M^K}S+moE=WfLH2dr{DV`?R3wMlJa
zB_FO{Q2o*r{2!k>0_(-SVn?*3feKE>5(`G-Sz|D9N|J^_4Jn9>^?%=p%DTW4ckj;y
zaytIgloaqel``erS;kB7z%$AmkYEuxiVIy@UhdV>de+%CH_{VpcV}mS-~G?;pr~9w
zy_86v!1|uw%j)C{=x+PehaWYxih)o~E$M~jH74K|>3^VqHc0hyW$H%nhg3wJ7?l6$
zWPp@hSO6^26F;TJY3xGdOuz^se2-<w?b1o5M`OMHSnbkK=WFdhuobX6Rp~*FOoC;N
zCzd^VKPN6BQREnimsnU>;mx0~xT&uIAUr*M8@&juD6^m6RX15iyj|!5RMPAwdiSG3
zy;=H5*ddID#z_+m2qzrPzBc^t-ZwC$9H+~i=vyD!y2^r%JjzL*V4{PufXwzq>>xw|
z{|fMj-!!V+uP)J+>qcT}NfA^gsLM+((f=u~PFY%6+1eR}plQyHcERZ0G{L)f?o0$L
zk;A1y4l|8^ZBoJXSn6YF`lE#R{2VUpb=<m#&s5+KDloqE1uTonEC<-yPW)m+Dyx0?
z=o)MiwQ|D=EJOL&+vV1_{I>=)nGp#06{Hz|;MGpZ!1etT;LU+%udy!YR$w2yIXZa*
z)a^+~{Lao}rG)1t=#b}(nh`c)^8KeL4*T;!nr4{^%!m_nr)a-B=NGB7``JcC4XWAi
zJ0(YM?ml&O<JjakLZ*Ip-_cv1f=u3g$tYqxzY_HlqOY(IkEM*7SX%xZs`9b#$~`;j
zy|G{SN40sgxjIPN;ox~?91<T%+x?n`6S`FiRn=(n|7kxv<CG75f`AWj?!@2Jnu!I>
zwm=8U3%9!g@Zk8Egj_1e<7a`)9tB9zwBfM2K?2|f%b8IQdGB#H?pNvQ%-pShQv~@x
zzXuy|xt?Z%W7&+1JrK5C;J?_~eead}h|wN^{(HHhy=q(fEA@27>KZgua4p6`&};zO
zod0(>k5{4fE+_T$uk5zp87%CSwdyX{NdX83d~hpVi$Mz%en<<T(wKid8T!7YWKkSl
z<wr*j79Xv6p0NzvClrF<K4&0@WfXa@INxwArB^m;^?hK97?|9|Gi|+}aeuD;>&urF
z)aBlS{$wDH9)v1@^!;XqU%E4NpA_((HwO%bk1zUD$mP>Y(B!_-?vgYzzo>g9=L;XR
zvAVIcsrjF0q~vcu4BdT*oZlNUy5paUj7LmM+=B8ikY^TqOTl{x?85_RR=%Z3q^o7n
z_$3ygr6y7FwpJ7gx~-Z*@+W%B7A}J6EN*h==i<IFR`xbNuJF>OOIp=p=oFoQbl~%L
zeti5b`w8mUTj<lD3W9Z0p*3e^<+klZ7m$5}OJK9P6ErD3aZ+}8*poewV=FEG9kA_;
z+Fzsv-S!Dx9gnz>T<DUYojtf9W9bEuNs|3C2CBodS$W94h<U4V`TNyuUm7pEk|Ibz
zprAvFST}SyoF9L&vVC$l^tleBOw6Wyp{hx5tQ_Z~sH_XEKahsB=;m3V*D`Sdc50=D
zZ5Ji%*7!&M`1n(S9Ir?P-2{S~zm7*ACM4x+bhjxFm<LKJ5FP}RzrFf6#v<nNV;}E#
zm6blf$7AS{1jY2|-+khUQobs7y(r{tRFLK^TfA_$Z@xROH}<&|P<U@+W${!_XfZIX
zk_Lzo{{2N>T6G2~2hJt1S%VTK*)$iJ;Z6=`TbOx^N%@L$&FptGDyGJ^lm`<mLVwUQ
z9eA*J|BAfr>tz(TQo31kEPkiKYa-^`Oo`W>NkA4CgnEUd&^S@^pO+2KxlAWvbg$}P
zWsSAbr@M0vwQ_eSXM@{c3s-nN0D3km_N(iTr>&z~m#EGbCZAcd!NI`4&eR&o99ODU
zP(^*Ahd3t0O@FWb^S!_|H-pMoT%M^vN7CL}%rHfg5UYE6{t(8#zRE$P^Z9@;1}#ht
zP_+JgCLsp7KaX8{Nk1dGHCeGX7Qg*>c6L7A8YLZXo&;qZro{utTdlv^4<31Fm4NDD
zf@qNmpYWTvKg}@fQwlaJ>Dlk}jE$%KssiJH$yPb<7aXH%;B57SADlUp0O*lu7@AAb
zqwKfdJpv{%BrjOx@Ps5Q%CasAkfX0SIc1%enp%6Ad^1p-P=TDjr~B>Z6;T;L2ETYQ
z`X!TT|3g1Lh-<mYx@Y6;eBH)W$0kx8`>XnMoaB!ZvxUEZ;{z(l-<F%I_@!=~e%pFH
z$0#`kfYMZOk^Xb*?C2!W^;2_8*G{dlKpks1q6&sa9&$i(i3r9|Z|=xCIy%Z|AvOoK
zrTU2=?%CPIR8a8NY<rP<!9^fNGNf(!sZhhl$?5v1Z{y!I?Q_+L3l=NmT*~>$)BwCi
zjrlUv`<t0FvK<~Kg&Jjk2vukvweb9sP;unBvv|us!qPIQ-cN0f*PR^9G2v+8)*DcY
z-nuK|Xk(NU{54y+o;*tSW>kE9+L;{Qe5%Xt?>|J^?TFsAnLi&8e>ZEX{n-6HyuBrC
z`8YYap8bS@S!gI*u?dzRC=y-#qrW)B*To&#IcxmMEWI2mOrZP>{dCgaSe5D^{-FS9
zDc>s>$=>a{(myamYaBM;Y=ty0uPC<$>ld5-Mdse_p1fhUr1)bm5KwF!Uc5FBr&s@G
z6E5mw7z<zfe(PNS@9CTFMpLBxbR_69muRr^7I$7pNex|z<y8-f+sz-UV``-oC3@*|
zTPA(G?Gu6j0<x!pmx?m@QLcMePg2R}dzp+E{`>Wc-CUaY+n$Y;f(HMZsi^T=5uyxj
zX5B_aQkXcGoNwTE$rCM9L6H@zp5@05H~)CZxIh9Z@+mQvCMG5nshh*87xyS|q?nZV
z5LiF+)KqMG^l8*C%*!5WhPh~l;eofd2t~t4t#}0fg=GxpFv51ZPUQp<FIqs(JtMJI
zYtPyA#FlB(k;$EerH8p^p*z*zI_EixDB1o}gXM5QEF<&=4gZA{2L=;}{H;mp<=pR{
z6_ryKxZ*;7if4~A5WpEha>30F?<m!Pz{*lQL1F`72=hZk^!&x)zI<7r{OdPfLQUI_
z3yT}|?<b5u=vv)y8R)WG<Hm8RU~Eij`%$utjKAFZfCL1W*4h83f4d6)ZG9c_*wO+`
zKi-n{=wTm05opY68V3DMqBOCMmOe5`pELk$d{XcPdX5A`{Q_Ha54eIRi6=jzIc9q%
zJKp1ozf_{eOzO)P#I-*o)}XlA)tFxQR4Vt2uKdZ?D-yQHR9k9ldjp<F;SLUpv%H=<
z3~(x*zV1vsM~c19S$5VK^l1*i?&=SqeF>x<Skc|ya*)xu`>7$2bDw0t(SLm^rS>Mk
znsYJI>XqMI+eg~uO>Z$&ybM`xUu7L)k=6yvjzxtO;EEYF@}s}kg%?A}muk33_rOR(
zaL5r>iY2;9OzM@-=^ZI<d@nB$9{!otqpu&%i@hQs#0XjiyK#wJ`P?Gt5?0}kxI3bt
z>UH13VJ(d!k19pW0gpOeoUkNr!iY$TVM4_vC4S>O)t(rm{(b@RHIKM*Iy`uOIxQ@`
z1{ksncu%P#HJ%wg0^ec#I9Ku0KG7R8f_#K3$lTArhKF`2%C_UK&<v2f#x!m@9J}WD
z1pufmQp2`GX(E7Q=ug*TRQT&?iH%4|k_^VngJ6>QP6HF07XpoFX=%SJPXJ5-+b%3<
zcE|veLYNdQr?+F#v{<^EFC{_P+71q}*2<*>z9hm45YRg5?ERFcvhJ#Ta{vC$eQJ*k
zWK|U1ymdbrFV2|DaQxyz%-9oFB_ZEeF966P3pPDizF2*Yi6Z}E=fnik*3Y(qR0b$u
zj!wg=K7bfreY_r}GP;<*Sc5_h2tT2VPu8V%GnjR{k_vGd*r~D)MV3rOUxgF(-hNjE
z!;{L3OmU!Cmqu{oU~&G+=BzjjZMNQgFS@c;%wYP;isotmkW1auu5;+D`*oDoxxJ00
zC<5A)US#pTt|*}v+ITuD(_0$`a%Q{F(*z}sL*sFepLi!6#gxEOB#DVhWo3zp0km-5
z5*M;&6^zK!F(H!kK9N>;748G&NlFJ}la~!O+s$v;wLD7RO3>X#hr)F$b9#^<3Rj!8
zh|qUIqq_OvPxcVW@XwG|CR`Ey7yD#$C{E3i;_^R*Uu2+Z-<}e2GXSU!#<zp{W9E|X
zs;{lHJ60!LRSdNGMO^3xe-}Z93(?x;<qs|}5qAn!es!MHo(^Z{7yqw_&jKzrARGnM
znbo)SpwJmWLF5xomWO9&X%W-ZNg$SI+MOKx<pYpQsul#w6=CzHm!hhzFWn>4wDEBD
z@b0J{l`v8-T`?!88gPBc$ARoS;z8#otIA*~P(ubl22)ghXu^~J7<~?w{lk7WOKX4{
zO?%Fsj(4d&$ideP@+Rdp8xOFlnK1CzRtSKqtm*bXrS{B*_rgze*oZBenWhFQ(0#1o
z>a~1v+-K|3>&sjL76z=}$;AB1QTeF5E_XDu@zGt0q#Qi~Q3xs#?lM7v55)zS+ygY7
zJIJGzJ@0EhQ*o1darp0GJdgnEr#6U<abFAm_jM_9uz6`R?5WPp&@u}n&OO3NR1}$l
zXXyUH^CtR23o0LVsES-n=1CI2bOK}oX%TGbDWr5j=Gkujt!hZwF33H;mBxu-C}?4S
zZ)a2wFqw(WlfE%ZMuEsv+JWo1V&G&VAEVOX%Tj9zx!DN+i}`U6WO!7+4mMqn?7Cae
zQ~LP}bFM=e%pWC5_o^dne~Dv9YlaCnhhMORT3UBz3J5?cu;?f|_z3`&$>ko^om2=v
zSkh*@^$6B|fppnCA`f~o^xC_Q{CRrd6|M?p5}4*+WsiOeN9l2)MN-(E*7zCu$OEf{
zG%!7qb!55*uKi*LEGI^F1V2(64GJ_hTh3*-YXI6bRfo>g+v_ti4*Z+!aSUYEvQ2va
zDXP5?O4-sV1k*d6`hSSdtbOE_-`4qzdB$JL`ktJ=N<yN=6y-jk;+wy{HnZ~c+A6H8
z3;y^1g<4InG6JyV1BCe-$_;f4a3=Db|D!kc7MO>~NTnQE54Ybt0Ob)xDEBxSgyCkh
z%%5p)ZoYX2+Xbm7-)3Tsj3)y=Z=(7>E+;<=24?$jnO^FbClkMz*-fua)1FvXj1YO(
z*eg(MJRIU(&ZtuBFANV7h8=6iSXd`EUe)A^y<?&WV+car5_Xr1B2~>eP1Fnl#;Hwf
zgyH9ai}V|h@5oHG24YMOK3DIW9zUM2{qPd9MUrMME1v5I#*(OyMbx874>E)P8ypmx
zteHL)Cq3<=3vWv}5o)o8j>j2upyiVLXgRqNm-mgg4ZNHZx_GbU12D}Z0w6TQoMsm9
zh^p$dt1JKo#RTx7{`q*mtPi6q%jD1mHuqX+Nt?DBs3rshsA999fd^X`0sJB(w<<}A
zIK)#yEUP1*TmB(uMIB<e@6A6fYpix61!QR0s(yBPqR#0~X})^a+IOM<4%u*273ppk
z1<0nmD2TZ9tlr=`<-c1TrW9o!-B-aoD3}TjnJ=t@X)4epy{;9u9N8oK-Hb{yzV#OP
zcPK#!?o1NWJA42q_BBOyQ7+r3ylRU8!T<i2Ke{%}0wTY=)$eg6Xlnu!k|7MmyZahm
z%tlj|Jk=a;8N^VO*COcYVPZAGAr3hGS6C8nUfV=@^Klq>z`Tvn!-pPisa|=652mmo
z&0ej{V42e`kAvW*Q(m<jGg~B-yQ=a&=yY;Jt;VP{n)QphA?~$aQ#`YZw4l7<j;Lt*
zy(@ciIoecw_&oQC-N#99E>o5K_ow~!HMp|&$LJFgzQg%=5fT*Svcu5>30%UPPj8KV
zV=S3)kYX#bSy+fj3SbJK;}D1njkQjSz<6oyo`6$}#hUIT-Ui~=&0j4Lj~M+&Ztro;
zZldoYu5L*lm{e+0V6LLBp|vkzF8g}kSb7;L&vfkTJG3g*XG#%+h#76SLQta+(N+EZ
z(z0?7wQnZ(&SYxq<~KByQY9C3+BH7ym{Fi;+Isq&C+24%6Xqj+8Eno5vHPrs^cS3c
zb4+=@Y7v|_Xk7fV`2Gfu?~=SAr~~J6o;3U#p$9$PTebMw_~y+UNdki}JGId~PMtnO
z4ZQ89yMhi5^ke`e4;gB|t-Q@y@0#)96#-YKFDikiBoyj+-Q~qfogH*=&Q!6>p!<Z7
zG5ECapq|8OtN(=ZK&_q*yQ(G#s`h7slXMc8@|l*R#u#rFS-z|tP)yP-giabC$s*M0
zACRaYvKnR*w=O$*CQ=B0w1~c-zTW%yeE(qIuuc1>%Yv_!glj*3{ETfw-47j?$K4|b
zvjJ@DgncDYrFD{b!rNnxA7jE4X_Mq%$3Kb}fAvd*=^DuITr;V=Q2*mz3fy`jZXTEJ
zI3KwyC2Yk)LiXPi5gRB8Oh+O5q*cPXL5zlI(7&%3k`KF1NFUl|;%_A&#Wz!p#6BmM
zUc@HyVIC?KSaVSnal}NU13mAjx}@G%Qi9q$U@kQOx#yEg6xfx&_1*K+1*o>B-;e7B
z{sbG$!p|$s#9<?`v5udXd>{1U#fCF+<i0r_$+^ID`DXzeh;#mLM0Hi>qi)8h)>qV{
z2aeQ`4Er7#CX6DKQ?CaYBD0&D)ZrhBD$8#)fFqo*mw4N+8|=lV&M)W&Mi~@?+K5^J
z^Ml`A5D<o00SUk?zB)PImw9g|$3;moS5LS8H-Wrx$DmKICnjbd0`~o=!#B=gm#$6&
z3E&)%`4~{#V@wgE{Wv8=Un}qEQe>*Ymsxe~#y8rkFLcCFu|67qawdFOm=se}*xt(a
zwhRhB;R8PYK<lqB@4>Ngh#2VWTjbC)kC2xDPy4Uz36u9b?NxdI5v3_FFTW-aO)GB%
z<)cU_v78+SI<THbGD#FTRWrR*cT-{I_iu;5E{)!1)1%Y4hzVv2>I&KlF(e58_c=Ur
zXHf}*6#~IqmBh3(WNETGLsdV~iYSfTjA(rH4r6^OY7Y+x8x7Ne3XU-Cz5G8BkrNJV
zG>udT9Y=@r1!8Lh&*$e<<9r<o`rXP(s~Sf;&U<tFoPAS_Urdoepqa97w|&ss@7h-B
zhEP@Vz{$&3?LDDHu$4r4Q!V07Jh2+NDQyWkjUfVpM(?a-iC>l)PlyFSr66Aybz!!>
zBQ3!^5@3;TF_ZLGfp;)^JLUo-qfS8!;taob$P{=*ektecm*oF(M+XIXA!%<HO@U@_
zIa;y<Dd}IE)n@-Wk;CoIXT78#mf)Rv)5U?xq<sv7NSPZh_0I=hPmf3;GBT=ee#RQL
zI*M*dWrh+969otey3dndq*W^0OlZtD;$E7+D1k%!Dxp3!g(e@VT~NCvyHWA^bFsfq
zJp&oW<+$rXdsjaVCUE}5e@jgjT={)|kT0tR<U3$7x|*8)!Xz!{ZbD{^YSf@>VFhX#
z_1u*VSTfwNK#>S1EeV$S(`n^LXifflIVF9WmpzCS`<@l|QFlNsVQt%Nar>3h<HmJ5
zU$pp5U`A}lr1pzk(gp4b{Vpv@Eq95$@?aiU0_u<{BP+(MXb=O_UYu_wLtw8A#<Zc`
z$hSM@f63gJZ85%-8J{>t7AWlD4&W&|N~r=(&zYuyjaZ^4>*Ift;tofTDW@g3jwC%V
zfIOwPq`#*^0^&RN-#a5zVkM+kdC9>O2<Uc5z5Mm}fg%9y7Vl=7Cp}C6AINV&J6?$q
z$qA3BDH996!Y0O<V{=DVzA`JF(Z88oKYvQqOjezyQ-l-?cE{~MoC*M}P860Le0SW(
zUGrHz>ntWkZ`=Jv1pzi8P)4PfjAW(?h%*`8zlcBqZ%bOpcS2PXH9uz%SNiU9J4rcW
zOI6wG(fxes(+d^l<swNublM<OlQw|@mPZ|DLz@DM?E(pBs+lH0fw&{X+cun63{GEu
zEys-<h}wbaP<8|LU}o4qMcXBz7|!G@`S0F3DR>$Z@Z^fA>+&-Ou&KVew))&xwYK`I
z4b^)-V8x;ktxg|1g}om4LIWVD4QnzoSTyn%wD_Uv)4VSUH#x7pw9v;7ifmQlWGWb_
zM~n0iMTakGa84qrQwSH47R`HSt)mqHL_K*B*F_8S<2Hq_b!vhtLO)Sg`Lhl-wrY^d
zRulk=n9xTQpn+iQ^a_wtl27-nD*>lsfg+OW!^cX**I$$UkV8o~wq$5(eJ@wV@j#06
z1c`ar1Xf3&dC7>fvb?Pp{(rw)rJNc!MwegB<w$Nxfi`I<*bc(F0QDaAgeD0<_^L!&
z-|(cvd@8U4)30^!flfnJu&heSo_CbDfZGy<buRSQ8uD3ZP~B|IbwR+L>%KVR%dny3
zRS*(l>GbSf(HBcL3IuiZT_=z0NOuZYLzB-OPTlgW99XsA3Vj?p=?dyjk$8v}_R_Ka
zC&&GtYD#rPwb(C!KUio(H4^5&K>PsBszp(izQ20o`N7{G?;fA8vrgIhCbks#a<q84
z1kfX)D;#<^CS7&t@e5uDVQRb_@c@j<DxpYWtA@3E<TC`fWTod+@aME$qu1iUi9$Ni
zbmZY=^mCB(MX(hR?|O25RvcFvUn!o$kigF_ySQATx+?(JJgcRK4Sm$X`Okb5mBiGo
z{jL4<eLv!55j=w#K%f)oQOt06d%LlrAmw3BtLz0!{>0f}I&IN!JmNQ*#ElL3#BV0j
zY0xp7Ip|zq{B87+zL8Dv&f65uJ*fvt*ZJ<e>Xhq`*La-K|DK7`A%$K$RlPgniQIBM
zVaYrv@h0b=&G9hp&^6)-VJUn{{{D>zI(L_dp%5mDlW#e>w<E9?0q!Cjn|jO0$h}zi
zRqfSjrT)y5k{H$Im>}8oiF>PxwA(@{AoFyc89CMz^kwqux5HY0DyvvwPP`8p$UT|@
zCX>UvqZK%h<dso`FX}VE2*f?w`td@%jvtA2g8z8+tW|ma3H1I?Oox6<D+et5xXTor
z+b6nwxEP<?j`Fpx7&oGju@-k97dliSw6hloD}jV5YT$S{HS*x?2%8JG2X{NthIr~2
zK==&3RqL~nlg3_UhyTp+0hUC?IDX$Rv!CMye8ELRixcPrsbA=68#QG87z2X&Y2ryp
zWo*zKNj%o~-M(<#ep*Q4rgGCCe9xV2L;^&W7lGHhhxT1)Q`FzeTU7b8$+U<qGvRBb
z|LpV#8-72MAMAB--=eh}3!q6R%}E6KRZ?(>Kkn_L@L}9-cUDbY!AVo3IEV1Zw)o9*
z{1VFxW}$tYJfUPO4M(;sk-7<PssSl8B!>Kq-ckhkkegLn?Ow>MCcl?AtlQL!0`ih#
zs{ZpM^o-Ud?ZMF2H&HhGBrf@$KQUpLm#03RWO(We0P+R@Av`|+avQ&e$gd$k)TD*k
zRD7{{IF-$*B50`fc^g2N)XZT*L+(P{Ae~~Y1_w1jUSp&ZQ;|-J6v7u_CP3_U)BEvk
zuJ;!$YUO<1kIt=d=~T4~AiPcfV2p1l2*T%{*|Ya=yJ{fe2HY`1>XnYpH<cl$m8G?+
zr@v;mVw5RFC)d@27rVPJHc?uA9C0c}Q;i+V`_ub_P!1B3X-UaitUf+BX;O{l{M$sO
zJPv$OC30vZFROn?7qP1O5p-^~SAcw7t_jitb&6;B#1I9Ds#%kd49rG(w#6oZjhLO<
zBx_#^6u$BE_zf1U{E{Igi<!T(rY!?YaU(6*0l+S)&;WO7u-}qH046zZ*Aueh8BkZJ
z*&3P2;LWB+@v-)Had-Q0nsNt4IZ5}OH^-Gr{8zYz9R}xwat2u`z>(Cpy2h*EJZC@y
ztclD3dtSN&Oc>DG-~b<qw_mf+*6w2>my@UD4kA|@8W^AK_cUI&duonWOUxrRpK?J$
zPKYO-{5ie$Ea<9GbO-Cd-sB^c1=5{;`XiVQ$=3;&*6|R>Yy$Y-xeP%8+-Is?6Ue~i
zg|L*V+}p}+!~D5_uH%O6XGTO<y_i<hDU>l^_=m+XRptV2w=8!emXq`E!p6J2BR*rd
zphM1VX<}=E09dY+2co8=H*&8=d=E%WnxsLZ_kR3sKuyx&1m7<{7yWdVU6It?=cYm|
zOFOnp(&dw*cbQRK3xM8b^Haa&f(hXbNHUW^u+9{>0F#0GZv49^k{^`7m&Dww+)8kN
zZQ$*DM{hLC%l|fr|7)mqHw;@G@fSPZ^X&Lh#}+%^=m7hQkhEvcnwPQRUt?5#j5nPC
zFE`ANX$Ee<<ZcxeAbR|!sjASP4#;Nzszdhm_OwJfab!d;d1>oOS+Gj2<LUM<ov&mF
zD~g5(4X@=mi-WF7D_hr4M%pojRBMxhxS0Rm`&?$9HcCfQzYS2{n5u;E#vHI5tql&8
z$bb@uv%y{-u>Ck6=ka?z68(O*=X1T^Ku)5LAi+!r+&MdZz%Taf5+xx{uU3N{^xg?h
zH^3WEHCcR9!_3|)gg{|N$Y$%upAaY^iir`OpGsR1t`pvu|CPN}B+?%IZ(QLs)m-1M
zxLC%lZq1cD=(gu<XdrwpS~L(Y64p2Y*ox?#^#R~7v0|gwtr-5jCxjg0g(DP5tQ)A?
zKXSh>_r;O@U(;3^4%Gwo@7!68wXv1mSR!T3&SXX?lBE<v3?)Jl*<&ukAWJGFSt67|
zQRy#S*(3X&WrVV2-wpG6-%s!PcFw2soc%fHcSw9}JlrxwHX6^}@c2T6lC)5A-TKg+
zgWJ%YzDgaE2Owc(jU>4U@>J*3KyzY%kAkLaCoCA^=_;47*AwZ7gt9W3i0Rdvb2-`o
z)nH9Yp;0%C<#6f;?56DFT>@*UT%A)5d5Vr__(=xd4>Vrda&F6G#U1<rUn$W`+aN!H
z4umrVsb+mH>|X={yjvPmq7-QZAR{r2Z6vbW`cYZR=YzT<ztO6^lcKj8RqxsN@YG7-
z01_1WnjfejK?WprwmCCo;rJ{O8+ui~F|i?}se5AmS@J^qZe2~-4r2?bvBzXTgQ|k&
zu~0v2AZNNp$8(~nDh!$#F_!yW8XjC&x4>8*mdJAkGTIQj$RRdHhP7p>oEiHRx-Ug|
z5`6$V%)lb}s%gBhNM|qOT~*-ZiS0x|s9ypLEZ9V;g%%>-iG5@gIetC}<m4xpd^PyM
z&kP_?IFM_KVzZExap*XT0d<=h7$kNh*ziK$dO>pMboX_r7~rrWs2!=cO5FuY5yAvV
z(8^B&S-Qbk(EX4ds|d{p9~t^`>L>>Q0eHMot#x}RC&hf-*bBLPK1@e^8NiD(&&A~I
z9l7#`xZc#rI3jom6%SscRr<Z<1}cRHL0Q{B*=+E7O%~jh$rpFMt^AiQPeGTYcPv+&
z(Fbe!RF!Z4G4S>mjglMA4VU4$ae1FyIrewUVwj?`{#z0ltzh4k#oR7{Usm?A0!<=p
zo3BmC=~G*0PTUIQ#NfD<gL4C~mU=1ZiydYC<Nfui*mD)0*cB%xB#=*v33CoV=D$?^
z{_RdDW<R>mrNl>l5m}@5A^eB*Y3LA^6P#G5RQEv;(<u-dHSKW4;v(gZv!}|*zk$q+
zW^;PM5n?eN1!hl-hzPPwG=8LNuR7@aZ`xxbW6-@0S)B|F)?WK7a(IefwPu>~*Jva}
z?KLg=o9~`S;2Y#YsPMU`-&X*5XeN%CXnhI476QCd>b$q6TirI?=Sqkk+mzA1_l>Ew
zI-jr1aqJ(uUI<vV)pHb04o+D=Z}`(mdp*_SXYtiyc-HQ8Dyum7wV)&ugN(99L(&Qk
zmRCdc+(p6_A5G{i69Z!O#!(~;$t-+;9nw@$7!!8eI1`up_As@|=7WN@Pm|hx`2mz^
z7RMuNUM$K^Q!i)Iw9~x1W`AQ|Y**Dq#C%v?C7E;_<6b5byzx#Hu$tLT&74T|@0>8Z
zz0dUG#bd-xO+h=~A=U4y;<)?Q{m^#BB*kk1L0V}n7ux4b9NgWrGOY#aalpFZ2tNDm
z$z6DCWA7xp!9+?pmD-*1S;ibi|B^A+|MJpgT&|MIw<lfGnu>hqxzl^=Ma4MS>T_b!
zUBMV+T%GL*HIwy6;1}1d@+|?|{pQve6^QDk(8GOjP)9A$DQo;2wY)ri#}E-hFHgJs
zQ*@BHN=P+FTBED?qSnu55jJZX*Ue!`781}QN+4%A^pr2iQM5+CAKf%YG&MTp+HswL
zDhEo&D^^za!F)#AZ-IsFGvifg49>)HUY#BLd|Q5l;)YOmS<UbG=;>y&>Ah44RAN&D
z%W_}8Lf{$VXW_m*b)7TM6B=)x0z5Awp(DmnpPK**u_FDDkl&N_maI106t2^eNwf@G
zTwD9besbkJvrO>jN=q*J0h7H*(h_GtV9wV1b^xzj1o<NNUM(YRkE~|S>EU-wj>ho4
zt3$uB@xTtCa>BGb_f@2xGK5ExAOs1Ey#<VCZ6A2IY^wKf<WQ?A*Y|4B<{HgJ44?}J
zhzbQxC7hq=IYwu#>%c=;l%f<g<mB8CbnT0Q?}1QZLq%s6+C!Z-9LS6}2iAfmI&wj;
z>!}BqkY1@J_6E>w+eU7KxJ;F;1wcoUdBw3e>GZ*Uk)2~w0PLf+Gb&ezewf4L4m+dV
zq3M;CW4t+n9@Y8pPWUosFGQ7T5#IhcvttSMFW$2TJpNo}PlW23$x}VgMWb?z5t!w$
zZ`Op^vG(z*dFed=*1oyOp1S9l)Rs#AhW0O@)<4<zjvpK}?a^E^z>SNujO8#ETE4Lr
zFfr3NuroqEzQym)w0Ua5OHqUcZ+p8041gZ%6isCOcF;xQq#>yNARhSs{tymXaxvVq
zhO+zBr&;F^C<1!h4;Tn;zFcsq38S;}z$fzP768NQkB>m4LlL#OflzccQhxn1+g}AA
zF2GX1oAI%_Bl?y4!i!k}axOxV9>)!HI%he3wJ(`SQcoGX<C{)Bxt?bx(gB-1XvC+j
zxgg7R$BnLXh?oI<FL<S(V%CvpcR1$9_d|tw$;8`)JIyVijT<L{WITa*-$Pel9ylrk
zP47-kO~naB+)0<J3pGhGj+sQr+6M>x72N=+44(0#+PL4ME(;_yuyqgESva@(N>(~L
zcP-TqobjO|gbQ%T&@eKHX*JQpkh7WCJ{Y2re$>TW{^kC)n?gs%+GSV<HIINl+dCIu
z|0d=LWg8;ytIFAjF)lL?5iI~~BvnuA9gc;s@N@C&bOu~w{?rNVd=acMqn7?C_V<%k
z<+v{T^UVDH>S-}XGASD<o)KJ7wv<m5>~>7LRR4g7HW+CR1C*q)V`tvVWl(tF5_60p
zwN92?ssK^0BQTZ*7sfWp%@&d?C;HO&vWKe53pzH2O#wSl-7oUKx4k;q@YlDjX~wnx
z!V07wH5lNDtz8zcnM+G`k>}A<+Dg461l24&qO3usro@PX@kJlc2IP&0%xn4JctvA{
zvqu6Xc7|`5IS-3Ya^t^?Sy7-?SC&7g)9Hk4?5|qK?mm~MTM1_z8Ch0W%opj~pzbsS
z@%YYuoMX|JAbsHV$g44O?6B7w1Wuu~?ri*(qFJ{MxRaD-gmOPhv{iq<gh+YG7|DL)
zv>&n03V$}(>DXFt;)91kMfJh<52(=c530j9-vHoT+qvQbVs`H!b@Y!rqQYeH?={4D
zbLFe!>W+Na7#}0ebaKQBIU{M3LCL4|maDxJ)5}tf?h9$vyG63G{4Ck(Fmm>D?%pT&
zug7r*!aDSc&+~4ibvf~~>})uVgMWJrzP&BR_X$GvwHvX0(3KtK-%6LAdZCzizVdrd
zxRx1s#P|M`0oANBD{cj(&7_t668q|iiVlNVLD#n^kncA*AC0(NG0&|v5L!#!W<>gE
zV6J2|=@4mgNc&bn;~83%FKt)AT<wE04DZDYmylZb>ohN2ih9nti^1p{BU*$@FXT%w
zEJ5#g$c?$s%LxeQyi*A6{a<D*$r6w=6o8qVSNj;_pPo^8T(s*~NrVW3E9!;(E^v92
zeY$Lr<zeF6zlWRfbX){G=nLVYNYcZyhK8BYGm7xbZ`#M}y&_Pk+p{V`ie!Sj?xpy<
z1L#7s1KyZg`!bOOhbny$>-OzI(K^k$kAq(<O}gMH+T&aW*b>2CZly$pR)rHVoc|{+
zE(}Gv&FI_sZm}t*OUz8JRIMtWVb>rJ-5AGN*TBX8A$Mu1ch7AR|0ELgTAOdf$IH5p
ztqSsP7>4b)bI(oDLa)UIQs6v7TSDFmFI^lq<-hZhFI%ezB~H#C%=SLCNN>*^TS<NF
zM4H>sOEtik589?yRt9b_j;1*zG{h|clWF`&@5{e*g?Lz+p;rdpRVob$=5>4a|K@@!
zBwHBGkT}jfc&twaQHxLjLbpNYc?c{|4!@S*FKfVw>n?!(tzsjWGxKZVo(vPepe)VP
zHe<IS9`wf%ZE2ieQIuEQDUWL8dtCRL&VOk>ezv<hf7lGUPdD?qsplO2qwh=s`5AYp
zpErxD;ulzG6*q-lL?qEhS1}$JD#mYZE?wWvp?&3LqJ=c??6vUW01YK~5k;EkTPPWG
zlPKHrMSu}9F#Vu&R?4;L!ivlfx9$?So09G#1xlY5r`=5O^gHG8+ILNDPD63=YEu{*
z{Alr?t4KVfqTJ8)9O_-$tel|6qyCZeR_GC-euXI22b{x`<16c5`OwQpCOKG=9AW;G
zOzc?p*KAukPg!)sZQe+4;s1FmPXkf^M0?Qeu0LO36i;3PJS%1w#x3`6E!mXYM26vc
zb}#qx{K!=}b-*}3Mmmc*k@uzi^2b>rcizN*U2J8nLoZDzFO;4?p*^Ov?#wsDJK9Xo
zXKha)DGP%1BCfNZD`W2w(IF<tsnS9;C#P2}bZ@V+?){1HsL)Lzu}V?8bGky6g^XzT
z_ivk%Rj=TM-wbXQRe)X9U0j^j@1{@TQj@9<e3&r&W+-zq^Iu4UiFS*|1}BcEFda@U
zYS%tnc!cEeFFhF})NZyKux)xpLI>xQ_vIYDf}}mEEge&QQ>@nhSwIa3r`IJ>{D&u%
zzuXg}u-oD%iFYccjFNl)fR|+Nsh+4m&Jzz2j5w@zj=k9`(uZenk<Q$ze}+w45_rW@
z&+*sA&p%qI$wc~<`%LwZ=uZcI{>3Su3Ius7>rx%@_<HDH&+gubs}ZYV!MLLp2I0M%
zxVG%QA1=c`a}mr-fM%A{$)BSyw3FCA#nhE-xdE-(|Bym!N^8!x<NAE&wBDTMVZM9c
z2IwM2IF;;N9YCX%Pg&Ukbt{Yv^SDGbb@38ny|i87px1A*5bdjWD?e3ncfa=hMYYv1
z-4N6T29~Vmk$6zD7=uD~&ols<ysOt8L_2Rm?gaFojjoC|)2UA?<RM#$-s-OA3jz7c
z@WxF6ay5f7Dq+qyZ`T=EsRN}vTc~7WA2i8>f;}?CvDts;+#f>9li9h5$2$j%I)r-2
zI<xCMk}PeOeRE{POHN}ns=dbG(GDpIxE=xtoY2K%HCSi&@7%)~k|>5ywNCaf8sx(F
z0H7W@YVu(q%i!|B08{f?B!Jkq6C2^rvLh~OzyvhU{>&V*)7~@;_-MF(vkWCEUUEao
zx~q5>2p5CzS-O{Z<hPkV99(ShqfkNs?DFk{6jB4Ef7Ea=#s+o&)24tm<s>Im$F1dB
zg`(Ejw*o0o;(%DhxON;r?wl+5{gq!olfG))vq(Kubuu)WCp@MSkd109Uu2O@1xYQ&
z%ehaXk6Inr+>Ry*x~{_VuM5AdTSF%+43A-%p>?h?)0RG$i_k$5l-X!=Xr!s+dsyxG
z+rJ(h2y<yLZJpc;mofL@<l!Rw+%xCXV+0Ahry9$Ez5U}mT%UE0azl3<{Y#h^J>!zW
z+VK9}fj!iwUw&9TkD;y67aINvL;d~38j4&Bq*$`J{CI|5p$9q{_rNwR>(kcJeW^*%
ztO`qfLTNYAyG+m1i`(pH+D=!rY>#NC#8pgsZS)Oc{i8{yg;vXssOIwfa7P{eID)Cp
ziIn0TAfLJ2ga=8WpV*|eR=;jNG?J$y_UYR-%QL52A|K^CJ#>oJN>jx?c3gh;s^;%t
zv?d?i2DAt52v-BAhFPFGAu`8#F@%~jO%8`rj7IQh>H<R5l7No$w&?>ok!G-;=WSJ#
zA>5@8Qa_=%z5L4Vf{MolpC_Z%!^=R?O(jx25TS;e+8N~r2PxcuCQ=e^B$TF0JDLg<
zc54yzx~G+OHll$}iTAP=9+J?=Qi6%cF;A(Wz70r&&8B=Xoau7pTIOVP+A|dHXXgha
ztMIMA9GzU2(T6-&sp<&~fky#s=EGeZIb|1?puP=RcJ;J7RRRdDc3Pbz90a27H|n#m
zuu?r1xo>8zeSP0r!cu?xT4UR&ExBO*%L15h3Jt^_@LM_yRLCg4nO$P>EaOKM{b4=~
zhvnM|O8oN;P4A!(TNMdViR_fA+s-<vYsd7+7+O>&E{9~b*PGrj=fc+m`vtH9+0pla
zXPLM3?bXxHX7KPDLC~|#j427~Vx|RWu3*|2!<7*{C?`IaY@VWA`8@3J_C3)aoBBol
z=NuQcm#&K?8R!`8`pd{=FaBs>*|R^F@$nxA&GI$jXjNYXbE~F_D00+x*8bwq#=)xL
zdy{Clr<9T0nA?bz>pm9WHsapoBp2V&a+o(8!`*iJqQK@^$=!W1r}JMWZ~H6}9IO?J
gXch+kKUD{SdZQQjK94-O@xNjt15^Ftv*hsq0jdB)pa1{>

