From 0dc4909f545c52e78ffc7603d8e58c1c5e92c9be Mon Sep 17 00:00:00 2001
From: David Canas <david@learningequality.org>
Date: Thu, 4 Dec 2025 15:08:02 -0800
Subject: [PATCH 01/13] First pass, based off of suggestions from AI.

---
 docker/Dockerfile.demo                        |  43 -----
 k8s/Chart.lock                                |   9 -
 k8s/Chart.yaml                                |  13 --
 k8s/Makefile                                  |   7 -
 k8s/charts/cloudsql-proxy-2.0.0.tgz           | Bin 3650 -> 0 bytes
 k8s/charts/redis-12.1.1.tgz                   | Bin 65202 -> 0 bytes
 k8s/create-cloudsql-database.sh               |  25 ---
 k8s/create-cloudsql-proxy.sh                  |  21 ---
 k8s/create-multiplexing-reverse-proxy-lb.sh   |  38 -----
 k8s/create-postgres-user-and-db.exp           |  62 -------
 k8s/encrypt-env-var.sh                        |  17 --
 k8s/helm-deploy.sh                            |  38 -----
 k8s/templates/_helpers.tpl                    | 134 ---------------
 k8s/templates/garbage-collect-cronjob.yaml    |  78 ---------
 k8s/templates/ingress.yaml                    |  21 ---
 k8s/templates/job-template.yaml               |  73 --------
 .../mark-incomplete-mgmt-command-cronjob.yaml |  78 ---------
 k8s/templates/production-ingress.yaml         |  23 ---
 ...set-storage-used-mgmt-command-cronjob.yaml |  78 ---------
 k8s/templates/studio-deployment.yaml          | 157 ------------------
 k8s/templates/studio-secrets.yaml             |  17 --
 k8s/templates/studio-service.yaml             |  13 --
 k8s/values.yaml                               |  70 --------
 23 files changed, 1015 deletions(-)
 delete mode 100644 docker/Dockerfile.demo
 delete mode 100644 k8s/Chart.lock
 delete mode 100644 k8s/Chart.yaml
 delete mode 100644 k8s/Makefile
 delete mode 100644 k8s/charts/cloudsql-proxy-2.0.0.tgz
 delete mode 100644 k8s/charts/redis-12.1.1.tgz
 delete mode 100755 k8s/create-cloudsql-database.sh
 delete mode 100755 k8s/create-cloudsql-proxy.sh
 delete mode 100755 k8s/create-multiplexing-reverse-proxy-lb.sh
 delete mode 100755 k8s/create-postgres-user-and-db.exp
 delete mode 100755 k8s/encrypt-env-var.sh
 delete mode 100755 k8s/helm-deploy.sh
 delete mode 100644 k8s/templates/_helpers.tpl
 delete mode 100644 k8s/templates/garbage-collect-cronjob.yaml
 delete mode 100644 k8s/templates/ingress.yaml
 delete mode 100644 k8s/templates/job-template.yaml
 delete mode 100644 k8s/templates/mark-incomplete-mgmt-command-cronjob.yaml
 delete mode 100644 k8s/templates/production-ingress.yaml
 delete mode 100644 k8s/templates/set-storage-used-mgmt-command-cronjob.yaml
 delete mode 100644 k8s/templates/studio-deployment.yaml
 delete mode 100644 k8s/templates/studio-secrets.yaml
 delete mode 100644 k8s/templates/studio-service.yaml
 delete mode 100644 k8s/values.yaml

diff --git a/docker/Dockerfile.demo b/docker/Dockerfile.demo
deleted file mode 100644
index 2ae03758b6..0000000000
--- a/docker/Dockerfile.demo
+++ /dev/null
@@ -1,43 +0,0 @@
-FROM python:3.10-slim-bookworm
-
-# Set the timezone
-RUN ln -fs /usr/share/zoneinfo/America/Los_Angeles /etc/localtime
-
-ENV DEBIAN_FRONTEND noninteractive
-# Default Python file.open file encoding to UTF-8 instead of ASCII, workaround for le-utils setup.py issue
-ENV LANG C.UTF-8
-RUN apt-get update && apt-get -y install python3-pip python3-dev gcc libpq-dev make git curl libjpeg-dev libssl-dev libffi-dev ffmpeg
-
-# Pin, Download and install node 18.x
-RUN apt-get update \
-    && apt-get install -y ca-certificates curl gnupg \
-    && mkdir -p /etc/apt/keyrings \
-    && curl -fsSL https://deb.nodesource.com/gpgkey/nodesource-repo.gpg.key | gpg --dearmor -o /etc/apt/keyrings/nodesource.gpg \
-    && echo "deb [signed-by=/etc/apt/keyrings/nodesource.gpg] https://deb.nodesource.com/node_20.x nodistro main" | tee /etc/apt/sources.list.d/nodesource.list \
-    && echo "Package: nodejs" >> /etc/apt/preferences.d/preferences \
-    && echo "Pin: origin deb.nodesource.com" >> /etc/apt/preferences.d/preferences \
-    && echo "Pin-Priority: 1001" >> /etc/apt/preferences.d/preferences\
-    && apt-get update \
-    && apt-get install -y nodejs
-
-RUN corepack enable pnpm
-COPY ./package.json .
-COPY ./pnpm-lock.yaml .
-RUN pnpm install
-
-COPY requirements.txt .
-
-RUN pip install --upgrade pip
-RUN pip install --ignore-installed -r requirements.txt
-
-COPY  . /contentcuration/
-WORKDIR /contentcuration
-
-# generate the node bundles
-RUN mkdir -p contentcuration/static/js/bundles
-RUN ln -s /node_modules /contentcuration/node_modules
-RUN pnpm run build
-
-EXPOSE 8000
-
-ENTRYPOINT ["make", "altprodserver"]
diff --git a/k8s/Chart.lock b/k8s/Chart.lock
deleted file mode 100644
index 3710092dd1..0000000000
--- a/k8s/Chart.lock
+++ /dev/null
@@ -1,9 +0,0 @@
-dependencies:
-- name: cloudsql-proxy
-  repository: https://storage.googleapis.com/t3n-helm-charts
-  version: 2.0.0
-- name: redis
-  repository: https://charts.bitnami.com/bitnami
-  version: 12.1.1
-digest: sha256:8e1cf67168047aa098bae2eca9ddae32bb68ba68ca80668492760037fe8ce4ef
-generated: "2020-11-25T04:47:31.298097908-08:00"
diff --git a/k8s/Chart.yaml b/k8s/Chart.yaml
deleted file mode 100644
index 0395068cfc..0000000000
--- a/k8s/Chart.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
-apiVersion: v2
-description: Kolibri Studio, the Content Curation tool for Kolibri!
-name: studio
-version: 0.3.0
-dependencies:
-  - name: cloudsql-proxy
-    version: 2.0.0
-    repository: https://storage.googleapis.com/t3n-helm-charts
-    enabled: true
-  - name: redis
-    version: 12.1.1
-    repository: https://charts.bitnami.com/bitnami
-    enabled: true
diff --git a/k8s/Makefile b/k8s/Makefile
deleted file mode 100644
index c81ba867d9..0000000000
--- a/k8s/Makefile
+++ /dev/null
@@ -1,7 +0,0 @@
-DEPLOYMENT := `kubectl get deploy -l app=master-studio -o custom-columns=NAME:.metadata.name --no-headers`
-POD := `kubectl get pods -o=custom-columns=NAME:.metadata.name --field-selector=status.phase=Running --no-headers -l app=master-studio | head -n 1`
-
-master-shell:
-	kubectl rollout status deployment/$(DEPLOYMENT)
-	echo Running bash inside $(POD)
-	kubectl exec -it $(POD) bash
diff --git a/k8s/charts/cloudsql-proxy-2.0.0.tgz b/k8s/charts/cloudsql-proxy-2.0.0.tgz
deleted file mode 100644
index 29a9046b19339b5238920ee0a5d10e186be26c5e..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 3650
zcmV-I4!!XoiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0PI|CZyPz1&gcFWb@DEd<f4{j$@ZWDfABa);GK-Eu`)AQ<bo{K
zU6MFvlWmeMTkGh4`+;P?sbxua;&?o_VgRQ_RTs%(y*w<E3YkbFb;X*A6gRWh@q|e2
z&q&N(JYH$H+wJ{c&;H+Tx9k76yS@Dvo$mg@{(gIJZ@>Mb-RbRi4qia}5&N*Rq)HR{
zqW#Tn)d%+%DI}r4p;T1x0H(VhNs{7YqvLn>8(xGelr+({?wt^0hHz}O1_r;phrUr8
zZz5t0V4`)Rf>z7wls~qlekkIWx?-(JgsPPYrN<IgtI#;_5@**!Mk?@{;9l{XU^#eA
z$my?`*MxZH{xAMI2Ar6-7xmbi=7ZSv+kV^ov!(oeOU?eLgr%q+*#T^@|88fmUAO<<
zUT16nPf;W$jE3Y`q+AEk@jM!nF$Nxh#6&2ng`5R24y8{;t5B9mgqJ8=;}A1@1JGm~
zfbkd}K$0@n7mS9p08U3|LiZ&q<l3{wdOk%dX@mhZ8r~>nY^l;yD5o^E-O#fH12|@>
z(kM^+9)Ln+Z2M?5qMYiPeFK1SE;KP-N(FE`_q?4QI2L?F$Eie+s6;A5^Kg}-(h3NV
zfYF$0Whf<%O8<444pDN{sLY_P;|c{2G12zHva~I=V#3K7o1uu4RAV!5MKwdgHK813
z%PT5vw*YpsW&`^SVUh;WX}4qdF~-<RytDhm&(v1sJ-!dU$3=t#WEg58ofx!WD08`d
z{N#D0kem5h4oPS@hZ2d#0JKc8kpEE_TD_=$58#}xnW~)~7@!6{L3nrEhwM!t?p3(N
z8T?~#eg-4T(09~}6ceJ%Gb#l`1Z8-MN`RqUX~ILa(_~sP9OG1JLybHX5k_!L^#q1Q
z;eOAMp+ENFUm?+XcbZva{vS$k_>z(S%g_qWW{@h3fR2C*z#FPG<zrA7O4L9Vs02eg
zq8NEQJ2lb#gtJl%zr2S~aE_sowi$`xWBTpohGXY&2l_6o4Sspw`gyi6$c!LOBBId^
zYbH`@MVm<R2Zs8Mm4d{vX+(_N_sjBfjEt5Wax-5WiOX(5BBX}BUUwIS1lLDf)$O+T
z-<Ud~Cn#OrOr&<&MnXFNRnER+{i{NV=xBrzxwfw<OJCL%A~0_($iwKl8Gl}B2V<z3
zMO6Te{IQX}ac&U{VL*mMiBoD#z)iFkAToDjg`;K4L!yleRGTmgp(mK}>+C@|A(Dg|
zWsNS8IHEU3Q@GHOa(b1b9bKvrjCR`rXMAXcTpMkYzOBhw4JJbBv)ru8QD?Ib*AtYk
zyG7$xRh46tkp<Amo~k@DW!b>OQ3cR&4>^OrnPZ;DLzH$<=6&n*jU4eN5el<<surdl
z?63o?Mq32-OiK;_X^ay_G^*Cw`G=E%uW$6Xx3LNT_1g9I-`>IQ7XLj-xxIC9PlNxP
z!~RPF4x011xAVxwG6aC%k1ozm&)x;_Pmw}IBiofkim7qVi>u8HHyoA7!UtChhL74q
zZ_zd^5Tg<m9Q99g#IgWYj{2uQ{7&^mq&fo)GlL|EcLyqZQ(LmaHDwGWvKa^t5spa8
zbl%LAk}_7SP$Z~K5LUuObsLHCMx!+0E=D~Okq<v2D1&@WbPgSQ&gH6{uXenB?}#x-
zM5G`RR{CRMhGjuU%DII?+Mp3Sf+=A%GFZ?CF~SrOiS{KjC6tk&!Fb;7Z4;13FrT|;
zIs&|cmy}0%Q>a-!dcTPE(0)~XsKj%4bnVM^@8sg*{Nf&(S3;BTqifznrl1<Wm6wA|
zxW;TEvJpgg&jZJAnuiY)w3=@8xdMX}goGPB?o<jRtFRX31-4~L_!!qUIiFiRcY6!I
z#gy|oyfhz*e$3~us^byd3SuM}6W2yQZ_fq}jE$s-EpVpXq0vnFgS>$}#6e@x0R4O^
z+5jKsbKf+7feeX4-{3Np5ZjMTu1vWPAB-tQm@qMm4UV;DJT!A;R)q{TLdrE|)({Kz
zI_}@)&pZRyOQGbG8+abT1X&DeGL|GlsQ1mt>wi4w44X{@#+SVKVdHNvH?D|YHEL{@
zr|M(-Q}N;O^lb3q=<N99UT<Z<^ss+%{*RO65BGY<LD9pDlXs`*XZLGGNPTEmE;;oK
z(TuKDOA%Jp>CcYBe_mOM|2|KUB`B4zlW$E0Zp44Ry&C@8-|y^g@!wOF+uPP_n9?|K
zOL)pq&k{V0jab472JpHypL>SNJGn{f=>+o}+ASk5qiY)ILiw_Hb)L0Z5?OrXyA3Dn
z!}9P@O$Wjkw>pRYu6?BOARU>-cB5G`Ge+EWj=A;PJGPlBAVnL-ug~BrCCnyqfFwzl
zLioL0`vcLY4Ko-8Lkx*oyIXwqQ;`kK0t`hKIpAXxc`l(~5!K7#%!(unMmBCI7{2no
z(~*I8#$P)oS$<GC>1FALGI-cDh0Pq8&S$;dB;hiC<$|H3La6mTYeBP;;9in9Q854T
zH#>^p@cxrq>1QDj$7M0P6@6W(eQ*a8Nx2?D<L|2Zch#tIbL~Dv-Bvv>s9|M(jqzmr
zQf6-L9A^sSs2CX{+dR*fxUq6nRiV4*Y)22ifW(9u6w~<c1~fi5zTUd(PN2TP(ZY;x
z<4_h+%GoOAT_p2eF4_{B_<nm^XxvN6LzYHsvE8dxY`Ftci+WRQppiW^?!{!aa)>w<
z+)cRJC?!YcBtw$KU)-O#bN_RhtW1^O0Uqz5cUv1#b2wXkBZsZ?xo04$uO=<4kd|td
z_%oID>ymNO$TuwRD-V^?e^-fAyZL7a>F-!p;=gi9^Ub@#8}MIm@1Rq|e+S)OdyD^`
zqC7%gz!_nAjD#eKYE3)dCFM~7Zwo#0V$>uengqoL;u@E+xEl8$a}Gi7kypK!J4+wF
zfEf|j(943G;bZVvw!6(}NR%`FY|Pcoa45qNUfoU6@!PIzN=u?~Jae6sf-%a+zuG;#
zAX|jS<mOjiB*_A3SC^jvxl428G11}VePz6BM_jtY%9!^nV}>H<k+HALgDGsGrH8lm
z!$MmCxs2`eQiNYS>vsVHKj#ZjY^zs#+bngdihYWA>?WH%)BugjT-z$YJmdiLd9d`g
zCS#b-8+A_o%K3(+cgn*Li+u=191|V|l`7MDmzMafuGr`NC`I+_W;3Glu*hB1zb%aO
z@Lp-Q=0cB_i_O1f8;+Sgvc1FXQzajFsKX>^`}SW@N!-0z-NJ&(S1VUyy`QiqMLX&;
z0sYymSPxrnuU-{mYE@FyHpAs@=tP#QT%@{R*0S2OQWKZ9b>T~iQcE%B0KBvJs?M#V
z?R}Bqt6awGhhwVj(Sg!yWk*mJUoB6jcr_)^;-4gDRU7Z@){K0mD5rv@G5&03Z%LvL
zo97yi6C~A>%G|4(xMIVoPxK^!C56~D|I5v-VO}F~1Fm@L`;YTMV{~I$oGVwi(XB28
z(-nePBLs{SJ$p-Kc8ci^EvueADw!^vNb>I1F<u0cdC9xdwWX%=GfZVO#i^#pYNB#(
zs%)itnCdGUdWLI?mH0mqQACwY?J=5R8jbO*7Xq8ke;;(ai}-)Hv%9yu#s5!HGH*53
zt08V3-zOH_w5FXQYLdhJzKGry>hhyimuH3dzcawD!+UqEA{Xi6w=kbqK;s?X6}yYK
zw-6#_@G_#)yXR;3RsP0TdYF~=F9pL#ItRYV{`cCu_5Ghtdwc)mNlFc^$RP=<`PHi3
z+wTlM5t9Df20{Pw2b)P-bOjfJ;j^%PnKB2<nm`izPKq>90eoyUK4s?}i-Xx88yR5C
zzM7&O+Uhat#v5o{8-HOQ7*)FQ={W}SuPkfre@J;m`S@Giz{dE$bpPw1x7XX+|5KFj
zWdA=p&3PVfKrp<(kztd&fi;8i04i?m;k{Pr@DB`i=64*c!NMBQ4re3VwV5!UpGR8W
zyC{w+-Oop@w14Li9|Zwyvj1N9pdSBwy)FKKlCm*dQTGBxVt-&2<XKp_yCZg<kgF8E
zyfgI_U;tm5c{^*9Gyi{r`#s7U`?sQb3<t2m{yW|79p}HgTl;^C@*Vd7DjveB(6ew6
zOZmNAzbp4fU3=Awq~7ZMUa#sZibTWR?$obcS<UzSYWG-|9n)PeE+j6$;*9n39z~8S
z5-GF@1q<NAaldkbtG@A|i5#OYHzmGquVc;r=R<Qb^@;wE@!sEFHu?YjnE1DZflc_Y
zyI0Hq?3xI$_5V*%GKVGPJr3KgbMpDx=0U!G%^K(Ny#Cf1tSdG9_b13=I_5&+<F&Cd
z|J$kKzg};5yZ(EUvIBjhHA-&pGP;?E>j`ogrj$jLk0Bx9B^jggy&bT(om85*8~kd5
zjKP?Rq1#cReEbF^GNS1eAt8EFsV6-0c7Ws9-Nb+CZq4UE-tb?qd^qR!@}qszbO{oa
zz$i!G^WP3W544cz?Lc;T_P65!L{uuzA5-13e_i)IfB0|NvVZf6$+%_y<R8_Pw@OAs
z5?-c>z5AfN*S@+=yx0DaTzap49Vg!F|Mhm@HzKJ>6`a03QC@yT#`9@}q~++O_~WnW
zVruq(adPzb=Mz7U9<z;&@&BNn|LyK=^S@71cHAA;!7uNd?x(!mg+_aj4u(Q#r6oxe
zkQ&_^xSr5(;%=<C3(W3^N-7s;4e@DyYq|P+Jk|qv-T)CkR(^5n)64u9c*ayu(xLtB
zFx}-X6O@|v47q9znHaWWqBP3Z>L0IqWq*<)yRjXC`^MhDz?*~-?$&pIMT6azZP}J>
Ud8G1x0RRC1{~6e*I{;Jw08HXQ!~g&Q

diff --git a/k8s/charts/redis-12.1.1.tgz b/k8s/charts/redis-12.1.1.tgz
deleted file mode 100644
index b6735330f3901011fa135acd59ef0b310b2807e1..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 65202
zcmV)OK(@ahiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0PMYcd)qd$Fn<2lr<kREHg=CG+0LcA+Bdt$wcXagCXOFFY2WiS
zJqbiY64n&K5}+N`_WRj?4{juQ6?L)Wq~bo?SR^nQ3<iUl!C(+$pRnHH7{$ChMU&t^
z?%~<p-Q9ih?3w&`cXzk=@816I^Z(d;`t9@Q&%XV3Z-4JUcK7z5?(O{t?A`}5#V27L
z#s9IpbX&#FeIXADL&^~+G-Uk_fQL99(RkX2BgD}FG2B5B`5DKI(6A3z`yCWT>CYG4
z-R|EzK4xA_A}(LOiEs#vCb5Ti0Qpxa^so<?c<NrEAi=;mjd2%FI1mPO$Z-fU9^yF0
zK5z<%0RkU!)B#{TPCTB(7#NPPa14xu9u}||cqjyqh8&Sllq2DY?Z6nZF=jgu5XRXK
zFw7aC&<93ij(q_UbJp#Q=>+#-%z4E6z21oMaWd$7bkZ9T9-;~9d15xO9*;5ZO%UTa
zPCv=%(jlJcs)3-tNf3yMHhPRB?~<v~Ju(@ozg+p+-QVB+wEy&3Hws6cOFX@%vCsM)
z7Zhw)bWqZ&<4Q`%L6{&SJBwpk6i*Nd`i25HX8&y=(E$jN=;C+komC$DG4cM}$4r2m
zpqP`eJB-r`xep!nPGO}+RJPqfIQ_5dQ|}VTuIZ4d(eEi5bP4Tst_%b1?RWROd!5fc
z3I4>7Vo}L&?7kL&X8HeO|LN1GMfv~y#qL`EKg6@K0Y3zEfC4y@lNQJXjW9$gMib0&
z%sLwza28<1@D7BOW8h=NfsYA;YZ3%NuW%d_U%bbq$~!<pFGze6j=;we4t*SYM9655
zhC?z+wAfFWsy|YwDDk(k0f$K(<B$WoLL@+gAT3dYY+t=O$0NdcJeAU4zBx;R-~xLw
z=AuI#1w|})8~GZ2m`u&zr)Yw+5*7qi55Tnw|AeRNYg$XJbZCSR1H_mBdtv?VfRd|y
zxVh_yj%ra2=i;sImX?y@bBu@CdLyK+lCV<v78a)-M<dn~os>}evMJL!U5!xrHlmDh
zx!C8IH-H+9I2x&sIec0!1RE@gBDoT~0!0^vz8hl}VULq5tcwmwfZc$EmkNsxh&HvN
z;re($Q0VUMy7Asqg~&yOJu;jE$_D9-2E?1H&qsKOl7KV8V^0o(Ycyp~fDE(l2rcAE
zfH-FS$qwLv31x%J;wQsX%FklVaLAt&y4~;fE|UR{L(H*U(tPT%UczwfjuPVIo@{{i
zHli52Q4$0s9J%V9=~tAZ+6TKS)zTZOPN5)}0yA9<0mU(z0v(n(va6|~e!(PR90nLB
zC`=>_FUE*tA4n*tnONCbggo4>7|x20al|fJFP*Y(M142aJ$j-is&j4>lPkorYdEfF
zdb=U}+j{;8p1+W4ofwKp=p(WpsjyMH#4rg0(HG!&5{XfSEh&?Xwj?_nV=294r?<tt
z*pPp|(V+T;#stjS4JkP0bspAXkO-YoFcKGvX~$D9M7MD$q?q3a9w$OfumD}*Lz;xV
z5BswAJEj{2!3`wD0i+!fZzJk=;cY5@eZr(%6a|#7s#IP9SL)5g!%_<tuoW8s4YMX>
z0k|f73}SN1nId4NjSFa5>m+1csPwF33gmh<L;=H!r_S;335kVpW=yEKfD%3ybv$Wp
z01fl)5YBKgtl-B~ZR9i}9_yJJ9T3aLnFgOyv?RJNWO*){$cfc*OU;7SH4SSCt2sNB
zvUPH{LDITbUuFp1g~e{##{BYE_pnw5KQnkWN#T{t;Z;iFw1*AScu{%0xJ15xnVj~!
zB$sDvHcHA|U@nvz^+Qa9kO&!lIL6-PTQb2k;eB}C0r)+kaWWCo4Zx?@;lYsO_%#Uv
z!mvj}pY`E|P?$RaLqq~0c+>iOe^VcXf)@lhxR{0>>%*RSMPnf{Up)Qx?`kF=_&!l%
zq-T#IjS@FQ8t3IrNPWE+H;Wqu#>{s0Yl5P_s(LIXAJ8}z#Ec_OysVv*BPJWi$Quhu
z5D*XPc29<;majgim857N;Sk3{UL%N6=+g-h9}pKU#5{>o7+U)7<eN}1#$p*j0&O9;
zIh-5`!K)e*U|bDHx?2R|Cr3FcerWg$@FyN4pmH9l9@*j*2M~}e9Ac(iE-^+vk-wst
z4k`&fH&18pO;c{#jH{aIZCI7%n{CrQQ|C;)R-9g3j8iT?!T}OYuh{dsk`Op1)Gxf`
zic<@3S>kz^vA5$GvoQ^P#j%RNlNej?pG!Sl_u*bK+gkuLFJYWcUgZcU3>Nd{Jde5h
zB$xgiW5if_k08dsCzxrcTtFs-7x`kQH23HvN~AE;9x1sFr%j})rD@9i2AJT9T!8nV
zzj#g3w_cR=VQ+VLQi=J6R*#~XMmXj~^0C&L`bJRKRpQe~4W0O-Z?wXbGc^#p^jS`f
zX{%7Zl<$fwtXwOok3|t>Ca03^6-EAcC=lA2(g9CRIc8zRS}!mj4Luxjp>QcJ(hV`c
zrtu{SN9J8`L%?(eMnWLxR~FMpgNIpOWFNDa2A{K-UI~pGg;PM8Ft;4ka6Km87$#^c
zmeN=$m_{4+P$=FeOnMXyP^m-|iDT14s2D;!j73{C45lllkAdw56#4EzqhJ%t_Q0zt
z1Q4JB4y>OR_9tiBVv!s{Fq8fJDaFq)+7kvxR2V`a*6pq^ShO9YUiU%&>;}|BL8qg!
z*IJNmUW-Pq$C!@=W5KCi4%nC`fiEbpH5wyt3pRm*_jZgySDa8E2h!yqMZvTSzl?Ec
zbUs;SM-GRucbKwIL_a+m$Jo<GvKJ5>az!j_xzim1BxRj3Xas*6y_(4_0vwW1`!i^$
z5fJirM;DV21(1k~1vC_jvRwOOI+0weWR8NcRYVbd%s2^^_8}VI?q<d?3Ick4{7JEf
zmhxJS5nsy9QAzw%OJrU6|Aa;<=%u<Zq(J&vnSi-(l8jqatFaj_Bpk(<vD1s!h<oE#
zHs7V6&ZuAf+R+St;Ca$`t!I~uT)}#NQ9pCa$6Ku!3k_RPwg5``4ZEox6jDVH(Rpp@
z5~fEKDL{m!T9pq8lP3QdL)pC7J0huSnG-{trXmC>T-2cEx6;G{L(rr<y2L_ejJ(Lz
zwOn1R4-P~B9mVwD*yCMUR+rEPgmLF|I-Picyjl{Ue|K=0Er4waEEEqKWUJVD5@6Xg
zRZQ;C4XI#8C16BhZTe^n-biy%F|{0AKoR*Nrb%R36W|K%5r@L;X4%`^qHPvra3!l^
zFNq1CMnYB)Y*o6#@t{~CVYm!cNWEggk%zlUC=4PJ;E^N^=nlZIze%xrZk#N_bdxv;
z9hl=!ykn5kzpLCiLniw!Rf;_|U~I}f9;D77IT=fi8qwucI&8qZ(4&)ykZsCjkyT-U
zg=moLl^7)LG7qs}lNfgyouE%baA@~=Dr^)6nkQYo)mN^jSyoo=gR>`$GDkVIj0#?+
z$<j)_A*y_ZKXK`~PCsAFCV8BM2kafgu_n6lq1E`EI%S_xHtMFz)`0SHX_U4*1y4q5
zm+kGk-WbKmljVbGjKXAsV_^m=zaq&?CkqE7qDqu(?NwLY;qozd)jqjv`r*>h9g>)F
zH%>x9*C_3{;}|;OPlQSKV$#TmEiwvejD_KbuLw;tvTS!Y($dN!(3hJ-rYDzpDySk=
zGaeIsg?+VnooipCsG=OFc`ydTPk5?yo7ZZo(7qGIU`T{?A|c}#`C>W1;T4H#DCfu(
ziizL}W{>UnB*<i)z!JxdFfMo0)!0Sqjf6mhWP)K!A^KX5`*tTS;H3*e=D(Ss5RI^J
z;0h=|D=1=s4+BIdIX@@^3tYFz#M&8vha?n+{MpZksmI7Tiqe(`ct~SxaF$BS0K<SL
zp^#^WvJwM9%~Ybryi>9+#9(Z|+gBHPZ;5!HN(}Ad5QTV*hC||2dVFQsU-X*9sZr0h
zlBVWMHWQ`GB&1xd-s1J4DwPpLf;-JE{*pcA?xU6uYGv|-WhNITxlY(W4VM~thuJsD
zQlau_i7MagpVftb!qZ}fpYXJz&OuWfhX>^v;*IH#n1x3_s_je$TO<S;`-+;{cPl;*
zkT7vP5{+@J+#BGJ&t#npydGJbq4RsX9VOlRw%sch9l^aQ9wlOC*-O%4&b&&Upr%Sd
zLY&pxQ68^PXc7fx?wnGN;UoTpy^liXMX}lrme4em%*iHy_QC1JN!Vp$r{v<(MI>9r
zNeEF)s3H`X!7C%xrF63`#>bzqcR2BxlzsDf4D~Xw8h@c`2$edb2sjMTXkMbrI#mRh
z4!iHgSN#H9a9nqSJ}Fm-8!1EViUx?20K1$Aj$JawQQ!`ccNx%;%g7%X_ICH5O$Lq>
zGbwPPIcZ<vWP)6V1)m9tC2TA)dvnYsM@)M?>w9XPsfDVdlSW|xp#ss+Y<(V@GDaYJ
zRM3LsV468u2cni(Lc@{rfeN7%0-i*Cs+a1j9nta*ltN)c0T!z-9lAz2b`83wd%Agp
zq0&iR`2N+qiyx1^vwt1DdeyP{L{D6cU4&w)oC9*5u}qG39@f-pL9c|Rfv<boW8n(>
z)ujVrim;w)q9^_Ae$FV2sDDs!SX5yA1-bl$4unELfi%WB2Ih^ip9DDG0o)yR!C{=n
zm(E;U<;b6qP%QSbtGz6i0z63qPND$2X-mx7Cr@9VDnV{7!EB6T>_Ze&>Db83eG&?N
zhWZjmp-I?&6xi~W&bqC42vY4@%@rX&NeE`%W?*;po^R$^IXgLexmRpN8Q4Nn_9B!p
zoIyoQx~)@$1rMl?7)8>9@&}y^h=j{_Bv?y~?O3MzU<yb(ok1)iYF9xtA{Whoh9j{~
zj*%pU{FZlscWpY#;3er?BEu>tx6n<hJlta4k`hXE#6lfVEIk3qBoU%i3lTV9&M*>#
z?P}7w>7WQsk)O`gms9g$&TSh#QP-O`U)QEharpI|QDl|FulByRLs9<-$fahSc+9*&
z2PZt;cjGY*zRkUSuHNY=B{7HOj3C1TNxFFp0ebnd>{f(~$VpSR=cGh8_o547`0`Z1
zN0}uf-&B%&Z&!V+Aoxc0K2`&;r`5nr8&#aO0a9Y6NE_w0llsP-bhfxS<nc73B;=0u
zeSowItbe<n{Y#CD7ZBy~HM2}f!S~KbA94Kgy#u!}ig5&QesUJu+N)URPpOZA;Q)J_
z#!7~88sHdZ(ncsOh%qvfw)&h(N=_l~DKJvL2xYvtAysnS`f4GI;ovGn#_Etez#O?l
zjCc}TEGw#9Xf*n8<A_q-eB&tg#!ep`H1S_NbL2LuO{q+W&Kqph?+M@_tnQHTX%B^*
zxaOC^!2GTorFnKS3soBTFr%+yn=)MQL@vG)sYqzQy^vb@ISNP8tM2UWcIE$ie{+88
z<bq}_hnU`rDLd1o8*6TpA#?4y%1xFj*afFv)vB#`o+6|-^a`G~2~9$wlOnz&#(0<n
za6QJM?t)K-LmXR?V^%1iW@-Vr4?TU#DQ%A>1E0iFicF2uOE=A_Y85z5+aw|Q_{w&K
znt(Prt7wSf>}R#xpzVz`9JH&|iou!0MEXNCg$1tCMOq#T9ls7HfW73kv;*Fy@dE$H
ze)UhQjy4?}*Qu)JI6HcRY15g3KNV)X)cdapBUEqQ8hA;lv4AZ>He>LB^cTpc!XyZG
zAf%<{q*nz<+9P>NYzMqCrRn~lhL^RD<1WC~DB1@a!oe>Wq8BLiQ7j0bLHgmR;~nuC
z{wmMKU2x=GZWn?ia;F3wSB-_*x_&LzH^rr5r59`RFEQcxP3S33W#kXshrj(mQpr^s
zwRCkhMOw)bg;do%+OQT}fJtf7Sid{|6vddaf{)-`<Vy>i3#)E4-7%t4kI^}m;hDM=
zje&+oIKUhW`%jO7Hp83jk%ZHjpg^9&<6^G3D3UR8a;+aAMm#tD#4zt|B%(zUj?&i*
z%h_c8>{m%cSr1?6?)38=NXG=lTrMHHc-sAWMnp(+A!X$&9@9X24J`b68<A<p?3Tth
zHYpbUDiuL!Y0`yC_%xjvne(*pp$|`<m~aIX1k0&dDz&+Z!z;K#v6kE4SGy*U!>gZB
zY&j?O#-wQ(vdzeBLo+KU4VVw*(%;8)(obIj3<(Z=VTxPt^jjtV(mzdqbJ)p!Vaup`
zjUp9|lJ9B1s`BA$tGeF5Xj@lrUFdD;%$I+m_KP!BPP^9oM!I*UE<qR|5OxNV%Sr0`
z@94!Q#>zJ<BV*Ei0qMxVM4E;sR0L?eBh0&0#O|n-kc49#6QR>kCM2X6Naqv@bDSk`
zmz$?1d_kh$N+Y%V+e#nZ$nABN48*m9x>itIDyVwHT8C!H@yPoc{>=MfiY%+#4pZXL
zY<^X3Exl^7m9+Ra%Y})-S<u?Hf-f(k7$aY-6=IbqAzy(PBwPC<s{Z408qt7`rY@81
zxn9<uwUyw)1bw==#MjDWC>B3c@h3d(%Q4jNg$462WQY?sl))5zIHISNU+CQkA)jSa
zR?kujtoJ9@`xC3)pHOr1tKFWEj^t`T^5fi~s6kD?UT;yXw<sRj7KKt%&T$r`zlxB7
zatrfrf2?Y|;ERb~D5}#wWC0|SX3Bpwf2>Icu+nwW=(kwApw}+wwF`Rff?m6zKcfqJ
z?L2-E=P{hcbb|R9Ck&21$rK<l^x!q-G4WI^xcajqmCLdTPOxrI84qaGhrRCJ)9#*~
zN92WClGYhG+GXHS9HB=K41pgY<aVQ=L}x<vSh8g5?vzV@5y9FJ^@BKzPzP^}y-W8J
zPi4xqpYU{NGJPW^>rYsE;H)ZH^Ceo$P%;nl2Q@(~s(OM5YA`QGk<bBzI_6XqP)42e
z_r3i+W#!}**ODuT3}H%>C$Z5nD~@=1G{%(mvUXe=33XpCa$0G6O+zuq3Ob`PPIKEE
z$acOBA;j3%ryV!4FMXIOh^ZnYfCU5OU8aYoGs$5TkR%K+W9BGm3RODquTUWDq;#RT
z56fMT5r4u`Q+!GjeZCY9X^h`oz^|5=Itdv^K_LH)6Lk>!x2?rewpP$|g9m<Ww4hwW
z#xPU-vdSha-nn}j4nHLW3=e{cnI%j$Zj>pb<YiU*Af$wwy)bK;a@b_Zo+km;C;zk#
z+(}IewYNqXVDXm}xH8ADIcdEEjPB&!sywYGbTgGUQYg9IbDhbJ#?X}+t1FD!R&#1Y
zc@T^!lSrp}OO)$Z?QF~T-3rR5HNP^mMsG}J<10@cTeg?5<6{i}7ORw|gf6rLk?J<`
zQ6#tMCW6>gn#6KqXG`5{bSZ4O7^^)b<EU5Xx6S!(d1Owf)yyS<>l&Rccc2?wKmiu=
zPIlplUWe%?p>#yCP7(YeiEcEcm(I;imXgoOr_ght3wL*}RymwIc=-}`Es#SR_hElx
zz0n%4^+s^*6^`XD431-M38-(VDBRO3$z+0rhH{?EWCu4lAn@H(&2-cEcXtll-N~F)
zIXJm=*Ym*=mTeAPp17~2^XW%28ruyj8viqggC@E1R(%jM^}}GwF<Wc|zJa~n-8}qW
zLvs`KX^GbIfd2`9&$V10{mS8Q82@?(Sd;_gu8PVINnw(BW9=o(1JAL=ZT=f9+M+3^
z#G(57pHkfw`dyk7SK-sG<Ex+W^!SQ+R?-HGu?nb~+yYx_$g!x0{SQJT`@ktj!9s)n
z>+{KP+we~)kM$mVRAW6xVx^LOmWk%?Z;b7hs)kwRx!1-?fEb78Fd<>Wjq}XPTT!nC
z&*K>_gy7VK*t}z@7w=Ur*1{b6#*70>Q-zp(cqeB&27)xcuL;8tV049H5TNj~B2dGG
zZ_J4L(BV-hA>md+d^;($_^g~qXE>e^;}bd@qj02>Xwd5r$7wv2P8Fa%pVI9qH$0?+
zC`~t^bA5>B%fPFS$S-I}Pe@37Jjg8QLBfnhZ5z!ht>)TXE+wqYTdZ?#1nuqrtzjc5
z&vfPVC~2fmU+G<AdL0@zlRoYt4SXCc#UM0#TV?K(Zkp(%lX}=gs+2pG8K%UAUDgaj
zX1q$@fm8)~8qH+#u!DmVPMsYUD^Uo};IZ`HdE;x9&sPDqyQcC!P+v^NiS&;r499;R
ziMg|*mpK#A(}$152RHfHm;e3%x8NllT;Bl)+~NL51zsT}jS7va+T$H2D%X{CbdSl9
zYZtx{waoLB`^>oU1s23-uq6n&D}V`V%EVmQ*ZHyFe`q3O=&n(kZ%Uc;bI|&wK{pir
z9GH|~0vXjvB)4gEm9^}6sS=^pvP7<!anV$yDavKZ*|qW<so5y=RFo3X)I@Tr^gKF>
z3vON8+i~#b``YT(uGa>NgiYttFqpcsZ2<L32E9yGXa^jbBmhU>*?VR?vKf2l4h1nr
z{?tfZF?LKWERITFbfGdZiMg6)G7|4i>|TW9A&n;{Q<E|h#SqCoFJFkxpM)^8k~nQC
zj|wnh&yk6;tk4xDK3t<X6lJzM3f_s4`la<C4eOIpZtauwXA44pIjCF=*16<Ct>8aW
z#xJHUBmey@3mY47md$6K>#&$yr+w_7%F!WX{?bfY`khSZRBWmt5nmatwyENjCr?JS
zf=^hSNQQzz;*W5v6kv6sj2SRyx^tAi`c8tcoH-K`9vI`t#5PXQr*|Q;-+u0^RlbNP
zcmEIb#(09d|7J8?WgE@+|LpDUKYLcV|L586{`&s62YGHf0M4cwc&87J-X9Vy;A(cD
z@u;W%+;D^u=LpMClvUYc)Vu5`htr1}sdG41I=1wsReeBdfKlk|q#p<m<d=s0eOYO-
zW;<5Q%$@q;L=8=<96uE;rg&C?Pv2Sgzo@iqF2Jm@G4XvIS{MU3a!xv0=<Q_hBgAEJ
zm`z>%^)5#U9lKRU2W#Z=bTD_9Txd<FnI08`F5hc`oqO3Z@OAL>sA(Nj?Qpm<_$v>g
zFgg|G0ma^!a4c^Xbke$a7Im`=S?aJSA;%*eJJncT=&(bTguh)ED@MPG19Dto0`v^Y
ztx|WL;$M0GP?VXAJ<{|}`i=p%6q{H&d>ye1nB=iJvupq>t!g|M@oSKSdOn6(yxi0t
zRPnS;h*IHdwr(G}=;Q$275IpeKZ?YM28r1)2w9Y#067;uVjTLC6CD;1zc9BHn)3Z?
zB1o`T_Z59|q#9oH{ar}Jq;`HFW%xBy5N1q6u&1Kld$mTUYF0vSW<te~SP^YaBU3Ro
zpl)Pj`feQqk!~$FGe$9nZndabfa~y?Lz1b*U>-rH#PpnUY>`#EMn2y?xNu~-9<OEN
zS~l9>?^`xX?puq-HmIytG?pCIZN%i~(Cg(^O6s3wjjFvq^-|c7kk>Ns^su|xfQYib
zn@b1f{)FD%)9JLOk5HOt+;}#JBt(IIjfXQ!q1M~oEht>Iyksnqg$Zep;A4(R!0u;=
zGV4#>no-fd*;H;E7F`_yBR+OL6z2y=z+hF-YZ<26Ld!)%&a*b&*K*cCzc)JK%w(`I
zSkGF?Qc~vYsq@UpyG#d0uW#iR=UZh~qW>zCT1xgdGOQ#1f46qz-s7Y1jMi~Htatk6
z?eRsIf8r}_V}}3t+udiy``@4K?(eVtzYp<z^NqgU9R~8ep}bM+dQ9|{!ZNlP2!jFE
zcen?1ihcOzn@;EE#+3;Q%w-JSpVcmcvV*(1d_;~NE9Ai4ov9sCo>sK4MUf>$0TlYM
zWtYm`Q)afnw_&ULd+w&KZ2`99uJ-A`F9+wRC#OHC^gQ3CyR3p>P6aVu=4l~1XghP&
zZoVTU<j3erErJuuxI6<NO!YddZe>2tUE_>(KZB_ZFQ5rmDT4Ah;7EAb8>5i0NmpV0
zeMM&d9k`Y!#b`JRrofWX2s3>Fhro?p6RuL|J86)Z13Es>F-eo0E*!A*d@{MhJF>DT
z4=polL$PU)J9=?Nd_hYDS12HUwlhFO%iEs?e05hp#DZCI=o`K*|7qA+45nd3bN`{?
z(L5WQ+xH9u-#=%*ld3}DZt;{)%yob!5+=PZx(f#&Y6j}8wT@c>ecUw2E)yRkAtrE`
zN(s$dZ>fG$XgdvTPxMt*Y8Nu~nWW(@k{LiHM3M?%p04Wq{f@dB-<r|01X}Ir-`#a|
z(2Y8Ast(v<AFc>ew-esnlxrKokzU;ccX!5&QRipmtudz;>Vi9Y-;x+25~>pd>D}|4
znc=!!(Y`)o(M|KVh!5<_>srX=?vWJu3~4NLYpA3(X#frDbiUVLde<@G*!r{s@@A^^
zlEze)rT3`nR?InUVh22va5ly4D^>-P*>!(RP|8=>ORAv(y~15J$nx&-xyGv9(6FV(
z#?|Y{(nC}lh!$;2=gsm>yG8CO&ae9-{b!|or_fDXMidmDw-iR0D-6>`E>1$7_)pp3
zaDIGra`EBp;Ns$!H|Iw$H@7a60rq$x>*`C~+$<pz)FBQPU1w?7l<GXV6#mU<C``PU
z&P~@x94Vrwm(1Nca4YYmdhrZg*T)|9@pi7yZ>hP@G(ESJsV#C4_PTJMgn+Eu7gIGu
zuz^@0<f$=rnOMIhj(NarIST-WC~*=lOpO8~=<8-(H^wrn-pePa_zK5Qz;$tWRT`K4
zZ*WyuTU9&qgCV%NJ_uYFSb%W^B-9z`M86JcG*vW|x3*cAon;r@`ifx;3B0Hs1$ttX
zdz|)EN4o-eYqIovd=l9;SAoGLo-T&Kr93UXc>9M3i}YUClEi<fb(%~XnQ`S55a;^#
zsmcM98RT4-^C`HbJ!8HXFf2W^#v;lrrh2QYWHq_2I&snF)Q>_(Yi;i>NdVAp7+hBf
zlyPoNxbG=F$p~Ja;F_}aqPv|4cz<(ak>b&hR7-hfjg=Po`&~HH0zXr_lxRPEbyAkz
z70Pr*pC*0UoJ^Fd#oY1i0S7l~tz|clH-f_GremA0mtUC#lLbr&c_CejA`@I!NW6j|
z6QxmBUJIGDIhn|@LiJubZ3_DImqVV^qEM=&;VnzD%tt7#5q=>ASfGDW-~WQTS9Hnz
zNd~rTSFCz1>8PV?7bNsBoZ4mO;VT7lM~R+@%F8$TSe?ymVOZI#PsgOTQ(04T7K5ss
z4Xs;aR0!il7$VBtqX}ok*IsPx+7gOY!fO;W)-SuXGdE_Vcl+)xXQ7?GIXeDua#k?S
zWX9~43Q*qaA{<ZHue-l>8Am)}UF7?*u!-e6{o~HrE}?Mt=KO5|iA9=c5%#(Qs%+0>
zqrY>~WPYt@mO?Q%DK|B-#Okw|VqIMPAMYg0*fPgAc^Cg|-Z_2q_P7rxT%I=M=n?~h
zA-*;zzN;@MP-m{iq%n@MZn~5Di;N|a-Y&^Ba%%SBNzPet<+Wsp>)Av6BsT>vj?aHS
zIjookt=nv&uee!(n;W6-#_~Y-772a)3CwJ<kCb;wI1;l3cDE(3bS1;6p>*!d9Lh6j
z)|G;WR2a=jyP>{x*0nZs+Q>XJxT5>+kjB?2_S=mxyYhN%B}bjpuV3d3{A+n6_x8V)
zH$ChX#xYm#3md&^O(67w#7_w-bE@gQkZ;k5DZ=W-E?-n`upy3BFLc4ry+yr#?(r$c
ze|#9@Ai^>0@+eqU8_n?_PoF*Ce_o9L_;&Bxb^OOeJU2JJZ{Uhd`Z9KMNCGTF6efZ!
z-Wd1co1PRfy>B|lpCakM)Q7%J9t#;F((UMSu1*1GB#M&cZuU(k5mf2h<Z_VNB4~o&
zT;VttTKg^VI0-#?@l^gvCKt(YNIrq%X268RbCn>=W2b^vq99=q>y&X4;VpUMe=xNQ
zNn2&R4tZH7YcPsQ$cNzkCv*Q(2uHgU>hGU%%m@u@P)vjR3>m~yH-+C56v$MHfTBoZ
z+U@*;6#-;<F32EoVKBg+yu*ai3AXQ@QQKSu2fn)PL+1Td=?!GQiY?u1y(K2h9--E6
zcRMG;JdsjGKoLm3BRow#uI?9MLOo4_Kx11&zHB9T%lqTzV>;xfOl^TyJYft(@ncgW
z-+$Sj?JPV~Iw&YP6(++q_jYasiwu>6rrMonBGmn@xbGbEBvxCbD2iel#YA#fL=4vo
zBSU)xRE~j)ku7)((#p9pW_WUi<3l=$1TQ-Oe7V<s=I-vm|Jmz)>+Xt~gCaB_0pSF*
zu3%#grTYWn#W^I21P=bhaVVp>dslk{%+X#GQBy=oIO<;hO{OBa+G{4+EHcS-Pm)Nb
zR0<V@Dy3%V8W6KcwfAgM8mUohrb|Z0<)~pZ&BF9($vn$aq#egJa#$M*srYjHx&@Vx
zyhc3gZIo16nM5b2T51^yCChcqSG&B)4O3Uce9!7|G%6PqFK>a<3w1!<H4FZaIGDhG
zcW=)GgQ+;3>^>8r0wA3wN}hqgLb1F(%;bSpH-DuUQULR4gm*fFgo6hDcj>g;@9yn_
zPcaLhq>*Pp_zo}%*I1@GmA4O0q5#W=bzWsxj$=Sa#Ornr0!C%bqK5<+88l!b*T^tk
zIs^2_)MTR-9Ah#+h58n%Y`Cn|Y821`3ba?bXe6qSikKz`jVWr1XQICMpR6yXeN*k?
z;L3q>t>#k(Zf+#cRI{PlY;L!(6!gU=P`Yi?G?UU@s<x9UUtz9URjN93dKGG{=h=Fm
zJ*Ih<O)S_l4rX(%NPep|jC85ivo2SDu1Qy{IdjhCE3Bv7ddfZaDOWhgs?Mdl_OaFG
z$ym-s*>+mi)SPRA*29=NRqLv*C+&LDK8{H%@88pRCg524M{C_(JYa{|_7|on(VfFA
zPFKQEUNx4Lkk|LUeRUxi)SREqZ6=B4zc)2+)4um;#Cy3bmwKY4ph%sgw5flWc-pFu
zKjG=DZvLb}E!Nea@bq4Ldw9@tKo8ms>EXc=T|GRw*Pb5zs7}VQnSDL_@k|!1bk_=O
z{jn;L;#>4%He%fhQvI~l&hz5#gE{($JWpRwDFkg@FLmhyRrs{dH=QrmRq0SI*^@ey
zw+j2G*537Y9W;r3wM<LlI{FW%6_8q*{eZdV2fc-@&Ue%@fqnd=f-LwGVVr~`eH&fb
zi|x!RTI2n8nh80ZIZ7QBf=tE6#KIoHSJ+o!VdmsX3p$vM|D3QZobfF5v--6KXbz%P
z)vBal{yfecK1+StMpvvOMj5a^w!MWX5uX<IhJ2-MTSaLsneStD6B$&u0&F!TyJU<)
z{~(CQ=rozY-fnwJ>D1s-C#q!{S!Sm0ZOw6$=i8d)S<3MFTvNGvwTgGzw8|M?-R@fZ
zUTfcvL;F@H^O2k;Aej?Vl4yY|1IijVSgg$U&Szz2`&9i>+$;gz6F)cbvPDQyviPpw
z(Gqrq+f>i);=Q?1VP-cKQT${mFZ;{wR$0maYn*;nC2R>-^}Ws)5zXK0%8E1ln}<=~
zq4{Ceb$xzFEr~RHY>R?rJ<ebMINM?#4#(KL6vNKPI969*>bt^$qfvVAnQWFpZFp8O
zu(hD2Z)H)<#wvAcH_7$Un61XW@mq-T2!HyXgg!WK{QkZFUz@jVjP{?u=sVj|+toQ&
z(yQ1-hrq`i%d6hDtia=vqck7SoFQ;`x1A<S38}P#5to??S(czD#vYwaaOkV`MBPTC
z&R-Tui^SUMt9x|;hgT$~a?$H{{)>b|nqKAMQ;&5u<@A-RCO>0uOs`!|dr9cySf+w;
zbt|rD#kEQnxuVVB)b6zwN2z&>b)~~qzyF&bw+fWLt^usn*ld;Ug40-NYw~_UD>ZxV
zcA`FCpsLAQU$Cy$pkcX<CWGDok~U9<u!Vn@aeocfwsZB0y1HFbUHkandG9!-wyYDB
zE#Xv{Fpa%2EYxVgSQOG6VkHo+hu=uE8Gy?4Ta1d$w49fsi}l{7aV_1OOuPl@zbeW<
zJm=2a%SLL>GI5&)raXgP>uQn-nbzWREiMaPPE`=eAj?b3W;l;iST5A}Rm#da5Lgk}
zAD(IF?BimB@{mp<5@0|<kY1|^B$P5sd%h-^F*L$EQXYAt;1H3Zc4Mb_zA<%>Yd8%0
zFCid|SAS8Llv?kK+g5q_T^7X{`G+)QJVqqsEVrGN18wqfW-pyGdZOUJDG9-OA39c1
z*UC_tmNk_j9n$yV&j+vG9bdrD2d_?!4&I);Iqkm>rR&yIx|Q^sJvQ*O?x{)INr!qn
z$%R6%8E5d*-xyr!2>n(=Q$@O>abGwn@PGEYdoS9a6WA_ra;Z7ln#8PM>=0L%Y@bmd
z-qMH$bTowvSp;kV0x6jpBTHLJLrDqv=SvXCs?58>Hl5HIgRtD<iE`T_zQ}!=5%pcJ
zQF0a5!j3a2^=2w2(iY5=17W15R=PPO+U>k!@=DwCNn;)blBy1D`NZQUb-cAh$H!ex
zyL^n*D{wq@OR)o+(i*RePDlY4WG<gZ_=Kfbu|U^cp`Q~!JPOR0u5J*Dt7%1*EnVjp
zIQ<_q3AU?imks03eW-Jer+EH1z1!JU_Ytt}6it>q2|VNc?~AAV-xkjQzW8?U>H7Td
zLp<3btUg@rbuLNh_k|c6lF@4vbtaf2A92+0K<4V5l|D)_j;<loJ@jj`K-|Lb3FUh7
zsl0XSzH$^rl}%;M$YS!0YGpxvbT=(I#xdbSY~?V~w`-U}`XFo>TTwuf;ien|QcPc0
z@&o2F*2&C*Zb*IHW#c~F%7!=o(i@PlCo}1Z--Lb8w~c(5Vz#wyUCR+rPgq7VhypL2
z&6~Zxdzam{u>qc35D8P8fBJHB?57$=j7KQ;)386pWGt1usdRuj@gTjvl%-JFm_{62
zVd#kp@&csvBN@W4zk;(V5OUxp?7{7A_VfS2|87k&yXA3$w>ROp-~J)m4Rd;D?yeWC
z?s(1~bL+GIMdY74`^b;S2S=}tFD^dlEG=!a9*!~c1I*aMDSe%ae7xt!XRl5UrB3zX
z^_!#Pm-<q=PDUa34{$cOMp)kUgvL}TM$Trj2M*lAD8>=ESK$2b=9Va@LgdIcINMH<
zf(rIuz#T$Qu&9c=8&Jx-0rf7+1fPMnz7@1nF&Jc6U`%jyHk7xoE<PNe9(?!e_{b@Z
zubBrQgo5)yXWM$|WVu;x=FGWbExR&9PmzRmnG8*ao?JGT&6}(XhsWn{KYV}k>iACQ
zWU)W~bo@W*H=UU!SNA}F6}@!oxcSl1B9E<}TsB{AZEkH=V!gdxIhp5TFZsliO3p1K
zrT-X`j;#U;<JsB{Qb&vrm7dm(lkkAOV>pIeVL5KA#80w%!f=dyU*!nWs|mdh!9Caa
z6xd`dnY%K?wyXu((>*MXm1K}2(M;6Z2b6qz`O!leSLLeRee6`wH%m2ZgUL~;h|KGQ
zi?_$;i{eyOyBf7Z$(a}$QBq_X2VTBR?<y`LioG!f=LFCM@{DCm#d1(G=3Y<xdWF6#
zpyt@vi>hkLE8?*47HiLLAkV*+NSKYLzOZvqJag4sG?8K2SwiMNIw^O*5<k66WrVrT
zSLPz$kKMsk=0U4OO_jUATq+b5i^ZcO;>x<23Ur0v#qsIelhfl@A5KocfAg|oy~)+m
z^5w@j7jIvhQOQC2b@#Wssv2i+&fk7GefRpi<MWz|d%9v?KsC=&X>*k4Xqy?DR-FmF
zV^QyB)(r@7aQ?%^%Pq%sBbmU|+12R{#ryw~A9%pbN1L$)h3+Z~i#gy9Nq`GAvT0OV
z?GjI`YNhk5x-C@S+(AP<l<=|6Ez1h^4&J@}@x$S(ljGC37uA)uER@$Uf-}WTm#Uz4
z=?sfS_6(pucGdBls(u{(_~Go}{NVLPt~)omJnSV8RdHBTb-^07YK^3MiB<MWafQu#
zBfrz3)uJ^8@5-;Od1lZmXl~V#t3X73m@1N+oK8_UDvzQPID!c(P%6}_BCUcF#Z*NA
zxfAM(VGHRJq^;3jvgWiO)u}u}RZu2OqTg(-m;;Wz))xk4E+|GKRZkD4F5^!;M&Ac$
z#2|kL!;V?3DXEc>afO+asD6G}1Hx(Ijq5FnN>t6=92%s&fTN`TXN3e~2@HSz@89&I
zR^%iJK`qtlmYbR?Dc;I0lqKD-bq$FTL>~S?!Vf~CRQQI>QAFh&`d8J-M9X2M>PU~y
z2N^6Us_pmxCEuv<xyG6-88A+G!f{spY5!l@>lQE~%E%{Oee>p7-{o<F?>dE2F=k1?
zJC>{K7YuAnlfcgf%RON-gu#_`dXgb%u0_z5_qO5f7*FLsO-Q-&n{hG-uu5Yt=*B=V
z)#~tA>KEN&+ZLq#ZGp*<CZTB8z##$QQy`2bSSLn5!UKZBy<K(XqruRr!O+LS%grb6
zcX#)mz=pg}20=(eSMKJ??WELErxNmsem@b_WbVH>iy>4v6fFBqi|FuDy5OpvbBgRQ
zoy{#lSN9kkwt3^@;BNEA;+i}2uE-Di!$?SD!-~#!t%Ic4-fA1O{2R)2+*GYO@K3vj
z_Ar92g$rr-fni?ljJ?EDJ>6u;bT|@kN_;N2lhpijjTcd|&;<$!Cx2idVU+M}tkN3t
zk6!Qn``-Ka@84UHizWWrd;k8g4d37YtM~r>zpMgs_0k)4FToM36#VtCrrvw~?Y(2+
zTaZCj>qIKb<bsjPHMwSh^S>M4yl3BR-UuQ=_ZzuV%fB_6caG)ttr`gA`?-OTqq+Iy
zefY%L{BH;T`OkTAvRYa@->s*{`7ZuDri_0e_BiM{wdcSs&<KZ&1;EB=4{iZnU&50c
zm1%Et|L%!~BmeoFPW(sctE(|I8@RWKXQkDd)wj*hJe;{&)s4+o=IscS)QKR?G(idY
zPbNc)oSE)}RLeG`loNdgIHyHsAaB_s3guPeW2v+?FRCzR9C6~E95vE<G9|u7cuUV(
za5jbAc6#vo*x6nc-iD7K>CTwx!2@rOrOu_VV3#b{ms;m(u2h2;H4kmQfi^!2$|v1G
zD=~N(ufiVM65fll8`jCsNoSV#)v39J!znsAmYZ9Tj%7aE%vx_$e6<@DP-UxT`Eg-F
zL&9m?Ld{C&mW8-ed}-n4RFd=egvQAv)3cH9f6&fH%V03#XU~DZysU1xBqB?Opw-LE
zkY0zzi9d6gVRNtU9-smT+*SImYn8AKi1CD8VHn{M$B1KJVV2^~qzg#nsVqG{iBca6
zh9|xMEp)2qKhYmH#h-I&Yg!a*^Ndd-2j<oH6ra&pUSkI&1cB=BunT1qOSwxAWje0A
zyX}8~Pc=1#w%NwG6K%Mg;=g7bPR?Ft8lq7U1-NddnkcPJFy`hS+&$TL3M?lzU&VE)
zA`E~1t1tzf&6Bf*7%%-foAXZ28bz3`r)wQO#lxCP3e`NX`ZUDFDF>BHbJ25tPg{z)
zwWwlOX!aIk&Dz*@ud#a3oM+RqaygxA1F_W}Wv-d3&C1npL*|-nzaN?Xw6|NT_0RHN
z$b8NX*Pd4m9Gcr=DTU^zn=@*s#T+@W-Di2g=(37qr#0ba@Q6HCuw<Cky#!gc#%mq1
z@x?}Le7Uh071-Z@?8AzK9$?8(fu({Ts<RTb2{foJx>%$^Ju*>@k3V7WaN=9oG!?pq
zkc7U_YoE>2&Ww<SQmIwPER^sn9)qzKTYbjzF|4(%Be@^vQu|2bxZAF|wXw|i6v@0+
z2fluF;A;=ygjGjjekIYD52%P#L`^=Dh{sw~n$?hUnR&I4M-exfcVT^@C-6V-Q+xh@
z1?T?F(|rDa_vwol&kE=NpYQKKTc7`bh-dZZ|G&<2{{Yzn(uZ5On6WIKH`yMLFjica
zL{UJn52`>COVvc>5s+y~O7*+8EG{I~1+Z*liH2y(Cvi)6Vx1{D19w$!Ru@XpntD==
ziBFi&fDhG*!D@0Q*OpadDR{*-i;m7r431Nk#Z=a@SNA%aHk*y|t1Hv($c#Tz%t}|v
z=%sK5rDd^Mgf7CGgU+gID>By>U4+VYJEwVPf$jFsjfB(VlSnQ90}}eM+m-*5FQl#7
zu$QJrsIU({dxviJE~Snv*zG<*v})Zxb@SePzUw}{4qY@9I8R6r5QaS}hO`YSN(BV4
z0|D!`4XW7W5Rrgh;n?M5f@xAcPBYswP~K`F#a4uU76dqO*);SP?2mzQAwe{7?CdFQ
z(3&-i%MfQxWc}wV*Z-paXE@ar47nl|aEAW3CzQQ{{`cbP?pptQh^JEj)9TSe*`Evp
zJuWq{QNwGcC$b280y#d7a32npd_Fnr0C?u_KAfu93z>CS^~Btekol(7=YE|;*JU`0
zN0^_<lBRB}MYPalx_4gJcI9$e(Y_5Rr#>+pV2{&yu90gTkIy|P{!CAW{15opU8x(O
zS^n?s?>^lv=Kp*4e19$fAL6-({C|pt9+&)Iof{w`;pl@f^+<>r`yfvQs;y18w6|IB
zY5$%CX|wZf9JbjuEVyp%Du=I5<Sxp~(%B_V0v6Gb;g_3RW+Bi@x69xuZ0^B({XPrt
zHg5pju{t3+ri{b;sw-p*OO>n?!DfEz%7!RI<?Y`((7j^Jt?PQFF`Ct?Km;Xxe5m%A
zAeRMOhvnD6uYwLbM!&v_yg{@Ar^@)WB2_d+N+-e;E6N|+=`N=_(JY5h1-G8PIsL(b
zs;pUA!F1b~aM;VXC?%%{<O;7Dea+}!3Zuhc|61|!)tiH(lhYq`igLmrphAF;<SA?+
z*%{_QLYUwQji(FEmsZNToKpEDAM44q<YcM~FJDitN-BN6<pjkHr_9f~==w5c{~n2Y
zaP$3}cc(`mPR?HLDWrOW0n_&a@$^fagv3ujoxeLhIWph=(j(EWsCjD&X@tlSw$dhE
z?%8=APR?F#?)?MOue<-ypA2=(EtOjqE_o30)#lzm(ic|A3|tYA!aNVD;sE!&$4max
zoT}e}ld~O(+YW5*njWfF3!N<NiWKx*J6?YEBC8=BZH{2Hc?4Ji(u(9*`2d^!Ju1fT
z<%CsBx%a0LWuH;kT{HWd*}o8G|7`khwI}2Q3jK=dqppPb;FI{Jv$^GySjJmAo4e**
zqk#Q^al{k$Qf=!xn^~n^jnl;uTzY$(tG)TJnblML8tTi=ZdxCz4dVOkZ^`tYtGi`k
zHdk*yw_kGoJj_${|LY6M-6*CL%*Qxc!397w_J8+xpFJ)3|G(YaeX;icKg4rmU8t4@
zSm{gY^@_Y*{=$^w{Iv?E$qL@xb?glV9c)9wQP-m}rcB;JUEF5YP!^0eEC!NQV;EYo
zHszg(x$5Ta?D_UMa%=q~-|&W9`1<B0p6-Ck1quC^vuI{Eg{|0g0RisrWP6+DVl|64
zIqI0*b{zT<C863)clGYIZnION+|{5%LXP7r6r=~c^zSyqU##1(`7Kj3zOsh3^}x0m
zFbS)hzYWl%lZb{m<b7~7`i{+%7iIJ$XPVfAx^T30Ed8J5sayY782&YT{oj3FjQ@JR
zyN>^Vkf%m|TE_UwBg8WC{fGhtR<mBVme8{nuCD5A?z&TT3F)jFg$Pn8-M~DfVHAdx
z%aB#=8nIsV+u&gXC?Qj^#H)b1`gOP~3Ygldu8MzeF7Lde$o~!nDD-gbY}ZrGDt2<F
z87=p&5x1)9c{h4F6wp>*OhDe>_xAUU7tV^j%Zjc(%I=;5ir3E<^%U3t5c6vqUq&<_
z-gHG8z>M|(*|YuqV*KCUi}n4#5AqaN13mm_YWOWJKrQ>H_UD{tkP}9EC|NNrn!fl$
zg{zAukEmZ^quq}Q*(P6$n)h#~QD!5agriu+^NU}{<_DI4s6rcX5CrrZ{E$J684cuB
zCc1{T0%kAz@cgN@g%ZV-Q;!CHcz1M`14$D;kQb|XGz_t))Cx|4@-dE0=)E8#Yi_PN
z+P-yceGSN(Ao_|t?wsavD-6GRD%ik0t=YjmE!ZMOk%Se)O2X0*d>O>n?Sz!q2skAA
zcl?RtILsV8ATRq_c9>?{K`O;b9~>Sh*m-1JQ8`d~;%Qzvy?C9Wl^?nqKU6E~&2l`>
zhf6vp(hHfb6b;_UJTiqH+P0)Qqkb($i*eP0bZJ85K1fq|Is4UYM+8_RDcha`=EW$&
zOeQC`O{-ezl-gSNf4cJVKSljN@&_x-{Gpy%=RcqBy(sAa&vy6L`+pDe6sBE7{UgHS
zBoeFqcZom3yv`S>RK?!a-T-rC{DNoY`d_xXZxr<wbefRx;0lpI-p!|yby#n5DonfT
zP1zPJA)rt1LR3H@_ii>46(H_u!>hfywRU9P-&2zR>B1T(0bb2gFiZYF`?eVW@#5*T
z_4)q?d93)4I@PQAK4Xz{!6G%w!;ILEvmB7s#(oqKoGbRDx$c)9`%%#2o844aVS&56
z!gdC^kna<*nxG)FGwdy+hWsXKp>5lc5Kh{P8O1b-3R^6-)ZDbz6ahl-Xhi{R863A^
z(?aua@E~beKHF20|7?|+|I{;U|9}5QQT{*Meg1qc{~zKhtCbfz@wWCLcrivw2-Ld!
z%auwl|I|9j7yPnqgV`dq&3=KgFr+W?EGAbZz$1LjJQS$RQRyALL-vD^b*d*qeD&eU
z>xA+1Bs^g1MqTL}N_BBpSRe)8X+EpE25I|cCg@Z9Dr3s{$=P9sqj;friSjScPL8q{
zk?E$Ny^AsO--N;RoKpTh2{4;7jwkkab$k3#Ort{-A$h?%$@VD@UcC~fOq%#*sN~U*
zBNF2HqBaSA1HszXX808elTSHBC6Wi>RNyHyis1<kISPKT7P-gVrz;vHR(#<T&twvL
zV%{+9#h9l*@g(BYBNC@C(j1HYX9?>tKxFddt6O&;%Trwc)mbl{+K_R?@h}M(=F2Dr
z&FlZu7rXm=`SpK)cYkl4|K~v-z5de}w(M=P!shUH{%di=t`zu>qKH{>{+f+07IOw_
zZhTzp{wm@Ht8?JmlP<7!YpO!;YHPF!ynE2t^_Yr9D;-H4KX*ERQbAKvV{NgMc!I*N
z*&N%V^Y|lMZl4x9UA4`nb2U@HxG`5h+*#p*nOd{ewup<T9X_Sf?GUmfN-gqZ?~)}G
zoq<jgR$t5jTlyl;?pr-F-R}^?XNZr%sm@sEY)fYY8>9W_FIbigH`h{HrF~-yw4xNA
z_D!hrGvL><(LphMcP1|#RL1MBo}pS}R$ZkHYDTi9NNRfPc}yl~gwK*7xR4}fPR=3q
zqL#Wv3#b&PQYfIDN_0Ya9SCqV3<qva|J%`C3(f=2qe;kX<!8BAPJY#}PfVypGC+*w
zWm)M{KX;LI0|2Lqi}J2M1q2O;BqV%l$qW6aowKf)X$y^o)K7y`va<Hu>X`S6+RLE9
zX@KM6+^}9YAz{~D1_w4qF+Pi_ht=3wZg0tWRiE=N^j2`%V&jdmp9DD0^I`6FW$V@T
zO0A{_Z7x7$hWEG-MkVD*WpVkXy1bA-%K4Q;Uw-RG>Bs7jn_>uOomE~DNY_S6)xm2P
zS9|+2!+!+5<xK(kcqSL}_W)+^U9VWszL`noI$%A0yI}5D%7qpH99|V0RwJ!4l$;-*