literal 0
HcmV?d00001

diff --git a/src/front/cobalt.css b/src/front/cobalt.css
index 585fb4e..267092c 100644
--- a/src/front/cobalt.css
+++ b/src/front/cobalt.css
@@ -192,7 +192,7 @@ input[type="text"],
     z-index: -1;
     position: absolute;
     border: var(--accent-highlight) solid 0.15rem;
-    border-radius: 8px/9px;
+    border-radius: 22px;
 }
 .desktop button:hover,
 .desktop .switch:hover,
@@ -441,11 +441,17 @@ button:active,
     -webkit-backdrop-filter: blur(7px);
 }
 .popup.small {
-    width: 20%;
+    width: 21rem;
     box-shadow: 0px 0px 60px 0px var(--accent-hover);
-    padding: 1.7rem;
+    padding: 18px;
     transform: translate(-50%,-50%)scale(.95);
     pointer-events: all;
+    border-radius: 22px;
+}
+.popup.small .popup-content-inner {
+    display: flex;
+    flex-direction: column;
+    gap: 18px;
 }
 .popup.small.visible {
     transform: translate(-50%, -50%);
@@ -462,12 +468,30 @@ button:active,
 .popup.small .popup-title {
     margin-bottom: 0.6rem;
 }
-.popup.small .explanation {
-    margin-bottom: 0.9rem;
-}
 .popup.small .close-error.switch {
     background: var(--accent)!important;
     color: var(--background);
+    height: 2.5rem;
+}
+#popup-error,
+#popup-download {
+    display: flex;
+    flex-direction: column;
+    padding-top: 4rem;
+}
+#popup-error {
+    justify-content: center;
+    align-items: center;
+}
+.popout-meowbalt {
+    position: absolute;
+    top: -7rem;
+    user-select: none;
+    -webkit-user-select: none;
+    pointer-events: none;
+    height: 180px;
+    width: 180px;
+    aspect-ratio: 1/1;
 }
 .popup.scrollable {
     height: 95%;
@@ -531,7 +555,8 @@ button:active,
     -webkit-user-select: text;
 }
 .desc-error {
-    padding-bottom: 1.5rem;
+    padding-bottom: 0rem;
+    text-align: center;
 }
 .popup-title {
     font-size: 1.5rem;
@@ -957,44 +982,43 @@ button:active,
 .changelog-img,
 .changelog-banner,
 .close-error,
-.changelog-tag-version,
 #download-switcher .switch,
 #popup-about .switch,
 .popup-tabs .switch,
 .text-to-copy,
 .text-to-copy.text-backdrop,
 #filename-preview {
-    border-radius: 6px / 7px;
+    border-radius: 8px / 9px;
 }
 [type=checkbox] {
     border-radius: 3px / 4px;
 }
 .popup,
 .scrollable .popup-content {
-    border-radius: 8px;
+    border-radius: 12px;
 }
 .popup-header .glass-bkg {
-    border-top-left-radius: 8px 9px;
-    border-top-right-radius: 8px 9px;
+    border-top-left-radius: 11px 12px;
+    border-top-right-radius: 11px 12px;
     border-bottom: var(--accent-highlight) solid 0.1rem;
     top: -1px;
 }
 .popup-tabs .glass-bkg {
-    border-bottom-left-radius: 8px 9px;
-    border-bottom-right-radius: 8px 9px;
+    border-bottom-left-radius: 11px 12px;
+    border-bottom-right-radius: 11px 12px;
     border-top: var(--accent-highlight) solid 0.1rem;
     bottom: -1px;
 }
-.switches :first-child {
-    border-top-left-radius: 6px 7px;
-    border-bottom-left-radius: 6px 7px;
+.switches .switch:first-child {
+    border-top-left-radius: 8px 9px;
+    border-bottom-left-radius: 8px 9px;
 }
-.switches :last-child {
-    border-top-right-radius: 6px 7px;
-    border-bottom-right-radius: 6px 7px;
+.switches .switch:last-child {
+    border-top-right-radius: 8px 9px;
+    border-bottom-right-radius: 8px 9px;
 }
 .text-backdrop {
-    border-radius: 3px / 4px;
+    border-radius: 4px / 5px;
 }
 .collapse-list:first-child,
 .collapse-list:first-child .collapse-header {
@@ -1017,17 +1041,11 @@ button:active,
 }
 /* adapt the page according to screen size */
 @media screen and (max-width: 1550px) {
-    .popup.small {
-        width: 25%
-    }
     .popup {
         width: 40%;
     }
 }
 @media screen and (max-width: 1440px) {
-    .popup.small {
-        width: 30%
-    }
     .popup {
         width: 45%;
     }
@@ -1038,17 +1056,11 @@ button:active,
     }
 }
 @media screen and (max-width: 1200px) {
-    .popup.small {
-        width: 35%
-    }
     .popup {
         width: 55%;
     }
 }
 @media screen and (max-width: 1025px) {
-    .popup.small {
-        width: 40%
-    }
     .popup {
         width: 60%;
     }
@@ -1058,6 +1070,16 @@ button:active,
         width: 75%;
     }
 }
+@media screen and (max-width: 680px) {
+    .popup {
+        width: 90%;
+    }
+}
+@media screen and (max-width: 660px) {
+    #cobalt-main-box {
+        width: calc(100% - (0.7rem * 2));
+    }
+}
 /* mobile page */
 @media screen and (max-width: 499px) {
     .tab {
@@ -1070,10 +1092,7 @@ button:active,
         width: calc(100% - 1.3rem);
     }
 }
-@media screen and (max-width: 660px) {
-    #cobalt-main-box {
-        width: calc(100% - (0.7rem * 2));
-    }
+@media screen and (max-width: 535px) {
     #cobalt-main-box #bottom {
         flex-direction: row-reverse;
     }
@@ -1128,7 +1147,7 @@ button:active,
         transform: unset;
     }
     .popup.small {
-        width: calc(100% - 1.7rem * 2);
+        width: calc(100% - 18px * 2);
         height: auto;
         top: unset;
         bottom: 0;
@@ -1143,8 +1162,8 @@ button:active,
         border-top: var(--accent-highlight) solid 0.15rem;
     }
     .popup.small.visible {
-        transform: none;
-        transition: transform 210ms cubic-bezier(0.062, 0.82, 0.165, 1), opacity 130ms ease-in-out;
+        transform: translateY(0rem);
+        transition: transform 250ms cubic-bezier(0.075, 0.82, 0.165, 1), opacity 130ms ease-in-out;
     }
     .popup.small .popup-header {
         background: none;
diff --git a/src/front/cobalt.js b/src/front/cobalt.js
index cdf143b..3748ded 100644
--- a/src/front/cobalt.js
+++ b/src/front/cobalt.js
@@ -600,15 +600,11 @@ window.onload = () => {
             if (setUn !== null) {
                 if (setUn) {
                     sSet("migrated", "true")
-                    eid("desc-migration").innerHTML += `<br><br>${loc.DataTransferSuccess}`
-                } else {
-                    eid("desc-migration").innerHTML += `<br><br>${loc.DataTransferError}`
                 }
             }
         }
         loadSettings();
         detectColorScheme();
-        popup("migration", 1);
     }
     window.history.replaceState(null, '', window.location.pathname);
 
diff --git a/src/localization/languages/en.json b/src/localization/languages/en.json
index 7bc6900..f2390af 100644
--- a/src/localization/languages/en.json
+++ b/src/localization/languages/en.json
@@ -16,7 +16,6 @@
         "AccessibilityOpenDonate": "open donation popup",
         "TitlePopupAbout": "what's cobalt?",
         "TitlePopupSettings": "settings",
-        "TitlePopupError": "uh-oh...",
         "TitlePopupChangelog": "what's new?",
         "TitlePopupDonate": "support cobalt",
         "TitlePopupDownload": "how to save?",
diff --git a/src/localization/languages/ru.json b/src/localization/languages/ru.json
index 7af3413..cb65777 100644
--- a/src/localization/languages/ru.json
+++ b/src/localization/languages/ru.json
@@ -16,7 +16,6 @@
         "AccessibilityOpenDonate": "сделать пожертвование",
         "TitlePopupAbout": "что за кобальт?",
         "TitlePopupSettings": "настройки",
-        "TitlePopupError": "опаньки...",
         "TitlePopupChangelog": "что нового?",
         "TitlePopupDonate": "поддержи кобальт",
         "TitlePopupDownload": "как сохранить?",
diff --git a/src/modules/pageRender/elements.js b/src/modules/pageRender/elements.js
index 53ad3c4..7912939 100644
--- a/src/modules/pageRender/elements.js
+++ b/src/modules/pageRender/elements.js
@@ -69,15 +69,17 @@ export function popup(obj) {
     }
     return `
     ${obj.standalone ? `<div id="popup-${obj.name}" class="popup center${!obj.buttonOnly ? " box" : ''}${classes.length > 0 ? ' ' + classes.join(' ') : ''}">` : ''}
-        <div class="popup-header">
-            <div class="popup-header-contents">
-                ${obj.buttonOnly ? obj.header.emoji : ``}
-                ${obj.header.aboveTitle ? `<a class="popup-above-title" target="_blank" href="${obj.header.aboveTitle.url}">${obj.header.aboveTitle.text}</a>` : ''}
-                ${obj.header.title ? `<div class="popup-title">${obj.header.title}</div>` : ''}
-                ${obj.header.subtitle ? `<div id="popup-subtitle">${obj.header.subtitle}</div>` : ''}
-            </div>
-            ${!obj.buttonOnly ? `<div class="glass-bkg alone"></div>` : ''}
-        </div>
+        ${obj.buttonOnly ? obj.header.emoji : ``}
+        ${obj.name === "error" ? `` :
+            `<div class="popup-header">
+                <div class="popup-header-contents">
+                    ${obj.header.aboveTitle ? `<a class="popup-above-title" target="_blank" href="${obj.header.aboveTitle.url}">${obj.header.aboveTitle.text}</a>` : ''}
+                    ${obj.header.title ? `<div class="popup-title">${obj.header.title}</div>` : ''}
+                    ${obj.header.subtitle ? `<div id="popup-subtitle">${obj.header.subtitle}</div>` : ''}
+                </div>
+                ${!obj.buttonOnly ? `<div class="glass-bkg alone"></div>` : ''}
+            </div>`
+        }
         <div class="popup-content popup-content-inner">
             ${body}${obj.buttonOnly ? `<button class="close-error switch" onclick="popup('${obj.name}', 0)">${obj.buttonText}</button>` : ''}
         </div>
diff --git a/src/modules/pageRender/page.js b/src/modules/pageRender/page.js
index 77b87f2..72474d2 100644
--- a/src/modules/pageRender/page.js
+++ b/src/modules/pageRender/page.js
@@ -68,10 +68,12 @@ export default function(obj) {
         <link rel="apple-touch-icon" sizes="180x180" href="icons/apple-touch-icon.png">
 
         <link rel="manifest" href="manifest.webmanifest">
-        <link rel="preload" href="fonts/notosansmono.css" as="style">
         <link rel="stylesheet" href="fonts/notosansmono.css">
         <link rel="stylesheet" href="cobalt.css">
 
+        <link rel="preload" href="fonts/notosansmono.css" as="style">
+        <link rel="preload" href="assets/meowbalt/error.png" as="image">
+        <link rel="preload" href="assets/meowbalt/question.png" as="image">
     </head>
     <body id="cobalt-body" ${platform === "d" ? 'class="desktop"' : ''}>
         <noscript>
@@ -531,7 +533,9 @@ export default function(obj) {
                 classes: ["small"],
                 header: {
                     closeAria: t('AccessibilityGoBack'),
-                    emoji: emoji("🐱", 78, 1, 1),
+                    emoji: `<img class="popout-meowbalt" `
+                              + `draggable="false" loading="lazy"`
+                              + `alt="😿" src="assets/meowbalt/question.png">`,
                     title: t('TitlePopupDownload')
                 },
                 body: switcher({
@@ -551,28 +555,14 @@ export default function(obj) {
                 buttonOnly: true,
                 classes: ["small"],
                 header: {
-                    title: t('TitlePopupError'),
-                    emoji: emoji("😿", 78, 1, 1),
+                    emoji: `<img class="popout-meowbalt" `
+                              + `draggable="false" loading="lazy"`
+                              + `alt="😿" src="assets/meowbalt/error.png">`,
                 },
                 body: `<div id="desc-error" class="desc-padding subtext desc-error"></div>`,
                 buttonText: t('ErrorPopupCloseButton')
             })}
         </div>
-        <div id="popup-migration-container" class="popup-from-bottom">
-            ${popup({
-                name: "migration",
-                standalone: true,
-                buttonOnly: true,
-                classes: ["small"],
-                header: {
-                    title: t('NewDomainWelcomeTitle'),
-                    emoji: emoji("😸", 78, 1, 1),
-                },
-                body: `<div id="desc-migration" class="desc-padding subtext desc-error">${t('NewDomainWelcome')}</div>`,
-                buttonText: t('ErrorPopupCloseButton')
-            })}
-            <div id="popup-backdrop-message" onclick="popup('message', 0)"></div>
-        </div>
         <div id="popup-backdrop" onclick="hideAllPopups()"></div>
         <div id="home" style="visibility:hidden">
             ${urgentNotice({

From 1364872b946b104e8ef399d2618fbc65022c14af Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Wed, 6 Mar 2024 13:28:11 +0000
Subject: [PATCH 44/51] page: add missing space between meowbalt attributes

---
 src/modules/pageRender/page.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/modules/pageRender/page.js b/src/modules/pageRender/page.js
index 72474d2..31d34b5 100644
--- a/src/modules/pageRender/page.js
+++ b/src/modules/pageRender/page.js
@@ -534,7 +534,7 @@ export default function(obj) {
                 header: {
                     closeAria: t('AccessibilityGoBack'),
                     emoji: `<img class="popout-meowbalt" `
-                              + `draggable="false" loading="lazy"`
+                              + `draggable="false" loading="lazy" `
                               + `alt="😿" src="assets/meowbalt/question.png">`,
                     title: t('TitlePopupDownload')
                 },
@@ -556,7 +556,7 @@ export default function(obj) {
                 classes: ["small"],
                 header: {
                     emoji: `<img class="popout-meowbalt" `
-                              + `draggable="false" loading="lazy"`
+                              + `draggable="false" loading="lazy" `
                               + `alt="😿" src="assets/meowbalt/error.png">`,
                 },
                 body: `<div id="desc-error" class="desc-padding subtext desc-error"></div>`,