zy*fEOczg2Z^uy~nN5_R2Cm8}&P~$3xqv9s5*(L3qG1chh62(;GR&{Ze(j$yTZ*s>t
zCA5k;!|D;JYWw?KsHAyR+dtvyIUbh3HdubDVrjjypG!P#sA|ZXCS57_x5%2a$#C%M
z)tg^F9KSw$`#+7u=&Kv&+BBJ`@Y`1xAC6BCzI%0C16TGp4pBT+O~@<JD%0oGgzB|R
zxKoYU*_-pXwP=+CeQPi<aH0A-zeW3Pr}Amva(drkL$eL}e`bL<7bDIKy_##Q@IROz
z{y`1?6|7NrHDUus`Ku7;LG0*9)!6FhYnD%RdA4mpq2?yy<M8Td6qjObD-04I1+u;a
zTR!nPI9KXd6I91jYqA5I+YO6wHR74Kuc3*<*G*rQJiTR998K2+$_xzd4#C}JkN`mj
zcXtWy5L|=11{vJl-8BjB8eD_B6M_V}Jnwh!?REZit&-KNtE$hbv-j@vWJlBp?R|G+
z-Y|5dGz5+fj&cM3KH{1>qLV&xodxZnVm({@p?YHbH5FTiAs+Eb9-IT&md+-v2(A-E
zGi<q>LASsvf_Q^O!Qj3?Y6iYOK&D~&T5#n^vSV?fTB0phT-3Uz0|KXZH=-TvW+>tO
zXDQ4Xr_gsQIWF-&k7B~`5I2%<q^U3M!6stFDiBs6ROHAU!XYsR?5obQ6A!7!lKSy;
zDc1dm8rGLoufmf5qmVwYXfP}?h>=iX({Sd(nl?ybQN1R6TY`U7b0Fbz5u5?a8<FPa
z&tI!X(|K_&>BdT{6b8R}Bkj7~jKME(;}BQhGs(DSYAww1D0-%4)pbNaQlU&Pi7{8D
z*MkziakcK-GX)y>3*f=jnhN7VgyWDjl{)x7+?JHid!yrXH=It$Y6kKgR!4Id$)0UX
z{npnj2XrDwc_}8<JIqdXa3YISIcAE8`>s1~11myv4TsebS_^wjFQU843M`~=rlP$S
ztQNB4`6?YNH(JUcPgsbWE2?7_Ov-RqIwC24n*JW_K6+{VG(n%ZewK;CePEc;dix0L
zhHp&b3Z^03X=klsLX{XaMZ>vScqd%9`=71lpoOlIFwY!S^K2b>t{&J<xoxtY0>87W
z#G`I68TFF(B@r9_#(7}PTV4|6X%n^gjuc0$J_jOZ0Qf{wg-ytD%}LsnNf^+ILUas6
zF>14Dk$p2rMZR}c;exo<JKqx?=$Y$sT)_%WWu`ypJnjy}%#aIRe9m=0kDPlsxw#n%
zxna{TUf%usB>vRIx=Qu1`yR?1JfB~8+?2>7><K-dovd|X5SVM)A)vI*@3FCbbNdc;
zovs`ZjP56BImjsMT~RmO%Rjql0LS#&w`ig4(|vDsf%W7XShiv^y+<9!=}TWvxcE5{
zHCbgE<kBOfJIjP$fij#Ppv~<XvACVr%5Oo2p|mGp1f;Is?EmH82yckMU-LyueRk+u
zBlx)9W@E4-y}}||&o(wGLZxVMJ}|vtTEm)4FKyHYEEfNm{LfFHhyMDq9+Yi(l^#mH
zY}-@A_oNH+^p}^9VSAo&%JMy%Chj!7O?};~DExQ-r$`U07ZSn}0s@Is#6NNZ4uX?b
zs$aZ^XoZ(;0$&>#O80R|nCXQ1@Sj((5V*2n=)V+6UWqPPYf#O;3t@aYI9_EjAOE5i
zz4rNo>Bf^lKfd7@w&6T_F5dPWgS=uysDiuZXdz+sFBOYkIh0zto5%lD210f<s1{fr
zG7*--xqNg!Fi=NaNRK@XCQtSwiBaQ+R_%ruRzN_oAGU?7A}q~{YXb&5tWJ3rvFd~A
zl5@6$H|TQ5zK`Sx2IFtGxRr6%8I-_lnAEjmCK~QL&)MH)KDA?X{T2=|>?_%`%?guP
zt4dv?ct<7VRfL_UA9T0NpiMlUEB9R&7w@r|#Q`OtYj$5%dT(0%yY|D&W&GB(XYx<A
zC=SfQn{gaqgrg^?xo&iP<)_sef2!CdCz|Qi$ytwm-S2`Kg4dO})hm_P#9<|R5gF2<
zypeL=YMM?;WfSt>iNst>vsyjM_0~fdhbX>qGEY+KIidfdH)GFS>$P77mt}fA{#^iF
z5u!y5!1jR|mdr@T;%P#;CFU=p(P{+FDCz6oldI*WP78@4Pb*2cBMUc~e<wd%RNKXw
z6(4HH49DafZZPEvW^&P*RozOk#%EOxj|t|Xd~U&zg`wzhWh{5x&h>Wu5cy?c;$w9!
zUWHl?vF1Jrr@t}>bEgntne*x$ykGLOYDRs1cX8S9A&r5zbpZ!kb#h+A!CvUXYcbno
zp<iF^v5XR0weH^teRkYa3i5zxQ-eR!#pQZNhkZ-otLVohMl^}>d_T50cf7bYli7b`
zsR%!&*I5x~`3-?fMIn8&pLAbP2MsLi8RviZ{S0x9(*(z=1sVzwSG<WV$&tTvrPLn&
z%H^<^9pe#ITh1DL7$FmV{Q0Yz_q6Q%zr!J(G?>Y;x7%k)#<#a7tJ7x@j2n$~TFv8j
z?Es`1?XRUjJqB$8>Xa?Qh?btXKMK6%2;bdVSvcA0R5M@PIy1BXsbDbj$x{x}b2U8V
z>hj1Ta=}0}l2Lpxpu1r#atPodvZ<PyZVmFCW1}}JxX1G(TDd+bk$3@x-W)%j+r`;4
zOlFg)ksr3*PiB>-j<-0RxUSajIM6cC1$Z?hYu!DuBeqtai8L*~S^XB?@YCvkyC1xD
zf6YViW_kzC$C#|1fT|RqsCBOF)G-=K%36oP5bgF~UoD2<YuCdoDi>+S%t$~3;*aS*
zT#MMNl!{^w5<7*D-ooNql#@*NsYK-|jt*0QM0t1c#&d}`JZ!w8EtYhH7IlMeVrO~p
zlq|yBmGb3Q{m=P>xY=2<vCDt>n@Qzk!=qRpRg`zDxR8LX3Z4b`E9H$jJcYA|Y@1fO
z|ElAf?UDadv8JNg>zI<}&M!KaY>+7uDS)dJl5{DpJy{oe-&@MypXAhGk!(1$P4kx!
z2pr?5EvTX}$}SB9JPlmwOg4S7joha4ZLw=yaaX3n1@hniyxepxIq{n11XtiUxg(dp
zTL$6Fs2az9mVkhl&(-#k`CsH3w4|Y}dxWX_B9+eHaGx~4u%y%$A#Zh$3S=6yCYBT-
zudDG3RKnmh<8E!J2ggA_6uzFEp(_2O;lIUz<3<e0s0n}+yirarcTh<%xmx2v;~1`(
zWp>putUFkQksaKz^Lz&_8Xq)T8-W$|=ID7+#`5D~nsk>Hp${1@_blwhnR74eUG@yz
zZw#URP^2hgNDVi6;&#8gK%sO_T)Fnsv-KQ^)uz+`?*x)OJTLA)v$2V*>(cxK&)b8l
z+L!MKFFUWB$%T``zu7mb|5@E82x}4S{C{b(_~o>8apzpWZ*FXo=PxlGL&EVzoDqFO
zUrAig*Q-uBe-}ybhfEZ-=5zhx?yyxhkJe{SGiP?F8?Z_}oT*Wv$)62NA1;}-GM3wH
zqHpNT*k6ZV;2`iI(FoBWa#ulf=06nWnHWxdT2jkREw(R-`qER~2U>!&lV#5a_)V`g
zpRVdoX6vPVtcBlXvRsh!bK!x!h2GlgUTRV|F9_5(it7KXCu_ktm6xl?vDN3wu_)aV
zdu^=FsOxcFq#K_SfNkru&k6F$3F>+f6subnfW3dW?>1zosOv`B@E0z=>jasBpFkp9
zAkQkAbwy+aGyIFx$_Z1O_N<gl<dlOs)SQC@0JaNzI<!l1kB&P$ThLhRq9dWkS$sp^
z^kO<8v&%u};*-$5*k)uZW9OlV{Dh5B+kOGlZKpw7UuW)@W1g{%1Gfzny0ae<$s6+Y
z=e1kq@7Si+?YOb|4KAqXbYw&N!df)k=D*2Xu1nuq<(<zNLtUx6ixu5V72Q9ZH8yV*
z-h7n!H}<|)PY4JF)Sh^huH~^P-zoAJ*>Yx>*6?V`w*-Gx;m6J(yQ7yeVznt3VNL$t
zDTo+P<?S98y(r+>qI6j=adP5viegpk0N*09b3)uRzF*@2`19kJR+efOmz{gZDp<D4
ziqbiczlz{^RKVg+NO<9q+>Cfj)7)QcI`(<m=U>V5^z?gJuX7mS8(BtSvje#4lrxs0
zv^w-m{;kqC%uN?C5-YVa{<DFtK=;?MD=|wl`jegfA42*d6=dXrZ|3tU&7~=IeJXmv
z?f^-Nuh_ce{(jK@CWE<TO>2?InxrM^ttEP_yKm=YQ37yWpU;qoVRdOt+Evt{T^K*7
zNE&_%e7rj@qb-vmqCx_M#rE@*G)j8@#=mmdzMOss?$(wWzGBE6B{?+*TNtN4|Mt_G
zc>A|A*yOl$^G2DwF#dLl`@1?Vs4FgAN<eO4<P;w40aLBnEHtYFe)#w|wD(x-!W2H|
zxB*Gyi_%ETz>BNk!i`ZANX@?C44Xsz_0s>}vp474zow0imgj)TGPkYXR0MZs(Q9}@
zYHPiy=Wy<3qm-*UJ_Tsed9}Rm7}ib8f_z%P#)GUaocH82#>~PATcCCBo3c^&Lo3JI
zI~6Ri?(i){ko6ahJ<n%!+MKX^Pn1ySmw<g}!5$tO3%hR(N>`y+5{=GpVQ2O>WkURy
zo7%kk`-RGnhKu*g)t7lXzeO5;1ep504dlJPMsY@8>naFUAC))P#)2w^wa=e<Lu{hP
zpV(sWJ`<j<TaWKc&CSiCbK40|c>DYQJ=we3Iv>rN!>IdBvOr?d<UYp4@FW~U{@Y;Q
zYTL%$y}oPhizAU+)wiLpF1D_lPK%hmNF_|97|OuYanZ%JkRvNU{*gSUrr*1YM{Pey
z%-`>xToN+qCsR79xjvIbXp0oJCzn<B@gAyDRDG)7$B7SdE%E1paThE>7O3yo$p5EV
zl#>%)>$rX8-alNKgu>U&R0rUyaDC_$^f*4w7?Y%~=IzW3ViWLMkmfe{UdtM7#52DN
z+v$4f&$8A0gU7Nr)NSPco)}PD7iW_gdGW)+v_sdZ?I!GVn;K`{qGv4&ciBOAuQ@u?
zbf)I1kDSZ2!0_%<E|i`6r-pNzNscboVg}w)2HsE1x;=rWop<|QbALJ!{eKqE_FiQ6
z|C?#ho!;o2`_RB5<J=+<&If*n98Tx|S;PEcD-q686vn&lH!1mAhnwa+IQ`EsUk#!#
zK1{zEc{9rb`KaH9Ut_+TzWyZm$G&*@M!r|E{HA;H9KiW;<Z1cm_W|wkkD5c-+nzOz
z3x}__`|?(=w>zB;qq?#(mc}y)p?jt2Uito-Gd%-`6KHiAYLPeLJ5$Wj&zCBJVi?0y
z9;5};V)Ry-x-OT*GnJLuNmKVx=V2O6Q(<buV_s`U|BidKv(fDl1g2dSeKqNVTT;~V
zZi!PIc&4{gey(O0d4+bY?lc5(yST{sW&bAOaU@=4)gE(as*`KQW#j^d<@lPk#5@9(
z-#r5zhVS!kHbTaKpWd3&-%i)8d`|D)7uZfV6U*g&L+2aO;@uzU<+IvGedE%+HGW@H
zW=?>&V{rWlvQelN`_0$>+75gFNnGM@wYth3{M!F`?;IVNCX75AQtFlsB@L9<@anPW
zZN^jTE%t+HGd)*`C~7|08BQEIVqI0oWf8>u{r=-sh#4+VAHY!irj?tQ(!$C0c6brf
z_w;u5*wpg!MlmgTo%erO$rk1MjbwZc+=pm4*fP@-0nm9*g%(D3oF49PiKBZsPgJ2B
zA6HGETAMytn`ksc!TtiP`xi@EqRfTo%Q$Ba%A$lJuat?BJl)&3M?=oH%h%hNme=<I
z;Ik>GoJqi2xVR|gpZi6{fO(<RkqMqrQt9rWK3sVy5Z2Q`<uK|w(Sd{@w|rg-8NOAl
zBzR|+u>J7rJF+l;D_Ai>=qio9BqteEd0G24`lr3;wj!ZIP<Uf01c{1793r-U?iSA`
zY~Vz^I|WbjYcw?c>UJCSKx3J65qXvSTqpK(j`SJpelK7$=DM8z)y%)Ksy+=sOmPX0
zGL`{O2>f<iai4!I{RBzNaqRTPcK`7hkc0L>G#E;UsuUNeTlV39DmpoA*PJI6E}Sp-
zY3U4~C*N*&LyDG$H=+XAzi>~zy_8Mg8=m1GyluuDPA}fRzhpGNw7-&v+K-ox`esu_
z{&i(IZnK-bnD7j6dqzkxBN6g~?hCVc7~W<qnh12ImIO-e3<?n>5tzG_ab{;I4Z-hB
zb!Ku7GI}y)Q<fz79YR7RAr@osm5Q|~sRTcE+%kGB)(5jzSb$0PIZXe}Pws=|B@y^g
zWt9OMvR#|d-M~1Yfa!*kl^N{jkEh{T@3PzLU1@Jr8`w?LivFXKREd(IQ~O{Y0Ob%C
zXzyRX*@mb}$eoW+1yOyi|Hj?XKxltfC5<@=2%u0}tM!3`fP-D7{+chQBF{?=SD2e=
zs}f*-k__isgiBEIz^w6+cZ+84I88}<%zs4ym0>@27<y*x8V7Nbc;F*ij?4)7ocA@2
z&x00!ZEKeyfA0NsbVdc{iIHfFZ-B(g*DK@433eyiS4U)Q%RUqT7c7LNYG=_vwhxY3
znkaM(64WG~pK>m_De(ZbU1%IM6D*>Q-nf!l+H7|pRx-X2eKDhC<x>jM_9G1L0iomh
zViViz60od(!wLZmQ94buXOb^*|Ipyee&=F51#JIMkBOA%boYeptcOF!X~b{kLRW!4
zJ>Izw?ws$N#4VKU_luiH?qv|6A%Dt#@^WB5XGt(U$4`8(k?kgxw5x@2am9->v$9(e
zZdG+nQPJ&r?#a3eG=({S>P$j#v3$DX&=k8Fw(+F6)~9c0#T55mvChh*byMU@E8*{A
zgPod?e6AtcG@qa_jV^-K=ijO{)u+#DG98`UR4$K03T(22=<gCK-bm_)=Q{OZB$LR*
zggmhcpwy<0D_(TNfS*iApkb2J{H2=%&sppA7eLzZ^}2_{#$&GcxX6U-T1Oa45x+7t
zFo~hZMU#Xgyh>`6N%@<t{g~(WCzfP$lWt`jpjq!KBD^_G49CQ!v*1>6Xc0`my8>T$
zBs8HPU;PsI)ba4&^{U%aWv?-FNpR&r>m|xzr~k90@?G24#g|q|I%=WMlL}{2+t&K`
zyX>G@6-{O3+vunJ1&jubyg?m!Kkz$e!_8o1QEmD3;`~i}STp#{#&e0(I4(E(qm_s_
z?i_O;B3c-@bXk$*vsfxkLHsTx`U^I?Su&HO9)E&fxNgMV$yI9UNd&4^N}uc)_<F9K
z8f>*PtRV8ZJgrgG@rRKTUs2)*v|Is&v+~I}u@}*Q<CCi}RheH@3UPlOc$)~H<#BCM
zD*1I8K0IZNZb21^?jN#mY`ZEms>WGJ-avF{qj+V8(qZ1!<VQ!@Ka(H*yd((`X0<m|
zOP5OHp_qk?C2`+TWJxD+ZYvIVVO(4Am*HCfq=IYQbE>^E+BtJ)m?wHrs};3z>c?O>
zrG$dpRV%>wDzLaC$oTXOv_jNvw%nfw0*gcgS#8TgXbts?mxv=5S%2X_5+?DH+LWAo
z4ECkBE;~f`Vrf~C4J?bKN*k95@On<xS;&6wwmifaeqX+jCz%C)GOVH9<KeHiZxk{8
ziOnYSiOiAiEf&Krv+s4nY04!#D=ZU%i?nbHSJAjK|7xchWrn{u--$z<W68o9+ODpb
zehc@dDsv_wV1`as!_&(JL#XM$XUV~tl2e^Dos)phyl%eQmg3F~_TucPgmK}?C#A8L
ziG3BCXd)&XaTJ&r<)RZycEFrvCK(<WMinkiA=il4&jm`5n`Ki16!fEk^zo*zRyuwf
zKT_BVZf7Z_gCfCw$Ed`6j1-z3(pT$!!`c4Jxybk+KH`>&v@#fJ44%2HJpBi++rL{8
z7-a}`@s|gtz!>04!xoXC6EtdBhLrmCd79N%kSJHpAKxroTo?fj8Q0nXK~bLo>+gsY
za)tUW7E6S@oLJE92i6%YU<WA2GDzM12n6cIo%jm#c>ZEv_n8=8#^=FAUZB5_P+I5s
zl>dWsP?)(aGNG@&YHw*^IiKg{<-RTy7`973>Ey6Y+VA~ld(!*t`#$cTGdL@R*>)9o
zq?Xn`&<&+*)I8A4BzO$@{H5mp;r)4DB>5of6y(QT>eNsyPB+BTOspUcLj`nwF;OKR
zspKn8bpGpN`n^q!L0T)(T;QVjKc+|`5Zm><a9xf^raB>FL62E*T|GvBx>9j7Gt@q8
z8j4%r*JIhQ;zDtLLG7KI3>!v+)kIUEpaJ~_VS53WN_>6gxY<WVs*_O=?=bQTGo_L^
z^Fu~$C@ctMg#cxPbPtRRY6`!U?|ktkI?TyZ?%@capuWbRde=*o<p{$<cV@{+I=3Bb
z=`pBTnPTI+^7D=*0R3{6o4l}ncVX_i`|-(fzQbaK0`LQ5_sp9^RSC5qCHn0>%X}hb
z*4WK;HZ|cVa@D#T?JcDJ(q#nsj=$98FvCLq(9LG`<}55H`M>o4FGI}KWSwg0hBDj;
zlfBxawU`3Rquqz(0vQmG?yl**ua!Zpj@yyp%I&gZz})T^X~`2gqYUYOmGdIO{MzO{
zy@WCtRRD1rL0yv@2Kjj_I$V?sX$rIOz8Q%X))Yn+(`Mgr*5fnKW)dDbTlHr!V%wF_
zxABdX*?f+4F$q7?PS$&yUsMPCFM{%F`RU-REX%i^4=X;i>grg3&LMiF^MK!CJ6)j}
zezLlheVaQQ_5-#hxYo&G6*MgF0d|l_os5xH4-M7OU;Y|Xk3K%{uYsq6#m-Z~Ja;^)
z=zXhy#~t2cZQ~1HoL^k9+LJC>yj5qSTjHB<<l3?6ENJmlr)Gni8n65(+FE8<M%XsL
z6Y%ORii5de?HzcMZ8Q(_;O^x@-lxPX__kJ#N23mh$%wNTwRTu%3eh}H#SXLQzvKbY
zC#s;0F1+u>N;>(0I(=ClO26ao3=`2882;p{Z=BP9;xQ80ikPRFpo$(>T8qxa!>x~#
z)0XRtMK}{*Fp%_i)ytQ;r$nr;j%OgFaD=~H`;ubS`{;=fq08G5kq0Y3{XSjN;oCpZ
z19BTqy-*GdXAVvNu1ZU*u&Al4<U5&7vLG8c5oLp7AC~V_P*w3q9UOFYo9SbO<!>Ob
zmDxnja6|H`fA3V`uvv*jREi;HB%){_VOI)KPX8XBqsdJKR&`^k|F^6cdJXGNAhmGS
zqfIEHQVJ0#>D7L3)cH{9jZYF|8n~khem{8`5++Q*9GnY)NDxu?dHfn)@F(3R)F$gI
z0Ce<SUtGi(zSh=$GYOP(&A@1La&3d$$KXbm8@ZrpHCvn$SWl<r_u7GIk}$CRdW2dQ
zRJZa~sl%y2_AL)hP!ma9nY&fpCWz;BvN9LrJrGQJ?~zb;+!40qCAMorE_@*paGmM9
z9@O9D>1V^GoM~oik8F){%!3vtpi)G&2_&-h9Ee+tA)@#fx|=0KXv57*2MtHiXE2^W
z<Els2)ObwAJ>&O7Wd4POf-6J10V1Exl9>*g!0~^V$y_c4nqbnKlutn?zAZdYM=u5g
zK{6xGzMAVFJHyD2c~EJ0BLvf<6U_``sq7tqAvK{UgbI^3aioMNNgVI$GtoCh6}jnR
z@=xC`B7k&J8i~LIZiF(Y4Ago%BB=w8`9;ca*I6i$4bt>DBu~q~H-kh?ec}lZ0tMs8
zLW;aQi=7S%dcIi{+{vdeFhy(PCJ=29E9vO?4ATY0O#s?TNJEiV`=!!;_euM$Uhdf=
zjh9p987@p6i<%(et|rtnZNTHOKB_^@h1KuGyp`Nj7F28{t4xF&Og{Ma{ECDljis0g
zOg)*)e$n9sxgf#ISD8@0Q4op6z0AFiSBMh&HgnOi;s5#AMP8K{`mUw7&W4Ejj!q=o
zU9%mm)9?gsWR{Uv6$WDE9LfgT@f4y=hz=n*Gu1^k8iacz+J0SLp@^+*zOj-dRt*9&
z<XpCX*Pul>+id~cAr#S?j#%FS;PW`*4YvvZiCNT-G_inES3Xu3Kys9<tAhF1Fnn#<
z1oM}k@!19@##O`><jX7=RL%u{h8gWgOl(b8x+9%G&YLY(<tiAD`gAaKks&)x$nrf=
zh~Blf$mS!pz-|)yqz(O~D8)tw1c<%+Q460q<iC!)5>Oqd%Xmkqw$KR19OGR#^vOvh
z=MiB(AD$r>OJeF>>1tuirIeglmXCdI@<c^3yE+v2o{-Q~>nLt*zQIuokjzv%^=E1G
zF%%6#ymtPK8r2=FcH-|+<Q99kpdI)S7geE=sP*gmfkM=x?W%zu-ek5VUjg8^WO+Ab
z1HO`F`Buukl29rtNARb|AFBUw#3x@3!ow{W3h_lD=ztw|WB6vsi0UtFpc#K~f#92r
zwJ?yChU$)6&qmK|Batx=OZ#^Vk_zvhwqoTypyw2q_$IHw=a2KX{jN`C9Ck0BxWNU5
zU=M>xh%zkC@@@L%{ZscYF{aglufRlYtEvBY-&S=9BNKn9uCek*%h@ngzyu9cEx#hH
z_a%kR-UrTH2Mu&qHGA?I&iyqg`{SNiNN4*`8Xd`MEybYcK{s;OFBKnl12f+96mR6+
z<AeS%Xz?2O1>SaxD)~=eyW{n!!EO7rAU)q7R+4(oSzr2Bb)6ihgAq2kLh-yt)sQDP
zdF?kpKHL8{%-+GHv)3J0^as~j9b7)GVPs9RUwLz`VOXXL7KA(qD9tz3dSCl`Cipt+
z>Vu1e#sq3FCbmyK`gP}s__#e)MKszn1^Q3orP_{Th2b+UWqF>Mzcx-u%!^R5DD9>0
z{)f8RAGy=#D-t#zgrvYKNf&M1R^<ewTCMDM;ZX}wZujC*1ra*7Wd5L|%%H)69JC1f
zxv;<Jinzb~4+eWIV*PwY?;xDyZ+}?3rSkUp=(oQXi>x)-_k8bQuHJBV^P|WcB59RD
zys1~bPM?ImEJH!=_If)1P2iq;lW$SpVJlDm<Lkc@s!4~cvq6R#BALKpYd)HL*Ug*l
zT-r2bQLW^w>jJ@Qp?@Ue7xrxegV25VUWi#n%=LHxzQ<je#+}o|s0y@1)FxRmNAIx6
z4Yz*vj|RfF8?ph)=FQ7LgK4PC4CY@S?5%?&tHzrCSW7VdxS6b8`$H4e(@SVslWcm~
zZ`#~in}@fi`}J$Z<QMHh(Se|Lm4xABu^7eG;t;hj|5DKz+-6gSGUYFzB;VJ=y5!d&
zc19@#czC#yShHiyk@`-KaA7+=Op%2@lnfZ68L0Xfe;*RHL7U<9Vnjp^FiJe{t1oW_
ze+&KLm>B=IgUcJ(z5a8T^9&4U!#+01N{SzjMiIcR^vFtSDTQgH!7g5M`dAc{6ui?M
zbLZpJnF+an>x9=UY@j$^!<bVHQMDMlY9t)cBz4La%f>U31zoBzHAlC^9zi-{PKdN2
zLs7X2OV}~$oc|i`fnPu+z%ki)qeT07Ij9$cJ=yHVsSGx3x8_L?n2Z$enMz${y8Xu2
z%}PNLww$U1QOD5Kyyr%Oo_aKy0pS^@EC8W;dU%F~mdgP1Q*kd{K~F1H8K_&&AScAC
zK2;j^YCuDI7Qb#w%{Y3;_c=K-8j(@lBTb3F6ITnq25+>;aYVbM)5O-0;8$MmK&1}_
zqzOA2c!OB~>93HaiB_=wXOR^WU6^8&!Q<jXCwW*W1s($Y_&Smtkzd(}S0b)4F_RH3
zJQ2sqDEuc*Si10n5Tc}v-md8eL0A<9&5!I&bGnK-{>iNFn1P2a;KIZ2&MdHSa-huF
z4?534!4>S&UZUr(CrdB~={d0qx@ZeCP=?uk9xEW%e$kxzBo-^iSHuzEaAZ!FCI_9y
z&(rzV`68#ITrQY>-`o_8q@C}8J?LfNzzBHU=am@q2z?E@cLR0{G#iM^t{c^frjff2
z+)*j~m;tceWn(Eq`FT+QQVlDVz>4|RZyq>NY1hCYh4}DElUgbiW|4+WAJI+Hn-B=d
z)%bTgvdaX7OQst}Mc(j1K~HO<n{RfwYC3*|kbtWkdP8SJsU;5`=XafsED_!C<K}e*
zq0V<gL~-+zZIGXRa=7ZMqSs_n-z1NZUK&Cr?;#YGn0G3*e09FQ*ytFS4Cdb>d}q4w
zi{dDI8d^}NWz;$t_&&u+Si@)n5~VGoy@?SWKB}w&MC=K%<BtiBaw(8Da3YLDVa$DX
zqsOiIm~=+l;Uo<mV2-eyzz(A3VrlVeynW#+e=kLKxM8GMXE&<iD7UO6wDRxlw1<dU
z=Mzs3`0xi=Bl%+98iZgs&;c2DoMI4kSW(#YBMYyM=<Nt>OyEs}ZWp-fA|enM(hJfw
zOib(smQle?>JQOgVecZ3*t5cpEXCqiDfCb$sO4kJ7wJgc6nyFdjG+PcOKf#FVb^iT
z-M4p0YHnq$Fay<*BNdV{DU8VRVayA{2dVQpWE6epe_rszQi;!=nM8^5v8t?*ic8E0
zHB-O=Nijn(^)Nf1%_LA?leuO9oDZMof-w=@AgHg6&G{cVOc3D&DBuIE^e}-z=#jm@
zGw@{$<;=$<0T-$^1Bib4NwIR=HT6Xyslns~gu`Su*fKZj03=Ffk#yFFY!=wDn46M|
zk$-Co3TV;$+|lNwi4;z;T<(Fj^22<|wb@vHEOAYz6Z<Oe;7|$Wv^A102k(Z`K)A!l
z7Pb_Ud)rNE4Z6v&lb^ex7*9-hJVe+|M~zj~;@w%#qQ3}cfQ_9?NT!Nn+S3p|IDt`z
zHJIpF`QaMY@P)r#nQLqZ&F6$btj0AdjG){<kF)#DcMXE_TvOE1$`^=0tfv2!E4ZRi
z2BOkQ`=SYiK?crRXT|gBn>Kl2q}jBkLGk$%jlaNPxMutF2hUK<Bkz3^f|mVl%%fs-
z71(lA)?3kMZ}CX+_}5OtJYO%wBSf6qzXi;Hu^O))1Q>YR841SB7-az(6j;fRL_dCw
zcUn+HQuO?y=vlfFBh5pkXz4+hvSgw_IVi%WBZl0}a;sAW0%;4mNy#@oV!wWZ=eg-J
z{lqJl@7izUmO4ikAx7XWMhz$MG26qMpQqUBES!gQTc9%>=^N(Jy3<#}@#BVI@wWHs
z2+{pMDkRK;Gk6%$30yN3$AsL0I~;4ylA$k`s&mfwJ3&*5!x0Un<jgv5C~$?YtlD?5
zUMT@sOE<Mosb+{0hkBcmzg?*7yCz$@yQUx-3yDR4S%)KvtqjJy5P-8CsnW;#n{#jl
z0KQV}r5lNSzEtUyeg%Y}BZG1As~)3)mhP$*LC*J%DWg^+Bx+z*sp$)<?o_BD`P2l^
zqASW{BptU|Lrf$fX-9&@myc)HTr(S(M<Zc0$XzDWwVyLI+r<B?ncMJzj1#lV`eQ6y
zP@I9xYp#bl>iZZnR5QT|2g7irZYZpgQ(-j8_!5Tx@kyZ~yQpsOvIB3F|CR35$)j|}
zAr-k&KE6-q_eQS<dQS6Y<@yeyZfrD^&{?B_u;THB-iC0RN}9JEtH&ibpb)v;qPs2O
zXXx8ctJF6qM7Qj{x66!u5g?p^!p+<L#0@!mP+ZdUn^4oUG#@M}-Q$~&<s(J}WLWm~
zEm!yTQy^r3<}F~F<t>ytnrSpZqjmSqQTDYTFykEe-XrvXJ?_5uxMyU=!Ef(>UrXyH
zP5pxOxZ!Ry(2qYS>wkYCceOb=4yN&v_LEN8e<{c5md^I~d=c}c>r}&zsGuzvEf)Is
z=~pyiXDU3RgsL1>rXKb%463vqmiUrdgng0R{q6n4eUWuRp{x^TVaQ_)4c`%2Ds^YE
zwjM4D`-}p%oMVZ3Z}2@#8M4TjJIPC({_|a-yst<4gcULJ(Nwe1=LtJ0hYlli1_9+Q
z%7_7v^zU5&g&OQ<AiY;`J~j`alUFZA(+tY5VX;7a#Wut)FY6wx(~pG9+KUtXYL+OQ
zhcAd0BY(=pxP8Uftnb0ssls!Ys$Hr6h!R@qPBhKgJ#m9dpsD41m&#njJ^gH!uFzf8
zX$b-Xq8Q6)DwHrkg##CP{*77@wvqbixM?m`LtvUvQ%Dce5#Vj(Zzqxls~BVBQk;&j
zK-VO3n8;Fym_Dw#Y0e88CS7JUr=R>oS_8BKu|ilbDQD9WwHYC*-7a`sxchzZ0{cS4
zavQn@74p3FAYc<PnD9stfNc%4JELuFB9j6KfB<qU)Y1DmA9!FQzJH>Cpt$?i>RS$A
zr|#-7uA?!Zq0Yos_rc5|j=%%7fc143x}P;pVdDPmy<fGaVjl-x#8|04++ZPuaFPE2
z@Bm>fAV#u(r`Z?PT39}Nq74{;2(22)uv3cY=7RIk;jh5y(MU`Jrr)qgyeh#>pZUxy
zPsatI?ryVBwPF;}U{NONVhV2DJeTSKObn9G3DH=<+4eH&%dFbKa{BeTt{D1cb2-b;
zl8-s#LdeRI!tj!h&_q_MK`0HT(VkZJg3TXY(sAdWQJBOXo8Dm%0E|b)f!K}x#mSB1
zh%J{RGk>yQ+8(<3bsn~$3M;Ds^N7Wot21&kH(ac3BbXtW_fzaLss+gB&ywabA1*Kl
z^o4Bb#3Od=zhzn-Y&eXSl}QYHtO%Ej0_?4`PU-9(nOd41jGR<KWWb;TP!c1S(-#c;
zZwz7(PC;zU-Igio1WOU#w~IJ1eDf_ACK95mc)m1-n5TGt)6BloPO5l=F-AC>Cjn0^
zodN5K4v(V45rE+Q;ulmBr`7|v!Bz++=HeID`whOkuUPuipJ_p)0CYGiX$A?byqO|9
zZOc0=2!%_i*z^EB2_t5gyg0UE`|5A5_lN_+y={wSy3m(-FQ|FMriZE6u4i4XCp~_t
zTX{vF6BIeH6=@@?d<`1_4@ZR^@{@)22w#Elzs6bk5;(Ps)D5=MzR{hR_#~T}m6RIj
zPx9?@?hDFtEu@~=J6a#LA_t4hhjG@VvNh9OHo`?I#G>^#bg(F$Vq<hqT{f6xi?9Bm
zqr}NzMyCH)TLSTqx#?PDlgmWK7^&vxOno&c^EOIsII7b2g>RbkyBYQvZ+0+oRGt+S
zX)&k<lUP0Z)QH9(FGgCfnO<UJ+z|jjyzud0WtQ(gY`)XRV|D;xP?5Wyx+;Of{5>dt
zb4!FLz501LE_v#c0gP}^cn{Hdq|Rq4<cinhpS7!K?wEY`;a%|g{|pq(X;I`BJK5Ow
z83I1vF)oPayQ&ew2PK?M569AZq!1HR%n&gOlEB3gDV~`gcnZM@(1%5Y^l%nMeV%x(
zjer~$UpZm&S<*DdWc<Fvg!JAQfn;mX^4s853J+MXkfEp~ve?h_tWMme2yrwI>r|wJ
zZgEdb-<r4T`&7%Uw$f!~KR4(8OQb?9`8rI{bAnAIcTtXwdJw5&&;xf!1==t83^U3M
z$487bT;3$|vAmMms;9W#3w8g73PY3}HtasIxE<va3w~6hC>qX$Sgo--&O(5aCyd-5
zIF)Qf!8gP3TR>`>dGs!cmI^~;U`3g)f1E6L1_^pZ612Ot7xG4Q1!AS@=S&_5w4sB!
zGLF9dif_rSsqOIqf`O+*{A&l+^d^Gvhv|KjOeEA5yVWlCZooHXDxpvIT%76Xw*~J*
zdpKHCw}Ybsfl03N(Lq`Jga#*4YM$g47d<>S8aa_bL8NvDGKU|~UV?dVT@675R$V~#
zxO~)2qWI_z9jtyxa(oP2tUZUl4&Es_FAI(WKF}Hr7}c?}s;rGUzU~ykc5+R2CS*f}
zE@lQM1qnrBpMlvaq8a4!u$=dPY%TtXu2XDXRj=WNm`E@-Eu;NZGN*LS4ip8h0T3io
z`84Hp&VGjWDn_Athy+ezkzb$!RWZ$(3FD{efd!2Wh#u`qKOxM>%<hg?lsyHCfhhpm
z@z`nhqV?u_SE(o?cN(lffxyg)!RX*foydK6{m8BX{`AobG-Xh77<(z61~?X;Rs#p9
z(DIEiv3iikTW95ilUSSqL2hz!vuvL`4b=DpiOU|2gjex;@R4{fkya8TZz>!ib6n09
zRRZHK0ynif3w^J$S?@eDNj5s2Mle+#d!Q(bI@#x9T-J6PW&l!V7Cr>Jhj+r#n1H)w
zBb96(UB*hYx&i!GfAm9vBO}@zrmlbmxjQ0+8)&GJJ)BwmYJ#Q?!-B!!WpD)Zch1rY
z7c9Z6rLu29+jE7jCI=rDh-f`DjU*ZxZ5`B0)a-1*1Ob@?`bH$34KS@%ECb;lwMIG{
zu%mv^BegI>njAicO!1{c6-yHdVU~$BIwJX!VaP@2VVUkJ<(~*YEGi09w@D(&UaPXy
z`K2M!EcQ1!EJ|M63e`wZMD~C#zs2l8z69<PCAu_{FpEF;&o@Es2mk5R0!Fu%P-dx^
z6NwtTV^C&P3=q(Lf3p%h%`SKvOGKc!f{=EcnlRIlg<-$qNThCCbi2Ny!y{M+35(D+
zLVK8(<jn;Eao8!0Th29<*3l_f3R|O+WHJu07ua6ywD>t@pW@ahLYFZvaz+dJTJ&eL
z1V`E|fL+JX$Z2(s#b$;^e@5zee;JK#|4GUF1!X_n3g|YdnCA9J4<9xbELMWr77WD9
z&@o6xEI16Ymw>q_H^Q`#nvXv+Gf#Av-8KvRJ|h)GPlZA58(TOs%au{7krEb;o#INA
zKu9bNS57a*55(TaWRT#|(W`PUDL{(sh!jLl3{5wuke9s@qo+N}K+Zu|6Vj2=EB{Al
z2X$|Bj}9^L8M`C^jnwo6xI$sbovKmH(0kKGW6kUc@fxu^*a!9r6Y7;xdmlLP_jYko
zWtm=dRWM6NL#s^_BR}@Ojuogm34>SZ#K0j}pdkg@d9)~@UseK9!@?edMcop$*0{q+
z?x;C|^?VkHoC`cd3m}=Z#*^wPm1fC18*OLwOxp5F9Ngb*HK5SMftd`t5fj~55XR_m
zM!tcuw*ptoD>hOeMBG%Z(iLBWkkVek!rJdL<*5*}AZHiEm_z+w>?l#=I6{g^sQWH&
zMuvw!KZ)8dA$QZKw1<hfpjwRz?4EFWnoe<INKAazAf28Gyn%3^58O*0a;DQ?foa@h
z5#<<iZ#W85vMFAAd&|UC^U3!)`!q4dVU4@CBPD%0qj9q#vI>RJ>d>A<Ob*C3j0Ns&
zREV{#6b`WC$CD!;ItBHo5-G}x1z0Au28Jt&dNy_kU?Sa~GFpRgwZj`@8c9B1v)%}z
zoHd@Du)lAgj*Jmr0z+<GHSQx>xm7dF_muiH>#t*1Sd>$ZsVY{whz5TeKEDvtM$8e)
z;0e&FQ{G5mT+(8-CCbF2=Q0nKoJeq7pneay3PnwUneI7ACJeP(y2At7SYT`ws}3*-
z7l!_(cUp96r?TNEQYweNegN?*bnxN3uw$Q^@yks}n0~8h%x|tNZ_X$5B3udfX;R^4
z)yoz|`9)<ol$8H@U?zpZ`G=NDpsX03N}pAeYQ!Gjwl3zP0(#_f2;lF84ATu)tr))&
zoRCQZ2e(rU5Za-WIXgTQmY;?hNjUQ^W&*L}=D~He7HqsS$AN|p60w@UZ_YBcu#uD8
zf{QtPeqV5_tpck-ypsvrDc{vP>#445o2x60b?ACn_)kM3BE>RUsai~gF*l9<^tVuC
zz`tx%NQTQ(>@^-&%*Xa^mV>pgu<V71qZ_=_Wwqktru-#r+l<j+@^I67<blKKZVeZR
z+sEX%jU*xDR7&alLd$U}7TL)lQ8m##C?FtHEWMnC8Y4_oz^RXF-=m2Q{8G6imsC;N
zjx7Ta>Gaz}O;nmMmuoh)QrXVc7?M7qsS=-7Fx!Ax6(Pxx+e1-U-T)5FJvfysx}DJW
zxm0zx=V5hFWS|nOh-kj7gDFL#EsJz|!FcdGO9Pcx5|JD@JW0Q11|z}PdgfB2R4GK*
zUh%C&+DJnP*wkcx^2`i)8d#f^mme-T1*zf`63TcWWjMkY?b|wZ%c5(<bcB-sx()np
z*R7>K9_uVABvmBf(ekTyqzLGgw~Y;!V?zAohMF)e{L>~Fg%TEN6e|G!_!&tod*26v
zoP+{@bQftJQWmBksD#1;5xo_99W~vF^U9gNQRRs4+Pe=kjHA{iuHZffnrD1U?_7ic
zgkEu{WPQrkbZ*{*THCr7zj5&HetOG4gJ8!`i+DSyQAvu_H89w2k#15~!Au`1l0RwU
zEO0kS`&e3p!TFjkEDC<B3LGrz`q*dLMtj7Ex({aRB_4am^`+{N7^_R5@v;@`YvJUD
z&O96$r7w!PMTc38(l#o6$*$OQ3U*Q48!#i>{~L+S_$B8lK!CqDBh*G0o3%ZGjPNc|
zV(3@Em)ZSwq^EW`W(Jq4`rv9o4>~RueZ-N1Vm{7ff@xOvV6Qsiau_y>CX!Dds3l12
zitG_6+uuDSEtdO~0T)Lw<C!aF2AfV|ZzV=aA3wkX%|R-Gq!IMUke0STOLYR*0Dl2g
zzqB#{i_`a6`pYHj5~%sr3wF<C(y$;2S8mc?2{O9GEwhsZE0klfKQazDdBKv&#0kZk
zhphuxVPs|I_uQo50U~Od4J|CgUNZ+xF1d+}!y&feBnT@3g_=qOk6;Z2_{;c<Qw1Ct
zsS;S2uX7ns30D>wGG>kdS*28EX!jm_Ow4mpuW4T@A{Bw=KSpgd==w|H){XogYc5Rv
zJRmo*hE3GGnrXSwe)Rp?6Cc{ggPEQOQ;on^^0Ogb>OiN{ieasI;OIjwv2`(r@F;m<
z5YaZAn{>bYl}DxU4Anv&N=hO5nkZQ^XU@26n;&T^SW^-Q<@O)|h{!zhsgGb{mKT#h
zD5IDbgQ<JqMM39wbR5)tSfMgZ$W;FEv?NUIBeprM_39D0O*%n^7WE#SbaNy5Vjvv%
zSPTJd?EIejdbcIQUJ0c>yadA89i)2hq~aAgmI1ni<a`~x<m7XIxxc2x@@nwn-hqVc
z9R9^2g8OEl$9xu^0>{Ak9RNH^Qcp7J24RS^3NDJNWL0vxZLbc|Ogj5K^CFTKBSm+4
zt@b+O$((tku4wKMcBsF3qvsRxeIhVS*B)1`mo#OCVO>I$F6L>HDK8;n{e+4r+0?98
zW=s<{5k(m`G0|Mq{3`m|wOC(6@PILSPH0QI4K9yGQU=S5Oir{haKIrL;@pU|%yrE;
zHeV-g61w%t*u<inZe$k+3rv*Ht{B3zGH2d|(MG4ARMV=!@WBd}iNYsQLs!wf&Gyfi
z7Am^*v7zvm#Bx1&VQr$qt2-}3U$PV~X#`(?O_|$cC~GgRltIck`Hx%$x6UMEE3HHi
z;2k+W0f)UDOSwvGp`1!9XiYJ}LaZQt`yb?tO2CJm@=JL@vIbmTh#F02U>*(w@o!-Z
zF?31Y2uA|bV9GMWK5jYiZdyWnQ2Wl+@m6#}yW{uIJ=U5a^s!4TFTJe}3gVSslsJi=
z&g~S5N@HJ>Z8J2{rF#F^oh_DXVkynrQgc&c+$uzo4vR3zb|4404y7#qbG5wOuZ>(C
zL89WyUNJhD)n^#?eBoOpftnHWil1MjtZ_GB(bkOR%)=1Lu;H3ktOX$Vl56@od+{7Y
zq1~9OG+0M*IRKt31yW&8iupo&&FZT}Txh{1x42xYtu&*gbl}#>4U%_$9M*z76p=>v
ziuwbKGHluw1~GcdZvY&2uvm}yt^i<)Li89{!r8z2x$ruU$vS>0qidlg!|kIY>Q#>^
z<)}U!r#$Kv{!a+~!fId`2tNjKkVY51um6m|+PDF+C6=L)o7w`6XHqnIUg2>CY1!Cx
z3hqEJiyup*&cvHon32GGKQTU$k<ZzcF5OJ+nROyTr5|JV&y|ejpVma~5c8pB33Zwb
zu3n9Ekatu&%fk@v$+}4@V=DC=r(jz<wUA<A#wv|)kF#Ze*YS|@<VZa*4Rgnr;8#hf
znvu$9$Pqo^7mB({M7w^KQ1)@g6_hTyn`@Wij1Pg)#tsjq&YiOFDw^x4Sah^w%Z3PR
zX<|QAKf+`f)3irm5H<1!(CmC!*11zB@YSrmoB{eYmk;Zdpi-WK!>a3N=lO7TSga!&
z`~D7_(|lsmoFyGpKr~6YI{HCRfU=45Y!NAnvm)!JMx6NJEByAr5V2xwBr!G`VZ$iX
zR8-{!w`xYJ4O5A4s0uQ{Rep&I*q9O+2Cl(nawQHI&o(Kmu&|J;OoTEJU%;)(G^WyI
zIy)zi=#0Rzc%?S*!Ovmi0`cj0O&&ufaIUR^agkD%3h0T7k@*1|=5}8exjEoo*-4v#
zGT&lQ%fLuqd1{A=G<;VSoi-!@>C;!DXIGbH6uoL(NZU7i83Llg+Z(}=(8_X1U3epD
zD@kHfp+}e^>xn8g>8Y>^+M6ZA79UYYBXN*DoY7*ojb-Y6WGsy$msOt#4S?%-ZX#oD
zqH|w?>mzTbVri5L6K`-}PfB`ZWN*yKl-?^l!LV2ZU>{2jwSsOCwPx3SHi~+Yy?<C`
z{l-;8W$qUuV1+zEkuNar7XmKy)|U1bjUUmxw<Lx3sgcWiM<*#bc85u(AyxLH<iv5{
z*cEl@Ujw$8@F@!bfwQPi(4Ly9_j7DPOM_VT(+FJYn!&tU3!ORVoy^k#$$(oa38CCY
z{Ws7hY(tvqKT!YdSDuc65jfgwslzxY3n>~IQ(Aap790ky`2f4nZx^oMk3|9S<=9~`
zxMkmi18XxX684WdBG}%;;6T*wge+{BNfi>|(1ZgNL1PJ3Oj-&siKKyZWZEx+w;!MT
zED2~xs9=;N+thjEP!ftaqUs2QPqKH8N*o=6+BbsX>y4M1;i^dpFYhC9zY+3~F;LN!
zQ>c}*l+)E`1ebS|?m-cBeDe89F!^c8yq)J)t3B+H>&-*-KH<(|!;H^K1l2laQK<n`
zx})|JFB2!I%0v?jY$LlU&M?MEuawCL5g5>EyYajR`HSUXct4!w5uQcmrsyPKkN$C|
zHPmoT2g!M(t4NDRj*qZL7mT(H6Oc{8!fC)1WXS@4j?6cTL2d_og)wCKtI<MIip{H4
z1{3jOrA$M|oS2_Te8ur901hmxgv9em&niS+(Qq_;lT;t^Cm7Dg_4_&ecXXsjHQ<QA
z3ai?Zl5%*GiB!bk%V@L2DI6t)3v*Nl`&X$$iR-F)qUS3-7aH5#Hd2d050gvON%1w~
zfnuN&6fDSh6jy;R5qscMIE^dEo3NPG%Td~!j#_ab=5`cy^^1y@24C?dn5H3=t(=&*
zI7bQ#6rEH_2kxRkO&Af(9T60G6E!=dpSp}IO|g7G7a-}}#c9;~C_d^`OG!U(4#0^*
z!H`3X=147eXiidnp)ROaQiwXa8se;`Q%}^#n~(egbIO}S^E6V&+4t9U&6H{j<U-xR
zj;_`}w`wyQ7&8&+rAH+&$dCFX1iY`>Ta)QoFY-ZcZXO_AGpXlTqn$me!6%FPp71Y)
zAt30{30>yE^cJg)6;F)8`XLR7q8v#prKwZTmk=lnliXU?lTuJp8kUQ&wQzx_MiE%4
z<{G6|bBHdh<T*v2wW=`Fv62Jk!4Q~(_6hIgP=#^Tzrn%?BAILP6=n=pMxth6C7rT1
z8aFJQb|*!(HMDy7Un@!{XeJ8cB_!xG^-hK2fW7jMg)*$+7tSC{3fQQ*3^JQNbEXhd
zs#i=TDkK=FTA`C0@|{)!^D%R8eTzb&A$>(xG%|)LieN~sdDuZ`cEyn$<JOMbBwA7g
zBL8O1VNm2{9K(dU0oYk>AVOk`+7T!&uP{RoH$W3mGalT0>ma4jLnlq<q!H-p4FIiE
zQG07*SVXQh<RER>1zB11ePG^cr{n@cBA!e`h#%@#cgN*W==y4#QgRjX^SO!xz1lGZ
z@-8JHD1lJUFsu_Vibgd>F*+nl%AL}|9gIk_p#pxlm{{fVg%J`q^+LS7lcR~PjUggd
zOHe&Ln_Jo}l3GojQ`77nZ3NP(6qb2kpj9?&dv#%cJ4IU~#V6FxlPpZqE@0ygrWC~0
zu+K0UQ(BxMVYf(~oT=4(hnvv^qb;EdGRs{oO{gWzJhG3ctvd*i=?Drf*a6WFgo$NW
zq+#jmHcY<%xf}||ZHt&SeM3QN=%MyQ;zSUHp|%Sa{z;-hlQgLCiOO!kv1JZj>~jeJ
zyTdabW;^5p;#?D#9r>Q;PH9U)A?=%C>dnj$S`~~7Lxn%sEjHnjdHU@HwuFCkLgJ=b
z!dggxzp_5^5S`PwWJ{eoyt`f<)gCuNZP<zA@388rNmS#`lkACaFG6`vl8ILfXJ|az
zhMi!vZO=N^0H2cR-*C<twP1&0%<)2#nR?H}VT>1rk4P1Bx}huR3%8Z^b$gJL7cyL4
z;G-K=nxN1c@@UO$m1^0o@yQFxsi_59IiZ92_}I|`L#TO)85D1FgT@|13D20b7<q<u
zU^-G*3;aj)Pi%BGBvHNC(*`XBjHDbqlCthkOZn*pMl60iEO1!<fm9BiQcNe+{CTr)
z3~qArqgXYvo(UBt)k)!&s`gFsrv*Q_>*XUw2}eGZv2#lU@D&oYTGEA~K|n2-$~$rh
zLMuD;njQH<{V<XqM5(GMx-~QB7cn&sP-jKma6vnhVz>QLHHUj4u}gqtClgpSBSkKk
z3|}mOe=3j+#7Ph}m;HYL)Icl0q6CBcr9<J_#ac#mAZ?zeyKn#}%Tpo?4?vMS<Xg;^
z$_6GD4^dEBRWZ4|tf;gqQN7JdItP=2rj&q1T5(VxX_SQ}J=UQ_k7Pgq<N*>5AmOF0
zsIpM#Xpo^NE!0O!><-HVK_v0fia`Y}1}}o)Wig2Sa*$Y{^o+d83pvVz^-NHBQ~kFo
z4!GeP4fiRqLOy)tQ05VW?ojx8mX{gPFEUE~0wrUK;0BT`qQo7#cq58Dg#Sis0ulqM
z0BlWE*LrjvRskQ5Xb>5(#{xNPsS(&<3}LKlcAzWgAj(2SZZQt<GcK!A7THi?+Jvti
za_3c|=p+`h1`a*%O!@s%QmxI&$duh-1w}IOQWD1KEKkw3j3_g_%mqypjhHmZn`4|7
z1X93>xhGlUiUj0ekE0tSaINrOCSfI%62CZnxINv9q5+ZQ?PlvCJ&d|35pF4cxSxZm
zml+=2Y_c|+1MzY2-Z)jNLPH+I2txIC87YGmDdZ@Q3!(^%BbsAIataDkg}aHQL$Vo~
zf)r0dXBDa<c-yL&4Am6&h>wGaPX;PC2YbW*=<2;93rtivQJrhQZtqEEM^$Rm8HPj5
zJbJB@6&@L2vA8J7MbQk7XVu9G1`8E&pyFx3(5$SR2WF$<A!<>?WytVhG@PK@%m|b6
zBNdj8WQ327ySG^6pr6Ttk}t6MvxZKcV;20_rUtK;IT4usiX{>5L6UL|l5{r-@29zO
z`p_epfU>CWo`Rw<R+Xxn(#(!=$kZ|(lnS*B3Wc<#Bm#S~JvkApe{1ckx(2cYNU_Xu
zK>+1v$;(7mMCcB6EIbGS$s)KdvX`+Cc{PEs0tO8(mKh+OkWh%GoBV~fH>%bIE80|f
zO&1%06-|m}jOAT|=oduAu|bQ-B|0ob4zSq-FEs^_yhKVuLhRC|@&f29vI4-$62rNH
z$apA`R%o;WvVyW=tI0HM*hJ*DP9~1{J56V%as&n-<O~}I$!Q0yA}bkVAsFD$+zB#4
zt<3@A6&8qux+BIJHL|1Sr6{o1bp&@-r=K(SX%FucHBCW=tpqEWI+_u68V9)fR>@1u
zme}cqAh=j~1SmgC7G*&;mIPy*a0eC)M7y+kIk0^O63{B+-eR+jAE!1`*xF%eoybx=
z3_B&MGz(!sNY6RHmvS;{gf|Z;;1zs=hv6Bx5p@){LMl?763(rGQGz?JMER50tvc-Y
zq-g6&*qE}bc&|gW<~qWt|29n1kGXraFG|=sImTFA!R#|XR0eKrYz^X^0aElsV!}-h
zH90nti-C-$ppZR+9WX~^XiW=@1cz7fhjKY6J_t8in})UuB-@0UGPI@Hi2zQ5JUg1V
z5g2|&k>$pu4k<7ND8I85hd(oTo_BtfYwgvwDb+sKgSR*-R{f_XATbuCbx$CNmb_BT
zG|C!e0o10z!!lk%<;^*kuaWRs=+KNN2V_BHDNaff8A;%38Du=OqyMH@{DLG~w22T#
zLf2n3D~a&AlM_5i_zMPWXpzaT)^3pn^3Rl{$Tlxb>y(qJs``yqaSC`uA>fC|4SR4R
zD+y^xj6p^VfGBWCx#XpIS{EvXy0OAZP_+U}Yvwwl+C^qOmSg20iR4uh?P0-|xL0B&
zm4~fG8H`0F`C_IS2`2UR_4S6ZE69oIoefn;jL@XOus{$M^C<cca<LWRK+l#UQzyhH
zE=tr(t#m+5HUhamNe&G!z$}wGrc0n1D?r6QLyrFutL&3H$Q)vbThWR5NJN7K#<1Lu
zdPmgPke^h26HhSiP)Sv|F*G2){_q5K)MrAN?Lg1?vOd44=!1zpk|OF*q&QJhLn!HB
z5<wk97ze%fRLxDHgx)F|%__(O_!x>O3Wz!eATb!jA>XjqI#ydz<b*3h2+|`?8KKxx
z3emWzp*$MrNwc^=E%G{O^dp6G6=w~REwPc4<Agd1U*hoaV?)vs8~|&uWt0oF1mYD7
zVg$`kf~Js@BZS~%v$?MBsG4|yLs2qtu}Xph{T6o^haArnuNAGTZ)gyALZTr=7I)=F
zKFG#UUE*2>BD-NsRhT^qR}7sVA4?qa&^fU{B&nKX6Rf6~e|~?dA5KByVv~?o$%2$e
z79HyEjxmyxlatd^Q_=sElaoXLpPXV#jj^Q+PfJT3KHO%v#U$I(Qqt05Kyr5sez;#i
zk|{AJxyxgPF7E%y4_{W~>!qp{m9R96#YffqP})M`J_zw-4HJ|soER_xJ#xiuLQ?S{
z6!0hY9qu0S4{kY%pL+kbR8=av?k+sg`Tb9`r=}%`-2dUWf9`+J{9<FlC{A!v9LPr*
zst8}J$pR>*5eb@!khuyAjErEn&>AP|T!CoD&+s(EyI9Eb7;`fy!So(H6?E=U!al;*
zP_-0`l{B7CC!2|%R49q3QHnqKq+HA8Zi<aH;a)OP7?PnyCh!H7f0t4|M*Bk718xVg
znD+5lCWzmvtt43xDG!s!QIZ6^t<?Q(QXOXJG~x(CqIAJLAYPW@{}~$#Mf^-~B<aN9
zB3UIQSyUINX2nKNmCV+eVJ;UP%t)p@_@!Y!I@wC;hy357rpBjPDOOde;0%Z;B_bpF
zv7MHD>Sj5{g470RAQOONW+LO`2n)?PS&FyVk}YB~o=2sceNEjX66Szj>(g@##kr7&
zqL?_fTmvhCp;*uyng|$9QXMOX>I(@B4O#VJ<8yI>wWL_T$XNUVoc0kvQ<kOWl+FbD
zq3}p$TJ8lk!JN(}7kVJA1RD4+)eQr?@Nz*l1T!?cz#3sUI}FiKZ>+^H(3$~139bY$
z&f*u@T1sZrQV2=PYGZ-_NUje&@|D=chzy*f%%XLuxCVRVy8|4DvgD}7{dk0u6e(Ko
zn1mLc0Ix+X`ezyGDl=p-*yrH~!u=?ZjeRKz^b}2uNe%l6_op{zT13VSi3u&ZtdBlL
zVSPHUY1Ls?lPa}<c{Pt6#nZ5F5)3Ku+7MVOM4BvkH^aSr6<rl>fE1d%i;>i<L6KI4
zVsCMVh>kpq1>QIeHabK&j-gSeN(&PJVgApN5EqtXWjKTZsfLf#Ia*bjB7$GZ!B%l>
zM_9HKJZsUd<uEAssFAKZ#*t%Rvck?V@L_Rqw`1Y%#KY<WJHf?Ai;a&SAOHCnSzUJ+
zRz5si<5Tj^Y3b%rs1GWdh}5uExOiSBNHYO2D<FsgUna1d0HB3BKG!WXVhPJ}tb~0N
zGeJ5@P~xUo4x(MPy)6U3fZQF&F<fPkcS)JR1|JEcoQbmr;)|>+T#ql0G25=<)Gis)
zCPsm6a5u_j*TUj)QxX&}h$<SEWJ+dT+Bik|SP_r%$15pEapNMlrYJ<O)kX-hD}i)?
z0wTrJf)B7Xpk$neDd1Q8P|Xg8A#fkaBN2P{A`jN0e291PV6Ynt=?4-bH1VQ*MU+O}
z=c##FZ~{x55lYe}*;BQIYI$Uw1H(`jGZLVW_)Kfhm7y%^Fcv&aQmn2qdXk_l&rs+!
zM4dn=hkA<jr9bg0M#>1ypH_KjEEB0b4K1CBPb>hT1qJc<M!(%ZYi72in3*de$%3!g
z05~YEC~qo^GsmwG<u@FRuyPmZgy51FN6J;Z1fM^EkQu4Pfyl5rgvwYdLn(g)fE7)d
zz@C;~!m3YQ{y-+MB`5nL&RnT{kMjn~EIP+ZvQq_7chpD@`tjDme`G2=VNp5W2=aBg
z0gVxn5I;oELMg104+egs^J9jO_0{JQgq6bnhC=mH)C9&Q@GizLLw*bMkQOZtTzQrh
z3;RTYeGnlVDT}g3WgZH7L2J|=D)TAF#UPN$M(4|@1yV~SVHEK$RYRXh+FX*|OhW1e
zrBjJypfLc)P`Dp?)8L3zWVh{R_$Yl_IDw)qPBH~OpmYl)R|pVqIPFi}?2F2YykaP|
zp-;Yy586-(<O?W`KBU`LD6SAG1V7GH%{rXmqBv7{<gZ~6t(r?naDQke7X{xMQ5f#7
z%F6)K&L_|ehit%pKNqy(%DRN*L-Z$NY`IGiMaD%W<nZuvMD3K621;%_EX^P<4Z>AR
zfJ16!mM6LlfhQAyb4^q$S8yEa#4jt6;F$CwlQtg&80Fv|;zOqhXhxD*9y1?s@C2(S
z2_sWu0g00~KqwdG2MQZ5G(26hf-#Vzga9K>u!3mFK0t@OLvV~&5;|&=i5Sj}&s|5+
z+el$W4tOpO(d^{7R2n|)_`Kjh4a`RsVT=_^Ye-jEX=qjXAmp*bki0oq&P6fZa7%GS
zJ^WisPoSmS4HxbKP8nx1iB8JZ;p!?z=H_X%C)%|^nlEq~0jUUZIJOplhTM*E<Q4H5
z6gbsU9m~!NA`Nhi#<W`i<!48ULcp(M<beff-oM&Y1HDveA+VrRLgFZpMTTW`jcOUu
z8QLHqG2y*JgcJIq$HiC!yq0+pQ#-T(Fm*b@Xj%;#rCJmq!5oqD`-QSdZV9a&QFF-D
zhygxV8ZR-T`UH{#oF~!XArmplpn6wh!FV1=<;i;I8j{o-yJCurV$~1NFh~^H>ebh!
zC5-JnF=1?YYC=Uj)PYLH6s``@z^XKfj~H!~U<#4aRhh$<jItO|E}RtK@1^*F4<*?p
z5df_5=IQ33T)!~&b=2x&3~c0Gi(?qH#MQ{fQj}zi7~mmsQ(j~$KvHunklerVtcMpw
zlsS{Ql_*UTOtHY2B^!03E~ADC63<zYkwunKJzSLR_pk}p2O7IkdKk+DG10~q@+6`Z
zph#w8ePD&IiVvuzL>8r$3{C8<ViGOcB+es%HZH7M6o}UcekPbg?5dFLXo?9RD%e0r
z$omL)7w1^i>-VHcWu5fOI4I>ZZkC4<YWajbEkclJK-7_m13sCv;{W0l0z8fE$GUi0
z2u&4Vh_We+ZHAi>Ym9d_*t1NU(OdmaiIP@Iw&{^To`JhmbwElJj^!DxT}X;pRds+9
zz5;WS7~rjv*L*~Z3tdk9uB$EZKsqklun^<{a)gUVZ6Yr`Ha5igAB(7!IfDJa7G)yh
z7>g`(X8o5U<L4|+%2mS&9*e}zW`Hf(p6YX&jh+RNln}jz&qrCbm?X&XX|*%dXl5<n
zM90fj6gweJ;Yt;<1Z8*$rAW~R=V`5Y43t_qMrOF6!81%`NWu}MkAZiW$3eaXwMMed
zge$}G6k^qk$QHqEQMd(*GF@ePA<<uoD@I}Q_{!1wBlUmf78jfJhlSiC-I>wlHA2@$
zlVhUO_NW4sPzxD5rY?y{PuOEjaH8n{Bs@eC()rN_2GuXnxgo++gc<)oQa?blrAxZN
z0LkTL=m3X;IjtTmFiWx^)|ijTXcr-`nx-W41vr`YbBskDNzz&D)Q6>*8IDpVNC5wj
zLh$dU5DeXZtOO+ciMF2<6$`5{MmF0kxj16?O0io+FT)KtJWRvSi2WN%|G4U!I|L*l
z<=#M&aW6xw!KueNl0Fk(McL)Agp8-GURb}zOrR$b!EH;%FCzdvHnNVilg?5icczRH
z>14$M6yvQ<T9;Fv2!C33REri$Y}UPZQiKs9e_LGozqD#aNSmPCGPLDjn%O~9GUJ$L
z1`WU?GJa4t)_ino;|OTGRG^`>g~R_O61~Q$!AC@=K~kLfRJVz!iH?EGO2XYB`~o?w
zq*%mfk<q)iXSf|Qw!Z2XWN|VwWg-6K+L47#D#<i5!5njh?2eS^LIIPMk4{fDBNe<J
zQW{TW<c0-030Ki`qjW*RB#M_=i}IH;1Lg0IcIiko<RMKu)sOrC9x8DDA1(LMYq>E9
z^-n7imsNqHfil5VGtP`>O-{-%Pd6D1vig`0tmo^Xj=>SLfD!60s198n`YWqcn`kxt
z6wwxk2)ihqGeZMPM%9Jf0ggmj;$jU-B&e!6)VxH<p@to20+dWaKb{nDs@0l}NmWpe
zAEHiG$7FdxGqrkMgyJlLZk50@pnL*Wo)P|0bu_XPw!&GCW@0vL2aQHa-sDInC5U4r
zP&^~U6bE`wO2mwU%k+=3b!~_d!E7-{YGyVowe5%~B&jtp^u;f9{RMb33lOhMGLnGm
z_u--V0LP)ce4)c3Q5mr6iXdu~6M@Ss2&(Q`Nm`<g&WKh3;yr#l5O|O~u@bI=;%Q2R
zfY*8&HMSrTz6L`;nV;b+Wy)2P5MqEcxSyIWcrUPBqy*BpOp~IXg*17h$jVF^@4_b)
z3fY+;V-%}muCQHGsk8D)RCokWD$+fQ)e&3(d|?I&@~oiVFETh&jgBmhM={<|a;9X)
z6HHX=MBzOmrM$^kf(QgYA7^vWLbQlj)tNk^Mye_~AS|S~E~52LN@86W^_9fPNwG@h
zYl}W>1aY?@f8uSxLF$!c{+Y%ZtD8WHGOp4YFs}DVwg94Uh*qT}ms+S*TM?SIUl~Wy
z|BL$BsI$n7#1lZa3?<!U<)C^MR2&)lLh*mr^mVv6td66IjU_3xm0Dnkq_Gmppvlt|
z!fL8|&qQ#Z$Y=?bbaAZ|6kJ&(p(xfcAc!czntIa{F+wI8-GJ;BBzRF#GIHdyrC%?c
zyBg&J`4n6uHX6oAzuu_WqF960GfYnThfn&4Pl}RH(&wEa`(YG${|Y*9JiYEzd1IB8
zqTr6CIWCSuQ+)JV)Jny|c$C6d6#jT<gukusEhRaUip!S#m({*?Fg5b{AN|`u`nSKB
z{tYAD3Py8p>JIxx_y|X;+v_e}*#9F_i;+mvK(lrsm|@}Q$PHs!hY{KIj(GHc^eg}9
zSN_qj{G(s_N59gO`V}k-D;3ELl#EeHYQ6T@SQAN2748<<)$l|m%@k%~DNiP_S<|d3
z`XE4CDn^X|1kgnnK!@)@NoeM@Ki^9wHiVVa(R3tAs-iq1JfRbeAm3vVG*{G|x`4~e
zxN0mlOc13z7|R3`eZev)jf`cGRI6*E4Ic)J!>~Gf)&`$F^?pET;0pPfzzlDIIl>26
zv@nmb*=?BDHnLA9U9nq~<AOz*9EYk2>?3%wx&)CC4AuMvKdz&yY5htB9^SEtnQTC4
z9IfWc&$>~9F5)pAtE&qLe7HxIoWjmHC*`V9gB~=*p^(7<&oPpu<vk}Ykz%Tr;vl!K
zk{i80aGjTuhf1nI7!(4;M;+t|B2!igrs}YiQh*!&U&I+@q=<?56l_CssLCS4D7Ac)
zR}o+uD|57{&|<^Dig<v}OLq<#;hDvz&0%c7$$%c2h;mCLJh(#A6;?xQl8H)2TC@j>
z0s*THw8>Tka8h9>qws?!m9fQoV^#tT{1>GphgSn75`iQbP=mhy7~~Le$`{CLS(O@h
zf(WcAscZz%Dylmbi{)4am1zZ!5P~qQtHax->6AlQAl?1am}{bR*Y+1hF6blxC{2nC
zE_Fg6K|WG*v{E$XN9t!E1U9PZ057&i>Pn~@C`pJ)c}&Q9uq5n2RANN*ng0BOBzr_g
zn#HM>5rvyDM1}whpg0C1J+zK|p^jHy0f=_ROe{WB2mEtLPg&+UbF`!yW@8czGq8fj
zMkTAaxe;V#fn;5mZYZGJeYz){uJ9v?2>}vQ%ZNz5iApu<-cg|#UTqTa`6$SyR2Xtm
zfH`vjobO;fj8%Q!*k}fgjVSKi&=1W>E|Enn$&vPjO4#VTGXl2+=|M)b9<P2t4C8FW
z90<s<;-nfP)@o-^W~8IrfnmUwoNVkrsgvP+RDBmlGj^N}Mi@p8-~EW&-^u=Wd;pI2
z1hA44?j;Do7jSur!phjW;aD^n-+`kYQTYzzMEo`m@w|}9Q?pv(`B*zTS7VuAK`raj
zMStlIR>)M9kfeB$D;Bn6=xWH8Rm*}*aYwc3Q`3CY6F@cy-)o!nm)dJD1<4g!Gk|OU
z^Y&OjQlxE0!z&UBM@ceB13s1y$ci3E7Xa5WD|{qMx)2+42R7vKlB!TDHW(9esbeI7
z07{KHRB~Drl_x4aAQM9!D=~m$P|+)n;%g#UA{G1OVa%Gu{$FG$U?l0Yy200Bg^Dsk
zo>n(XsN)$?HTaXLD58Wz8aSkTN4g3%G>`-h!r{X^H$`9^j#8Q?HRd%j+8K}(v05)V
z<J36+$jo6$XN+R&5!xhd_Ke6j30>$HToH=K3kz24z|0&QYtl^2puwUS8*|GFJ8Z5~
zV#iW`$Q+}b+7>i60QeCKeGg(wEyz~_kn%_BRp5ze7(;SvPGl%rt<Da2Rf3n(j3Y-Y
zaqug=WO>S-!RLyBU#VD3f@Cqb4Fzzd!lvQz8w(GFE`By1i>5$=j4|uOEGo`YUq^{N
z{3gMK`zumzPS~ANodl2xKKe|B+NCmHsfZWqpNx6{W5LmaBv%F{4g7!F)hb6;R1}>?
zl0F!`Ji;zoXDU@3AD9Gzq(r=tm_d~1(jPihCkY9{rxj(~{;|%}`e*%c&QR9pNm9(s
z=q6dzN|Juw)73FL&;M&rw+|1^|C^p-OaCYTZ%_QLEiWB)n&|>~zE3L}onH|Xb9}#;
znB)4Na#Bo8jOFcBpT@-Wx=t>bB>U<ik&1~+$;1DOvnP86Nsdd&kF(n;zu!u;lt-j|
zl9gxVIJ-U0o{Z=Q%h326d$K**lALO>rBvCH<5F@{GvZQmQ|#7syL}4&p7Jm}=`hWj
z9A{6CFQHs4FAI`40e`{Blm~xMm`qW#Q|QX{)V#^wNv`s=5jA8~lHn15X0uyISZy}^
z1~SC>F%21a20l$Gh)c;MQ;)MJvt+W>xo%&+jSadzwlslaioC+`YTOA#_4u1|h@fq_
zle7umQs)S%F26k4R_;r$6Z5_GGkvv`=%+msQ_2O#J5HMIo$Q&II*J`rJ|)gRGR|H|
zRZtl`Q&Gx!oQ1P(h3=7){TWjVGYZOzy%Q!($>8jjPSG>IaJXlDoPA_*Rei?rapOn&
zJQHTe*$XF@jgxAM*qM2Pr)KhOs%o6QZt|o!d*Mirm{vF<b#|U8mR97s3MSZ7oFgZe
zjZ3Q^J1f7Sk}s5;werk3`^bEH{BT!|XWXbdc3h2H@Wk0imduhXd<AZy)a`Lem2}FO
zU@`432^85U+VdtAu(QgF$IWyzqdlB=LjHuYtUR$U*OoTZ?;blGE@p}tXD^&oIHs&>
z)|heWarQ!&H$NrLKC(ij<LrgwbIaYLucX8uXD@WSlSifI@g*MjsEpaNNKf!nrMWC`
zE2|q{RbM`--c~inmp6Ngvmh-XR}|W8GiSMGrON)1jE(bAwN;btmAR7&rQ!6b(h4S>
z9Y3;07**+)ZJyDi3nw#EoGy80O|m@B7p#{HCyp*EF7in33FYaMr?g^{-#c-VP&&D;
zJkRE<<j3Wv3CY6?lWQ`@_=B~n`IW&mXK=(ADLArdYz5~{FG(AlS3{*!u9TEng%ih*
zt{p$S#3hxF$*l+mX4<(CKJVBm)M(CM8esS-^%cQ5`$)+y@Xjf06+d}+Ay4}~lgIi~
z?2~8JraC7w;<(wA?3`3VO9DS-v=|)DxMr5~LaNs{(={m&<O@gG%BbA@$xQNuad|G!
zh?!$YC8yYH*n;|8zCs*3dHiVS*qMcuB}Md@)Pl<TadGxSCVjGPV)B?cdtu%9syugP
zWno2}y%5f03{zyQ@K2l-XCG-FSL@1~JqaGUnWF<E$9hvod8VXOvucLJjmuASRuzt>
zDDPOG;7h5f7(v;~{eek^!`+;}equ^`(Ii$D*_uFJN_uJv6A0v`<ONe_Ihom9S>*`Z
ztg<PAv4L5mz4%B^&JRuqxMxeX#iQ!|!}IuzGWVo1nJyP?X+p-N5tEX~7YBmnsl_#8
z3xmVmm4Q*oc6WXG_))gnID4TlWn^iby)Yv;E+sF{UZ~tkbVcE7jCWEBKK(v-VoVH(
zDay~Ss$cfQ$8*XT|N7y^JuUeg*h~8lzG!tr!N{v$eTCjit)kK&FDa=?zU^P$`^N6M
zadF8Hmo2|HZRyhf7yaw@!S>?faZ(L4W$6dE_DXl&_vOWT#r?|9KKIIpzHfWwxOZ;+
zci@@kPal7zwNKNo+7E7Mt=l{;@6>lvOHRnyzwV67f4XYW@1I?L+Mo-rx#pT{F1XTl
z<u%t_!>zaF=I7_9f4&5m&E`A&#b@^Ids9iqkZZ2FX48-X{qpnk>3$1(o6Y9OdbjlI
z+qdrrbN@okdQD0^cg3nzu0#8NxaNi%HthP~aa--KNqx>wju~=u@AmfgZ?~_B{qQN@
zb+=lkuK)Psfmd8{g}<(D)El>2-g(M5Ro=C|Z+m-t^6kavCp%&`-f-d7-+t?Tb>l|o
zp?yDW+O+9kEPManRbw(=Z6AHsp_CyDdY^pgtJ|t?yycd;{Zrf^KK_(DGXqyX|NN!v
z*RN0Zz73XacE5S&rRUYW_t3fp124Vtrkk#~XVk(k-o3wa(;IK(QPjnW=brlSJCfF~
zUqAB8ufF>H-TNyuX77!++wH4eEvLV_VFUHnvJuI5Y(78Ld*;Zzymua&oU;GmLFc9$
zFJ5AEowR7tq8snL)AIYJBi}-^kp>RvS9|MScP(JvxRu(znyUZoij&VAFrd%PugyL1
z%QvxcaVM^AKlotf?$=&>ZQZSwsmV?44NHoL^tmv-&%;xm9O?HbXaD|F9!=93zg{FJ
z?i;med-L~SELlCSpy0$sH{bl=OP9TW&!{ts@60@>x?#_W?Z5w0w)2;n@}4gWxDTJ`
z{pbrno1UxNz2K4Q&zn<I&%Ptww<!CD@2+jTY4E;Li!+8?@a@fI+3Rk+IM3gj^&1#G
zxK~k8(KEF_EZsZ#H1XH(#y?cO_M&y`*1es2THe*CZ&=lQ`LM=ww_S-E*L|_%zN?#?
z+WYU=c*9k<-FDuL**oL74<0KxIQZ)AF9cK8uV4S!&Yis<|KR#3o=Dw!^C`O)(ra=a
zIISgr;6sxiKk3EUzplS$VfOrIp2^rLEgP1ees0#BeXqI}X3g8bzka7Q?W{wtrbXKa
z9eVK81=mhVobkf>4^Mr1<MuVKo0cve*0|ulysJ;Y*ls@yKHRc$?8??zy?5<Cci%S+
z@V~$PmN8`JPwj_x@AzcS?hQ|{Tm8R&H-4uifA#v}OX`1k^8L5}TX1UPj29*y9FXU1
zs%vQ<u(0jpfrp;IbiuVV&pPX@w^x-7dSTDT3txZf_Dz%L&!3;{`!KcFNhg_Yws8js
z<T;uGE$zD&wrv}D=+Gq#ddIXZ95ib8ColHx+jm_~+QWB^88hb0i!NI5^2`5P)pW+Q
z<5sVo=W2S&)pS}*J3s4y&F0$JXa9i%)Tb{sZdn!Y+x^Ll-@bc)KX>b0md5!N+nXC#
zuboFV?OWGAt-g3!X2A5)OD{E~+;FF5@?*U&zx?w3KRo^Ein4do_I-2yu1ERp&8}y}
zChLeHPM7PQHLg)#e);9-X6NXZg@ao1&d8ekWX=0yn*Td?SL>SX)jw=+c0D_@$vS+<
zo9>i1-H-3>Z>8Q`V!LMk{6*P$6Sp`2vU=@WXVY6dX0|>1?vhhZIpyW2d>^f7^(Q1G
zBz*hMJy-AT|J=*%%NDkMyuN)|>*9mbwKi(aq|ZM8{E9c<EZ$i;tz!1<%okpGp?t;+
zYvcS=_6@zRZB0(mBU_q3Z<)KndByY3U;6VezpN~q#hz!K_U}9HxZ{n+@B1Ixdh))O
z_QB7NY?^mbzY|Y9@u%N@yDj^w2X<~*dFuT6^H;R`P5V~m>{>Xu|Fb!H3$HD_;evHD
zpB&SiyX}_6i<cMOJY<U}<HSQ-2kjfR==%RPQ!V-5zxVK-mO)LUn{(4PZQlH!r=Na$
zZ~xObwC}yH?WV!^?DK50*~BkL4;UflAMEo$!R*<Y>({Se(ds{C->N1!#+sa0Zn$>%
zrw#p1J<obe_Eq0G)?InxlI+Ik_V%yc(Ejea_R)*pIhgY9lI<_f8Gi8B?}s*?wC$CY
z*2}Ki{nDY*gMFTNG<`=k4SsEOTYq=)q=zRwF>~8|A)}&r^5p&>KEcK|&fC1bdFl2+
zMfNdG|Gr}5t4nOIX+O4(96o>BgA-l9@87e<vwd#c{cxVKdrv-}E~Y)6d&b^o-Qv0N
zw1&pU#ck{Ic9k{mS~&Rr|5eB3U4QKrC!GAn8%b+#$-auaanYhH@4g%COu1lg+x-jM
zZW_G!(1R;}U$XsaVbI0}121Vj>4SA|B(1&vgp*Gn-8?R7S8K-hK}8j7)_!-(pngMc
z?p;(=w8eAdz`;X?m@m6*+QI8*Q%xJ;O6RwYU$u8hd_qF*FJEt7*$OV5xn)J~*I$2q
zMeBY2_IWOYGkN#ZJ8!wDpUq}llFBaH+n*k_qh(>sciSFZ8TtuDQKQSsZp*%ESA1I9
zIeq)~-Qsz-_o0-F_KjLp_1*5$*B4y7WlKeB&3nZM`-uPEc*BJ|Hr{aI7SFr$+xnk(
zD7I+W-iiH~mRFzt^z!RG&5aY_H`$E`KRdL0?QPljOxV@>3|!ChwM*kK9rE>CcV73w
z<DRk2d!DY{wf(q~t?fUr+PZl0;?EC!(|q;9g=fs4KmUTgH6FM7zjxpL@<pESUf;WO
z>l(+p<9DXa+|a(gdGNlL_PvE4*lg7LUb{Ydaq7YA*DhYRtWU|-&vx%#`18*{Kd`p_
zjij~z+L~G)45sZr(dPf`Ujs7bO*2+~xABqb&&z*ow8OK!CTHKO;jb^awq;P$fSk6y
zH}CD=^x)4MR<IW=7?d;P*Y|I;PM`hJb+65Q(rmRp^4;zm7Az=a*@S=JQN3mF&p%&z
zFI)f1=HcU}O>6ilr}_5Vdw=%zAjgg!JFYs{GR5)1W6U$NcAPY3?ASdY);#)o&L0QP
zXlQ7-ap}@wKOZU|bn@u~Ual<5ifb%<c>AD3H^17xz4?>)ONU%^`F?6y#;lQeE!Thk
z%GEm_e)^O3Uu?MUxR`UVJF&gJebVFZl5N-R{Ql9k^X_Fc{GY`<_Sj=@KRk8#LsOqV
zy{Y}c(A1Jw?#h~T<DGZjz<>N4)&Bc|jLUz|xM<EU+pDj>diULT$NbT@yJ<OlLAvk>
zMDF|d?}yiB{2$hmt*d8l8#e8Q`f>Z~zT7?V(%L?EURrl6+_HsjMb4&OWx_23`(1R=
zMVne%Z_C~x`2P1y-yt{mzWVfmS2i~fdi{+zZd$zf#GIU*-*-3t@!)LRo!N~STz$r%
zlVYa5IQyJ?MlCEXF78v>oPAo!)}OXbtX}@Y3j@AsZEpGCanEu8`+e)~EnBw4#JC^t
z|G0be0|$Tm@q@=t&d$z`PfVP<cJ0~<;oE2Boo8K^m9?_<zH<m^*?J+<lJ9Wby|;JZ
zu~|C`d!2aV@@JkoKRY{n|F7>?ukpTPZrJ<ID2R3+m{Gj;kM>LFoiS*}uS|By)-(I{
zJK@1?^Or1H^1#}3`P;W2IPdN2l3tqh>!*EI72hs?lr!}}+{-V#a2fN`3ls1Br1{ZL
zc0c%P`vrx&TPN=RZM?JTw0mCv<>Ar~Y|FRU&*;-<?zWj5_U_!;_ndQ195iUqfJ<xp
ztSW1MWVY@0&F=id!U>I~zkI#<m7l+QW8Ac9*Qa>iy8DF}2DB^~_{vn_#s7Tr;v9Hu
zo_=vj@sNIyKe*+#+g@?5`RsqsN^naP&%I7e8gkC9BXrB1JM53mtAE~5HE!G$Pdt(8
zT{_{{uU=ZVY}o_nZCzq>B}-pJBu2a4Be$j|PJXP{s09PAxb3#{L`ga>ruy;&anA+5
zpErO0{09d8?0Ry_nwi^%?ccxuv-STuHQr*`@a;SI^ga9Rxr-K^_0^2xVZRU0(_M?+
z<3HK_Lg4%N9yo97lQr+dbCx*$xwB*ZU%cA8J{bJ`^~INLf4*+FullYzZNI+1oW0=k
z-}j8V{=(ruK9%(84<9^!^2-m`<qx{7{>+stS3cd=Sa#W-Ue@W)RsDL>itDfM^V+BL
zW{>;)<2Uu^YuvbTV;Y(Rjc1>C-i|FR$F838aLm7J-hX6#ThoC92Qun@9FTbK8@@k^
zzk0fC{2zy^_W$hh)&B6|e_p$J=-B3Qm+Y(Scj)GI?Yy(;;PPEdmJAm@@$LR3Zb$v0
zAD-Ux<MX@6z)w8WAf9`>y5yFD{pRf3mHX*SjVoKh$=`nb{P2B0d^8l^#^zaTau%%^
z*_1Y}ws_jw%LkU+k-j+lssW$fHRs3Nf`b3-?f;~+Y2$|W(ThxN+wwoK9T)TY=bw-N
zR4U$h<I<(`$K6v{)I4tJuGV^p=I&p6X+qYJ2@g%W;@W;g$28~G(&=~fz3{?I8Vm1S
zowI{#8eFup{l^u1m#m(Y=&!4T7<bd=%|ATVY`xE8=phEArk?%%`;Wpez{M9IhjH?$
zhf+?5IC<BjnP0WM+TM1kZ~y)Ykbc}Z?jHY7pXKgM`R+e${ZEECdEdl4e|8-oGo$|V
z6S<F`DmmEav2|Z>zQZPeTW+93^fk6wzwe*5|G<Hw=G^q3_Uu{r+RZ~(wtCOpw<;Ts
z^y8z8F5cKH=K2eVpFV5WtSz4M6CRrO>{;W+jWd!%Z*k1OSFKw0*zUQ3@#kK5qVK~e
zZpwbey1jWeq^A{4^DgK&=eHjV;Pvfabw*iETk5{upC&cVo4z{d*VQ?T=oRgK(uTwY
znnusR#Qwz@mpGfgb2JTp&D++WFOK=wq)AIEa@Kxw&dPi59oCk$?MbTXU`zYxMSTyY
ze7PhhMi7KAzy5kmb8cFO^mU(1`CHI9FK<mwo3m-~YxlMFuPu)G*Udvp$|p=1(s<JN
z%8H6BzutVu*yhjA-c{BF=O#k7rl6oeVQc>PY|8xWu3KqjYkJ4TTP**%<Bkih)1Cp1
z^T%FV_v3)nl2?BH{{59@vxe<kbp|}p;(yxv<P3>{cYel<8KcLJy*YbB+{%0J{qOYW
zYqxl=p_(3pSpUmmZO^{C<i2+w_mpv;yfFD-pW7BKTXy}77iSkWFF$ox>w)c`T6VP_
zn09~8Z5Q;5Nv78KYQH6GX#cdCXAdd6E3t9jBdc@1p_-aDv@dJfc2IiOc3jM!J$veZ
zT6gkIciw4foPY7atl4M(@ZpoMJQw(WMcF%X`@Wg9>(Sa>t!t(|nRDBKelh-iyC%y!
zx14z0xt2xQ8_LhMPCKQkscG4zb)^T-p6+T|u&({Pd2J)+UGm#EkGcL^A<L-^4GpV3
ztrzXAyk+0!;h)}}clGH@h6{J?O&Eh%-wWooeQ@%j9ZO<jmR%M+tMSmj0<Smzk?GG5
zX<Se-fBt-j{q~>!C$)b5=Itq4zKOrKEp5P|#|Iv&$=FwSYD<3F_wPSC%HaSr8h;%>
z?WKmv2M0{QBtHJ-cki!!=h5n%!Etd#&8|~+J^JJJ=C(C!pK~=eZLp2I>Wu9DF~5CW
zH|XBdJLj)oKXRue$K~V<s=T*&UE6P;E@a-gwW!%Ode`nBw>R%tv-WvcQ(cQ~+;z+w
zw=QoywD0_^*{P>rbXk1kg8K$F{oc24-@e}W9~pRSQnj^l!B|Jr)2nm7aWy@?dhOa4
z+qjblHT`b8tNx4L^6pOtUNZ5Kx!Yzg&VDUn*sx)%of}NOdiDD3wV}=VBS&7jx5#=e
z<e{OEabin;7ERM&*f5jt!zb2lx+(UiWy`o{&U^2M3x}_swWIL*^KHjJJmtytuU^~l
zrrU2%Xgv3dwwn_7je7F)CEmMRvk&#T_~MJb@7~vUUZ4I~zWQoD^XU^+lO|m=cWy68
z>SpcOcz$+6Mmo10=q0+<S6QY$1una6!1U*93*LWZx{cj3xS{>PHyKUsFYIO0UVr0_
zSLU5|Ve+gm@-O>&Q|!0z+;g(oY`$^PB6H&fX)%Xli*_xHS<w6WOT{lwaXOtpeQ{mV
ze@pI2KR;8BA31VlvgfS<P$F$vFi`p~>w^zI7+qSraoGsz%(Kpd-0Ty+kIs!Py#D3+
z=Uj5*;>BORJ7?3H?SqP(O^;mXTEDJzS;iG#eo5z#8Wo$7asHi`*3G-)jth&2^gH<5
z?uDB+jec`!+NlptczFGL4^N%7|0jxeyUjy~p8V{y&u(gM9aU7+JLc{cD|#I`aA4Es
z%>|{Ur`uCf;Ah;&&z*D0#7ACz^Y)a!{rg|r-ge0K<))jw|9i&voV@eO8*e-l4mV;%
z{}CfbtX~`ZW$~_sgV*G|zs`0sypp393|RNpotO3<G-zS)m#?Yyb9<kES$*>Q_3O_(
z^URp)>gxJAb6$Dnl@m7KF&rMsrNf2O&p6`@`0)Mr&pYn8<4!sC)K@-RcU9kW&iPN>
zC&82V?Af#ZS!w8Fk3Ht!vGKH>WsBu&;Ffrb2lO+=UvkMSn{J972QiN6S%Ad<3o?eB
z{nICNc0-A%{<n|oR+e3S9?~>ap3pM)_@!wzCzWh{`=QAxJ1aMxxF%=OtL^W;Y+Ekv
ze(|@9mZtkmC0pNqf~|Z+5{IGAGBbwAkBEyWUhcp1<`n$(I@@yBwuuLF+V`BHel{gz
zi2M+{_1>TM?w$Me)5B9s@}95#;q3>;Uy|zku<Br{cpQSylm6mw-yQyG!wF?&WrK$d
zIsTagcgFymt?ylT-L?PV_m9T4#$M%W8hmZr{a3q2_H8H}j5HCeng;Zn|5=K;2zAl6
zV@Y|h=DtNv_}$JyEpyHLuOEFDJY8jfWDGfbohN@0IvEFBY|Br{j$MQnzBOk-?}DHD
z!*jf7dvp7&;`l3DuNjP1vv=V?L;W+<|No&be%ZMOWMvKf=xJdT$0fR3@48`)tHt^9
zzmH44z4)i!ejC-YVBkAX`KCU>eQ?%~KmNFX?H`A7o_YTHdzd$F^?vk}C9`%HB+g5U
zhx9o=IcCSk8}ej1)#-ArX*^U*)AZd>JW+M9GHxK6NdJB<bFXUq`HiH}W5%q%zJJP@
zXP-T{^v=w6AAdZMqNwvzy=T7ZPJyy_TFrZomIVVhZQAtmJNJy5_1(J(Uw-w~^3|))
zJoma2U*3EkMNt?3{PWNL@7_%qkTv`4{{8!JU*kIYi!Z)_#9+y0cb^MVPg%Zvx%a(?
z`ZqK-+UQMZzPZG9LQzrCrnlZYw|(Hn9yFV0PhZgc(y?V_Esrs8By-!7FZ=1`6HYn(
z^m(t*>wiD+%T0?GU0L1Kw(b7kzWnk_#~Zg=mgF>L7Z2$-@3af&O?Y_9#Tgmr54wE+
z#df=W+3Yh$oC`tQ8kkkQ{l5SH_xRUddu@F6UEjZR&&iMjNP21i@lEXqR_zU@Jy*ZS
zobLN@?!+0v6F+{wZq)maOz(Ta1@lYpNH1zG{1xr@J!1y+J8kc4Lz^9&ZoK%JZ|<4{
z3E7GjgQq=TTXOKBlb)UZ>#+A8tzP)qXAbYudCT*z{$guc&f@IrX0AhxFP&BV?klZ1
ze_TIn$HsMUym4yMi+j&{iu=IaxG0bN<c0neML|6K0arL>%F?|>z4ncIZ2O>X^IZQu
z{k?}KUp3>!*`L2NYEZ$nY0LJGC_U%G3$ME?Yt9#IS}w|KXn0}o2m=dYIX7v>_3u4A
z)wOH;n$aaCi?c_)yFBmeGyC_y7Czj$W#yJ{p6Ru(?$kq4HvI3QIRpBo)&J4<+pOI$
z{^tDf3HF)Uzdo>c#B<_Tub=b6z7K1>@BH_~bCYHyHZHgraYPGR+J9Wo_VK`${IuS^
zdw;ui)fu1E?>LS5wD`-!f`Wo2>Ank&KjDO%mMn>HTyXJf$an2)Y5#6PTiZD;z5czU
zW#K(_yFa<+nrl95UOJ&HE-vnrGtL<0aNNCh?bZK_-(LO7nw*c;texj-dit5)mn^Zl
zPWt`#-&YHtX78-L<*B;eGvx2y?ftl?_15fygk7!K+pAw$opZ?1WW8)i>7AJ;R##WQ
zbo<7)ZcUtgd`?cz@B2OywygU0f<scDeG`Z8YPC&!7V@ua)~xw<`<hr$6jzklR_th5
zxMTU%7p?#B$(og+yzYhl+>iHnKMwipWcQor=NA+dH7~zpS8H(lr`2n6zM1u8`?Q(G
zy?XU>eDsuWi|3hJZn@>`z2Cl*cd*ZNN7Gv^?L5`=);D7yr@nep;!i*Q^e?yj-n|Ld
zgsiNAGiJ<)PfEHiyP(&hn~_Rt;?CBeT<e`{UjF#wfd>v8*s|)GCr&-j`ts(@o4<PL
z*X!GMo&Y8KY0Go+7G8VhmB;TtbZBgI?l#DT7Zem2w4=*g^6x3U!SUpjm92NreEs#;
z-(FGFZ)eJ~E8BLSaVWN^@W<BGuKxzUe{cVeg*hu)@4n#6ufJaZ(MMAc_PN^GbPx)s
z<Dfuv{s?jKf&nAUjVEn0XJx_Lzr~Z$>(JI5IL7wo&o{n$hw#$1|2g%%G0nMw)sA(?
z7dK~5KiKDaP2`$cyz7$}FKj#b>&@9$efRn8p1ao7ecCwGAgiSed1%5VQ=Xi;VfcWA
zdmnnJ4;J^_yUI$S#I!Q!<$t-HZ!WP}fAcKAaKm@o9<*Kld;QK7ZhiZ^aGre+p3uiW
z<gv#ee`n>`^LD0eI_agCUV6R#vy1f-=c_MYal)RjZmS;CoSQzns3^C*{KmcgPg~#q
zE|mOUZyR56dGW4~o<76XvS4xcRl7d>>bB~QSDbM2iq`wi+vgbo<^Ao|f!7!IzWKGe
zD^?8NnX>8hv-<Vxd(lPK#=;j@=j?Da4KCWy{y^pI;#+RH<?i4wUvKf;I53Uf(u-jj
zqvmtW!fTf-Ilp*mYSF<ykKMCpM~my%@3w_~vU+v$idCz|Hs{vfvUKVEYpywEXUcbT
z+xo+88}@76P^KlHWfPXB)eLDoX~e&FY`kF>WExXuZfL(A%FpK<eDK=GTwi=7tljW<
zYxX6Lg;$+(_SqmOr~3ccdk?UtvaNp@3!sQ%1ystBBBF#|qk{C_319;b$q59KoR9*9
zA{G>tDi&055EK<06l^GVQL%!kh=`6NDkxwF1qHw7l!OGBxifR;z4!mVpWNrUWA-__
z@4d=zt+Q6I?D9AF_RF37(H}2(+d}2r>G@cN(6^6IZC@CF;`8*bZQHg<sjBARcp4ka
z=ac#xJG4CV7JcjP^!D@9NGSUC^}YS%i>oCCfGtO<`^y)<w!^b;WNa8aWp>Dyw@>bd
z-A}y|y6XISs|Sacrxq5fEjyPm-N3-$j`4UtpKl)ZeDs+!XS}?;fW(pm%TGtY?oWq0
zYEM4QCzqYC^u~}~m89=c-#_2;yc>4k)x*Q1e%yW^dwa>*ZrfMp<>fU6x%nTQ78Mmm
z8fQr)&L}D>3OpU%$*>Cj`us{NqS(mD$apPVmX`G6+tWM7<7=&cEI4xHh=!$muCh5x
z!gFEQ78HXqE4P~7@oskae$^Wp8&XtPC~A4+Wm)bCLM}_`QnO>>bt7-)=v6mYrFaJh
z26p`jNHR$5>uR`TJYIT&(jtF<`AS~<I$ryO<`mTxD|2!b4lO%1Qo_l@V_kl}>Wv#W
z-gg|W4SjZD)wP<MtA+NdcM9#t<yj>Ky}8FIBUfh>a9V57CB$g;>+~b!OI202*UjE9
zI}<wzk=4(fIaA{QWsA12S5VN3rqtJ;U*9uN_^L1Q>`nbaMEeX44P|vcGWq)TYsk}c
ziDgSlzc!rjUyG=IS{`{T_tDJbyLC|f;K%n?t8zw@>2=QvYu)9Qqdh%62La%d6cy(r
z+MJ!HpwRO1<xSF$)4O*|<eD;8@1s3DM!Uz*+xIl-hjLYl+~K&3w4Lj=Z&#EsdzxSp
z`9Nn`CAT;tG2q<xx8DPgQq%A6kDPMWD){WvfGOPpF>y)f;?5tQ-EsJ>U&6T?8DppA
z^z?SMH@CK?eEj&aslT$3e)aj4R5)IUcV^&t=Lm@%J9dOWJ-5)Zw@p2H-MUK=$JOS~
zpBWSsWS-Q&U}I`3SRTlF|IB*Xnb^A5`TI-#0$+(@fOGrJsvbXH7QS<xrt3CD_mfYR
ze46xQp|N|_+b5^tc!TumMp8y$HOci6_Eajh-b(s$@8n<h(Y|&!!6P0o>j?@9dRPXI
zl6cmdpR{ft%{=aNZi`B=goN~CXFF@Z0}or9yat1u)1Kazl?YDkst-OlwIcM2jGv#M
z-`VXOH*PG8dG}k>IfZXs4Z$h<Xy)9ui4uUNrHZAcWksTAx17~?R@33!?c3*c(H_~Y
zjWIfE)vblF@3Y>~Zg%$e+FueMY&{fwK7-R*)0}D5zlcVAz5K_y=g&izRdUDrADkw^
z>U?yZ*!M_5ciGA-q2*0yYfeNq=(_!~U~zBSlJfJXe?01_{qXSVlO#sBmTjYf0sPy7
zTRTl$du7=xE1s^H`R?4eLxbVS@~~Q!&z(&H$UDECjVC`nmpH^W)79QkcZ}xy+UVMd
zx2IZF{QUf!24kZV6IE0)jvX_8ZFDWe$Jf^&;{F_QGFDW5dE>Ns`ccpAkXLR|jY7%f
zA(kZhRLQq*-y-z%)TvW_FXfKc%@cbrF>%I>ja}^x2(iq{%36sLOEJ(g^hbZ+`n0qy
zmTNjf?jP_rkA1)U^YpGu{b_3uV)^Z$M~}e>3B5D#S7%!(XD}Pj@Qv0@P@bFUu%^ta
ztK2GkFFR?gtikLIRjUbBR#pgqv9z=_=YQNQ#y|`&Z<kmZ)pB)~uC7O~Y{bf~^8(c7
z&UNXP%`LOym0M*~lKUk_rH_?(|M|0D_pY)-H$uyIyXTtT4SOj0%@^gzZ)&~Bq3?b>
zJ4RM^3&JU1@6W&5-}kMkwrpJYeuO!s-On$$I(qk8Ip-*Qhwq?$ho>^a9!ssN(#J}S
z88^<>!C~F!>3*sA@B0;<-(P9k;rZjCs<UBe(mJIn63;q2(;q)x_S)!xR9H=(b;<<g
zy|t`4-TQ-)CXQQGWsH>w7ufrDN4U7S+&RPNh)D}~$b|<EjOp+1zZ>RdvTJ^fLsV4x
z=jk37`#-1jZPHNx64qugLZYash{fSltsSSZ*E5RNTC;1-KHA9@eU+cJJ+AbBUWJ;6