From 9d0f033b8a1458ef0ee0804f0ab150b074a151f9 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Wed, 6 Mar 2024 20:10:41 +0600
Subject: [PATCH 45/51] loc: update ios saving tutorial and donation text

updated shortcuts, added save to files option
---
 src/config.json                    | 3 ++-
 src/localization/languages/en.json | 4 ++--
 src/localization/manager.js        | 1 +
 3 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/src/config.json b/src/config.json
index ae0c16f..f1aa4a2 100644
--- a/src/config.json
+++ b/src/config.json
@@ -54,7 +54,8 @@
         }
     },
     "links": {
-        "saveToGalleryShortcut": "https://www.icloud.com/shortcuts/b401917928fd407daf1db0fd07eb7e78",
+        "saveToGalleryShortcut": "https://www.icloud.com/shortcuts/14e9aebf04b24156acc34ceccf7e6fcd",
+        "saveToFilesShortcut": "https://www.icloud.com/shortcuts/2134cd9d4d6b41448b2201f933542b2e",
         "statusPage": "https://status.cobalt.tools/",
         "troubleshootingGuide": "https://github.com/wukko/cobalt/blob/current/docs/troubleshooting.md"
     },
diff --git a/src/localization/languages/en.json b/src/localization/languages/en.json
index f2390af..0d3a265 100644
--- a/src/localization/languages/en.json
+++ b/src/localization/languages/en.json
@@ -45,7 +45,7 @@
         "AccessibilityEnableDownloadPopup": "ask what to do with downloads",
         "SettingsQualityDescription": "if selected quality isn't available, closest one is used instead.",
         "NoScriptMessage": "cobalt uses javascript for api requests and interactive interface. you have to allow javascript to use this site. there are no pesty scripts, pinky promise.",
-        "DownloadPopupDescriptionIOS": "easiest way to save videos on ios:\n1. add <a class=\"text-backdrop link\" href=\"{saveToGalleryShortcut}\" target=\"_blank\">this siri shortcut</a>.\n2. press \"share\" above and select \"save to photos\" in appeared share sheet.\nif asked, review the permission request, and press \"always allow\".\n\nalternative method:\npress and hold the download button, hide the video preview, and select \"download linked file\" to download.\nthen, open safari downloads, select the file you downloaded, open share menu, and finally press \"save video\".",
+        "DownloadPopupDescriptionIOS": "how to save to photos:\n1. add <a class=\"text-backdrop link\" href=\"{saveToGalleryShortcut}\" target=\"_blank\">save to photos shortcut</a>.\n2. press \"share\" button above.\n3. select \"save to photos\" in the share sheet.\n\nhow to save to files:\n1. add <a class=\"text-backdrop link\" href=\"{saveToFilesShortcut}\" target=\"_blank\">save to files shortcut</a>.\n2. press \"share\" button above.\n3. select \"save to files\" in the share sheet.\n4. select a folder to save the file to and press \"open\".\n\nboth shortcuts can only be used from the cobalt web app.",
         "DownloadPopupDescription": "download button opens a new tab with requested file. you can disable this popup in settings.",
         "ClickToCopy": "press to copy",
         "Download": "download",
@@ -90,7 +90,7 @@
         "ChangelogPressToHide": "collapse",
         "Donate": "donate",
         "DonateSub": "help it stay online",
-        "DonateExplanation": "cobalt doesn't shove ads in your face and doesn't sell your personal data, and thus is <span class=\"text-backdrop\">completely free to use for everyone</span>. but development and maintenance of a media-heavy service used by over 350k people is quite costly. both in terms of time and money. as a student, it's rather difficult for me to handle such expenses on my own.\n\nif cobalt has helped you in the past and you want to keep it growing and evolving, you can do so by making a donation!\n\nby donating you're helping everyone who uses cobalt: teachers, students, musicians, content creators, artists, lecturers, and many, many more!\n\nin past few months donations have let me:\n*; increase stability and uptime to nearly 100%.\n*; speed up ALL downloads, especially heavier ones.\n*; open cobalt api for free public use.\n*; withstand several huge user influxes with 0 downtime.\n*; move to a reliable and trustworthy cloud infrastructure provider.\n*; separate frontend and api for resilience and future decentralization.\n\n<span class=\"text-backdrop\">every cent matters and is extremely appreciated</span>, you can truly make a difference!",
+        "DonateExplanation": "cobalt doesn't shove ads in your face and doesn't sell your personal data, meaning that it's <span class=\"text-backdrop\">completely free to use</span> for everyone. but development and maintenance of a media-heavy service used by over 750k people is quite costly. both in terms of time and money.\n\nif cobalt helped you in the past and you want to keep it growing and evolving, you can return the favor by making a donation!\n\nyour donation will help all cobalt users: educators, students, content creators, artists, musicians, and many, many more!\n\nin past, donations have let cobalt:\n*; increase stability and uptime to nearly 100%.\n*; speed up ALL downloads, especially heavier ones.\n*; open the api for free public use.\n*; withstand several huge user influxes with 0 downtime.\n*; add resource-intensive features (such as gif conversion).\n*; continue improving our infrastructure.\n*; keep developers happy.\n\n<span class=\"text-backdrop\">every cent matters and is extremely appreciated</span>, you can truly make a difference!\n\nif you can't donate, share cobalt with a friend! we don't get ads anywhere, so cobalt is spread by word of mouth.\nsharing is the easiest way to help achieve the goal of better internet for everyone.",
         "DonateVia": "donate via",
         "DonateHireMe": "...or you can <a class=\"text-backdrop link\" href=\"{s}\" target=\"_blank\">hire me</a> :)",
         "SettingsVideoMute": "mute audio",
diff --git a/src/localization/manager.js b/src/localization/manager.js
index 2b251fe..c22f950 100644
--- a/src/localization/manager.js
+++ b/src/localization/manager.js
@@ -19,6 +19,7 @@ export function replaceBase(s) {
     return s
             .replace(/\n/g, '<br>')
             .replace(/{saveToGalleryShortcut}/g, links.saveToGalleryShortcut)
+            .replace(/{saveToFilesShortcut}/g, links.saveToFilesShortcut)
             .replace(/{repo}/g, repo)
             .replace(/{statusPage}/g, links.statusPage)
             .replace(/\*;/g, "&bull;");

From 3b7e9fa0550bf3e4f5169a5d93df27eee76a1b73 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Wed, 6 Mar 2024 20:11:11 +0600
Subject: [PATCH 46/51] front: put notification dot in a span instead of div

---
 src/front/cobalt.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/front/cobalt.js b/src/front/cobalt.js
index 3748ded..4efedcd 100644
--- a/src/front/cobalt.js
+++ b/src/front/cobalt.js
@@ -8,7 +8,7 @@ const isFirefox = ua.match("firefox/");
 const isOldFirefox = ua.match("firefox/") && ua.split("firefox/")[1].split('.')[0] < 103;
 
 const regex = new RegExp(/https:\/\/(www\.)?[-a-zA-Z0-9@:%._\+~#=]{1,256}\.[a-zA-Z0-9()]{1,6}\b([-a-zA-Z0-9()!@:%_\+.~#?&\/\/=]*)/);
-const notification = `<div class="notification-dot"></div>`;
+const notification = `<span class="notification-dot"></span>`;
 
 const switchers = {
     "theme": ["auto", "light", "dark"],

From c53bfca67e0dbb9b3d3c81027e5efd32f630ffaf Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Wed, 6 Mar 2024 20:26:01 +0600
Subject: [PATCH 47/51] loc: update ru loc and add even more clarity to en
 version

---
 src/localization/languages/en.json | 2 +-
 src/localization/languages/ru.json | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/localization/languages/en.json b/src/localization/languages/en.json
index 0d3a265..f5043fc 100644
--- a/src/localization/languages/en.json
+++ b/src/localization/languages/en.json
@@ -45,7 +45,7 @@
         "AccessibilityEnableDownloadPopup": "ask what to do with downloads",
         "SettingsQualityDescription": "if selected quality isn't available, closest one is used instead.",
         "NoScriptMessage": "cobalt uses javascript for api requests and interactive interface. you have to allow javascript to use this site. there are no pesty scripts, pinky promise.",
-        "DownloadPopupDescriptionIOS": "how to save to photos:\n1. add <a class=\"text-backdrop link\" href=\"{saveToGalleryShortcut}\" target=\"_blank\">save to photos shortcut</a>.\n2. press \"share\" button above.\n3. select \"save to photos\" in the share sheet.\n\nhow to save to files:\n1. add <a class=\"text-backdrop link\" href=\"{saveToFilesShortcut}\" target=\"_blank\">save to files shortcut</a>.\n2. press \"share\" button above.\n3. select \"save to files\" in the share sheet.\n4. select a folder to save the file to and press \"open\".\n\nboth shortcuts can only be used from the cobalt web app.",
+        "DownloadPopupDescriptionIOS": "how to save to photos:\n1. add <a class=\"text-backdrop link\" href=\"{saveToGalleryShortcut}\" target=\"_blank\">save to photos shortcut</a>.\n2. press \"share\" button above this text.\n3. select \"save to photos\" in the share sheet.\n\nhow to save to files:\n1. add <a class=\"text-backdrop link\" href=\"{saveToFilesShortcut}\" target=\"_blank\">save to files shortcut</a>.\n2. press \"share\" button above this text.\n3. select \"save to files\" in the share sheet.\n4. select a folder to save the file to and press \"open\".\n\nboth shortcuts can only be used from the cobalt web app.",
         "DownloadPopupDescription": "download button opens a new tab with requested file. you can disable this popup in settings.",
         "ClickToCopy": "press to copy",
         "Download": "download",
diff --git a/src/localization/languages/ru.json b/src/localization/languages/ru.json
index cb65777..7a5dc3d 100644
--- a/src/localization/languages/ru.json
+++ b/src/localization/languages/ru.json
@@ -45,7 +45,7 @@
         "AccessibilityEnableDownloadPopup": "спрашивать, что делать с загрузками",
         "SettingsQualityDescription": "если выбранное качество недоступно, то выбирается ближайшее к нему.",
         "NoScriptMessage": "кобальт использует javascript для обработки ссылок и интерактивного интерфейса. ты должен разрешить использование javascript, чтобы пользоваться сайтом. тут нет никаких зловредных скриптов, обещаю.",
-        "DownloadPopupDescriptionIOS": "наиболее простой метод скачивания видео на ios:\n1. добавь <a class=\"text-backdrop link\" href=\"{saveToGalleryShortcut}\" target=\"_blank\">этот сценарий siri</a>.\n2. нажми \"поделиться\" выше и выбери \"save to photos\" в открывшемся окне.\nесли появляется окно с запросом разрешения, то прочитай его, потом нажми \"всегда разрешать\".\n\nальтернативный метод:\nзажми кнопку \"скачать\", затем скрой превью и выбери \"загрузить файл по ссылке\" в появившемся окне.\nпотом открой загрузки в safari, выбери скачанный файл, нажми иконку \"поделиться\", и, наконец, нажми \"сохранить видео\".",
+        "DownloadPopupDescriptionIOS": "как сохранить в фото:\n1. добавь этот сценарий siri: <a class=\"text-backdrop link\" href=\"{saveToGalleryShortcut}\" target=\"_blank\">save to photos</a>.\n2. нажми \"поделиться\" выше этого текста.\n3. выбери \"save to photos\" в открывшемся окне.\n\nкак сохранить в файлы:\n1. добавь этот сценарий siri: <a class=\"text-backdrop link\" href=\"{saveToGalleryShortcut}\" target=\"_blank\">save to files</a>.\n2. нажми \"поделиться\" выше этого текста.\n3. выбери \"save to files\" в открывшемся окне.\n4. выбери папку для сохранения файла и нажми \"открыть\".\n\nоба сценария работают только вместе с веб-приложением кобальта.",
         "DownloadPopupDescription": "кнопка скачивания открывает новое окно с файлом. ты можешь отключить выбор метода скачивания файла в настройках.",
         "ClickToCopy": "нажми, чтобы скопировать",
         "Download": "скачать",
@@ -91,7 +91,7 @@
         "ChangelogPressToHide": "скрыть",
         "Donate": "донаты",
         "DonateSub": "ты можешь помочь!",
-        "DonateExplanation": "кобальт не пихает рекламу тебе в лицо и не продаёт твои личные данные, а значит работает <span class=\"text-backdrop\">совершенно бесплатно для всех</span>. но разработка и поддержка медиа сервиса, которым пользуются более 350 тысяч людей, обходится довольно затратно. мне, как студенту, оплачивать такое в одиночку довольно трудно.\n\nесли кобальт тебе помог и ты хочешь, чтобы он продолжал работать и развиваться, то это можно сделать через донаты!\n\nделая донат ты помогаешь всем, кто пользуется кобальтом: преподавателям, студентам, музыкантам, художникам, контент-мейкерам и многим-многим другим!\n\nза последние несколько месяцев благодаря донатам я смог:\n*; повысить стабильность и аптайм почти до 100%.\n*; ускорить ВСЕ загрузки, особенно наиболее тяжёлые.\n*; открыть api кобальта для свободного публичного использования.\n*; выдержать несколько огромных наплывов пользователей без перебоев.\n*; перейти к надёжному поставщику облачной инфры.\n*; разделить фронтенд и api для обеспечения отказоустойчивости и децентрализации в будущем.\n\n<span class=\"text-backdrop\">каждый донат невероятно ценится</span> и помогает кобальту развиваться!",
+        "DonateExplanation": "кобальт не пихает рекламу тебе в лицо и не продаёт твои личные данные, а значит работает <span class=\"text-backdrop\">совершенно бесплатно</span> для всех. но разработка и поддержка медиа сервиса, которым пользуются более 750 тысяч людей, обходится довольно затратно.\n\nесли кобальт тебе помог и ты хочешь, чтобы он продолжал расти и развиваться, то это можно сделать через донаты!\n\nтвой донат поможет всем, кто пользуется кобальтом: преподавателям, студентам, музыкантам, художникам, контент-мейкерам и многим-многим другим!\n\nв прошлом донаты помогли кобальту:\n*; повысить стабильность и аптайм почти до 100%.\n*; ускорить ВСЕ загрузки, особенно наиболее тяжёлые.\n*; открыть api для бесплатного использования.\n*; выдержать несколько огромных наплывов пользователей без перебоев.\n*; добавить ресурсоемкие фичи (например, конвертацию в gif).\n*; продолжать улучшать нашу инфраструктуру.\n*; радовать разработчиков.\n\n<span class=\"text-backdrop\">каждый донат невероятно ценится</span> и помогает кобальту развиваться!\n\nесли ты не можешь отправить донат, то поделись кобальтом с другом! мы нигде не размещаем рекламу, поэтому кобальт распространяется из уст в уста.\nподелиться - самый простой способ помочь достичь цели лучшего интернета для всех.",
         "DonateVia": "открыть",
         "DonateHireMe": "...или же ты можешь <a class=\"text-backdrop link\" href=\"{s}\" target=\"_blank\">пригласить меня на работу</a> :)",
         "SettingsVideoMute": "убрать аудио",

From f85ef100ef1f7a0bd9beb15a677d1a94548f80ba Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Wed, 6 Mar 2024 20:54:40 +0600
Subject: [PATCH 48/51] loc: updated privacy policy to include info about
 encryption

- fixed grammar in russian donate message
- added 7.11 update message
---
 src/localization/languages/en.json | 6 +++---
 src/localization/languages/ru.json | 8 ++++----
 src/modules/pageRender/page.js     | 4 ++--
 3 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/src/localization/languages/en.json b/src/localization/languages/en.json
index f5043fc..587b7ca 100644
--- a/src/localization/languages/en.json
+++ b/src/localization/languages/en.json
@@ -102,7 +102,7 @@
         "ServicesNote": "this list is not final and keeps expanding over time, make sure to check it once in a while!",
         "FollowSupport": "keep in touch with cobalt for news, support, and more:",
         "SourceCode": "explore source code, report issues, star or fork the repo:",
-        "PrivacyPolicy": "cobalt's privacy policy is simple: no data about you is ever collected or stored. zero, zilch, nada, nothing.\nwhat you download is solely your business, not mine or anyone else's.\n\nif your download requires live render, some non-backtraceable data is temporarily stored in server's RAM. it's necessary for this feature to function.\n\nin this case info about requested content is stored for <span class=\"text-backdrop\">90 seconds</span> and then permanently removed.\nno one (even me) has access to this data. official cobalt codebase doesn't provide a way to read it outside of processing functions.\n\nyou can check cobalt's <a class=\"text-backdrop link\" href=\"{repo}\" target=\"_blank\">source code</a> yourself and see that everything is as stated.",
+        "PrivacyPolicy": "cobalt's privacy policy is simple: no data about you is ever collected or stored. zero, zilch, nada, nothing.\nwhat you download is solely your business, not mine or anyone else's.\n\nif your download requires rendering, then data about requested content is encrypted and temporarily stored in server's RAM. it's necessary for this feature to function.\n\nencrypted data is stored for <span class=\"text-backdrop\">90 seconds</span> and then permanently removed.\n\nstored data is only possible to decrypt with unique encryption keys from your download link. furthermore, the official cobalt codebase doesn't provide a way to read temporarily stored data outside of processing functions.\n\nyou can check cobalt's <a class=\"text-backdrop link\" href=\"{repo}\" target=\"_blank\">source code</a> yourself and see that everything is as stated.",
         "ErrorYTUnavailable": "this youtube video is unavailable, it could be region or age restricted. try another one!",
         "ErrorYTTryOtherCodec": "i couldn't find anything to download with your settings. try another codec or quality!\n\nsometimes youtube api acts unexpectedly. try again or try another settings.",
         "SettingsCodecSubtitle": "youtube codec",
@@ -154,8 +154,8 @@
         "DonateImageDescription": "cat sleeping on a laptop keyboard and typing letters repeatedly",
         "SettingsTwitterGif": "convert gifs to .gif",
         "SettingsTwitterGifDescription": "converting looping videos to .gif reduces quality and majorly increases file size. if you want best efficiency, keep this setting off.",
-        "UpdateTwitterGif": "twitter gifs and pinterest",
         "ErrorTweetProtected": "this tweet is from a private account, so i can't see it. try another one!",
-        "ErrorTweetNSFW": "this tweet contains sensitive content, so i can't see it. try another one!"
+        "ErrorTweetNSFW": "this tweet contains sensitive content, so i can't see it. try another one!",
+        "UpdateEncryption": "encryption and new services"
     }
 }
diff --git a/src/localization/languages/ru.json b/src/localization/languages/ru.json
index 7a5dc3d..57f07f0 100644
--- a/src/localization/languages/ru.json
+++ b/src/localization/languages/ru.json
@@ -91,7 +91,7 @@
         "ChangelogPressToHide": "скрыть",
         "Donate": "донаты",
         "DonateSub": "ты можешь помочь!",
-        "DonateExplanation": "кобальт не пихает рекламу тебе в лицо и не продаёт твои личные данные, а значит работает <span class=\"text-backdrop\">совершенно бесплатно</span> для всех. но разработка и поддержка медиа сервиса, которым пользуются более 750 тысяч людей, обходится довольно затратно.\n\nесли кобальт тебе помог и ты хочешь, чтобы он продолжал расти и развиваться, то это можно сделать через донаты!\n\nтвой донат поможет всем, кто пользуется кобальтом: преподавателям, студентам, музыкантам, художникам, контент-мейкерам и многим-многим другим!\n\nв прошлом донаты помогли кобальту:\n*; повысить стабильность и аптайм почти до 100%.\n*; ускорить ВСЕ загрузки, особенно наиболее тяжёлые.\n*; открыть api для бесплатного использования.\n*; выдержать несколько огромных наплывов пользователей без перебоев.\n*; добавить ресурсоемкие фичи (например, конвертацию в gif).\n*; продолжать улучшать нашу инфраструктуру.\n*; радовать разработчиков.\n\n<span class=\"text-backdrop\">каждый донат невероятно ценится</span> и помогает кобальту развиваться!\n\nесли ты не можешь отправить донат, то поделись кобальтом с другом! мы нигде не размещаем рекламу, поэтому кобальт распространяется из уст в уста.\nподелиться - самый простой способ помочь достичь цели лучшего интернета для всех.",
+        "DonateExplanation": "кобальт не пихает рекламу тебе в лицо и не продаёт твои личные данные, а значит работает <span class=\"text-backdrop\">совершенно бесплатно</span> для всех. но разработка и поддержка медиа сервиса, которым пользуются более 750 тысяч людей, обходится довольно затратно.\n\nесли кобальт тебе помог и ты хочешь, чтобы он продолжал расти и развиваться, то это можно сделать через донаты!\n\nтвой донат поможет всем, кто пользуется кобальтом: преподавателям, студентам, музыкантам, художникам, контент-мейкерам и многим-многим другим!\n\nв прошлом донаты помогли кобальту:\n*; повысить стабильность и аптайм почти до 100%.\n*; ускорить ВСЕ загрузки, особенно наиболее тяжёлые.\n*; открыть api для бесплатного использования.\n*; выдержать несколько огромных наплывов пользователей без перебоев.\n*; добавить ресурсоемкие фичи (например конвертацию в gif).\n*; продолжать улучшать нашу инфраструктуру.\n*; радовать разработчиков.\n\n<span class=\"text-backdrop\">каждый донат невероятно ценится</span> и помогает кобальту развиваться!\n\nесли ты не можешь отправить донат, то поделись кобальтом с другом! мы нигде не размещаем рекламу, поэтому кобальт распространяется из уст в уста.\nподелиться - самый простой способ помочь достичь цели лучшего интернета для всех.",
         "DonateVia": "открыть",
         "DonateHireMe": "...или же ты можешь <a class=\"text-backdrop link\" href=\"{s}\" target=\"_blank\">пригласить меня на работу</a> :)",
         "SettingsVideoMute": "убрать аудио",
@@ -103,7 +103,7 @@
         "ServicesNote": "этот список далеко не финальный и постоянно пополняется, заглядывай сюда почаще!",
         "FollowSupport": "подписывайся на соц.сети кобальта для новостей и поддержки:",
         "SourceCode": "шарься в исходнике, пиши о проблемах, или же форкай репозиторий:",
-        "PrivacyPolicy": "политика конфиденциальности кобальта довольно проста: никакие данные о тебе никогда не собираются и не хранятся. нуль, ноль, нада, ничего.\nто, что ты скачиваешь, - твоё личное дело, а не чьё-либо ещё.\n\nесли твоей загрузке требуется лайв рендер, то некоторые неотслеживаемые данные временно держатся в ОЗУ сервера. это необходимо для работы данной функции.\n\nв этом случае данные о запрошенном контенте хранятся в течение <span class=\"text-backdrop\">90 секунд</span>. по истечении этого времени всё стирается. ни у кого (даже у меня) нет доступа к временно хранящимся данным, так как официальная кодовая база кобальта не предусматривает возможности их чтения вне функций обработки.\n\nты всегда можешь посмотреть <a class=\"text-backdrop link\" href=\"{repo}\" target=\"_blank\">исходный код кобальта</a> и убедиться, что всё так, как заявлено.",
+        "PrivacyPolicy": "политика конфиденциальности кобальта довольно проста: никакие данные о тебе никогда не собираются и не хранятся. нуль, ноль, нада, ничего.\nто, что ты скачиваешь, - твоё личное дело, а не чьё-либо ещё.\n\nесли твоей загрузке требуется рендер, то зашифрованные данные о ней временно хранятся в ОЗУ сервера. это необходимо для работы данной функции.\n\nзашифрованные данные хранятся в течение <span class=\"text-backdrop\">90 секунд</span> и затем безвозвратно удаляются.\n\ncохранённые данные можно расшифровать только с помощью уникальных ключей шифрования из твоей ссылки на скачивание. кроме того, официальная кодовая база кобальта не предусматривает возможности чтения эти данные вне функций обработки.\n\nты всегда можешь посмотреть <a class=\"text-backdrop link\" href=\"{repo}\" target=\"_blank\">исходный код кобальта</a> и убедиться, что всё так, как заявлено.",
         "ErrorYTUnavailable": "это видео недоступно, возможно оно ограничено по региону или доступу. попробуй другое!",
         "ErrorYTTryOtherCodec": "я не нашёл того, что мог бы скачать с твоими настройками. попробуй другой кодек или качество!",
         "SettingsCodecSubtitle": "кодек для видео с youtube",
@@ -156,8 +156,8 @@
         "DonateImageDescription": "кошка спит на клавиатуре ноутбука и многократно печатает буквы",
         "SettingsTwitterGif": "конвертировать гифки в .gif",
         "SettingsTwitterGifDescription": "конвертирование зацикленного видео в .gif снижает качество и значительно увеличивает размер файла. если важна максимальная эффективность, то не используй эту функцию.",
-        "UpdateTwitterGif": "гифки с твиттера и одноклассники",
         "ErrorTweetProtected": "этот твит из закрытого аккаунта, поэтому я не могу его увидеть. попробуй другой!",
-        "ErrorTweetNSFW": "этот твит содержит деликатный контент, поэтому я не могу его увидеть. попробуй другой!"
+        "ErrorTweetNSFW": "этот твит содержит деликатный контент, поэтому я не могу его увидеть. попробуй другой!",
+        "UpdateEncryption": "шифрование и новые сервисы"
     }
 }
diff --git a/src/modules/pageRender/page.js b/src/modules/pageRender/page.js
index 31d34b5..7462d5b 100644
--- a/src/modules/pageRender/page.js
+++ b/src/modules/pageRender/page.js
@@ -566,8 +566,8 @@ export default function(obj) {
         <div id="popup-backdrop" onclick="hideAllPopups()"></div>
         <div id="home" style="visibility:hidden">
             ${urgentNotice({
-                emoji: "🎬",
-                text: t("UpdateTwitterGif"),
+                emoji: "🔒",
+                text: t("UpdateEncryption"),
                 visible: true,
                 action: "popup('about', 1, 'changelog')"
             })}

From f34f6d131c37eab35d3737cf165adb950d4b123c Mon Sep 17 00:00:00 2001
From: dumbmoron <log@riseup.net>
Date: Wed, 6 Mar 2024 17:09:19 +0000
Subject: [PATCH 49/51] docs/api: remove information about /api/stream and add
 explanatory text

---
 docs/api.md | 13 +++++--------
 1 file changed, 5 insertions(+), 8 deletions(-)

diff --git a/docs/api.md b/docs/api.md
index 6d8cc69..6b3b9aa 100644
--- a/docs/api.md
+++ b/docs/api.md
@@ -54,15 +54,12 @@ item type: `object`
 | `thumb` | `string` | item thumbnail that's displayed in the picker           | used only for `video` type.            |
 
 ## GET: `/api/stream`
-cobalt's live render (or stream) endpoint. used for sending various media content over to the user.  
+cobalt's live render (or stream) endpoint. usually, you will receive a url to this endpoint
+from a successful call to `/api/json`. however, the parameters passed to it are **opaque**
+and **unmodifiable** from your (the api client's) perspective, and can change between versions.
 