z@8maEkCxbylT&r`<~SOSc6a~Dz4!0?9gA%6=#@3-@RUadoFc0n#VK3kx;r-9&NXw*
zZ}!RFyt(dRfZl5(?y5cu)o-WQ_F3f5>uU8OkCd40w*5l>kyed84(XR(T;E(&duLjA
z>w=DVhacvDI=LiC*K9U==j1HE0!NM>E%G$jyT>uJaQW%zzzXKB&)Suj`;}7r>NEN*
zwjJzl%_fhOsQG1Ks_yd2kh((qyZaSyTv|J>`Q5urPHT;Geqm%st--_KCuLUEte5@E
zqTT#9W@N0(%#`cyXjD(!c=ue-tC`%kJ0m{5y1iLkGF6%)v2wGPXCeIb+?es>uN;qT
z*jwxE;_W@jZT6I3;@?{2S#TVBl{Cvm+y<JrAE5U2c8!shy?pTSxs5k-^j!1zL`q6Z
zZYT2Q_I9<WAkqj&c2!@!^0%W_-2pKj?+%;Kj(C4jTJ_nvZ*Qya7yEh#2F^*$IP{{m
zm3(81_Q@ap-^%HYhOarY8~UCof8#9Zj*01b_tt!N1X6qqeyXy^G4txhHPS`3le$_m
zt<==iMs_|rju7Rceim<@wPaddo#MG*)!Qeh$uDngEn8B0SIffQ-d@uG*T7XPS4u4C
zd9m5a$tlb7x@I{>+0Iu!+kPM=Elt+W-oC&+*Ax*jvo~)Z|K(C;REv};^YQvg>JGa}
z2mQC3N2wVa85Py4m04w9=|5nKs9TL;`Li@MMyJm(xs)}_Hf#I#10A{BWX6r#l$Et|
z_in(L`B<?kMXq|?_?dfa3zw83%6FTG(v;{j=%##fO3I$dhC^+Sj?bIzzB9Sj>W5Nm
zZGMhrsRN(SN9g@*kG%DcD*Vw4<32C4vm5Q><FnUuk5mYvf=;?%0LD0GC|SF?$p$5S
zus=q-CuN&5!QRPf%&S{F*0|@IHa{#Udz{spKY!-+>({p%g-x)ru|d@46O5+N%j+iv
zmWN6nIdViy1vP)TVTx8(US3*TTli>c={=m*8WxAM<~qgZM}Oa>>C-nXK1v1aOGpnZ
zdGjWyTBhB)<@Vym3&6}wp{J*3j<)s)i7i{U0hl~z!vI!Rs;5q!x_14#HI+IWd98G5
zMd-^LTen+qW~-^I*PTyFN>j3!oIcacAxC#PqNKL9g==VOscUIDevL`aLqUmFqWSF6
zTXJ$*u5D6(c#5O-yrl(U6>i)0N34;Sa|jGn96562v-b9JFbv1W#v(HA7+G1nPp@t_
zH#d)fVfbrruNnYIfFP*2AXdMyu<(7&{CCKun;-Mm&fj02`S|3lzT)f&C?1lw;lJ;b
z=9fMe^RJV(`g$>Q-HPv4mG;H^u2SnWBqSsxob5gA4%vjP{%`wD|6lnV?En8y`uz+3
z{)PX)p_z%vApd`3Q)8o_{{R1pzoGvBBS;bw5+6|i|M+f=Pzj0ATK~BJzk#NawUM!=
zk+q?ru7#<=-|+wUH6hTwz&K}L2Pzb7VZrt`j-~w<{r}DUmkjv-Gecv1Ok(M=ae-We
zNL~!vkFM|K4F@cV;d!%3HUWznkfxynmG0x9X=vl;;lPb@uyc3wHSuwZ@pYxT#fAmC
zdb8c54LOFO+2Sa7W4^7mC*;G4^w4*7kJdDFptxxoI=Fc`>-##gU7TF3*<t=h`qp-f
zX)Fut#r6?!Ak!B1iGe&wTvul!p9pt<2Y;I-k&74W8^8v}hVGh%4s@G1Dv#lA66b8g
zjpcchsXlgO2L~Sq$LLUFr^PgLb32NYGh|4LvoUADw#JM7&GoH)8K!niTn+u*87BT*
z2G5%w5$8qIG<5JXvv7~)(M@QM{Aj*sj2YS0z{${n2AOIa+W1&&8ajlVlRcyCJOeHK
zLw)#*y-nQBqUba}cQM(^+aEOZ<#>8T!i!xzC?3w<u^bAYAIFQ)H*^YhvZdR&a&28G
z6gqV=C)Rrj7k1J&G&PNgu#P0zM}_%DL>STRom@@L?d`)f4IP*qLq@1R$ai*)S?po!
zX6S6|Ze!wL1T$$KWP5u9O+yE7F2kMUZOFER!j^=_hPnBBvzeZO92-Uidx<^C(9M%%
z;6rtGWf+87&|LjY!=p?C?E{c$n0R_x^SS0c?h<QijHiQfoS_@+&M^0ZxNb4}R5D%D
z(7|_!rlAd0)6gc|JvNYK=4s)@CxscaGz}fNp5_h#EP5ox*O2e-iwwgy+KUp$_BV3%
zXLxyd268kFZK4)a93v^w{w@*bG42d7BF+@@2#hjvF^@LmLB7^;CZ-HuZz#svEilk=
zNlaiQ!`{@!$b%Qf(Kqwtg)fGpT*95W?qLicM<;S<6q6SjW<+%$+1hFv+C<uOOu{|c
zM&2|V2QmZlHlp$z8DSJV*wMw<o@{64VeMz?7R8S?F=P4~P}yWNnum#@1<l>e+sw|~
z#fa*pX=oD@7iEHsoP-?wKlaTpxL@;&sBeCxpI_GusrRLeo@)opCO$8^wJFOs$Tc8m
z^SZ_*JC+;>$ygLVW=}X3+Ml}bfa82uU!$sVbLQ2_a-6h3g}*G)KdR2Q7&9v?N7lf7
z(ImwehP6G<LbH#AQoC;@y<1odm-YbqMzzn*$mtnXsW@kAyuUofbHN9VCg+ipCRt<@
zx!7r_Z<{-5Q(9n&ot<H5@#IO@*Z+fs8p(}xhv;b2=*~xLlaoi^%C}OjtE)rgW?89G
zBS(#@I~wN6eSKH5v#BDbqQY$T>eYy{*WKB)$2CW{t?{VV$Wfy}eMNot3#ZGMF9W)|
z6UL4m`|x<A0-MeDTDo*z@4oC@usHi(;*Y*BPR`C3AD`k(Qc_9_IvaPfscB|&bF<>Y
zIO8-2b$Q)o>&MSD4f*o+2_kK-SYhe0i@5ggT^~O`zYBEJQ7410PMbDu4uNo`*mr+c
zetu?No>IqeXJ>BMupzK4WJH>Sx<jT)dRdu1B0R5Hu|m;^D*LKtSL&86Q>RXyI;KA(
zYg@UWb97^4W8m?KX;;%{rerA3SJTiKEwyGus)C-wk|i@%d~KG_d8MtZd$nfQ{PNfj
zp^CCnX*10x>>~1PoSeq|miT4)ix)3W8q3jUx^7i^@bKZ7&DSY?#}hBC9I@RbQr@!v
zEBX7!n|g&UPwrnyRoJw1=SGE~*b#l-zBuMvCQg)>Uw8k$UtOKk%fJ#!#qC@(@~!O#
z;ZG_}Y;0{eWoNH0DVbYW-ofsAL!v*aoHlFLtSpVO<m!wo(y9pnQNDPh>sC6u<DtRj
z%a<4Jzt`LtmVc#Y*L-_N_D1FT(ZGTQN|u(E`ZLn6-MBGXd4u2TA{W9Duu4jHhVhs$
zPm`=BPnlw09aWs1JX%)Cd?F%r`}kzHneS!kka~S@=IA-L*6f<3tel>fCR-PkOpN<H
zr?9Z_&M8jVuggyPaFu-KY@7S!eiM8?eJOl)+R?DutMvy1?5n-E%nLa5tSBeQ=5%yt
zSwauHF3JfEEV=K-W*e@Xpu904h;M(~lX%Jnf;6eMzohTp4bU5p*mIS9#%!BALPBQT
zI0MSHiFOVS9}j2I{d|4btY1H7w4~&z?<ObrF3=%edVGq5XvUvEbL+hQI-gx!(^h{_
z;Z<$E9#LlOWgi}SzsIiC`T45(+)a%er_Foz?p>y8(sys})X6K0-t3z^dGej3VV+YJ
z6jCz^o!72id$Rq|>9VL6hdS?TR{~3z*TRi2g&S|oXqMmSwqy0fhk<nl*VYD>F!#Yv
z&wc%T&(pq|HIGK4De8x;Y*T!prb99VO>^rCY^7hkdbKg*`L-iRj~3i}?G+rXN0hOc
z?pi;7`)z7$eEgnYe|6(dt%z>EBpDkQ_fa!)Mzv4<$&Vk|qot%aW>}kz88c=P1QoR@
zzR=JirAOA6Ow*B1ZByi~sjMW%^7$JwtUWII)R)!ln%~lzpCqrmhFQ3G@8~C$yeZ0S
z@>Uj=cu&#txcs4|+P-?X)uvs$(%-*l)fqTZbx7mmy6OYUxvzcd3=T+c(^<UQg7a#9
zhP7d6am1~2iQn`SzOw2Ju1RHD_Rcxi`(|F9fzxaq()jW~owobMQ}Va_?5M0He(mku
zm|<-Q7Drs$qV4;&;?>;aEBfNxb`eQj+3XRnBy|}XnTZo80z@f`3$?YG(kJUAwv{-f
z%`lP4Pwd{&rubszv17)grKM9dtS5vPM=XkqBNp!2V_ywSU-0EI$2{R{S)1YuiESlP
zin3CB_wGf8_wWcbPEAeCt{RXo^CKPFw@-@EbYhzF8p?~8FV|L966*}EdFYU~re<bV
zr%gAqs|KdK?;=iXZ#b-=yr$!_59!qV_bf_SSZao~;f-t87EvgB+Y~8U+e$XpKX_2+
zo@-i2&YFVglm!LWT-hU|TuE2D-#yK&R*84x%Cc7%*rq&hKYU(Zc}>R!A5!_+aSA2R
z7ru&l_uF{q>=j=cf_OY$?8oa`1r6<;mf;*GQ}@Qrn=jWF&*8kfbunAh)vg+tU*<=m
zKRQNxSOMp^DJET~7+Pm*jFyrzjnCZo?)(pxYz^!E_ZpX{?QuxIRJX_R<;D`l_%Cl?
zPRW{k#fMZbtr9EoH1W%>HpQgkVn0o18xSn$YMB>si0)q^pDMXw!-fZk(^FHAp3A@2
z-}kNH-fO^la!_Iy$uA(lY<|+cnKSn7-*0=kVbAi@(Fj?aF=K|;(xs_6L2+Y$^wcKp
zZfM`MY16D1-$GKWQsi2iQ&a^LjemPe+TPy2ko;Y9^Y!EpE!8c@8-h@5d|8swr3)7p
z(I1vwTv8I8@Ig|;`BHOL%BGy0lofrw;JtnBUti_~1J08tD4DNZy?W&5_69kGeuCgE
zDLIw2uU}&kMgRPdK0OWROBu@Zv$k%PJR6j$>AEfOuxqx)uS+W?DCh-E{jS^-spXNk
z=-qE;?XgAt)iz~9No>mf&Zdg05dCLub$i}_`Qn(ExbWl0kI2>j(f2OtfzQIkUSmTe
zqY)AThl8%XxW0Lks%qxF{hqejs3+Nh!-uPTKD9=5cPy4@__0%G-n?-VA;vQd;NKRs
zcd3}OB;wAhOq(`sjI69*{S>Pl-Q}w@Gc(&1Dbm|YHcCoLZpgT!)>HvIvRL{h2M-oB
zw123QvkGZE0>!>N`{jL0rqvSHuKoEdE`9ybQhL7MH9Pt1*VsTE`ODSSORY?!I|3s&
zS$?`@^q|@=tR}Cq<BYr9_$}MEmAq=`pIQ9!N6t=iamn_bruDmb1A#j7w{{pwmzS5{
zY40+RdOq4C-;zNf?WtRT;J}=A#*$;<ll%_{rN4O-k!Qh?>gqz@35xGDk)3Whdi?nD
zw_WN(^q)P6d1{}SxbPO$sAkvvl&TcDD!S>xLw=`<OB7s5SMGn@9^qSTYHF%BZ{E0U
zjm4@`b98l2Y<sgs+xPveT=-IGIbdd{kgWk;**ML7#dmWqQQ5`CMM5G!v3q)NS9{9U
zs}AiKDLV4w9+WPXJ{y!dPC<9~i4*dhwLBeIEd7Xx2)}@m1UJ&zz>>N9wuSw$>Ul9G
zve=(QDhNKmBJdPjQ)2gl17nE0CIlQ>cJbmG>D<0Y{U2}YAsh9rvts>*4YcmazEz{7
zCBFB{tX6l-*nQ%}iN=P7U!Scx$$g#OwV@<0PifOrsoeLCNnN4EC4qGMuXBU;N2I=a
z6S1t4d%f3kDTzdSP`h>O*5=2jIQqG_Z`a)WeB|KF^B&{nQorvw8~^2bPiwvce%|d<
z<xS#G<Q{8DH~a0vQuwSUQL1rOQAw!u1f>gQV3l1pprvR?8FTmEJ^VCwJUSkE^5wRr
z$P<J~&zLzAf1<0VcByx#``vYEX|irRjh(r&N2a)vUOxDB@tW87_9Jx2a7Mb5lhZ_u
zK3N=Xl!alq&cMmxmtTIlo$<>4%_X1um1Sl6^e2@FS+!=f4WGK$zYHvy!D_oR%g)|@
zLx#2Cc4OM)3?&OSqLjtTqLN9T3%jOT_I>uPGq^Tlessr$hvj7ZYCyW&&!n)dY+`?Z
ze<3+*)aST`9=|NmCQ4bXFDjX3U|`_n<~CJ%O-EUD=aS1;uOgH^q&OliGgB_#!hibF
zM%m!tV2ll<Tg1Kx<e0x2W-j<RW`Z(NgD7=9xv0c?fnrMB``zY`s(k7XynoLkDO=rF
zhA5QxCdD%@`_z{)pHwc++~#?M{p!~A&uw+KTv_(WZ6#Ove15^9Lmph&N^5ub@sCb0
z<`JbV#=4SP=FXcpNl|eQQR>O=n0LP&ICMx}c}-q&(Hp6V$jIi`uQ!ZS&|RPL{6WpG
z`O?nWtj<R!b>7!D1eP!h&z(~t?#ieRnx>(yK5F^t=xNGpmaQy$LzSAKv|f3B^!kiu
zf4A9Fq{h$CAWEGY<61x7J=Zkd@i=>v^XAzfmU};ub**>T)YNRQng7nt+Im&noSj?p
z^D_@EKOK5+pL^k+tkiP9Cl4EshE19{aV2zf+lGunZPy%K`;ZWzX4iZzqRiL}KAM-W
zT(Lgf&~jnbsKPx59_0kD*r2j7E~Ku|zHm?0A|295)T_8^-FVx;K*f@h61!^etv7DC
zD9TDL=>OVc&UuyAX0D;=x^-t`C2!v9)vMn>Pt|+=@#W3JmN`rKd<*LBookz`Qq(my
zaq;NM{rT_CtZ9PJD<7rawz0Qg+h)Ge$KQY54x_N=8S~#>C?OrRtDdzMEWVq+<aori
z%9wW<*EegO?wffx5xHM!X?6{VmY2tMMbt$(6$F;tS9^E<howrwd+X2do~lMR99nxN
zbdvIQ%^5RimQ!!f_}tl~Ah+=I#O%$R?H$$Dl8dw5*=+X2nKQ=)2M4?5nNOO%*_k8R
zbmz{>&ZY|TrR1@Q(6G-lKjZP^Wp(9Fnutg%XZ3wzK|w)yeaW<|Y17vbmYz7!eZ6$!
zMi~t)Ep>BqMHLklMXMDHPB5BgWAZGeoYU%IXJ@zDGvBi9-hMgit?jEaEqlkb*5)fH
zckXj>buDK!nY!g$Du4McUQbF^apkpZPJ4@rHe@)=t@hDuRJK~7^x?yY*jGEkp0&59
zmXoX1jE$#`lh;`k5i!>z&%F8W0!c|p{T*(If?#87i|8G?%PT`JC65g}N*(|4<Huz?
zQ;ww<xp)Nl`HkLuJ^AEG^W@}Y<ZQnG{5knz$c6Qj)F)1xwzjP;9MOw%&0q&AbvB#B
z@m{tpEjxSimaSV0_U)6p(6#4P&ep93d-smMa^=dk+qdnh)Y+!+Z)yBbufQ8ywAXLk
zcxnA4b^WO4cCoRs002l76cnsaO<i-HViOfr{_Nct+H}{g$q4iM&{AC<R;!|+soA_i
z>z9=&Dbh<SnB$$Z?^N<4W8>m3-Mo1-F7Cx9$DN6{?%g}u*bpBZ8}j1XCMOq{OTR3P
z&&tV3S+`EA&TQ*rS=X&oTVCb_J5*;V=f2(Yz&F>Fp-;XlE72gg^x;1D+^31@nVE9^
zJ+(<P=OpcPNIu&Gg7}iV=Et1aR#Z`8R=8(RZsP41*EctJb~5^A1P2G7>F;e{J$Z^r
zwU1^q#uQRkjgk(1|Lh{N;Tq1Xb8-|M(iEfaeUeqRR8mn<$<i3BqM~y0NB_5|r-@&{
zzTPff56}Bbu3M8W5cOiup1Km!Jhxoa@rxHPKAF&C_~;mI&4bdVd*G+%lH&T$|LA*%
zG<@dF87~rP?X6pGZo7!nvNdMSo-I|Kq0Ffx%<7%yx^>x`ilwjDji0$Q@!Wv}V=8`&
zo5v+CPt~ohu9i;v*7TJ1=6*3%)zi)GMYoGhncsCy=83Jpxp{baq>el8T%Do3DL+5y
zUTsvoW&pW3``-6@|2GkjgRV~tEYUcfmX;>ZC@N&dYlejuXX`K@yGW0pp^-3;q0Kz3
zVYY3qh286=G}owj%~NH5*QxTUlI;zL1D^Ol@_8I|eUc6-qI_n>-D2PUCDCXNirluj
zecGjP5#dVb)+HN@T+Fs^+O%r>cEyTDm!%t<=Jie6Hg|Df^gMTjVmsF{9|ujDJQ=y)
zA;ps`e54^N^-{PoJ6=;lhg5N;^uEQ(vy)xxZ?op{#xoDUO)YvOwe!T?Z*Na$E-jXL
z9Q0(IE2(P5>8(^Mbz{bh2Pe-~N^dKXike5VWFCHW#ixG#zEZzz4QA2YOP!?nz>>Mu
zrGE2Io{bpgN?LnzYsAco03NxxWK4z6m#R)uVql3(Ovgh5X3^zNl6_!_O#QK~za{<X
zd+bs?oq71iRUgtsW)UTIW<|iBx@(=JS%D=oSy@>ZO1CIwXJuVL3syfqxphXm1G7kD
z9P{w=a=+ziOSMnQR0J3Vmgrt6-D3B=`^^#^lGby77niEe`kufN!}-x2fk#VMF4fka
zR1we$7T<VrwRFo&iQ=&p0sL}5<qM@-jwLr8To70i9o~DrrgY1(jZFvp0!s*=n@YD>
zUAeBzia)OG+NH;ur&*cN6nXQcd-2ZOR7zMFx#7@qCnu*1-+MkG%I+q0$4eplfWH33
zh4I~XIl9a5oJ)+4jgN16d-~nFloV;^=}uGb>${T3(~uBAR%(<(hSG-Z+Z8WgxiV|k
ztP!W9J8e8XCPYL=+CTME%WX7Nt#}eWbHRcItS?Vus+yW+b~aVCCOlrWxv01A%Tskt
zO-W8`jXjH{AJ_Fp5{BXAloaykwmSV8>47I%vrOp^S3Wr%qpqbT-P6-!&U-V}#nsi@
z+k3>(M%ib*yGjcSM-~+oA>|)GecH5n^BUx31A|H9<aJiog<o!~+cQaCew``f(S_Pt
zIr7!Ci;qunHf3k8UcGwc#ix@BgQG0-T&EQ6+_fv6bkHAsd@`!-VY#}EjZKKYVp;5m
z(7i=P%_*uYShQcBKM(DAd}>Ong5J7|As0?YwcIK8)k;oIM&(Tpj||sOS@A6iC%4UY
zJzicuY4+ypy^+^fju@pM`9LS(`-f^oJ+P}jU7V_*r)FX@P4CS6k-cBuWm+co0y;Xf
z#l^*idp2EVSzh)b6*GT3Go5@j&AR<T>7*GmHg4H6)sIBlkOAc!3^*Lx{-AWs*s-fL
zoE7Is>sWq$Hma`N>594Pjon{;7(~Sl9{a0~)>@|Snjf<<<HgkZ(H)CoW6cv15<-k;
zY}&e2lQ_9pqScl^b!o{=Q~HJ7)@vSr4AB@ncC4Z~3qbUgy?Zt4qMTNltKQfpcV+9F
zk1uc5o#KSqIXbGVtJ`vw3Nlm{Zai>c4)^Wj>GJ{(O;t{ry7JS9c||oTp)OsW6;H30
zR{XZH@n~4foBD%=Epu*cofq)_uB%=FqKBPJIMrsZA<^2Bsm-uV&WR8OL*z<M4*^5i
zBWfIPYD1RETO&Yl);ihgtFK*is`xr@oJIZp`+%C-NNa0r-K6wcr=(h|Rus0{Iu+OK
zny=8`-|yt<8S}a;;`YTg(sc&|^ls%_1#_onPinPQDSTB`R228-zV_Fi9_=^Q5FxNU
zRPuXY--nh=tBn~p6P_iQryOjpf{J!#Wv%>WVSM4qlMi1vyv&dpH!iASc?{TcHN9|8
zma@5O&C44-Ea&1G=?;qN4*P?omzzO1red<B>9d5B8S`FMy)JrG0S71azTWR~I-&RM
zv17)viu#MVvJoR{Qra!zE%W?Ks7I$O6S<3+%tIYH?n#9C^JfxwP3Y?CD%^9&on?8M
z{VKt{$nQ4Q=*-!(-v0ix+h1lgbeEl!@bvUNr{M^itKN9_Yfsi$zneF2BI0Ay%S|mK
zM~?JbyjYtkwdzxW9lJKAqv%lyX<nd?e4}orQb0g}w4R<`oxzwqInC^NOA4VLhf}t_
zJmM6jsj1oapftBlk(vIfU>Un6g<eFAdTys=wPM*irx!Ynjg4dE<P?;v2vL?>JP-9`
z75N1xc9C?JSKe>df05w2P3K~s1;?(MH7`%DD~oKYq+6f(tsDIMzIno0pds#ao#Ti4
zfZz=o&GP1|Z(7<C%>58eeixDVeAK(Sz5xN!sMKwo`KiDoqb9|+hzQ-7+FyFgr8M}w
zitm1pY09?u%vImKyq55Ad5NT?<d`vI%GzC=r+@$cJyt?at2yC7{@G7pOmPMdy4-G6
zf9d4vYRh7kwJGkr+~Z{x-&%FZ$KBJ@k;^@HJHX+_r^lSy=J(B2h2(IVR@?a<JLFCy
z>LZ}3d1c?HEJH@)5y?rDCJj8zbv=%uFvm@1YH!cUQF!y_ja~Jf(KRXE4~eR#IS~m7
z3#hlYgPx{72a0|7hxYY$6_Ue8w%W$icgf|tnk-nL)Y#bAO;KMf1Y~wz=((e^w6$uV
zPibkXeXc2^<F<p$tLElah_qthm;R|>`H5R8?nRYJKUOU0en`%sOer~YCQn+bf0S*?
zgewifNd)4$k|@h#H@Eea75gdZE<14J%l6tEH&zE7hAYeOyyiYQ-$|G|*XGOHCr|o;
z8X-L6Wm1z8-Ds$4y7kR5+PyOPsiotQQ+bVahma7!l=*o5jT<h@&LvF$@Zm$2#@M2w
zqB(QtuJ+h(%jchJJ7ClK<aCZ_nfZFb=z1@Vl6!Xg-8qg%?#*cm3QOMs?lWf2G+;b3
zo~oc=cKTkRj=aX~*-Mf_tFK%sIB`OLrWunS-F6~XK`-?C*AH{_^c;CSlc1zNo>O+R
zR(`@{KA*3~+*dV0)iNzbbwwaomei84to7|D(6{(EPVK@ubLX-(a&Okx*CQ%*c*7xO
z|HDD)w{E%l`S}G}CAI8&m8y4crG~S4!dLx|A3xqX9Bf5@bZqR?giqtSL}k=l6#sN%
z`Eq5I_zr`#874B4l9GWZ=+hq^k4*X0TANyVDtdm@^U-l%-eL=EuDUY4=uv^KG|4h6
z@xycb@86#OSm&|-X#bX77M$5{+S_xV&^+=jkx@uos6QBB!2d|OTwT4Vq(mm}tjg=x
zugd~;VxMo&df%L)T6o~Vm~4&aj>e-BD|>t6zPG6U@Ot^}WN;;Stfi%8A^E_J)-|6-
zJPa(cwzkfAF}bj^az>6`@QMD@XU-@U7Z+z~j4duMzWvtNs_*lZtC_0sS+X;VxJWeQ
zCvP`{RdknEQu=63-2FYBw5oOE3z>&(?|=PqP$S}df0X5tLq$K%?|kZ4!F(c<l$3P8
zp~39i$-3~%A79?geL_ofP%kVj{Iw#guFyX4Y@CS%U}mQ9<aA7R{JXO$Wo7z-I`UJe
zPF=MBUi0^!PX`ViTGvRwx=G!U_2IdF&QlM^C|{luGWL@f$t9YanpqlS=lTD-$lZPX
zEvnJE{@zHZ?Bv96-6p5+x$Q8NgwOTN){!5_=5R_|N3H0qx6jt-czRy-LRbD9;;soz
zCm5q7l;%gvW^2r{vI>6Kd0atN*!s~Q67PFj^MAYz$TEq1u)DmxE^dGEufJZtxJEkn
ztpB^0Il=2RoXz7t&yfJMwa3PtJ=Yl7eXi$KE;Z*gbW`5j?B1+|?x#_Cay8N+<l?JW
zua>;!#kwC_etI3JwWhf>Kgof?=u};?oX0ak)-o};proWketGxWaS9=(xzNq_i1;sW
zuY9Vt(nHTi|JNf=XqNQ3_4cXq;BRO685H%kaV_a)?;k9MH)Iq<<jHj&fsp5;q$h+t
zECZ3}GX$WD$VEIJ*}%F<s4&k?pIX9ee-KWmPgS<9H&=ZG-As6xu%LeZ`Y{v;YRpZa
zI!9f7)aKdlla+0!n5#Y_w<kPYRucK(*NdND-|JlO-~t)X*p!t85ZBFSSstr?&{K8_
zXCj@~9b{g<e%*6gA!&1>u%^UBdHHpvODi7jOrJW(!eR$pq-Io;68+FfHG1ot0^5{{
z)22c9_)a@!yYEa^cg$FyQJ|eC*I5>3*)f+S5&NcizaRhD^xpam<@x&29f5TQ#v48r
ztmv*uc~Z0_FmOy#Qc`ZM<Bfub_Nb39oJF6?NMKORvGy|>4;~$loHTRhJmR{2QI_{_
zZt7tj@EdWVx;mv+>0nwTecj>1huajHt3DN2X4Irq6~(=OW=&GbYuL5$<27}2Zd;b<
zLz(v>N)eaVtT?ICYP;~ocDcna(<ClcRc+e5x#j)KtWOjar&-Oym{_Ubh}}yom~*tX
zHz7PQtR~MoQ)QuDH7hbt?qxQ|l0qO!y#M&oX8H16^c=^GgT=+xO(z)k)d0(Ki_=?#
z`_99_8-)ADeR-Sy=1s%^gViHR94IYayMMoy?y{2r!oNi^oHnUEIf(TDVe+fm-yJ$|
z?{zHQ+1k+1@XqnbfI5RVIa~%P^~;r2GM_j<x`XxT<-K=1+-A$pFm@7=B!WsL^cjzg
zRgPEN&vxH=ImVtey(XpoWT@pbpOOn*Uq+w*R5Rb(%j?<acD7?rPfy#U<MT`zk2Huf
zjjKL2FFTYcm$P-QMBc)9`4J;V1fHPpa6MGJTxWUZ)K#lina8}%Yn$^zq9%oNGR|_@
zk`njl&!6vZXpee!VMI>Q;RgvlFLT=J_DIVUmS_-VuCM<zOV0b#ti66Cp1rufS<#fP
zc<It5FB0kH$M%4ugJGW+qx0mxZTLkFEP6yiq*@u7OR0M2*5Az08+Wrn>gCIq+f5?n
z*U717Y}qokF6x@3xhi4*mY#`0CGNlRTa_QL_|}QMFn8`;yK3((M~)cY%Cndf^EgV{
zzjTQval+UOJzvQ#xpG&wL~JG<^e>42@^<?I{*k8hvz}BuU6Fe2niIG4(X@jBhvf%^
z*yk?CuYY@YK2usXVPfC6FV&BZM}p;nc8=@~SFbw!y7;J6;<xTAwsH%TU%a5yZ4!vd
z+afmS<tbghdi7F6gTfRokL2r=yN{I*6cmhTs(`DL$4)^M1-E=l<x{6l6_Pi}uq?MY
zekh9DGaN8<@!RhKLyE1o)BQ*#W{*yBwA9qp?(Fwe{rvi#v=Q~z1xMAyWQ1#FMEe#M
z6+Jw`n7Pk0KO_F#S%pzjvWqAbjk|a6+BvF^f1a>@&m*6+bst))C#kAthW)~qI(P0I
zqDR=++Lni09JzPjzUP-WOwqmV>*Xb}`FgVCIC;R>c<RNA7u)U@jhpSZeWgj{13*u&
zwuql`*r!24Vg%3G&f4$V*(l3pu2YJ7m)hIg>+f(|pPFjx<TNJk%iHmuo}P-bQfZ0?
zBfY)75$^P$bZLsGWzXmxJ9b>VecL`N%D~0N#mnD+-OimeBpNbhg8cp0WoJ*Gs-U25
zW~Q)X$BwTrHhY#ucP=^8^D6gWBSv+H%~flPuKS$b(c2rRWVJ#mzPrQP$7ixUVM#LW
z-oED7`|}-QW6gWJJI7gBS#jGRj7KE!rW1@wnAd2bZOVkU2c<K=fB$}`0uD}2Nohf<
z(CIq;U5ArqX={%~8Vm|jnK5IA9irVvS-xm7EpoAYA)`Z5Q=4Ayw_!cyvX7=(_9WM>
z>zy3_u|f)g^a~<E{PM!0PxZm{lUIJcE_p5S$4--&{~wyS08K4R!7?`K@<9gupYk#L
zWB)%>LnFf>{(ol1CO`fE{u6)d>VP914h89e9U5^Ri-azcd;tySjV3YD0hlls0=VHI
z7t4)?CRT-`AvT*v!O}1cuB-#lm}EMSf+ko+lR-gDG7aMB2%~{x(dT&_tbQ0a6!bXC
zpy{fxWJd#;Qo{alutcmx5Ca{}9yd6&yNtTJ4Au%3(Oj$sQ6z%8Fx$r97XD1Q^}z{3
z8GK)n-!gbc9zp&Kzy=FzFPd}~z#SQfgh~(Rh3ewr@yRelZy;kBc9*$e7zd4uE=*VP
z=cDSQEnv~phZ_+W4Ey7>U4nM-{}QnN2xznF93BfzY(gO*LnMGq3V{uASP+>@i-z!5
zsWdu7pwpO<96=a%G`zp5uD-5?SmH?|nL$bOgqwuLb(a~E#7+xK2cQMer~}ghXdFO`
z4ssz5S4#(g=p12AQ!UX%mRf%`3nP{`SWlhBh6pSkn%xtN=r5etALPvZnXUlMSixmu
zIhz19Un)8eA+Zt9Ry2^tXbwt~7$6ND9F{!|&pd~`sEy{DLI3HAH$@!O8Pevz?g(o~
zP%PdSo^eN*C_@I1sXsJBD}ZI=wuO02E)g(7Ym+#5rvP#qXiSI>2q%K(p@S*9fS-{3
z;)#~g7qA3^DA5ySS;z85BSlEt*fBs;Obfa|UjSlg+;BAOzA(+4uyZs&yRdgb5+sg{
z;DuqcdZ4*gqIfhmLYz6A7?@1~Kpr<7se`5S1z@IlKQt}}qEm-CkAril2x`ax2;1<&
zn-{L=5Ypv~zRyLv5F@KYd-`L-N)U96Q&{|D|63_`MdtD^i0<DeyTU&HI{g*q?D-uU
zY&<k|=};>CkJI6Qk`fDN_%nm?pU%dFQ5j!|iwHH?59As!X$XzB4Ts2)el!LI^SDI7
zL<Rt&crcsCAOeOm0Gd0|n#zUP?ld}`#(~H%lfoearij2S0{~QzMn?#*u)cvg_5cy^
z=yZtg%V&}~M8E(|1<d9W0Yg(GGYjk{TMKh~ilueJ^Ua`HO2z066Q)3elPmv0#wS5i
z7-7~YJbN;h^9g1P2{E27P1ujK9hOrW0?FYBC7{#DAl|PtRZxq9Jr-6%NqZQ?gxCnZ
z1_3t6q`(Y-Mgc%B(gT~zV+q^9sjrTB7g!tN2pa&ggrXpm3pm>$gcs`!X@-EegXc`A
zk)7?tsJN}*d|}C(0T{gp*o;KUD?|tAv}lM4aj@LgYzU;#&|fSz96Ibm|K&41P%h|-
zAnb;Kb)%;)QW-7L7EDi2#|tSQlo=Lh9l}#=2hl;~&|}Bb1fviTn}#M25-sFnCv{LM
zheswu9FAW&8{&k+bP9H2vGdJiLn7rSs2q;Z;eT{w27hB@Sf*V!v4z9ZL}5>S#7B;2
zkWwFfF#hMWoBx%hRfZ;}!zQg7ZsfkWc*J7EEQrmeq32jE$D+DA@OzcGd=~V(c^CyZ
z-Ajy&;aVY9h?WiJuqdy9DG>4so@iM>*+i2$qATnnc#k78BF>*?Fv9d(0x6Qfgt##<
zJCeo>6O`$xBW)6p5g`OwoU;h#C>V!;y`Xa(C=`sxiw#F35;w@?izH|kO&$rvgwx33
z00ZPBtdxxjm;z~-3^I{YJfEGQQB;T+yf~ukfruDr{&S=+m`UgV!|Nkxn?Q#_3Lz99
zg6Km1i|m-_&p}BwWyG?ZA@g$;j!$sVv^anrj3`0?!nbwNl!e$6te6PkKXvIa8Kld|
z;G_SSDbzef-~0XaY2qYoAgMTBj{#F4I+`$$#iH|dfq-y`DG>Qk{-cBL2BPk8F!cmY
zehstP5E<8z$#fdT<YH?j!tL;R03b^0gxT<si-3#O9Dt5yO~i8NtE&Sr6CVIFRvr8`
zv_+&57Mhln36XKu$A%f`A;m}z*20{@Lj))ghf8B(!Uxj1w(fu~4ASXvjD0M2GQ?KM
z8qKOdq&qa@>VS~Q(FI%(ff89SZ2AZh5I)8<K(S}&GR}c<DRy8iG-enZ;&42C-9aun
zTr3;9@R1ix8T?cRKi}45GOD}&{%P?Qd-2a^+Y_D^RO!akx(;dzgAH|sVh|I?76h3*
zuISP@_>O{DLo|+1sG<l`LWe`ZQ0*Se1Wy!7mSR+h3kxX-h>Zo?RPj{C2!El04BfCu
z2q76^WEKIhMZjwj0W}V|h{c8@ATn1MeHVWNe*w|$)MRAXp&<EpSJ=nK+IE2b{n_<J
z#15D~z{7k58RoIqbOC2BK!uUBh>;iMWno5OP$Unvc&>Q@0J3OkQeDw(&ICkugqR#W
zM?YRF#<GQJm<i}f#WOUbIUZ?{NTq0q9XhxI4^QeZ)+$2t2EQ0ahIDyML>;2hp)ho5
z#F8)%r22;`fFMgGA^~%uSgwp<Q26iRz#KfGFe*?OU>k;~Qx)b+MegDdm<E}$kT|FV
zBqkYVFd#hnKVB6Gg%HYsaw{ysHzo@}$SGk%x*V7R#v*hB2hWAH1{(o>BnjBL9;O<8
zV$sS(K+OPA$*|0^!gR4i*W}+8>4oV$$ykeecxGMfvG2cLa<(v=Gq&gg1nqZFCz+v$
z(ZH??s>}(6x#2^0Nn2(Rjv>^_4D<=)aF7j>(f8@BaFEGkKx{O1Hi|0J#EFy07z7k*
z$V&ccOdUHN1a3Hlk{5_g5X^%BGYM20o5Llrc}z4<s$k-RMS@~!9Q15)Q2id5LknZV
zYzWcWplBM*8(0%<8Fk^?7#M&yBAiAf#7C9{mCCqm8WastFvjJB!;DB33^NsPM$m#Q
z#K*)McZ^NounEXP(=ubYBLq?qRsb=hX>6E@UXW;zO+yX@M|5KyX!HR>hl~<W2TlRG
zAhvPByvf2G;d8Kox}%$}EhCaxS-=Dapc@9r1j8VTpk1UDf2<W`cWvn)jUfhsazyhq
z>kdA_I1T_&X-q_i_wu(Df<*$1NZ4~IM1|RqV9cn15()vKFpr54Gr`KDBS2PDNY2<?
znIVb=mUP|E&38y*UKt^|z|jrlB`zDJQfcI2!Cv&;0GuJ=N#tp42p7<>%QA2cQM7~!
za}mys6x(8N4J-)SoQD|WM~^3Jc*KbV#+Jy4QigIQlu3yG6r55)d$t45&?Cjfz$~PS
z1O9XPmt7(L;0mq~f0#Pff7FMq_0SqfiC{j+EwppOESVf&4vh)GYznrTIBbhN4h0eI
zhD>9HLu?G$04U*JXq|!P@tqYt(BkG?8H}_MMO9ur4L1O?!+6Ne66Hs>Vw#l@{}fcA
z)0ogeJsk|}iUk=gy5R13z+4Cjfnp(Y2tx2!Y|IjjwuZMdfUn`{z}58FJf<!uTx|%t
zhrfazD>jb_u-G&hTPQBbM#-6v(26MoAidegLS$P8g+m0?hBo&{U?I)}{u!tc>j)e&
z5o`gebTI6%E;?FgxCKYCItSz_UH}jPH3ESF#$qT4o;@2OBp{bYhX`CQT}|{&HpHS6
zLP2sQ9S$RKXmJo=pl@i*2vtMLjIePmX*((-Fc=_#10m-Op;(B1h1_1T!-eh`4tW0l
zOa(aVpsL6u1=0e5$UiVsVD+>WydxlpWEfcsE=1=K;H#lXErfqE!!Y<0AxcaDVz9V;
zoKFvD3>|8G!iJ!ZHH@%cm`V^x#stA|1=GX37mN@SNC|+08_Czn&PMc?wVRua=sCeJ
zuE=pgq*4qQK>3V_y7A}0RUuvhM<ZGW6r+cO6$C_gCBUJG8p6@Ty3j)*c8Zun$bu=>
zgRqKWM*P1B?L%ZBkO_cvR1xPw0EZk7QFwHStph;1VY+}ChYPbK)&7!|9HcO4Od6U)
z9S2xMq+bS)&ZV*F5JA`zN5n)fEcCz#xd;p9goA8|0<hRH3Th0f`ZOjY&%hLPjEE#5
zilG2=D44*ijT;AqqBV9`5b{Z50)l%x(5wz_?j1l?yqxV88Vv3PQ?3z8smB6&9B80b
zkb@%D!T}>^0DB05EEGM7gBhVTv|Wx4+N=l}(-BeAL-_!R<IMoVLNJ2@(h15m=`b@4
z;gjJYx)A6yaqL@HbRAK@B@|eqQHR5~5!qxoa2w%UD1|~MA~JLUWTPkmkHJGoDNaNH
zpMOs)LN=R#FC9U+Dac7dA9-O<JOmH^qQwTks6XvB|F`TlgSQ{QGuX1C+mD&OaWE18
zL8nFH2ZtTbA=7cc1S3NNI~<~$i4~e)Ww?V9a);0xL8A^@5?yf(0niiQOWk3-MbJw#
zoVf`j-CQ!u7twmTLITek&}7h(VVB!LAA2~=f~ya2!uo^8jD~Ma(8q8mOC3NdmT=Gl
z;Z{ZnjHwB43jtzs*?bmEV{+9*o`-_C2#o(GkVSuC`$DGEFtk^2%P=aqOf7^0a-ooA
zYCr-I#)epcr>olEv+51Q<~?8v1aKfaMCQV5jD~PwI>ZJCs0|{pfE*4j4As^DqL3mc
zkn3U1p!5Y1#`V-uksR;+pKTf04ld>$BQhaED8vN`R0!nq*dj+3sp5+dg9yZ{A#dr5
zcMh`2;c7%c4P;PEjnz;Kspv`#$k5^n8%)td8V3-qn@QvH^*|<<MiBfGj6m@F_jc*8
z7%&G_`9t$1>;Hy@lKImJ`S*>G*b<7C`l3>~56BEdA$2taeO>f_dgf}&WyJhtL;x||
z4l@)?Lt(7HtTGHhdjt$78xXJufqKJnZQSa_0&!#BAf$}}^O%TC3UYOjJ*M*LKukEq
z#HT=^QK=AH#A!^#iw{54NW(-xj{<T*(f&BRPzsHWQW3rY^uoL5!dR~W7Z&zOV*(T?
zS`-Ks__Cq53T8rpmp^7|!1WEGC#WtiR)l(?BSG;He1(y*q7doOt-xK^0fF!O5Y$rC
z*Bw<}fCZvOmLhd<)j^G*He59|H68qd;i@wSpzsm39hLi|X&f4in{5T{@tF81fH}yr
z2^1ax#S74`m^?aN2VlZOx<gSFfF_&~LK?X`0683ng|<Pwy@B2#wk`n731b-oFcYv2
z@I__;GASS%S@?mL99`{okjKDmz>@_reYqexQhShpgxCiHY6NUAFtfEg!r!n{ig0>_
zCkL=;T*#A2#!f1S76%alb4Qwxat+xvA$JzM@~7wsHmKq5k-7-O1pvkngE3xaAIoAx
z9L^w&fW)Gp8a5Zv>caRs0#b?Zkq?Y|X5w$bYyf83L3D@<A^IP_2e=ykNBRhl3$tk;
z9hnBmMeYg#WTEbGD6bC%IW#gs_=p2>_0)Mtk2GeOu$Tj(w@KtDaX4y-)`NWU=@7*y
zAlws>%|%%V{<?7be`QAyYK~A@w1~@w=_qO-GCn<ZmY^Sjsgx}`8sR92!-)upl!ij6
zG%jCwGX}uZK@W(4mX^R(LE!(&g%MVXtD6ur8i)qjINf#_9-6dgM*D+o5pWW>N(y=g
z1}u>S*35zTPz5G<=-Uo#m_Za40RWW-(J6>3E>eb<V&qTwPr-b}Mu!@OMU*OckcD}o
zh|iQbTxDB#k?Oep;?LH_O&7RLdH~D!#f-%Rq8tvb69v>=7nLPw8~_9mJp)A9i4gji
z!I=#k!mwG?D@JG+K!FU1hN^}FHxU44>mcf#ki_a>oRG#0huAbkrhz#Kg(TBaaEith
zJ6XusQOl{ocL5##pOQ#L=liGRQFSp}*ANBqr-1rXK>d>fDsHgG{W8$~5XTz+|7;J#
zmgS!`hhgMUVEh`+wB+_DOi6#=%;GC>!1<fnwus-QFN+O<6ogkGT%N|{{sSn;0PknP
z*#8L=v=BIGe+2SCe<G#?0>A)ceIub53^7EQpP-^E#3!PAh?gT842j7Bxik(Hb*3N!
zcCZJ`^~J3b2z^Go5}BEB1%BEme%dGgY5N3rC;!iyCr}`HcpUlvO#{X63=J>-X`=XP
zqWFKzM1hGZKG1-J{y*U|FtmriYX11A%mx2zycY(G(-dI9fdpMM3_tqoz9s_=4hvoU
zA#U*#g8m6X|Ae4_LeM`U=>H-F{S!R?kATO37aL|k+;E7;0qkSZ=pSrA4{(RLY#JH!
z1;_q5^xK+$H?#?acZcZ?U>FfF&^0j9H4u#;Vv2F3pRqUoT<i_(K;WAP2p0H1;Bl)y
zNQNGusrKlJ6r!Cd#~(bv-}O+pW)C>11LSas97%|T_-L>+SBS5};Cmu>)fGYkIFTv?
z-49ude<5R9i+`gDAUqYnAINHO$ZU{>hych9P#fk2Os7+`FfcU0lpJxnbqJC}qXK-G
zr^ObCn8SSDMTXfB%+VX@hXAt>X&>crxXk1ZGm$$sNMsb~ref9&P!xNk0!#>^;9okb
z4?H0P46H?=9D_7Q4+Y7Q!tbRA2!}xa;4$eCha>n5RM;wt-A99TL`@R%dC?E$V!}bL
z7DuRw^I;zTZ7E<2vmsAkV5ta|a%OV4Af1l>myN}u<Sd`_2cN}}!$CHeqsL`KkRJBE
zhVaoaYpTwrQ`iC_NUURlUWT2Qf3nMA$_NGnV{qk#Lco7yAc9-M!8#YnQUV!opb8N{
zs03l4K)}i{yk=mqK0G>vfB1)sz%oLO0yC}AH~@tF3njQ92LOd1S?d5CSVtUH<qE4I
zq8S!25|MFreef7=FdNXdMJ7FrPWz|slsX0=2uK+^Xrb7`5}ViW-nId=+aTFf<bDlk
zHMm`JV1Lmsjzv^2M2%-dKm@|2@Rh({(g9f5v_T5ULM?O*WU=`$kBwgJ0aoV@Mj|R4
z8^TOT0-PTEc3bdmH~PgK9#B&({F|;oWE1<C8z2B69YW|GIt4p8hADi6$Q&#-5o;!x
z$BM^WTBsHuKM;&hO+0v>8lVd#CK7OoLoE?lxDe16X_5-FiGU$Pqy!guMM{uU8x65h
zBMii5<B9<G3>-|{g;jVA28c)~K4LNKfcSU-8LtM`jjpgfF;NXjOhltqiM2z4IAk^r
zl}7$*TZm#S)|~j_x}(^W6D=%Uv_ou-Eyc!wFF6KQ1tT;yIF!$YIDc;k<^l%#`r_^D
z{XusOF!tZ*O}t@Cz(TC&p}Rlq_W!~D|Na5^yC(oOs$g*;VSvFShvOijc;jNnB0>Ba
z@OOI@yoZrP?5QRy?jrJ?FdQy69^KzNSFRA>KAJ`r3D_WVum%lP5LaLhw&f5~526Gk
z5?L@8=7RLUwdqSu7|XQ*OJL|;8*u)g+Usx-;Z*3H0c6hqb9*e>({S62b}vv)=pcs+
zm;ekKlgAZcXCg5xeqRdyE5PU=51ileupx1TAfB6;tA*g3Z-~PMKw+2=K_on9FC9S(
zsO}v@<3Io%0;3@ylnyc@hw;-8cyIg*rw`ma%9%;y4p@#kqT!&C#~60x1+f`40VHG_
z4l={A02*)%6JiV9q3}onIPi(0o~XS8#fOBUCh#~PNcTe<AMOkJzo|$wXiORf3LVg(
zLwOv5MlGr|V*xdPs>?${Rf=n@f6)$PU}*jab|CRXH#9Vg(9ws8$z9=a3{!B-P>7of
z(<u-e6AYLFxoz0EC%VEQCo)2Soe5*Y9TpX4$SKt2{BaX#uq$C1fQo`#p)->p0z04v
z^0=^?4(2K`$Tx$_M!`FBcnlWF7i(B_YFO9@n1WnI1`3b!I1qbw7;<-Xa5g9K=OF?i
zGzviAg%HvIIsyp*na2eP6g5B%AW#iMu;#G=p-KflQq06l<zZp2P@FrQM&;rNK0<0a
zWHN@H2~d1w6f_D4n1d{&KGGPnnrKWeh=Pa40v5wO)P*hv6o#6@RQkWL)(Zv0Wg_zo
z6+{C=27`6NLanr7m2uj!5Q~BKyGKIoH3393Oo$?}2s!#9F^;g?h=!>c5`5-&9J#R2
zJh&4VkU$VcJFGn&ez&@a(Mug<AvzraX43ftv~K{wicp^yKIYj0*a>0)*x87h%yiIh
zL=AT!oehB$zJTH)d&fZ-iy9WX$QO&ggxpnO6eFZu;JU|x*i@L!5JYLhltg5UP?Hx0
zA)T%WF%t>kGzUXe01l$h(HNL!1xCX(3J?RbnaDfZGFW@g0;)fR9|*nrP$#!PAD(}J
zA&9esVVS|tDDnWt!JS|Z*O$*3SpNSRwxF&Kcn#cVJj~(X*gAjS^$!ctfx7$&qh#S_
zXfUV2UHw4}zM;eVvti;eBoB3H1t>HQn};4KAe2W5gZ@<buix`z9B7Oqn2w#W$OdhG
z*qg(kF|7s4kHEE&0mhP;plIoTJE_Xgzn_0U|9<}cFZlca0ssL2|L&OsuK?Nv0E%;h
A82|tP

diff --git a/k8s/create-cloudsql-database.sh b/k8s/create-cloudsql-database.sh
deleted file mode 100755
index f022586047..0000000000
--- a/k8s/create-cloudsql-database.sh
+++ /dev/null
@@ -1,25 +0,0 @@
-set -e
-
-DBNAME=$1
-
-INSTANCE=$2
-
-DATABASES=`gcloud sql databases list --instance=${INSTANCE} | awk '{print $1}' | tail -n +2`
-
-EXISTENCE=False
-
-for word in ${DATABASES}; do
-    if [[ ${word} = ${DBNAME} ]];
-    then
-        echo "Database ${DBNAME} exists in SQL instance ${INSTANCE}."
-        EXISTENCE=True
-        break
-    fi
-done
-
-
-if [[ ${EXISTENCE} = False ]];
-then
-    echo "Creating database ${DBNAME} in SQL instance ${INSTANCE}."
-    gcloud sql databases create ${DBNAME} --instance=${INSTANCE}
-fi
diff --git a/k8s/create-cloudsql-proxy.sh b/k8s/create-cloudsql-proxy.sh
deleted file mode 100755
index e9adfd0c8b..0000000000
--- a/k8s/create-cloudsql-proxy.sh
+++ /dev/null
@@ -1,21 +0,0 @@
-#!/usr/bin/env sh
-# Arguments:
-# $1: The Helm release name. You'll see this name inside Kubernetes.
-# $2: the path to the service account JSON file that has access to Cloud SQL.
-# $3: Cloud SQL instance name
-# $4: GCP project id
-# $5: Cloud SQL region
-
-set -xe
-
-# Install the helm server side component
-helm init
-
-# Install the Global cluster sql proxy. Create one for each
-# Cloud SQL database you want to connect to.
-helm upgrade $1 stable/gcloud-sqlproxy --namespace sqlproxy \
-    --set serviceAccountKey="$(cat $2 | base64)" \
-    --set cloudsql.instances[0].instance=$3 \
-    --set cloudsql.instances[0].project=$4 \
-    --set cloudsql.instances[0].region=$5 \
-    --set cloudsql.instances[0].port=5432 -i
diff --git a/k8s/create-multiplexing-reverse-proxy-lb.sh b/k8s/create-multiplexing-reverse-proxy-lb.sh
deleted file mode 100755
index 22f6ede359..0000000000
--- a/k8s/create-multiplexing-reverse-proxy-lb.sh
+++ /dev/null
@@ -1,38 +0,0 @@
-#!/usr/bin/env sh
-# This script creates a Traefik load balancer, a single
-# set of servers that we'll use to multiplex between different
-# versions of studio.
-#
-# We want to use this vs. Google Cloud native load balancers, b/c
-# each gcloud lb is $20/month. Using an internal traefik load balancer
-# means we only need a static IP, and traefik does the load balancing.
-
-# Arguments:
-# $1: The Helm release name. You'll see this name inside Kubernetes.
-# $2: the load balancer's external IP (xxx.xxx.xxx.xxx). Make sure to reserve this first on GCP.
-# $3: The Cloudflare email address. Used to perform automated letsencrypt verification.
-# $4: The API key for the given Cloudflare email.
-
-
-set -xe
-
-helm init
-
-helm upgrade $1 stable/traefik --namespace kube-system \
-     --set loadBalancerIP=$2 \
-     --set gzip.enabled=false \
-     --set acme.enabled=true \
-     --set ssl.enabled=true \
-     --set acme.challengeType=dns-01 \
-     --set acme.dnsProvider.name=cloudflare \
-     --set acme.dnsProvider.cloudflare.CLOUDFLARE_EMAIL=$3 \
-     --set acme.dnsProvider.cloudflare.CLOUDFLARE_API_KEY=$4 \
-     --set acme.email='admins@learningequality.org' \
-     --set cpuRequest=1000m \
-     --set memoryRequest=1Gi \
-     --set cpuLimit=2000m \
-     --set memoryLimit=2Gi \
-     --set acme.staging=false \
-     --set dashboard.enabled=true \
-     --set dashboard.domain=traefik-lb-ui.cd.learningequality.org \
-     -i
diff --git a/k8s/create-postgres-user-and-db.exp b/k8s/create-postgres-user-and-db.exp
deleted file mode 100755
index af22daf2d2..0000000000
--- a/k8s/create-postgres-user-and-db.exp
+++ /dev/null
@@ -1,62 +0,0 @@
-#!/usr/local/bin/expect -f
-#
-# This Expect script was generated by autoexpect on Tue Jun 26 17:27:40 2018
-# Expect and autoexpect were both written by Don Libes, NIST.
-#
-# Note that autoexpect does not guarantee a working script.  It
-# necessarily has to guess about certain things.  Two reasons a script
-# might fail are:
-#
-# 1) timing - A surprising number of programs (rn, ksh, zsh, telnet,
-# etc.) and devices discard or ignore keystrokes that arrive "too
-# quickly" after prompts.  If you find your new script hanging up at
-# one spot, try adding a short sleep just before the previous send.
-# Setting "force_conservative" to 1 (see below) makes Expect do this
-# automatically - pausing briefly before sending each character.  This
-# pacifies every program I know of.  The -c flag makes the script do
-# this in the first place.  The -C flag allows you to define a
-# character to toggle this mode off and on.
-
-set force_conservative 0  ;# set to 1 to force conservative mode even if
-			  ;# script wasn't run conservatively originally
-if {$force_conservative} {
-	set send_slow {1 .1}
-	proc send {ignore arg} {
-		sleep .1
-		exp_send -s -- $arg
-	}
-}
-
-#
-# 2) differing output - Some programs produce different output each time
-# they run.  The "date" command is an obvious example.  Another is
-# ftp, if it produces throughput statistics at the end of a file
-# transfer.  If this causes a problem, delete these patterns or replace
-# them with wildcards.  An alternative is to use the -p flag (for
-# "prompt") which makes Expect only look for the last line of output
-# (i.e., the prompt).  The -P flag allows you to define a character to
-# toggle this mode off and on.
-#
-# Read the man page for more info.
-#
-# -Don
-
-# Aron: call this script with the following arguments
-# $1: the name of both the user and the database they control
-# $2: the postgres user's password. Needed to create the user.
-set user [lindex $argv 0]
-set db [lindex $argv 0]
-set postgres_password [lindex $argv 1]
-
-
-set timeout -1
-spawn gcloud sql connect studio-qa --project ops-central
-match_max 100000
-expect -exact "Password for user postgres: "
-send -- "$postgres_password\n"
-expect -exact "postgres=> "
-send -- "CREATE DATABASE $db; CREATE USER $user WITH ENCRYPTED PASSWORD '$user'; GRANT ALL PRIVILEGES ON DATABASE $db TO $user;"
-send -- "\n"
-expect -exact "postgres=>"
-send -- ""
-expect eof
diff --git a/k8s/encrypt-env-var.sh b/k8s/encrypt-env-var.sh
deleted file mode 100755
index c20e0774b0..0000000000
--- a/k8s/encrypt-env-var.sh
+++ /dev/null
@@ -1,17 +0,0 @@
-#!/bin/sh
-
-# How to use:
-# pipe a secret string into this script.
-# This will output instructions on what you
-# then need to add into your cloudbuild.yaml file.
-
-KEYRING=$1
-KEY=$2
-
-gcloud kms encrypt \
-    --plaintext-file=- \
-    --ciphertext-file=- \
-    --location=global \
-    --keyring=$KEYRING \
-    --key=$KEY \
-    | base64
diff --git a/k8s/helm-deploy.sh b/k8s/helm-deploy.sh
deleted file mode 100755
index 4f512559fd..0000000000
--- a/k8s/helm-deploy.sh
+++ /dev/null
@@ -1,38 +0,0 @@
-#!/usr/bin/env bash
-
-set -euo pipefail
-
-RELEASE_NAME=$1
-STUDIO_APP_IMAGE_NAME=$2
-STUDIO_NGINX_IMAGE_NAME=$3
-STUDIO_BUCKET_NAME=$4
-COMMIT_SHA=$5
-PROJECT_ID=$6
-DATABASE_INSTANCE_NAME=$7
-DATABASE_REGION=$8
-
-K8S_DIR=$(dirname $0)
-
-function get_secret {
-    gcloud secrets versions access --secret=$1 latest
-}
-
-helm upgrade --install \
-     --namespace $RELEASE_NAME --create-namespace \
-     --set studioApp.postmarkApiKey=$(get_secret postmark-api-key) \
-     --set studioApp.releaseCommit=$COMMIT_SHA \
-     --set studioApp.imageName=$STUDIO_APP_IMAGE_NAME \
-     --set studioNginx.imageName=$STUDIO_NGINX_IMAGE_NAME \
-     --set studioApp.gcs.bucketName=$STUDIO_BUCKET_NAME \
-     --set studioApp.gcs.writerServiceAccountKeyBase64Encoded=$(get_secret studio-gcs-service-account-key | base64 -w 0) \
-     --set settings=contentcuration.production_settings \
-     --set sentry.dsnKey=$(get_secret sentry-dsn-key) \
-     --set redis.password=$(get_secret redis-password) \
-     --set cloudsql-proxy.credentials.username=$(get_secret postgres-username) \
-     --set cloudsql-proxy.credentials.password=$(get_secret postgres-password) \
-     --set cloudsql-proxy.credentials.dbname=$(get_secret postgres-dbname) \
-     --set cloudsql-proxy.cloudsql.instances[0].instance=$DATABASE_INSTANCE_NAME \
-     --set cloudsql-proxy.cloudsql.instances[0].project=$PROJECT_ID \
-     --set cloudsql-proxy.cloudsql.instances[0].region=$DATABASE_REGION \
-     --set cloudsql-proxy.cloudsql.instances[0].port=5432 \
-     $RELEASE_NAME $K8S_DIR
diff --git a/k8s/templates/_helpers.tpl b/k8s/templates/_helpers.tpl
deleted file mode 100644
index 1098c07dc7..0000000000
--- a/k8s/templates/_helpers.tpl
+++ /dev/null
@@ -1,134 +0,0 @@
-{{/* vim: set filetype=mustache: */}}
-{{/*
-Expand the name of the chart.
-*/}}
-{{- define "studio.name" -}}
-{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-
-{{/*
-Create a default fully qualified app name.
-We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
-If release name contains chart name it will be used as a full name.
-*/}}
-{{- define "studio.fullname" -}}
-{{- if .Values.fullnameOverride -}}
-{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
-{{- else -}}
-{{- $name := default .Chart.Name .Values.nameOverride -}}
-{{- if contains $name .Release.Name -}}
-{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
-{{- else -}}
-{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-{{- end -}}
-{{- end -}}
-
-{{- define "cloudsql-proxy.fullname" -}}
-{{- $name := .Release.Name -}}
-{{- printf "%s-%s" $name "cloudsql-proxy" | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-{{- define "redis.fullname" -}}
-{{- $name := .Release.Name -}}
-{{- printf "%s-%s" $name "redis" | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-
-{{- define "minio.url" -}}
-{{- printf "http://%s-%s:%v" .Release.Name "minio" .Values.minio.service.port -}}
-{{- end -}}
-
-
-{{/*
-Return the appropriate apiVersion for networkpolicy.
-*/}}
-{{- define "studio.networkPolicy.apiVersion" -}}
-{{- if semverCompare ">=1.4-0, <1.7-0" .Capabilities.KubeVersion.GitVersion -}}
-"extensions/v1"
-{{- else if semverCompare "^1.7-0" .Capabilities.KubeVersion.GitVersion -}}
-"networking.k8s.io/v1"
-{{- end -}}
-{{- end -}}
-
-{{/*
-Create chart name and version as used by the chart label.
-*/}}
-{{- define "studio.chart" -}}
-{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-
-{{/*
-Generate chart secret name
-*/}}
-{{- define "studio.secretName" -}}
-{{ default (include "studio.fullname" .) .Values.existingSecret }}
-{{- end -}}
-
-{{/*
-Generate the shared environment variables between studio app and workers
-*/}}
-{{- define "studio.sharedEnvs" -}}
-- name: DJANGO_SETTINGS_MODULE
-  value: {{ .Values.settings }}
-- name: DJANGO_LOG_FILE
-  value: /var/log/django.log
-- name: MPLBACKEND
-  value: PS
-- name: STUDIO_BETA_MODE
-  value: "yes"
-- name: RUN_MODE
-  value: k8s
-- name: DATA_DB_NAME
-  valueFrom:
-    secretKeyRef:
-      key: postgres-database
-      name: {{ template "studio.fullname" . }}
-- name: DATA_DB_PORT
-  value: "5432"
-- name: DATA_DB_USER
-  valueFrom:
-    secretKeyRef:
-      key: postgres-user
-      name: {{ template "studio.fullname" . }}
-- name: DATA_DB_PASS
-  valueFrom:
-    secretKeyRef:
-      key: postgres-password
-      name: {{ template "studio.fullname" . }}
-- name: CELERY_TIMEZONE
-  value: America/Los_Angeles
-- name: CELERY_REDIS_DB
-  value: "0"
-- name: CELERY_BROKER_ENDPOINT
-  value: {{ template "redis.fullname" . }}-master
-- name: CELERY_RESULT_BACKEND_ENDPOINT
-  value: {{ template "redis.fullname" . }}-master
-- name: CELERY_REDIS_PASSWORD
-  valueFrom:
-    secretKeyRef:
-      key: redis-password
-      name: {{ template "studio.fullname" . }}
-- name: AWS_S3_ENDPOINT_URL
-  value: https://storage.googleapis.com
-- name: RELEASE_COMMIT_SHA
-  value: {{ .Values.studioApp.releaseCommit | default "" }}
-- name: BRANCH_ENVIRONMENT
-  value: {{ .Release.Name }}
-- name: SENTRY_DSN_KEY
-  valueFrom:
-    secretKeyRef:
-      key: sentry-dsn-key
-      name: {{ template "studio.fullname" . }}
-      optional: true
-- name: AWS_BUCKET_NAME
-  value: {{ .Values.studioApp.gcs.bucketName }}
-- name: EMAIL_CREDENTIALS_POSTMARK_API_KEY
-  {{ if .Values.studioApp.postmarkApiKey }}
-  valueFrom:
-    secretKeyRef:
-      key: postmark-api-key
-      name: {{ template "studio.fullname" . }}
-  {{ else }}
-  value: ""
-  {{ end }}
-
-{{- end -}}
diff --git a/k8s/templates/garbage-collect-cronjob.yaml b/k8s/templates/garbage-collect-cronjob.yaml
deleted file mode 100644
index 4395732541..0000000000
--- a/k8s/templates/garbage-collect-cronjob.yaml
+++ /dev/null
@@ -1,78 +0,0 @@
----
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: {{ template "studio.fullname" . }}-garbage-collect-job-config
-  labels:
-    tier: job
-    app: {{ template "studio.fullname" . }}
-    chart: {{ .Chart.Name }}
-    release: {{ .Release.Name }}
-data:
-  DJANGO_LOG_FILE: /var/log/django.log
-  DATA_DB_HOST: {{ template "cloudsql-proxy.fullname" . }}
-  DATA_DB_PORT: "5432"
-  MPLBACKEND: PS
-  RUN_MODE: k8s
-  RELEASE_COMMIT_SHA: {{ .Values.studioApp.releaseCommit | default "" }}
-  BRANCH_ENVIRONMENT: {{ .Release.Name }}
-  AWS_BUCKET_NAME: {{ .Values.studioApp.gcs.bucketName }}
----
-apiVersion: v1
-kind: Secret
-metadata:
-  name: {{ template "studio.fullname" . }}-garbage-collect-job-secret
-  labels:
-    app: {{ template "studio.fullname" . }}
-    chart: {{ .Chart.Name }}
-    release: {{ .Release.Name }}
-type: Opaque
-data:
-  DATA_DB_USER: {{ index .Values "cloudsql-proxy" "credentials" "username" | b64enc }}
-  DATA_DB_PASS: {{ index .Values "cloudsql-proxy" "credentials" "password" | b64enc }}
-  DATA_DB_NAME: {{ index .Values "cloudsql-proxy" "credentials" "dbname" | b64enc }}
-  SENTRY_DSN_KEY: {{ .Values.sentry.dsnKey | b64enc }}
----
-apiVersion: batch/v1beta1
-kind: CronJob
-metadata:
-  name: {{ template "studio.fullname" . }}-garbage-collect-cronjob
-  labels:
-    tier: job
-    chart: {{ .Chart.Name }}
-    release: {{ .Release.Name }}
-spec:
-  schedule: "@midnight"
-  jobTemplate:
-    spec:
-      template:
-        spec:
-          restartPolicy: OnFailure
-          containers:
-          - name: app
-            image: {{ .Values.studioApp.imageName }}
-            command:
-            - python
-            - contentcuration/manage.py
-            - garbage_collect
-            env:
-            - name: DJANGO_SETTINGS_MODULE
-              value: contentcuration.production_settings
-            envFrom:
-            - configMapRef:
-                name: {{ template "studio.fullname" . }}-garbage-collect-job-config
-            - secretRef:
-                name: {{ template "studio.fullname" . }}-garbage-collect-job-secret
-            resources:
-              requests:
-                cpu: 0.5
-                memory: 1Gi
-          affinity:
-            nodeAffinity:
-              requiredDuringSchedulingIgnoredDuringExecution:
-                nodeSelectorTerms:
-                - matchExpressions:
-                  - key: full-gcp-access-scope
-                    operator: In
-                    values:
-                    - "true"
diff --git a/k8s/templates/ingress.yaml b/k8s/templates/ingress.yaml
deleted file mode 100644
index c2e199dc7a..0000000000
--- a/k8s/templates/ingress.yaml
+++ /dev/null
@@ -1,21 +0,0 @@
----
-apiVersion: networking.k8s.io/v1beta1
-kind: Ingress
-metadata:
-  name: {{ template "studio.fullname" . }}
-  labels:
-    app: {{ template "studio.fullname" . }}
-    tier: ingress
-  annotations:
-    ingress.kubernetes.io/rewrite-target: /
-    kubernetes.io/ingress.class: "nginx"
-    ingressClassName: "nginx"
-
-spec:
-  rules:
-    - host: {{.Release.Name}}.studio.cd.learningequality.org
-      http:
-        paths:
-        - backend:
-            serviceName: {{ template "studio.fullname" . }}-app
-            servicePort: 80
diff --git a/k8s/templates/job-template.yaml b/k8s/templates/job-template.yaml
deleted file mode 100644
index 856f27371c..0000000000
--- a/k8s/templates/job-template.yaml
+++ /dev/null
@@ -1,73 +0,0 @@
----
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: {{ template "studio.fullname" . }}-db-migrate-config
-  labels:
-    app: {{ template "studio.fullname" . }}
-  annotations:
-    "helm.sh/hook": pre-install,pre-upgrade
-    "helm.sh/hook-delete-policy": before-hook-creation
-data:
-  DJANGO_SETTINGS_MODULE: {{ .Values.settings }}
-  DJANGO_LOG_FILE: /var/log/django.log
-  DATA_DB_HOST: {{ template "cloudsql-proxy.fullname" . }}
-  DATA_DB_PORT: "5432"
-  MPLBACKEND: PS
-  STUDIO_BETA_MODE: "yes"
-  RUN_MODE: k8s
-  RELEASE_COMMIT_SHA: {{ .Values.studioApp.releaseCommit | default "" }}
-  BRANCH_ENVIRONMENT: {{ .Release.Name }}
----
-apiVersion: v1
-kind: Secret
-metadata:
-  name: {{ template "studio.fullname" . }}-db-migrate-secrets
-  labels:
-    app: studio
-    chart: {{ .Chart.Name }}
-    release: {{ .Release.Name }}
-  annotations:
-    "helm.sh/hook": pre-install,pre-upgrade
-    "helm.sh/hook-delete-policy": before-hook-creation
-type: Opaque
-data:
-  DATA_DB_USER: {{ index .Values "cloudsql-proxy" "credentials" "username" | b64enc }}
-  DATA_DB_PASS: {{ index .Values "cloudsql-proxy" "credentials" "password" | b64enc }}
-  DATA_DB_NAME: {{ index .Values "cloudsql-proxy" "credentials" "dbname" | b64enc }}
-  SENTRY_DSN_KEY: {{ .Values.sentry.dsnKey | b64enc }}
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  name: {{ template "studio.fullname" . }}-migrate-job
-  labels:
-    app: {{ template "studio.fullname" . }}
-  annotations:
-    "helm.sh/hook": post-install,pre-upgrade
-    "helm.sh/hook-delete-policy": before-hook-creation
-spec:
-  template:
-    spec:
-      restartPolicy: OnFailure
-      containers:
-      - name: dbmigrate
-        image: {{ .Values.studioApp.imageName }}
-        command:
-        - make
-        - migrate
-        envFrom:
-        - configMapRef:
-            name: {{ template "studio.fullname" . }}-db-migrate-config
-        - secretRef:
-            name: {{ template "studio.fullname" . }}-db-migrate-secrets
-        env:
-        - name: DJANGO_SETTINGS_MODULE
-          value: contentcuration.migration_production_settings
-        resources:
-          requests:
-            cpu: 1
-            memory: 2Gi
-          limits:
-            cpu: 1
-            memory: 2Gi
diff --git a/k8s/templates/mark-incomplete-mgmt-command-cronjob.yaml b/k8s/templates/mark-incomplete-mgmt-command-cronjob.yaml
deleted file mode 100644
index ad36b8b0e4..0000000000
--- a/k8s/templates/mark-incomplete-mgmt-command-cronjob.yaml
+++ /dev/null
@@ -1,78 +0,0 @@
----
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: {{ template "studio.fullname" . }}-mark-incomplete-job-config
-  labels:
-    tier: job
-    app: {{ template "studio.fullname" . }}
-    chart: {{ .Chart.Name }}
-    release: {{ .Release.Name }}
-data:
-  DJANGO_LOG_FILE: /var/log/django.log
-  DATA_DB_HOST: {{ template "cloudsql-proxy.fullname" . }}
-  DATA_DB_PORT: "5432"
-  MPLBACKEND: PS
-  RUN_MODE: k8s
-  RELEASE_COMMIT_SHA: {{ .Values.studioApp.releaseCommit | default "" }}
-  BRANCH_ENVIRONMENT: {{ .Release.Name }}
-  AWS_BUCKET_NAME: {{ .Values.studioApp.gcs.bucketName }}
----
-apiVersion: v1
-kind: Secret
-metadata:
-  name: {{ template "studio.fullname" . }}-mark-incomplete-job-secrets
-  labels:
-    app: {{ template "studio.fullname" . }}
-    chart: {{ .Chart.Name }}
-    release: {{ .Release.Name }}
-type: Opaque
-data:
-  DATA_DB_USER: {{ index .Values "cloudsql-proxy" "credentials" "username" | b64enc }}
-  DATA_DB_PASS: {{ index .Values "cloudsql-proxy" "credentials" "password" | b64enc }}
-  DATA_DB_NAME: {{ index .Values "cloudsql-proxy" "credentials" "dbname" | b64enc }}
-  SENTRY_DSN_KEY: {{ .Values.sentry.dsnKey | b64enc }}
----
-apiVersion: batch/v1beta1
-kind: CronJob
-metadata:
-  name: mark-incomplete-cronjob
-  labels:
-    tier: job
-    chart: {{ .Chart.Name }}
-    release: {{ .Release.Name }}
-spec:
-  schedule: "00 12 10 */36 *"
-  jobTemplate:
-    spec:
-      template:
-        spec:
-          restartPolicy: OnFailure
-          containers:
-          - name: app
-            image: {{ .Values.studioApp.imageName }}
-            command:
-            - python
-            - contentcuration/manage.py
-            - mark_incomplete
-            env:
-            - name: DJANGO_SETTINGS_MODULE
-              value: contentcuration.production_settings
-            envFrom:
-            - configMapRef:
-                name: {{ template "studio.fullname" . }}-mark-incomplete-job-config
-            - secretRef:
-                name: {{ template "studio.fullname" . }}-mark-incomplete-job-secrets
-            resources:
-              requests:
-                cpu: 0.5
-                memory: 1Gi
-          affinity:
-            nodeAffinity:
-              requiredDuringSchedulingIgnoredDuringExecution:
-                nodeSelectorTerms:
-                - matchExpressions:
-                  - key: full-gcp-access-scope
-                    operator: In
-                    values:
-                    - "true"
diff --git a/k8s/templates/production-ingress.yaml b/k8s/templates/production-ingress.yaml
deleted file mode 100644
index 68f10481ba..0000000000
--- a/k8s/templates/production-ingress.yaml
+++ /dev/null
@@ -1,23 +0,0 @@
-{{- if .Values.productionIngress -}}
----
-apiVersion: networking.k8s.io/v1beta1
-kind: Ingress
-metadata:
-  name: {{ template "studio.fullname" . }}-production
-  labels:
-    app: {{ template "studio.fullname" . }}
-    tier: ingress
-    type: production
-  annotations:
-    ingress.kubernetes.io/rewrite-target: /
-    kubernetes.io/ingress.class: "nginx"
-    ingressClassName: "nginx"
-spec:
-  rules:
-    - host: {{.Release.Name}}.studio.learningequality.org
-      http:
-        paths:
-        - backend:
-            serviceName: {{ template "studio.fullname" . }}-app
-            servicePort: 80
-{{- end }}
diff --git a/k8s/templates/set-storage-used-mgmt-command-cronjob.yaml b/k8s/templates/set-storage-used-mgmt-command-cronjob.yaml
deleted file mode 100644
index cd30ba6f2f..0000000000
--- a/k8s/templates/set-storage-used-mgmt-command-cronjob.yaml
+++ /dev/null
@@ -1,78 +0,0 @@
----
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: {{ template "studio.fullname" . }}-set-storage-used-job-config
-  labels:
-    tier: job
-    app: {{ template "studio.fullname" . }}
-    chart: {{ .Chart.Name }}
-    release: {{ .Release.Name }}
-data:
-  DJANGO_LOG_FILE: /var/log/django.log
-  DATA_DB_HOST: {{ template "cloudsql-proxy.fullname" . }}
-  DATA_DB_PORT: "5432"
-  MPLBACKEND: PS
-  RUN_MODE: k8s
-  RELEASE_COMMIT_SHA: {{ .Values.studioApp.releaseCommit | default "" }}
-  BRANCH_ENVIRONMENT: {{ .Release.Name }}
-  AWS_BUCKET_NAME: {{ .Values.studioApp.gcs.bucketName }}
----
-apiVersion: v1
-kind: Secret
-metadata:
-  name: {{ template "studio.fullname" . }}-set-storage-used-job-secrets
-  labels:
-    app: {{ template "studio.fullname" . }}
-    chart: {{ .Chart.Name }}
-    release: {{ .Release.Name }}
-type: Opaque
-data:
-  DATA_DB_USER: {{ index .Values "cloudsql-proxy" "credentials" "username" | b64enc }}
-  DATA_DB_PASS: {{ index .Values "cloudsql-proxy" "credentials" "password" | b64enc }}
-  DATA_DB_NAME: {{ index .Values "cloudsql-proxy" "credentials" "dbname" | b64enc }}
-  SENTRY_DSN_KEY: {{ .Values.sentry.dsnKey | b64enc }}
----
-apiVersion: batch/v1beta1
-kind: CronJob
-metadata:
-  name: set-storage-used-cronjob
-  labels:
-    tier: job
-    chart: {{ .Chart.Name }}
-    release: {{ .Release.Name }}
-spec:
-  schedule: "@midnight"
-  jobTemplate:
-    spec:
-      template:
-        spec:
-          restartPolicy: OnFailure
-          containers:
-          - name: app
-            image: {{ .Values.studioApp.imageName }}
-            command:
-            - python
-            - contentcuration/manage.py
-            - set_storage_used
-            env:
-            - name: DJANGO_SETTINGS_MODULE
-              value: contentcuration.production_settings
-            envFrom:
-            - configMapRef:
-                name: {{ template "studio.fullname" . }}-set-storage-used-job-config
-            - secretRef:
-                name: {{ template "studio.fullname" . }}-set-storage-used-job-secrets
-            resources:
-              requests:
-                cpu: 0.5
-                memory: 1Gi
-          affinity:
-            nodeAffinity:
-              requiredDuringSchedulingIgnoredDuringExecution:
-                nodeSelectorTerms:
-                - matchExpressions:
-                  - key: full-gcp-access-scope
-                    operator: In
-                    values:
-                    - "true"
diff --git a/k8s/templates/studio-deployment.yaml b/k8s/templates/studio-deployment.yaml
deleted file mode 100644
index f6a74f36fa..0000000000
--- a/k8s/templates/studio-deployment.yaml
+++ /dev/null
@@ -1,157 +0,0 @@
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: {{ template "studio.fullname" . }}
-  labels:
-    tier: app
-    app: {{ template "studio.fullname" . }}
-spec:
-  replicas: {{ .Values.studioApp.replicas }}
-  selector:
-    matchLabels:
-      app: {{ template "studio.fullname" . }}
-      tier: frontend
-  template:
-    metadata:
-      annotations:
-        checksum: {{ include (print $.Template.BasePath "/job-template.yaml") . | sha256sum }}
-      labels:
-        app: {{ template "studio.fullname" . }}
-        tier: frontend
-    spec:
-      initContainers:
-      - name: collectstatic
-        image: {{ .Values.studioApp.imageName }}
-        workingDir: /contentcuration/
-        command:
-        - make
-        args:
-        - collectstatic
-        env:
-        - name: DJANGO_SETTINGS_MODULE
-          value: contentcuration.collectstatic_settings
-        - name: STATICFILES_DIR
-          value: /app/contentworkshop_static/
-        volumeMounts:
-        - mountPath: /app/contentworkshop_static/
-          name: staticfiles
-      containers:
-      - name: app
-        image: {{ .Values.studioApp.imageName }}
-        workingDir: /contentcuration/contentcuration/
-        command:
-        - gunicorn
-        args:
-        - contentcuration.wsgi:application
-        - --timeout=4000
-        - --workers=2
-        - --bind=0.0.0.0:{{ .Values.studioApp.appPort }}
-        - --pid=/tmp/contentcuration.pid
-        env: {{ include "studio.sharedEnvs" . | nindent 8 }}
-        - name: SEND_USER_ACTIVATION_NOTIFICATION_EMAIL
-          value: "true"
-        - name: DATA_DB_HOST
-          value: {{ template "cloudsql-proxy.fullname" . }}
-        - name: GOOGLE_CLOUD_STORAGE_SERVICE_ACCOUNT_CREDENTIALS
-          value: /var/secrets/gcs-writer-service-account-key.json
-        ports:
-        - containerPort: {{ .Values.studioApp.appPort }}
-        readinessProbe:
-          httpGet:
-            path: /healthz
-            port: {{ .Values.studioApp.appPort }}
-          initialDelaySeconds: 5
-          periodSeconds: 2
-          failureThreshold: 3
-        resources:
-          requests:
-            cpu: 0.5
-            memory: 2Gi
-          limits:
-            memory: 2Gi
-        volumeMounts:
-          - mountPath: /var/secrets
-            name: gcs-writer-service-account-key
-            readOnly: true
-      - name: nginx-proxy
-        image: {{ .Values.studioNginx.imageName }}
-        env:
-        - name: AWS_S3_ENDPOINT_URL
-          value: https://storage.googleapis.com
-        - name: AWS_BUCKET_NAME
-          value: {{ .Values.studioApp.gcs.bucketName }}
-        ports:
-        - containerPort: {{ .Values.studioNginx.port }}
-        volumeMounts:
-        - mountPath: /app/contentworkshop_static/
-          name: staticfiles
-        resources:
-          requests:
-            cpu: 0.2
-            memory: 256Mi
-          limits:
-            memory: 512Mi
-      volumes:
-        - emptyDir: {}
-          name: staticfiles
-        - name: gcs-writer-service-account-key
-          secret:
-            secretName: {{ template "studio.fullname" . }}
-            items:
-            - key: gcs-writer-service-account-key
-              path: gcs-writer-service-account-key.json
-      affinity:
-        nodeAffinity:
-          requiredDuringSchedulingIgnoredDuringExecution:
-            nodeSelectorTerms:
-            - matchExpressions:
-              - key: full-gcp-access-scope
-                operator: In
-                values:
-                - "true"
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: {{template "studio.fullname" . }}-workers
-spec:
-  replicas: {{ .Values.studioWorkers.replicas }}
-  selector:
-    matchLabels:
-      app: {{ template "studio.fullname" . }}-workers
-      tier: workers
-  template:
-    metadata:
-      labels:
-        app: {{ template "studio.fullname" . }}-workers
-        tier: workers
-    spec:
-      containers:
-      - name: worker
-        image: {{ .Values.studioApp.imageName }}
-        command:
-        - make
-        {{- if not .Values.productionIngress }}
-        - setup
-        {{- end }}
-        - prodceleryworkers
-        env: {{ include "studio.sharedEnvs" . | nindent 8 }}
-        - name: DATA_DB_HOST
-          value: {{ template "cloudsql-proxy.fullname" . }}
-        resources:
-          requests:
-            cpu: 0.5
-            memory: 2Gi
-          limits:
-            cpu: 2
-            memory: 8Gi
-      affinity:
-        nodeAffinity:
-          requiredDuringSchedulingIgnoredDuringExecution:
-            nodeSelectorTerms:
-            - matchExpressions:
-              - key: full-gcp-access-scope
-                operator: In
-                values:
-                - "true"
diff --git a/k8s/templates/studio-secrets.yaml b/k8s/templates/studio-secrets.yaml
deleted file mode 100644
index 51f2589a3e..0000000000
--- a/k8s/templates/studio-secrets.yaml
+++ /dev/null
@@ -1,17 +0,0 @@
-apiVersion: v1
-kind: Secret
-metadata:
-  name: {{ template "studio.fullname" . }}
-  labels:
-    app: studio
-    chart: {{ .Chart.Name }}
-    release: {{ .Release.Name }}
-type: Opaque
-data:
-  postmark-api-key: {{ .Values.studioApp.postmarkApiKey | default "" | b64enc }}
-  redis-password: {{ .Values.redis.password | default "" | b64enc }}
-  postgres-user: {{ index .Values "cloudsql-proxy" "credentials" "username" | b64enc }}
-  postgres-password: {{ index .Values "cloudsql-proxy" "credentials" "password" | b64enc }}
-  postgres-database: {{ index .Values "cloudsql-proxy" "credentials" "dbname" | b64enc }}
-  sentry-dsn-key: {{ .Values.sentry.dsnKey | b64enc }}
-  gcs-writer-service-account-key: {{ .Values.studioApp.gcs.writerServiceAccountKeyBase64Encoded }}
diff --git a/k8s/templates/studio-service.yaml b/k8s/templates/studio-service.yaml
deleted file mode 100644
index 8f70e6f54d..0000000000
--- a/k8s/templates/studio-service.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
----
-apiVersion: v1
-kind: Service
-metadata:
-  name: {{ template "studio.fullname" . }}-app
-spec:
-  ports:
-  - port: 80
-    targetPort: {{ .Values.studioNginx.port }}
-  selector:
-    app: {{ template "studio.fullname" . }}
-    tier: frontend
-  type: NodePort
diff --git a/k8s/values.yaml b/k8s/values.yaml
deleted file mode 100644
index 11db6c1559..0000000000
--- a/k8s/values.yaml
+++ /dev/null
@@ -1,70 +0,0 @@
----
-# A set of values that are meant to be used for a production setup.
-# This includes:
-# - an external Postgres, GCS Storage, and external Redis
-# - real email sending
-# - studio production settings
-#
-# Note that the secrets will have to be filled up by the caller
-# through helm upgrade --set. See REPLACEME placeholders
-# for values that need to be set.
-
-settings: contentcuration.sandbox_settings
-
-productionIngress: true
-
-studioApp:
-  imageName: "REPLACEME"
-  postmarkApiKey: "REPLACEME"
-  releaseCommit: ""
-  replicas: 5
-  appPort: 8081
-  gcs:
-    bucketName: develop-studio-content
-    writerServiceAccountKeyBase64Encoded: "REPLACEME"
-  pgbouncer:
-    replicas: 3
-    pool_size: 10
-    reserve_pool_size: 10
-
-studioNginx:
-  imageName: "REPLACEME"
-  port: 8080
-
-sentry:
-  dsnKey: ""
-
-cloudsql-proxy:
-  enabled: true
-  cloudsql:
-    instances:
-      - instance: "REPLACEME"
-        project: "REPLACEME"
-        region: "REPLACEME"
-        port: 5432
-  credentials:
-    username: ""
-    password: ""
-    dbname: ""
-  affinity:
-    nodeAffinity:
-      requiredDuringSchedulingIgnoredDuringExecution:
-        nodeSelectorTerms:
-        - matchExpressions:
-          - key: full-gcp-access-scope
-            operator: In
-            values:
-            - "true"
-
-redis:
-  enabled: true
-
-studioWorkers:
-  replicas: 5
-
-
-studioProber:
-  imageName: "REPLACEME"
-  loginProberUsername: "REPLACEME"
-  loginProberPassword: "REPLACEME"
-  port: 9313