-### request query variables
-| key  | variables        | description                                                                                                                    |
-|:-----|:-----------------|:-------------------------------------------------------------------------------------------------------------------------------|
-| `p`  | `1`              | used for probing whether user is rate limited.                                                                                 |
-| `t`  | stream token     | unique stream id. used for retrieving cached stream info data.                                                                 |
-| `h`  | hmac             | hashed combination of: (hashed) ip address, stream token, expiry timestamp, and service name. used for verification of stream. |
-| `e`  | expiry timestamp |                                                                                                                                |
+therefore you don't need to worry about what they mean - but if you really want to know, you can
+[read the source code](../src/modules/stream/manage.js).
 
 ## GET: `/api/serverInfo`
 returns current basic server info.  

From 2cb99880d62cca4ac6e804ac12f35a1b51c3ee55 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Thu, 7 Mar 2024 00:27:17 +0600
Subject: [PATCH 50/51] twitter: handle no media properly

---
 src/modules/processing/services/twitter.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/modules/processing/services/twitter.js b/src/modules/processing/services/twitter.js
index 7e01fab..94b55eb 100644
--- a/src/modules/processing/services/twitter.js
+++ b/src/modules/processing/services/twitter.js
@@ -104,7 +104,7 @@ export default async function({ id, index, toGif }) {
     const baseTweet = tweet.data.tweetResult.result.legacy,
           repostedTweet = baseTweet.retweeted_status_result?.result.legacy.extended_entities;
 
-    let media = (repostedTweet?.media || baseTweet.extended_entities.media);
+    let media = (repostedTweet?.media || baseTweet?.extended_entities?.media);
     media = media?.filter(m => m.video_info?.variants?.length);
 
     // check if there's a video at given index (/video/<index>)

From 234f05ca9d426ad632867fac9fbfeb34ddee0252 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Thu, 7 Mar 2024 00:32:29 +0600
Subject: [PATCH 51/51] changelog: add 7.11 changelog and banner

---
 src/front/cobalt.js                        |   2 +-
 src/front/updateBanners/meowth7eleven.webp | Bin 0 -> 39572 bytes
 src/modules/changelog/changelog.json       |  15 +++++++++++++--
 3 files changed, 14 insertions(+), 3 deletions(-)
 create mode 100644 src/front/updateBanners/meowth7eleven.webp

diff --git a/src/front/cobalt.js b/src/front/cobalt.js
index 4efedcd..6d24247 100644
--- a/src/front/cobalt.js
+++ b/src/front/cobalt.js
@@ -1,4 +1,4 @@
-const version = 41;
+const version = 42;
 