From ff6209a5d52355500254f0c7cc6a54411531b083 Mon Sep 17 00:00:00 2001
From: David Canas <david@learningequality.org>
Date: Thu, 4 Dec 2025 15:09:13 -0800
Subject: [PATCH 02/13] Removing vestigial git module definition

---
 .gitmodules | 6 ------
 1 file changed, 6 deletions(-)
 delete mode 100644 .gitmodules

diff --git a/.gitmodules b/.gitmodules
deleted file mode 100644
index fc49a89d8a..0000000000
--- a/.gitmodules
+++ /dev/null
@@ -1,6 +0,0 @@
-[submodule "kolibri"]
-	path = kolibri
-	url = https://github.com/learningequality/kolibri.git
-[submodule "contentcuration/kolibri"]
-	path = contentcuration/kolibri
-	url = https://github.com/learningequality/kolibri.git

From c14ec2bf1d25936b84b89adef1b94300c94db211 Mon Sep 17 00:00:00 2001
From: David Canas <david@learningequality.org>
Date: Thu, 4 Dec 2025 15:11:56 -0800
Subject: [PATCH 03/13] Removing symlink to prod dockerfile. Does not appear to
 be used anywhere.

---
 docker/Dockerfile.prod | 1 -
 1 file changed, 1 deletion(-)
 delete mode 120000 docker/Dockerfile.prod

diff --git a/docker/Dockerfile.prod b/docker/Dockerfile.prod
deleted file mode 120000
index 11036b6d36..0000000000
--- a/docker/Dockerfile.prod
+++ /dev/null
@@ -1 +0,0 @@
-../k8s/images/app/Dockerfile
\ No newline at end of file

From 840dcad28810719c3e3c31ea122e5085ae2b54ba Mon Sep 17 00:00:00 2001
From: David Canas <david@learningequality.org>
Date: Thu, 4 Dec 2025 15:22:45 -0800
Subject: [PATCH 04/13] Clearing out prober code. Doing as a single commit in
 case of ressurection.

---
 deploy/cloudprober.cfg                        | 187 ------------------
 deploy/prober-entrypoint.sh                   |   8 -
 deploy/probers/base.py                        | 112 -----------
 deploy/probers/channel_creation_probe.py      |  35 ----
 deploy/probers/channel_edit_page_probe.py     |  23 ---
 deploy/probers/channel_update_probe.py        |  30 ---
 deploy/probers/login_page_probe.py            |  14 --
 deploy/probers/postgres_probe.py              |  36 ----
 .../postgres_read_contentnode_probe.py        |  38 ----
 .../postgres_write_contentnode_probe.py       |  64 ------
 deploy/probers/postmark_api_probe.py          |  36 ----
 deploy/probers/publishing_status_probe.py     |  53 -----
 deploy/probers/task_queue_probe.py            |  25 ---
 deploy/probers/topic_creation_probe.py        |  41 ----
 deploy/probers/unapplied_changes_probe.py     |  26 ---
 deploy/probers/worker_probe.py                |  24 ---
 k8s/images/prober/Dockerfile                  |   9 -
 17 files changed, 761 deletions(-)
 delete mode 100644 deploy/cloudprober.cfg
 delete mode 100755 deploy/prober-entrypoint.sh
 delete mode 100644 deploy/probers/base.py
 delete mode 100755 deploy/probers/channel_creation_probe.py
 delete mode 100755 deploy/probers/channel_edit_page_probe.py
 delete mode 100755 deploy/probers/channel_update_probe.py
 delete mode 100755 deploy/probers/login_page_probe.py
 delete mode 100755 deploy/probers/postgres_probe.py
 delete mode 100755 deploy/probers/postgres_read_contentnode_probe.py
 delete mode 100755 deploy/probers/postgres_write_contentnode_probe.py
 delete mode 100755 deploy/probers/postmark_api_probe.py
 delete mode 100755 deploy/probers/publishing_status_probe.py
 delete mode 100755 deploy/probers/task_queue_probe.py
 delete mode 100755 deploy/probers/topic_creation_probe.py
 delete mode 100755 deploy/probers/unapplied_changes_probe.py
 delete mode 100755 deploy/probers/worker_probe.py
 delete mode 100644 k8s/images/prober/Dockerfile

diff --git a/deploy/cloudprober.cfg b/deploy/cloudprober.cfg
deleted file mode 100644
index c5a129455e..0000000000
--- a/deploy/cloudprober.cfg
+++ /dev/null
@@ -1,187 +0,0 @@
-probe {
-  name: "google_homepage"
-  type: HTTP
-  targets {
-    host_names: "www.google.com"
-  }
-  interval_msec: 60000  # 60s
-  timeout_msec: 1000   # 1s
-}
-
-probe {
-  name: "facebook_homepage"
-  type: HTTP
-  targets {
-    host_names: "www.facebook.com"
-  }
-  interval_msec: 60000  # 60s
-  timeout_msec: 1000   # 1s
-}
-
-probe {
-  name: "studio_homepage"
-  type: HTTP
-  targets {
-    host_names: "studio.learningequality.org"
-  }
-  interval_msec: 60000  # 60s
-  timeout_msec: 1000   # 1s
-}
-
-probe {
-  name: "login"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/login_page_probe.py"
-  }
-  interval_msec: 60000  # 60s
-  timeout_msec: 1000   # 1s
-}
-
-probe {
-  name: "postgres"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/postgres_probe.py"
-  }
-  interval_msec: 60000  # 60s
-  timeout_msec: 1000   # 1s
-}
-
-probe {
-  name: "workers"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/worker_probe.py"
-  }
-  interval_msec: 60000  # 60s
-  timeout_msec: 5000   # 5s
-}
-
-probe {
-  name: "channel_creation"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/channel_creation_probe.py"
-  }
-  interval_msec: 300000  # 5mins
-  timeout_msec: 10000   # 10s
-}
-
-probe {
-  name: "channel_update"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/channel_update_probe.py"
-  }
-  interval_msec: 60000  # 1min
-  timeout_msec: 10000   # 10s
-}
-
-probe {
-  name: "channel_edit_page"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/channel_edit_page_probe.py"
-  }
-  interval_msec: 10000  # 10s
-  timeout_msec: 10000   # 10s
-}
-
-probe {
-  name: "postgres_read_contentnode"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/postgres_read_contentnode_probe.py"
-  }
-  interval_msec: 60000  # 60s
-  timeout_msec: 1000   # 1s
-}
-
-probe {
-  name: "postgres_write_contentnode"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/postgres_write_contentnode_probe.py"
-  }
-  interval_msec: 60000  # 60s
-  timeout_msec: 1000   # 1s
-}
-
-probe {
-  name: "topic_creation"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/topic_creation_probe.py"
-  }
-  interval_msec: 300000  # 5mins
-  timeout_msec: 20000   # 20s
-}
-
-probe {
-  name: "postmark_api"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/postmark_api_probe.py"
-  }
-  interval_msec: 300000  # 5 minutes
-  timeout_msec: 5000   # 5s
-}
-
-probe {
-  name: "publishing_status"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/publishing_status_probe.py"
-  }
-  interval_msec: 3600000  # 1 hour
-  timeout_msec: 10000   # 10s
-}
-
-probe {
-  name: "unapplied_changes_status"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/unapplied_changes_probe.py"
-  }
-  interval_msec: 1800000  # 30 minutes
-  timeout_msec: 20000   # 20s
-}
-
-probe {
-  name: "task_queue_status"
-  type: EXTERNAL
-  targets { dummy_targets {} }
-  external_probe {
-    mode: ONCE
-    command: "./probers/task_queue_probe.py"
-  }
-  interval_msec: 600000  # 10 minutes
-  timeout_msec: 10000   # 10s
-}
-
-# Note: When deploying on GKE, the error logs can be found under GCE VM instance.
diff --git a/deploy/prober-entrypoint.sh b/deploy/prober-entrypoint.sh
deleted file mode 100755
index 323e03cab0..0000000000
--- a/deploy/prober-entrypoint.sh
+++ /dev/null
@@ -1,8 +0,0 @@
-#!/bin/bash
-
-curl -L -o cloudprober.zip https://github.com/google/cloudprober/releases/download/v0.10.2/cloudprober-v0.10.2-linux-x86_64.zip
-unzip -p cloudprober.zip > /bin/cloudprober
-chmod +x /bin/cloudprober
-
-cd deploy/
-cloudprober -logtostderr -config_file cloudprober.cfg
diff --git a/deploy/probers/base.py b/deploy/probers/base.py
deleted file mode 100644
index 7f85a18c16..0000000000
--- a/deploy/probers/base.py
+++ /dev/null
@@ -1,112 +0,0 @@
-import datetime
-import os
-
-import requests
-
-USERNAME = os.getenv("PROBER_STUDIO_USERNAME") or "a@a.com"
-PASSWORD = os.getenv("PROBER_STUDIO_PASSWORD") or "a"
-PRODUCTION_MODE_ON = os.getenv("PROBER_STUDIO_PRODUCTION_MODE_ON") or False
-STUDIO_BASE_URL = os.getenv("PROBER_STUDIO_BASE_URL") or "http://127.0.0.1:8080"
-
-
-class BaseProbe(object):
-
-    metric = "STUB_METRIC"
-    develop_only = False
-    prober_name = "PROBER"
-
-    def __init__(self):
-        self.session = requests.Session()
-        self.session.headers.update(
-            {"User-Agent": "Studio-Internal-Prober={}".format(self.prober_name)}
-        )
-
-    def do_probe(self):
-        pass
-
-    def _login(self):
-        # get our initial csrf
-        url = self._construct_studio_url("/en/accounts/")
-        r = self.session.get(url)
-        r.raise_for_status()
-        csrf = self.session.cookies.get("csrftoken")
-        formdata = {
-            "username": USERNAME,
-            "password": PASSWORD,
-        }
-        headers = {
-            "referer": url,
-            "X-Studio-Internal-Prober": "LOGIN-PROBER",
-            "X-CSRFToken": csrf,
-        }
-
-        r = self.session.post(
-            self._construct_studio_url("/en/accounts/login/"),
-            json=formdata,
-            headers=headers,
-            allow_redirects=False,
-        )
-        r.raise_for_status()
-
-        # Since logging into Studio with correct username and password should redirect, fail otherwise
-        if r.status_code != 302:
-            raise ProberException("Cannot log into Studio.")
-
-        return r
-
-    def _construct_studio_url(self, path):
-        path_stripped = path.lstrip("/")
-        url = "{base_url}/{path}".format(base_url=STUDIO_BASE_URL, path=path_stripped)
-        return url
-
-    def request(
-        self,
-        path,
-        action="GET",
-        data=None,
-        headers=None,
-        contenttype="application/json",
-    ):
-        data = data or {}
-        headers = headers or {}
-
-        # Make sure session is logged in
-        if not self.session.cookies.get("csrftoken"):
-            self._login()
-
-        url = self._construct_studio_url(path)
-
-        headers.update(
-            {
-                "X-CSRFToken": self.session.cookies.get("csrftoken"),
-            }
-        )
-
-        headers.update({"Content-Type": contenttype})
-        headers.update({"X-Studio-Internal-Prober": self.prober_name})
-        response = self.session.request(action, url, data=data, headers=headers)
-        response.raise_for_status()
-
-        return response
-
-    def run(self):
-
-        if self.develop_only and PRODUCTION_MODE_ON:
-            return
-
-        start_time = datetime.datetime.now()
-
-        self.do_probe()
-
-        end_time = datetime.datetime.now()
-        elapsed = (end_time - start_time).total_seconds() * 1000
-
-        print(  # noqa: T201
-            "{metric_name} {latency_ms}".format(
-                metric_name=self.metric, latency_ms=elapsed
-            )
-        )
-
-
-class ProberException(Exception):
-    pass
diff --git a/deploy/probers/channel_creation_probe.py b/deploy/probers/channel_creation_probe.py
deleted file mode 100755
index b7ab8d4254..0000000000
--- a/deploy/probers/channel_creation_probe.py
+++ /dev/null
@@ -1,35 +0,0 @@
-#!/usr/bin/env python
-import json
-
-from base import BaseProbe
-
-
-class ChannelCreationProbe(BaseProbe):
-
-    metric = "channel_creation_latency_msec"
-    develop_only = True
-    prober_name = "CHANNEL-CREATION-PROBER"
-
-    def _get_user_id(self):
-        response = self.request("api/internal/authenticate_user_internal")
-        return json.loads(response.content)["user_id"]
-
-    def do_probe(self):
-        payload = {
-            "description": "description",
-            "language": "en-PT",
-            "name": "test",
-            "thumbnail": "b3897c3d96bde7f1cff77ce368924098.png",
-            "content_defaults": "{}",
-            "editors": [self._get_user_id()],
-        }
-        self.request(
-            "api/channel",
-            action="POST",
-            data=payload,
-            contenttype="application/x-www-form-urlencoded",
-        )
-
-
-if __name__ == "__main__":
-    ChannelCreationProbe().run()
diff --git a/deploy/probers/channel_edit_page_probe.py b/deploy/probers/channel_edit_page_probe.py
deleted file mode 100755
index 2b3b80d2a3..0000000000
--- a/deploy/probers/channel_edit_page_probe.py
+++ /dev/null
@@ -1,23 +0,0 @@
-#!/usr/bin/env python
-import json
-
-from base import BaseProbe
-
-
-class ChannelEditPageProbe(BaseProbe):
-
-    metric = "channel_edit_page_latency_msec"
-    prober_name = "CHANNEL-EDIT-PAGE-PROBER"
-
-    def _get_channel(self):
-        response = self.request("api/probers/get_prober_channel")
-        return json.loads(response.content)
-
-    def do_probe(self):
-        channel = self._get_channel()
-        path = "channels/{}/edit".format(channel["id"])
-        self.request(path)
-
-
-if __name__ == "__main__":
-    ChannelEditPageProbe().run()
diff --git a/deploy/probers/channel_update_probe.py b/deploy/probers/channel_update_probe.py
deleted file mode 100755
index 1951df9348..0000000000
--- a/deploy/probers/channel_update_probe.py
+++ /dev/null
@@ -1,30 +0,0 @@
-#!/usr/bin/env python
-import json
-
-from base import BaseProbe
-
-
-class ChannelUpdateProbe(BaseProbe):
-
-    metric = "channel_update_latency_msec"
-    prober_name = "CHANNEL-UPDATE-PROBER"
-    develop_only = True
-
-    def _get_channel(self):
-        response = self.request("api/probers/get_prober_channel")
-        return json.loads(response.content)
-
-    def do_probe(self):
-        channel = self._get_channel()
-        payload = {"name": "New Test Name", "id": channel["id"]}
-        path = "api/channel/{}".format(channel["id"])
-        self.request(
-            path,
-            action="PATCH",
-            data=payload,
-            contenttype="application/x-www-form-urlencoded",
-        )
-
-
-if __name__ == "__main__":
-    ChannelUpdateProbe().run()
diff --git a/deploy/probers/login_page_probe.py b/deploy/probers/login_page_probe.py
deleted file mode 100755
index 42ed9a43e3..0000000000
--- a/deploy/probers/login_page_probe.py
+++ /dev/null
@@ -1,14 +0,0 @@
-#!/usr/bin/env python
-from base import BaseProbe
-
-
-class LoginProbe(BaseProbe):
-
-    metric = "login_latency_msec"
-
-    def do_probe(self):
-        self._login()
-
-
-if __name__ == "__main__":
-    LoginProbe().run()
diff --git a/deploy/probers/postgres_probe.py b/deploy/probers/postgres_probe.py
deleted file mode 100755
index 3aa29acc0c..0000000000
--- a/deploy/probers/postgres_probe.py
+++ /dev/null
@@ -1,36 +0,0 @@
-#!/usr/bin/env python
-import os
-
-import psycopg2
-from base import BaseProbe
-
-
-# Use dev options if no env set
-DB_HOST = os.getenv("DATA_DB_HOST") or "localhost"
-DB_PORT = 5432
-DB_NAME = os.getenv("DATA_DB_NAME") or "kolibri-studio"
-DB_USER = os.getenv("DATA_DB_USER") or "learningequality"
-DB_PASSWORD = os.getenv("DATA_DB_PASS") or "kolibri"
-TIMEOUT_SECONDS = 2
-
-
-class PostgresProbe(BaseProbe):
-    metric = "postgres_latency_msec"
-
-    def do_probe(self):
-        conn = psycopg2.connect(
-            host=DB_HOST,
-            port=DB_PORT,
-            dbname=DB_NAME,
-            user=DB_USER,
-            password=DB_PASSWORD,
-            connect_timeout=TIMEOUT_SECONDS,
-        )
-        cur = conn.cursor()
-        cur.execute("SELECT datname FROM pg_database;")
-        cur.fetchone()  # raises exception if cur.execute() produced no results
-        conn.close()
-
-
-if __name__ == "__main__":
-    PostgresProbe().run()
diff --git a/deploy/probers/postgres_read_contentnode_probe.py b/deploy/probers/postgres_read_contentnode_probe.py
deleted file mode 100755
index fa4767f404..0000000000
--- a/deploy/probers/postgres_read_contentnode_probe.py
+++ /dev/null
@@ -1,38 +0,0 @@
-#!/usr/bin/env python
-import os
-
-import psycopg2
-from base import BaseProbe
-
-
-# Use dev options if no env set
-DB_HOST = os.getenv("DATA_DB_HOST") or "localhost"
-DB_PORT = 5432
-DB_NAME = os.getenv("DATA_DB_NAME") or "kolibri-studio"
-DB_USER = os.getenv("DATA_DB_USER") or "learningequality"
-DB_PASSWORD = os.getenv("DATA_DB_PASS") or "kolibri"
-TIMEOUT_SECONDS = 2
-
-
-class PostgresReadContentnodeProbe(BaseProbe):
-    metric = "postgres_read_contentnode_latency_msec"
-
-    def do_probe(self):
-        conn = psycopg2.connect(
-            host=DB_HOST,
-            port=DB_PORT,
-            dbname=DB_NAME,
-            user=DB_USER,
-            password=DB_PASSWORD,
-            connect_timeout=TIMEOUT_SECONDS,
-        )
-        cur = conn.cursor()
-        cur.execute("SELECT * FROM contentcuration_contentnode LIMIT 1;")
-        num = cur.fetchone()
-        conn.close()
-        if not num:
-            raise Exception("Reading a ContentNode in PostgreSQL database failed.")
-
-
-if __name__ == "__main__":
-    PostgresReadContentnodeProbe().run()
diff --git a/deploy/probers/postgres_write_contentnode_probe.py b/deploy/probers/postgres_write_contentnode_probe.py
deleted file mode 100755
index 7785116fe4..0000000000
--- a/deploy/probers/postgres_write_contentnode_probe.py
+++ /dev/null
@@ -1,64 +0,0 @@
-#!/usr/bin/env python
-import os
-from datetime import datetime
-
-import psycopg2
-from base import BaseProbe
-
-# Use dev options if no env set
-DB_HOST = os.getenv("DATA_DB_HOST") or "localhost"
-DB_PORT = 5432
-DB_NAME = os.getenv("DATA_DB_NAME") or "kolibri-studio"
-DB_USER = os.getenv("DATA_DB_USER") or "learningequality"
-DB_PASSWORD = os.getenv("DATA_DB_PASS") or "kolibri"
-TIMEOUT_SECONDS = 2
-
-
-class PostgresWriteContentnodeProbe(BaseProbe):
-    metric = "postgres_write_contentnode_latency_msec"
-
-    develop_only = True
-
-    def do_probe(self):
-        conn = psycopg2.connect(
-            host=DB_HOST,
-            port=DB_PORT,
-            dbname=DB_NAME,
-            user=DB_USER,
-            password=DB_PASSWORD,
-            connect_timeout=TIMEOUT_SECONDS,
-        )
-        cur = conn.cursor()
-        now = datetime.now()
-        cur.execute(
-            """
-            INSERT INTO contentcuration_contentnode(id, content_id, kind_id, title, description,sort_order, created,
-            modified, changed, lft, rght, tree_id, level, published, node_id, freeze_authoring_data, publishing, role_visibility)
-            VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s);
-            """,
-            (
-                "testpostgreswriteprobe",
-                "testprobecontentid",
-                "topic",
-                "test postgres write contentnode probe",
-                "test postgres write contentnode probe",
-                1,
-                now,
-                now,
-                True,
-                1,
-                1,
-                1,
-                1,
-                False,
-                "testprobenodeid",
-                False,
-                False,
-                "test",
-            ),
-        )
-        conn.close()
-
-
-if __name__ == "__main__":
-    PostgresWriteContentnodeProbe().run()
diff --git a/deploy/probers/postmark_api_probe.py b/deploy/probers/postmark_api_probe.py
deleted file mode 100755
index 30cbb1741c..0000000000
--- a/deploy/probers/postmark_api_probe.py
+++ /dev/null
@@ -1,36 +0,0 @@
-#!/usr/bin/env python
-import requests
-from base import BaseProbe
-
-POSTMARK_SERVICE_STATUS_URL = "https://status.postmarkapp.com/api/1.0/services"
-
-# (See here for API details: https://status.postmarkapp.com/api)
-ALL_POSSIBLE_STATUSES = ["UP", "MAINTENANCE", "DELAY", "DEGRADED", "DOWN"]
-
-PASSING_POSTMARK_STATUSES = {
-    "/services/smtp": ["UP", "MAINTENANCE"],
-    "/services/api": ALL_POSSIBLE_STATUSES,
-    "/services/inbound": ALL_POSSIBLE_STATUSES,
-    "/services/web": ALL_POSSIBLE_STATUSES,
-}
-
-
-class PostmarkProbe(BaseProbe):
-    metric = "postmark_api_latency_msec"
-
-    def do_probe(self):
-        r = requests.get(url=POSTMARK_SERVICE_STATUS_URL)
-        for service in r.json():
-            allowed_statuses = PASSING_POSTMARK_STATUSES.get(service["url"])
-            passing = service["status"] in allowed_statuses
-
-            if passing:
-                continue
-            raise Exception(
-                "Postmark's `%s` service has status %s, but we require one of the following: %s"
-                % (service["name"], service["status"], allowed_statuses)
-            )
-
-
-if __name__ == "__main__":
-    PostmarkProbe().run()
diff --git a/deploy/probers/publishing_status_probe.py b/deploy/probers/publishing_status_probe.py
deleted file mode 100755
index fffe67eb92..0000000000
--- a/deploy/probers/publishing_status_probe.py
+++ /dev/null
@@ -1,53 +0,0 @@
-#!/usr/bin/env python
-import datetime
-import os
-
-from base import BaseProbe
-from base import ProberException
-from base import PRODUCTION_MODE_ON
-
-
-ALERT_THRESHOLD = int(
-    os.getenv("PROBER_PUBLISHING_ALERT_THRESHOLD") or 2 * 3600
-)  # default = 2 hours
-DATE_FORMAT = "%Y-%m-%dT%H:%M:%S.%fZ"
-
-
-class PublishingStatusProbe(BaseProbe):
-
-    metric = "max_publishing_duration_sec"
-    prober_name = "PUBLISHING_STATUS_PROBER"
-
-    def run(self):
-        if self.develop_only and PRODUCTION_MODE_ON:
-            return
-
-        r = self.request("api/probers/publishing_status/")
-        results = r.json()
-        now = datetime.datetime.now()
-        max_duration = 0
-        channel_ids = []
-
-        for result in results:
-            duration = (
-                now - datetime.datetime.strptime(result["performed"], DATE_FORMAT)
-            ).seconds
-            max_duration = max(max_duration, duration)
-            if duration >= ALERT_THRESHOLD or not result["task_id"]:
-                channel_ids.append(result["channel_id"])
-
-        if max_duration > 0:
-            print(  # noqa: T201
-                "{metric_name} {duration_sec}".format(
-                    metric_name=self.metric, duration_sec=max_duration
-                )
-            )
-
-        if channel_ids:
-            raise ProberException(
-                "Publishing alert for channels: {}".format(", ".join(channel_ids))
-            )
-
-
-if __name__ == "__main__":
-    PublishingStatusProbe().run()
diff --git a/deploy/probers/task_queue_probe.py b/deploy/probers/task_queue_probe.py
deleted file mode 100755
index 6148176856..0000000000
--- a/deploy/probers/task_queue_probe.py
+++ /dev/null
@@ -1,25 +0,0 @@
-#!/usr/bin/env python
-from base import BaseProbe
-
-
-class TaskQueueProbe(BaseProbe):
-
-    metric = "task_queue_ping_latency_msec"
-    threshold = 50
-
-    def do_probe(self):
-        r = self.request("api/probers/task_queue_status/")
-        r.raise_for_status()
-        results = r.json()
-
-        task_count = results.get("queued_task_count", 0)
-        if task_count >= self.threshold:
-            raise Exception(
-                "Task queue length is over threshold! {} > {}".format(
-                    task_count, self.threshold
-                )
-            )
-
-
-if __name__ == "__main__":
-    TaskQueueProbe().run()
diff --git a/deploy/probers/topic_creation_probe.py b/deploy/probers/topic_creation_probe.py
deleted file mode 100755
index 6c7090c598..0000000000
--- a/deploy/probers/topic_creation_probe.py
+++ /dev/null
@@ -1,41 +0,0 @@
-#!/usr/bin/env python
-import json
-
-from base import BaseProbe
-from le_utils.constants import content_kinds
-
-
-class TopicCreationProbe(BaseProbe):
-
-    metric = "topic_creation_latency_msec"
-    develop_only = True
-    prober_name = "TOPIC-CREATION-PROBER"
-
-    def _get_channel(self):
-        response = self.request("api/probers/get_prober_channel")
-        return json.loads(response.content)
-
-    def do_probe(self):
-        channel = self._get_channel()
-        payload = {
-            "title": "Statistics and Probeability",
-            "kind": content_kinds.TOPIC,
-        }
-        response = self.request(
-            "api/contentnode", action="POST", data=json.dumps(payload)
-        )
-
-        # Test saving to channel works
-        new_topic = json.loads(response.content)
-        new_topic.update({"parent": channel["main_tree"]})
-        path = "api/contentnode/{}".format(new_topic["id"])
-        self.request(
-            path,
-            action="PUT",
-            data=payload,
-            contenttype="application/x-www-form-urlencoded",
-        )
-
-
-if __name__ == "__main__":
-    TopicCreationProbe().run()
diff --git a/deploy/probers/unapplied_changes_probe.py b/deploy/probers/unapplied_changes_probe.py
deleted file mode 100755
index 6065f3df28..0000000000
--- a/deploy/probers/unapplied_changes_probe.py
+++ /dev/null
@@ -1,26 +0,0 @@
-#!/usr/bin/env python
-from base import BaseProbe
-
-
-class UnappliedChangesProbe(BaseProbe):
-
-    metric = "unapplied__changes_ping_latency_msec"
-
-    def do_probe(self):
-        r = self.request("api/probers/unapplied_changes_status/")
-        r.raise_for_status()
-        results = r.json()
-
-        active_task_count = results.get("active_task_count", 0)
-        unapplied_changes_count = results.get("unapplied_changes_count", 0)
-
-        if active_task_count == 0 and unapplied_changes_count > 0:
-            raise Exception(
-                "There are unapplied changes and no active tasks! {} unapplied changes".format(
-                    unapplied_changes_count
-                )
-            )
-
-
-if __name__ == "__main__":
-    UnappliedChangesProbe().run()
diff --git a/deploy/probers/worker_probe.py b/deploy/probers/worker_probe.py
deleted file mode 100755
index 211dc2e6a1..0000000000
--- a/deploy/probers/worker_probe.py
+++ /dev/null
@@ -1,24 +0,0 @@
-#!/usr/bin/env python
-from base import BaseProbe
-
-
-class WorkerProbe(BaseProbe):
-
-    metric = "worker_ping_latency_msec"
-
-    def do_probe(self):
-        r = self.request("api/probers/celery_worker_status/")
-        r.raise_for_status()
-        results = r.json()
-
-        active_workers = []
-        for worker_hostname, worker_status in results.items():
-            if "ok" in worker_status.keys():
-                active_workers.append(worker_hostname)
-
-        if not active_workers:
-            raise Exception("No workers are running!")
-
-
-if __name__ == "__main__":
-    WorkerProbe().run()
diff --git a/k8s/images/prober/Dockerfile b/k8s/images/prober/Dockerfile
deleted file mode 100644
index d3d18ee8a6..0000000000
--- a/k8s/images/prober/Dockerfile
+++ /dev/null
@@ -1,9 +0,0 @@
-FROM ubuntu:bionic
-
-RUN apt-get update && apt-get install -y curl python-pip unzip
-
-RUN pip install requests>=2.20.0 && pip install psycopg2-binary==2.7.4 && pip install le-utils>=0.1.19
-
-COPY ./deploy/cloudprober.cfg /deploy/
-COPY ./deploy/prober-entrypoint.sh /deploy/
-COPY ./deploy/probers /deploy/probers/

From aae5494aff8c7773635526dab7302b4f000ed8ff Mon Sep 17 00:00:00 2001
From: David Canas <david@learningequality.org>
Date: Thu, 4 Dec 2025 15:35:07 -0800
Subject: [PATCH 05/13] Moving nginx files out of `deploy` and housing them
 with other image-specific files.

---
 k8s/images/nginx/Dockerfile                         | 13 ++++++++++---
 {deploy => k8s/images/nginx}/includes/README.md     |  0
 .../images/nginx}/includes/content/_proxy.conf      |  0
 .../images/nginx}/includes/content/default.conf     |  0
 .../includes/content/develop-studio-content.conf    |  0
 .../nginx}/includes/content/studio-content.conf     |  0
 {deploy => k8s/images/nginx}/mime.types             |  0
 {deploy => k8s/images/nginx}/nginx.conf             |  0
 8 files changed, 10 insertions(+), 3 deletions(-)
 rename {deploy => k8s/images/nginx}/includes/README.md (100%)
 rename {deploy => k8s/images/nginx}/includes/content/_proxy.conf (100%)
 rename {deploy => k8s/images/nginx}/includes/content/default.conf (100%)
 rename {deploy => k8s/images/nginx}/includes/content/develop-studio-content.conf (100%)
 rename {deploy => k8s/images/nginx}/includes/content/studio-content.conf (100%)
 rename {deploy => k8s/images/nginx}/mime.types (100%)
 rename {deploy => k8s/images/nginx}/nginx.conf (100%)

diff --git a/k8s/images/nginx/Dockerfile b/k8s/images/nginx/Dockerfile
index ab38a1118a..3cf58f9a17 100644
--- a/k8s/images/nginx/Dockerfile
+++ b/k8s/images/nginx/Dockerfile
@@ -1,8 +1,15 @@
 FROM nginx:1.25
 
+# Build from inside the directory by overriding this.
+ARG SRC_DIR=k8s/images/nginx
+
 RUN rm /etc/nginx/conf.d/*      # if there's stuff here, nginx won't read sites-enabled
-COPY deploy/nginx.conf /etc/nginx/nginx.conf
-COPY deploy/includes /etc/nginx/includes
-COPY k8s/images/nginx/entrypoint.sh /usr/bin
+COPY ${SRC_DIR}/nginx.conf /etc/nginx/nginx.conf
+COPY ${SRC_DIR}/includes /etc/nginx/includes
+COPY ${SRC_DIR}/entrypoint.sh /usr/bin
+
+# Really seems like it _should_ be here, as it's referenced by `nginx.conf`.
+# But it's hasn't been for years.
+# COPY ${SRC_DIR}/mime.types /etc/nginx/mime.types
 
 CMD ["entrypoint.sh"]
diff --git a/deploy/includes/README.md b/k8s/images/nginx/includes/README.md
similarity index 100%
rename from deploy/includes/README.md
rename to k8s/images/nginx/includes/README.md
diff --git a/deploy/includes/content/_proxy.conf b/k8s/images/nginx/includes/content/_proxy.conf
similarity index 100%
rename from deploy/includes/content/_proxy.conf
rename to k8s/images/nginx/includes/content/_proxy.conf
diff --git a/deploy/includes/content/default.conf b/k8s/images/nginx/includes/content/default.conf
similarity index 100%
rename from deploy/includes/content/default.conf
rename to k8s/images/nginx/includes/content/default.conf
diff --git a/deploy/includes/content/develop-studio-content.conf b/k8s/images/nginx/includes/content/develop-studio-content.conf
similarity index 100%
rename from deploy/includes/content/develop-studio-content.conf
rename to k8s/images/nginx/includes/content/develop-studio-content.conf
diff --git a/deploy/includes/content/studio-content.conf b/k8s/images/nginx/includes/content/studio-content.conf
similarity index 100%
rename from deploy/includes/content/studio-content.conf
rename to k8s/images/nginx/includes/content/studio-content.conf
diff --git a/deploy/mime.types b/k8s/images/nginx/mime.types
similarity index 100%
rename from deploy/mime.types
rename to k8s/images/nginx/mime.types
diff --git a/deploy/nginx.conf b/k8s/images/nginx/nginx.conf
similarity index 100%
rename from deploy/nginx.conf
rename to k8s/images/nginx/nginx.conf

From 200f537abdfbda9dec7b0affdfafbe6ad6ccb523 Mon Sep 17 00:00:00 2001
From: David Canas <david@learningequality.org>
Date: Fri, 5 Dec 2025 11:57:59 -0800
Subject: [PATCH 06/13] WIP: Moving prod dockerfiles out of defunct k8s dir.

---
 .github/workflows/containerbuild.yml                        | 4 ++--
 cloudbuild-pr.yaml                                          | 2 +-
 cloudbuild-production.yaml                                  | 6 +++---
 docker-compose.yml                                          | 2 +-
 {k8s/images => docker/prod}/app/Dockerfile                  | 0
 {k8s/images => docker/prod}/app/Makefile                    | 0
 {k8s/images => docker/prod}/nginx/Dockerfile                | 0
 {k8s/images => docker/prod}/nginx/Makefile                  | 0
 {k8s/images => docker/prod}/nginx/entrypoint.sh             | 0
 {k8s/images => docker/prod}/nginx/includes/README.md        | 0
 .../prod}/nginx/includes/content/_proxy.conf                | 0
 .../prod}/nginx/includes/content/default.conf               | 2 +-
 .../nginx/includes/content/develop-studio-content.conf      | 0
 .../prod}/nginx/includes/content/studio-content.conf        | 0
 {k8s/images => docker/prod}/nginx/mime.types                | 0
 {k8s/images => docker/prod}/nginx/nginx.conf                | 0
 16 files changed, 8 insertions(+), 8 deletions(-)
 rename {k8s/images => docker/prod}/app/Dockerfile (100%)
 rename {k8s/images => docker/prod}/app/Makefile (100%)
 rename {k8s/images => docker/prod}/nginx/Dockerfile (100%)
 rename {k8s/images => docker/prod}/nginx/Makefile (100%)
 rename {k8s/images => docker/prod}/nginx/entrypoint.sh (100%)
 rename {k8s/images => docker/prod}/nginx/includes/README.md (100%)
 rename {k8s/images => docker/prod}/nginx/includes/content/_proxy.conf (100%)
 rename {k8s/images => docker/prod}/nginx/includes/content/default.conf (95%)
 rename {k8s/images => docker/prod}/nginx/includes/content/develop-studio-content.conf (100%)
 rename {k8s/images => docker/prod}/nginx/includes/content/studio-content.conf (100%)
 rename {k8s/images => docker/prod}/nginx/mime.types (100%)
 rename {k8s/images => docker/prod}/nginx/nginx.conf (100%)

diff --git a/.github/workflows/containerbuild.yml b/.github/workflows/containerbuild.yml
index 7b367f0eb0..7feb27f226 100644
--- a/.github/workflows/containerbuild.yml
+++ b/.github/workflows/containerbuild.yml
@@ -79,7 +79,7 @@ jobs:
         with:
           skip_after_successful_duplicate: false
           github_token: ${{ github.token }}
-          paths: '["k8s/images/nginx/*", ".github/workflows/containerbuild.yml"]'
+          paths: '["docker/prod/nginx/*", ".github/workflows/containerbuild.yml"]'
 
   build_nginx:
     name: nginx - test build of nginx Docker image
@@ -100,6 +100,6 @@ jobs:
       uses: docker/build-push-action@v6
       with:
         context: ./
-        file: ./k8s/images/nginx/Dockerfile
+        file: ./docker/prod/nginx/Dockerfile
         platforms: linux/amd64
         push: false
diff --git a/cloudbuild-pr.yaml b/cloudbuild-pr.yaml
index 2fb21ce2c5..1cce544614 100644
--- a/cloudbuild-pr.yaml
+++ b/cloudbuild-pr.yaml
@@ -20,7 +20,7 @@ steps:
   waitFor: ['-']              # don't wait for previous steps
   args: [
     'build',
-    '-f', 'k8s/images/nginx/Dockerfile',
+    '-f', 'docker/prod/nginx/Dockerfile',
     '--cache-from', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:latest',
     '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:$COMMIT_SHA',
     '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:latest',
diff --git a/cloudbuild-production.yaml b/cloudbuild-production.yaml
index 3ff333a67f..3e5188fca2 100644
--- a/cloudbuild-production.yaml
+++ b/cloudbuild-production.yaml
@@ -12,7 +12,7 @@ steps:
   - >
     docker build
     --build_arg COMMIT_SHA=$COMMIT_SHA
-    -f k8s/images/app/Dockerfile
+    -f docker/prod/app/Dockerfile
     --cache-from gcr.io/$PROJECT_ID/learningequality-studio-app:latest
     -t gcr.io/$PROJECT_ID/learningequality-studio-app:$COMMIT_SHA
     -t gcr.io/$PROJECT_ID/learningequality-studio-app:latest
@@ -23,7 +23,7 @@ steps:
   waitFor: ['-']              # don't wait for previous steps
   args: [
     'build',
-    '-f', 'k8s/images/nginx/Dockerfile',
+    '-f', 'docker/prod/nginx/Dockerfile',
     '--cache-from', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:latest',
     '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:$COMMIT_SHA',
     '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:latest',
@@ -40,7 +40,7 @@ steps:
   waitFor: ['pull-prober-image-cache']              # don't wait for previous steps
   args: [
     'build',
-    '-f', 'k8s/images/prober/Dockerfile',
+    '-f', 'docker/prod/prober/Dockerfile',
     '--cache-from', 'gcr.io/$PROJECT_ID/learningequality-studio-prober:latest',
     '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-prober:$COMMIT_SHA',
     '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-prober:latest',
diff --git a/docker-compose.yml b/docker-compose.yml
index 3a07894c8d..0fd57a2743 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -35,7 +35,7 @@ services:
     platform: linux/amd64
     build:
       context: .
-      dockerfile: k8s/images/nginx/Dockerfile
+      dockerfile: docker/prod/nginx/Dockerfile
     ports:
       - "8081:8080"
     depends_on:
diff --git a/k8s/images/app/Dockerfile b/docker/prod/app/Dockerfile
similarity index 100%
rename from k8s/images/app/Dockerfile
rename to docker/prod/app/Dockerfile
diff --git a/k8s/images/app/Makefile b/docker/prod/app/Makefile
similarity index 100%
rename from k8s/images/app/Makefile
rename to docker/prod/app/Makefile
diff --git a/k8s/images/nginx/Dockerfile b/docker/prod/nginx/Dockerfile
similarity index 100%
rename from k8s/images/nginx/Dockerfile
rename to docker/prod/nginx/Dockerfile
diff --git a/k8s/images/nginx/Makefile b/docker/prod/nginx/Makefile
similarity index 100%
rename from k8s/images/nginx/Makefile
rename to docker/prod/nginx/Makefile
diff --git a/k8s/images/nginx/entrypoint.sh b/docker/prod/nginx/entrypoint.sh
similarity index 100%
rename from k8s/images/nginx/entrypoint.sh
rename to docker/prod/nginx/entrypoint.sh
diff --git a/k8s/images/nginx/includes/README.md b/docker/prod/nginx/includes/README.md
similarity index 100%
rename from k8s/images/nginx/includes/README.md
rename to docker/prod/nginx/includes/README.md
diff --git a/k8s/images/nginx/includes/content/_proxy.conf b/docker/prod/nginx/includes/content/_proxy.conf
similarity index 100%
rename from k8s/images/nginx/includes/content/_proxy.conf
rename to docker/prod/nginx/includes/content/_proxy.conf
diff --git a/k8s/images/nginx/includes/content/default.conf b/docker/prod/nginx/includes/content/default.conf
similarity index 95%
rename from k8s/images/nginx/includes/content/default.conf
rename to docker/prod/nginx/includes/content/default.conf
index 404bd64075..44c005f21b 100644
--- a/k8s/images/nginx/includes/content/default.conf
+++ b/docker/prod/nginx/includes/content/default.conf
@@ -1,4 +1,4 @@
-# DO NOT RENAME: referenced by k8s/images/nginx/entrypoint.sh
+# DO NOT RENAME: referenced by docker/prod/nginx/entrypoint.sh
 
 # assume development
 location @emulator {
diff --git a/k8s/images/nginx/includes/content/develop-studio-content.conf b/docker/prod/nginx/includes/content/develop-studio-content.conf
similarity index 100%
rename from k8s/images/nginx/includes/content/develop-studio-content.conf
rename to docker/prod/nginx/includes/content/develop-studio-content.conf
diff --git a/k8s/images/nginx/includes/content/studio-content.conf b/docker/prod/nginx/includes/content/studio-content.conf
similarity index 100%
rename from k8s/images/nginx/includes/content/studio-content.conf
rename to docker/prod/nginx/includes/content/studio-content.conf
diff --git a/k8s/images/nginx/mime.types b/docker/prod/nginx/mime.types
similarity index 100%
rename from k8s/images/nginx/mime.types
rename to docker/prod/nginx/mime.types
diff --git a/k8s/images/nginx/nginx.conf b/docker/prod/nginx/nginx.conf
similarity index 100%
rename from k8s/images/nginx/nginx.conf
rename to docker/prod/nginx/nginx.conf

From 1dbd0db6626f3e5ad418f178eb050d85d50c2d84 Mon Sep 17 00:00:00 2001
From: David Canas <david@learningequality.org>
Date: Fri, 5 Dec 2025 12:15:49 -0800
Subject: [PATCH 07/13] WIP: Flattening out new image structure, following
 current naming standard. And deleting defunct cloudbuild prod yaml

---
 .github/workflows/containerbuild.yml          |  4 +-
 cloudbuild-production.yaml                    | 99 -------------------
 docker-compose.yml                            |  2 +-
 .../Dockerfile => Dockerfile.nginx.prod}      |  2 +-
 .../{prod/app/Dockerfile => Dockerfile.prod}  |  0
 docker/prod/app/Makefile                      |  4 -
 docker/prod/nginx/Makefile                    |  9 --
 7 files changed, 4 insertions(+), 116 deletions(-)
 delete mode 100644 cloudbuild-production.yaml
 rename docker/{prod/nginx/Dockerfile => Dockerfile.nginx.prod} (94%)
 rename docker/{prod/app/Dockerfile => Dockerfile.prod} (100%)
 delete mode 100644 docker/prod/app/Makefile
 delete mode 100644 docker/prod/nginx/Makefile

diff --git a/.github/workflows/containerbuild.yml b/.github/workflows/containerbuild.yml
index 7feb27f226..68f1be456c 100644
--- a/.github/workflows/containerbuild.yml
+++ b/.github/workflows/containerbuild.yml
@@ -79,7 +79,7 @@ jobs:
         with:
           skip_after_successful_duplicate: false
           github_token: ${{ github.token }}
-          paths: '["docker/prod/nginx/*", ".github/workflows/containerbuild.yml"]'
+          paths: '["docker/Dockerfile.nginx.prod", "nginx/*", ".github/workflows/containerbuild.yml"]'
 
   build_nginx:
     name: nginx - test build of nginx Docker image
@@ -100,6 +100,6 @@ jobs:
       uses: docker/build-push-action@v6
       with:
         context: ./
-        file: ./docker/prod/nginx/Dockerfile
+        file: ./docker/Dockerfile.nginx.prod
         platforms: linux/amd64
         push: false
diff --git a/cloudbuild-production.yaml b/cloudbuild-production.yaml
deleted file mode 100644
index 3e5188fca2..0000000000
--- a/cloudbuild-production.yaml
+++ /dev/null
@@ -1,99 +0,0 @@
-steps:
-- name: 'gcr.io/cloud-builders/docker'
-  id: pull-app-image-cache
-  args: ['pull', 'gcr.io/$PROJECT_ID/learningequality-studio-app:latest']
-
-- name: 'gcr.io/cloud-builders/docker'
-  id: build-app-image
-  entrypoint: bash
-  waitFor: ['pull-app-image-cache']              # wait for app image cache pull to finish
-  args:
-  - -c
-  - >
-    docker build
-    --build_arg COMMIT_SHA=$COMMIT_SHA
-    -f docker/prod/app/Dockerfile
-    --cache-from gcr.io/$PROJECT_ID/learningequality-studio-app:latest
-    -t gcr.io/$PROJECT_ID/learningequality-studio-app:$COMMIT_SHA
-    -t gcr.io/$PROJECT_ID/learningequality-studio-app:latest
-    .
-
-- name: 'gcr.io/cloud-builders/docker'
-  id: build-nginx-image
-  waitFor: ['-']              # don't wait for previous steps
-  args: [
-    'build',
-    '-f', 'docker/prod/nginx/Dockerfile',
-    '--cache-from', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:latest',
-    '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:$COMMIT_SHA',
-    '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:latest',
-    '.'
-  ]
-
-- name: 'gcr.io/cloud-builders/docker'
-  id: pull-prober-image-cache
-  waitFor: ['-']
-  args: ['pull', 'gcr.io/$PROJECT_ID/learningequality-studio-prober:latest']
-
-- name: 'gcr.io/cloud-builders/docker'
-  id: build-prober-image
-  waitFor: ['pull-prober-image-cache']              # don't wait for previous steps
-  args: [
-    'build',
-    '-f', 'docker/prod/prober/Dockerfile',
-    '--cache-from', 'gcr.io/$PROJECT_ID/learningequality-studio-prober:latest',
-    '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-prober:$COMMIT_SHA',
-    '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-prober:latest',
-    '.'
-  ]
-
-- name: 'gcr.io/cloud-builders/docker'
-  id: push-app-image
-  waitFor: ['build-app-image']
-  args: ['push', 'gcr.io/$PROJECT_ID/learningequality-studio-app:$COMMIT_SHA']
-
-- name: 'gcr.io/cloud-builders/docker'
-  id: push-nginx-image
-  waitFor: ['build-nginx-image']
-  args: ['push', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:$COMMIT_SHA']
-
-- name: 'gcr.io/cloud-builders/docker'
-  id: push-prober-image
-  waitFor: ['build-prober-image']
-  args: ['push', 'gcr.io/$PROJECT_ID/learningequality-studio-prober:$COMMIT_SHA']
-
-- name: 'gcr.io/$PROJECT_ID/helm'
-  id: helm-deploy-studio-instance
-  waitFor: ['push-app-image', 'push-nginx-image']
-  dir: "k8s"
-  env:
-  - 'CLOUDSDK_COMPUTE_ZONE=us-central1-f'
-  - 'CLOUDSDK_CONTAINER_CLUSTER=contentworkshop-central'
-  entrypoint: 'bash'
-  args:
-    - -c
-    - >
-      /builder/helm.bash &&
-      ./helm-deploy.sh
-      $BRANCH_NAME
-      gcr.io/$PROJECT_ID/learningequality-studio-app:$COMMIT_SHA
-      gcr.io/$PROJECT_ID/learningequality-studio-nginx:$COMMIT_SHA
-      $_STORAGE_BUCKET
-      $COMMIT_SHA
-      $PROJECT_ID
-      $_DATABASE_INSTANCE_NAME
-      us-central1
-
-
-substitutions:
-  _DATABASE_INSTANCE_NAME: develop  # by default, connect to the develop DB
-  _STORAGE_BUCKET: develop-studio-content
-
-timeout: 3600s
-images:
-  - gcr.io/$PROJECT_ID/learningequality-studio-nginx:latest
-  - gcr.io/$PROJECT_ID/learningequality-studio-nginx:$COMMIT_SHA
-  - gcr.io/$PROJECT_ID/learningequality-studio-app:latest
-  - gcr.io/$PROJECT_ID/learningequality-studio-app:$COMMIT_SHA
-  - 'gcr.io/$PROJECT_ID/learningequality-studio-prober:$COMMIT_SHA'
-  - 'gcr.io/$PROJECT_ID/learningequality-studio-prober:latest'
diff --git a/docker-compose.yml b/docker-compose.yml
index 0fd57a2743..2a0eed7799 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -35,7 +35,7 @@ services:
     platform: linux/amd64
     build:
       context: .
-      dockerfile: docker/prod/nginx/Dockerfile
+      dockerfile: docker/Dockerfile.nginx.prod
     ports:
       - "8081:8080"
     depends_on:
diff --git a/docker/prod/nginx/Dockerfile b/docker/Dockerfile.nginx.prod
similarity index 94%
rename from docker/prod/nginx/Dockerfile
rename to docker/Dockerfile.nginx.prod
index 3cf58f9a17..a01753b143 100644
--- a/docker/prod/nginx/Dockerfile
+++ b/docker/Dockerfile.nginx.prod
@@ -1,7 +1,7 @@
 FROM nginx:1.25
 
 # Build from inside the directory by overriding this.
-ARG SRC_DIR=k8s/images/nginx
+ARG SRC_DIR=docker/prod/nginx
 
 RUN rm /etc/nginx/conf.d/*      # if there's stuff here, nginx won't read sites-enabled
 COPY ${SRC_DIR}/nginx.conf /etc/nginx/nginx.conf
diff --git a/docker/prod/app/Dockerfile b/docker/Dockerfile.prod
similarity index 100%
rename from docker/prod/app/Dockerfile
rename to docker/Dockerfile.prod
diff --git a/docker/prod/app/Makefile b/docker/prod/app/Makefile
deleted file mode 100644
index d958cc266a..0000000000
--- a/docker/prod/app/Makefile
+++ /dev/null
@@ -1,4 +0,0 @@
-COMMIT := nlatest
-
-imagebuild:
-	docker build ../../../ -f $$PWD/Dockerfile -t gcr.io/github-learningequality-studio/app:$(COMMIT)
diff --git a/docker/prod/nginx/Makefile b/docker/prod/nginx/Makefile
deleted file mode 100644
index 9c2d01dc60..0000000000
--- a/docker/prod/nginx/Makefile
+++ /dev/null
@@ -1,9 +0,0 @@
-CONTAINER_NAME := "contentworkshop-app-nginx-proxy"
-CONTAINER_VERSION := v4
-GCLOUD_PROJECT := contentworkshop-159920
-GIT_PROJECT_ROOT := `git rev-parse --show-toplevel`
-
-all: appcodeupdate imagebuild imagepush
-
-imagebuild:
-	docker build -t learningequality/$(CONTAINER_NAME):$(CONTAINER_VERSION) -f ./Dockerfile $(GIT_PROJECT_ROOT)

From c4155bff363ebebbb8a9e9a48ffffafe5ad59bda Mon Sep 17 00:00:00 2001
From: David Canas <david@learningequality.org>
Date: Fri, 5 Dec 2025 12:17:33 -0800
Subject: [PATCH 08/13] Removing defunct cloudbuild-pr.yaml Making a separate
 commit for bookmarking purposes. Seems we used to deploy to a
 separate/distinct dev cluster, and create new postgres instances for every
 single pr.

---
 cloudbuild-pr.yaml | 102 ---------------------------------------------
 1 file changed, 102 deletions(-)
 delete mode 100644 cloudbuild-pr.yaml

diff --git a/cloudbuild-pr.yaml b/cloudbuild-pr.yaml
deleted file mode 100644
index 1cce544614..0000000000
--- a/cloudbuild-pr.yaml
+++ /dev/null
@@ -1,102 +0,0 @@
-steps:
-- name: 'gcr.io/cloud-builders/docker'
-  id: pull-app-image-cache
-  args: ['pull', 'gcr.io/$PROJECT_ID/learningequality-studio-app:latest']
-
-- name: 'gcr.io/cloud-builders/docker'
-  id: build-app-image
-  waitFor: ['pull-app-image-cache']              # don't wait for previous steps
-  args: [
-    'build',
-    '-f', 'docker/Dockerfile.demo',
-    '--cache-from', 'gcr.io/$PROJECT_ID/learningequality-studio-app:latest',
-    '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-app:$COMMIT_SHA',
-    '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-app:latest',
-    '.'
-    ]
-
-- name: 'gcr.io/cloud-builders/docker'
-  id: build-nginx-image
-  waitFor: ['-']              # don't wait for previous steps
-  args: [
-    'build',
-    '-f', 'docker/prod/nginx/Dockerfile',
-    '--cache-from', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:latest',
-    '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:$COMMIT_SHA',
-    '-t', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:latest',
-    '.'
-  ]
-
-- name: 'gcr.io/cloud-builders/docker'
-  id: push-app-image
-  waitFor: ['build-app-image']
-  args: ['push', 'gcr.io/$PROJECT_ID/learningequality-studio-app:$COMMIT_SHA']
-
-- name: 'gcr.io/cloud-builders/docker'
-  id: push-nginx-image
-  waitFor: ['build-nginx-image']
-  args: ['push', 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:$COMMIT_SHA']
-
-- name: 'gcr.io/cloud-builders/gcloud'
-  id: decrypt-gcs-service-account
-  waitFor: ['-']
-  args: [
-  'kms', 'decrypt',
-  '--location=global', '--keyring=builder-secrets', '--key=secret-encrypter',
-  '--ciphertext-file=k8s/build-secrets/$PROJECT_ID-gcs-service-account.json.enc',
-  '--plaintext-file=gcs-service-account.json'
-  ]
-
-- name: 'gcr.io/cloud-builders/gcloud'
-  id: create-new-database
-  waitFor: ['-']
-  dir: "k8s"
-  entrypoint: 'bash'
-  args: [
-  '-c',
-  './create-cloudsql-database.sh $_RELEASE_NAME $_DATABASE_INSTANCE_NAME'
-  ]
-
-- name: 'gcr.io/$PROJECT_ID/helm'
-  id: helm-deploy-studio-instance
-  waitFor: ['decrypt-gcs-service-account', 'push-app-image', 'push-nginx-image']
-  dir: "k8s"
-  env:
-  - 'CLOUDSDK_COMPUTE_ZONE=us-central1-f'
-  - 'CLOUDSDK_CONTAINER_CLUSTER=dev-qa-cluster'
-  secretEnv: ['POSTMARK_API_KEY']
-  entrypoint: 'bash'
-  args:
-    - -c
-    - >
-      /builder/helm.bash &&
-      ./helm-deploy.sh
-      $_RELEASE_NAME
-      $_STORAGE_BUCKET
-      $COMMIT_SHA
-      $$POSTMARK_API_KEY
-      ""
-      ""
-      $_POSTGRES_USERNAME
-      $_RELEASE_NAME
-      $_POSTGRES_PASSWORD
-      $PROJECT_ID-$_DATABASE_INSTANCE_NAME-sql-proxy-gcloud-sqlproxy.sqlproxy
-      ../gcs-service-account.json
-      $PROJECT_ID
-
-- name: 'gcr.io/cloud-builders/gsutil'
-  id: remove-tarball-in-gcs
-  waitFor: ['helm-deploy-studio-instance']
-  args: ['rm', $_TARBALL_LOCATION]
-
-timeout: 3600s
-secrets:
-- kmsKeyName: projects/ops-central/locations/global/keyRings/builder-secrets/cryptoKeys/secret-encrypter
-  secretEnv:
-    POSTMARK_API_KEY: CiQA7z1GH3QhvCEWNn6KS64t/c8BEQng5I4CdMC6VGNxJkWmZrwSTgB+R8mv/PSrzlDmCYSOZc4bugWA+K+lJ8nIll1BBsZZEV5M9GuOCYVn6sVWg9pCIVujwyb4EvEy1QaKmZCzAnTw9aHEXDH0sruAUHBaTA==
-
-images:
-  - 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:$COMMIT_SHA'
-  - 'gcr.io/$PROJECT_ID/learningequality-studio-nginx:latest'
-  - 'gcr.io/$PROJECT_ID/learningequality-studio-app:$COMMIT_SHA'
-  - 'gcr.io/$PROJECT_ID/learningequality-studio-app:latest'

From cb8cdfed994bbec6a6b100bc94b989035461beee Mon Sep 17 00:00:00 2001
From: David Canas <david@learningequality.org>
Date: Fri, 5 Dec 2025 12:23:39 -0800
Subject: [PATCH 09/13] Flattening file structure further. Standardizing on
 image-specific docker locations.

---
 docker-compose.yml                                              | 2 +-
 docker/Dockerfile.nginx.prod                                    | 2 +-
 docker/{prod => }/nginx/entrypoint.sh                           | 0
 docker/{prod => }/nginx/includes/README.md                      | 0
 docker/{prod => }/nginx/includes/content/_proxy.conf            | 0
 docker/{prod => }/nginx/includes/content/default.conf           | 2 +-
 .../nginx/includes/content/develop-studio-content.conf          | 0
 docker/{prod => }/nginx/includes/content/studio-content.conf    | 0
 docker/{prod => }/nginx/mime.types                              | 0
 docker/{prod => }/nginx/nginx.conf                              | 0
 docker/{ => studio-dev}/entrypoint.py                           | 0
 11 files changed, 3 insertions(+), 3 deletions(-)
 rename docker/{prod => }/nginx/entrypoint.sh (100%)
 rename docker/{prod => }/nginx/includes/README.md (100%)
 rename docker/{prod => }/nginx/includes/content/_proxy.conf (100%)
 rename docker/{prod => }/nginx/includes/content/default.conf (95%)
 rename docker/{prod => }/nginx/includes/content/develop-studio-content.conf (100%)
 rename docker/{prod => }/nginx/includes/content/studio-content.conf (100%)
 rename docker/{prod => }/nginx/mime.types (100%)
 rename docker/{prod => }/nginx/nginx.conf (100%)
 rename docker/{ => studio-dev}/entrypoint.py (100%)

diff --git a/docker-compose.yml b/docker-compose.yml
index 2a0eed7799..9ec8d1c34f 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -44,7 +44,7 @@ services:
 
   studio-app:
     <<: *studio-worker
-    entrypoint: python docker/entrypoint.py
+    entrypoint: python docker/studio-dev/entrypoint.py
     command: pnpm run devserver
     ports:
       - "8080:8080"
diff --git a/docker/Dockerfile.nginx.prod b/docker/Dockerfile.nginx.prod
index a01753b143..ba33210a28 100644
--- a/docker/Dockerfile.nginx.prod
+++ b/docker/Dockerfile.nginx.prod
@@ -1,7 +1,7 @@
 FROM nginx:1.25
 
 # Build from inside the directory by overriding this.
-ARG SRC_DIR=docker/prod/nginx
+ARG SRC_DIR=docker/nginx
 
 RUN rm /etc/nginx/conf.d/*      # if there's stuff here, nginx won't read sites-enabled
 COPY ${SRC_DIR}/nginx.conf /etc/nginx/nginx.conf
diff --git a/docker/prod/nginx/entrypoint.sh b/docker/nginx/entrypoint.sh
similarity index 100%
rename from docker/prod/nginx/entrypoint.sh
rename to docker/nginx/entrypoint.sh
diff --git a/docker/prod/nginx/includes/README.md b/docker/nginx/includes/README.md
similarity index 100%
rename from docker/prod/nginx/includes/README.md
rename to docker/nginx/includes/README.md
diff --git a/docker/prod/nginx/includes/content/_proxy.conf b/docker/nginx/includes/content/_proxy.conf
similarity index 100%
rename from docker/prod/nginx/includes/content/_proxy.conf
rename to docker/nginx/includes/content/_proxy.conf
diff --git a/docker/prod/nginx/includes/content/default.conf b/docker/nginx/includes/content/default.conf
similarity index 95%
rename from docker/prod/nginx/includes/content/default.conf
rename to docker/nginx/includes/content/default.conf
index 44c005f21b..c2c95df613 100644
--- a/docker/prod/nginx/includes/content/default.conf
+++ b/docker/nginx/includes/content/default.conf
@@ -1,4 +1,4 @@
-# DO NOT RENAME: referenced by docker/prod/nginx/entrypoint.sh
+# DO NOT RENAME: referenced by docker/nginx/entrypoint.sh
 
 # assume development
 location @emulator {
diff --git a/docker/prod/nginx/includes/content/develop-studio-content.conf b/docker/nginx/includes/content/develop-studio-content.conf
similarity index 100%
rename from docker/prod/nginx/includes/content/develop-studio-content.conf
rename to docker/nginx/includes/content/develop-studio-content.conf
diff --git a/docker/prod/nginx/includes/content/studio-content.conf b/docker/nginx/includes/content/studio-content.conf
similarity index 100%
rename from docker/prod/nginx/includes/content/studio-content.conf
rename to docker/nginx/includes/content/studio-content.conf
diff --git a/docker/prod/nginx/mime.types b/docker/nginx/mime.types
similarity index 100%
rename from docker/prod/nginx/mime.types
rename to docker/nginx/mime.types
diff --git a/docker/prod/nginx/nginx.conf b/docker/nginx/nginx.conf
similarity index 100%
rename from docker/prod/nginx/nginx.conf
rename to docker/nginx/nginx.conf
diff --git a/docker/entrypoint.py b/docker/studio-dev/entrypoint.py
similarity index 100%
rename from docker/entrypoint.py
rename to docker/studio-dev/entrypoint.py

From 0c39da8bc51064f40e3fe0f40fb07f74a6c9ac0e Mon Sep 17 00:00:00 2001
From: David Canas <david@learningequality.org>
Date: Fri, 5 Dec 2025 13:59:38 -0800
Subject: [PATCH 10/13] Bringing in temporary symlinks for infra-side CD. Will
 delete after both have been updated.

---
 k8s/images/app/Dockerfile   | 1 +
 k8s/images/nginx/Dockerfile | 1 +
 2 files changed, 2 insertions(+)
 create mode 120000 k8s/images/app/Dockerfile
 create mode 120000 k8s/images/nginx/Dockerfile

diff --git a/k8s/images/app/Dockerfile b/k8s/images/app/Dockerfile
new file mode 120000
index 0000000000..4750df1fc3
--- /dev/null
+++ b/k8s/images/app/Dockerfile
@@ -0,0 +1 @@
+docker/Dockerfile.prod
\ No newline at end of file
diff --git a/k8s/images/nginx/Dockerfile b/k8s/images/nginx/Dockerfile
new file mode 120000
index 0000000000..a4867c19b0
--- /dev/null
+++ b/k8s/images/nginx/Dockerfile
@@ -0,0 +1 @@
+docker/Dockerfile.nginx.prod
\ No newline at end of file

From 1394abac6f1a79620a83a015629de6cf4860f634 Mon Sep 17 00:00:00 2001
From: David Canas <david@learningequality.org>
Date: Fri, 5 Dec 2025 14:33:24 -0800
Subject: [PATCH 11/13] Cleaning up more prober code.

---
 Makefile           |  6 +-----
 docker-compose.yml | 11 -----------
 2 files changed, 1 insertion(+), 16 deletions(-)

diff --git a/Makefile b/Makefile
index 002d337323..dc1e70b51e 100644
--- a/Makefile
+++ b/Makefile
@@ -171,11 +171,7 @@ dcbuild:
 	$(DOCKER_COMPOSE) build
 
 dcup: .docker/minio .docker/postgres
-	# run all services except for cloudprober
-	$(DOCKER_COMPOSE) up studio-app celery-worker
-
-dcup-cloudprober: .docker/minio .docker/postgres
-	# run all services including cloudprober
+	# run all services
 	$(DOCKER_COMPOSE) up
 
 dcdown:
diff --git a/docker-compose.yml b/docker-compose.yml
index 9ec8d1c34f..68bb5e2500 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -83,17 +83,6 @@ services:
   redis:
     image: redis:6.0.9
 
-  cloudprober:
-    <<: *studio-worker
-    working_dir: /src/deploy
-    entrypoint: ""
-    # sleep 30 seconds allowing some time for the studio app to start up
-    command: '/bin/bash -c "sleep 30 && /bin/cloudprober --config_file ./cloudprober.cfg"'
-    # wait until the main app and celery worker have started
-    depends_on:
-      - studio-app
-      - celery-worker
-
 
 volumes:
   minio:

From b50bdb94aee25c2b49726c31d2bc9be962873b78 Mon Sep 17 00:00:00 2001
From: Claude <noreply@anthropic.com>
Date: Thu, 30 Oct 2025 00:04:02 +0000
Subject: [PATCH 12/13] Configure Celery for graceful shutdown
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Implements soft shutdown feature from Celery 5.5.3 to prevent task
interruption during pod termination. Resolves #5000.

Changes:
- Add worker_soft_shutdown_timeout (28s) to Celery config in settings.py
- Add REMAP_SIGTERM=SIGQUIT to K8s shared env vars to trigger soft shutdown

When K8s sends SIGTERM during pod termination, workers will now:
1. Stop accepting new tasks
2. Continue processing current task for up to 28 seconds
3. Exit cleanly if task completes, or timeout after 28s
4. Allow K8s 2s buffer before 30s grace period expires

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
---
 contentcuration/contentcuration/settings.py | 5 +++++
 docker-compose.yml                          | 1 +
 2 files changed, 6 insertions(+)

diff --git a/contentcuration/contentcuration/settings.py b/contentcuration/contentcuration/settings.py
index 0f18ed0131..285e7bef76 100644
--- a/contentcuration/contentcuration/settings.py
+++ b/contentcuration/contentcuration/settings.py
@@ -348,6 +348,11 @@ def gettext(s):
     "result_serializer": "json",
     "result_extended": True,
     "worker_send_task_events": True,
+    # Graceful shutdown: allow 28 seconds for tasks to complete before forced termination
+    # This is 2 seconds less than Kubernetes terminationGracePeriodSeconds (30s)
+    "worker_soft_shutdown_timeout": int(
+        os.getenv("CELERY_WORKER_SOFT_SHUTDOWN_TIMEOUT", "28")
+    ),
 }
 
 # When cleaning up orphan nodes, only clean up any that have been last modified
diff --git a/docker-compose.yml b/docker-compose.yml
index 68bb5e2500..719fc797ed 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -14,6 +14,7 @@ x-studio-environment:
     CELERY_BROKER_ENDPOINT: redis
     CELERY_RESULT_BACKEND_ENDPOINT: redis
     CELERY_REDIS_PASSWORD: ""
+    REMAP_SIGTERM: "SIGQUIT"
     PROBER_STUDIO_BASE_URL: http://studio-app:8080/{path}
 
 x-studio-worker:

From 8ca219b3d2d481bd5a061d05eeb88226bfd31802 Mon Sep 17 00:00:00 2001
From: Richard Tibbles <richard@learningequality.org>
Date: Wed, 17 Dec 2025 15:13:21 -0800
Subject: [PATCH 13/13] Update paths for nginx Dockerfile in workflow

---
 .github/workflows/containerbuild.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/containerbuild.yml b/.github/workflows/containerbuild.yml
index 68f1be456c..0056d99cb4 100644
--- a/.github/workflows/containerbuild.yml
+++ b/.github/workflows/containerbuild.yml
@@ -79,7 +79,7 @@ jobs:
         with:
           skip_after_successful_duplicate: false
           github_token: ${{ github.token }}
-          paths: '["docker/Dockerfile.nginx.prod", "nginx/*", ".github/workflows/containerbuild.yml"]'
+          paths: '["docker/Dockerfile.nginx.prod", "docker/nginx/*", ".github/workflows/containerbuild.yml"]'
 
   build_nginx:
     name: nginx - test build of nginx Docker image