 const ua = navigator.userAgent.toLowerCase();
 const isIOS = ua.match("iphone os");
diff --git a/src/front/updateBanners/meowth7eleven.webp b/src/front/updateBanners/meowth7eleven.webp
new file mode 100644
index 0000000000000000000000000000000000000000..f44722d82fcf791cd2f07e1576168970e06b8522
GIT binary patch
literal 39572
zcmV(#K;*wtNk&GDng9S-MM6+kP&il$000080000{0|0*l09H^qAXu6J05IJHodGIR
z1AqcPkwBYCC9SD5C{he+U=j&qZkD+?M~XGgJ1JoPACb`PW?dEd9xo??w*#o}toIM!
z7Df60_dNu;C&=HeX@ijuMdnxRKiB!V|F`>P@CW*5{Et;%@ZP2UR)2>7(d#q%&;2jk
z?{hCyf7Lx8Ki&20`apEo{_uX`duw3+`F~))pnL3XDTM!h@QeF5^uPUo#rBK;FOPp-
zKG5>@>KFeWKzG;Dd+8tWd6NIHsUN+6?$yrc^U0I{d8b;|=-nHkeBNuL?bsH_9C5py
zmu+TC^DfvnU#$_lo;2t5hHXL!Abwm?MHEpyu9Zf=+$+#(j}>$L=T0A*b_fMRUHu*S
z4GAu;y)rKPl2uUX7{)P-V)&%hUsv#^X3!|or#)(0LNF53JgS6ViwUZ#nxpkfKS29m
z&*C@>u;*)<e$te(n4XVmuF3Xii*teO4>}R}E){KK*2ah~LWqyeQPe9xCZ+~j7k39K
zEWVgBL-%{$vU8mLAA}LbOJG%rOIXoEP;kB)&Ro!>(q1zqFSGtJB2G>#jpG=yCFy<q
zuCe~F6j<L{f^zB9BaCTSW$-GG)N6J>eel4|NGE4P&e*|yID{UGar0UQ7XKH1XgF*C
zrzjUh<}5p%XbBTkSMe-<pw{^NtyC9Jo?4Uf^9Q&{29Kc{C&oVFj36N@UF6T&O&(2<
zj8y@@aN3kikbL(K&_MVRfZV5lZvW_br5EZolzk@P!~@QpJl;Zn;p6E5>;IMshU~~R
z^AIAGpZdI?mX#<V<^I()(@%_X#LEQz87LV65f5+;LLWpAlJ%}vKr$i*_FvUg8tuyo
zyYIPeX(`1(cek45(|6pq)H<0g%>ci_OnuAQ>n*}?{rExqup}@&c^(d72-0X8AIO-2
zWiH;Pp-R9NVf}4@O*`IGt;K}K#q{?<S_^1z+8gG4&GxXR{C4;~k*Mv#f9h_9>xJp}
z4=kbXWwtIpJDhCR%r~6(sJdUZ&7G6GU^%7wYIzzgCyIh7E0?pErS1*AC{Nu~gZhFz
zu~}}C*7fvQb?>=YXjc&*z}nWNL&9V3QjVE@n^F;5^KyFSm<(ZrIStHh1z#aqlBOa^
zrT_i>|BQ?k^$N0Ib3!e)Gj||)$H4bE8I3LM?BL2jGOQ`?9;5?$4qeY~2eVr-4i=X)
z?@c3|!L*-}t`;dx;tLqB_cNw2{bo!Gy)YouRCv+&>%jcZt-YuAu}EW&404L)0-St>
zk}}C<gS}tagKHy&@cf=(^bpg0k-{Vd4_PZn>5(|VWW)>DC*bjlhY|?dUpieOd}euj
z;4zSwvDSC;_-r>dIGT{<C|#r8TADlnGWiTHqvzHiH@K>N*Kxz&c%~aVfmJ&6Vc3ab
z07kQw`an7-Tr@KKx3@Y0R)~Q(hefT>`?v4$?4n9~mb*NJ<1-VRQ!PESC$3^SF^oNO
z9n`91HIxtfs*lN~{_*TX`eyKd57D>`vwh^_OoZB*d|aD637xaQhY~nQ{$<*Y&VbCA
zKauJXaCDpEHeHMyrCiz2`7er{Z|tFhz2zBjRxxD|ORNi~>L)zM6uS!+!au<i;R@kO
z(^k3b37<xgG=%Z~P{yhKfIYhU`oqGu@US-frovK|y`f^dOaDETqGlr7rrW4kR3CmO
zs<H5>4&JGZUQX&=bx5p@+tZM2*>R@Zx(KZAqDw>k28w^Fc!!Y@#O3PB_2uI?q*;>*
ze#L>xu$h6t3aKq+|Mfc$qAJ8OZj62#o7>kvKJ7SJp>&c~#w4*6{(zDkuXmwOU0pke
zxY{e1WLKMI6p3u|-8}-=qne3AyZLe~R9!v4b0|Oay{5hU(=3f}K8Cvpi*zGk4WjrH
z4A$0?dcAt+Y|v*c2v+VIe}OSS6bX`|coN!>r>3wSj-_*bR6aw3we%~_{=g7){^ICd
z(y-Y_be4Aj)I6jiR&1`0WSr8cpXv3tU(n?0IRl~)^-VQGYKNFdiB;<l7I-1Qoh)E)
zlGg0X%H3f0%MY##b4v8x{yrFI3?-}1j3RG9&XA>-5#_pi1P?JOJDHLrMXMCJBOtE7
zX6|XuUgan)7L>akahokn#DTk^%#ifWsm<OenLK+h0j8Vix4pI$^|?+CDhtrw6`?Si
zK*eaxUeBZ!lQlq-2~)u}FEKnxS42&mKVLRg(=)J8WLH3{?ux{3GCYyFmL}7Q=FYw+
z{l@ImMP@A%Q4Q?9`@AQEOUujLjgKwd4OmhpEx(vslkdpb$6V1I<?Y78ECu~oA;R=N
z;D`3H+<l}U2zq-l&p7QemFR(-fdry<GRo44F#z+2zTIPVIlVpmdRpu~eknM}>3s2Q
zncQ<KG^bQRe^inWW~=62iAf(u2z6>j;pe9d&zA<XLp1Z$2+7%lp`2b1;@k|vQNDd_
zHsmAtU1VD0NKeEM*FgM{vQwY;(_rFmCDA!TQTLUTt%_+MJ{?1{(v9w!NflhH3`^yv
z0^EH$D293z@gg~aBXow~5!FbdmvV0W5A_B!f*;ii73J{Rgyv{7J_i@eCgx4u-B_8b
zSJld@<}ZUutUl6z&`2<>H7RJZxdSW{Imc*&A6vJJAr!19!QFMhGqjys{7;;_Mk|~h
z&ONBg>?B3~u5&j7Htsi_Ndoxqc=C3qFVB3O*f70H<!S5XT7Q2jj0HRo?la;h)+0B(
zLV=z#F1nSBJN=>X>fQ$y?1(p!Vcrs{a<;+2;)bfFBmv9XfWHa&6qP^=m$>p>a-d3K
zVAuO1)6ckH0~$;|N;mPL5LGr=>AuHb(2h>AB1w^g+OkCk6Ey&7jX0yt%0ix7Wdk_Y
zEgB6wq#WjP@2*y?Pr(&sq<sYy&U?7f**AUjC0Dy4A}FVF#NTYUq|2qwIL)9rPG1Qo
zEhL)RsFe^`a)S%_X}mPU-61HH^LY^Ly&^CjKWeW?<E9qKii+~iwFI9sH;AY)IkGf!
zX|}3{ZTl~}QPyBmzNIOZ0U8tgM;IXX<EPe?#iub@lU&D(<=7q+oZes2SdDi+-1tkW
zCthR8hLoM3OJy;-x>iWy!!pqeR&&sXT!9y+GtQcMXkkjPUL6kiq5b7#!BE_|w9&Ml
zPrJFindLs_T{(hEjJHMk=~&7lJam91k5_ygre*d~@#N@hr#8-Q-y%NZ&MINZPVhfU
z#-3IYH8Y>5sHYp_iA~#^-uzojZu=$&l3{`!xGVzwo-T&He%s#eJ1GHl^I?gLw*?KT
zaP4@8mMYzDi3ve4Kd*1Y3cUFImqb8M+H2H2(X~`-pExU30R4%a9!_udpxjMab08iE
zJ9~cz!)xe8d;-<y{VaLdRRM7X_@{`bZ#W2bbgT<VnG*;-KCJks8JrSvl}-^RU1$FY
zt(quLC`lCE!ysVsu%%0-9<%^}WfhMhsi8>)<Fh5d*R~Hi$hTWjzohGR*rfLTFpdW-
zQ^P>7q(ZIiS={4dddOM@L)8SAqSa5|7~UpI#{E&bxz(H1OPFVGalb=(svXn%_9CwC
z;b}{lF{*p-$@!eYZij<naP5aR&8--sU69BAo@RVpg+mfTZWDhS9rTQffcA*jrkLw(
zB~SRlHT?1(03g8qo(e8>U2crlZ8F}<xAsEgy&fXeAzw^d%FjGkAQ8!e*yL;c6XECh
z{Z|ZDfzI3u2V;5r&ryf_MH1p1zz{JF+p++JTWPOLph51JOLKYH{Z5{%9&GD_&jg+c
zcj&Gp)EDhWKniLD;K8cLeaW#?20<9X`?;qRZWy<06o3)k`NkJxde=i09)FYkfXLpD
zjeXU}<EJtzq~tMGe2qJCsXtn8b6Fd_(6W(s9aCZe#3bCf9@mXEz+Lpv3(-vAOJ0xQ
z+1i!Wp4K3-z+p@L-d!0boGs!A2#kBQLk!v0AyKuUwyO30V0b-4CmIgS+D7#6$EYKz
zcwN|K)l&zJY9pu5WQWyGzp}m<fb&ogvB>Gi45QD^mJ#!D1t{@;d9f9D$d!gHU7vrI
z$A7+><~ceU{0JN~|0`6Qy5!e)WWS8I&lP^c$+Zroh-zTVtI1~+#ZbD}i4{Dn0~9{P
z21r|9$ey<0l~I8jH@4N%cOjcjt^V1Owga_S>*LNpnt&iT0<L=RIj5MA`U;7*=#r4P
z8ravRaJxT*Qh-XC))kbCFX_m9nGY9pv9}Fzq5D>^y*Uhk(QJKp=GBx@{@W?8GQ`lP
zNLoYO8|2Ocn`s}HHgrOBoD#8-8W;;5)s`9BpsVui`7Rt8SmJErjFxFp2Y*@<K37mM
zm~Wh;%hUrmD1~3olv{CeRiPqG^0gf6&CmdSq?jkGlSYDu-19f}=LNO-gygm+XZHwd
zJna3n>!W2FWZ!PgWP62!$<N|G=>5m;o|X+e`YXI`23*CqEjTYWM^--^W%(bcD@3Eo
z4T<f7mZQG#_yeKnue}%cvcq}et8aYWSvzh>tg#-0Pg|Fe7~0E$#9-$?DC8k=Q7T<|
z-q&nZrRGI;M-_w-l?g8!AZu^^SUu6rw!>W`$kWh_bXt5H2S4wl?|GY~8-iD5GuL`i
zYUjb8Dg5P}yhqPNwcpN<xh)Lx?XY_y`ICk^=Og0azZQm42ZQ}Q&=RN$b;M@tBKE%@
z`M6ScwTZ*wB0A*vF>^rtd8+tHwcnRp$jiK<1Gh^d^E^b@@v-an?>vN(G7R+iR7rcG
zAX2KCsYD=O%B5vAGBF?>u}FUc1E)EWkBex)u`|`RX00Bb#F!P0NiAcN{7r|%ykC23
zGNblWkGvpGR@qxM=~t&IWpDxFq$zsx+A9|R%aT?iZMJ|iztO%^e4J{=NA^JGOYYPe
zJ-zm8m^ty>`bQOAx4})lSMz)HlpP9|XR%gvPh$oI$>CEXN0nu5C%So+><Pu$;F&#w
z>xj7}5_|8}b_0a1f|oll+*|3V6$ISMU9dg~MfeAAf@;+k<s_N5&G*mBS^q9yNNQdp
z>D2@Y){wNO=USZ$<QT7G&1)b{V(WQ*m*dAlFn5`3OMf_2H`7-eOBe!R>{mu|`sX69
ziM-axfZV&aDmfW<X3L*dsB4M29}Mj$CKA-~+csd&jH$IT5}2JGhKzOhmMXg6h{DHK
zy_WP5UhX<NSAxofJ}`kQI|IY5eknQYNQJbVAYyl-Oln7C(|3U8?DEScgt$8~$cne3
zR?Hg^;lI(<FXH&J$S|m&WFl!6BC+-x0-lbaE;MhLZrk2A7A{wDCXs&N&1KEnv2SUH
zQw^oz8GJX}W)gnPBDW85{=MOWmyhRpqH|C@lp-0dMN&d|#5REwvQ;)7b*p67QR=q#
z4zG9whQC+gojBi2BX$itNQ_W$pNR+IV|8qr5yRkap^?ZqEDAa)$tI1;KXd6ck0mXD
zDRh23Am2T#GXkiHV6iS1_DdvVolQi~mRgmuVk#j*&Sa5y%*r#APrGoSbCFTrnDEM@
zHX`_-TR$<;E=zbUP#7By@Z%AoyN5~nfU1CR@@=Fnx_^}H(7m7W#ltRpUlU{+`r@{j
zdFW)dChr%qt3QVg@UyPh<-GM3DrKQGk|T-RI&q{W|FEBMzQBTv+7UElvSNJBax(SH
zTN`L8BWyMv)RhQvM8c*Y%;$)a$kMj(pXlw_JxKC^YxJR$FKLj>rjO!yCpYl;>ECJT
z?k|836-wOYl{xSq?HXl0#jk*y)p$DrlBt3+OOyW%Ja2gwR-C{#)t_Z4XeAh#r5MEg
zz6&t<l?_e2ML5PIRCpXIhm}Jg6HEuEidV~dO8g9BY%<%@o>{yiovLLZFfF7jR498n
zrRwn6S~DHiDFs;y6_(@9>L2RW^c~_UM}8oqe{@#WuZ_u4QsbnN^wm%j7r-t4D&cRx
zO(3i)OqXf4YEwbBbE(|W+%P~kYIK|I;V(pF1MwPUk90x*NMMkvB79si$?}593yOk0
z*>GoG5GCW?tKzN|E<}IcM(i%H_}I1{>7UfMK+`r4GVN4bVo)nE0XbqxY>Q{M)V*yr
z4}i#%HMeEbt{Dj$`~7e}-9Fr=tAO=44g>T9#iz+sDXU%yBWKjYK{%qDpS~2pSl*5~
zGxc4#06veN<3@W2-xZv^GGLJ1vJsetA|%i9>Im~L={~Um5Owi$zLsy0Kgvmfo)qMc
z<ZaKZP`4Ko^bL$t$!`Ej!1kWpR-)<K?DqZjN2PqCPV_t*60kOg<P&(Hq-wP;+K@@v
z>7}=+0HE`sOHGMJgDDCisx77$unuRJ6=@$D`c4?WxEm-{cb~o6-uQzp#+8D4gIzB8
zm|i6zM8lMLT)I`(-`Eqlr)R=vdq>8=Ah6-5FaY%Ss$g}#q!G6t5%SsCrCPyGx+X1)
z6);A&)<ujEVbKB6OykNtdn_PwhmTRnG1QZ2o&KcsMJFm`W2lXFc7fKrRq_)urWr^w
z6dQ%cQLXg={v}=!gK4IdhhTSF%Rowxx7nw<)Zb{rtWst_Q!MsFc9M=P7cvU`9;h|1
znsZA*Xtv}af-T5K$}E3y9;;FWg`XvJ82Tj|9)rV`%o73}KC@y~;b1k5xq9)wz%Ogc
zG#cJ_x5d;=!k)hx;^e2H&02nb%5kxj*1TC#yioNo_O#Oan7E0R05}F3d^pawer0eX
zO;&)6grjaSQM@Ty9Inr~+I*hW6J6`Lg*^UXZ*m{r3U=4#^SAfu^Cf?7)0{Bv;F(kD
zuVT7J2qJ5Hyuz$=VFg%oLHuBT_0EQ7yQJ}5!K(R%)2UQf!`NeWSq&t<bjeIh5?*Fy
zIJZp~D`vIBsKP3~7~dh;;+GL0iCf|Ux$dxvr>**(sShrx&BKAFDtKBjjVULyf%SAj
z4Yr+*n%l&K<cuH}W^ESIxKQ#WOuh#9X084MA0nNjs$#k^VbO+Ld?6+)j<TZ1^8+Qm
zGmL#+T<oHE@FToWxM`}Y0&#yMJZdKOgRa#^T6I*q^ulTLF~{(M((6&)a97*q`>X%_
zgW8+NY~TOwlh%CcL;WXdp$d}uzo8Vb>f1xTnp#2s7V<lXsCrdA49PD7hB1G_p^U~e
zCejV0mMOx}KLk~~2cEV9gIn3Cf^h11FD9v*7j+&}41gMtBDePFHvkA}V$Vw7^@_C6
zVf;<syiiSV!H21H6M}}VC|d~1`Ruz5x(%;I;?{T*xObGUI-Xo?T4k$IRM`A}500pB
zDaLJDKh6Mod%!*!Zb4NM&S+1k&)|_>>Dwpx)`sqgqf`)>qr2aiP_x{tYjS(2;N~yk
zKlt2wwcBmw(1Dv2B+D%YU-nU%Ro}{%b0b@vJb*c%C!ygN9MZjMcdAeShdTSnAUrEc
zmnFp8UF#bLuRw>{%B^6IIp19k5_vN_XwrZ9Fg)sX!?40xn2ac_E6jZGiX=mhbcPA{
zsMg)%)wt{PMp}S*JdJUdVrDcU^@A;c(%{n3{#WT>NkFIat9$YSX~^YEg;P3BhXuPF
zFMM)Ut6Eoq`Tt;{FxznrBJCdK<Lp@R=RmHg5+gbJ->NeZapNLpRbhQp-nYN+QTrR)
zoDXTeQbFTqui=vls)K@D3uV~W_9@*?EE3yq6=qvdv<__7Q}^=)w9PQ_G`t7*EL&0b
za6txFGm7tvJs(FgLc>1>kj4#uqB}|xA}R2J^|-k&-qnyBygE<<rtGqMe*HTuTO%%b
zR->@Jmhx({k)b9<lQayUAXV&mlI?Qu{z@36XNn5*@G@OPChi$={xdp4;%U!<Jo#MP
zXpisgq3S{bBG0ld1F7x7Y-}niy(6u8w#Q3g+FX@q!{0RPv0gJdn`=%Q(JtjPK6hN0
z^%OenoEkpwx76&T?nI=#80p2zKONM5<7U}bPJIVfv4yqL_^(POWVe~ctJ<CY<Hy%Q
z>iOTZ8X3`7Z4lF*wHdgmx)mY4Hdf}QNpzU6`l~vsiCTt&NB&d<)zqvL9h2~x$OU6v
zboM(WL5<CUHggweM~s6g`AAFXvNW3cqeIq)38t-UguC<96;xX%M+Sg;@T|?)M71^b
z3r2;2>G-;_Y*W$a*@2sNr#FZ7e8!cGW^RiWzY+?>g}jR)u?jQ~)eWvD6wyy4a}wc7
z(8Cf33;JeiO;gG#Gd~nZ$1ghVp+#BhPbF(680+CeM?-@7zF_5rH&3>ujaa&*=D1wE
zJeNMsrN0BhNYsw}xPg;FE}jHpIY;vWqRdN{J^r}WqYw9I>4_StcbG+Nyjk4)zZP<B
zzdcRiShN;|TRhz7ezd7UZr6rc|9v+L*vjC)+Vv&t$-m+1<aA|YJ+P42Y|EFVhqlH&
z5IwQ7a)v;B0LwIt(?7JMq|kR>%U#qW6iNIU&^)~rhY}&NQxhUsvY{CWI8|?UB{pmM
zHa638z#QIZ5W8o&d7i7(3WRQX5`+GI_frJuCB8}x+`(ssy02IFms-iY)W3zyDR(T8
ztzDqfn!-2;R902GDGgC0y*JMyqL0d#Wvy?2Cy<+r*w$YhZ1Q0SSN~Pzn*0vDCe3ng
z9xCK(Y=!xsUAmRnG+DrNXwM)4Il$jrL2shb1;E>bldNGecT^lU2rznpXB2YhIEpIK
z()eU@A*#$~pE#Ox;<wV|Q?#C#$}QAh=iZ`i)cyi#JJX2JU)?z-3j8!*Cc>Yk8eWhr
zp31JN{BGyV8B<8FOwV_)V0G?&ea8GB+v~bLa7uf7AB(Y12NyUucKAbdHIQc>p%2L8
zfjIJb4hHI6%zjg3^MzB`t$;F8l8{ok-fnf;i5oWZAb*Sk;XKORFk_&+x#$MY-ixzS
z`rjjji{%^p+1JX~t#vM3@y5t&)Os9&r9@2uiumwh5vFtZzcM1LWPRqGT2We#`Ay|h
zw3GQ_E`OS++pN{jG>T}Y^Dw&$A19JDvRzg2mW8mDjxiSKo(#2tDz0dIOUxJB$3oG^
z7pmC$#=4RsjRIBVEjCEjACTgLun<S^5wawgl{AJN6A+z8$T(r4972L)I~y$5+<)b@
zp`^pwq46C$meRaCDUQo=ogeHO#@N1fvrpQYL+crm^2YaWYXiu98+_s|FJoV*?VXmF
zEPk}`pN4H>9%knBOo}PaA@o$ta~$w)G49>9)EiMi7d$>x8skz;Td&j1Ap&ok3L%wt
z-CsV-<{sy3u*LZznA|xNl={tjG1*|YC33NNPe3tWndH2~#0d)Qlo+LH3|7l+0}Gb8
zB@7`3j`WSH{giyeA{3_NB1OdBzB`GU25}x*^7}@ok&ld}$Z^jQ#&O<3UEw!$0t~zl
zckrj?tZ$LlFD;yKn}9K57!oFg11vZ$R4=teO3p5Y)L3V9j9gxywiR`*DLc|{>6H1r
z)|qTiEq!KiIwYy9Mpc0ZSAD6e($YWQzCZbnAGw8C396C=xhPRUfUmt`Q6`qjeo+{u
zK?s!i>6VcE1l3j%MbrcS13JtVQb8ja(a?uJ>pxLxwNt5C9Bs1y=1x`@KuH3#{_f3B
z_g!A%Ppu#=p<%n_=CF4w6eqN{FK)UQB_<{Q1AobW=lGc%ykH`NAgrv^Be86@2)1NY
zi=H<~oFNts+)s|w)6e)U!={)&4(DJR{d$(C(-d2q<y8w_u*bRTfjrc2i~k+QeB$Pv
zUoRb;v6#<W8|-@V@=o&~Bm?Yi7EBEcuqR<C%L_N^SO|+5!&UQ}lV_?^+bP)92jhg^
z79q{6g*hf$MtRWuh_x*c{|8o-vzl~EZ*Lg$Z@jLQVU%pbrp|NpH9w_CXchxH8d!k&
z-co&b5#O<z+&@ore$T3I)0?lj_aBC&Fndnk%TBw83mvZ~tne!wgszPLX~!KO8&+9B
zw^PS}Rpv^{v=S$Kjt!vX{hsJtBAl$+?cF+|ZS*ay7xnDpaV`_xL8l=<cqbCG8b*Ly
z@?9X}o<-03@~U<w4hd%9v-)t_23DC?8A}3}>+Qc^vF{gMa@P3#%j4Z>IX*U~e5dx!
z0MwZ&paQHxN$qVsA#^do&(J@1(4f^7V|x!Kd$i!kA=fitl+2tNX%};VR`mZt*)_0v
zmO1p02u!C1gI5$+%l36tFM%wn8Xy)})RI7z)qq)Xy4Jg2QDRhQWk8!u?2KkIgoOHh
zcTT9W->lPih!Ok%B=Qej&VDrSV&Hfz(nahIq4`ugzJB%=QQy4&1Zh5v3RcfzN6CD-
zA$_54J`{X^rHqx-eya(!6%(EyS3idcr!wp~0@3PnfmSq(ta^*MVH=LUv1dqnT3bww
zg|wL!%~GH+_HqmhlRgxuW5kuO_F&6}zM~v_ort5ZH2x)8UdU!W`6jaH+2&5X;&&sX
zx86N@+3-l!ImJVb2@@xnKNoI!*Hb?HDWQz%NX=&jL@cO4R(Phk-UB@cbfpG_%oN{}
zFw&>io3%pOS(}=rv7;rF<AdlX1`nTE*f*AYFjqaJQUs6csK^@vi=z8NoVv5O*~XK%
zt>@(sqgsC=X3t|ma%Z9n>L5sp?c%vkVF*+5k1Vee?VB5ms;%ln1v7A1MJCp<^F3yk
zq}aAevbpw2gX(|){`R*`1I?C-bJYJtUNq@5+HZC6(Lba~VBMoeTN`H8(}^e){dqUf
zsjq{9X6&v!6Y|9hJ)V*ukZG%!mn)ctIl!FSxrIM{)d@Gi0003Q8ggWBQ4P+K;}845
zfWtsvfLD=dl8FlDTM7J4<XbqR>YZ-p<q|Tf!O#*1>^%=`m4tV7JaC)X^=HVW;=xdN
zg7mY>^2ZAyBJ9tW5YXj}b60LcZVf~?U+LGA>ajHpLjgjb7L~4kp<);13HV&Q%7N8H
zK8%C02N&Qf+wx}F_6ETJpbE80T6gO9e?P<@^`rm*Ag}<m091xzf4QH08ah155^NK6
z5dXjd^%3b#wV^taC`fL;aKh8oq;~Ya*AcKrGE5x<-Om8ye4n_^KfkOq0v(a{8N&4R
z)Pqj@H4;4zUFBwc%B5cqId7%^V{7S95Zq~C)*ibo*SfcK3_>Sh{eSA{00019APH}P
z0lPe@s>WLx>M&qHiw+X3>;Mq7+<YAo28O{Kvv;PY;B(NVvi<M4b3j*bSi8CX9;eIl
zoy9DwfMWKo=VRmzp)!S0Q_|J%*x<(JQbO4jRw!IZNk6<dOaNd@XywMRonQqP2mm<e
zK!7CW|BeTH)~jHj-UYaZuZ_k0n(Rw8Dwn&pKp4K>fFW^Y8<5kuQME?^AHRF!B@`kS
ziLFPkl%GCcUVI>qLWXh_5avrQ(1Tnfk{yhKwdypY+x2%iSSx(z_SB(RZd0QUsAVCv
zg<g$0LZQRoVUs<643hjZ=*X1|X*V*Si@cM0?fY*AO7E3R_@V2wg^~je(yXk%9jC0W
zAOXeF((b^?Y5y?}$OSkZrP8DP!(SUd%cWp|01sdRDuO)#u}FvS!r|g)VX~Ld&TLDj
zF@L(kA_9qk4J7OzT6d8IGjN@Ly8<SfAyWyiLE{ZfW@N4ZquG3OiolsJlvB0tze@nu
z)^uLb2TI%>uz^Xti;n<v0%7W{ggEolxPfUUgVOl|6IPzZ;!nHVLLdNc4F~`w&}Fq#
zo%un|*JFmrK(#G{{x0isu;Mv{B2kGsz*Y0v^?wlQIYJRSsoh^Rsz?Hc%=cJw+K4l3
zOE1PbgJ1ZqZ5Wh?N-UZifeQfhn*uR~OjN{Yw;tkFwxHN@PU+c*fvvIYhB>OJSP;c1
zD7J{u)UaMe(cs!99ZdHee!$t>=Q1MfO^so^+g<JZ;9#2j4*-v$41ln)SjO-G0;B*2
zqB5!;&;S4c5M2JlMetV`u|NO-006!alMDa&*L7HvCd?%6S@&0Sug~~<C+jI{tf`-a
zvOD{;q719&${HPx6-%__t<+t9yYLo`lkq3JhB80~{vQXB%fJstgweSXW)uh<tL%UP
z3Uf~U>hT3hASwu#fUe#r*(-<(hh5!(<x5pyv!ehcM6wJj<cExBwU9J}hwUZ3d@_t-
zy!rP!4hRX2j1nwFp8Hq_F`MuAl$r{va{1-cWZ_nPzt(T&4YWeVF)|h%DbOw|Kvk|Y
zC_=3Ii+#;j1r&9C8u?$I1nl^=qb+6ffY=5hFM5Ar|LWP;EW>p~+@FK=BVBT;ZOZ#N
z@Xz}ZfQ44fARLPcK9{C<p|Ybkt}#}Ab12(+$yv2n2~6^`EhbU{g^C%-^l*P#K)*V?
zAN994gxhe1=NGQ*UzAmJQ(G*=;@|{bFp~&hVbL|hvYs1qPUd$6(Mf@0*4fFwt^7w1
z16xV&N@)G2WyG4AZsoqCXsOop^zMv8oEk|}kZ2$~^}Zbjl-=x6)O=G$Rpwvw1|lGB
zgPoxQ*(^Hz^W|<>-Wd?qva*P{ku-h%X2Tw~dE!464nDqzwfK*>1K#uzprYN+mh&Cr
zwfE82yXQw<N{VFf>$L02zZ?huNkr^<_BS=xcevog(J~nR+IEdpE08(Iy6Hpu*{g7Q
z3;zOxIFA5nS2`Nqqb3fOeBn;mCx{CE1}w>udJ^>YjPD(3=`{c?>-Bw%wQ{I=*ALB`
z`kr*TDjF%#O}!%$>)KtP+xYqs@#&S)fB-Yx_01qH;EFNS$XwF3ohFkVR6&HTF!fhl
z@T|{DIoa>ySJp-m6GV5PE2saHETgH1hv7sw{Z&pfWeKCWEAyi;B_XTM@E6~=|L{C%
zNLfU!x>}V1NN_UwCm;TuQ#qNsd%X(r9ZVJMlJrAlWLTd?jAM!{N?vK+Spmny1DS}l
z3XEH6?oDM#it?$6k$*z2Y+DEPZ#`02Sbnau`w*jtU?Fy%qQtP7^~b2DITy6gZ*RP%
z=bO`l4eg8oO)TVJWG#Ew!rMJsWjK*2po4NjH5&D$0Twp2-T)&{{V3qGj-Em5B|F44
z1Lb+pt;}DF4SbIBbd&zy#@G1qRNmm}JFf_$2occs*=oVqW$t09@0(6&17%wG2VXOQ
z+XoK>-ex#*a^#F042DtP>x50N`bLijad%0E)r^9~=+qQYJc#bgBL(9R&XU6&R<_K%
zTt~TYDgT1&Y@k}gAv#Y+mH(yZ%Cleg=n+r$i@TNtMSsb0)7+3(?1wEE0LKw~XQ-xy
zwzg;Smw!6~51=4N8-sKnGc<PcT=e&udTv@g)}%-|k2@up>>xrZ3qSC_Nqd50HxR-s
z+Je@_h^d{VK~(WDWjrIFt?%LdY3`{ZmE`22(l!()6Z^hl@a7w&=(fIoQu(nzg0`i&
zRl9xo*&Kt5%?v;kr#&f)yojLKU8M{VNGE@Jo~dQ_cHS852?%YJY*%(eRS6DIB+lzW
ziagtlFmBltt7dW5>b4I1$icqZNWfEK;HT$zD#`<l{K*5q!sv+CH<U|B3ZFqL6L5u;
z!%ED%IoI8<z2i!h!%XzHs~pm#otLicFDKe*QBQec4t$n6*DPi&%(WD`IQ}3xjD4Sk
z#6p1%mHe`UBfKAT1voJV)NAdK>Nya5kDefOof*4w()0VSYKI0wum8)!Q&+dVyp<4d
ztqrM$wc~Yt8UxPF((@-7#Z)c7m(M2ZQ8+I~k3%h`%lS7JjD1tCxtSsz`sBF;2Vq1$
z+nYN>Q*~rD8ew|=IOP#V>gnnl37=N|3x0)p9%pc=eR~a>1_5Fa<>Pp3EL(P;UYp`4
zLxr}3?OtZ!x<y85HUzUh3SJ#w$&8Ylfx_t8Devdj_+_tnu)ia}x=R`VMUsUllg^L0
zpI5%QQrON0K*8v$_;JH2i}5FU=nqe{GXdkiVG77{(x52raMu{s@%r%4jcX|)mer0M
zW)!>mCX|AfI=da@6s5I)Gi-X4R972Ybs6^N<Yamn8Y~HrFS|6&Y<@Clkuv7K*Jwg0
zMoyGbqG9bBbGD1@iAXWo&il>91bm3ZE;d$PEz7dtJXlz}ywU^Dujx=ej=NAtRHMI;
z)wC=q5r3YX=ro3eNt-Nb%*J|lti)6(@9t1|@U-C7soQ`}?4S8zK%@axKF&W+pMd?a
z{a2?Yo${7tH!dWEvSuIb)7A{Ko)HeE147=<WtvPlzEeZ6z}UM7|9Rr~dDau<%T4AO
z5fdfnS-&{OOm0!P0y7DLDx;yIAtnfI%k$jS%$Tb*%Y=0vkJKtSKBwmXH5LUc50Uh^
zgqj~dAs(RN`f#J;`Tzp}?gRYvD&0<`;r(M0PW&iH4?tMy5#=D+Z#|9YH9TbpKm-X-
zGe(cu*o-f2zcA#(Od<l?+liWU%;l~*u=-rW=u4lFjOwFRsul_(@axWt1plkjr1(JZ
z=wPMQ%Q3hjfAYc6xY-TqnR9BpP-r{B`h#?d8ZKaV_NwRjBsR!+d`BMwCp6^gUVBHO
zd<3><vGlthR>Hs~)GlysHhuoaJ)b9}9bOEL_-CNs=o90Dn7A5_*sLoDOyBJLdX~v`
zzr|)9a*ytN7O3Z!bCjK5lqBo_7{~0PD$2#A54zY}n*IlFf0Rl(9GxD^_oj_R=A3z>
zx{UZ#;1H)NkF@rmH3B@Vd={>$IvKz0jH@=g6qYv;&byrS<)b*E6B+H{N8_XZYv~t&
zqga1dbCz9l_21=X1j1}MfA$*wrQ!<D6rU0=DIAh_5SR=jBMbIuX5b3L)>su*@msu;
z%Vq9^k-5s7!$<F!{qGvxwhky+23~F9l>jm<am<ltZKKP#blRQ^f*UPr>U}Nh#-O~^
z4Od&I)>MAk0Nw+;EGNJ*8JOBy=MK>=3g1+QTNj46zXp#VrT{;a*J#hhE1CvkK?x)C
zfO~DZD_tnDnoUBw@x`@o5}d<+_(#dJ3V)_#1(mHR;n)bb9q#Z=b4>kBx35{1HS^^_
zdaUY=Q2dRX%>Y0|SL>!*5$%Kf3A{_nR|o;QkW#so0dUCq>z7A-OZRvGep=p;FQ4Xo
zLG$G3GqdllOsP{tPG3k8>~?D2$-%^|Z$pQKoK1*&fw0JxgAgviDpIn?ZV%oh&J0~D
z-}O#Lf6tuHwdXqv?>`<gne59(J2m&xl|Du&D7Z1o(Slvzog&zSv-xHkHUiMXP;+!+
zkIcHrytg2L%&0Z=uaEPr9#|RJJ(1h<*ASQY`M1)Uj>2z4C<;(ftrjRZ9<L^t6KAuo
zgMZnL6N^nPAD>o2cUH7f&~G~enTg1TcLP}xDIxkMT0>aSJdNd~s;^|>R#)1)0d%Jp
zjltZmkX9>Iil~Xf*g*J7jHPZt^(1^nf@#3~COAsEH~^a~R+h%3NVnXsZIyvuyt<p!
z_FFjK13UZEMuowYYw|m1TqBnlQ>@(~=LUU*BO*)_m5=zJLRyl>Z+|34sF1>ld$|6P
z*F4k8F6wph5C{9TcMR)L`H>Xl3vGioFq-d?qv?5w+GjX^h=O7?KK`m^J<N-UNDmsu
z^|-IUJ+e9%62L@92N!10zq7ccES%VRB*TodY|Cg-%16>QshC~h$YIQp?CX3A6;c)(
z$|fo#JmKHnTNfqPo0Th$K}Oziy{1!!Z0DMX`Z%}Fsv|@A$?F7S!eUp(5bn%?ic6Dj
z9M;)OkYdcdDW4*xw2)?SUK|EF9NgxJ-Q`r=#OZBHA!R~uj<x}!*#kfXuLxS_%N5@U
z8rF@z&N$K&IN|>)2`4}=`@_X8wBcEF%dVi2Af;n!y&xJw3BCZSHID(XRM@PS<Yg~A
z#{YZt@WoeBqF;Sm&n^}q|H%4vC=<9w1aL!<#q{y-`EP~{6(SJ$fu-u`T>t7j|C!xR
zMQ7(g_p2fx+EIvg8Vd`iz3>D+<H!8b6zWJ1v->&k!7E?CEt2V8S&#im-2@e!_DHl%
ziO>6sU<DL`#yy^kX>h}iPLqU~1{~k3&kxQ!=ToWCQ&cmx5m~6xuw=|!AocbC0<}z<
zZNDU3fA0QduB>hCpTl`NfU-Hr{tz<|o(OQz02ee5T_p0SNo`>tSZ8#VCxo1ERyk`Z
zk?LfIfHT%^>2+<rFD@91+Yt2jBMaPy4#jG`(Da)~r*~rbM5JYqemb+@m%x(_LLQ{l
z+=4v;8f_RO?OpHUR(N}??%|VI(@$`SAiy!|k{P?1fbsOTviivd?=-o}%#82|OL2Ku
zrlwAFAPA@${=!m`15pc9Kd_Pesgz0MS!f|{+r@c?5|(xZLCa{dFAwp;3mMkIw4nRK
zDm3=9&6XlcM}|xwbAW|R6AJlp(#rv=Q8{fQSlyP8s!1$ibX66jjOj$O0|KSozvJ#*
z9xpmz#cs7rwxOKp()O;2?<@)58BT^!zTr7)<aDJ92pl$?M_PBHEoBzre)$F!cF21(
zB9g$%ITS(6)poF&T5Si1sSb$GkxXG>Ux2YGdtR$ju-OFIM?$g24<XICB!N1%2RCl`
z7=5SplH4lAYQG_fhXWsOO6>C*hPXr@&fs}VG02UuVBZ!T_9y;{84#5y9oFJ$5@)Oa
zK;kB?K>=0IIK>&uQq>uA?nU8$JUr-LA(GD-c?D^Fc;H~$YfFNjnc61<GWTfGnTrn#
z<$YwM)eYwR0`esDi8(Fnw>DlpI)_sr?S4wClazF+$4$gFX#J@W9MoOBYwI%YBrey+
z1l)LUGE^=04!MeZk0qA=#Gnzp^OC<gBX4JLbkU@^bj0U^YWHT1dTa2)S!qUN711Du
zTYnO3`>ELYCy<hiYsIobIqR4>{E2wTHW|WcJ<_+m{9#F9QS6M(FH*e<ZR<_&(wAi&
zfD1G9!9dE6-T53P%;(Hhzdi%L!A~znOS|3a=fVHo$kWi6Be%@Usz8vPFej+9`bV#9
zz0ov2*!StOscTC8wcDZV5%}^aaK8|Ml8tmyz*##oY1t)=3>aJ?KjQ6yWUO_n#Bovh
z&|*ibYqLG|9h-sK@RQi!G6H>eqYf1<IQDTPQ$2{wSrcs?_cxc;uVI~`2EC;YG?x*}
zS%tAUYZ}J`fJ=`<4@omIUMNXuFZ8((y&ntx$46O_9W8RCYPX{40F({noINd-boEgJ
zvKf>#@1I^CbGG5u&nXKJ;A@_Y+KhpL&)n*X?3=FJ#Hvbyxp~ig3aMKR4zG1kmY;DU
z9~eInSWKzUuFyl-wm#w+@JNv_jBc^Ftf4#_4LaDSzLm)LqdzD%&KkhxxwUX)?Mdns
z0MS76s?~rfwm^#amh9F%S$0KIjOU^a5*3TxH5S3M73E=#v<b7|xcBV}yPpm#j<<xY
zrPnUSm(A|^O#>6&JcFer>h0MjTgp_R7%$dn));T#WNeB4H{)z;rhX}K{JEHZX9yT{
zq<8#FVh+7+gSYz=gwW+8@TJ^_zx(jKhU_BD#{@q^39}0?9LnL0-sTgeIA9Ur5_GDd
z_I$V5T$uJ5cXcEt*RA+Whrz+rraDo^<}m?kR03sl2Q<r;(?i+$#!AM`4!lxde&2e^
zl_sQM4EeeU@axqu$if*Vaj<*hj#Z#0<PC@dPlS1yan}pN((ki}oE<_O=>8HibW6K*
z3=k}|wKyxK<0<2EYC2;0;Cf7c;)*V#s@fb#aLlsl6VFr+m2x{>e{U*0LXhb_@^an-
zBtBNQ*+L}vK_EFl_RT?YM<Rnje+Cq;WaY*?tiX*xcs;VEf!Ic%eGa4rqNSE^8BXWM
z7TdBm#;Smcb9)+}(~TPSvE~Oi3$z3(y%?v)cCbk6K}G=e9kKKn%4}zrLS3L<<u6u-
zW$gijRNeWBU1b^F{9H4o$hfOhsM%gi9qVR$w81_Qay_}Q4YrsvEbyDF91JbY-opJZ
zA{-3}G;fAjqLDAF{&Q-1GAyQ*vGusyg|Jc8-0EFf{%oQM0X^t9SVaA)dnq}9c7T1h
z1YVNk$TcToF;<25BRfM%{y*wUtMk|5f_X@d>ADFgMv_m~kLrU)<Lt<NS<K!SHBZOa
z06D?PGMS4D<!evy9179`-KUI|uk}`n5G2N30alj*NAyAs6ta^f3=cgK@12xerlL_y
zdT^L18?)pn-_!Ajq9N5(3a%_*8EusRG#Ru8Ktq)+fMH;FfAk{i6LmPz4}~5{a=#p<
z8>zj;avTm=fQm-aLPss&dG-LwD3xyV^QZPMDcw%BI(Wbrjo9SX!mhe<-zf)Xo&=*(
z$s}7grp`U^oRTu^y9-l-=On<-{*bAD^>$$5us!YX3@W`@4u_^HQ^XSmAwQI2337?P
zyo>!-cWZgmSu-Xc9I(hTQ_*aE4q_#laB_zImFYGd0=QCowKH_UZu#Ha4f}{MgjOt;
zQNA1`?`SA+O~LXitz8gn{K*?2&9eJ1T}o%6+Je7ir?xB(w&ZFuk2?-tKvUT<Kcv9c
z$%<ZiqDRe~0Ea7UC(kB_QM^9)*Cr}pHkQ9?+-lF64g=j_8o@*q_Zw(NAF%p<B`4xM
zLMU@(lx_O%yG+_}*O)Yfhg@vGg82Kgy6yX~C^&6<q;;6pC3dSZ^Q*v}n7^h?yRgmm
zR0zb&azIpB!T3a$MJnjvMb7`{kV^zg$hd1AL+$Em?W#8KyL0ldyZ<Kxo}KWoyTtsr
zCqVrg0>=#~(t6DF<zgd(Y_wX1b-Z#b!>rzIekC2QwM`O_I!fX5jQ*t{&2aC%B5d!i
zY7dz_6;FDp@ah*8&mX^V`Dd1|H(5upeXgC_YM&O)#!KQgpS`>lCAN&l!nfoar3>Tt
z|HYAQuaVfhf8;}Fuyck-8o>bI^8}X~GhvdQIsfHoEzR`}lk77%Nqw)tA?K-~TXlSc
zoRalL+ZfHf1H?*Yoe?*87>(@cdo!~Xz+HdN-4I~_7HRUFD^m#+Dl#{VHBf!_Jclv~
z{&Q!7z~lk8&8xR2xnEWtEIfJe`YBjr96_w?!%y80zE|3>3iV$o=p^wmq;VI8ELJiP
z{<sq3dBWixDK4kmq&6&^%A?>{sR~PtdVuty4~C6pg7>_>C1ObXQon^MLu6>!h}2*~
zq)wVq#MsEh8cavQ!VC2%xl30EHh|b%Y68ZUhDH;TRU$sN>2@dk)jSJG#eiMOFo>Z<
zCS$d3;VCR{u-jl1jDjA9G-^>J$gOUx%11l;gE<{fZfkQZwFkJWCae{(D-=VR0Qk`r
z68ggrbM2b|7hj_3_P!zydyZ#ZC5uut+hTy@aVw=ooo)PyN*~54R_qne_PjY3x~es`
zgJmCm<Siey)_;;=9x6IZCv_B+37BS7f%ZjGQE;*?OXCvC@TXO`DR(c25Dxnajt0*Q
zD(xGR9Q0rvZ}E}}+NXtf7xPI6hC@bwfP2@QCGA7z_uv!&_@1C}u>;9XiJ~o|Go6-;
z4j)93cs8{o66~k<!Ij^@Uga<a&%4-KfnA_F&d4kuzRU-F+If(>2<1MNE&eQSIIYof
ziEURR-}!=Hz!p_zvgel3vUC4>JR3E%(9%HIOjs=Zi0PPA3}nghVJ8u~fQ-i*O77Q7
zb%U-s1aOH)^nP;gBGgX-zl9weCLV-YcJiKSFnjcUWby9^7YlLu??&p<SY|NCnt{vz
zcRn7r{tGuSJjC-xHEJed0eQb9WQe&c57f^BV+w>dYy5}t@*8ubVKTjkbX7A%_5h_G
zUUg)flHGs-#G%W4s`s;FC)n<}fhY3fsC->wyh<zTu*4>SyRTlD!Z`}+n0-Zsg5cJL
zuWn5~-_y`}Xbium1=L_0n3GC-gtp1Txi~!?QIHH|#I+R3M=Kx{lI?Uzrsv!dZ3MU$
zKQXwO2#x{Ba15C|EoP%8pB&hd=R{RpZ?&2xS(T}a2%U58(dE@I(}y%l5q6clWD&dE
z5C=m|oFR51bI?P3`~x7@Qf3Grx=Z*>pjDiz-uT*akrGz&sT=Ng-u{H~^&nGG;COx5
z@r|vq7(i%6l5W2T&7}DAYBz9VGh;hPo>!^r3f+;*IC`S2*Ddq<f!nJq<(*t$K{se5
zT_@~TiEvEdI*hrO`F9)LEIxO8rLVCltAQ_C3%E875J{F8I#-Sq$o0FT9L(1EfB?r*
zElu}{!>N^k2?Bt~|ImN12IGX5`u&m)jGV3j!8L%{8^p~I?Q?K2hU|U;lzZP}P~H#a
znx?Ke;t1-dzPqrsz1E=VAI_R933P*LaCU!E3E!&nWa6=25}IUrNGD(i2gCS`^lRBE
zQQyphP9zvRHH${MQm%?8N69E$!KLzKasObUK;pAB<pn!ptMbKxVybzTY&FE5he>*D
zD=J0W`w?iLfbS0y-?6*&^37Pr=Vr0|7p(MWA`f<SCvR%39Wqn$?B3rytNlp|U)6n=
z{_!_tBQq7&Nv>uttlRmGQ4LdP<e@T`4(LGU{j^5@&1ctdT16XxcR<>vaVK^v_*Nzs
zUgQO5^J^896Rp{sJCO_Cndx}Y^!;F3QC?#Oqd{jTM)NX}p7yDfWU^`>NXcg?Y~52Q
z)iOhW?H_^6A`|-!i6+(W%SdSdL70vFp6P&5<{xhlNHnOB>=AkxB)bO$dCx3~<Gegx
z;{?L+^F`6MePwsPcyl^)rM(ZRi+q|Y0@Co`j{A8UuPLKcUh-a=<nA{yU$Kd<0V^L^
zcnxR%CqgbnK*ZkSN#oGLydX}rXN<&BH%-Wi9lRWvtl_=`3&yQW7h6Qrp-KH0v8dKs
zKHW}fVc@Ell7_hYD2M{dE-|PD86nV=L>nXTQ%WHg#-d$%u6Qw<Y$aLo?qJ8El8t4%
z+XVU<PQ7AMbM4eojbjssK1$*g-0V5evaanYMKJc@Z}#Lb_yibZ3r?NlYvI%01u(V9
z-%=)0XJDiO_j3lw8r0uycb`M-CXh^xu8&_7*bh^Ccy}{qvHuR{&V8JW$|_pY)>0k!
zoE(gsS4c7;IUBTq-MH8UtnYN!Mhr!YH$1Lal%Nt$WO&*mie#vN+010y8i-f`5mZTA
zQhjQ)A8>~fwZcqJBiw0GTZ2A|mUCq3wo|{>98jx1LM|$aJVxFo0HNQ?30silxZ#B~
ztaWVSE~5zYmJ|BK2v#0I-v*$QiXLi^a=ye687<*_Uvw!x%+HmzltLU^alb|Nq`vYR
z=@a9zBn(YqjE7{uYj;b_uv}{^5805j2GWV65jz#kYWuM<6N}>G9GQoK$C3k)XsZr@
z^jgrehWlW#94||!3gO79GB|?vX+DaZzG>lqWa8WTPgB!sazsMCNIBi&rkGWsJ*pVb
z-3;DQ1E^tSW6t2bos(-ze(mwmfV)SoTfDywYBX!D#(og<tz=7On_gscePPV|Im4WG
z`}E1n9XuFeBL(ieODupx`r>Tp^%a+nBt!Htw*JE7>k#P@VD1y%a0Zc8^1e1`Y|=am
zMw57sI?tEzWQ8Xqf7i49AKbmO_$(V!()K33Bn#!pgdL*jZsJ&`pTix_UO4}CnGljF
zZO)<#xl^$(1U0f(NbXQsoCT1@@FE6KM~6f5X9$tLL&`skwk&VIwqJH%9sv1|LI|N|
zMHl(-^5-C07H6L4J3>UKFTnGFbJTSx2n}^$OtwYCklPLDo_%!9Ay7=^H?QONUuL@e
zaV`Ctrqk2U=$V!%KO#;rtf>J%v7Bh?X|$0jL^FAm#pPu9JnPD%C6@=u>^e`2su(hN
z)iv4AqfPpc$VTsTtyue~El#I7qd%fDg#=L89(6lE98YlPi|vwXn#m$hUKzXaoW(>;
z!+w9Y^&A&NR~;e{Me^`>5pe@oB~Yv7uPycBqQiqP7ZX(yt!h-5u{=g^GfKQKM`*&}
zmN#m_6V+BZe6kW+%YOP&tSOdku=@EH%HLh+PwOd=Z!?kqX2-KYkTE`422TdB?yEQ<
zAel#J6{yjfi{PFx^da#hj7vpdx&;H)q7Yo-q$`K0u`)2hfx-YMK-j;uF2cHy!wmZZ
zi6NdGpgLp3YnR?e{NK#cc76`b%5m|MB!Q@JQP?0{udGK^mi$d8iE^tfRA%93%dJa0
zHK%bh)-P12@Q84);}*MZ2CkF{eHsS@gnW!3Q;P+~xK+}${3|uxpr2u_xG^BdMA~-V
z>fT=pin^;NivKMKQnClKJ#%YhueNIdf4o|iFGqp`_zapEo&}5#7|iez3qZWTPI}>#
zIl;Fu*kH!6wqYio6+Nm=TI?Z;;G(`qAO~oSl=TAE+AtZ#tNo1~M=XNPkmj8uTF%OW
zK){IhgSvr8_5K!Vyh*WLRmjYWHkET5J(2DGA2$2aiw8^@mR&+TZi1c_S2Q*)f|Dy3
zthiU!Zw)>C$ia9<dg43YMGu0HU$%I~hO2L_GvZ#~3aN&7m6F3S0sjh)iT`VP$47>s
z^d#P$cWB+acx@(O&fAr<r*CFPe!A_fRydde{B#<<D&|wlQBoRKXUj?QGV^xyziDqV
z>#sLP^J<wMj<^szwuTz?t}R2Uc6T9!`P3aq2k)Ab31F;go1aS}@=~}MQ1CngrBAdk
zZmO~U?tE}3_V&1B_2gYziAQL`vBx#DbN9C=b~<1J;173-R_$~1(cH1;fcrK!{4K_F
z2^jybYFxC7u?*YQR6LOYob6U7?8t(BBBz|FnXy&hUnb|yiIH7yNC(+8DaD^@8Xr5g
zuXM#e(EzfjimVV+NG91mYZ&P}AnDtl;HsH>Gq&_whGPJ?4Yv8|ubYA+ITHhzH^<Vz
zYh@tYrrC%&d!Qs#-M1ROC(_$HYw4my^SZv}fZ3K;X*ul&B}g+l2n9rF1?N&WD?p2g
ztQ4jzI%)QrobmrRP!miKkstsmKQu<6jn|BGs~Q{iYve@uL6Vk3%x*sl3$$V_OLSZE
z@q~%dslH6CEr7DDPsq2^ew+$vZ!#g9mbzrcDsJ$O8Jt}YkM3?Jg4)hs0Jo?4cn7i%
z;6$QRQpFi7#^NY)`R0!KEt|RLBdATt<Cwh}rJmLe`S<|w4&tRd`>zQ@d-EL1WZGOb
z^y;snuuBf#GFX=!SBV)CZc}CUwZg`eU)UB@-MHYUN~Afw#Db$Su{>{o-c_tNQeGv+
zoy2bv`kO;%2YPlAH5*r=70@+Ure=1w3WnNk4hnT`9kI_SVG2($7rt*c3sQg3<_boj
z;&p%M1YPAui;6DKfy#&4?+uI^yGWSR4e=q%sMw2=TTJArxFOB+Yp81Sp}(O$nXzR7
zGM(8>R1wRst>uEGAcJ7x>0oz-6r4Cg^7hn$y{RZS8MU3xT#p_DQo13D7FOH9yuD0a
z?xE+nQ?EZ(;sy%)4h$(vCm#Zj_NeNWb`F_~?S-)xFAP+sMS?|UMj^y`VeGOti=h*?
zhd;xitjWH)FvB75zJZ#pI&P;w$6^Rb;EX>y2{Zz_w9`I}|BtKd-@aXjUm;A%BX;&&
z=rrwaR}u<~At2_9K3!_i*g~@OXki0uQYWhe&3d}rlZ<Mu4?QbAY?x?|x#g7kmBf`v
z-Ad;l?TGvW5O#=-Z1HXJVd&*4zkmB&U1bH3OPaY%Ej@YgU1h(4O9l+@Mgo$Rd}^Du
zaB|0UObkyi2Zz<g*)8Mi&m-u1X~e&+jlYLg*RPY>oav#-j{$mby?x0bYV7ViR>T}j
zE~D;I3_b!q)y&1#A<H;AtRtyiKyMVMEa*{~SWYS)Q!bmE1rSCz3GgKd_QsuBd3s&f
zJ4eJ(idY_3L{wKEA&rUauOgD8`QTs)ow7HmVacBwozc|a_@{$!skQTR7Yo*(|Lwnf
z(5_eR*#kfk*Sj-o|7Ek=$3PTftu^sdGK=eCDj$7g8^aFRSG0FKU+0H+!?o)x%D#;{
zxwB$HqW?|GS%CShmWTU*8fUm1-u6i*_%6#w%A5f|-n2B=(!n3dI7{ICafs)GlSrxK
zf3K@4hGzCkf1EehigHa3V44q@(peoZjAXGmTpvm*0wLuxI++-dTlw-O)!tnDuEMh(
zwG*9qHNnZ7YPHnd=YZtWwQ%(!iA&Z|rNRO5a!aZ;195xy!1hB=Xlw>x2HVx&aiH=v
z;^HVwS~XeyG=yaK@lRjRX<yj{tA*3-VO;_qQ$t&88~VEcv{rQ(oKA;A4L&QYsXyia
zV1qx9;H8PHjz_*svpyN2NF+NpJ{62+W#MV>*@OJs23{>KP5n^8yELGA^HIDvodqzN
zyNE12%;3JEX`J8%M=%{}))X=Q{#|3r`DCU&kf<#?d1S^)u>}>(THzcXA|P-igW(v)
z|IHqP=QnfyPww~}J}K#vbq+dugDzENs(I0Zr(bxoZ93+=!NXz9$=L)~GK-G5MHrE8
zCO=uDW_>xOuGhBNON+K42xB%c{M$%_lq+ijjW&tdUND%BTOzNG4SV~v31m53>U{NB
zSxTET7f%B&2?-pVGAM#VjAiEr`*&k(Aq)UhCS-NOebR&}%C;Cgi1j(pnW^;;;>+PH
zLB#MJup%j?BrRFQB?OBJdDg6B^Z`>izJu6*tL{*u<zu*U!}$E?Ae?#cuj1MIXBdWH
zQ^!s@7HINwUpufWwQ*YHO*lMtk-xPXd1P4pbmp$sb+j}<i=O9(VgKD3n>QXeZhmk?
zfj7Bd@h%gCkvB^me#K)HFbOJ$7H8TJ`EPRIUh42rNfbe0;dG)eF>W=4-+<d>H@5{d
zGBhz}yp-ZP!$_-!Z-}e!*M9cUiYpWWqowDM(kizAgpEI<7iU#?_f9LFxQA3}OkaL*
zE~$%<hMa`x)+R{L$mM5cjI@cDD%3cB1`0xw4$Gg<8N8lInvOdjD%z`YU@YNe47BL)
zA~}A$z}E1V60do{3{GHHJ^H(2M{W!XAPc$u2?F$wwP+CS{txTSuFiUNEIU^xKP;8U
zw|c3XBqPDO+{x;!+5P*xk7SQVF(0nO{lzj@)y<S&ZB$VnOYc`@#0LDy^?+Y}W*r?J
zs}N*fOvLA4i=bn04}_N|?jnXZlvHOeA`B-b2Cd2UA43GY6ccdu>&3~ZR=rDtv~5D=
zEkFWZ|4HX5kjvCAG+QAk-~>y-Q2-E1Z$nV**?aC?Pb=E5cD%A!;y*x;E_GU)f;>Re
z(30>jjp*s(?dZPu*t1Qh6tJHx)HqD0wR`s`by)jcxOF!nb0xM8e#cN8xI0}$i-8Od
z*J*}Os=X`eU908X0*A5UMTep{%57`rhSRr`s~hktl7)=q8XiP1VtMw?!VLhQFUFXL
z)-KAzWme^BXr6JL1Y>I(4b5>_lgtF9MxXEZ(G<Jsy?<kXp!T?B-v?f0dMj_NYDmfr
ze9Q<(ruFF6haQT?`Or8!wnqq>p_CE$$HE_F%9(Rc;4P(d@h7=gLT>27KOb)Et2;8Q
z8V~(KON7FpuVjxnx)P9m6GanUD(dk05=$?Rno|qNG)VW{ZSJ0WJT=ylsm2g#e8aI2
zb7tr-W=3Z8PG7Ew_8L$4SCj8=v$o~N(7(ND7}#Kyh?m8dBq|FH6>b!W(8G9U98wZ-
z>epADOHGzavNit{2MIs%(BgG|OrHJjyMaSrwBAmZsW40-GjtG?A4Qx{e^6?8BV^Pk
zc$^VwZM$Z?t}}!vmRJpH3Lv1JO$Ghte1tZ^7yEc<7XN(RXu4n}N78UrEoV^RCBJsm
z&(y=ue;I)?ydzK`h>PRK%n8Em1<abt&p3!@zVl{CqXO%O?nDA#qx3?P)%iFr(PCmK
z()yd+)`6X)(Mtk<4h`%+YJ82w7@MCadxtaxY_;|XFsy^%*er*FFhhOQZX?>lX4!H9
z5bsb(8%gzRe7eu8)eoF~gSxX@PM+xEimKyWU}DwmiiC!ciQ%4yDnPM0CQ!g9L)QI-
zSEqVS49RF~QtLC;F%IV%u`%{cI8bHAL~S~DIRC{6>YHund?HAf1(y{cUvd-Q2v#6Y
zzdQRCh;1v|bZ~zpa;E7ieVVP5j-V!r0(MEuWJIgo7WL5Y+0fW2^b9`oM)rq}Y+Qe_
z7RP>v^ctAdD?!<gNJw2|?WqmS9#*=6?|(1q<Rz-UFE>IGf6Znio-_4W`Q+GRt0+a_
z2=_o(@TgKruS;arFlo+#M~)wZws%2%voqV10|u?g9-vQV;k?7?U-`tR)tPCT)2932
z52WavJLCW=sUF*eHwTj+6p?kIX4`-+_AjG&4W^8>=BNZ1*`)s&Cp2;STdOeEn7@H_
zHY7s<z|I@Q+=ho25@jETt!oK2Tk=ck(mF`cBNieFN%!QonEpO<M{eD`c*>Qd7YvA(
z<4t$WE-?__SOIyaPsNCe#tnX2i!vThtZ;ZeuBsej10}Z=Dw0@Iwf&C%Cd_~p@fLIZ
z`KR%qk?1unjIaL3HLa4wxg(K%Z6E2dxV|prJOzkxrsCatN~^rg8>Y$*N<;Bpg!Axq
zJTmK|wwF6TtXW(Z@5PM(n-bO;iyt@Wj$wI=oFN-C#eOcEGyb3na?1RzBnb35P!pJ8
zRb&ixiSCF3J5kJv2swG1CVRAim?u5I2!6#k73(GswudTKKt0hRKg9E`fly&1DcPOO
z*Eu!bq0WxL)-!OVi@S#GUB|Mml*e$|*Ix~t^4>%zsHg9c3gN31WG;+iw+m(Xa_S#u
z)1x~aP3Q)sJA*A}QeaJ9F;Eed*~<AxotbKkk{!>$M6>!zt|GmHl>7!ymO4A^b6Uqj
z+GvI5gsuV(4=w?EBgAVR!iPS_eo46r&|yUnVd}bJvRi2A`zxh|r!?eB;<&vlNQV=h
zKJM*GQ&cb_t(NcPle-{j^VVG8<?4{s*#M)-d|lr!_g-}6{AI0j4Xwm(bOdKSX18fe
z<)!`pACdQYgC^SiT1N|!Y%(n&Z{cbm4x>z|JapS)yxm@&YBycimJ~I)u$_g}-Opo~
z^Cpc^qaikezmiXtjR<-fY$r1(CpZz7MR~8@Xy2SFVRx_S4yFri*AJR6qbzksh+T)G
zsn~)QdUmhqD|dGlx}%=keqS2=<1EPZ1bXSv6NA`Cjl>XT87Y}j3;);iGbBk`e&80c
zKDoK&xCkKa59>L<FMb&q*3oKnx{(aG&Ehvs5vAd1JAZ~9QYn?^H|VHGMtmAWf7cC7
zyxOF!-eqw)vQHT8OhG1&BdV!cZfET5L1$)6j-Zl8p?O)11rphZdeMKS2jhr;GiYrE
z>2k1;9+LTA=e67b)-TrklZmV+#Z!AJJ_Wd~wtS7St0oNMZvusaT0T_Tg~5<NxnfUQ
zXSJl0J>|d~_d8YJ^}i}oL++L)CPSk0?+Br%4xXzx>i%yO@mm_0R`GwXuKyv{W{IVL
zZG^SE+!Q&>pcc~1G)UAFrMvdzG{uA<`U&I3htgX7C}+pQ-64<zK`%?CADw~ccs)R$
z&s!%TsJ<BsU~Ju{FRR<mrVsuU@wxPEDEbfVt}lpH*kQRpBvmlT4VawNxp>nax)76Z
z8pLFGWiuQEZHgUKDN~M(J6};NFW(kCIiq}f-2nPMR<e1Wvvz)u&y80Len&+H2v9G!
z3Imi(=*`G*P@9fR%d$1c|M~gg$W;dzS4Ecpdr0gO6w5$9Xnzs7{sm+>8y_qt27ciM
zs+k6voMNn)ely}+Qow@AUoC0`L!I7^2daYn&y3vP#MRS=McqMF8QAtGlpPI1y*dj#
zY38)A?nPA55}$^)ukt4&{~}D@AWc3Cqt3c=A>A8ClodPEUD298?t!x2_cbm1P-cl5
zV+erZNJ_uS7gKfP$dNx9L3AS&i&sk)i=<yZmDF$@JvvM-ih_7jIH$!P&*qn6XE}lZ
zbFe2MIBxu{u}A}jM!sv~#7srwO0*4^-XNr$Y8k-b`(W!YN8aVu|E}hsy~qbq@Dh9^
zqiYn_3|&SivU5QC3^r<L-UhLiC<G*LUujC<p2I4D=R&oYTIfPlO{YDf1o3M$b#N`}
z5OrxQn9}}4X5P)_)(+lP?p=^7oT<PbDr4lj73ylj-FL)Y+-PZh<XyPanFZOk;o-h3
z56G*BQbnxU#*k}H&{Der2&g7{<pjCvK=}5eCiUC{0ay#iFO{C70u5eB>3v<Vq;?vO
zU*U2Bor(AT4d!vbzgGty3O}#g4|~MmJ1jVD-ld@Jyyau1$Gd!&bnPrtyp=?Y5Xb@-
zqpdHVX~~zIkn=VM=IHOsz!4^0EYSuE@Hvn4|JdGDXmd5KM7o-mpz4gP{&a8~Aa0!q
zq5FJ~R>_fk61G-LWY`2j*ja-+RqLLOUCHgHNVDf6ReuYY*_&8J0Y=?jrRBd<Z1~G|
zxV2>2Q1{};reeykX8VX$n1&+(B^Aw?W_C6=z{S|SWk{1Nh+Na8U)hl1qHN|%+N;EG
zzrUZ;FX@mZ|43y!FVawz<icu&qpLy42OglHos0N*_S0g(A+_MZ^_Sip_xVngYRv<@
z?7&v?cH$gmms1(P>;bWZY0l<MfEboi)WilV)Z%E%OfV&v^q|7&@Ma9FhI_@A@TiyO
zJ3{K;zQM_X5Tm<H#q`d}>SN7cdqif<#?3X&;ypIJSS%O#;)N;PAvZgB(&>hkX&T?A
zqk1s<S(!+uuZ<P~cd)%`P2Mg9S8+JztUVIx{in=U9|MM^=lseXp%UjhAqZ|6pI!Vu
z-aQV$<I8odGMgN+2c`WVxiO<6ChJwu?c3HQB*fj@nnhjU33lHoCrQ9r?r1ztu1O}c
zPRCpW(*;5HqmPhYs%zZ0__8<F6U4(N*vXf)6bHI~t-mSd&^wpqF%r)E4~STfr}GqD
z9+%-GRve8HD<uQWz|(=>ziTz4yg^pf4%W=xAOInbM&t<zXf6PyaHN=VR-Lv+O9N_3
zr_GzhqvptMPoeackk|`a2PhMgeQT#Q&^%UlKd&!e=HtGg=ETL0Gv{9Q^yHPW+qT_M
zzTeDp;ybQ?ig?OqOGr5sTjN?s0FRZ(U(1gUfd0lR*sTlxKvS}>j^lJ3Wa30PlMa$3
zNjd+%>(gfEH{%LZ76)MJ#@aE<$isL@IrOas6+!y?yZPE6Z3LIyI98{}F&n!dv5ZA_
zscw?fefVMu1eoT*u+vPnlfAVdGCWcn6+b+^ybgk@z#^Hy?nfoF(?~Jfd!mA&@U^w)
zd%X6ld_QCKu~k$ODW$6%3kKyt)T~!i;uGYI52^J*uPX>-X+uY-WO5SYktpsRC_sOw
zZOhnDBFC3A#LlgmPEtJ-gSlmu?!=Gw0Rqd17tn=7FAwiO36)U%zCiPRU0SR{#A_xg
z<X}u7x0tr}KP-2sqs&o2LVpWGNGHmoBSzpncTJ@d){NNRR&WN<4MTrl@x8~Eo)Ttq
zO9qz<j#*WA9zVDD@!o`G=u{inzL5gEN~r}J1B*BqGt?S#mfP)NTzg<0J)!z(Ss-jZ
zk!Z@Sbs*FxRv)}VQo(Lc>JXTw!2^IMBddLYth2o_xH^QT24<}oW+Tkk2|)o}M^3Zp
zdE^Qx<-hSTc>g1Cyi=Wlqz|Lc?8r-KbEHK93UW2GzIF7eri+%1Z!F!^q$$9Jx;`pW
zr(v0sT2S+Zl^>WuNnF&eOx*0vp~$Hx3Z^mWd(y#HE}MbftVv08wO}UnxVJFf*z;o4
zi5b@B7IE{ZK`y0!*l<g;`nc^@3A|L`J*rRby+@siH4eTtus*pQf0P?v@-SEje@e8A
z0^5g1?ZM5ynA?QvH{f=*$7lPIGbrQs7=}Fu@W;Gzfh_h*1lP2mBiV$!`7cDNbigiZ
zfwnN?LD||FBm0GzxM+Ds_gir{EKuitS|#HV?dS^Ryw^3b7gF(XB}dYIZR~V!V?@0V
zEk&&{&QlQh=p^@!VR1X(MZR(DgTBb`mIGig$a^Nh<T{yF-m#ji`A89F6==T>5m6>Y
zMsk`TJM7W&-FW2F$_&>ZNTzmv0<WBwH02_QOFfpaMZ*Ows<xx$X6IH1fP~fXxAJH+
z=*K}x<o;P~4(LxRWgvg51x{hl=9`;};-$CrC!0ghMeV3Y*~Bp9*tY4VemL?N)6OH{
zc0tdbbdpCW#~Me3!VG0v$U(YRdob9?kt)-y3X28F#TKYXF9G-&1ie__!LR8Osq&n4
zytL?f44AhUkJ|%3pSH>eA<5wSAh6H4v}0wF<*&Ym+f<tPk{Wl4Vi`XB;UZI%8>tsC
z%z)*C?{$w6{JIH&ha?9=TB^*V<L|YP6Z^Dly51rKx@tL!^EPE&YCFhAW?`Cb^FGr{
z8Ykx*PD5mKDR>F+I^mHaH=w9C-Eh%yt-D&Cj&zjG|LklhFLw5-?C+NpbtWJdaTY#?
z6CoGGUayqYl^Y+Ko6DBx8W9y$ngep@jB##{aAR>fAtHtEP5B`@`n@VIwq$r{NgL_I
zrrf`lZC)g5g_1ZV$bAtfi!QR~Ce23!*j?hm=U7kgk80h@t<gEu_IheMB`HMAEOrEV
z`PeSzM+&ANf<_Y|^cy2F&Nn^#nqkwDn|XC6LrK+)23L{d`Gu_ukjSDFoV%<YX?e~t
z$(-A53CFx|Uxl<`bDILYKNkW|2TRSrTt(a|^U(56PUz7p9FXUx!k=oxqN(rGBwvD~
z>m+H6<uB>9dak{)t()q=7J-Z166OWu78ZK{Lg87KsN@tVRF(N%;`UA)zNpB^Wssx+
zdd{IiBIp<aQN_$+e2EJN(zelA`f(VVjMiBSOA1<ahl}<+v~OVt2?}i;JX#-sIQ~J%
zO0S^C02^ym)`zTxu*!t2FhUnOEK!IkHf-x35f1FxWSD&rAJi2x6_S>h+{@|TFY}3;
zDav(OJ&-p;bOcYl)G3AV#v*9j@f5kHhEel{^VNZw|6cWSJ{pZAx4wOtf!vc>^y?f0
z*aeP@2Wh|f4$2Zo4{YLRAh<N_)b({4tt7QvR9)IrOv*rrD(RZk$Mp-9B!jS#M})Gc
zBXMVynTsx*td2flqySgpdQ=PNG<~-L)pgQ>Qz7Ew!@2jwG|#9S-}>=<9-)xHSLXd8
z<g|iuQ;9*yZUAA>{LVreA$U}Ny@IoSJ1{jd?fE+NWmfiC9^Xk+He}a`mR1&`^S}DE
zY?;ND&XBhax;Uu$f)zr>)YXR}z@D*)s?-Ck*Or~W`HjN9`;WM$oo7a5DsQYU%KZE&
zJZZxBfJreSCOxj;=f9MCBliwQ5B}?UO2c1woYqe_Bz%0D_f8Pl@%6*pGbz$#r_l*N
zxs`A0VH6CGL`&aP`LH)yN$s_ELZ~9zJ58cisOLcD7*ocR2nR=1fUjKrY|=YwKMio>
ze`5D)dfscohW$wmH(usE|8zmE=aopZ-v(yK-CCRHi1<*~tuNM(HYKP*HKfTd8;(i@
zf9vixe-!0tT4e~jAOPa-X|XWx?mGLL*l_u;*;D@4aELlBO-PivwuTcGc4?&D9#2CH
zcWIlw*2KN7ff<P{!_0x~e5i)YeWDRl7+Cdoy{cD$LH4{H?%$UvruZ#dpG5NTh@$S$
z=7<|`M<izAt;MQAZ7NO^SvP40^jT>7eRm|F;+xr3m9haC(>CXJ#I7+P|3|L>ofR26
zrz7yunkoyK9bKlM8=7arh9h2FQPNsGtzu&HW;}=@!=KU4G=rMQZ<6Hr>W!#BEf`AQ
z%V+cwsLxENXbBgk)g7sHojmY`ETPc~`y@w-g#UxVD^t)?Xpp=(<kvrE{fo``6<l;t
zSfW-DXXn>d*!+enEkc)wF}CU(^?|MXJ!DM2(bdah6~l|06LEb<L-RyPc)G&V2@Dq;
zofU7{YFbEF=Hpfj8f-xX;Igm^oduZtNBbdq-_)uNU2SfFBU5T#qVury>a{H63l>VQ
zcU@Sr@te}rMlYEcB(XZKIq<O($7&u7Oo4iX(Ho2$Y$$QiB2Nyx@(=V$;j!4hq_>w`
zfG0P#Xg`h5=cU;h#dtqyGN04&abgc9PBWR)UW#Z6687u$n!)+#V#AXF+@g5+a+kwH
z4zAnDfapj8h)HZ%gNxC>00Ny$3c!Ap1iSg|Yn(%4l)c(A#3c$e=r<FQOkIz}HgHzt
zQOX+L)bPqaJAGssN!xr<7`eUi4R5IX^9jv|!V$-N^Z#PCXqx_Vf&oJ9uUDb$RC(*!
z+&5uoKwo$|E1YQ^S**@B^H{EUfjWz+?Mc8`ZJWJ))y{pha^Cje^WfLk(mkeI-t8eC
zb3$UFBIvJa{-(#2!R9T2&?Q3b4jwU^=xf4M0wDlBmrREcE$$l7yagLF(%TgTm#q*f
z`2nNPL1(o8F2LveAeuTcCAyIuC6EY~%cg6uNyEyH$IJ5QE#FduqW3K9p(&`9^Dw2}
zqO;~$r%iz7%qBSj`c!yS3%V`;DRsj>Oiu&+9ZKRT9%)ihiSye8+r|EW)U75g3zA)^
zrqZ3W5fquq=8a?TkR*fP)B_mgkDFmK)aZ-ZOeEr5eFBeAPO3U*gD53^3FT-P42e&|
zrM>g!)0NPl5UYE(6LFV!nL8mWm(9XcHDmO^$QQF3-|{nY>cNu>z#~is9hegNZMGZC
z$t$jApybuw&iM*nz4}qQ_}7bV;|gQMVsOoVW$!}~1I}q1nJc9_1w<%oTI+?>L*NKr
zcjF6r*B`k1uyiufcIR@#%`@ghaL3v^h(C_`PF+2w2e3P`;jmR9G{W%ZWv!zJ`r$2c
zm=!&zcnP*zDZZb~=eahe%|4z{k4P}wmpm8a6tRlVRvTymbldSm26!>%kAyn_t6n`E
zZGH2+@~-ay+47BWZGL{lV9#;LG{~eON8FGD%D*BM<UF9?qPUwyb${pBVyyFqm*M~M
zEl>f)7B(7_a(EnBt#C(v%JX&X;wWWiq)Vff4440X><b&&5)&%_$$~*>Yh<JJ5HW*;
zl^`1RwjI%Fu~=T9Rg8=0`@6&!X^2#w<&w1mf2OPtyux)4kr%1a%#}ifL2cNh^x4~T
z2OIB#>$QH;GX49DN`435)z1WLcXj`|M7l59ZJiXM8I#WqTZ2c}-`p`yT*EvbRZ}Xk
z53eO<4kFyvrgAg}kf*u48kbtK6x1DSZ(Nd}7UF0rF_(z9rhG(>*_cI<xDlv;3oi)r
zPXG?Z9y$gG-2qJr03ADVApLxX@1ghZ3$fYZ@`8$@jjUF>PNp}*F_S}k8m4$K6|P(n
zTSl$7J>~GDg&w~Pls4)S#=~0i34u^waG+bJ!8pDlB_yGP?}n@3RYa|0BO_Kc<sS8x
zd!|yD3gn-93A$mO?g8^g{2vOD<_jVVLt2IEtl!K91X*k#+&}~ApVo{IU?sOHccUrJ
z1Wxv|3P3R~B!3N%f~sp0hs<o(tgk290r_5zmC%3$7jgfO->uiYK>OJVy{OCpHQ~4P
z639Z3MZdP+T+nGd1istgkfwie#h4Z_<k9O^G)(NlM@=UP92oNRGvBzQcZq2cxzsQU
zjbuf&Go?YY6AHmk!sVsx{$he_I==E7M2lVYs&Z1wtR}h%1s_y8nrX7=VXd*A+HQAH
zM=D4^%9!49$1{Ds9#)BwYHdIyRj$}L0f*q&N?k5Q(buSs86-*K3`yN*`{r4!GJ4PB
z^i$yKhc_-S*(*Xo@cJd{ddeklTXw#<we6H&nUa`U`%~fvjztgPK8Lxe;`$0OffY`H
z!KVS)Z|o<ZOdda2*+RJB6o*5be4hmKZ4wzH`SQwKT69o()vk-BvYQ?GS{JJ9av}6Q
zJ1NdIwi*{KGlCm*OvGp5gQ<y^Z>vOH?*3523nUI*QM^@>w)NCBJ2_0xfaH7)23Mq4
zXpLHKcVmYKrn+xpuJNPEb<^1+T6ZTVLp*XkeJ*=e7>uB8#PgO*sH}@aKg%5d2+oqS
z%OFcv+-frgmmxFUg49w~e6H~GzcdBx?mo5fkc*solCJ|~^9XPh6UHf%irIjor;_Wa
zn=?Ihjte)%m5C0T(D*^Pi{#QSYXeQ=Gn<KCd<EkIa;v4Wv31Yv(~Fa-U05`bdW{z2
z83-poprHks)2xG)GmzsP%U^ZBa=y**ir_M)?N8jY%0yKhGvdYeMJwCH4kL56FU2$2
z(QgPwk<w_5-(=PApHL;2f6dOH4I`?Qt`oY<^^4(2Ecc$7$jAcucV(n8Bmo+LhbkQ_
zx&A4J1>67a-<gRFZ8cO8G|PN+NdSu^kU2S~-_Pml8>GC1lJKS?dbyzQMAm2Eno!Gk
z#0xofErfo7>CO6o{}P2?IxspXty>7S=SJTh^K0n%u?X5NWrYZ`eu}7ErhlL)`SqI1
zztQVp5lHqPB|n)KX8p6%x6^~=-<G`<Lc<$0ZUZ#@=w-M0n11y@xNaHCn%~{m{d@wo
ze)z{_cKM1)@9ASBsF?R`xz9)Kfrkmjk%gw+BZ^q*U{i6M&3Px&NQ#@HDcHk3&E7<L
zCW6N}__ezug(~b5c0MoIyet!F{aD31@6nn(0juytHkNX4CT9Ii*l02hsk!YXAoj49
zb-tSl40MmoR}qu>{42jVdFbKY4`t^6k}{b(8KagUz@`(E+}na-?%bY<9824jl^J(u
z=oTQ#I?htv#dsn~KJ=V4?z(L}eqeDCGp9JN$OeGK6xRkTZ+Wt9!3h3<z!96{EQ*Oi
zM<N;qT4AR0E~57y#7=WdQ~<21vlE|J0>5+J$oQMroEwaotFjr1(8TgDI9K&#0nJpC
za5MMv)11ht^?ot=^u!%_;g$MZQ(sidl*Gsd@io@JV7+K4*l@xemlDFrQ##(_TuK*o
z!lUWz!OmST-y@6WcBIrBt+F)*t`q1GVVMhqpA<^q6XwHs`R|7lC@q9=?vQ)9POwtM
zBz_&9=`l}RYq9IU&41dAB$-$f=ERxq`6-X19NGgUV7;67>igv_cNkkHDw;;1DDum(
zQ<rB9$5+t$s-0T*chZMeB^Dd%%>?3^LT&HES3|EbO+n))wFNuleS97HUnzpx$i7UG
z8VWH!aPr}hsRZH(&Z0d^3AFi+L?R49e!zW^w<aDo;`o>RbWu+m7q!?Pi6E5I1Z-}#
zw;=jx02~4m7@eT56v{srW9YAUO7p^1JL3{DrCR&%)fekcA}6oKU4wey;=G^g6=%Db
zf7rb_%BmZ29xHA=L*|EfCi+Xw6`12*uz%|bcLM@)o_w#3acmg)dRzt$%$8-(5U^!K
zv+y>b7HR}8zQ*3k$V*O<000M$swzxQyS!SpAKIt&jGu|8P-@{sd2U6#B~njURzGA$
zD~Vsvk5cVW%>qjTWaAj-BgiP-*D`u#HyU_Ru$XnE7zOz|9m_^9`)9Uk%n`G$<`|Ru
z>kJF&&-IDc+JmZ+Qron*WKUmCKTw-f2RfHNa_#JOv4J^`uj~zP7p%bg<Bv1wQWD*P
z++vpmDxA>&=TO`V3ehvL#7sVVE(d={yCuNY`-Q3){|q0-#&C-vA?Dxr>{j{j4v$@G
zfhtP(a`+tlE`NR%CDg`V#2bO@MZd%l(=Iv&sjKc#E)AP!S38WR$mtnEMMiGxOMD{4
zzk(cNIQLwT2efV<ZcfqEE*J5uZsP*Lf8Ow$aZ21IkttEt1e?*Vv)8lCnkOqE&WXU~
zv>sfbdDmiO|9jI6?ZJ()-sL3`35wiqji~|K#-hU<xyg}_s{MY)*cpp$oTX47sabgH
z-T%zlrS28AhO_LKfr-0ku+BaD=|zy5Kte6OpifICntg0P=FKnWiy8Wnv<=3SrRa)W
z|9!74@B3TwbLpG~;;kCZoxc~*4Hf_`^vXH%hfrgHhY0~b?GIA@M7|5Bitg3`Bi59g
zH$vt;(FaG*0%mAd50=)l2|E@xU5TS%PMyYJ+*CG8k*>IZ&mYUkrcf<D1<Qa_E)sSr
zn;AnO{GPo5`PVh^#Y&Px8K=W-73;KgxQ1pEhXqMzS!WTBUgB=p!Avw<$k!Iqj7fTQ
ztbhQmnd&cRSc_y_6ovmPJSOMx6z~_{Y-@6X(}j)^dIh)1r6jO7r(y2rOjB?8`cQey
z?@`g$#xK}twgo6NJ0d>5SbQm*ZxYu#Kk;V#(ys5PN)Tga;8x4Q%!E`BuH8^^flOE?
zdD{|RGqsOf((Gc!;*B9rNw!|O@-tWib9i*dH(J#mj@NHe`iltFr6UZ#$UqIFKEJY4
zm`uDSB&v0G6owLON;H&bv6ZN@!;r#hgOGKK<Lfm`9LA}tpjQYHOkL%976T3WUKzFr
zSAvIx^1KTZYag5&+uIj8sahDs7C>wB^5?GlQ&389dw9@S-O^+~%6NB<$~Ne)Ehl%H
z|KLfm2fr{tv3-y33rd3ZHvQ76%M1~S+h#`-0CjcjwqcFbwP4p_4Y12ADabcvy;2}R
zf&Ujz1#L+}?@l^Y1mwOPlY$(0Nk~;>B}*hG%HDd)kBRtC22JJ(FN@00E*^bS!|rn3
zS94ND#Qoi|)x{LgwFSgP0VBBfxFV*a;z|>M!S-?Hf8jajxLC%(S>b|0RTh{My6NEC
zYIhQp$36czUJ(!F#}}u3+awUs8pWP~R!jT5^|lkpz}mT51!f57mhhcaTq{W6n|W98
zZc0CA&;t;W=|sSHK1<^t1)sh*Jcx#!<zqg)v%8L_8F5*3Kmf2=$QEm%fu_H7>!1Pm
z`YO-kPm!G%a@)&W+~cWSL|@8i-)fFCW7hJ-Y4`s(R5SL?B!ZET;q&wNL!+pj_y<~b
z^<RhueMAc0?BpEe$lo$=pGvda!-06nZj5~S^Q{D2D`(jQ)kDM1vNpL*qy!uOICx<g
zsyFFTN(vkkG;sV7Fj*KVXTc)B7rT1BEo6kK(qbmHNzue^Fr7$k@gD94UH~@%(xvH#
z-!KPnfy#ySI~1A)UfAV=6;_}_LIGPv&#@kDGblPtL6u3S^whs~o9B0Rrb+L6Y?KY>
zMhA|1V|)?JxHWrMeccp$A__(cO>_vCKDduhn9A?tIg0o<4$>?e4!?U;n~hw>zZCQX
z@YIJ{E6m8@YNs=Lz^64)z3~=P#fqipmtCO6R{584ivf!a!cgLCAP9M>xu^*F8b~2#
z0&U*@Cd^jpy-frW$b*skH|9vh!0bH{>_AmxI_%0Y1J~7wp=vcu1`K)1Adus6DO3;e
zKW9V5<T}KXiuG!a3zNv*PM?W#!294)j{n16kiYwablwuKLAuvnKiGY^CNI{Lfuc%s
zdl8(?RNTVG^9GhwCtX_7NGJ4XdLFd^6|}Fp@gY8dGv)2(<(F7E2NSS2^vUS9{j6w~
zKSUrzF->^G^IZK3^NlQv-neq7rx<!G)Oh<O@)i9|`rTYt^ZIma<{Ht;>%*q(gh5}(
z3@3xA$(CvH#Nb<&X{^g_#$ctIFAi7i&Jy?j?DuaG!IfUK8~C}ab$_9jgQ*Ft*VXh4
z*>rj#;SiLLC*PBkjdu?MPeT|?rWD?OwhF+kYHCMXx^V$0Lqv64j#1mYw0!CK&sot2
zW<?R-T0e)HAT`?fXP;Un=X{rhfW3v6J57(^(TM{7?!Y65F&WF)D?YB3eVpSkomi;f
z^pCQ@uHric7SIv%^eLVQ=J#8?yY_Fp4;dyUix=E74gJW7>6}QBMx-{kEF>-K*GiKn
z;LHb1bI&hVw;i=-0Tz%Sv|-t9A5}8qY~8>2MDJtJ8b#f7H*mN+B1^(uv}@!XfU%)o
zGCo5hLoR;IztcYimL?<-;jJa#A>+ul0M@hG>NW8QCfVU|x~S!QarCV5J5OK&bD?zV
zu{V6mZl+)<4ixDlF^VZN!9Ki8bPywXb9lGd0?3T_oV^NOg5QRBM=K&d<W2D^YaMd-
zw<BLf#KLU>!b*8H2SJS;r~Wj&HA5bZbm~a;jPkHU-_D@aM|c|zu@qqzK5YeNE$AW3
z=}2DweO8AC4&^1#DrLTP@Gyi3lbn{~xLlO7h^@v%>U@7dxRsT5gl8@up3RdhWs)T2
z5<0rya$8G*tiQIh`3NDSL~S3n!0;p!kL&x=dNE`dY{XFX3x#O!5ZcYc&SuW~Z6!*M
zLd<yDjJj6#)Uh;^m-k^Q3ZjdtlOJPBcN4<1>?Rh~0t=kwnT`RI6v^lyE2<qse#uy+
z30DrB57gUi`4=D>26&5xN&o;<PKRQ`*P`!OIU<uAaP27?Ovix3oGAO6I+76FLjKdh
zvso~k6`v~NM1PE09z&JF4p{9WiR)0$N$I7_(uMZ;q)lBA0rlmr5oBrog|9XV`2^YC
zlfcUo?@SOe69)}cpd*uu+SOQivy$D=br><_Q(-zR-LuU()b-IF2~v|KjQdp{Pc8bd
z-nJD@9!WJ-m}~lM7edqzgD0Gd%aBc2W7Jm%8k6o_gmfKGQNS==u-0Xu-R)?Dnu27^
ziMW@sLp<Co%$K=4uXvq(l@9do?+_0Q`39PP${;PVqHzP4q1|u=0Bw!bzVFiMIVznS
zcwz?1TMU?an!6iM7V(!RSE3jrCcASrAeruOMDaKQ@Vi@FP_t>4f^4_lS*_H$PC4>9
zdW&Ty88q{>;T5kuhC!9YL=}h5S$V&go>5tJkEOz?ko?Shg?=ATrG-67JHm9_oCBm5
zBlj6RlG}4Jf}J3Jt7k@tKQC0K$1Py=W6TSsl(~*d#oHL`TMHvv$EWTkYu*_){^Pv4
zD9HY+n43ira&0QKLg6k14Gv|Z5=3~-%Aw*?VoPxqgU<j#neuuvMjVNAN!VL%+8?5b
zd}`t(7SuRohtG9-pIudZSE1Ho4W|jp(sH^2`_eYnV|8Vu&_yaZ8{w=%zA$qz<Q(x%
z$OQ&r>3!^OME|B!gt%~QibtXRsw8p<Ae_!it3rrSxB4_7s(<9@iV{UZ*xiv0O_|ld
zRh%AYpM4&(KKz>@Tzy}cfvn<5rAGQt23vGcz-R~bo8S?G6tnCYL0v)Qf^l2G@A#)!
z82TDQGaC}lwJ$`Ne24EmFd~@$274|LIA1kQp8~qyh4V(_lhM3|e?gK%*&h+UGX5UH
zq|UhO<e}MtScn-C3h=cPdpBs3ahux<)ttd2^BkiIb}3;CQ8<t}ezU(__gVwuoOl6K
z?@upHSdrDwmeDsRR_!OEV5YP2c~PZk*IeRdo$wTbwq0L{iv!sbS7tEB4+`B45C2=L
zS?FaxQ0!#hk9%&Okyu%M_g=AAc+^N#5fZY@F5c?BHunqms$)X^ob~O#eF=YnJoZca
z^qjQDgZ}K)+))Hn!Asc4cl*|L-jd1p{b4|`B%`9cl(Y@`JZbD`=1$X<Tt!SKp9mqb
zu&bg}_J26j;6<o3o70DthqOf?)3wq4dO}2VI5zO4UBf64EZXPzftxhT(c#?)72efU
zdb@dO)$@NTW!B0%tjhKgF;gPb8~~d#zhO|=bU2CezXK@eenEyWeF~gyelIhLE7W?8
z?Pp6pW7LW@mO-t)u&d_}{H<4^RenWKYml88*KSU<g!faPVY?v#x#-{@66+67z-RJL
zYQxb22OYjrzxADT0}+`|X7FS#_^)`I;&DJ(Ni2FgcFC^=hpKln?v(J`;~&&y(Q772
zRH@6rBTpKQYhvbOs(aX>$QIVV4l*pder)xNT;%~jkPp54`sG$IxC-`u^lZo6A)Ea-
z&qP*VTn0YOaXR5-8zje;K(Dd~2KZj1L^9JT&Fmosm-xfJqrrd3QYLe&1H>w?+_PsF
zC@hKId3nW3ALgr6adWABB&50FxR*_%vc2}A9|Y||HvvSSs$A-8V3gJG&Ch2qQ7h{d
z6&6_v4zqC>8Gf+y@2kHc;=WGRLar8zj_5NQ$7ZXh_DqnS!28`Nn<#TZ>BXDGmk0Yj
z07x@-BhpEI06rXcq*<g9S3Wq2KKbX6^W**vUU{q!tx^G#O`E-<<^BsNf~Vh@w7AtB
zPGndLZuBCUSQ_Acr*k**P&o0#mVUgX45Fc!5S>VOrO0Od(G_z1$OGkR=se3bE`A6Y
zBl?;{gx2o*dGnvdG3bWlCg4`W5NdNB=*%Xp8;k08z%nM-nqQOe(15U4cWKsMKB4@u
zKtr-V>e<&9C{wAh)leD5B!Hg2e;`qdqhZC}#0!0PW*5!nxabkf(G_9R^-lrfCW!`*
z2>E|d8V_9o4AFh}*SaUlTdr=B#@msHp~jw|ubrn8LBpWbQVg8n{yjRfN@Uqvt)a21
z^$ds0Du)sO#*4E@uE-fw>PaD$TafubaRy6PP(i!1edsMC^ly3PGDVFQh}9XLZe!0B
z%##ufo3O1oe5)|9IU^SUQg)k!A_QT#Ua2bZb$#_XA^4nW{x?oBGJXji-29dc`%g1i
zl=edeLAF4`7&W8!c55N~=+=h~6dmpahgTsrP{_mo%K`c3@;6wdF=x0yzWMJC4BL;h
z?d(tjO+;MTx==+Td?#zSDsQlDtt7+e5S-=q>4{C#brG#i05|r93^jW@j3S`(2_5jh
z+Gb?|dFWBZ+FGMzOUu<~t!*jsJb>rrAN;eMKbtqtK7UmCV}xZ}$jHQCnoC0)ks+QC
z76vP6`DUT;k03B+OsA1l$r^PXaA2C8afE2hrMR?n9ca5V+c*tdkB_qMS5ft<o(SSj
zSrOgSI1`?js%imlx$=A@uKNmroHxlwaf|#!h~Cfj_p%$MgDThB<y?F9)|P7pM!?bZ
z3Fd-Gt-?;7Xx^swwX6<kk<Jxx1e7}rkFv`s<s*OXG;J?a#G1QQ)UMuBXgkPqeOpjB
zjgPnIUqlfn2vn=wlQO+y1?+|yzgc^0pVYU&n@SUbq}}#qo>W<g2`{9Md~T7adWewN
zul?^m3U{t_G8UM1jrZMc<>%)h#{1XZ;g#S}1p@S9-&;h)Ubpz{X@0Wz-n3j|*7-ss
zvP}1slE$P<i5WQmz(ORe^Moso{Za(*Zm%1vKs;$+_ftT@c4Qgd=GQg@puUO<%vkdt
zFU&Mfl#8xCh9YJh{;^m?(RWB_e4Iz3;nhCr`Aj&pAs*+id~8^0XnvRp)SWQ4zVYi8
zh94JA?sUST3jOgGXdGu~Fdd67u%Lcb+*tE9eIAi1XE_lmMld}=iHkziedKk?g|&00
zm?R%#W%Nb&A26|SlhNtjBCl2KQ=Icupi=`G{=!IRGf((ryJXIV@kBq`6)#Wg<XhV%
zT>CX+w|H41v7ES6?Yx_QdRq8(I};4sgo)Hxmgd!A#Oi;eZm1Jm(W4;2wzX87-%{7~
zr#Y@OF=guXNw_DDxGu$%`e#ZE@Sw9h7zOU&cNH`Pa$Z_ed8b{V1mh2v27+KRfs>>j
zUtGk9%|Q->8>7xsuQLCS3O2DNCKOc5l`ccZ)5+)0hDh`_dRs>G?LPhQF-E;SwpYuy
z&CU}wBngSc&U<v8M{~#p)jsWmLh<_q&&qeDzO~0?&WF*-FI6YI67p0TRJA~Uc5=um
zet$_LxUbn=E|8Nb1($G9A1e)DO2M8(LG}Fw9|#iF>U||UA)B5fXnEqk1y9T9ap*)d
z)I;c8<3{lSV*cg_QKa6fDm_dyGj~{~Q<S9vdUCfZ6_iKs2OtET&mg#*<;ZaPFSo>(
z3>sPHyJck{Dm2h7vg&=~ke66lqyi$$v%$y$kp07`7NjMA+`n`HXh$_}c(j0iZgz!-
zEQTqtsvjN3X?~&-3nu5N<dR&F#=X|f)Wo6&13$&iyn-#8>ZkSq(%u!?<g~HmkBP$_
zL!B`F?YUH6X|Tr@^V$4CfDY?S?&|!SwVEA<j3^=Jq&5up7)0`#>N!xu-99euPKohg
zE7_oo`+vs_!<1ppxCPsRw6D1ZP}s+kX8`Es``Gmgp=a}+H;mnT8@7g@!1m?p*e-ld
ztScMV46xl=pN4UhyzLmyOTU%e&-_zCnOB`eADRi~l%%ty_N5)m=+8G^xKH+{5SLvn
z+Ke5tB-4NwapTA{G%aXY4T4_QK=T2|<4c{53W!cO5m*gScz%GNbz{l??`P6c8w)gD
zQ8isj-b+qA`q|kYw~(-6@eC~+`Rt0U61ztgn~mn0w`?dKE~;<u43rGUBMUm(dbhKs
zt}Bfb>zOIi@QFnB;mJ})vfRqaTTXwMs-i!(8BN09@X!(ws(ZMTV24D*I%W8hFp~is
zJFcmf$a_EBVl&dR{>>O2z37d~fEe<tpx^+DNJ#Q867F**;NK$Jcs``G(&x)A4Sl`@
zjlS`L4n;_ff+j6$GQhh=n;zQoU{7Ry)gOnI=RfU8v?3FA?~A_~k*Wcy6xs7;^)4^6
zjptvM{f5g_=0lFfNmvi=ew5TYrmJDjItILnK00tm7d)Z$Tmp`IM-$t4G>NVdKi>r;
zqpZD4Blm}d;DKX4GVCiS(+XIRY8#QIzr*)3ZoH7yn&Q~Kf3#0B&}5mQ=H+>ABOXp+
zIj>vjPhte+BE59GItS0cN&Po@mEl8>NNGV)0J+<{D}DhpbvpD4BmGn&_pe2Yb*aX=
zF3sqsUJ@xqmIyU-&}(9566=V~MJ8N1ETWKW;_}o7RPKbQbcsYaeoyEm4l=`E2>u{w
zP9+jRf9;N8A<6)p?7x3nWEn-wn{=C+VP7^CmaAqi?85(xm^i8TeG{hb``9M6*X0(t
z(snH!9{QZYmI-KKc7AH7Zzj@;wsq4M|5e@vbslDs=a~*m0r_G_6R1(YGmE>sD%II^
z1DOk1d4OH;&gM4*)LRWuX$3x<`JFw6ei4Uy%Z(xH8`}8s!H`=NyBR9jLJ&ue4=RM!
ze70A1I@=*3bbGm2hCJB9tIi(dv#jPD6MgKR@K*%NPq@xgg;Un2YdNNx!j^}1HXz57
z>^hFI4&GMaYRhD5O}G<kD&srCnQdNyD5>J@5Jo&jtYn6BSUC$Vn=2?_rod>G0%Bvu
zW(4GRnb&jG(~y4%4nO_s4r)V9K$@47dcB${QjFk4NVegq)g`PY4zhX=BZs_#VR{)s
zpmev*gFDy%w=6|6zEhYdgK7Bae-h_1a0!ZT=V&d$#ufISsPOJrQS3weHtG9Lbz#t&
z&V@{Va47S&5AEIvT}w;CJ}q53f}<ej{8wB0>kY9<4ohXN2T_R;U~T|UACwcXaE6$m
z_L=D8k*bT+`j&d+LGrTmD`oStdNFxNUON#eidRr}vW){3pc>LU66pI+{;`v+_LAH5
ztN=1n9#!oLAP|2eq-<w@nqNcW_DEQ-f9_Aq>^GtXA)A1GXpeUJF8<@dyW`avllZiG
zJZ~xwRF~*Fh{D8yXiIC@%x<o!0Z(@*_$OB1@2A`dM}n_l)T-!;Gf-$}4(iTmbg+ns
za(WFEmen>&HV7?ho6iHBb*-fI{r5hB^Ro<N#=_#z%<827EuJ?$c9WN8wwDI6T)W;i
zEN29mI1W;P+0o%}XZ<#?=oi2P-SA;_DP+lp)ZZujJB!${#vLu)mFEFwtC~5IL;4ff
z-nWP;Lwy7XIFY6BIsvvl>dc075V0IoRR^d`#Ur8Q-K4iu&8~^xoeOQt<qf|t;jbY&
z|GlX#czZ(gbeg|rPKbZz&US_nar<M@iSQj^HHpD|sP+3@3v51a4oC5<q5-0Mn0uTT
z@X~VkvIo~mvf%BIfyo>J%+u(dkLH!CHT~|PWr5;ENeBuuU)CvWrubm8L+pCj(QS-$
zl;yPk1is}`<=qLEn(YM=RnV{h<p*QJ1{dY<uFsr}0e4gC%jE?*MXLoEFm_)_6S?t&
z5#jyr3@cI<gNP$t%tFplb0F7=s=r9xyAUdO)QeH@AiMdIKqDG-1es?<L$qWdF*2m$
zi17Lz9`8`y%kXH>tel<F@Pj-Z8cMG5@*(mJ0E6h+Lk%2!j$pH5o48}K2a~R3rk{!;
z?(>T%Y!R8FFi!%6q3XH4wFV%cC3s^Sy)6Q<K))Dz{qF%%8m;9r#FTm9d>KBDk;&qh
zXFGxGw5cHW*I=pewg;j2u9xy3eeggM&qG%^$M<agE|!v?zrskJBwk+v&p4jy(xi@L
zd;NRJPM~ElZTue5y6itA_u!FhV-G%6<-vGYVfmeyv9-UIJe#}b#PpXi|Gy}Z$_uH@
zMuWOZGd5f~9{TSZ9Czw?$d++*PgRXPJMRYX{yV3<a5{Ty6w$B6DnpL@f+c`j_yvE!
ziIe%@v@Fzln0Uq3c<B(U0LJT{&zhUYV3sPlNl+w6>TDOE!Wr^`1S63xA>w7~GeX<B
z<+Uv%NDSi4rJ((P96&6;zArwJU!8|^x1!$quw(!c|6*;zud_74L=6^;4K6g-4gRAY
zRyrhu%W2P3NZ*2@J5EYMk|=10T%-OScH#*z06aLth4MqgZD7$kP$7xXWNWip|I=U7
zeoFN*N93WTm}vaUVM)i?BNS)x4>}ZC*svPzbi#K=g5>0274@#qVCaq=*=oVEI2kZM
z5H12}b{cFe`Cq?Ry$AENd4X-vTx6*H7Z*D(RYpd~$;LW0C;DrL`>eNLx>zd)W~RAX
zgg|^{K<XLy6coGY)>iC2y8>hX5E~Qt4LV41CCi9npO$Vhz>|6MYxt=}9gRN|C5Z>O
za1_87ugtl47V$3i{DTFAmI!u8mLZIT<JPjRvE-aq3?ub;$ZK<8%tz<o<zhqpQAl1{
zRb~(3iKhQDJA0Hb(~zk^ZuoU!9MjgUq1{fXtj6ZV9%L8KZCI>fRSKfi4|8$HOh`H7
zit|zk+j?QDTUsWdcelW$wOVzE4Da~*TA;ipHlC{OH8=^22q;!!`emqb46L!t>dKb(
z)I!PK%qC41DWr|#xMTObRT=%V<SVFX_f%+$1K}5y3Yw!n7(;P<V_=2okqXE>y9&jA
zh-NzpB6YBRGh8<p3P=&jz}=cfEjiwsz7vM>8js0<Cc{lA(t*zO*yvrDH&R<axQB_m
z5#y>qm`0IR@>j=<;_j(9-MD_{k$N36f6=6&t19H&t2Uo4<rvLKX)AowxbFjw>h>ZS
zKU@(C##?&FBxCp7bm`B9B6E@T$*RKTq~2-ZZ5mE`frK9-w>6~bNZRA*bqZQ@AYP`n
z?Y~m~Q0f1R3=&*?#4w5hv4~Kv^UIQL;Y=c#^RQ;gv6NR|E0y?3)=?dSQw}$`VyQ>T
zfCkj~ElO|ipK`{gTcP7Q7-w!Y(KkA)MGpfJ&|PUu7@I!;v*>0cU93u+Y#mlw@Nw8^
zSwu9WfmMEx1_8^-QYYF0W@q=TkAzcSvV?dX>xuk0FQ%(d@)&!Uf;7Y)z89ym_ygQL
zxduXINhD_w#0FQ6kJc&>w%e)_t5BK6KTvGsz7J?1y(NAnQc^^CHsN6Idm9~lhlUNa
z&rJdj5+x%kfLO5yrgx{h{M-z-i@G9t{IxP@hYXcl`PRXs;*9)*U>MsXfJlIMlRic6
zxKm>nr*Cr9?6zYUnQ1bdPEyoUintTLYq68@{lT;D(IpPk{P-UnNTu9iG};eD9~hC8
zkxpKIngY4>StK}fL^NE+3S|$4d&mm#k#-|evaW2T-h9hGC614(j=Izqmtr>3YbH(+
z`P&P_ilc_JvFYjEk>f(7=&e)7@oz!JmOXY-qCO2$Pu5E)joDYgQ#@>v>1L7+1>BrN
z*qmh~3lsjQ`i205EN+A>&Ms8lDQ#zaK+*AuZY_c#t9tO<?DrEm7>*Y*#}Fkx$<=y7
zPCb-R((Ad9V#^+X7QZqy^*~Qb=C?I+dyQ%fdF+jE`Py3cp?LrYle{6PNfpYDu`N*v
z)~XQ*%W4jOHO2MK5z?7TqKqKL?n^pvmepYCJ(+g|AZ)y9!2;zY4iQ5A_0oz`!2jxX
z!PjQg;32wEZLZ%Ru<Z!r%2|~J-pwqI5`!nU4-A8^&ag=QVO~BM8{FT+M8k}JU)60x
zrB81Ru|tFuENQf&M9XoEzR*U!vD1**rPM!Zn0A{||8YClSX;vOS(|DlY&MV1Yu7{G
z1EaY@IPL_%;`>mSjs<@2g@911p16%fv4yk<sV?+>`np_*ewkiwW%aarj%Mo6T(CvE
zS3L~(2#vW*m`h&{6SL+j7pix1@ZzWZP=i>Y%9cSl&UcrOzbKMT=!^(G#w30ui%+VO
z2_o7z5&R?qBiwb2MeeQXIfBd|HZsghw;VyolrgPMkEZzNwe&E4)dPB~T|*WU?MvC2
zJl=(_@gjMG!)_a|Ey{1#L8$42{w9DDOA$E3F47K2_l?eM3LTq)CVu3G$)q-b(exn{
z{LMPBa<TW-KQ>E0V$SVx^=cQe3lAQA4Q|F=<s0UQqVjKIS+V)c`;tVPK3fyr%FFp2
zch0z^7SsaDjQ73wb2x`Nd&9999I!H3BkthN<6NEWWaox)!5EptDq?l5af=srN4`|a
zPvROGXXcikuV-r`Js3fF4fVmkKQ?PqMhgc?>)zRvJ3wAlekO`P4QDd2CmSJh5ziYz
zApp8gB&z-csD2s?a!mLFiYit7vp>buC<pkTC!XX}O#_E4(kd1LjI;tIp_UrXbhqe2
zM^QU=OqG0dv-GKzCG%?iISd4pP7S!sy^8Tbs{A@=B`Nbk16ZL^bv-O;7N^ZKm|4S<
zB{9`MI1QiBbS`2OR^^oqhx$Opk17GZT^o9n@XU+#g_L4a9Y12P_V>^O-4JC}v!*)W
zlq|SahN<bQPEXhK)ui&d7HKEgnD%LyIK!>ZKXO#G7=u6A3mdJ@)#w+&LJQ>w+t=#$
zCa~wCe-h9fPVwpKA2c}UW!i1xLxeJE=J*dI62Km}r)NiRk(Ms;v_rx5Uk`DYmaS~r
zaad5O(igX`%~UASB895|(W`f9g-Qh)ooqIo<D0vZ+-qA0L)(!Ug5%{Lpj1@w-5ml?
zR`R@DNpTHOL3xss0H{@<pQ?_x5HkFhYafO73_ZpHc2n;_ZagypY{T6;nub`*B<-7y
z5u46m5Ni1I8*%P}+1@-sQFC47Havy&n_BcsHqyhf^zX>gk5?+JG8viQ`p#%pNNPSg
zaE1C`@CRq#R^J8J^y!Z!rDb9npgU+RGU)?qFlO5I-Tsgl6<Xlyx825o$sr4Z?_V)&
z7~5zj<iM;D%s6jgw}O)fx<ELuYCyuaYTipdik`^PK2`a4*12`97d*kptjQ<v`4*Ak
zHNVWWVzHB@JNbMw_M=Cc1c5dXDN&{I4a!ki9}Zly3Y4cj79RHoB4|f0GeyBGOT3gu
zY*SYPX98`Ym3;&NyLy%%>jQ?RD+zlI)1=)CCKpi_crohSNhz3)8A}IRJlLZW^X+?e
zKmApwMA-_>(Y)G_0?^17AJnP9L2l~@t_@#j_Oo{XB`>&z`u6jbnDi7g5_Nc@ueAgt
z7J@RH6AJ$s%;~6a*dTGAQ1Nn8XZm#`acmNVRcY*Xn@rQk1}y5c7v=U4!kQQ@sWet2
zD9t&R2VM{G{0LN1XKxXIrP0I};F3wpaJF_b@{$E@JBBw-TLz*Dd1i5kCB-B4oDLV_
zEJY!aDVV}i-hO>#;%_J3+Sm>=UniTqj7u`Dd#>lfm_HAOr^<dh_f6;cm@@xP-Aj=!
zL=}=wP`*#frtw=@a8HTnRartC6mEY9#9rlYx~zo#!Qh<Dm_JaKT^^^aMseMuj_;rP
zk^qGoIUd0V_~aYuYqN1|aI;V;`@)9Wu}!PI!RzC0P{U4Er=Ixs$wi;;-GFfq_-JCp
zdTBIss{~iVoB&*?1DH^nkbxe4C+ZF@8>orD;AGSVVlz<{t{6EtB;^q~AuurZ=z#`o
z4XvIDe{8XYsyj}wi21nN9(^)IpO>D7Ns4UZ_+n$!;Zc*pFZK|1_qHv&tmLLJrtY9@
zs7f<6g`YPfM)yrT2iTz10o8+QnUIV8EoWJH(8hAEG6Y5CFB7}KYf%z*m(>%c-Z7*j
zyAqO*K_8KJ9<r`FdY`#8GBYn5!HNcX)|YhvFteWO=<^w40C?wow*{w_r$q!+5S<7k
zN<TMgldDTSsjh-husiEK*Hn))$Nf!rUFSTt;x+x>wrUVK$=4YC(QAh|tW(nWO(Ywl
zG2v7}6f{up33k6%1so{#`kYS_U5W`jzRCF1vH8u(N9r(6%8%I<yipv_LGg2nNO#~;
zl58RJk_svMp6O_3Eti*x-UhTcPbr)AdUl1Oe#<nM=pdosUAyfb<DX1wtd}CQ%Wxg0
zVmh;ILL~q3b-}Tkc*b!zsND>T5M5KN?N(vShvBMuSB!NMLm4o+;v5pAiQCDJ(YlaW
zj*T)8I}9S(ed+PSk0+wPW{aryU^ws7KpzfMvU=c02-RTbP#}WT<*bYQM?mn+PL#dw
zvfO(gQj-w-tf5>&{{JXlU$q$USq81Tc%4HHb@2?6<Ch+h;3PeZ^);ZAnu-YZWl!jv
z1~YYgwo=8Llr%_WljpADFHRVD0qZFvUis-_9tS73>?>ZBCaQn1-;(+UBun-3Bc<te
z5C!n4W7F4l2t-*>Gcdrg<p%gnYCF>IhbVAc#CE(`M13(I9J*&R65}TUHj)5*ccArO
z;XwEB=FeWwuxO&FiB^u<{ZvJ~Q|BsOMyAT1eVZNbSQ_xY3G8>H(n@<kO4}ZdpS@_d
z-j&%S&+G8SH(?PkwM~m;ix|SsL8|qir_q|Sy$f{Uf{w5A3I&bBDa0no8L=|nY;^-{
z%;!+qy1z4$v}j>Qn=fYzIiBsEHSk6;dP$B3R9#WV@z@c=B0x{fLCt)NW4z2Cy{4j0
zwt}zC&N>e~-T$+n-Ttv=hFb(DLTZb1Qxnup=z~4YGu5)7dB`onDU_@g8=5{^@Da7F
z=Msk+k^e{2X+(-8dr?n9IC`ZV#Ol!j;RJ=%#1v<wYC1*IDr~-v6gL5ex~D6N?$ghs
zn!c-$sN20bJL<|+VW<EiJ=d1;%i>MAn0KG#!;f_rWt3vn2;-a0!%IX5QgtNIvr(28
zG=M3}sFlvNp9u*bWeglJ{42Vi&hb@U<hnr53cI0~s|<1<05g@GZ02)pSW#Kx>wSGi
zN)^QxO^D$P_KJebl9;Q_3FtOQa1Vql!R5kyKp#r!R<4@!Xt4tI&S`9T5rflqVHB^T
z8IA!a_@0p~6sJ?x+E9O?y;U80sfIEgrD;N)w{k3gSJ2@ZF{SxEX8;crq}u#VD6Y;s
z8|-oqn~HnVij~?3>EWP_j+j_!tSIf+dbe%-yu+%ICCO5+Ww1x%biOb}*SU#^VE5T?
z)Gv`Gf{bK7bVKi{+PcLhNRPT?<ilu9iS6`XDJ!6&2&P5xIpb|`C>{}H@A3|{tWewX
zjFf*IQ%KLoO0wRbWEgx;rFGd2`{*@ps_inlF?^bqDZ@8DVBo+}X55I8s8H6P^V8x3
z^z1M{ch(bCm;<|^(Ajr^Q}Qy0(EP7B=!?0&*%}>G(+!*SskVF)xbVp-Lw=_@blSaX
z;+4#5nphUsKfMd!Fzy#3DKlN(I6{GZEcAJUSp~LJx@Q~4X$|iqRPp_wH25?H{<`77
z-=NxF2w1vtKb(9+E5IfPaD$U=%aHI*gBnfTZo(t(!I*hW{j$`k%R|^61~%<}tIrPk
zx5k;ghbZAE-pc#@;T#rQXUhm3F$>Z6a^a&RAI00K0dg?97jig@Nos<1QF0kYhr*eG
zl1B&~2C~xfLL||Z%=*2Z34uE?Pd$Xg>vX3&*w5`lXALqQi8lw7{-rCW1`BEyvAyqh
zqKB{XkoTr7O{1s)i`K~N6VdBiH|MrSA63c82@v=$*tlMU0g!RjXYox)Bi`N_;GvbB
z(77^zGtiYW@dw3B)uxPwLtKA|!OmY$1b`USg3~Jsqx|Tb%*<u%>Mnh&v!vU$1+9>T
z@yC`yoB;9f()EsPmnBcIJnVHE(V&eN2XaTD(Am{AXgYOK-211z9;@-FSw#Njq1@Vc
zIXrJ84AzBbLWX`Uk?ol9z5%mWsMNQaDWsHq*Mfh$drYh)<ILc^F79t!faEir>VIBr
zR&;szuepYfE;%r?lX0mFCMICCrLXKZW9*pL)R?=sCa7lS$XG#z*$R+8p#vttO5Idk
za4Oe+#wNm4=CzWgF)r&KI4+!V{g6v^Kpu|TKHvY26QxA=4<{*oL#LPN)Tyf{_QzJ0
zP*BITI?<#x^fk7Y$zWg}@<W|2C+!A`$JwLfGa7U)d)WqMDMKYNMJGe~J`x};TMYES
zFcW;S=JaRug_G;Q$zsb08SD-V2v>wb^zIxH|0kc3?MFv4rC%LKI1gDr(y=P7oN_P1
zbI>ir?h1FzGM~5d2bh%3VMYvXl%N61tOQmq(y}GaUfKS@BBxo%UcV;a477~}R<l{_
zMUFt5r3=9f-hxB^D%mxVTt>EkI7YdzI5$);Q3i7T<Y9J~<KTwU703|hU<`zLmU^&<
z)Ew``%m-CCpr}U4{qz1T%|zC`eJ_Vr_ydX(iG>hyZ@<0|-g-&*F0<wP=|y&J8X!_#
z{JNJOZ}oY4obpCj*$7B_9om$22fDS!5~LE{DqK~u3C$2E_sCv^P;S^#gxlP$al5#P
zd1@h;ELwn>Jxsx6Uls0q8w`TQnPT&=VJ`)_R;!CB$1E2c{ky1hJ0+TBW4$C;H;Nb>
zN*z@_bcD6i>1LG=-}6GTL%|uTFxWKE5-M!BoaJ=mPUgSyg=+PSRu2szkmbXH$dyI3
zhDk=g6V?n|>zD=o=O|LP+h|~BmD^cz0sQJOJB=XTD~=)vSpatsq@@4(Yd5Z9NT6AM
z?~Y(JSLYAp(p(cM#XDntEbwl9=w;nJ^~k$Zzb?a;UBiv8l-MTw;YLk=;fPMgU6u^l
zpyR(_aA$3cZ;@<|4u{;e7{;)GuY>!$cb77ZWpM<*Rr5}rOQI|#6bl?P@3Awk_$mPM
zyd9XdkmM^m+KU;mAJ`8B;2Z~Z%k>CZglw=0mMJ}gg>_&pI$&;#*>xm4d+dC%Rf&u!
z!f50SIIR%w#~71@<#+;IE3%4QNnCt&<G;svzfmu~vZjn)Q+}=<9scEr9Z<1txmp5#
zw?d^2yV8&WMbds*+4!Zr7OzCixNSSYTTmTSvW5RsBZaU(8#`(83YCy!>!ly&zdaPm
zuF8P-3^i$X>%}%8;_uI1ZvV2O$7tO)*#-IVyDDQIir;2Zojj)W|2drVZ716gPL*H3
zPA5W^GP&(Thc2kI)*MN^mtBFVsQ~})h=6UR;x&vCqJx5i_m4tz>?yXP(SseU?Y<T?
zx=x%^qHvw%$HbnkY^UJ^KAAtRV${&;a>50&LbNg34I18exv&B(Y_WrgG;TV{Sm|2l
zEi(TyCaVueziukelTMn&!JB}kxerLP@UvNuk+^aWNS?Q%qh#2fC#NOUU~{_MzQmfO
zY`UpZ&myvJki9~|a7g<oQkx6_Nc7ZzjmAMD?1<JX+Z55%NYa%#by(H6OK-MG)$6?Z
zZ1-of8m!)-8;koHIz*s?s@*~Y&Qnm$(1^jvMc^z)chMm)-T0zDq?0ey5mSGt#^_rf
zeF=y-BA<h*os1V#GU|#O_(8+YtG~f?!+}L&+3AdZbhl*R)8OrIzfFd;R0Po%3YpDK
zge)Qk&Q<f3Ov`hDjFTa`P)+gFfab0wThS9p;7#gyHg^dT%oS&062v@5$n_M#XA<(t
z5i8^n%Qn~6Xy&bY?$TH;FW_;f;Sde^)WxLsgCObv&Y|dWTu~&E9K|wK61LDf{lHa#
z5~MUEA^3gKzEOorbKB(GaG!xf8F2f6RBKpjAKh={*>}^&Je3zyof4w@Tm5RmrGd5Q
zlHoO#1j%_ilrQDiw1Ardspc8XkMI$K4=Ws9NW$pGYgMkYNa}=T4Y%*+H9dz~dp?vV
z!w!KgnEpWEnNvV!73zysdu|1tJav46n?>*+r6>N*zi}Rt7memZ@U^aOuyOtuK}oT{
z*9i;mgeD=v09d`(EnRX%+y;K)v1YxJNaCb!v;@$Y!SmW;TNmkp>(dBuVms30SxXDf
zOSsH?#m!uviYN_*8nthUP`i8S{2E59%0}Dxk&6#%so^kZke4z@3f%EEI3N^IaYDK%
z(Vap~evVWOphz3iJ%%|F5bq~M{Kco&I~i9(@|FZ2lYP7$*NW_xNF>loO5L`>D}bx~
z+hbPhz%b4?XtY@_+~*TH$M4lHNGW89>Lt)kB$xMCRiH+Fv9=*9z|X#PqIa6{p({HH
zm`UA~*k5mZ<;?WsB9*gkYr}d8LB2UwY3Oq_epI`ZXauA{t@P*>O3U62*!CS0J)<7T
zngOY^v|SPqH4<M$d&;7C$m#W2-Wm^onHncRW`~G~J(12p2GsZu;c%zvCkgOKm7{*=
zfU({km-*WB>d9X0_|(_q?^(KEH=;igJ3!7i(%0ni&bR)76iXqK9l*UDRu@{2!cP{l
z*q3%P!W<pJnrgn^V2RUjmjRR&)W0nPTgYB00;vId04Mw)Z>Sl9^;CCJ?uv_~Rt`%w
zTCxNFLs(_qCkx4ik*g-gkQ;55chMv-Pzq5G74-`IqLOjhyOl5*fkG$}+Z{hSw|xAN
z?q={Q)w+vLbpyeLOm}^qDc@2H2x%?@-%f=AJ{u*do<qSRu2O4%-1ySJ!P5Uh2<qFB
z1b~{8RRG9qqIMea{^I~=BK_B_6T<Ern~js=${TmYvCBEZ9^Dw4ZI!)#RfDjovs!ui
z$HhpNB;9{4)caYy?7YmNU=~>5HNV2SM~s?VLXe`Xey?8G_H$_=2s#lyK9nRATLfAi
zC<*RG)v&@gM=1mdzKrU}j9#$$30}NKr~a6qV{b9f!iE!l1Ni|1cVHIE-9mO^7&rTj
z3tiHTyDN~p%yieVskQpiGeX+CFfqs3Gux#C>T7@fnc63m_}aPt+LH*ZVSoTdSV=|>
U0000@O#mtY000O80000001eSdX8-^I

literal 0
HcmV?d00001

diff --git a/src/modules/changelog/changelog.json b/src/modules/changelog/changelog.json
index c37e796..9633cae 100644
--- a/src/modules/changelog/changelog.json
+++ b/src/modules/changelog/changelog.json
@@ -1,5 +1,17 @@
 {
     "current": {
+        "version": "7.11",
+        "date": "March 6, 2024",
+        "title": "cache encryption, meowbalt, dailymotion, bilibili, and much more!",
+        "banner": {
+            "file": "meowth7eleven.webp",
+            "alt": "meowth plush in front of 7-eleven store",
+            "width": 850,
+            "height": 640
+        },
+        "content": "cobalt may not have as many groceries as 7-eleven, but it sure does have lots of big changes in this update!\n\n*; all cached stream info is now encrypted and can only be decrypted with a link you get from cobalt.\n*; new popup style featuring meowbalt, cobalt's speedy mascot. you will see him more often from now on!\n*; added support for dailymotion (including short links).\n*; added support for bilibili.tv, fixed support for bilibili.com, and added support for all related short links.\n*; added support for private vimeo links.\n*; added support for tumblr audio and revamped the entire module.\n*; added support for embed ok.ru links.\n\nwe also updated the privacy policy to reflect the addition of data encryption, go check it out.\n\nfor people with iphones:\n*; clearer ios saving tutorial.\n*; added \"save to files\" ios shortcut.\n*; updated save to photos shortcut.\n\nmake sure to save both shortcuts and read the updated tutorial!\n\nfor people who host a cobalt instance:\n*; updated all environment variables TO_BE_LIKE_THIS. time to update your configs! for now cobalt is backwards compatible with old variable names, but it won't last forever.\n*; added a list of all environment variables and their descriptions to <a class=\"text-backdrop link\" href=\"{repo}/blob/current/docs/run-an-instance.md#list-of-all-environment-variables\" target=\"_blank\">run-an-instance doc</a>.\n*; updated <a class=\"text-backdrop link\" href=\"{repo}/blob/current/docs/examples/cookies.example.json\" target=\"_blank\">cookie file example</a> with more services and improved examples.\n*; updated <a class=\"text-backdrop link\" href=\"{repo}/blob/current/docs/examples/docker-compose.example.yml\" target=\"_blank\">docker compose example</a> with better explanations and up-to-date env variable samples.\n*; updated some packages to get rid of all unnecessary messages in console.\n\nwant to host an instance? <a class=\"text-backdrop link\" href=\"{repo}/blob/current/docs/run-an-instance.md\" target=\"_blank\">learn how to do it here</a>.\n\nfrontend changes:\n*; removed migration popup.\n*; corners across ui are even more round now.\n*; bottom glass bkg in popups is no longer rounded on top right.\n*; small popup no longer stretches like gum, it's fixed in size on desktop.\n*; small popup animation no longer lags on mobile.\n*; better ui scaling across resolutions.\n*; updated donation text.\n\nthank you for using cobalt, all 750k of you. hope you like this update as much as we enjoyed making it :D"
+    },
+    "history": [{
         "version": "7.9",
         "date": "January 17, 2024",
         "title": "twitter gifs, pinterest, ok.ru, and more!",
@@ -10,8 +22,7 @@
             "height": 350
         },
         "content": "yes, you read that right. cobalt now lets you convert any twitter gif to an actual .gif file! (finally)\njust go to settings and enable this feature :)\n\nservice improvements:\n*; added an option to <a class=\"text-backdrop link\" href=\"{repo}/issues/250\" target=\"_blank\">convert gifs from twitter</a> into actual .gif format. files will be bigger and lower quality, but maybe you want that.\n*; pinterest support has been completely redone, now all videos (<a class=\"text-backdrop link\" href=\"{repo}/issues/160\" target=\"_blank\">and even pin.it links</a>) are supported.\n*; added <a class=\"text-backdrop link\" href=\"{repo}/issues/322\" target=\"_blank\">support for ok.ru</a> in case you're a russian grandma.\n*; now processing <a class=\"text-backdrop link\" href=\"{repo}/issues/318\" target=\"_blank\">all reddit links</a> (including old.reddit.com).\n*; <a class=\"text-backdrop link\" href=\"{repo}/issues/316\" target=\"_blank\">instagram live vods</a> are now supported.\n*; fixed a <a class=\"text-backdrop link\" href=\"{repo}/issues/289\" target=\"_blank\">rare vimeo bug</a> related to 1440p videos.\n\nother improvements:\n*; ui fade in animation is no longer present if you've disabled animations.\n*; all images now have alt descriptions.\n*; cobalt html is now <a class=\"text-backdrop link\" href=\"{repo}/issues/317\" target=\"_blank\">biblically correct</a> and follows the html spec.\n*; lots of cleaning up.\n\npatches since 7.8:\n*; shift+key <a class=\"text-backdrop link\" href=\"{repo}/issues/288\" target=\"_blank\">shortcuts are now ignored</a> if url bar is focused.\n*; longer soundcloud links are now supported, also catching more tiktok-related errors.\n*; removed mastodon from support links as that account is no longer active.\n*; added ability to download a specific video from multi media tweets and support for /mediaViewer links.\n*; fixed <a class=\"text-backdrop link\" href=\"{repo}/issues/309\" target=\"_blank\">modal blurriness</a> in chromium.\n*; minor html changes (road to biblically correct one).\n\nlots of long-awaited updates (especially twitter gifs), hope you enjoy them and have a great day :D"
-    },
-    "history": [{
+    }, {
         "version": "7.8",
         "date": "December 25, 2023",
         "title": "new years clean up! bug fixes and fresh look for the home page",